last executing test programs:

1m23.286832348s ago: executing program 0 (id=2423):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r1, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x1)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000600)={0x18, 0x6e6a196eaf064472, 0x0, {0xf}}, 0x18)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r2, &(0x7f0000000180)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0xffcc)
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000100)={0x28, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9})
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

1m23.226380359s ago: executing program 0 (id=2424):
lsetxattr$system_posix_acl(0x0, &(0x7f0000000440)='system.posix_acl_default\x00', 0x0, 0x4, 0x0)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="040effff2820"], 0x7)

1m23.226107244s ago: executing program 0 (id=2425):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r1)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x305200, 0x0)
close(r2)
socket$unix(0x1, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="440000004ec6"})

1m23.08379598s ago: executing program 0 (id=2426):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e2a, 0xffffffff, @mcast2, 0x9}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4001c00)

1m23.080794288s ago: executing program 0 (id=2434):
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000140)={'filter\x00', 0x0, 0x0, 0x0, [0x5, 0x5, 0x3, 0x8000000000000000, 0x528, 0x8], 0x8, &(0x7f0000000000)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}, 0xf8)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[], 0x20}}, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(r0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="060000000010"})
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
syz_open_dev$evdev(&(0x7f0000000100), 0x4, 0x80000)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000340), 0x47ffffa, 0x1a6c02)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000001ac0)={r2, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1c040000006d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200"}})
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001c00)={0x8, {"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", 0x1000}}, 0xfffffe38)
getsockopt$netrom_NETROM_T1(r4, 0x103, 0x1, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000011c0)={'tunl0\x00', &(0x7f0000000440)={'gre0\x00', 0x0, 0x7, 0x80, 0x1000, 0x80002e4, {{0x1f, 0x4, 0x0, 0x1d, 0x7c, 0x63, 0x0, 0x10, 0x29, 0x0, @multicast2, @remote, {[@generic={0x89, 0x12, "6d6429707c76eb7e1025b97a77173c1a"}, @lsrr={0x83, 0x7, 0x74, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @rr={0x7, 0x7, 0xba, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x4, 0x61, 0x3, 0x5}, @cipso={0x86, 0x14, 0x1, [{0x1, 0xe, "52b4167a9879ba15273abe75"}]}, @generic={0x86, 0x7, "4dc60f8600"}, @noop, @generic={0x83, 0x9, "0d9b7486eb71a1"}, @rr={0x7, 0x7, 0xbf, [@private=0xa010100]}, @cipso={0x86, 0x17, 0x0, [{0x2, 0x11, "3a00ac96a0e6503000b7b05c7c31c2"}]}]}}}}})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$cgroup_ro(r0, &(0x7f0000000240)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000500)={'#! ', './file0', [{0x20, '}${--,\xc8^'}, {0x20, ':&.,.'}]}, 0x1a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r7, 0x0)
preadv(r7, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)

1m22.849135965s ago: executing program 0 (id=2428):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000100)='./bus\x00', 0xe8)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
io_setup(0x8, &(0x7f0000004200))
io_setup(0x3, &(0x7f0000000240))
io_setup(0x3083, &(0x7f0000000000))
mount$9p_virtio(&(0x7f0000000140), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0), 0x40, &(0x7f0000000380)={'trans=virtio,', {[{@aname={'aname', 0x3d, 'workdir'}}, {@noxattr}, {@posixacl}, {@ignoreqv}], [{@subj_type={'subj_type', 0x3d, './cgroup.cpu/syz0\x00'}}]}})
io_setup(0xa, &(0x7f0000000040))
io_setup(0x8, &(0x7f00000001c0))
chdir(&(0x7f00000001c0)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r1=>0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000080)='hugetlb.1GB.rsvd.limit_in_bytes\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x5)
io_submit(r1, 0x1, &(0x7f0000000580)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4, r0, 0x0, 0xfcfd, 0x8}])

1m7.644335471s ago: executing program 32 (id=2428):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000100)='./bus\x00', 0xe8)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
io_setup(0x8, &(0x7f0000004200))
io_setup(0x3, &(0x7f0000000240))
io_setup(0x3083, &(0x7f0000000000))
mount$9p_virtio(&(0x7f0000000140), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0), 0x40, &(0x7f0000000380)={'trans=virtio,', {[{@aname={'aname', 0x3d, 'workdir'}}, {@noxattr}, {@posixacl}, {@ignoreqv}], [{@subj_type={'subj_type', 0x3d, './cgroup.cpu/syz0\x00'}}]}})
io_setup(0xa, &(0x7f0000000040))
io_setup(0x8, &(0x7f00000001c0))
chdir(&(0x7f00000001c0)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r1=>0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000080)='hugetlb.1GB.rsvd.limit_in_bytes\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x5)
io_submit(r1, 0x1, &(0x7f0000000580)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4, r0, 0x0, 0xfcfd, 0x8}])

15.727528408s ago: executing program 2 (id=3586):
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000140)={'filter\x00', 0x0, 0x0, 0x0, [0x5, 0x5, 0x3, 0x8000000000000000, 0x528, 0x8], 0x8, &(0x7f0000000000)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}, 0xf8)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[], 0x20}}, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(r1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
ioctl$SIOCSIFHWADDR(r1, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="060000000010"})
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1}, 0x0)
syz_open_dev$evdev(&(0x7f0000000100), 0x4, 0x80000)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000340), 0x47ffffa, 0x1a6c02)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f0000001ac0)={r3, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1c040000006d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200"}})
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001c00)={0x8, {"b0476b76ba5d044f65271519727e4ff1ff0d12c0e6bdf3ea1f52e24f60ca698457b32832b83d7e96694c1feb5809bd67002f71e0b97c0d5270c04ffa64f63b2e18ee4b7b572fe2f4d03cad38bcd106ff12f53b443ac6fc81da518f54b9004a44859529c07a2b1b8feddc0180a0f37b13babba1dd0813b7ea56dac4b7ffe9a2ef54221439ecc55223ef2d40f4ba8108c10387ddffbaed25d41e7692bf26ddfa747a666caff49843e38c86cac7323f784a17df6beaa49c3f4a98fb4013f4e573e2ef77b0965d4bfbdf7d5eada69406ca93f422495e00addfca1518085a40f10284ff59388ecf476a12ef1a540163922098d600519ae8cf3ef544344e9d968f341af618503b455f3976b76975270e94d714302382c63de5b7c1fad1fa373b369916cb3b4d583a9ebbaeb262884d25a0e1d9fb141de60df7e64cb38b6f7167991f8fba06bffe2d49133bbb462cd8a9493177eee5f03875b15c7a92c3cd6a3fdfc64f236e14fa05a0e8d3c45f13eecd22e13528c74186dc50e0e2af44177e26bded1161e5533375508dadb83db5126cc810f4e30d4e24ec12c3b99e5220aacf42c58f2960bd43c337dbd318aeeb5c9a6cd5ffd3bf1497bb48ab7bcb32c9c33c9f5b9bc4645b96f23f9e0d826b780030444ffb925f55df587ef5ca5ea74ccd66afc7981da496d6f037efbb0b08f3f5078c60ffb4db18d1b59996bd9b1513442785bf4ece8587b39d8176dc9c735d5ea25133b2053bba227b81faab7220326f8814a9df4eba4ecc6acdd82f70b653b56a18cc9dfa4deb0a112c797ab89a51a103c3a9085d828523370c4d79d9484f4dc910735a2c9b5b85197cd9c073df7a54b40df8e1bf595bab957900c2a1a7dc40e88ed0c55c362ffbb7f88a0725a6ae73b936a639e951faf9c45ae74a2ece2f6f88e425ee41d2c60cb083a2fd6d07381908a7f629e32f89a553cf0794f54b8bdc7bd541d88464a4f80ac0b8b625a803a55de4b05a95fc7f8fc3d6d79858ccb269b7b8b21657654164a9aa29f4e8462377e9d234a41ea69841a4aaa1e5f89f9b074f6f71cb1ffaa450c3160b0e319ec81ad30101db66218b0c69f97c234465dc45849fcfd62d396f2b50ddcc0ed7dd8651431534232ab6d1186d7760770a1fc6c77553a79d0297194f794997ee47781094a76d9dccf632dcbb527b3e68950d9bb534245c7f08ae1d6ef2750292ae28e5e6dcfe2a69737dd7a1e453f3902ae90789e98c212905422099904d3bfb949bde187682a59c01aa8e6a9972a63d6aaef4d4139b10a24e063707f1aba79bd59e3f9709a873dff401d1f356c4be5e449ae0e2633a1fe50ed367fe56b0499957c3b6cabb42256547995ea998f3937d153897d1c83f1ad922d6835bdfa3b986dc6f4bd927a4ca13fbaa99b7b43758e2329d588f40fac718b16cca855468643f3818496b4915fe9a2bdd3e68889fea24bc1dfa6287a801d49a7bb84654147448550d2919e4df3a943a88cf616befea4e7a4fddb7969311c6837f9529966241be1e57ed2d773debc542986d09866905a3f63b6e1820086d52a70f039154e839da7ea852c33bf3722a048f61bbf068519e050b8788370fb130a42e9f5322dfff65b15d588f9e926b70e4530e8b66697cabb1e8514831431fa0eaecb49f9613ed5fd7bc50f897bda36d24d4296e143e2480e325ec09a77c03a07b4f86eb703085313ebeee94ef5b1cde3f6a7efd785772eb4034039f598c07819b769416a223fab824c4ac50086e78042a1ccf47b6c7ede8540cded4bd4c920ce6c2b7493a5634c5e96bb761373623ab473b121d555bfd5a8bc3f5c5418bed83ffd0d6492840550fccc0c35746370396d0190b7b1d2cadcc150877e0d197f692f97cec790c95e3d3959dc7c68aca37306c1bc13ad33848395dba5e3c9ce8090bc0e7e8312091773641be56411921e3d473321c6d8bd10b7d3f5aedd6620bcaa06474bbb298bc77297b8b5dcb9e6b33dbe676460cca825609857724cee245306d07fda287d5fe57c424c27cf9b6cf0f16d2c6a8071bd57c826d7371841cf43dab1b42421ce416d0d3a9c80bc807d2e6761e53f06b3e63c0af1b4548d820118421205f040f4ab35307871e4c7a21ff28082c29e02e89486064661898c0eb1811c70a6124c1f25d62c38794a3e87c312c870db7b60d0df8b57860c94d1a9c561b327fae3a68ce9ff4551e418eb00766f0341c5e796e3cbbbe6b4864928b966110256d5475eb1fd7b2893b60e19e859baaf23c9233a1b064771671ee2d07c151e2e99c37a116a338788052a726a8519b8335e9ff4f71d00ab634543c20ddea1bf57d4f2b797182ff19618b6974d2b69d9f052934d527a1830bf2785842f35eaf32b65b7c9fdd6f0c41756072a59c0cce0b7305740729f1daa14e0092da9d022321b726d658fcef55affa2bbf36ad788f1f423b7dfd328435b4d5df315143d8b8028ba4bea6134a3dc9720c73d5e66b8b8168752eea6b78c75f04efd9677dbe419f13f5e1c9764276a83821b710307d8f85359b34d038ff17de45e8739d4b647fd1a8d794a3273d922af3374f5d3c75b8345b9dfdabb2c0418a358921e0e73d0fe88caab1741b913673e22ff4b59afa0f653a423d9b2bb20cbf07951a349eea18a891b4f4dc6df8e42a6181284f643de5fd2924ae54f672a1920343476c67333e1e8205bf4877b1251a83f417936714edb1c6975ba7969d2fcc2e69024a4669ac2f998116ade1bd84568b8f3f1fccbe95df9ed21db77315b7469f30bfae418415d9cb5aeea627ba6811e30d56d4f4bfe5f794ea4243e3cdfad3ef55199699b8433083b6f72f95effc5f2f613cfcefaf0b94e801ebcb7095a1474ee93142b82c9bf9886617b6bf69d08c83c76cd21d4cce5872d99de8e54bbff915ab923b2d24bb3aa178dd50b44fd0eb880ef33ca51d4bf5f0fbc8ffe18afe4245397f277e4efad955baa10cf56613481253d69c02e7661714b68be0fd64f29bdafbc8b4a0b30bd6709c67fe8e8915d0479b3902b1d0169fb5486b02e966ad5d8a2bcf42ecba59177cd85e17239667f6b045d1f873ce24733ae17e2d8432709062e786a32ac925121f1b0d46c66d4fb9088f4aa0cfe2149f6c2cb5b75d45349bc88fbd47e01ea07e7cd573335aab8d389846566800dd084bc3caa95f7632719c651f2d33be0fb56347c063b3c6e3e75c5e58caeb4c37574859b78c1ed018fbeed788a4305a9ee1c1ef65a0c83a7cd717a8c08ecd4e86370ffffd6d40a89a0b1e8c15a10ad5406e867e49319ad83bfbb925d5e240b4bd44fd751e7510d5ea03a6cab95f37155d1fd69aaea1db4a1f53714eb90e669209cf634f84a50c85bdc51838ebbb545b4387790df67f0122740c2abc910cf83230394172a56c9ffda6675bb8bb39846730a1bf764aeb92407c90a194da880cb8a4efb5b57a8311d864209c7fd226b93582b6b11eec559abfbba653c0569c219d3a2e60555cb739f9d32d564f23c4e98be78aa553610822af426f961df0df2185c61ccaa22b2a6aa6fb3e917bdfb2be9c3ffb8a50821321119c4cf4917db39548abc17bfba267fa50f6af15c560a21055f967f1ca6f656ddb556f9c7e17a771eeef7e80940d1c14ddf2c27647686fd0526460036aeea395fb10abef2be2ea96c9bb380370c08d1568d30eea0f3e6b7cf8f7edc7b36d4d0affd249330707b54ee620f208d885791171eb67a25a80fcc6922e0258c9673b6576564949dfa5bed9a0299bf952aade654de16e22d54fcd391ded6adab94ff621efcd91ef69acf8dfa1b22692ba3e49cd1d3fbed6db1402065ab37e457056877977ebac33ef566f28a19b9acb67a9cc53feb156814e880b3dd5a9119ffdbc5a45c20ea375f2882575b9a28740eebf63f2895d9ffac1ec33cbdcdede98a201424d000df1efd64dd7268cc1b2366ccfb09754822dafdb1821de5e6ebee09608e82e679fafb7a5100172f26998d31d7f27c2b310f0372c3b5e888f8e6efb56074177bf6a2a5bbd9ed070ad5aaf23ce144d1ac86cad110e5916a8a57e1e7fc3d37353f84f2f6d43d92ab8b35040467f3f8b1d23fac021bbac3710edc8e2e26d794db38e48020f63e94d4b4dca3e015537a8e3008274d55f81af931a0faf1a438444b6a0489b93f7b88f81f761eae0f82e60cb0cf2745ca8c9e30d3cc189c1405b1994ed71b00d90ea7a94102916cdc915620c363d04e51eabaaca6c2814a7c1e7aaeec80bdc13135b813e6d0eea83446a5c57ec29695c302c0d8da65b61fe8ada51a36e1aff34d449f9eb70cb94931226121ab121a971c2fc070ca84272d122c1696f52fbd5ed06783abe188dcf133c4d41e10295f6ffda69fa8c5a7c0fec3425a2d60523a60d280b5ce34eac5911268172e772fefba63a6f5c6dafa9e500a5e1355fb614613f8fc1ef5e5466fa19212bcdc349a865f4cee6ea80b11a410bb6e4ad677393973e38621d25ff6c4876ef8a8d2ba651be4a78d2ba9fafadcea8eff9cca3f4ab71a0b84917794e521220dad099ac8aaf32abd162348879e4299e4d46395f9d55267b635e18ca2e2fc96146b96c8a8055130b8d8cb10cc31382df34057bd8637f86e48adc854af408226752a04df8d0362db263e0959f2bd7e8a4d33a8c4b257e19d308280baf40cced1b3cd3a86ee22df0da49d750539eee1104e99a9f8a065e5499c73125a8a8430eda7aee156821a97c237611b50f682a2cccd0969304f0a50ae98800dfb32ee1bcfeab98182c34a51e67fa5bd738c22c44fc1269ce73f464edd2f31296e92e62df51cf55798ae2e3c33c57b09f4ecd13469122095a3563f95f0a04cf58dcea4aed5e8bdda7617863cbc37a97ebadb46d679f7e30014d96d0ac7ce9484368fa5fd19cbc3d139410a2bd7ffacef1bdf76dd1d5f34d2392fcb91c7585fc1ae7d8ba2aa8ded9645d5a5e76e2279b6e0692101137da946dfbd3836476f5dad7fed70115d716dce87b5ad755e5653a709f5aa42265ec9657ed406cc9256af3628c0116b8e1d23306983e9adbc19dec354870c98e2e76566895df933a80c4c36b617db4bbda1a4ca7d6c80a43734471fc92d0bdeacfc125dddd73febd8f7ef84f221d52ae71372cee802d59013a15958e850f8fdf46d8fd3b874633daf3b1f346470456c05722258480959dd6afcffa1f3f2ca033011339c5cb85b7d1c9b5916fb8dc9c2783df64eb5cca5af83a74fe5bb259f93722842eb4ac851e71f3cfd67a39590e7f8e20f018744b9277e6eb46b5f211df5f767ef29dc9a972e14c40ea2d4624f187f301c1116d3a61adeb5c6f7ccc021ac5e18d8b40d7f1f19daf4445c06e72db8701c267c0144c92cddd49af7a87aca5aa05d0e380dd27cc780d2f7db3bef26cc4fd358543e19d73179b879f7bdc702ab405270c93a3ed64153e20b5b663773a2ad4e8e3e1e8eaf39ec80d75d02f74ff94f0e095240a564eeece4fc9bcf19bf2243c700e1dae14a1b0217013977bfa05f681abc37714fe462d0a632044ce52fdaa1c1a806b1eb4370e23ca0247e536165aa9f1c2af8adfea369ee1f4a2c7823a7baef028a1e77501db48db6aa0d7e30969f7197368db02d443803b53b2899315f7e2ba9c5ae952a3866b4ea60f3d669e0a91f7ef640cd938646bf8822fe455f0302fccf87c7fad6daf38fde038fa596b83a9fd5bf675669a6cb2bab44c6617f07950bf34edb93bbcb4174630f275dbda7a0631c4b456e5f80eb6258c1874e77d426743e478917fe44b73dc203baa2cc442b84b5818409abae99d97a28754969bd393df", 0x1000}}, 0xfffffe38)
getsockopt$netrom_NETROM_T1(r5, 0x103, 0x1, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000011c0)={'tunl0\x00', &(0x7f0000000440)={'gre0\x00', 0x0, 0x7, 0x80, 0x1000, 0x80002e4, {{0x1f, 0x4, 0x0, 0x1d, 0x7c, 0x63, 0x0, 0x10, 0x29, 0x0, @multicast2, @remote, {[@generic={0x89, 0x12, "6d6429707c76eb7e1025b97a77173c1a"}, @lsrr={0x83, 0x7, 0x74, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @rr={0x7, 0x7, 0xba, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x4, 0x61, 0x3, 0x5}, @cipso={0x86, 0x14, 0x1, [{0x1, 0xe, "52b4167a9879ba15273abe75"}]}, @generic={0x86, 0x7, "4dc60f8600"}, @noop, @generic={0x83, 0x9, "0d9b7486eb71a1"}, @rr={0x7, 0x7, 0xbf, [@private=0xa010100]}, @cipso={0x86, 0x17, 0x0, [{0x2, 0x11, "3a00ac96a0e6503000b7b05c7c31c2"}]}]}}}}})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = openat$cgroup_ro(r1, &(0x7f0000000240)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', './file0', [{0x20, '}${--,\xc8^'}, {0x20, ':&.,.'}]}, 0x1a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r8, 0x0)
preadv(r8, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)

15.336174552s ago: executing program 2 (id=3593):
unshare(0x6a040000)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x5, 0x3032, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x78}}, 0x0)
r0 = memfd_create(&(0x7f0000000040)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbc\x04\x00i\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\x02\xf1\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10Dh$P\x99\xbf2\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9aY\xbb\x86O\xcc:8\x7f\n\xeeAS]\xb2\xb2\x1b9K\x92\\f\xfaf\xaaG\x1fK\x90\xdaK^\rT\x8cW\v\xda~\\-u\xc9\xe3\xef\x1fvL', 0x6)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="1c0000f5"], 0xfd1)
r3 = syz_init_net_socket$ax25(0x3, 0x2, 0xf9)
ioctl$SIOCAX25CTLCON(r3, 0x5411, &(0x7f0000000040)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x5, 0x7, 0x5, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]})
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000100100000d"], 0x18}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="010000000300000004000000ff07000001"], 0x48)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r5, &(0x7f00000020c0)={0x2020}, 0x2020)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)

15.165737708s ago: executing program 2 (id=3599):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x3, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600]}}], 0xffc8)
lsetxattr$system_posix_acl(0x0, &(0x7f0000000440)='system.posix_acl_default\x00', 0x0, 0x4, 0x0)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x44000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="380000003e0007012fbd7000fcdbdf25047c0000040000002000018006000600800a0000140019"], 0x38}}, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000140)=0x7)
ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000140)=0xffffffc0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04002920"], 0x7)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="040effff2820"], 0x7)

15.165496956s ago: executing program 2 (id=3600):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x581, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x4d4f7}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ARP_INTERVAL={0x8, 0x7, 0x7}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4042}, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00')
read$FUSE(r1, &(0x7f0000000080)={0x2020}, 0x2020)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_DEST(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000003c0)={0x28, r3, 0xd07, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040010}, 0x40)
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x1a4, r3, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x44, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x4}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x84}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'ovf\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x9, 0x6, 'none\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@remote}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x78c}]}, @IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@private0}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1e9e}]}, @IPVS_CMD_ATTR_DAEMON={0x34, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'virt_wifi0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_DEST={0x6c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast1}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@loopback}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@private=0xa010100}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@dev={0xfe, 0x80, '\x00', 0x22}}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x180000}, @IPVS_DEST_ATTR_WEIGHT={0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x298}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x5a}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x87}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x40000}, 0x4044010)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x581, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x4d4f7}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ARP_INTERVAL={0x8, 0x7, 0x7}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4042}, 0x0) (async)
syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') (async)
read$FUSE(r1, &(0x7f0000000080)={0x2020}, 0x2020) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), 0xffffffffffffffff) (async)
sendmsg$IPVS_CMD_SET_DEST(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000003c0)={0x28, r3, 0xd07, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040010}, 0x40) (async)
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x1a4, r3, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x44, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x4}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x84}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'ovf\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x9, 0x6, 'none\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@remote}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x78c}]}, @IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@private0}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1e9e}]}, @IPVS_CMD_ATTR_DAEMON={0x34, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'virt_wifi0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_DEST={0x6c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast1}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@loopback}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@private=0xa010100}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@dev={0xfe, 0x80, '\x00', 0x22}}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x180000}, @IPVS_DEST_ATTR_WEIGHT={0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x298}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x5a}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x87}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x40000}, 0x4044010) (async)

