last executing test programs:

2m28.781652677s ago: executing program 1 (id=95):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000e00)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}}, 0x0, 0x0, 0x44, 0x0, "e541bd3d3aa6a2bf75e9671e8abcb31c134f3a9db8f52e7300fe6e079f35ac63186c7244fc3b3801e79f15ced9fd7e55d0345bce05c13ed90158fbdeb70322ea3188f81890e3db00"}, 0xd8)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x7c2)
syz_emit_ethernet(0x36, &(0x7f0000000380)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x1f, 0x28, 0x0, 0x1400, 0x0, 0x6, 0x0, @empty, @empty}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)

2m28.781254309s ago: executing program 1 (id=98):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newlink={0x3c, 0x10, 0x40d, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, 0x10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_DEFAULT_PVID={0x6, 0x27, 0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0xffff000000000000, 0x10}, 0x0)

2m28.720458723s ago: executing program 1 (id=102):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r1 = fsopen(&(0x7f0000000040)='devpts\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x8180, 0x0) (async)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(camellia-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000100)="ad56b6cc0400aeb96150402154da952989", 0x18) (async)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r5 = dup(r4)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f0000000480)="0f2197dd7ca70566baf80cb81acf9e88ef66bafc0cecb9c90a0000b807000000ba000000000f30f30f09b8010000000f01c166f30f09f30fa6c00f01c8440f20c03505000000440f22c0", 0x4a}], 0x1, 0x46, 0x0, 0x0) (async)
ioctl$KVM_NMI(r6, 0xae9a) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
listen(r0, 0x0) (async)
setpriority(0x1, 0x0, 0x7fffffffffffffff) (async)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000010300)=0x7, 0x4) (async)
r7 = socket$netlink(0x10, 0x3, 0x4)
writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001500add427323b470c45b4560a067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a09000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)

2m28.516138934s ago: executing program 1 (id=111):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a90000000030a03000000000f0000000002e000000c00020000000000000000010900010073797a30"], 0xb8}, 0x1, 0x0, 0x0, 0x20008011}, 0x0)

2m28.515546142s ago: executing program 1 (id=113):
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000180)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000001340)={0x70, r2, 0x700, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x6d}}}}, [@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_BSS_BASIC_RATES={0x21, 0x24, [{0x3}, {0x24, 0x1}, {0x4}, {0x24, 0x1}, {0x36, 0x1}, {0x4}, {0x6522ebde2aabb9a5, 0x1}, {}, {0x2}, {0x48, 0x1}, {0x6c, 0x1}, {0x1e, 0x1}, {0x6c}, {0x30, 0x1}, {0x24}, {0x60}, {0x18, 0x1}, {0x30}, {0xb}, {0x4}, {0x48, 0x1}, {0x3, 0x1}, {0xb, 0x1}, {0xb}, {0x30}, {0x24, 0x1}, {0x36}, {0x30}, {0x30}]}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_SSID={0x1a, 0x34, @random="5c11da99f7ca58b15d3771156b3a366f7caaa595ece8"}]}, 0x70}, 0x1, 0x0, 0x0, 0x20008890}, 0x100)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f00000001c0)=0x20)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000001, 0x13, r5, 0xedaa7000)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000001e80), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r6, 0x1, 0x70bd29, 0x25dfdbfc}, 0x1c}, 0x1, 0x0, 0x0, 0x20040}, 0x20008850)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, 0x0, 0x20000800)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f0000000340)={{r0}, 0x0, 0x4, @inherit={0x50, &(0x7f0000000200)={0x1, 0x1, 0x4, 0x100, {0x10, 0x0, 0x200, 0x7, 0xb}, [0x3]}}, @name="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"})
socket$inet6_mptcp(0xa, 0x1, 0x106)

2m28.452037067s ago: executing program 1 (id=114):
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000001e80), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x1, 0x70bd29, 0x25dfdbfc}, 0x1c}, 0x1, 0x0, 0x0, 0x20040}, 0x20008850)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, 0x0, 0x20000800)

2m12.872719339s ago: executing program 32 (id=114):
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000001e80), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x1, 0x70bd29, 0x25dfdbfc}, 0x1c}, 0x1, 0x0, 0x0, 0x20040}, 0x20008850)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, 0x0, 0x20000800)

1m50.661044011s ago: executing program 4 (id=898):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty, 0x2}, 0x1c)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4, 0x0, 0x3}}, 0x2e)
syz_emit_ethernet(0x4c, &(0x7f0000000140)={@broadcast, @random="ece65b5c8d9b", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00\b\x00', 0x16, 0x11, 0x0, @remote, @local, {[], {0x0, 0xe22, 0x4c, 0x0, @gue={{0x2, 0x0, 0x0, 0x1, 0x0, @val=0x20}, "30b00afe4e70"}}}}}}}, 0x0)