15.095361302s ago: executing program 2 (id=3601):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x4c800)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x40049366, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000500)=@gcm_128={{0x303}, "a95972fc5ec50719", "8e083700daf38a6d69e9b5e9c2f133d7", "6a3a05b9", "12772541f8eb02bb"}, 0x28)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='freezer.state\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000000), 0xffffff6a)
sendfile(r0, r3, 0x0, 0xffffffff004)
mount$9p_fd(0x0, 0x0, 0x0, 0x2004000, 0x0)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x80241, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x0)

15.094873132s ago: executing program 2 (id=3603):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000005ec0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000005f00)={'wlan1\x00', <r2=>0x0})
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000040)={0x18, 0x78, 0x601, 0x0, 0x0, "", [@typed={0x7, 0x0, 0x0, 0x0, @str='\a\x00\x00'}]}, 0x18}], 0x1}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x0, 0x2, 0x40000002, 0x0, 0xa17433da3c5d69a5, 0x2, 0x81}, 0x9c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$RTC_UIE_ON(r3, 0x7003)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000380), 0xffffffffffffffff)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r8, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r8, 0x3)
accept4$bt_l2cap(r8, &(0x7f0000000200), 0x0, 0x800)
syz_emit_vhci(&(0x7f0000000380)=ANY=[@ANYBLOB="043e130100c900", @ANYRESHEX], 0x16)
sendmsg$TIPC_NL_MON_PEER_GET(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="030b0041000000000000000000000c000980080002bb76b0d9ee"], 0x20}}, 0x0)
setitimer(0x0, &(0x7f00000000c0)={{}, {0x1}}, 0x0)
alarm(0x709abc910000)
alarm(0x0)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f00000004c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000c40)={0x3ac, r7, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x30, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6a57}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10d9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x16}]}]}, @TIPC_NLA_BEARER={0x64, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x9, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x60, @private1}}}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}]}, @TIPC_NLA_SOCK={0x40, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5b8a}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x40}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}]}, @TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}]}, @TIPC_NLA_BEARER={0xdc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x4, @empty, 0x9}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x81, @private0={0xfc, 0x0, '\x00', 0x1}, 0x6}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x15fc, @loopback, 0x6}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_MEDIA={0xe4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x412}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd204eb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8c800000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7b6e}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xef}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_BEARER={0x8c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa}]}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @local}}, {0x14, 0x2, @in={0x2, 0x4e22, @multicast2}}}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}]}, @TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1c}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xffff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xf7f3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x81}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xb}]}]}, 0x3ac}, 0x1, 0x0, 0x0, 0x808}, 0x20000001)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000006000)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01c48a3d0a436fac52252100000008000300", @ANYRES32=r2, @ANYBLOB="0600eb00000800000400ec000a00060008021100000100000600f70000ff000008009e"], 0x44}, 0x1, 0x0, 0x0, 0x4048020}, 0x28000)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2004000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x2c, r1, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x4, 0x30}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000080}, 0x44080)

3.328142979s ago: executing program 4 (id=3796):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = creat(&(0x7f0000000100)='./file0/file0\x00', 0x22)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000140), 0x12)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)

3.321017485s ago: executing program 4 (id=3797):
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b34, &(0x7f00000000c0)={'wlan0\x00'})

3.257705248s ago: executing program 4 (id=3798):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = creat(&(0x7f0000000100)='./file0/file0\x00', 0x22)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000040)={0x49, r0}, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r4, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)
r5 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffc000/0x1000)=nil)
openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x90009427, &(0x7f0000000180))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000440)=ANY=[@ANYBLOB="4400000010000305fcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006d616373656300000c000280060002404e20000008000500", @ANYRES32=r8, @ANYBLOB="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"], 0x44}, 0x1, 0x0, 0x0, 0x8090}, 0x44000)
shmctl$IPC_RMID(r5, 0x0)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r10 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x103301)
ioctl$USBDEVFS_CONTROL(r10, 0xc0105500, &(0x7f0000000080)={0x80, 0x6, 0x101, 0x0, 0xec, 0x2, 0x0})
r11 = openat$cgroup_procs(r9, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r11, &(0x7f0000000140), 0x12)
mlock2(&(0x7f0000bdd000/0x2000)=nil, 0x2000, 0x0)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)
write(r9, &(0x7f0000000200)="2b9712c07fe5508eee9774449a6d57ad667c20588504b0e9d295a499ea34cc7c0a60a3ae6a88b133fa8267a998e91f1d67ce89fc3ccec5dc910053011793aefabbf1b9e5defd553905d8b07a0f6ef5d8d61fc6b7ec5d21881ed5e48aec9d05d85b52fc9636b62c060eb23fd72530a8bb7786defe9a5d6c7829897acff86ff1fd9568254b3719eddac7e399e64251627d52556ffdeead1a48f2e65de97d5398bbc89b8b25133347be4f4681519ba3d727f48d6049b66092e578dbb612606a002cb27b5aeaef40d08e85766ef9cd", 0xcd)

1.903423479s ago: executing program 1 (id=3822):
unshare(0x6a040000)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
socket$inet_icmp(0x2, 0x2, 0x1)

1.804715895s ago: executing program 1 (id=3823):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000005ec0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000005f00)={'wlan1\x00', <r2=>0x0})
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000001c0)={<r5=>0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
socket$netlink(0x10, 0x3, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000400)={r5, @in6={{0xa, 0x4e21, 0x4, @empty, 0x9}}, 0x4, 0x4, 0x624e, 0xa, 0x55, 0x7f}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000000c0)={r5, @in={{0x2, 0x4e23, @empty}}, 0x0, 0x2, 0x40000002, 0x0, 0xa17433da3c5d69a5, 0x2, 0x81}, 0x9c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$RTC_UIE_ON(r3, 0x7003)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000380), 0xffffffffffffffff)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r8, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r8, 0x3)
accept4$bt_l2cap(r8, &(0x7f0000000200), 0x0, 0x800)
syz_emit_vhci(&(0x7f0000000380)=ANY=[@ANYBLOB="043e130100c900", @ANYRESHEX], 0x16)
sendmsg$TIPC_NL_MON_PEER_GET(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="030b0041000000000000000000000c000980080002bb76b0d9ee"], 0x20}}, 0x0)
setitimer(0x0, &(0x7f00000000c0)={{}, {0x1}}, 0x0)
getitimer(0x0, &(0x7f0000001740))
alarm(0x709abc910000)
alarm(0x0)
sendmsg$kcm(r3, &(0x7f00000002c0)={&(0x7f00000000c0)=@rc={0x1f, @any, 0x3f}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000200)="295285aa23002c9bdbbd30eec263cab26c127f7f7da8a55b099b55e7360b57b3a91060f38805e030afd0e6ddba0012760a509eac2718eb6eb8a1e052e6f3264acb2e2019b4faeeb34556d07e4d2ab5f76ebdf8b518a70e6d5ece9ff28916a6a7f98a8c6c8b25fa7d9f1bc1880947b9a6b5df175260399da7aeccc92fd9b987df04338b25253795517362", 0x8a}], 0x1, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x100}, 0x48054)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000006000)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01c48a3d0a436fac52252100000008000300", @ANYRES32=r2, @ANYBLOB="0600eb00000800000400ec000a00060008021100000100000600f70000ff000008009e"], 0x44}, 0x1, 0x0, 0x0, 0x4048020}, 0x28000)

952.32608ms ago: executing program 1 (id=3831):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newlink={0x5c, 0x10, 0x401, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, 0x0, 0x4288}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @mcast1}]}}}, @IFLA_IFNAME={0x14, 0x3, 'geneve1\x00'}]}, 0x5c}}, 0x2000000)
socket$kcm(0x29, 0x2, 0x0)

952.058152ms ago: executing program 1 (id=3832):
socket$inet6(0xa, 0x4, 0x83)
r0 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x1a6c42)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$unix(0x1, 0x2, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000fddbdf250700000008000300", @ANYRES32=r4, @ANYBLOB="0c009900ff070000700000001400040073797a6b616c6c6572300000"], 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r7, 0x0)
r8 = dup(r0)
write$UHID_INPUT(r8, &(0x7f0000001c00)={0x8, {"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", 0x1000}}, 0xfffffe38)

862.925022ms ago: executing program 1 (id=3833):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0xfffffffffffffe1a, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff9", 0x22, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)

642.195278ms ago: executing program 4 (id=3834):
r0 = socket$netlink(0x10, 0x3, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x28, &(0x7f0000000240), 0x4)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000002400)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x1}}, './file0\x00'})
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)
syz_open_dev$usbfs(0x0, 0x4000000000000d, 0x19d301)

641.382452ms ago: executing program 4 (id=3835):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0xfffffffffffffe1a, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf74", 0x3f, 0x0, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)

591.791238ms ago: executing program 4 (id=3836):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004380)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x4000000000000, {0x0, 0x200000000, 0x20000000, 0x4, 0x6, 0x0, {0x0, 0x10041, 0x0, 0xc, 0x0, 0x100, 0x10000, 0x2, 0x0, 0x2000, 0xfffffffc, r2, 0x0, 0x7, 0x57}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004300)={0x50, 0x0, r1, {0x7, 0x26, 0x6caff549, 0xfffffffff323ca46, 0x0, 0xfffc, 0x1, 0x80, 0x0, 0x0, 0x1, 0x10001}}, 0x50)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x1)
lstat(&(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000840))

231.380697ms ago: executing program 3 (id=3839):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x78, 0x101301)
r1 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
pwritev2(r1, &(0x7f0000000080)=[{&(0x7f0000000340)='L', 0x1}], 0x1, 0x87fffff, 0x7, 0x4)
ioctl$USBDEVFS_CONTROL(r0, 0xc0105500, &(0x7f0000000140)={0x20, 0xc, 0x101, 0xfffd, 0x0, 0x0, 0x0})

231.021907ms ago: executing program 3 (id=3840):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000007c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010800000000030000000b00000008000300", @ANYRES32=r2, @ANYBLOB="2000508005000200000000000800030006ac0f08090001"], 0x3c}}, 0x20000000)

171.0757ms ago: executing program 3 (id=3841):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400, 0x0, 0x0, 0x0, 0x20000000}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x200000, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
utimes(&(0x7f0000000640)='./file0\x00', &(0x7f0000000180)={{}, {0x0, 0xea60}})

170.384184ms ago: executing program 3 (id=3842):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x50) (async)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4) (async)
bind$inet(r1, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008038, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
read$FUSE(r2, &(0x7f0000000640)={0x2020}, 0x2020) (async)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r3, 0x107, 0x9, &(0x7f0000000480)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) (async)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x300) (async)
setsockopt$inet_int(r1, 0x0, 0x14, &(0x7f0000000000)=0x40, 0x4)
recvmmsg(r1, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000027b8af8ff00000000bfa200000000000007020000f8bfffffb70300000800000009000000000000008502000013ffbf000000950000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x3}) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000040)={0x80, 0x18, 0x2, 0xfffffff7, 0x0, 0x9}) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r6}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r5}, 0x10) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0) (async)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000c80)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newqdisc={0x3c, 0x24, 0x300, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_INTERVAL={0x8, 0x3, 0x20f}]}}]}, 0x3c}}, 0x0)

71.155446ms ago: executing program 3 (id=3843):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
pipe2$9p(&(0x7f0000001900)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r4 = dup(r3)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0xffffff8c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}})

71.04828ms ago: executing program 3 (id=3844):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0xfffffffffffffe1a, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf74", 0x3f, 0x0, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)

453.786µs ago: executing program 1 (id=3845):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0xffe0}, {}, {0xa, 0x19}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0x2}]}}]}, 0x38}, 0x1, 0xf2ff0000, 0x0, 0x80}, 0x20000000)

0s ago: executing program 33 (id=3603):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000005ec0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000005f00)={'wlan1\x00', <r2=>0x0})
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000040)={0x18, 0x78, 0x601, 0x0, 0x0, "", [@typed={0x7, 0x0, 0x0, 0x0, @str='\a\x00\x00'}]}, 0x18}], 0x1}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x0, 0x2, 0x40000002, 0x0, 0xa17433da3c5d69a5, 0x2, 0x81}, 0x9c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$RTC_UIE_ON(r3, 0x7003)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000380), 0xffffffffffffffff)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r8, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r8, 0x3)
accept4$bt_l2cap(r8, &(0x7f0000000200), 0x0, 0x800)
syz_emit_vhci(&(0x7f0000000380)=ANY=[@ANYBLOB="043e130100c900", @ANYRESHEX], 0x16)
sendmsg$TIPC_NL_MON_PEER_GET(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="030b0041000000000000000000000c000980080002bb76b0d9ee"], 0x20}}, 0x0)
setitimer(0x0, &(0x7f00000000c0)={{}, {0x1}}, 0x0)
alarm(0x709abc910000)
alarm(0x0)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f00000004c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000c40)={0x3ac, r7, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x30, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6a57}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10d9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x16}]}]}, @TIPC_NLA_BEARER={0x64, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x9, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x60, @private1}}}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}]}, @TIPC_NLA_SOCK={0x40, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5b8a}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x40}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}]}, @TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}]}, @TIPC_NLA_BEARER={0xdc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x4, @empty, 0x9}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x81, @private0={0xfc, 0x0, '\x00', 0x1}, 0x6}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x15fc, @loopback, 0x6}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_MEDIA={0xe4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x412}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd204eb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8c800000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7b6e}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xef}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_BEARER={0x8c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa}]}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @local}}, {0x14, 0x2, @in={0x2, 0x4e22, @multicast2}}}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}]}, @TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1c}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xffff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xf7f3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x81}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xb}]}]}, 0x3ac}, 0x1, 0x0, 0x0, 0x808}, 0x20000001)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000006000)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01c48a3d0a436fac52252100000008000300", @ANYRES32=r2, @ANYBLOB="0600eb00000800000400ec000a00060008021100000100000600f70000ff000008009e"], 0x44}, 0x1, 0x0, 0x0, 0x4048020}, 0x28000)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2004000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x2c, r1, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x4, 0x30}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000080}, 0x44080)

kernel console output (not intermixed with test programs):

7.134493][ T6047] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  177.245086][T28927] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  177.269798][ T6047] usb 9-1: device descriptor read/64, error -71
[  177.298431][T28944] validate_nla: 12 callbacks suppressed
[  177.298442][T28944] netlink: 'syz.2.3143': attribute type 10 has an invalid length.
[  177.344950][T28961] netlink: 'syz.1.3146': attribute type 1 has an invalid length.
[  177.345391][T28982] netlink: 'syz.2.3148': attribute type 10 has an invalid length.
[  177.347394][T28961] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3146'.
[  177.381264][ T6047] usb usb9-port1: attempt power cycle
[  177.384799][ T5975] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  177.394004][ T5966] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  177.465503][ T5975] Bluetooth: hci4: unexpected event for opcode 0x2028
[  177.730235][ T6047] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  177.751115][ T6047] usb 9-1: device descriptor read/8, error -71
[  177.997268][ T6047] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  178.028421][ T6047] usb 9-1: device descriptor read/8, error -71
[  178.096018][T29009] 9pnet_virtio: no channels available for device syz
[  178.141736][ T6047] usb usb9-port1: unable to enumerate USB device
[  178.240114][T29018] netlink: 'syz.2.3157': attribute type 10 has an invalid length.
[  178.262433][T29023] netlink: 'syz.2.3158': attribute type 25 has an invalid length.
[  178.266479][T29023] netlink: 184 bytes leftover after parsing attributes in process `syz.2.3158'.
[  178.269669][T29023] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3158'.
[  178.290829][   T40] audit: type=1400 audit(1756782011.015:890): avc:  denied  { mount } for  pid=29025 comm="syz.2.3159" name="/" dev="rpc_pipefs" ino=66635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  178.294553][ T5975] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  178.298150][   T40] audit: type=1400 audit(1756782011.034:891): avc:  denied  { read } for  pid=29025 comm="syz.2.3159" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  178.298174][   T40] audit: type=1400 audit(1756782011.034:892): avc:  denied  { open } for  pid=29025 comm="syz.2.3159" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  178.318570][   T40] audit: type=1400 audit(1756782011.034:893): avc:  denied  { ioctl } for  pid=29025 comm="syz.2.3159" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9378 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  178.499956][T29049] netlink: 'syz.3.3166': attribute type 10 has an invalid length.
[  178.649483][ T5975] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  178.688375][   T40] audit: type=1400 audit(1756782011.405:894): avc:  denied  { append } for  pid=29067 comm="syz.3.3172" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  178.688402][T29068] random: crng reseeded on system resumption
[  179.206276][T29072] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3174'.
[  179.238555][T29074] netlink: 'syz.3.3175': attribute type 10 has an invalid length.
[  179.241984][T29074] loop6: detected capacity change from 0 to 524287999
[  179.309297][T29078] qnx6: unable to read the first superblock
[  179.314395][T29078] qnx6: unable to read the first superblock
[  179.316438][T29078] qnx6: unable to read the first superblock
[  179.320309][   T40] audit: type=1400 audit(1756782012.019:895): avc:  denied  { create } for  pid=29069 comm="syz.1.3173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  179.533019][ T5975] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  179.668668][T29102] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3180'.
[  179.882160][T29105] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  179.985746][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  179.992993][T29121] netlink: 'syz.4.3183': attribute type 10 has an invalid length.
[  180.142601][T29146] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  180.231806][ T5967] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  180.246182][T29169] FAULT_INJECTION: forcing a failure.
[  180.246182][T29169] name failslab, interval 1, probability 0, space 0, times 0
[  180.250221][T29169] CPU: 1 UID: 0 PID: 29169 Comm: syz.2.3193 Not tainted syzkaller #0 PREEMPT(full) 
[  180.250236][T29169] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.250243][T29169] Call Trace:
[  180.250247][T29169]  <TASK>
[  180.250252][T29169]  dump_stack_lvl+0x16c/0x1f0
[  180.250268][T29169]  should_fail_ex+0x512/0x640
[  180.250282][T29169]  should_failslab+0xc2/0x120
[  180.250295][T29169]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  180.250307][T29169]  ? do_raw_spin_lock+0x12c/0x2b0
[  180.250319][T29169]  ? __d_alloc+0x32/0xae0
[  180.250351][T29169]  __d_alloc+0x32/0xae0
[  180.250367][T29169]  d_alloc_parallel+0x111/0x1480
[  180.250384][T29169]  ? avc_has_perm_noaudit+0x149/0x3b0
[  180.250397][T29169]  ? __d_lookup+0x25c/0x4a0
[  180.250413][T29169]  ? rcu_is_watching+0x12/0xc0
[  180.250427][T29169]  ? __pfx_d_alloc_parallel+0x10/0x10
[  180.250445][T29169]  ? __d_lookup+0x266/0x4a0
[  180.250463][T29169]  lookup_open.isra.0+0x665/0x1580
[  180.250481][T29169]  ? proc_sys_permission+0x61/0x1a0
[  180.250498][T29169]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  180.250516][T29169]  ? irq_entries_start+0xd0/0xcb0
[  180.250529][T29169]  ? irq_entries_start+0xd0/0xcb0
[  180.250539][T29169]  ? mnt_get_write_access+0x20c/0x300
[  180.250555][T29169]  path_openat+0x893/0x2cb0
[  180.250569][T29169]  ? __pfx_path_openat+0x10/0x10
[  180.250582][T29169]  do_filp_open+0x20b/0x470
[  180.250595][T29169]  ? __pfx_do_filp_open+0x10/0x10
[  180.250611][T29169]  ? alloc_fd+0x471/0x7d0
[  180.250624][T29169]  do_sys_openat2+0x11b/0x1d0
[  180.250640][T29169]  ? __pfx_do_sys_openat2+0x10/0x10
[  180.250656][T29169]  ? __fget_files+0x20e/0x3c0
[  180.250669][T29169]  __x64_sys_openat+0x174/0x210
[  180.250685][T29169]  ? __pfx___x64_sys_openat+0x10/0x10
[  180.250700][T29169]  ? ksys_write+0x1ac/0x250
[  180.250713][T29169]  do_syscall_64+0xcd/0x4c0
[  180.250725][T29169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.250736][T29169] RIP: 0033:0x7f7c21b8ebe9
[  180.250746][T29169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.250757][T29169] RSP: 002b:00007f7c22a62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  180.250768][T29169] RAX: ffffffffffffffda RBX: 00007f7c21db5fa0 RCX: 00007f7c21b8ebe9
[  180.250775][T29169] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  180.250782][T29169] RBP: 00007f7c22a62090 R08: 0000000000000000 R09: 0000000000000000
[  180.250789][T29169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.250796][T29169] R13: 00007f7c21db6038 R14: 00007f7c21db5fa0 R15: 00007ffd9f6638a8
[  180.250805][T29169]  </TASK>
[  180.350320][T29203] netlink: 'syz.1.3195': attribute type 21 has an invalid length.
[  180.352109][T29206] FAULT_INJECTION: forcing a failure.
[  180.352109][T29206] name failslab, interval 1, probability 0, space 0, times 0
[  180.352861][T29203] IPv6: NLM_F_CREATE should be specified when creating new route
[  180.357025][T29206] CPU: 1 UID: 0 PID: 29206 Comm: syz.3.3197 Not tainted syzkaller #0 PREEMPT(full) 
[  180.357041][T29206] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.357048][T29206] Call Trace:
[  180.357052][T29206]  <TASK>
[  180.357057][T29206]  dump_stack_lvl+0x16c/0x1f0
[  180.357072][T29206]  should_fail_ex+0x512/0x640
[  180.357086][T29206]  should_failslab+0xc2/0x120
[  180.357099][T29206]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  180.357111][T29206]  ? __alloc_skb+0x2b2/0x380
[  180.357122][T29206]  __alloc_skb+0x2b2/0x380
[  180.357132][T29206]  ? __pfx___alloc_skb+0x10/0x10
[  180.357144][T29206]  netlink_dump+0x19b/0xd30
[  180.357156][T29206]  ? __pfx_netlink_dump+0x10/0x10
[  180.357166][T29206]  ? bpf_lsm_capable+0x9/0x10
[  180.357183][T29206]  ? security_capable+0x31/0x260
[  180.357202][T29206]  ? __inet_diag_dump_start+0x434/0x7f0
[  180.357224][T29206]  ? __dev_queue_xmit+0xaf1/0x4490
[  180.357247][T29206]  __netlink_dump_start+0x6d6/0x990
[  180.357263][T29206]  inet_diag_rcv_msg_compat+0x275/0x2d0
[  180.357280][T29206]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  180.357299][T29206]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  180.357322][T29206]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  180.357344][T29206]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  180.357367][T29206]  ? sock_diag_rcv_msg+0x315/0x790
[  180.357391][T29206]  ? rcu_is_watching+0x12/0xc0
[  180.357411][T29206]  ? lock_release+0x201/0x2f0
[  180.357435][T29206]  sock_diag_rcv_msg+0x34a/0x790
[  180.357459][T29206]  netlink_rcv_skb+0x155/0x420
[  180.357475][T29206]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  180.357493][T29206]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  180.357507][T29206]  ? netlink_deliver_tap+0x1ae/0xd30
[  180.357522][T29206]  netlink_unicast+0x5aa/0x870
[  180.357541][T29206]  ? __pfx_netlink_unicast+0x10/0x10
[  180.357559][T29206]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  180.357579][T29206]  netlink_sendmsg+0x8d1/0xdd0
[  180.357598][T29206]  ? __pfx_netlink_sendmsg+0x10/0x10
[  180.357619][T29206]  ____sys_sendmsg+0xa95/0xc70
[  180.357640][T29206]  ? copy_msghdr_from_user+0x10a/0x160
[  180.357656][T29206]  ? __pfx_____sys_sendmsg+0x10/0x10
[  180.357676][T29206]  ? __pfx_kstrtouint+0x10/0x10
[  180.357691][T29206]  ? kstrtouint_from_user+0x13c/0x1d0
[  180.357702][T29206]  ___sys_sendmsg+0x134/0x1d0
[  180.357712][T29206]  ? __pfx____sys_sendmsg+0x10/0x10
[  180.357725][T29206]  ? rcu_is_watching+0x12/0xc0
[  180.357743][T29206]  __sys_sendmsg+0x16d/0x220
[  180.357754][T29206]  ? __pfx___sys_sendmsg+0x10/0x10
[  180.357798][T29206]  do_syscall_64+0xcd/0x4c0
[  180.357817][T29206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.357833][T29206] RIP: 0033:0x7f90f4b8ebe9
[  180.357846][T29206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.357867][T29206] RSP: 002b:00007f90f5a14038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.357885][T29206] RAX: ffffffffffffffda RBX: 00007f90f4db5fa0 RCX: 00007f90f4b8ebe9
[  180.357897][T29206] RDX: 0000000000044010 RSI: 0000200000000180 RDI: 0000000000000003
[  180.357904][T29206] RBP: 00007f90f5a14090 R08: 0000000000000000 R09: 0000000000000000
[  180.357911][T29206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.357918][T29206] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  180.357928][T29206]  </TASK>
[  180.477014][ T5967] Bluetooth: hci1: command 0x040f tx timeout
[  180.691390][   T53] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  180.856210][   T53] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  180.859628][   T53] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  180.862891][   T53] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  180.865860][   T53] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  180.869290][   T53] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  180.873818][   T53] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  180.876827][   T53] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  180.879271][   T53] usb 7-1: Product: syz
[  180.880577][   T53] usb 7-1: Manufacturer: syz
[  180.884113][   T53] cdc_wdm 7-1:1.0: skipping garbage
[  180.886396][   T53] cdc_wdm 7-1:1.0: skipping garbage
[  180.888718][   T53] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  180.890566][   T53] cdc_wdm 7-1:1.0: Unknown control protocol
[  181.090107][ T1347] usb 7-1: USB disconnect, device number 11
[  181.359487][ T5966] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  181.473865][T29263] netlink: 'syz.1.3208': attribute type 10 has an invalid length.
[  181.567691][ T5966] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  181.599027][ T5967] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  182.008580][T29318] FAULT_INJECTION: forcing a failure.
[  182.008580][T29318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.012687][T29318] CPU: 2 UID: 0 PID: 29318 Comm: syz.2.3223 Not tainted syzkaller #0 PREEMPT(full) 
[  182.012703][T29318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  182.012710][T29318] Call Trace:
[  182.012714][T29318]  <TASK>
[  182.012719][T29318]  dump_stack_lvl+0x16c/0x1f0
[  182.012733][T29318]  should_fail_ex+0x512/0x640
[  182.012747][T29318]  _copy_to_user+0x32/0xd0
[  182.012762][T29318]  simple_read_from_buffer+0xcb/0x170
[  182.012774][T29318]  proc_fail_nth_read+0x197/0x240
[  182.012787][T29318]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  182.012799][T29318]  ? security_file_permission+0x71/0x210
[  182.012817][T29318]  ? rw_verify_area+0xcf/0x6c0
[  182.012835][T29318]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  182.012847][T29318]  vfs_read+0x1e1/0xcf0
[  182.012858][T29318]  ? __pfx_sock_write_iter+0x10/0x10
[  182.012873][T29318]  ? __pfx___mutex_lock+0x10/0x10
[  182.012886][T29318]  ? __pfx_vfs_read+0x10/0x10
[  182.012896][T29318]  ? __fget_files+0x204/0x3c0
[  182.012908][T29318]  ? rcu_is_watching+0x12/0xc0
[  182.012923][T29318]  ? __fget_files+0x20e/0x3c0
[  182.012936][T29318]  ksys_read+0x12a/0x250
[  182.012947][T29318]  ? __pfx_ksys_read+0x10/0x10
[  182.012957][T29318]  ? fd_install+0x244/0x750
[  182.012970][T29318]  do_syscall_64+0xcd/0x4c0
[  182.012982][T29318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.012994][T29318] RIP: 0033:0x7f7c21b8d5fc
[  182.013003][T29318] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  182.013014][T29318] RSP: 002b:00007f7c22a62030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  182.013025][T29318] RAX: ffffffffffffffda RBX: 00007f7c21db5fa0 RCX: 00007f7c21b8d5fc
[  182.013032][T29318] RDX: 000000000000000f RSI: 00007f7c22a620a0 RDI: 0000000000000005
[  182.013039][T29318] RBP: 00007f7c22a62090 R08: 0000000000000000 R09: 0000000000000000
[  182.013046][T29318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.013052][T29318] R13: 00007f7c21db6038 R14: 00007f7c21db5fa0 R15: 00007ffd9f6638a8
[  182.013062][T29318]  </TASK>
[  182.093797][T29320] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  182.098591][T29320] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3224'.
[  182.101765][T29320] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3224'.
[  182.105145][T29320] usb usb8: usbfs: interface 0 claimed by hub while 'syz.2.3224' resets device
[  182.141693][T29330] netlink: 80 bytes leftover after parsing attributes in process `syz.3.3227'.
[  182.222807][T29339] FAULT_INJECTION: forcing a failure.
[  182.222807][T29339] name failslab, interval 1, probability 0, space 0, times 0
[  182.228601][T29339] CPU: 3 UID: 0 PID: 29339 Comm: syz.3.3229 Not tainted syzkaller #0 PREEMPT(full) 
[  182.228626][T29339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  182.228637][T29339] Call Trace:
[  182.228643][T29339]  <TASK>
[  182.228651][T29339]  dump_stack_lvl+0x16c/0x1f0
[  182.228674][T29339]  should_fail_ex+0x512/0x640
[  182.228695][T29339]  should_failslab+0xc2/0x120
[  182.228714][T29339]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  182.228730][T29339]  ? lock_release+0x201/0x2f0
[  182.228753][T29339]  ? skb_clone+0x190/0x3f0
[  182.228775][T29339]  skb_clone+0x190/0x3f0
[  182.228795][T29339]  ip6_finish_output2+0x1468/0x2020
[  182.228811][T29339]  ? lock_release+0x201/0x2f0
[  182.228835][T29339]  __ip6_finish_output+0x3cd/0x1010
[  182.228852][T29339]  ip6_output+0x1ca/0x3e0
[  182.228866][T29339]  ip6_mr_output+0x233/0x11b0
[  182.228888][T29339]  ? __pfx_ip6_mr_output+0x10/0x10
[  182.228905][T29339]  ? rcu_is_watching+0x12/0xc0
[  182.228927][T29339]  ? lock_release+0x201/0x2f0
[  182.228951][T29339]  ? nf_hook_slow+0x132/0x200
[  182.228971][T29339]  ? __ip6_local_out+0x2f1/0xa80
[  182.228990][T29339]  ? __pfx_dst_output+0x10/0x10
[  182.229006][T29339]  ? rcu_is_watching+0x12/0xc0
[  182.229026][T29339]  ? ip6_local_out+0x2a6/0x4d0
[  182.229041][T29339]  ip6_local_out+0x2a6/0x4d0
[  182.229058][T29339]  ip6_send_skb+0x112/0x460
[  182.229075][T29339]  udp_v6_send_skb+0x96f/0x1910
[  182.229103][T29339]  udpv6_sendmsg+0x23a8/0x2d20
[  182.229122][T29339]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  182.229143][T29339]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  182.229161][T29339]  ? avc_has_perm_noaudit+0x149/0x3b0
[  182.229180][T29339]  ? avc_has_perm+0x144/0x1f0
[  182.229196][T29339]  ? kasan_save_stack+0x33/0x60
[  182.229210][T29339]  ? kasan_save_track+0x14/0x30
[  182.229227][T29339]  ? kasan_save_free_info+0x3b/0x60
[  182.229253][T29339]  ? ___sys_sendmsg+0x141/0x1d0
[  182.229269][T29339]  ? __sys_sendmmsg+0x200/0x420
[  182.229284][T29339]  ? __x64_sys_sendmmsg+0x9c/0x100
[  182.229304][T29339]  ? __import_iovec+0x1dd/0x650
[  182.229325][T29339]  ? rcu_is_watching+0x12/0xc0
[  182.229343][T29339]  ? __might_fault+0xe3/0x190
[  182.229358][T29339]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  182.229380][T29339]  ? inet6_sendmsg+0x105/0x140
[  182.229403][T29339]  inet6_sendmsg+0x105/0x140
[  182.229423][T29339]  ____sys_sendmsg+0x705/0xc70
[  182.229443][T29339]  ? copy_msghdr_from_user+0x10a/0x160
[  182.229459][T29339]  ? __pfx_____sys_sendmsg+0x10/0x10
[  182.229479][T29339]  ? kfree+0x24f/0x4d0
[  182.229500][T29339]  ? __pfx__kstrtoull+0x10/0x10
[  182.229513][T29339]  ? ___sys_sendmsg+0x141/0x1d0
[  182.229532][T29339]  ___sys_sendmsg+0x134/0x1d0
[  182.229552][T29339]  ? __pfx____sys_sendmsg+0x10/0x10
[  182.229573][T29339]  ? rcu_is_watching+0x12/0xc0
[  182.229601][T29339]  ? __pfx___might_resched+0x10/0x10
[  182.229622][T29339]  __sys_sendmmsg+0x200/0x420
[  182.229639][T29339]  ? __pfx___sys_sendmmsg+0x10/0x10
[  182.229653][T29339]  ? lock_release+0x201/0x2f0
[  182.229682][T29339]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  182.229707][T29339]  ? fput+0x9b/0xd0
[  182.229728][T29339]  ? ksys_write+0x1ac/0x250
[  182.229744][T29339]  ? __pfx_ksys_write+0x10/0x10
[  182.229761][T29339]  __x64_sys_sendmmsg+0x9c/0x100
[  182.229776][T29339]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  182.229795][T29339]  do_syscall_64+0xcd/0x4c0
[  182.229813][T29339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.229831][T29339] RIP: 0033:0x7f90f4b8ebe9
[  182.229846][T29339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.229864][T29339] RSP: 002b:00007f90f5a14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  182.229880][T29339] RAX: ffffffffffffffda RBX: 00007f90f4db5fa0 RCX: 00007f90f4b8ebe9
[  182.229891][T29339] RDX: 0400000000000172 RSI: 0000200000003cc0 RDI: 0000000000000003
[  182.229902][T29339] RBP: 00007f90f5a14090 R08: 0000000000000000 R09: 0000000000000000
[  182.229926][T29339] R10: 0000000004001c00 R11: 0000000000000246 R12: 0000000000000002
[  182.229937][T29339] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  182.229956][T29339]  </TASK>
[  182.453708][T29363] FAULT_INJECTION: forcing a failure.
[  182.453708][T29363] name failslab, interval 1, probability 0, space 0, times 0
[  182.457931][T29363] CPU: 0 UID: 0 PID: 29363 Comm: syz.1.3235 Not tainted syzkaller #0 PREEMPT(full) 
[  182.457947][T29363] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  182.457954][T29363] Call Trace:
[  182.457958][T29363]  <TASK>
[  182.457963][T29363]  dump_stack_lvl+0x16c/0x1f0
[  182.457985][T29363]  should_fail_ex+0x512/0x640
[  182.457999][T29363]  should_failslab+0xc2/0x120
[  182.458013][T29363]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  182.458025][T29363]  ? skb_clone+0x190/0x3f0
[  182.458037][T29363]  ? netlink_deliver_tap+0x103/0xd30
[  182.458049][T29363]  skb_clone+0x190/0x3f0
[  182.458060][T29363]  netlink_deliver_tap+0xabd/0xd30
[  182.458082][T29363]  netlink_dump+0xa5f/0xd30
[  182.458096][T29363]  ? __pfx_netlink_dump+0x10/0x10
[  182.458106][T29363]  ? bpf_lsm_capable+0x9/0x10
[  182.458125][T29363]  ? __inet_diag_dump_start+0x434/0x7f0
[  182.458142][T29363]  ? __dev_queue_xmit+0xaf1/0x4490
[  182.458159][T29363]  __netlink_dump_start+0x6d6/0x990
[  182.458172][T29363]  inet_diag_rcv_msg_compat+0x275/0x2d0
[  182.458189][T29363]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  182.458207][T29363]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  182.458235][T29363]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  182.458252][T29363]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  182.458268][T29363]  ? sock_diag_rcv_msg+0x315/0x790
[  182.458285][T29363]  ? rcu_is_watching+0x12/0xc0
[  182.458300][T29363]  ? lock_release+0x201/0x2f0
[  182.458336][T29363]  sock_diag_rcv_msg+0x34a/0x790
[  182.458354][T29363]  netlink_rcv_skb+0x155/0x420
[  182.458366][T29363]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  182.458384][T29363]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  182.458398][T29363]  ? netlink_deliver_tap+0x1ae/0xd30
[  182.458410][T29363]  netlink_unicast+0x5aa/0x870
[  182.458423][T29363]  ? __pfx_netlink_unicast+0x10/0x10
[  182.458435][T29363]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  182.458449][T29363]  netlink_sendmsg+0x8d1/0xdd0
[  182.458461][T29363]  ? __pfx_netlink_sendmsg+0x10/0x10
[  182.458475][T29363]  ____sys_sendmsg+0xa95/0xc70
[  182.458490][T29363]  ? copy_msghdr_from_user+0x10a/0x160
[  182.458501][T29363]  ? __pfx_____sys_sendmsg+0x10/0x10
[  182.458515][T29363]  ? __pfx_kstrtouint+0x10/0x10
[  182.458527][T29363]  ? kstrtouint_from_user+0x13c/0x1d0
[  182.458537][T29363]  ___sys_sendmsg+0x134/0x1d0
[  182.458549][T29363]  ? __pfx____sys_sendmsg+0x10/0x10
[  182.458562][T29363]  ? rcu_is_watching+0x12/0xc0
[  182.458579][T29363]  __sys_sendmsg+0x16d/0x220
[  182.458590][T29363]  ? __pfx___sys_sendmsg+0x10/0x10
[  182.458604][T29363]  do_syscall_64+0xcd/0x4c0
[  182.458617][T29363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.458629][T29363] RIP: 0033:0x7f3f4678ebe9
[  182.458638][T29363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.458648][T29363] RSP: 002b:00007f3f4751e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  182.458660][T29363] RAX: ffffffffffffffda RBX: 00007f3f469b5fa0 RCX: 00007f3f4678ebe9
[  182.458667][T29363] RDX: 0000000000044010 RSI: 0000200000000180 RDI: 0000000000000004
[  182.458674][T29363] RBP: 00007f3f4751e090 R08: 0000000000000000 R09: 0000000000000000
[  182.458681][T29363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  182.458687][T29363] R13: 00007f3f469b6038 R14: 00007f3f469b5fa0 R15: 00007fffdf9a6578
[  182.458697][T29363]  </TASK>
[  182.611922][T29371] validate_nla: 3 callbacks suppressed
[  182.611934][T29371] netlink: 'syz.1.3237': attribute type 10 has an invalid length.
[  182.643314][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  182.643325][   T40] audit: type=1400 audit(1756782015.278:902): avc:  denied  { bind } for  pid=29380 comm="syz.3.3241" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  182.700587][T29393] FAULT_INJECTION: forcing a failure.
[  182.700587][T29393] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.704824][T29393] CPU: 3 UID: 0 PID: 29393 Comm: syz.1.3244 Not tainted syzkaller #0 PREEMPT(full) 
[  182.704841][T29393] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  182.704848][T29393] Call Trace:
[  182.704852][T29393]  <TASK>
[  182.704857][T29393]  dump_stack_lvl+0x16c/0x1f0
[  182.704873][T29393]  should_fail_ex+0x512/0x640
[  182.704887][T29393]  __kvm_read_guest_page+0x186/0x250
[  182.704904][T29393]  kvm_fetch_guest_virt+0x128/0x1a0
[  182.704918][T29393]  __do_insn_fetch_bytes+0x41e/0x6d0
[  182.704932][T29393]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[  182.704943][T29393]  ? kvm_tdp_mmu_map+0x931/0x20b0
[  182.704962][T29393]  x86_decode_insn+0xb90/0x5540
[  182.704979][T29393]  ? vmx_segment_cache_test_set+0x14b/0x400
[  182.704992][T29393]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  182.705005][T29393]  ? __pfx_x86_decode_insn+0x10/0x10
[  182.705021][T29393]  ? vmx_cache_reg+0x333/0x5e0
[  182.705037][T29393]  ? kvm_register_read_raw+0xe9/0x240
[  182.705050][T29393]  ? init_decode_cache+0xd/0x210
[  182.705064][T29393]  ? init_emulate_ctxt+0x337/0x510
[  182.705079][T29393]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  182.705094][T29393]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  182.705105][T29393]  x86_emulate_instruction+0x9b2/0x1a90
[  182.705122][T29393]  kvm_mmu_page_fault+0xbfd/0x1cb0
[  182.705134][T29393]  ? rcu_qs+0x2b/0xe0
[  182.705147][T29393]  ? __pfx_kvm_mmu_page_fault+0x10/0x10
[  182.705157][T29393]  ? clear_bhb_loop+0x60/0xb0
[  182.705169][T29393]  ? clear_bhb_loop+0x60/0xb0
[  182.705180][T29393]  ? clear_bhb_loop+0x60/0xb0
[  182.705191][T29393]  ? clear_bhb_loop+0x60/0xb0
[  182.705203][T29393]  ? rcu_is_watching+0x12/0xc0
[  182.705216][T29393]  ? __vmx_complete_interrupts+0x111/0x4e0
[  182.705229][T29393]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  182.705242][T29393]  ? vmx_vcpu_run+0x16c3/0x3090
[  182.705255][T29393]  handle_ept_violation+0x2b4/0x6e0
[  182.705268][T29393]  ? __pfx_handle_ept_violation+0x10/0x10
[  182.705281][T29393]  vmx_handle_exit+0x124c/0x1bd0
[  182.705293][T29393]  ? rcu_sync_enter+0x90/0x350
[  182.705311][T29393]  vcpu_run+0x31f4/0x5580
[  182.705324][T29393]  ? vmx_set_interrupt_shadow+0x63/0xe0
[  182.705342][T29393]  ? __pfx_vcpu_run+0x10/0x10
[  182.705355][T29393]  ? kvm_skip_emulated_instruction+0x7b/0xb0
[  182.705369][T29393]  ? complete_fast_pio_in+0x193/0x280
[  182.705385][T29393]  ? __pfx_complete_fast_pio_in+0x10/0x10
[  182.705401][T29393]  ? __local_bh_enable_ip+0xa4/0x120
[  182.705417][T29393]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  182.705432][T29393]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  182.705450][T29393]  kvm_vcpu_ioctl+0x5eb/0x1690
[  182.705464][T29393]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  182.705478][T29393]  ? preempt_count_add+0x76/0x150
[  182.705489][T29393]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  182.705502][T29393]  ? do_vfs_ioctl+0x128/0x14f0
[  182.705518][T29393]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  182.705535][T29393]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  182.705553][T29393]  ? rcu_is_watching+0x12/0xc0
[  182.705567][T29393]  ? __fget_files+0x204/0x3c0
[  182.705579][T29393]  ? hook_file_ioctl_common+0x145/0x410
[  182.705596][T29393]  ? selinux_file_ioctl+0x180/0x270
[  182.705611][T29393]  ? selinux_file_ioctl+0xb4/0x270
[  182.705626][T29393]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  182.705641][T29393]  __x64_sys_ioctl+0x18b/0x210
[  182.705658][T29393]  do_syscall_64+0xcd/0x4c0
[  182.705670][T29393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.705681][T29393] RIP: 0033:0x7f3f4678ebe9