1m50.660576672s ago: executing program 4 (id=899):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x8c, 0x6, 0xa, 0x401, 0x0, 0x12, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x64, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x21}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x2c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0xf}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x100}}, 0x0)

1m50.589894738s ago: executing program 4 (id=900):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fc, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000006c0)='westwood\x00', 0x9)
sendmmsg$inet(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000a00)="b5d3838236773268a73daecfa0fdc5beb5a7ac332a11523627b41db31da6be0055bf716aa2b23b97d43cc40c632f6b9850f364ba0831ed0d6f7157f204275aa850d992d81ba6ab984bd809254e847b644cf6459a8139c3ebba62168141343c853896523ffb04131b2786acc44a57f5b1bd33cdaef8dd3c0526b7454eefe5153c5778", 0x82}, {&(0x7f0000000b00)="8df0b915d24279a8a885f493db2928d00700a146a30cd7bb10151b1440228faa8782a6f51ebb0d223eac7e0015c044b186538ff583c4da86a8ddd2110000000000", 0x41}, {&(0x7f0000000900)="f977bf6620bc51200573c580c2139404622bb5da0f681fda8a64d64eb14fb5d51c2c62b359696a0839979d86c8b2749c67f97b544b1b99950e2100da266e9babc4870eb595965a50031d15fc9fc53ae938b4c572fc53401c8751d886f5e38641972a420ded97d35ddd7d64adc8e9f1ee0f30254f03e6502ea054d8", 0x7b}], 0x3, 0x0, 0x0, 0x40020000}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000003c0)='k', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000700)="029993440c7a0c95d3bb8cf253fd63fce5000000000000ed840da0b08cb6e72082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c06045346588e2620d36a3ed8e8f2aa891268a9b33d2d55cb92f17bc9e8aaf62f94fb1143a79e724b26dda3f90cdcd910f5f45125df1bb3dc406cadfaa693beb85c9bf8daf45ad0d332b59be2550079eff7ac51dbfd801482dc1eb8e6f36990dc6e78940d2a3d0c16c023", 0xab}], 0x1}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f00000018c0)="a45ea7ecf9a8d6a6dbcbf2f17ef46f78f244639c", 0x14}], 0x1}}], 0x4, 0xc0)

1m50.589431381s ago: executing program 4 (id=902):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f00000000c0)={0x4c, 0x0, 0x1, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x4}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x5e}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x4}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0xfffffff9}]}, 0x4c}, 0x1, 0x0, 0x0, 0x85}, 0x0)

1m50.521342162s ago: executing program 4 (id=903):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB="dc010000160011040000000000000000fc0200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000200000000000000000000000000000000fffffde4000600ac1414aa000000000000000000000000fc0000000000000000000000000000014e2400014e200008020020a000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000001000004d3cd000000ff02000000000000000000000000000104000000000015000a000000000000000600000000000000020000000080af00070000000000000004000000000000000a00000000000000000000000000000001800000000000000c00000000000000040000000000000009000000000000000500000003000000150d00002cbd7000053500000a000001020000000000000099547635fea238638ed7c12a3c3e2ac435733571b5e23b0f"], 0x1dc}}, 0x0)
sendmsg$netlink(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="1400000053040100007464d80e03a60000"], 0x14}], 0x1, 0x0, 0x0, 0x5041}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)=@newae={0x54, 0x1e, 0x200, 0x70bd2c, 0x25dfdbfc, {{@in=@remote, 0x4d4, 0xa, 0x33}, @in6=@dev={0xfe, 0x80, '\x00', 0x14}, 0x9}, [@coaddr={0x14, 0xe, @in=@local}]}, 0x54}, 0x1, 0x0, 0x0, 0x20009880}, 0xc0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$setstatus(r3, 0x4, 0x2800)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r3, 0x40047211, &(0x7f0000000380)=0x8)
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000300), &(0x7f0000000340)=0x4)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000080)={0x8})
ioctl$SOUND_PCM_READ_BITS(0xffffffffffffffff, 0x80045005, &(0x7f0000000040))

1m50.520962623s ago: executing program 4 (id=906):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000300)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f0000000400)=""/196, 0xc4}, &(0x7f00000002c0)=[{&(0x7f0000000600)=""/183, 0xb7}], 0x1, 0x0, 0xfffffffffffffffc}}], 0x48}, 0x0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="7472616e733d7669728c696f2c64656275673d30783030303030303030303366662c00"])
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x16}]})