[  182.705691][T29393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.705702][T29393] RSP: 002b:00007f3f4751e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  182.705714][T29393] RAX: ffffffffffffffda RBX: 00007f3f469b5fa0 RCX: 00007f3f4678ebe9
[  182.705721][T29393] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  182.705728][T29393] RBP: 00007f3f4751e090 R08: 0000000000000000 R09: 0000000000000000
[  182.705735][T29393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.705741][T29393] R13: 00007f3f469b6038 R14: 00007f3f469b5fa0 R15: 00007fffdf9a6578
[  182.705751][T29393]  </TASK>
[  183.021002][T29410] netlink: 'syz.2.3248': attribute type 10 has an invalid length.
[  183.054201][T29416] bio_check_eod: 4 callbacks suppressed
[  183.054212][T29416] syz.2.3249: attempt to access beyond end of device
[  183.054212][T29416] loop2: rw=0, sector=16, nr_sectors = 1 limit=0
[  183.060457][T29416] qnx6: unable to read the first superblock
[  183.062385][T29416] syz.2.3249: attempt to access beyond end of device
[  183.062385][T29416] loop2: rw=0, sector=0, nr_sectors = 1 limit=0
[  183.066299][T29416] qnx6: unable to read the first superblock
[  183.068234][T29416] qnx6: unable to read the first superblock
[  183.364405][T29446] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27685 sclass=netlink_route_socket pid=29446 comm=syz.2.3252
[  183.390820][ T5966] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  183.417369][   T40] audit: type=1400 audit(1756782016.043:903): avc:  denied  { bind } for  pid=29461 comm="syz.4.3256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  183.423857][T29462] netlink: 'syz.4.3256': attribute type 1 has an invalid length.
[  183.427590][T29462] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.3256'.
[  183.432537][T29463] delete_channel: no stack
[  183.434037][T29463] delete_channel: no stack
[  183.438088][T29462] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3256'.
[  183.441082][   T40] audit: type=1400 audit(1756782016.062:904): avc:  denied  { ioctl } for  pid=29461 comm="syz.4.3256" path="net:[4026532925]" dev="nsfs" ino=4026532925 ioctlcmd=0x8924 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  183.486512][T29466] netlink: 'syz.4.3257': attribute type 10 has an invalid length.
[  183.514394][T29480] netlink: 'syz.4.3261': attribute type 39 has an invalid length.
[  183.555279][ T5967] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  183.641728][T29507] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=29507 comm=syz.2.3267
[  183.759524][T29545] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3273'.
[  183.785598][ T5967] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  183.806978][T29559] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3277'.
[  183.810214][   T40] audit: type=1400 audit(1756782016.416:905): avc:  denied  { read } for  pid=29556 comm="syz.4.3277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  183.811680][T29558] netlink: 'syz.2.3278': attribute type 21 has an invalid length.
[  183.819460][T29558] netlink: 'syz.2.3278': attribute type 6 has an invalid length.
[  183.821900][T29558] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3278'.
[  183.833579][T29562] netlink: 'syz.4.3279': attribute type 1 has an invalid length.
[  183.836507][T29562] netlink: 'syz.4.3279': attribute type 2 has an invalid length.
[  183.838977][T29562] netlink: 1172 bytes leftover after parsing attributes in process `syz.4.3279'.
[  183.844326][   T40] audit: type=1400 audit(1756782016.455:906): avc:  denied  { read append } for  pid=29561 comm="syz.4.3279" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  183.850275][T29565] batadv_slave_1: entered promiscuous mode
[  183.852173][   T40] audit: type=1400 audit(1756782016.455:907): avc:  denied  { open } for  pid=29561 comm="syz.4.3279" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  183.857530][T29564] batadv_slave_1: left promiscuous mode
[  183.862996][   T40] audit: type=1400 audit(1756782016.455:908): avc:  denied  { map } for  pid=29561 comm="syz.4.3279" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  183.872623][   T40] audit: type=1400 audit(1756782016.455:909): avc:  denied  { write execute } for  pid=29561 comm="syz.4.3279" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  183.883575][T29569] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  183.904105][T29573] program syz.2.3283 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  184.091857][ T5967] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  184.221738][   T40] audit: type=1326 audit(1756782016.828:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29594 comm="syz.2.3290" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c21b8ebe9 code=0x0
[  184.357906][   T40] audit: type=1400 audit(1756782016.956:911): avc:  denied  { listen } for  pid=29594 comm="syz.2.3290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  184.749404][T29637] FAULT_INJECTION: forcing a failure.
[  184.749404][T29637] name failslab, interval 1, probability 0, space 0, times 0
[  184.754006][T29637] CPU: 2 UID: 0 PID: 29637 Comm: syz.3.3293 Not tainted syzkaller #0 PREEMPT(full) 
[  184.754023][T29637] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  184.754030][T29637] Call Trace:
[  184.754034][T29637]  <TASK>
[  184.754039][T29637]  dump_stack_lvl+0x16c/0x1f0
[  184.754072][T29637]  should_fail_ex+0x512/0x640
[  184.754090][T29637]  should_failslab+0xc2/0x120
[  184.754103][T29637]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  184.754115][T29637]  ? proc_alloc_inode+0x25/0x200
[  184.754132][T29637]  ? __pfx_proc_alloc_inode+0x10/0x10
[  184.754147][T29637]  proc_alloc_inode+0x25/0x200
[  184.754162][T29637]  alloc_inode+0x61/0x240
[  184.754178][T29637]  new_inode+0x22/0x1c0
[  184.754193][T29637]  ? proc_sys_lookup+0x1d2/0x400
[  184.754210][T29637]  proc_sys_make_inode+0x47/0x5c0
[  184.754226][T29637]  proc_sys_lookup+0x273/0x400
[  184.754243][T29637]  ? __pfx_proc_sys_lookup+0x10/0x10
[  184.754262][T29637]  ? __d_lookup+0x266/0x4a0
[  184.754280][T29637]  ? __pfx_proc_sys_lookup+0x10/0x10
[  184.754329][T29637]  lookup_open.isra.0+0x4d7/0x1580
[  184.754352][T29637]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  184.754370][T29637]  ? irq_entries_start+0xd0/0xcb0
[  184.754383][T29637]  ? irq_entries_start+0xd0/0xcb0
[  184.754393][T29637]  ? mnt_get_write_access+0x20c/0x300
[  184.754410][T29637]  path_openat+0x893/0x2cb0
[  184.754423][T29637]  ? __pfx_path_openat+0x10/0x10
[  184.754437][T29637]  do_filp_open+0x20b/0x470
[  184.754449][T29637]  ? __pfx_do_filp_open+0x10/0x10
[  184.754465][T29637]  ? alloc_fd+0x471/0x7d0
[  184.754484][T29637]  do_sys_openat2+0x11b/0x1d0
[  184.754500][T29637]  ? __pfx_do_sys_openat2+0x10/0x10
[  184.754516][T29637]  ? __fget_files+0x20e/0x3c0
[  184.754528][T29637]  __x64_sys_openat+0x174/0x210
[  184.754544][T29637]  ? __pfx___x64_sys_openat+0x10/0x10
[  184.754560][T29637]  ? ksys_write+0x1ac/0x250
[  184.754573][T29637]  do_syscall_64+0xcd/0x4c0
[  184.754585][T29637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.754596][T29637] RIP: 0033:0x7f90f4b8ebe9
[  184.754605][T29637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.754617][T29637] RSP: 002b:00007f90f5a14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  184.754634][T29637] RAX: ffffffffffffffda RBX: 00007f90f4db5fa0 RCX: 00007f90f4b8ebe9
[  184.754642][T29637] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  184.754649][T29637] RBP: 00007f90f5a14090 R08: 0000000000000000 R09: 0000000000000000
[  184.754656][T29637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  184.754663][T29637] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  184.754673][T29637]  </TASK>
[  184.875370][ T5967] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  184.921170][T29675] netlink: 'syz.3.3297': attribute type 10 has an invalid length.
[  184.925434][T29675] loop6: detected capacity change from 0 to 524287999
[  185.101629][T29688] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3299'.
[  185.106574][ T5966] Bluetooth: hci1: unexpected event for opcode 0x2028
[  185.249818][ T5966] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  185.265868][T29717] virtio-fs: tag </dev/sg0> not found
[  185.327861][T29731] netlink: 184 bytes leftover after parsing attributes in process `syz.4.3311'.
[  185.331187][T29731] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3311'.
[  185.352510][T29736] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3312'.
[  185.357849][   T12] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  185.361092][   T12] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  185.364745][   T12] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  185.367791][   T12] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  185.479008][ T5966] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  185.495370][T29758] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=29758 comm=syz.4.3315
[  185.521537][ T5967] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  185.640670][T29777] FAULT_INJECTION: forcing a failure.
[  185.640670][T29777] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.644692][T29777] CPU: 2 UID: 0 PID: 29777 Comm: syz.4.3320 Not tainted syzkaller #0 PREEMPT(full) 
[  185.644708][T29777] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.644715][T29777] Call Trace:
[  185.644720][T29777]  <TASK>
[  185.644724][T29777]  dump_stack_lvl+0x16c/0x1f0
[  185.644739][T29777]  should_fail_ex+0x512/0x640
[  185.644753][T29777]  _copy_to_user+0x32/0xd0
[  185.644768][T29777]  simple_read_from_buffer+0xcb/0x170
[  185.644782][T29777]  proc_fail_nth_read+0x197/0x240
[  185.644810][T29777]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  185.644822][T29777]  ? security_file_permission+0x71/0x210
[  185.644840][T29777]  ? rw_verify_area+0xcf/0x6c0
[  185.644857][T29777]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  185.644869][T29777]  vfs_read+0x1e1/0xcf0
[  185.644880][T29777]  ? __pfx___mutex_lock+0x10/0x10
[  185.644903][T29777]  ? __pfx_vfs_read+0x10/0x10
[  185.644914][T29777]  ? __fget_files+0x204/0x3c0
[  185.644926][T29777]  ? rcu_is_watching+0x12/0xc0
[  185.644941][T29777]  ? __fget_files+0x20e/0x3c0
[  185.644955][T29777]  ksys_read+0x12a/0x250
[  185.644965][T29777]  ? __pfx_ksys_read+0x10/0x10
[  185.644977][T29777]  do_syscall_64+0xcd/0x4c0
[  185.644990][T29777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.645001][T29777] RIP: 0033:0x7f6a85d8d5fc
[  185.645010][T29777] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  185.645022][T29777] RSP: 002b:00007f6a86b31030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  185.645034][T29777] RAX: ffffffffffffffda RBX: 00007f6a85fb5fa0 RCX: 00007f6a85d8d5fc
[  185.645041][T29777] RDX: 000000000000000f RSI: 00007f6a86b310a0 RDI: 0000000000000004
[  185.645048][T29777] RBP: 00007f6a86b31090 R08: 0000000000000000 R09: 0000000000000000
[  185.645054][T29777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.645061][T29777] R13: 00007f6a85fb6038 R14: 00007f6a85fb5fa0 R15: 00007ffc73190ea8
[  185.645071][T29777]  </TASK>
[  186.375756][T29848] FAULT_INJECTION: forcing a failure.
[  186.375756][T29848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.380340][T29848] CPU: 3 UID: 0 PID: 29848 Comm: syz.3.3337 Not tainted syzkaller #0 PREEMPT(full) 
[  186.380357][T29848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.380365][T29848] Call Trace:
[  186.380369][T29848]  <TASK>
[  186.380374][T29848]  dump_stack_lvl+0x16c/0x1f0
[  186.380409][T29848]  should_fail_ex+0x512/0x640
[  186.380427][T29848]  _copy_to_user+0x32/0xd0
[  186.380442][T29848]  simple_read_from_buffer+0xcb/0x170
[  186.380462][T29848]  proc_fail_nth_read+0x197/0x240
[  186.380475][T29848]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  186.380487][T29848]  ? security_file_permission+0x71/0x210
[  186.380505][T29848]  ? rw_verify_area+0xcf/0x6c0
[  186.380521][T29848]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  186.380533][T29848]  vfs_read+0x1e1/0xcf0
[  186.380545][T29848]  ? __pfx___mutex_lock+0x10/0x10
[  186.380564][T29848]  ? __pfx_vfs_read+0x10/0x10
[  186.380574][T29848]  ? __fget_files+0x204/0x3c0
[  186.380586][T29848]  ? rcu_is_watching+0x12/0xc0
[  186.380601][T29848]  ? __fget_files+0x20e/0x3c0
[  186.380615][T29848]  ksys_read+0x12a/0x250
[  186.380625][T29848]  ? __pfx_ksys_read+0x10/0x10
[  186.380637][T29848]  do_syscall_64+0xcd/0x4c0
[  186.380650][T29848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.380662][T29848] RIP: 0033:0x7f90f4b8d5fc
[  186.380671][T29848] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  186.380683][T29848] RSP: 002b:00007f90f5a14030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  186.380699][T29848] RAX: ffffffffffffffda RBX: 00007f90f4db5fa0 RCX: 00007f90f4b8d5fc
[  186.380709][T29848] RDX: 000000000000000f RSI: 00007f90f5a140a0 RDI: 0000000000000005
[  186.380716][T29848] RBP: 00007f90f5a14090 R08: 0000000000000000 R09: 0000000000000000
[  186.380723][T29848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  186.380730][T29848] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  186.380741][T29848]  </TASK>
[  186.732048][T29870] nbd3: detected capacity change from 0 to 4
[  186.735223][T29881] block nbd3: shutting down sockets
[  186.738742][    C0] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.741626][    C0] buffer_io_error: 3 callbacks suppressed
[  186.741634][    C0] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.746353][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.749332][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.751883][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.754962][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.757492][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.760308][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.762837][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.765626][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.768062][ T5955] ldm_validate_partition_table(): Disk read failed.
[  186.770142][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.773101][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.775608][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.778429][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.780863][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.783845][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.786467][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.789241][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.791690][ T5955] Dev nbd3: unable to read RDB block 0
[  186.793501][ T5955] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  186.796320][ T5955] Buffer I/O error on dev nbd3, logical block 0, async page read
[  186.798946][ T5955]  nbd3: unable to read partition table
[  186.800819][ T5955] nbd3: partition table beyond EOD, truncated
[  186.803742][ T5955] ldm_validate_partition_table(): Disk read failed.
[  186.805940][ T5955] Dev nbd3: unable to read RDB block 0
[  186.807798][ T5955]  nbd3: unable to read partition table
[  186.809598][ T5955] nbd3: partition table beyond EOD, truncated
[  186.817253][T29891] loop6: detected capacity change from 0 to 524287999
[  187.291963][T29946] FAULT_INJECTION: forcing a failure.
[  187.291963][T29946] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.296111][T29946] CPU: 2 UID: 0 PID: 29946 Comm: syz.3.3362 Not tainted syzkaller #0 PREEMPT(full) 
[  187.296126][T29946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.296134][T29946] Call Trace:
[  187.296138][T29946]  <TASK>
[  187.296143][T29946]  dump_stack_lvl+0x16c/0x1f0
[  187.296158][T29946]  should_fail_ex+0x512/0x640
[  187.296172][T29946]  strncpy_from_user+0x3b/0x2e0
[  187.296184][T29946]  getname_flags.part.0+0x8f/0x550
[  187.296201][T29946]  getname_flags+0x93/0xf0
[  187.296212][T29946]  do_sys_openat2+0xb8/0x1d0
[  187.296228][T29946]  ? __pfx_do_sys_openat2+0x10/0x10
[  187.296244][T29946]  ? __fget_files+0x20e/0x3c0
[  187.296256][T29946]  __x64_sys_openat+0x174/0x210
[  187.296272][T29946]  ? __pfx___x64_sys_openat+0x10/0x10
[  187.296287][T29946]  ? ksys_write+0x1ac/0x250
[  187.296300][T29946]  do_syscall_64+0xcd/0x4c0
[  187.296313][T29946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.296325][T29946] RIP: 0033:0x7f90f4b8d550
[  187.296334][T29946] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  187.296347][T29946] RSP: 002b:00007f90f5a13f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  187.296359][T29946] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f90f4b8d550
[  187.296366][T29946] RDX: 0000000000000000 RSI: 00007f90f4c11f06 RDI: 00000000ffffff9c
[  187.296373][T29946] RBP: 00007f90f4c11f06 R08: 0000000000000000 R09: 0000000000000000
[  187.296380][T29946] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  187.296387][T29946] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  187.296397][T29946]  </TASK>
[  187.381207][T29975] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  187.398071][T29975] syzkaller0: mtu less than device minimum
[  187.417905][T29979] loop6: detected capacity change from 0 to 524287999
[  187.642688][T30048] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  187.659449][ T5967] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  187.665277][T30051] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1025 sclass=netlink_tcpdiag_socket pid=30051 comm=syz.3.3371
[  187.726930][ T5975] Bluetooth: hci1: command 0x040f tx timeout
[  188.015567][   T40] kauditd_printk_skb: 95 callbacks suppressed
[  188.015579][   T40] audit: type=1400 audit(1756782020.559:1007): avc:  denied  { unmount } for  pid=25776 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  188.385758][ T5835] tipc: Node number set to 2276042565
[  192.828929][ T5967] Bluetooth: hci0: command 0x0419 tx timeout
[  194.933153][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  194.935179][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  198.326157][   T40] audit: type=1400 audit(1756782030.762:1008): avc:  denied  { read } for  pid=30062 comm="syz.4.3375" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  198.330266][T30065] program syz.4.3375 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  198.336158][   T40] audit: type=1400 audit(1756782030.762:1009): avc:  denied  { read } for  pid=30064 comm="syz.3.3378" name="nmem0" dev="devtmpfs" ino=110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  198.347080][   T40] audit: type=1400 audit(1756782030.762:1010): avc:  denied  { open } for  pid=30064 comm="syz.3.3378" path="/dev/nmem0" dev="devtmpfs" ino=110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  198.359429][   T40] audit: type=1400 audit(1756782030.762:1011): avc:  denied  { ioctl } for  pid=30064 comm="syz.3.3378" path="/dev/nmem0" dev="devtmpfs" ino=110 ioctlcmd=0xae83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  198.368241][   T40] audit: type=1400 audit(1756782030.772:1012): avc:  denied  { open } for  pid=30062 comm="syz.4.3375" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  198.371880][T30084] validate_nla: 11 callbacks suppressed
[  198.371890][T30084] netlink: 'syz.4.3380': attribute type 10 has an invalid length.
[  198.375908][   T40] audit: type=1400 audit(1756782030.782:1013): avc:  denied  { ioctl } for  pid=30062 comm="syz.4.3375" path="/dev/sg0" dev="devtmpfs" ino=721 ioctlcmd=0x9411 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  198.389916][   T40] audit: type=1400 audit(1756782030.792:1014): avc:  denied  { write } for  pid=30073 comm="syz.3.3379" name="virtual_nci" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  198.397663][   T40] audit: type=1400 audit(1756782030.812:1015): avc:  denied  { ioctl } for  pid=30082 comm="syz.4.3380" path="socket:[72864]" dev="sockfs" ino=72864 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  198.406388][   T40] audit: type=1400 audit(1756782030.812:1016): avc:  denied  { getopt } for  pid=30082 comm="syz.4.3380" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  198.409495][T30114] 9pnet_virtio: no channels available for device syz
[  198.413347][   T40] audit: type=1400 audit(1756782030.821:1017): avc:  denied  { checkpoint_restore } for  pid=30085 comm="syz.2.3381" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  198.424277][T30114] kAFS: No cell specified
[  198.427927][T30118] netlink: 'syz.4.3383': attribute type 10 has an invalid length.
[  198.436449][T30118] loop6: detected capacity change from 0 to 524287999
[  198.511239][ T5966] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  198.742126][T30171] netlink: 'syz.1.3395': attribute type 10 has an invalid length.
[  198.745706][T30171] loop6: detected capacity change from 0 to 524287999
[  199.194671][T30226] netlink: 'syz.4.3403': attribute type 1 has an invalid length.
[  199.206542][T30226] 8021q: adding VLAN 0 to HW filter on device bond1
[  199.213954][ T5835] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  199.220915][T30226] veth3: entered promiscuous mode
[  199.223931][T30226] bond1: (slave veth3): Enslaving as an active interface with a down link
[  199.231620][T30226] vlan2: entered allmulticast mode
[  199.233261][T30226] bond1: entered allmulticast mode
[  199.235759][T30226] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  199.320871][T30335] netlink: 'syz.2.3407': attribute type 10 has an invalid length.
[  199.324205][T30335] loop6: detected capacity change from 0 to 524287999
[  199.366098][ T5835] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  199.368798][ T5835] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  199.371866][ T5835] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  199.374684][ T5835] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  199.378393][ T5835] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  199.382827][ T5835] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  199.385909][ T5835] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  199.388538][ T5835] usb 6-1: Product: syz
[  199.389846][ T5835] usb 6-1: Manufacturer: syz
[  199.393477][ T5835] cdc_wdm 6-1:1.0: skipping garbage
[  199.395800][ T5835] cdc_wdm 6-1:1.0: skipping garbage
[  199.398127][ T5835] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  199.399989][ T5835] cdc_wdm 6-1:1.0: Unknown control protocol
[  199.596262][   T29] usb 6-1: USB disconnect, device number 13
[  199.638058][ T5966] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  199.666830][ T5966] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  200.428963][T30384] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=30384 comm=syz.1.3416
[  200.979695][T30412] FAULT_INJECTION: forcing a failure.
[  200.979695][T30412] name failslab, interval 1, probability 0, space 0, times 0
[  200.984754][T30412] CPU: 3 UID: 0 PID: 30412 Comm: syz.1.3425 Not tainted syzkaller #0 PREEMPT(full) 
[  200.984777][T30412] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.984788][T30412] Call Trace:
[  200.984795][T30412]  <TASK>
[  200.984802][T30412]  dump_stack_lvl+0x16c/0x1f0
[  200.984825][T30412]  should_fail_ex+0x512/0x640
[  200.984846][T30412]  should_failslab+0xc2/0x120
[  200.984866][T30412]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  200.984885][T30412]  ? __alloc_skb+0x2b2/0x380
[  200.984903][T30412]  __alloc_skb+0x2b2/0x380
[  200.984918][T30412]  ? __pfx___alloc_skb+0x10/0x10
[  200.984932][T30412]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  200.984954][T30412]  ? enqueue_to_backlog+0x493/0xe90
[  200.984977][T30412]  alloc_skb_with_frags+0xe0/0x860
[  200.984996][T30412]  ? rcu_is_watching+0x12/0xc0
[  200.985017][T30412]  ? ip6_finish_output2+0xaeb/0x2020
[  200.985035][T30412]  ? rcu_is_watching+0x12/0xc0
[  200.985057][T30412]  sock_alloc_send_pskb+0x7fb/0x990
[  200.985084][T30412]  ? neigh_connected_output+0x3e1/0x620
[  200.985105][T30412]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  200.985133][T30412]  ? ip6_finish_output2+0xb30/0x2020
[  200.985155][T30412]  __ip6_append_data+0x2a98/0x4750
[  200.985185][T30412]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  200.985205][T30412]  ? rcu_is_watching+0x12/0xc0
[  200.985228][T30412]  ? lock_release+0x201/0x2f0
[  200.985254][T30412]  ? __pfx___ip6_append_data+0x10/0x10
[  200.985279][T30412]  ? __pfx_ip6_mtu+0x10/0x10
[  200.985301][T30412]  ? ip6_setup_cork+0xc51/0x1530
[  200.985327][T30412]  ip6_make_skb+0x2c8/0x3f0
[  200.985345][T30412]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  200.985365][T30412]  ? __pfx_ip6_make_skb+0x10/0x10
[  200.985387][T30412]  ? sk_dst_check+0x1da/0x540
[  200.985415][T30412]  ? udpv6_sendmsg+0x235c/0x2d20
[  200.985435][T30412]  udpv6_sendmsg+0x235c/0x2d20
[  200.985456][T30412]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  200.985479][T30412]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  200.985500][T30412]  ? avc_has_perm_noaudit+0x149/0x3b0
[  200.985521][T30412]  ? avc_has_perm+0x144/0x1f0
[  200.985541][T30412]  ? kasan_save_stack+0x33/0x60
[  200.985556][T30412]  ? kasan_save_track+0x14/0x30
[  200.985573][T30412]  ? kasan_save_free_info+0x3b/0x60
[  200.985614][T30412]  ? ___sys_sendmsg+0x141/0x1d0
[  200.985631][T30412]  ? __sys_sendmmsg+0x200/0x420
[  200.985647][T30412]  ? __x64_sys_sendmmsg+0x9c/0x100
[  200.985672][T30412]  ? __import_iovec+0x1dd/0x650
[  200.985693][T30412]  ? rcu_is_watching+0x12/0xc0
[  200.985711][T30412]  ? __might_fault+0xe3/0x190
[  200.985725][T30412]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  200.985745][T30412]  ? inet6_sendmsg+0x105/0x140
[  200.985766][T30412]  inet6_sendmsg+0x105/0x140
[  200.985786][T30412]  ____sys_sendmsg+0x705/0xc70
[  200.985807][T30412]  ? copy_msghdr_from_user+0x10a/0x160
[  200.985823][T30412]  ? __pfx_____sys_sendmsg+0x10/0x10
[  200.985843][T30412]  ? kfree+0x24f/0x4d0
[  200.985865][T30412]  ? __pfx__kstrtoull+0x10/0x10
[  200.985880][T30412]  ? ___sys_sendmsg+0x141/0x1d0
[  200.985896][T30412]  ___sys_sendmsg+0x134/0x1d0
[  200.985912][T30412]  ? __pfx____sys_sendmsg+0x10/0x10
[  200.985934][T30412]  ? rcu_is_watching+0x12/0xc0
[  200.985956][T30412]  ? __pfx___might_resched+0x10/0x10
[  200.985980][T30412]  __sys_sendmmsg+0x200/0x420
[  200.985998][T30412]  ? __pfx___sys_sendmmsg+0x10/0x10
[  200.986015][T30412]  ? lock_release+0x201/0x2f0
[  200.986044][T30412]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  200.986068][T30412]  ? fput+0x9b/0xd0
[  200.986092][T30412]  ? ksys_write+0x1ac/0x250
[  200.986108][T30412]  ? __pfx_ksys_write+0x10/0x10
[  200.986126][T30412]  __x64_sys_sendmmsg+0x9c/0x100
[  200.986141][T30412]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  200.986182][T30412]  do_syscall_64+0xcd/0x4c0
[  200.986201][T30412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.986213][T30412] RIP: 0033:0x7f3f4678ebe9