1m35.471384378s ago: executing program 33 (id=906):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000300)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f0000000400)=""/196, 0xc4}, &(0x7f00000002c0)=[{&(0x7f0000000600)=""/183, 0xb7}], 0x1, 0x0, 0xfffffffffffffffc}}], 0x48}, 0x0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="7472616e733d7669728c696f2c64656275673d30783030303030303030303366662c00"])
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x16}]})

1.820367806s ago: executing program 2 (id=2675):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x0, 0x1, 0x401, 0x0, 0x0, {0x7, 0x0, 0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x40040}, 0x80)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)=ANY=[@ANYBLOB="140000001000010000050000000000000000000a88000000000a010100000000000000000a00000008000240000000010c00044000000000000000030c00044000000000000000031f0006006cdcbf1cfe826d48bf25307caf3c613751de9e05155995167f1ba4000c00044000000000000000020900010073797a3100090000040006000900010073797a31000000000900010073797a30000000002c000000030a010300000000000000000a0000000900030073797a31000000000900010073797a300000000028000000000a010400000000000000000a0000000900010073797a3000000000080002"], 0x104}}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)

1.770176812s ago: executing program 2 (id=2676):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket(0xa, 0x1, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f00000000c0)='t\xdck\x83kh\xf9\x13K\xabN\xa1\xf8\x14\xb9&\xc9\x81\"\xa4')
chdir(&(0x7f0000000080)='./file1\x00')
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0x9361, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000900000000f988e737040a47371647"], 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
ioctl(r1, 0x8936, &(0x7f0000000000))
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10)
sendto$inet(r2, &(0x7f0000000280)='7', 0x1, 0x0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x14081, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x4000)
sendmmsg(0xffffffffffffffff, &(0x7f0000004480)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000100)="184c9bbc206e70b221121fad3b53", 0xe}, {0x0}], 0x2}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000001740)}, {&(0x7f00000017c0)}], 0x2}}], 0x2, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000080)={0x0, 0x20, 0x0, 0x8010002})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000000)={0x4})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000300)="0f01c40f6349df65263e65f20fe66f00baf80c66b8a87f5e8e66efbafc0c66b84f2a289b66eff3f0f61a640fa4f9f7bad10466b80e00000066ef0fc729660f7f180f08", 0x43}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r6, &(0x7f0000000140)={0xa, 0xfffe, 0x3, @local, 0x2}, 0x1c)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000500)=ANY=[@ANYRES8=r2, @ANYRES32, @ANYBLOB="00000000000000ff0f0059000000000000000000d5c7596a08049333130fc6f784fca36fafe33d2a9d0addb971d0d5cf23856a023af5ce462b64fcc459ad797b1ec1224343703a0d0ddf430ec4ae0304fe776d4aa4aac4d6b9471194e88732fee4d67ad7b33a12e773c567dbb0c20b6345a955327918d57769e1ed", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r7, 0x58, &(0x7f00000005c0)={0x0, <r8=>0x0}}, 0x10)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001200)={r8}, 0xc)

1.536845713s ago: executing program 5 (id=2686):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a90000000030a0300000000000000000002e000000c00020000000000000000010900010073797a30"], 0xb8}, 0x1, 0xf5, 0x0, 0x20008011}, 0x0)

1.480045378s ago: executing program 5 (id=2687):
r0 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x169101, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000180))
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000040)={[{@nr_inodes={'nr_inodes', 0x3d, [0x30, 0x74, 0x78, 0x39, 0x4a, 0x25, 0x32, 0x70, 0x35]}, 0x4e}]})

1.479390277s ago: executing program 5 (id=2689):
r0 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
sendfile(r0, r0, &(0x7f0000000280)=0x8, 0xf)
sendfile(r0, r1, &(0x7f0000000240)=0x40000000000, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000001c0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}]}})
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0)
write$selinux_access(r1, &(0x7f00000000c0)={'system_u:object_r:hald_sonypic_exec_t:s0', 0x20, '/usr/sbin/ntpd'}, 0x4d)
write$selinux_access(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="73797374656d5f753a6ffd6a6563745f723a7465787472656c5f73686c69625f743a73302073797374656d5f753a73797374656d5f723a6b65726e656c5f743a7330203030303032343100"/88], 0x58)
ioctl$INCFS_IOC_PERMIT_FILL(r0, 0x40046721, &(0x7f0000000080)={r1})