[  200.986222][T30412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.986234][T30412] RSP: 002b:00007f3f4751e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  200.986245][T30412] RAX: ffffffffffffffda RBX: 00007f3f469b5fa0 RCX: 00007f3f4678ebe9
[  200.986253][T30412] RDX: 0400000000000172 RSI: 0000200000003cc0 RDI: 0000000000000003
[  200.986260][T30412] RBP: 00007f3f4751e090 R08: 0000000000000000 R09: 0000000000000000
[  200.986268][T30412] R10: 0000000004001c00 R11: 0000000000000246 R12: 0000000000000002
[  200.986282][T30412] R13: 00007f3f469b6038 R14: 00007f3f469b5fa0 R15: 00007fffdf9a6578
[  200.986298][T30412]  </TASK>
[  201.131684][   T53] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  201.207650][ T5966] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  201.298927][   T53] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  201.301663][   T53] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  201.304900][   T53] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  201.308000][   T53] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  201.311484][   T53] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  201.316035][   T53] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  201.319356][   T53] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  201.322342][   T53] usb 8-1: Product: syz
[  201.323658][   T53] usb 8-1: Manufacturer: syz
[  201.326995][   T53] cdc_wdm 8-1:1.0: skipping garbage
[  201.329030][   T53] cdc_wdm 8-1:1.0: skipping garbage
[  201.331115][   T53] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  201.332984][   T53] cdc_wdm 8-1:1.0: Unknown control protocol
[  201.351548][ T5966] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  201.592378][ T5835] usb 8-1: USB disconnect, device number 21
[  202.127976][ T5966] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  202.131241][ T5966] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  202.134775][ T5966] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  202.143381][ T5966] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  202.147010][ T5966] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  202.193468][ T5966] Bluetooth: hci3: command 0x0406 tx timeout
[  202.221967][T30439] chnl_net:caif_netlink_parms(): no params data found
[  202.275403][T30439] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.278491][T30439] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.281536][T30439] bridge_slave_0: entered allmulticast mode
[  202.285132][T30439] bridge_slave_0: entered promiscuous mode
[  202.287874][T30439] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.290112][T30439] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.292379][T30439] bridge_slave_1: entered allmulticast mode
[  202.297103][T30439] bridge_slave_1: entered promiscuous mode
[  202.324216][T30439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  202.331777][T30439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  202.358858][T30439] team0: Port device team_slave_0 added
[  202.361625][T30439] team0: Port device team_slave_1 added
[  202.383691][T30439] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.387032][T30439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.395224][T30439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.399259][T30439] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.401552][T30439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.409514][T30439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.420886][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.443662][T30439] hsr_slave_0: entered promiscuous mode
[  202.446041][T30439] hsr_slave_1: entered promiscuous mode
[  202.448055][T30439] debugfs: 'hsr0' already exists in 'hsr'
[  202.449860][T30439] Cannot create hsr debugfs directory
[  202.518649][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.638945][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.689891][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.811710][   T12] bridge_slave_1: left allmulticast mode
[  202.813573][   T12] bridge_slave_1: left promiscuous mode
[  202.815466][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.819432][   T12] bridge_slave_0: left allmulticast mode
[  202.821266][   T12] bridge_slave_0: left promiscuous mode
[  202.823131][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.960919][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  202.964795][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  202.968280][   T12] bond0 (unregistering): Released all slaves
[  202.972291][   T12] bond1 (unregistering): (slave bond2): Releasing backup interface
[  202.975220][   T12] bond1 (unregistering): Released all slaves
[  202.979975][   T12] bond2 (unregistering): Released all slaves
[  202.983691][   T12] bond3 (unregistering): Released all slaves
[  203.035513][   T12] tipc: Disabling bearer <eth:syzkaller0>
[  203.037642][   T12] tipc: Left network mode
[  203.105953][ T5967] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  203.127039][T31536] loop6: detected capacity change from 0 to 524287999
[  203.275451][   T12] hsr_slave_0: left promiscuous mode
[  203.278638][   T12] hsr_slave_1: left promiscuous mode
[  203.280733][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  203.283220][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  203.286220][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  203.288660][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  203.291500][   T12] batman_adv: batadv0: Removing interface: team0
[  203.296484][   T12] veth1_macvtap: left promiscuous mode
[  203.298396][   T12] veth0_macvtap: left promiscuous mode
[  203.300697][   T12] veth1_vlan: left promiscuous mode
[  203.303089][   T12] veth0_vlan: left promiscuous mode
[  203.376677][   T12] team0 (unregistering): Port device team_slave_1 removed
[  203.428162][   T40] kauditd_printk_skb: 42 callbacks suppressed
[  203.428174][   T40] audit: type=1400 audit(1756782035.829:1060): avc:  denied  { ioctl } for  pid=31565 comm="syz.2.3444" path="socket:[73157]" dev="sockfs" ino=73157 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  203.460038][   T40] audit: type=1400 audit(1756782035.859:1061): avc:  denied  { setopt } for  pid=31565 comm="syz.2.3444" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  203.492944][   T40] audit: type=1400 audit(1756782035.899:1062): avc:  denied  { append } for  pid=31575 comm="syz.2.3446" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  203.500214][   T40] audit: type=1400 audit(1756782035.899:1063): avc:  denied  { read } for  pid=31575 comm="syz.2.3446" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  203.546255][   T40] audit: type=1400 audit(1756782035.948:1064): avc:  denied  { unlink } for  pid=31577 comm="syz.4.3447" name="#9b" dev="tmpfs" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  203.547392][T31580] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  203.557639][   T40] audit: type=1400 audit(1756782035.948:1065): avc:  denied  { mount } for  pid=31577 comm="syz.4.3447" name="/" dev="overlay" ino=1131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  203.695472][   T40] audit: type=1400 audit(1756782036.098:1066): avc:  denied  { watch watch_reads } for  pid=31588 comm="syz.4.3450" path="/212" dev="tmpfs" ino=1150 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  203.702733][   T40] audit: type=1400 audit(1756782036.098:1067): avc:  denied  { read } for  pid=31588 comm="syz.4.3450" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  203.709875][   T40] audit: type=1400 audit(1756782036.098:1068): avc:  denied  { open } for  pid=31588 comm="syz.4.3450" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  203.729422][T30439] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  203.732971][T30439] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  203.736474][T30439] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  203.743108][T30439] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  203.774702][T30439] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.781864][T30439] 8021q: adding VLAN 0 to HW filter on device team0
[  203.786514][   T94] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.788788][   T94] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.794188][T31611] __nla_validate_parse: 12 callbacks suppressed
[  203.794188][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.794198][T31611] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3450'.
[  203.796440][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  203.885772][T30439] 8021q: adding VLAN 0 to HW filter on device batadv0
[  203.908485][T30439] veth0_vlan: entered promiscuous mode
[  203.912993][T30439] veth1_vlan: entered promiscuous mode
[  203.924356][T30439] veth0_macvtap: entered promiscuous mode
[  203.928264][T30439] veth1_macvtap: entered promiscuous mode
[  203.936092][T30439] batman_adv: batadv0: Interface activated: batadv_slave_0
[  203.941528][T30439] batman_adv: batadv0: Interface activated: batadv_slave_1
[  203.951130][ T1229] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.954624][   T60] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.958019][   T60] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.960894][   T60] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.991065][   T94] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.997238][   T94] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  204.015286][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  204.017724][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  204.023251][   T40] audit: type=1400 audit(1756782036.416:1069): avc:  denied  { mounton } for  pid=30439 comm="syz-executor" path="/syzkaller.3t2kuE/syz-tmp" dev="sda1" ino=2043 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  204.087981][T31635] netlink: zone id is out of range
[  204.089619][T31635] netlink: zone id is out of range
[  204.091325][T31635] netlink: zone id is out of range
[  204.093068][T31635] netlink: del zone limit has 4 unknown bytes
[  204.194567][ T5966] Bluetooth: hci5: command tx timeout
[  204.298754][T31641] syzkaller0: mtu less than device minimum
[  204.495354][ T5966] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  204.593236][T31669] QAT: Invalid ioctl -2144835806
[  204.620614][T31674] syzkaller1: entered promiscuous mode
[  204.622739][T31674] syzkaller1: entered allmulticast mode
[  204.711485][T31696] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  204.713853][T31696] mac80211_hwsim hwsim19 syzkaller0: entered promiscuous mode
[  204.716279][T31696] mac80211_hwsim hwsim19 syzkaller0: entered allmulticast mode
[  204.721766][T31696] syzkaller0: mtu less than device minimum
[  204.743137][T31709] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  204.748377][T31709] tipc: Resetting bearer <eth:syzkaller0>
[  204.859448][T31768] kvm: kvm [31766]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x97e0cd526bbfccb5
[  204.915755][T31781] fuse: Bad value for 'fd'
[  204.937662][T31783] veth0: entered promiscuous mode
[  204.940421][T31783] veth0: left promiscuous mode
[  205.068181][T31798] netlink: 'syz.1.3487': attribute type 10 has an invalid length.
[  205.073638][T31798] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  205.185469][T31811] fuse: Bad value for 'fd'
[  205.207381][T31817] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3494'.
[  205.223874][T31817] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3494'.
[  205.363140][T31851] fuse: Bad value for 'fd'
[  205.458283][T31893] 9pnet_virtio: no channels available for device syz
[  205.485491][ T5967] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  205.526180][T31905] FAULT_INJECTION: forcing a failure.
[  205.526180][T31905] name failslab, interval 1, probability 0, space 0, times 0
[  205.530171][T31905] CPU: 1 UID: 0 PID: 31905 Comm: syz.1.3514 Not tainted syzkaller #0 PREEMPT(full) 
[  205.530188][T31905] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.530195][T31905] Call Trace:
[  205.530199][T31905]  <TASK>
[  205.530204][T31905]  dump_stack_lvl+0x16c/0x1f0
[  205.530239][T31905]  should_fail_ex+0x512/0x640
[  205.530258][T31905]  should_failslab+0xc2/0x120
[  205.530284][T31905]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  205.530296][T31905]  ? do_raw_spin_lock+0x12c/0x2b0
[  205.530308][T31905]  ? __d_alloc+0x32/0xae0
[  205.530323][T31905]  __d_alloc+0x32/0xae0
[  205.530337][T31905]  d_alloc_parallel+0x111/0x1480
[  205.530355][T31905]  ? avc_has_perm_noaudit+0x149/0x3b0
[  205.530367][T31905]  ? __d_lookup+0x25c/0x4a0
[  205.530383][T31905]  ? rcu_is_watching+0x12/0xc0
[  205.530397][T31905]  ? __pfx_d_alloc_parallel+0x10/0x10
[  205.530415][T31905]  ? __d_lookup+0x266/0x4a0
[  205.530433][T31905]  lookup_open.isra.0+0x665/0x1580
[  205.530451][T31905]  ? proc_sys_permission+0x61/0x1a0
[  205.530469][T31905]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  205.530488][T31905]  ? irq_entries_start+0xd0/0xcb0
[  205.530500][T31905]  ? irq_entries_start+0xd0/0xcb0
[  205.530510][T31905]  ? mnt_get_write_access+0x20c/0x300
[  205.530526][T31905]  path_openat+0x893/0x2cb0
[  205.530540][T31905]  ? __pfx_path_openat+0x10/0x10
[  205.530553][T31905]  do_filp_open+0x20b/0x470
[  205.530565][T31905]  ? __pfx_do_filp_open+0x10/0x10
[  205.530585][T31905]  ? alloc_fd+0x471/0x7d0
[  205.530599][T31905]  do_sys_openat2+0x11b/0x1d0
[  205.530614][T31905]  ? __pfx_do_sys_openat2+0x10/0x10
[  205.530630][T31905]  ? __fget_files+0x20e/0x3c0
[  205.530642][T31905]  __x64_sys_openat+0x174/0x210
[  205.530658][T31905]  ? __pfx___x64_sys_openat+0x10/0x10
[  205.530673][T31905]  ? ksys_write+0x1ac/0x250
[  205.530686][T31905]  do_syscall_64+0xcd/0x4c0
[  205.530699][T31905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.530710][T31905] RIP: 0033:0x7f6fb4d8ebe9
[  205.530719][T31905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.530731][T31905] RSP: 002b:00007f6fb5be6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  205.530749][T31905] RAX: ffffffffffffffda RBX: 00007f6fb4fb5fa0 RCX: 00007f6fb4d8ebe9
[  205.530756][T31905] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  205.530764][T31905] RBP: 00007f6fb5be6090 R08: 0000000000000000 R09: 0000000000000000
[  205.530771][T31905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  205.530777][T31905] R13: 00007f6fb4fb6038 R14: 00007f6fb4fb5fa0 R15: 00007ffe85fb7b38
[  205.530788][T31905]  </TASK>
[  205.618773][T31948] netlink: 'syz.4.3522': attribute type 25 has an invalid length.
[  205.622396][T31948] netlink: 184 bytes leftover after parsing attributes in process `syz.4.3522'.
[  205.625265][T31948] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3522'.
[  205.720782][T31986] netlink: 80 bytes leftover after parsing attributes in process `syz.2.3533'.
[  205.772388][ T6047] tipc: Node number set to 4001979513
[  205.801521][T32008] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3541'.
[  205.804576][T32008] netem: unknown loss type 12
[  205.806332][T32008] netem: change failed
[  205.880757][T32022] FAULT_INJECTION: forcing a failure.
[  205.880757][T32022] name failslab, interval 1, probability 0, space 0, times 0
[  205.886968][T32022] CPU: 1 UID: 0 PID: 32022 Comm: syz.1.3545 Not tainted syzkaller #0 PREEMPT(full) 
[  205.886984][T32022] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.886991][T32022] Call Trace:
[  205.886995][T32022]  <TASK>
[  205.886999][T32022]  dump_stack_lvl+0x16c/0x1f0
[  205.887014][T32022]  should_fail_ex+0x512/0x640
[  205.887028][T32022]  should_failslab+0xc2/0x120
[  205.887041][T32022]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  205.887053][T32022]  ? lock_release+0x201/0x2f0
[  205.887070][T32022]  ? skb_clone+0x190/0x3f0
[  205.887082][T32022]  skb_clone+0x190/0x3f0
[  205.887093][T32022]  ip6_finish_output2+0x1468/0x2020
[  205.887104][T32022]  ? lock_release+0x201/0x2f0
[  205.887122][T32022]  __ip6_finish_output+0x3cd/0x1010
[  205.887133][T32022]  ip6_output+0x1ca/0x3e0
[  205.887143][T32022]  ip6_mr_output+0x233/0x11b0
[  205.887158][T32022]  ? __pfx_ip6_mr_output+0x10/0x10
[  205.887171][T32022]  ? rcu_is_watching+0x12/0xc0
[  205.887185][T32022]  ? lock_release+0x201/0x2f0
[  205.887201][T32022]  ? nf_hook_slow+0x132/0x200
[  205.887212][T32022]  ? __ip6_local_out+0x2f1/0xa80
[  205.887226][T32022]  ? __pfx_dst_output+0x10/0x10
[  205.887237][T32022]  ? rcu_is_watching+0x12/0xc0
[  205.887251][T32022]  ? ip6_local_out+0x2a6/0x4d0
[  205.887262][T32022]  ip6_local_out+0x2a6/0x4d0
[  205.887274][T32022]  ip6_send_skb+0x112/0x460
[  205.887284][T32022]  udp_v6_send_skb+0x96f/0x1910
[  205.887299][T32022]  udpv6_sendmsg+0x23a8/0x2d20
[  205.887312][T32022]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  205.887333][T32022]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  205.887346][T32022]  ? avc_has_perm_noaudit+0x149/0x3b0
[  205.887359][T32022]  ? avc_has_perm+0x144/0x1f0
[  205.887370][T32022]  ? kasan_save_stack+0x33/0x60
[  205.887380][T32022]  ? kasan_save_track+0x14/0x30
[  205.887390][T32022]  ? kasan_save_free_info+0x3b/0x60
[  205.887406][T32022]  ? ___sys_sendmsg+0x141/0x1d0
[  205.887416][T32022]  ? __sys_sendmmsg+0x200/0x420
[  205.887427][T32022]  ? __x64_sys_sendmmsg+0x9c/0x100
[  205.887442][T32022]  ? __import_iovec+0x1dd/0x650
[  205.887456][T32022]  ? rcu_is_watching+0x12/0xc0
[  205.887469][T32022]  ? __might_fault+0xe3/0x190
[  205.887480][T32022]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  205.887493][T32022]  ? inet6_sendmsg+0x105/0x140
[  205.887506][T32022]  inet6_sendmsg+0x105/0x140
[  205.887520][T32022]  ____sys_sendmsg+0x705/0xc70
[  205.887534][T32022]  ? copy_msghdr_from_user+0x10a/0x160
[  205.887545][T32022]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.887560][T32022]  ? kfree+0x24f/0x4d0
[  205.887576][T32022]  ? __pfx__kstrtoull+0x10/0x10
[  205.887585][T32022]  ? ___sys_sendmsg+0x141/0x1d0
[  205.887596][T32022]  ___sys_sendmsg+0x134/0x1d0
[  205.887607][T32022]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.887620][T32022]  ? rcu_is_watching+0x12/0xc0
[  205.887635][T32022]  ? __pfx___might_resched+0x10/0x10
[  205.887651][T32022]  __sys_sendmmsg+0x200/0x420
[  205.887662][T32022]  ? __pfx___sys_sendmmsg+0x10/0x10
[  205.887673][T32022]  ? lock_release+0x201/0x2f0
[  205.887691][T32022]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  205.887714][T32022]  ? fput+0x9b/0xd0
[  205.887728][T32022]  ? ksys_write+0x1ac/0x250
[  205.887739][T32022]  ? __pfx_ksys_write+0x10/0x10
[  205.887751][T32022]  __x64_sys_sendmmsg+0x9c/0x100
[  205.887762][T32022]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  205.887776][T32022]  do_syscall_64+0xcd/0x4c0
[  205.887788][T32022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.887800][T32022] RIP: 0033:0x7f6fb4d8ebe9
[  205.887810][T32022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.887842][T32022] RSP: 002b:00007f6fb5be6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  205.887858][T32022] RAX: ffffffffffffffda RBX: 00007f6fb4fb5fa0 RCX: 00007f6fb4d8ebe9
[  205.887868][T32022] RDX: 0400000000000172 RSI: 0000200000003cc0 RDI: 0000000000000003
[  205.887877][T32022] RBP: 00007f6fb5be6090 R08: 0000000000000000 R09: 0000000000000000
[  205.887886][T32022] R10: 0000000004001c00 R11: 0000000000000246 R12: 0000000000000002
[  205.887895][T32022] R13: 00007f6fb4fb6038 R14: 00007f6fb4fb5fa0 R15: 00007ffe85fb7b38
[  205.887911][T32022]  </TASK>
[  206.075559][T32040] netlink: 'syz.4.3550': attribute type 1 has an invalid length.
[  206.077177][T32041] netlink: 'syz.4.3550': attribute type 1 has an invalid length.
[  206.086184][T32040] bond2: (slave vxcan1): The slave device specified does not support setting the MAC address
[  206.089800][T32040] bond2: (slave vxcan1): Error -95 calling set_mac_address
[  206.138998][T32041] gretap1: entered promiscuous mode
[  206.141713][T32041] bond2: (slave gretap1): making interface the new active one
[  206.145291][T32041] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  206.151025][T32040] macvlan2: entered promiscuous mode
[  206.152970][T32040] macvlan2: entered allmulticast mode
[  206.155592][T32040] bond2: entered promiscuous mode
[  206.157590][T32040] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  206.161244][T32040] bond2: (slave macvlan2): the slave hw address is in use by the bond; giving it the hw address of gretap1
[  206.165674][T32040] bond2: left promiscuous mode
[  206.313381][ T5966] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  206.347416][T32129] loop6: detected capacity change from 0 to 524287999
[  206.352552][T32132] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16146 sclass=netlink_route_socket pid=32132 comm=syz.1.3561
[  206.597856][T32165] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[  206.602432][T32157] SELinux: ebitmap: empty map
[  206.605576][T32157] SELinux: failed to load policy
[  206.731543][T32169] syzkaller0: mtu less than device minimum
[  206.748778][T32183] rtc_cmos 00:05: Alarms can be up to one day in the future
[  206.752971][T32183] rtc_cmos 00:05: Alarms can be up to one day in the future
[  206.784325][T32190] loop6: detected capacity change from 0 to 524287999
[  206.808004][ T5966] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  206.921635][T32203] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3576'.
[  207.053387][T32223] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3581'.
[  207.141796][T32235] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  207.144921][T32235] mac80211_hwsim hwsim21 syzkaller0: entered promiscuous mode
[  207.148109][T32235] mac80211_hwsim hwsim21 syzkaller0: entered allmulticast mode
[  207.155539][T32235] syzkaller0: mtu less than device minimum
[  207.169498][ T5966] Bluetooth: hci5: command tx timeout
[  207.189267][T32241] loop6: detected capacity change from 0 to 524287999
[  207.236239][T32247] tipc: Started in network mode
[  207.238061][T32247] tipc: Node identity 5289742a5fe3, cluster identity 4711
[  207.242306][T32247] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  207.245363][T32247] syzkaller0: mtu greater than device maximum
[  207.248922][T32246] tipc: Disabling bearer <eth:syzkaller0>
[  207.386730][   T94] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  207.390984][   T94] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  207.394295][   T73] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  207.397279][   T73] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  207.471561][ T5966] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci5/hci5:201'
[  207.475480][ T5966] CPU: 3 UID: 0 PID: 5966 Comm: kworker/u33:2 Not tainted syzkaller #0 PREEMPT(full) 
[  207.475507][ T5966] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  207.475521][ T5966] Workqueue: hci5 hci_rx_work
[  207.475564][ T5966] Call Trace:
[  207.475572][ T5966]  <TASK>
[  207.475580][ T5966]  dump_stack_lvl+0x16c/0x1f0
[  207.475602][ T5966]  sysfs_warn_dup+0x7f/0xa0
[  207.475630][ T5966]  sysfs_create_dir_ns+0x24b/0x2b0
[  207.475653][ T5966]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  207.475676][ T5966]  ? kobject_add_internal+0x25b/0x9b0
[  207.475696][ T5966]  ? lock_release+0x201/0x2f0
[  207.475721][ T5966]  ? do_raw_spin_unlock+0x172/0x230
[  207.475739][ T5966]  kobject_add_internal+0x2c4/0x9b0
[  207.475762][ T5966]  kobject_add+0x16e/0x240
[  207.475780][ T5966]  ? __pfx_kobject_add+0x10/0x10
[  207.475797][ T5966]  ? lock_release+0x201/0x2f0
[  207.475814][ T5966]  ? do_raw_spin_unlock+0x172/0x230
[  207.475826][ T5966]  ? kobject_put+0xab/0x5a0
[  207.475839][ T5966]  device_add+0x288/0x1aa0
[  207.475854][ T5966]  ? __pfx_dev_set_name+0x10/0x10
[  207.475869][ T5966]  ? __pfx_device_add+0x10/0x10
[  207.475883][ T5966]  ? mgmt_send_event_skb+0x2fb/0x460
[  207.475900][ T5966]  hci_conn_add_sysfs+0x17e/0x230
[  207.475911][ T5966]  le_conn_complete_evt+0x1075/0x1d70
[  207.475927][ T5966]  ? preempt_count_sub+0xf0/0x160
[  207.475942][ T5966]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  207.475957][ T5966]  ? rcu_is_watching+0x12/0xc0
[  207.475971][ T5966]  ? lock_release+0x201/0x2f0
[  207.475988][ T5966]  hci_le_conn_complete_evt+0x23c/0x370
[  207.476005][ T5966]  hci_le_meta_evt+0x357/0x5e0
[  207.476016][ T5966]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  207.476032][ T5966]  hci_event_packet+0x682/0x11c0
[  207.476048][ T5966]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  207.476058][ T5966]  ? __pfx_hci_event_packet+0x10/0x10
[  207.476073][ T5966]  ? kcov_remote_start+0x36a/0x6d0
[  207.476085][ T5966]  ? rcu_watching_snap_stopped_since+0xf0/0x110
[  207.476100][ T5966]  ? rcu_is_watching+0x12/0xc0
[  207.476115][ T5966]  hci_rx_work+0x2c5/0x16b0
[  207.476126][ T5966]  process_one_work+0x9cf/0x1b70
[  207.476141][ T5966]  ? __pfx_hci_cmd_work+0x10/0x10
[  207.476150][ T5966]  ? __pfx_process_one_work+0x10/0x10
[  207.476163][ T5966]  ? assign_work+0x1a0/0x250
[  207.476174][ T5966]  worker_thread+0x6c8/0xf10
[  207.476188][ T5966]  ? __pfx_worker_thread+0x10/0x10
[  207.476200][ T5966]  kthread+0x3c2/0x780
[  207.476211][ T5966]  ? __pfx_kthread+0x10/0x10
[  207.476221][ T5966]  ? ret_from_fork+0x25/0x6f0
[  207.476241][ T5966]  ? rcu_is_watching+0x12/0xc0
[  207.476256][ T5966]  ? rcu_is_watching+0x12/0xc0
[  207.476270][ T5966]  ? __pfx_kthread+0x10/0x10
[  207.476282][ T5966]  ret_from_fork+0x5d7/0x6f0
[  207.476292][ T5966]  ? __pfx_kthread+0x10/0x10
[  207.476304][ T5966]  ret_from_fork_asm+0x1a/0x30
[  207.476321][ T5966]  </TASK>
[  207.476334][ T5966] kobject: kobject_add_internal failed for hci5:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  207.574393][ T5966] Bluetooth: hci5: failed to register connection device
[  207.620400][T32291] ip6erspan0: entered promiscuous mode
[  207.649770][T32313] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3597'.
[  207.739749][T32327] netlink: 'syz.1.3597': attribute type 10 has an invalid length.
[  207.750316][ T5966] Bluetooth: hci4: unexpected event for opcode 0x2029
[  207.752579][ T5966] Bluetooth: hci4: unexpected event for opcode 0x2028
[  207.784287][T32329] 8021q: adding VLAN 0 to HW filter on device bond3
[  207.896870][ T5966] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  208.810913][ T5966] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  208.828520][T32433] FAULT_INJECTION: forcing a failure.
[  208.828520][T32433] name failslab, interval 1, probability 0, space 0, times 0
[  208.832511][T32433] CPU: 3 UID: 0 PID: 32433 Comm: syz.3.3616 Not tainted syzkaller #0 PREEMPT(full) 
[  208.832529][T32433] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  208.832536][T32433] Call Trace:
[  208.832540][T32433]  <TASK>
[  208.832545][T32433]  dump_stack_lvl+0x16c/0x1f0
[  208.832560][T32433]  should_fail_ex+0x512/0x640
[  208.832574][T32433]  ? tomoyo_encode2+0x100/0x3e0
[  208.832591][T32433]  should_failslab+0xc2/0x120
[  208.832604][T32433]  __kmalloc_noprof+0xd2/0x510
[  208.832617][T32433]  tomoyo_encode2+0x100/0x3e0
[  208.832634][T32433]  tomoyo_encode+0x29/0x50
[  208.832649][T32433]  tomoyo_realpath_from_path+0x18f/0x6e0
[  208.832667][T32433]  tomoyo_check_open_permission+0x2ab/0x3c0
[  208.832683][T32433]  ? rcu_is_watching+0x12/0xc0
[  208.832697][T32433]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  208.832714][T32433]  ? avc_has_perm_noaudit+0x117/0x3b0
[  208.832726][T32433]  ? rcu_is_watching+0x12/0xc0
[  208.832742][T32433]  ? rcu_is_watching+0x12/0xc0
[  208.832756][T32433]  ? lock_release+0x201/0x2f0
[  208.832773][T32433]  ? rcu_is_watching+0x12/0xc0
[  208.832787][T32433]  tomoyo_file_open+0x6b/0x90
[  208.832798][T32433]  security_file_open+0x84/0x1e0
[  208.832815][T32433]  do_dentry_open+0x596/0x1530
[  208.832829][T32433]  vfs_open+0x82/0x3f0
[  208.832844][T32433]  path_openat+0x1de4/0x2cb0
[  208.832858][T32433]  ? __pfx_path_openat+0x10/0x10
[  208.832871][T32433]  do_filp_open+0x20b/0x470
[  208.832883][T32433]  ? __pfx_do_filp_open+0x10/0x10
[  208.832899][T32433]  ? alloc_fd+0x471/0x7d0
[  208.832912][T32433]  do_sys_openat2+0x11b/0x1d0
[  208.832927][T32433]  ? __pfx_do_sys_openat2+0x10/0x10
[  208.832942][T32433]  ? __fget_files+0x20e/0x3c0
[  208.832955][T32433]  __x64_sys_openat+0x174/0x210
[  208.832970][T32433]  ? __pfx___x64_sys_openat+0x10/0x10
[  208.832986][T32433]  ? ksys_write+0x1ac/0x250
[  208.832998][T32433]  do_syscall_64+0xcd/0x4c0
[  208.833011][T32433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.833023][T32433] RIP: 0033:0x7f90f4b8ebe9
[  208.833032][T32433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.833043][T32433] RSP: 002b:00007f90f5a14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  208.833063][T32433] RAX: ffffffffffffffda RBX: 00007f90f4db5fa0 RCX: 00007f90f4b8ebe9
[  208.833070][T32433] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  208.833077][T32433] RBP: 00007f90f5a14090 R08: 0000000000000000 R09: 0000000000000000
[  208.833084][T32433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  208.833091][T32433] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  208.833101][T32433]  </TASK>
[  208.833111][T32433] ERROR: Out of memory at tomoyo_realpath_from_path.
[  209.165407][T32466] netlink: 'syz.3.3619': attribute type 25 has an invalid length.
[  209.169119][T32466] __nla_validate_parse: 2 callbacks suppressed
[  209.169129][T32466] netlink: 184 bytes leftover after parsing attributes in process `syz.3.3619'.
[  209.174063][T32466] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3619'.
[  209.222757][T32468] mac80211_hwsim hwsim19 syzkaller0: left promiscuous mode
[  209.225035][T32468] mac80211_hwsim hwsim19 syzkaller0: left allmulticast mode
[  209.225157][   T40] kauditd_printk_skb: 81 callbacks suppressed
[  209.225172][   T40] audit: type=1400 audit(1756782041.602:1151): avc:  denied  { ioctl } for  pid=32467 comm="syz.3.3620" path="socket:[79883]" dev="sockfs" ino=79883 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  209.228752][T32468] netlink: 'syz.3.3620': attribute type 10 has an invalid length.
[  209.265291][T32473] netlink: 80 bytes leftover after parsing attributes in process `syz.3.3621'.
[  209.267693][ T5967] Bluetooth: hci5: command tx timeout
[  209.288459][   T40] audit: type=1400 audit(1756782041.672:1152): avc:  denied  { setopt } for  pid=32474 comm="syz.3.3622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  209.405398][T32482] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3623'.
[  209.408531][T32482] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3623'.
[  209.548804][ T1337] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  209.648835][   T40] audit: type=1400 audit(1756782042.020:1153): avc:  denied  { create } for  pid=32499 comm="syz.4.3628" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  209.657374][   T40] audit: type=1400 audit(1756782042.020:1154): avc:  denied  { unlink } for  pid=32499 comm="syz.4.3628" name="file0" dev="tmpfs" ino=1450 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  209.659906][T32502] netlink: 'syz.1.3629': attribute type 10 has an invalid length.
[  209.668276][   T40] audit: type=1400 audit(1756782042.020:1155): avc:  denied  { create } for  pid=32499 comm="syz.4.3628" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  209.700080][ T1337] usb 8-1: Using ep0 maxpacket: 16
[  209.704387][ T1337] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.707720][ T1337] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  209.719345][ T1337] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  209.721818][T32513] FAULT_INJECTION: forcing a failure.
[  209.721818][T32513] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  209.723329][ T1337] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  209.731829][ T1337] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.735402][ T1337] usb 8-1: config 0 descriptor??
[  209.739845][T32513] CPU: 2 UID: 0 PID: 32513 Comm: syz.1.3631 Not tainted syzkaller #0 PREEMPT(full) 
[  209.739861][T32513] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  209.739868][T32513] Call Trace:
[  209.739871][T32513]  <TASK>
[  209.739876][T32513]  dump_stack_lvl+0x16c/0x1f0
[  209.739892][T32513]  should_fail_ex+0x512/0x640
[  209.739906][T32513]  _copy_from_user+0x2e/0xd0
[  209.739921][T32513]  copy_msghdr_from_user+0x98/0x160
[  209.739933][T32513]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  209.739946][T32513]  ? kfree+0x24f/0x4d0
[  209.739962][T32513]  ? __pfx__kstrtoull+0x10/0x10
[  209.739971][T32513]  ? ___sys_sendmsg+0x141/0x1d0
[  209.739983][T32513]  ___sys_sendmsg+0xfe/0x1d0
[  209.739994][T32513]  ? __pfx____sys_sendmsg+0x10/0x10
[  209.740007][T32513]  ? rcu_is_watching+0x12/0xc0
[  209.740024][T32513]  ? __pfx___might_resched+0x10/0x10
[  209.740039][T32513]  __sys_sendmmsg+0x200/0x420
[  209.740051][T32513]  ? __pfx___sys_sendmmsg+0x10/0x10
[  209.740062][T32513]  ? lock_release+0x201/0x2f0
[  209.740081][T32513]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  209.740107][T32513]  ? fput+0x9b/0xd0
[  209.740122][T32513]  ? ksys_write+0x1ac/0x250
[  209.740133][T32513]  ? __pfx_ksys_write+0x10/0x10
[  209.740145][T32513]  __x64_sys_sendmmsg+0x9c/0x100
[  209.740156][T32513]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  209.740170][T32513]  do_syscall_64+0xcd/0x4c0
[  209.740183][T32513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.740195][T32513] RIP: 0033:0x7f6fb4d8ebe9
[  209.740204][T32513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.740216][T32513] RSP: 002b:00007f6fb5be6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  209.740227][T32513] RAX: ffffffffffffffda RBX: 00007f6fb4fb5fa0 RCX: 00007f6fb4d8ebe9
[  209.740235][T32513] RDX: 0400000000000172 RSI: 0000200000003cc0 RDI: 0000000000000003
[  209.740242][T32513] RBP: 00007f6fb5be6090 R08: 0000000000000000 R09: 0000000000000000
[  209.740249][T32513] R10: 0000000004001c00 R11: 0000000000000246 R12: 0000000000000002
[  209.740256][T32513] R13: 00007f6fb4fb6038 R14: 00007f6fb4fb5fa0 R15: 00007ffe85fb7b38
[  209.740266][T32513]  </TASK>
[  210.131335][T32527] hub 9-0:1.0: USB hub found
[  210.133453][T32527] hub 9-0:1.0: 1 port detected
[  210.137769][T32530] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  210.142449][ T1337] input: HID 0955:7214 Haptics as /devices/virtual/input/input15
[  210.145911][   T40] audit: type=1400 audit(1756782042.518:1156): avc:  denied  { read } for  pid=5360 comm="acpid" name="event4" dev="devtmpfs" ino=3268 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  210.148138][ T1337] shield 0003:0955:7214.0005: Registered Thunderstrike controller
[  210.152862][   T40] audit: type=1400 audit(1756782042.518:1157): avc:  denied  { open } for  pid=5360 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=3268 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  210.162683][   T40] audit: type=1400 audit(1756782042.518:1158): avc:  denied  { ioctl } for  pid=5360 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=3268 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  210.162836][ T1337] shield 0003:0955:7214.0005: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.3-1/input0
[  210.343513][   T40] audit: type=1400 audit(1756782042.718:1159): avc:  denied  { write } for  pid=32474 comm="syz.3.3622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  210.397222][   T40] audit: type=1400 audit(1756782042.767:1160): avc:  denied  { read } for  pid=32474 comm="syz.3.3622" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  210.405392][   T34] shield 0003:0955:7214.0005: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  210.410097][ T1337] usb 8-1: USB disconnect, device number 22
[  210.412106][   T34] shield 0003:0955:7214.0005: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  210.416956][   T34] shield 0003:0955:7214.0005: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  210.420392][   T34] shield 0003:0955:7214.0005: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  210.538919][T32576] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=467 sclass=netlink_route_socket pid=32576 comm=syz.1.3636
[  210.553838][T32576] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=32576 comm=syz.1.3636
[  210.669364][ T5975] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  210.958343][T32586] netlink: 'syz.3.3639': attribute type 10 has an invalid length.
[  211.517555][T32602] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  211.520176][T32602] syzkaller0: entered promiscuous mode
[  211.521863][T32602] syzkaller0: entered allmulticast mode
[  211.526384][T32602] syzkaller0: mtu less than device minimum
[  211.528795][T32601] tipc: Resetting bearer <eth:syzkaller0>
[  211.532287][T32601] tipc: Disabling bearer <eth:syzkaller0>
[  211.607419][T32608] fuse: Bad value for 'fd'
[  211.750680][ T5326] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  211.856043][T32625] netlink: 'syz.4.3650': attribute type 10 has an invalid length.
[  211.875615][T32629] ieee802154 phy0 wpan0: encryption failed: -22
[  212.549756][ T5967] Bluetooth: hci5: Opcode 0x206a failed: -110
[  212.555707][T32653] loop6: detected capacity change from 0 to 524287999
[  212.559585][ T5326] Bluetooth: hci5: command 0x206a tx timeout
[  212.640873][ T5966] Bluetooth: hci1: command 0x040f tx timeout
[  213.026587][T32700] vivid-004: disconnect
[  213.034467][T32700] vivid-004: reconnect
[  213.042682][T32701] batadv_slave_0: entered promiscuous mode
[  213.045420][T32701] batadv_slave_0: left promiscuous mode
[  213.236304][T32736] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3676'.
[  213.247765][T32736] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  213.469352][  T353] FAULT_INJECTION: forcing a failure.
[  213.469352][  T353] name failslab, interval 1, probability 0, space 0, times 0
[  213.470676][  T342] netlink: 1 bytes leftover after parsing attributes in process `syz.1.3689'.
[  213.474480][  T353] CPU: 3 UID: 0 PID: 353 Comm: syz.3.3688 Not tainted syzkaller #0 PREEMPT(full) 
[  213.474558][  T353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.474573][  T353] Call Trace:
[  213.474582][  T353]  <TASK>
[  213.474590][  T353]  dump_stack_lvl+0x16c/0x1f0
[  213.474616][  T353]  should_fail_ex+0x512/0x640
[  213.474653][  T353]  should_failslab+0xc2/0x120
[  213.474673][  T353]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  213.474694][  T353]  ? lock_release+0x201/0x2f0
[  213.474721][  T353]  ? proc_alloc_inode+0x25/0x200
[  213.474746][  T353]  ? __pfx_proc_alloc_inode+0x10/0x10
[  213.474766][  T353]  proc_alloc_inode+0x25/0x200
[  213.474786][  T353]  alloc_inode+0x61/0x240
[  213.474811][  T353]  new_inode+0x22/0x1c0
[  213.474834][  T353]  proc_pid_make_inode+0x22/0x160
[  213.474858][  T353]  proc_pident_instantiate+0x85/0x310
[  213.474882][  T353]  proc_pident_lookup+0x1f5/0x270
[  213.474908][  T353]  __lookup_slow+0x251/0x460
[  213.474934][  T353]  ? __pfx___lookup_slow+0x10/0x10
[  213.474964][  T353]  ? lookup_fast+0x156/0x610
[  213.474981][  T353]  ? __pfx_proc_pid_permission+0x10/0x10
[  213.475002][  T353]  walk_component+0x353/0x5b0
[  213.475020][  T353]  link_path_walk+0x627/0xe20
[  213.475089][  T353]  path_openat+0x1b0/0x2cb0
[  213.475159][  T353]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.475183][  T353]  ? __pfx_path_openat+0x10/0x10
[  213.475203][  T353]  do_filp_open+0x20b/0x470
[  213.475220][  T353]  ? __pfx_do_filp_open+0x10/0x10
[  213.475242][  T353]  ? __pfx_kfree_link+0x10/0x10
[  213.475269][  T353]  ? alloc_fd+0x471/0x7d0
[  213.475292][  T353]  do_sys_openat2+0x11b/0x1d0
[  213.475314][  T353]  ? __pfx_do_sys_openat2+0x10/0x10
[  213.475337][  T353]  ? __fget_files+0x20e/0x3c0
[  213.475356][  T353]  __x64_sys_openat+0x174/0x210
[  213.475379][  T353]  ? __pfx___x64_sys_openat+0x10/0x10
[  213.475402][  T353]  ? ksys_write+0x1ac/0x250
[  213.475422][  T353]  do_syscall_64+0xcd/0x4c0
[  213.475442][  T353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.475459][  T353] RIP: 0033:0x7f90f4b8d550
[  213.475474][  T353] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  213.475491][  T353] RSP: 002b:00007f90f59f2f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  213.475522][  T353] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f90f4b8d550
[  213.475537][  T353] RDX: 0000000000000000 RSI: 00007f90f4c11f06 RDI: 00000000ffffff9c
[  213.475548][  T353] RBP: 00007f90f4c11f06 R08: 0000000000000000 R09: 0000000000000000
[  213.475559][  T353] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  213.475574][  T353] R13: 00007f90f4db6128 R14: 00007f90f4db6090 R15: 00007ffcaed825f8
[  213.475591][  T353]  </TASK>
[  213.533530][  T357] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3690'.
[  213.534685][  T342] netlink: 10 bytes leftover after parsing attributes in process `syz.1.3689'.
[  213.545658][  T357] smc: adding net device bond0 with user defined pnetid SYZ2
[  213.583872][  T391] netlink: 'syz.3.3690': attribute type 1 has an invalid length.
[  213.587372][  T391] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3690'.
[  213.592874][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  213.600203][  T357] netlink: 'syz.3.3690': attribute type 1 has an invalid length.
[  213.651179][  T412] FAULT_INJECTION: forcing a failure.
[  213.651179][  T412] name failslab, interval 1, probability 0, space 0, times 0
[  213.659935][  T412] CPU: 0 UID: 0 PID: 412 Comm: syz.1.3692 Not tainted syzkaller #0 PREEMPT(full) 
[  213.659952][  T412] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.659960][  T412] Call Trace:
[  213.659963][  T412]  <TASK>
[  213.659968][  T412]  dump_stack_lvl+0x16c/0x1f0
[  213.659983][  T412]  should_fail_ex+0x512/0x640
[  213.659997][  T412]  ? tomoyo_encode2+0x100/0x3e0
[  213.660013][  T412]  should_failslab+0xc2/0x120
[  213.660026][  T412]  __kmalloc_noprof+0xd2/0x510
[  213.660039][  T412]  tomoyo_encode2+0x100/0x3e0
[  213.660056][  T412]  tomoyo_encode+0x29/0x50
[  213.660072][  T412]  tomoyo_realpath_from_path+0x18f/0x6e0
[  213.660089][  T412]  ? tomoyo_profile+0x47/0x60
[  213.660100][  T412]  tomoyo_path_number_perm+0x245/0x580
[  213.660114][  T412]  ? tomoyo_path_number_perm+0x237/0x580
[  213.660128][  T412]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  213.660145][  T412]  ? preempt_count_add+0x76/0x150
[  213.660159][  T412]  ? rcu_is_watching+0x12/0xc0
[  213.660174][  T412]  ? __fget_files+0x204/0x3c0
[  213.660186][  T412]  ? hook_file_ioctl_common+0x145/0x410
[  213.660197][  T412]  ? lock_release+0x201/0x2f0
[  213.660215][  T412]  ? __fget_files+0x20e/0x3c0
[  213.660227][  T412]  security_file_ioctl+0x9b/0x240
[  213.660244][  T412]  __x64_sys_ioctl+0xb7/0x210
[  213.660262][  T412]  do_syscall_64+0xcd/0x4c0
[  213.660282][  T412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.660294][  T412] RIP: 0033:0x7f6fb4d8ebe9
[  213.660303][  T412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.660314][  T412] RSP: 002b:00007f6fb5be6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  213.660326][  T412] RAX: ffffffffffffffda RBX: 00007f6fb4fb5fa0 RCX: 00007f6fb4d8ebe9
[  213.660334][  T412] RDX: 00002000000000c0 RSI: 0000000000008b30 RDI: 0000000000000004
[  213.660343][  T412] RBP: 00007f6fb5be6090 R08: 0000000000000000 R09: 0000000000000000
[  213.660352][  T412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.660361][  T412] R13: 00007f6fb4fb6038 R14: 00007f6fb4fb5fa0 R15: 00007ffe85fb7b38
[  213.660376][  T412]  </TASK>
[  213.660389][  T412] ERROR: Out of memory at tomoyo_realpath_from_path.
[  213.794689][  T420] tipc: New replicast peer: 172.30.0.2
[  213.797296][  T420] tipc: Enabled bearer <udp:syz2>, priority 10
[  213.895661][  T423] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  213.900105][  T423] tipc: Resetting bearer <eth:syzkaller0>
[  213.926574][  T427] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  213.926679][  T431] fuse: Bad value for 'fd'
[  213.930496][  T427] syzkaller0: entered promiscuous mode
[  213.933534][  T427] syzkaller0: entered allmulticast mode
[  213.941865][  T427] syzkaller0: mtu less than device minimum
[  213.944336][  T426] tipc: Resetting bearer <eth:syzkaller0>
[  213.950343][  T426] tipc: Disabling bearer <eth:syzkaller0>
[  214.015406][  T462] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  214.031009][  T462] syzkaller0: mtu less than device minimum
[  214.069252][  T473] netlink: 'syz.4.3704': attribute type 30 has an invalid length.
[  214.126838][  T486] syzkaller1: entered promiscuous mode
[  214.129202][  T486] syzkaller1: entered allmulticast mode
[  214.274384][ T5966] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  214.327541][  T520] netlink: 'syz.4.3718': attribute type 10 has an invalid length.
[  214.341347][  T526] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0
[  214.357567][   T40] kauditd_printk_skb: 26 callbacks suppressed
[  214.357585][   T40] audit: type=1400 audit(1756782046.724:1187): avc:  denied  { create } for  pid=529 comm="syz.4.3719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  214.368284][   T40] audit: type=1400 audit(1756782046.724:1188): avc:  denied  { connect } for  pid=529 comm="syz.4.3719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  214.550700][   T40] audit: type=1400 audit(1756782046.914:1189): avc:  denied  { mounton } for  pid=543 comm="syz.1.3723" path="/100/file0" dev="tmpfs" ino=548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  214.628869][   T40] audit: type=1400 audit(1756782046.993:1190): avc:  denied  { getopt } for  pid=554 comm="syz.4.3726" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  214.636178][ T5326] Bluetooth: hci5: command 0x206a tx timeout
[  214.800740][  T577] fuse: Bad value for 'fd'
[  214.901142][  T592] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  214.904726][  T592] tipc: Resetting bearer <eth:syzkaller0>
[  215.005188][  T601] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=601 comm=syz.4.3738
[  215.057875][  T839] tipc: Node number set to 225080362
[  215.100026][   T40] audit: type=1400 audit(1756782047.462:1191): avc:  denied  { ioctl } for  pid=602 comm="syz.3.3739" path="socket:[79573]" dev="sockfs" ino=79573 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  215.267623][  T615] FAULT_INJECTION: forcing a failure.
[  215.267623][  T615] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.272794][  T615] CPU: 2 UID: 0 PID: 615 Comm: syz.3.3742 Not tainted syzkaller #0 PREEMPT(full) 
[  215.272819][  T615] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  215.272830][  T615] Call Trace:
[  215.272836][  T615]  <TASK>
[  215.272843][  T615]  dump_stack_lvl+0x16c/0x1f0
[  215.272866][  T615]  should_fail_ex+0x512/0x640
[  215.272887][  T615]  _copy_from_user+0x2e/0xd0
[  215.272909][  T615]  kstrtouint_from_user+0xd6/0x1d0
[  215.272926][  T615]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  215.272946][  T615]  ? __mutex_trylock_common+0xe9/0x250
[  215.272976][  T615]  proc_fail_nth_write+0x83/0x220
[  215.272998][  T615]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  215.273018][  T615]  ? __pfx___might_resched+0x10/0x10
[  215.273041][  T615]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  215.273061][  T615]  vfs_write+0x29d/0x11d0
[  215.273081][  T615]  ? __pfx___mutex_lock+0x10/0x10
[  215.273113][  T615]  ? __pfx_vfs_write+0x10/0x10
[  215.273129][  T615]  ? __fget_files+0x204/0x3c0
[  215.273148][  T615]  ? rcu_is_watching+0x12/0xc0
[  215.273171][  T615]  ? __fget_files+0x20e/0x3c0
[  215.273193][  T615]  ksys_write+0x12a/0x250
[  215.273209][  T615]  ? __pfx_ksys_write+0x10/0x10
[  215.273229][  T615]  do_syscall_64+0xcd/0x4c0
[  215.273249][  T615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.273268][  T615] RIP: 0033:0x7f90f4b8d69f
[  215.273283][  T615] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  215.273300][  T615] RSP: 002b:00007f90f5a14030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  215.273318][  T615] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f90f4b8d69f
[  215.273330][  T615] RDX: 0000000000000001 RSI: 00007f90f5a140a0 RDI: 0000000000000003
[  215.273341][  T615] RBP: 00007f90f5a14090 R08: 0000000000000000 R09: 0000000000000000
[  215.273352][  T615] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  215.273362][  T615] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  215.273379][  T615]  </TASK>
[  215.485470][ T5326] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  215.540197][  T654] vivid-002: disconnect
[  215.601470][  T655] vivid-002: reconnect
[  216.341450][  T700] netlink: 'syz.1.3754': attribute type 10 has an invalid length.
[  216.416468][ T5966] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  216.532477][  T716] netlink: 'syz.3.3757': attribute type 10 has an invalid length.
[  217.037365][   T40] audit: type=1400 audit(1756782049.387:1192): avc:  denied  { create } for  pid=720 comm="syz.4.3758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  217.044757][   T40] audit: type=1400 audit(1756782049.387:1193): avc:  denied  { connect } for  pid=720 comm="syz.4.3758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  217.052273][   T40] audit: type=1400 audit(1756782049.387:1194): avc:  denied  { setopt } for  pid=720 comm="syz.4.3758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  217.273792][  T726] FAULT_INJECTION: forcing a failure.
[  217.273792][  T726] name failslab, interval 1, probability 0, space 0, times 0
[  217.277644][  T726] CPU: 0 UID: 0 PID: 726 Comm: syz.3.3760 Not tainted syzkaller #0 PREEMPT(full) 
[  217.277660][  T726] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  217.277668][  T726] Call Trace:
[  217.277673][  T726]  <TASK>
[  217.277677][  T726]  dump_stack_lvl+0x16c/0x1f0
[  217.277693][  T726]  should_fail_ex+0x512/0x640
[  217.277708][  T726]  should_failslab+0xc2/0x120
[  217.277721][  T726]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  217.277733][  T726]  ? __alloc_skb+0x2b2/0x380
[  217.277745][  T726]  __alloc_skb+0x2b2/0x380
[  217.277755][  T726]  ? __pfx___alloc_skb+0x10/0x10
[  217.277764][  T726]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  217.277779][  T726]  ? enqueue_to_backlog+0x493/0xe90
[  217.277793][  T726]  alloc_skb_with_frags+0xe0/0x860
[  217.277806][  T726]  ? rcu_is_watching+0x12/0xc0
[  217.277820][  T726]  ? ip6_finish_output2+0xaeb/0x2020
[  217.277831][  T726]  ? rcu_is_watching+0x12/0xc0
[  217.277845][  T726]  sock_alloc_send_pskb+0x7fb/0x990
[  217.277863][  T726]  ? neigh_connected_output+0x3e1/0x620
[  217.277877][  T726]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  217.277894][  T726]  ? ip6_finish_output2+0xb30/0x2020
[  217.277906][  T726]  __ip6_append_data+0x2a98/0x4750
[  217.277925][  T726]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  217.277938][  T726]  ? rcu_is_watching+0x12/0xc0
[  217.277952][  T726]  ? lock_release+0x201/0x2f0
[  217.277970][  T726]  ? __pfx___ip6_append_data+0x10/0x10
[  217.277987][  T726]  ? __pfx_ip6_mtu+0x10/0x10
[  217.278019][  T726]  ? ip6_setup_cork+0xc51/0x1530
[  217.278037][  T726]  ip6_make_skb+0x2c8/0x3f0
[  217.278048][  T726]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  217.278060][  T726]  ? __pfx_ip6_make_skb+0x10/0x10
[  217.278072][  T726]  ? sk_dst_check+0x1da/0x540
[  217.278091][  T726]  ? udpv6_sendmsg+0x235c/0x2d20
[  217.278103][  T726]  udpv6_sendmsg+0x235c/0x2d20
[  217.278117][  T726]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  217.278131][  T726]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  217.278144][  T726]  ? avc_has_perm_noaudit+0x149/0x3b0
[  217.278156][  T726]  ? avc_has_perm+0x144/0x1f0
[  217.278167][  T726]  ? kasan_save_stack+0x33/0x60
[  217.278178][  T726]  ? kasan_save_track+0x14/0x30
[  217.278188][  T726]  ? kasan_save_free_info+0x3b/0x60
[  217.278203][  T726]  ? ___sys_sendmsg+0x141/0x1d0
[  217.278214][  T726]  ? __sys_sendmmsg+0x200/0x420
[  217.278224][  T726]  ? __x64_sys_sendmmsg+0x9c/0x100
[  217.278239][  T726]  ? __import_iovec+0x1dd/0x650
[  217.278253][  T726]  ? rcu_is_watching+0x12/0xc0
[  217.278266][  T726]  ? __might_fault+0xe3/0x190
[  217.278277][  T726]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  217.278290][  T726]  ? inet6_sendmsg+0x105/0x140
[  217.278304][  T726]  inet6_sendmsg+0x105/0x140
[  217.278317][  T726]  ____sys_sendmsg+0x705/0xc70
[  217.278332][  T726]  ? copy_msghdr_from_user+0x10a/0x160
[  217.278342][  T726]  ? __pfx_____sys_sendmsg+0x10/0x10
[  217.278357][  T726]  ? kfree+0x24f/0x4d0
[  217.278373][  T726]  ? __pfx__kstrtoull+0x10/0x10
[  217.278382][  T726]  ? ___sys_sendmsg+0x141/0x1d0
[  217.278394][  T726]  ___sys_sendmsg+0x134/0x1d0
[  217.278405][  T726]  ? __pfx____sys_sendmsg+0x10/0x10
[  217.278418][  T726]  ? rcu_is_watching+0x12/0xc0
[  217.278433][  T726]  ? __pfx___might_resched+0x10/0x10
[  217.278448][  T726]  __sys_sendmmsg+0x200/0x420
[  217.278460][  T726]  ? __pfx___sys_sendmmsg+0x10/0x10
[  217.278475][  T726]  ? lock_release+0x201/0x2f0
[  217.278493][  T726]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  217.278508][  T726]  ? fput+0x9b/0xd0
[  217.278522][  T726]  ? ksys_write+0x1ac/0x250
[  217.278534][  T726]  ? __pfx_ksys_write+0x10/0x10
[  217.278545][  T726]  __x64_sys_sendmmsg+0x9c/0x100
[  217.278557][  T726]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  217.278570][  T726]  do_syscall_64+0xcd/0x4c0
[  217.278583][  T726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.278594][  T726] RIP: 0033:0x7f90f4b8ebe9
[  217.278603][  T726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.278614][  T726] RSP: 002b:00007f90f5a14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  217.278625][  T726] RAX: ffffffffffffffda RBX: 00007f90f4db5fa0 RCX: 00007f90f4b8ebe9
[  217.278632][  T726] RDX: 0400000000000172 RSI: 0000200000003cc0 RDI: 0000000000000003
[  217.278639][  T726] RBP: 00007f90f5a14090 R08: 0000000000000000 R09: 0000000000000000
[  217.278646][  T726] R10: 0000000004001c00 R11: 0000000000000246 R12: 0000000000000002
[  217.278652][  T726] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  217.278662][  T726]  </TASK>
[  217.457118][  T728] __nla_validate_parse: 3 callbacks suppressed
[  217.457133][  T728] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3761'.
[  217.462220][  T728] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3761'.
[  217.465800][  T728] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3761'.
[  217.467403][   T40] audit: type=1400 audit(1756782049.826:1195): avc:  denied  { ioctl } for  pid=727 comm="syz.3.3761" path="socket:[80617]" dev="sockfs" ino=80617 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  217.468639][  T728] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3761'.
[  217.480365][   T40] audit: type=1400 audit(1756782049.835:1196): avc:  denied  { bind } for  pid=727 comm="syz.3.3761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  217.485478][ T5326] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  217.512903][  T738] netlink: 'syz.3.3764': attribute type 25 has an invalid length.
[  217.515744][  T738] netlink: 184 bytes leftover after parsing attributes in process `syz.3.3764'.
[  217.518541][  T738] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3764'.
[  217.521802][  T740] vivid-003: disconnect
[  217.532920][  T740] vivid-003: reconnect
[  217.543292][  T742] loop6: detected capacity change from 0 to 524287999
[  217.612831][ T5966] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  217.666726][  T752] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=23 sclass=netlink_tcpdiag_socket pid=752 comm=syz.4.3768
[  217.725757][  T755] netlink: 'syz.4.3769': attribute type 10 has an invalid length.
[  218.075258][ T6047] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  218.235641][ T6047] usb 9-1: Using ep0 maxpacket: 16
[  218.239660][ T6047] usb 9-1: config 0 has an invalid interface number: 132 but max is 0
[  218.243221][ T6047] usb 9-1: config 0 has no interface number 0
[  218.247789][ T6047] usb 9-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  218.251712][ T6047] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  218.255124][ T6047] usb 9-1: Product: syz
[  218.257092][ T6047] usb 9-1: Manufacturer: syz
[  218.259140][ T6047] usb 9-1: SerialNumber: syz
[  218.262765][ T6047] usb 9-1: config 0 descriptor??
[  218.266259][ T6047] hub 9-1:0.132: bad descriptor, ignoring hub
[  218.268819][ T6047] hub 9-1:0.132: probe with driver hub failed with error -5
[  218.273269][ T6047] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.132/input/input16
[  218.519885][  T846] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  218.523139][  T846] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  218.525582][  T850] fuse: Bad value for 'group_id'
[  218.526498][  T846] Can't find a SQUASHFS superblock on nullb0
[  218.527618][  T850] fuse: Bad value for 'group_id'
[  218.626919][  T858] loop6: detected capacity change from 0 to 524287999
[  218.695997][  T863] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3783'.
[  218.710122][  T863] netlink: 'syz.3.3783': attribute type 10 has an invalid length.
[  218.865085][ T5966] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  218.890536][  T877] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3786'.
[  218.933441][  T886] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  218.997751][  T889] netlink: 64 bytes leftover after parsing attributes in process `syz.3.3788'.
[  219.267721][  T896] tipc: Resetting bearer <eth:syzkaller0>
[  219.484742][  T910] vivid-003: disconnect
[  219.493609][  T909] vivid-003: reconnect
[  219.550634][  T915] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3792'.
[  219.555359][  T915] netlink: 'syz.4.3792': attribute type 10 has an invalid length.
[  219.579825][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  219.579841][   T40] audit: type=1400 audit(1756782051.930:1204): avc:  denied  { accept } for  pid=919 comm="syz.4.3795" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  219.646548][   T40] audit: type=1400 audit(1756782051.990:1205): avc:  denied  { read } for  pid=930 comm="syz.4.3798" name="btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  219.654267][   T40] audit: type=1400 audit(1756782051.990:1206): avc:  denied  { open } for  pid=930 comm="syz.4.3798" path="/dev/btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  219.825744][  T939] usb usb8: usbfs: process 939 (syz.3.3800) did not claim interface 0 before use
[  219.839875][   T40] audit: type=1400 audit(1756782052.190:1207): avc:  denied  { read } for  pid=938 comm="syz.3.3800" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  219.893079][  T941] IPVS: length: 24 != 56674619832
[  219.893099][   T40] audit: type=1400 audit(1756782052.240:1208): avc:  denied  { getopt } for  pid=938 comm="syz.3.3800" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  220.022819][  T943] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  220.025960][  T943] mac80211_hwsim hwsim19 syzkaller0: entered promiscuous mode
[  220.029136][  T943] mac80211_hwsim hwsim19 syzkaller0: entered allmulticast mode
[  220.035520][  T943] tipc: Resetting bearer <eth:syzkaller0>
[  220.207209][ T5966] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  220.391666][  T996] vivid-003: disconnect
[  220.399014][  T996] vivid-003: reconnect
[  220.420779][ T5326] Bluetooth: hci1: command 0x040f tx timeout
[  220.506593][   T40] audit: type=1804 audit(1756782052.848:1209): pid=1026 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.3816" name="/newroot/122/file0" dev="tmpfs" ino=662 res=1 errno=0
[  220.507736][ T1026] netlink: 'syz.1.3816': attribute type 1 has an invalid length.
[  220.514283][   T40] audit: type=1800 audit(1756782052.848:1210): pid=1026 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.3816" name="file0" dev="tmpfs" ino=662 res=0 errno=0
[  220.529726][ T1026] bond1 (unregistering): Released all slaves
[  220.574793][ T1101] netlink: 'syz.1.3816': attribute type 3 has an invalid length.
[  220.931638][   T40] audit: type=1400 audit(1756782053.268:1211): avc:  denied  { create } for  pid=1109 comm="syz.1.3819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  220.938540][   T40] audit: type=1400 audit(1756782053.277:1212): avc:  denied  { create } for  pid=1109 comm="syz.1.3819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  220.946078][   T40] audit: type=1400 audit(1756782053.277:1213): avc:  denied  { connect } for  pid=1109 comm="syz.1.3819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  221.199096][ T5326] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  221.585441][ T1183] FAULT_INJECTION: forcing a failure.
[  221.585441][ T1183] name failslab, interval 1, probability 0, space 0, times 0
[  221.589382][ T1183] CPU: 1 UID: 0 PID: 1183 Comm: syz.3.3827 Not tainted syzkaller #0 PREEMPT(full) 
[  221.589402][ T1183] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.589409][ T1183] Call Trace:
[  221.589413][ T1183]  <TASK>
[  221.589418][ T1183]  dump_stack_lvl+0x16c/0x1f0
[  221.589433][ T1183]  should_fail_ex+0x512/0x640
[  221.589447][ T1183]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  221.589464][ T1183]  should_failslab+0xc2/0x120
[  221.589478][ T1183]  __kmalloc_noprof+0xd2/0x510
[  221.589490][ T1183]  tomoyo_realpath_from_path+0xc2/0x6e0
[  221.589508][ T1183]  ? tomoyo_profile+0x47/0x60
[  221.589518][ T1183]  tomoyo_path_number_perm+0x245/0x580
[  221.589532][ T1183]  ? tomoyo_path_number_perm+0x237/0x580
[  221.589547][ T1183]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  221.589563][ T1183]  ? preempt_count_add+0x76/0x150
[  221.589577][ T1183]  ? rcu_is_watching+0x12/0xc0
[  221.589592][ T1183]  ? __fget_files+0x204/0x3c0
[  221.589605][ T1183]  ? hook_file_ioctl_common+0x145/0x410
[  221.589616][ T1183]  ? lock_release+0x201/0x2f0
[  221.589634][ T1183]  ? __fget_files+0x20e/0x3c0
[  221.589646][ T1183]  security_file_ioctl+0x9b/0x240
[  221.589663][ T1183]  __x64_sys_ioctl+0xb7/0x210
[  221.589681][ T1183]  do_syscall_64+0xcd/0x4c0
[  221.589693][ T1183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.589706][ T1183] RIP: 0033:0x7f90f4b8ebe9
[  221.589715][ T1183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.589726][ T1183] RSP: 002b:00007f90f5a14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  221.589737][ T1183] RAX: ffffffffffffffda RBX: 00007f90f4db5fa0 RCX: 00007f90f4b8ebe9
[  221.589745][ T1183] RDX: 0000200000000080 RSI: 00000000c0205648 RDI: 0000000000000003
[  221.589752][ T1183] RBP: 00007f90f5a14090 R08: 0000000000000000 R09: 0000000000000000
[  221.589758][ T1183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  221.589765][ T1183] R13: 00007f90f4db6038 R14: 00007f90f4db5fa0 R15: 00007ffcaed825f8
[  221.589775][ T1183]  </TASK>
[  221.589781][ T1183] ERROR: Out of memory at tomoyo_realpath_from_path.
[  221.695172][ T5967] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  221.744982][ T1189] bond1: entered allmulticast mode
[  221.746816][ T1189] 8021q: adding VLAN 0 to HW filter on device bond1
[  222.020024][ T1228] netlink: 'syz.1.3832': attribute type 10 has an invalid length.
[  222.046125][ T6047] usb 9-1: USB disconnect, device number 10
[  222.652082][ T5326] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  222.727277][ T1265] fuse: Unknown parameter 'grou00000000000000000000'
[  222.971870][T27680] ==================================================================
[  222.975336][T27680] BUG: KASAN: slab-use-after-free in __list_del_entry_valid_or_report+0x1d4/0x200
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  222.979834][T27680] Read of size 8 at addr ffff88805a8a1558 by task syz.2.2858/27680
[  222.985286][T27680] 
[  222.986248][T27680] CPU: 2 UID: 0 PID: 27680 Comm: syz.2.2858 Not tainted syzkaller #0 PREEMPT(full) 
[  222.986265][T27680] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  222.986273][T27680] Call Trace:
[  222.986278][T27680]  <TASK>
[  222.986283][T27680]  dump_stack_lvl+0x116/0x1f0
[  222.986298][T27680]  print_report+0xcd/0x630
[  222.986311][T27680]  ? __virt_addr_valid+0x81/0x610
[  222.986327][T27680]  ? __phys_addr+0xe8/0x180
[  222.986342][T27680]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  222.986359][T27680]  kasan_report+0xe0/0x110
[  222.986372][T27680]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  222.986390][T27680]  __list_del_entry_valid_or_report+0x1d4/0x200
[  222.986407][T27680]  bt_accept_unlink+0x34/0x2e0
[  222.986425][T27680]  l2cap_sock_teardown_cb+0x1a3/0x3c0
[  222.986439][T27680]  l2cap_chan_del+0xba/0x8f0
[  222.986457][T27680]  l2cap_conn_del+0x37a/0x730
[  222.986473][T27680]  ? hci_cmd_sync_dequeue+0x191/0x1f0
[  222.986487][T27680]  ? __pfx_l2cap_disconn_cfm+0x10/0x10
[  222.986502][T27680]  l2cap_disconn_cfm+0x96/0xd0
[  222.986517][T27680]  hci_conn_hash_flush+0x10e/0x260
[  222.986532][T27680]  hci_dev_close_sync+0x602/0x11d0
[  222.986545][T27680]  ? rcu_is_watching+0x12/0xc0
[  222.986561][T27680]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  222.986577][T27680]  ? up_write+0x1b2/0x520
[  222.986597][T27680]  hci_dev_do_close+0x2e/0x90
[  222.986615][T27680]  hci_unregister_dev+0x227/0x640
[  222.986638][T27680]  ? __pfx_vhci_release+0x10/0x10
[  222.986656][T27680]  vhci_release+0x79/0xf0
[  222.986669][T27680]  __fput+0x3ff/0xb70
[  222.986689][T27680]  task_work_run+0x14d/0x240
[  222.986703][T27680]  ? __pfx_task_work_run+0x10/0x10
[  222.986718][T27680]  do_exit+0x86f/0x2bf0
[  222.986737][T27680]  ? do_raw_spin_lock+0x12c/0x2b0
[  222.986751][T27680]  ? __pfx_do_exit+0x10/0x10
[  222.986768][T27680]  ? cgroup_update_frozen_flag+0x107/0x210
[  222.986781][T27680]  ? get_signal+0x1d05/0x26d0
[  222.986797][T27680]  ? rcu_is_watching+0x12/0xc0
[  222.986812][T27680]  do_group_exit+0xd3/0x2a0
[  222.986834][T27680]  get_signal+0x2673/0x26d0
[  222.986850][T27680]  ? hrtimer_nanosleep+0x187/0x380
[  222.986867][T27680]  ? __pfx_get_signal+0x10/0x10
[  222.986883][T27680]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  222.986897][T27680]  arch_do_signal_or_restart+0x8f/0x7d0
[  222.986914][T27680]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  222.986932][T27680]  ? __pfx___x64_sys_clock_nanosleep+0x10/0x10
[  222.986949][T27680]  exit_to_user_mode_loop+0x84/0x110
[  222.986963][T27680]  do_syscall_64+0x3f6/0x4c0
[  222.986977][T27680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.986990][T27680] RIP: 0033:0x7f7c21bc14a5
[  222.987000][T27680] Code: Unable to access opcode bytes at 0x7f7c21bc147b.
[  222.987006][T27680] RSP: 002b:00007f7c22a61f80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  222.987018][T27680] RAX: fffffffffffffdfc RBX: 00007f7c21db5fa0 RCX: 00007f7c21bc14a5
[  222.987027][T27680] RDX: 00007f7c22a61fc0 RSI: 0000000000000000 RDI: 0000000000000000
[  222.987035][T27680] RBP: 00007f7c21c11e19 R08: 0000000000000000 R09: 0000000000000000
[  222.987042][T27680] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  222.987050][T27680] R13: 00007f7c21db6038 R14: 00007f7c21db5fa0 R15: 00007ffd9f6638a8
[  222.987061][T27680]  </TASK>
[  222.987066][T27680] 
[  223.035175][ T5967] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  223.036121][T27680] Allocated by task 1126:
[  223.036131][T27680]  kasan_save_stack+0x33/0x60
[  223.036145][T27680]  kasan_save_track+0x14/0x30
[  223.036155][T27680]  __kasan_kmalloc+0xaa/0xb0
[  223.036169][T27680]  devinet_init_net+0x56/0x910
[  223.036183][T27680]  ops_init+0x1df/0x5f0
[  223.038310][ T5967] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  223.039527][T27680]  setup_net+0x10f/0x380
[  223.039541][T27680]  copy_net_ns+0x2a6/0x5f0
[  223.039554][T27680]  create_new_namespaces+0x3ea/0xa90
[  223.039568][T27680]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  223.042053][ T5967] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  223.043482][T27680]  ksys_unshare+0x45b/0xa40
[  223.043511][T27680]  __x64_sys_unshare+0x31/0x40
[  223.043532][T27680]  do_syscall_64+0xcd/0x4c0
[  223.046152][ T5967] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  223.047162][T27680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.049491][ T5967] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  223.051242][T27680] 
[  223.051248][T27680] Freed by task 60:
[  223.150518][T27680]  kasan_save_stack+0x33/0x60
[  223.152042][T27680]  kasan_save_track+0x14/0x30
[  223.153522][T27680]  kasan_save_free_info+0x3b/0x60
[  223.155132][T27680]  __kasan_slab_free+0x60/0x70
[  223.156657][T27680]  kfree+0x2b4/0x4d0
[  223.157902][T27680]  ops_undo_list+0x2eb/0xab0
[  223.159354][T27680]  cleanup_net+0x408/0x890
[  223.160915][T27680]  process_one_work+0x9cf/0x1b70
[  223.162763][T27680]  worker_thread+0x6c8/0xf10
[  223.164229][T27680]  kthread+0x3c2/0x780
[  223.165750][T27680]  ret_from_fork+0x5d7/0x6f0
[  223.167380][T27680]  ret_from_fork_asm+0x1a/0x30
[  223.167475][ T1288] chnl_net:caif_netlink_parms(): no params data found
[  223.168864][T27680] 
[  223.168869][T27680] The buggy address belongs to the object at ffff88805a8a1000
[  223.168869][T27680]  which belongs to the cache kmalloc-2k of size 2048
[  223.176046][T27680] The buggy address is located 1368 bytes inside of
[  223.176046][T27680]  freed 2048-byte region [ffff88805a8a1000, ffff88805a8a1800)
[  223.180478][T27680] 
[  223.181252][T27680] The buggy address belongs to the physical page:
[  223.183343][T27680] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5a8a0
[  223.186404][T27680] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  223.189087][T27680] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  223.191468][T27680] page_type: f5(slab)
[  223.192751][T27680] raw: 00fff00000000040 ffff88801b842f00 dead000000000100 dead000000000122
[  223.195470][T27680] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  223.198156][T27680] head: 00fff00000000040 ffff88801b842f00 dead000000000100 dead000000000122
[  223.200865][T27680] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  223.203932][T27680] head: 00fff00000000003 ffffea00016a2801 00000000ffffffff 00000000ffffffff
[  223.206904][T27680] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  223.209570][T27680] page dumped because: kasan: bad access detected
[  223.211595][T27680] page_owner tracks the page as allocated
[  223.213378][T27680] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 24025, tgid 24025 (syz-executor), ts 144792961603, free_ts 144790467833
[  223.220019][T27680]  post_alloc_hook+0x1c0/0x230
[  223.221538][T27680]  get_page_from_freelist+0x132b/0x38e0
[  223.223570][T27680]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  223.225594][T27680]  alloc_pages_mpol+0x1fb/0x550
[  223.227190][T27680]  new_slab+0x247/0x330
[  223.228474][T27680]  ___slab_alloc+0xcf2/0x1740
[  223.229972][T27680]  __slab_alloc.constprop.0+0x56/0xb0
[  223.231636][T27680]  __kmalloc_node_noprof+0x2ed/0x500
[  223.233261][T27680]  qdisc_alloc+0xbb/0xc50
[  223.234660][T27680]  qdisc_create_dflt+0x94/0x490
[  223.236213][T27680]  dev_activate+0x63f/0x12d0
[  223.237810][T27680]  __dev_open+0x432/0x7c0
[  223.239212][T27680]  __dev_change_flags+0x55d/0x720
[  223.240802][T27680]  netif_change_flags+0x8d/0x160
[  223.242377][T27680]  do_setlink.constprop.0+0xb53/0x4380
[  223.244589][T27680]  rtnl_newlink+0x1446/0x2000
[  223.246271][T27680] page last free pid 24025 tgid 24025 stack trace:
[  223.248340][T27680]  __free_frozen_pages+0x7d5/0x10f0
[  223.250001][T27680]  __put_partials+0x165/0x1c0
[  223.251509][T27680]  qlist_free_all+0x4d/0x120
[  223.252981][T27680]  kasan_quarantine_reduce+0x195/0x1e0
[  223.254712][T27680]  __kasan_slab_alloc+0x69/0x90
[  223.256275][T27680]  kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  223.258360][T27680]  __alloc_skb+0x2b2/0x380
[  223.259786][T27680]  netlink_ack+0x15d/0xb80
[  223.261207][T27680]  netlink_rcv_skb+0x332/0x420
[  223.262842][T27680]  netlink_unicast+0x5aa/0x870
[  223.264385][T27680]  netlink_sendmsg+0x8d1/0xdd0
[  223.265907][T27680]  __sys_sendto+0x4a3/0x520
[  223.267403][T27680]  __x64_sys_sendto+0xe0/0x1c0
[  223.268952][T27680]  do_syscall_64+0xcd/0x4c0
[  223.270403][T27680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.272348][T27680] 
[  223.273130][T27680] Memory state around the buggy address:
[  223.274894][T27680]  ffff88805a8a1400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  223.277453][T27680]  ffff88805a8a1480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  223.280471][T27680] >ffff88805a8a1500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  223.282979][T27680]                                                     ^
[  223.285124][T27680]  ffff88805a8a1580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  223.287605][T27680]  ffff88805a8a1600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  223.290114][T27680] ==================================================================
[  223.296326][T27680] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  223.298665][T27680] CPU: 3 UID: 0 PID: 27680 Comm: syz.2.2858 Not tainted syzkaller #0 PREEMPT(full) 
[  223.301761][T27680] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.305257][T27680] Call Trace:
[  223.306693][T27680]  <TASK>
[  223.307597][T27680]  dump_stack_lvl+0x3d/0x1f0
[  223.309030][T27680]  vpanic+0x6e8/0x7a0
[  223.310305][T27680]  ? __pfx_vpanic+0x10/0x10
[  223.311686][T27680]  ? __pfx_vprintk_emit+0x10/0x10
[  223.313262][T27680]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  223.315237][T27680]  panic+0xca/0xd0
[  223.316422][T27680]  ? __pfx_panic+0x10/0x10
[  223.317875][T27680]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  223.319924][T27680]  ? preempt_schedule_common+0x44/0xc0
[  223.321871][T27680]  ? preempt_schedule_thunk+0x16/0x30
[  223.323530][T27680]  ? check_panic_on_warn+0x1f/0xb0
[  223.325152][T27680]  check_panic_on_warn+0xab/0xb0
[  223.326805][T27680]  end_report+0x107/0x170
[  223.328227][T27680]  kasan_report+0xee/0x110
[  223.329687][T27680]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  223.331727][T27680]  __list_del_entry_valid_or_report+0x1d4/0x200
[  223.333724][T27680]  bt_accept_unlink+0x34/0x2e0
[  223.335280][T27680]  l2cap_sock_teardown_cb+0x1a3/0x3c0
[  223.336990][T27680]  l2cap_chan_del+0xba/0x8f0
[  223.338467][T27680]  l2cap_conn_del+0x37a/0x730
[  223.339955][T27680]  ? hci_cmd_sync_dequeue+0x191/0x1f0
[  223.341643][T27680]  ? __pfx_l2cap_disconn_cfm+0x10/0x10
[  223.343357][T27680]  l2cap_disconn_cfm+0x96/0xd0
[  223.344810][T27680]  hci_conn_hash_flush+0x10e/0x260
[  223.346438][T27680]  hci_dev_close_sync+0x602/0x11d0
[  223.348032][T27680]  ? rcu_is_watching+0x12/0xc0
[  223.349547][T27680]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  223.351289][T27680]  ? up_write+0x1b2/0x520
[  223.352656][T27680]  hci_dev_do_close+0x2e/0x90
[  223.354151][T27680]  hci_unregister_dev+0x227/0x640
[  223.355714][T27680]  ? __pfx_vhci_release+0x10/0x10
[  223.357337][T27680]  vhci_release+0x79/0xf0
[  223.358664][T27680]  __fput+0x3ff/0xb70
[  223.359943][T27680]  task_work_run+0x14d/0x240
[  223.361417][T27680]  ? __pfx_task_work_run+0x10/0x10
[  223.363044][T27680]  do_exit+0x86f/0x2bf0
[  223.364370][T27680]  ? do_raw_spin_lock+0x12c/0x2b0
[  223.366202][T27680]  ? __pfx_do_exit+0x10/0x10
[  223.367796][T27680]  ? cgroup_update_frozen_flag+0x107/0x210
[  223.369622][T27680]  ? get_signal+0x1d05/0x26d0
[  223.371062][T27680]  ? rcu_is_watching+0x12/0xc0
[  223.372568][T27680]  do_group_exit+0xd3/0x2a0
[  223.374002][T27680]  get_signal+0x2673/0x26d0
[  223.375392][T27680]  ? hrtimer_nanosleep+0x187/0x380
[  223.377124][T27680]  ? __pfx_get_signal+0x10/0x10
[  223.379079][T27680]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  223.381415][T27680]  arch_do_signal_or_restart+0x8f/0x7d0
[  223.383535][T27680]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  223.385549][T27680]  ? __pfx___x64_sys_clock_nanosleep+0x10/0x10
[  223.387522][T27680]  exit_to_user_mode_loop+0x84/0x110
[  223.389175][T27680]  do_syscall_64+0x3f6/0x4c0
[  223.390574][T27680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.392441][T27680] RIP: 0033:0x7f7c21bc14a5
[  223.393812][T27680] Code: Unable to access opcode bytes at 0x7f7c21bc147b.
[  223.396000][T27680] RSP: 002b:00007f7c22a61f80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  223.398813][T27680] RAX: fffffffffffffdfc RBX: 00007f7c21db5fa0 RCX: 00007f7c21bc14a5
[  223.401342][T27680] RDX: 00007f7c22a61fc0 RSI: 0000000000000000 RDI: 0000000000000000
[  223.404086][T27680] RBP: 00007f7c21c11e19 R08: 0000000000000000 R09: 0000000000000000
[  223.406774][T27680] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  223.409142][T27680] R13: 00007f7c21db6038 R14: 00007f7c21db5fa0 R15: 00007ffd9f6638a8
[  223.411505][T27680]  </TASK>
[  223.413301][T27680] Kernel Offset: disabled
[  223.414727][T27680] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:44:40  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc9000673fd68 RCX=ffffffff821ef43b RDX=ffff88804c942440
RSI=ffffffff82079be3 RDI=0000000000000003 RBP=0000000000035c61 RSP=ffffc9000673fb48
R8 =0000000000000003 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000012
R12=0000000000000000 R13=ffffea0000d71840 R14=0000000000013da3 R15=ffffea00011cb5c0
RIP=ffffffff81bb9140 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055556f7d9500 ffffffff 00c00000
GS =0000 ffff8880d66bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f6fb4f87cc0 CR3=0000000036cfc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe85fb7ec0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe85fb8046
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe85fb8046 00007ffe85fb804c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fb4e12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fb4e12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fb4e12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fb4e12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fb4e12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fb4e12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffc900069c0000 RBX=ffff888029468000 RCX=ffffffff819bea27 RDX=1ffff1100528d25a
RSI=ffffffff86b37c7f RDI=0000000000000016 RBP=0000000000000080 RSP=ffffc900006a0eb0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc900006a0ff8
R12=ffffffff90ab3da0 R13=dffffc0000000000 R14=ffff8880294692d0 R15=0000000000000000
RIP=ffffffff86b37ca7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fc8ae0e7d60 CR3=0000000033237000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc8ad5876c3 00007fc8ad5876c3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffefc050920 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000030000000f 0000000200000021
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000500000007 0000000400000012
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555771011ac 00005555770fe4a0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000024 0901018a00000000 c408000100000808 06060123ccc64eff
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000510 00005555770f0520 00007fc8ad587d30 0000000000000027
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 100005ba80080001 000010080606011f 8e00100000000026
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001000000000000 011f8e0880040889 85ba840800010000 1008060600000025
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 10000a9000000000 00007fc8ad587d90 00007fc8ad587d90 0000000000000024
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6239666666666666 66660a35322e7965 6b5f5f2062203036 3739303362396666
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3739303362396666 6666666666660a36 322e79656b5f5f20 6220306137393033
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6220303238393033 6239666666666666 66660a37322e7965 6b5f5f2062203065
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6220306365643033 6239666666666666 66660a302e79656b 5f5f206220303865
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 646e616820622030 3066643033623966 666666666666660a 302e79656b5f5f20
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2062203034666430 3362396666666666 6666660a64695f74 656e5f656b616873
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6530336239666666 66666666660a6c62 7468736168725f65 6b616873646e6168
info registers vcpu 2

CPU#2
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff856437c5 RDI=ffffffff9b10e020 RBP=ffffffff9b10dfe0 RSP=ffffc90025457258
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3530383838666666
R12=0000000000000000 R13=0000000000000030 R14=ffffffff9b10dfe0 R15=ffffffff85643760
RIP=ffffffff856437ef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000002200 CR3=000000002e794000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcaed82b06
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcaed82b06 00007ffcaed82b0c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f4c12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f4c12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f4c12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f4c12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f4c12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f4c12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f4d874a8 00007f90f4d874a0 00007f90f4d87498 00007f90f4d87470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f58ed100 00007f90f4d87460 00007f90f4d80004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f90f4d874b8 00007f90f4d874b0 00007f90f4d874a8 00007f90f4d874a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffffff914efede RBX=0000000000000001 RCX=ffffffff821e68da RDX=0000000000000001
RSI=ffffffff914efede RDI=ffffffff90c5c260 RBP=ffffc900059d75d8 RSP=ffffc900059d7500
R8 =ffffffff914efee4 R9 =0000000000000000 R10=ffffc900059d7590 R11=0000000000011e68
R12=ffffc900059d75e0 R13=ffffffff821e68da R14=ffffc900059d75c5 R15=ffffffff821e68da
RIP=ffffffff816adab9 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055558cd8d500 ffffffff 00c00000
GS =0000 ffff8880d69bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fcc867b6038 CR3=000000003191d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffc0000 Opmask01=000000000000000f Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20303d766765735f 656c646e61683d53 4e4f4954504f5f4e 4153410063657865
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc872ed100 00007fcc86787460 00007fcc86787478 00007fcc867874c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d534e4f4954504f 5f4e415341006365 786500726f747563 6578652d7a79732f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000