1.010295047s ago: executing program 0 (id=2700):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0) (async)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$CDROMREADMODE1(r2, 0x530d, &(0x7f0000001040)={0x63, 0x4, 0x9, 0x4, 0x3, 0x7})
setsockopt$inet_int(r1, 0x0, 0x15, &(0x7f0000000080)=0xfffffffe, 0x4) (async)
ioctl$KDFONTOP_SET(r0, 0x4b4b, &(0x7f0000000040)={0x4, 0x0, 0x3, 0x1d, 0x100, 0x0})

959.874738ms ago: executing program 0 (id=2703):
r0 = syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x10000000)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000180)={0x53, 0x0, 0x6, 0xa, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000000)="120100008000", 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r7 = socket$netlink(0x10, 0x3, 0xf)
getsockopt$sock_buf(r7, 0x1, 0x4d, 0xffffffffffffffff, &(0x7f0000000000))
sendmsg$IPVS_CMD_SET_INFO(r6, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x14}, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f0000000040)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r8, @ANYBLOB="08030000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0009000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32=r8], 0x3c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="b400000000000000791048000000000061000400000000009500000000000000db74589d4b38cc306ac390649f72dea0e50e2317db042855d6c74ff3493c7e31e3f6c643155a8e2e01d50bc3347475750472719cc516fa14b769e7f385ba72c60242263c05ddab05e37efe81b8bffc35cdf2ac0d93263ff755d611c4cca1684b1470af6a83366aa430ad2d700b186da622d6fba70000000000000000000000000200"/173], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x5, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r9 = socket$kcm(0x2, 0xa, 0x2)
mknod(&(0x7f00000002c0)='./file0\x00', 0x8, 0x0)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r2, &(0x7f0000000240)={@val={0x1c, 0xf5}, @val={0x0, 0x0, 0x2}, @mpls={[{}], @ipv6=@icmpv6={0x0, 0x6, '\x00', 0x39, 0x3a, 0x0, @mcast2, @private1, {[], @param_prob={0x4, 0x0, 0x0, 0x3, {0x3, 0x6, "fefbd4", 0x2, 0x0, 0x1, @private1, @private1, [@srh={0x0, 0x0, 0x4, 0x0, 0x2, 0x50, 0x5}], 'G'}}}}}}, 0x73)

909.981224ms ago: executing program 2 (id=2704):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0x0, 0x1}, 0x4)
r1 = epoll_create1(0x0)
r2 = fcntl$dupfd(r1, 0x2, 0xffffffffffffffff)
mknodat(0xffffffffffffff9c, &(0x7f0000001140)='./file2\x00', 0x81c0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000001200)=[@mss={0x2, 0x7}, @window={0x3, 0x8, 0x9}, @window={0x3, 0x9, 0x6}, @window={0x3, 0x200, 0x3}, @mss={0x2, 0x600}, @window={0x3, 0x7, 0x5}, @timestamp, @window={0x3, 0x3, 0x6}], 0x8)
bind(0xffffffffffffffff, &(0x7f0000000000)=@generic={0x23, "f7c39f5ee85fae0c91e3ccfb5bb441b55ef6967df06c2913060a14051eb867cc75f0da4c1c0f660e0500000000000000a361b21d917f1d08beb895ab85c460adc58eea9034c4dda505f16b07d7ab538e5d435d5626c30d8a0ffd818eb88942ddb032a0ee82819d54cecffbac6e4b483814e486948fb090684a73b87fe590"}, 0x80)
execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0, 0x0)
r3 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$inet(r3, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0xffac, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0x1000}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f00000010c0)=[@ip_tos_int={{0x18, 0x29, 0x3}}, @ip_tos_u8={{0x11, 0x29, 0x5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x50}, 0x0)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f00000011c0)={0x800}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000002b00)=ANY=[@ANYBLOB="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"/3910], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r4, 0xe0, &(0x7f0000000a00)={0x0, <r5=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r6 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={r5}, 0x4)
bpf$BPF_PROG_ATTACH(0x9, &(0x7f0000001240)={@cgroup=r2, 0xffffffffffffffff, 0x11, 0x0, r6, @void, @value=r2}, 0x20)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)

860.349193ms ago: executing program 2 (id=2705):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r1, 0x400442c8, 0x0)
write$FUSE_INTERRUPT(r0, 0x0, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x1, 0x4)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x5, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f00000001c0)="0f01df0faeee0f72f400f20f017746660f3881590a66b825018ee80faeed66baf80cb8688f0783ef66bafc0ced66b81a008ed80fc71e", 0x36}], 0x1, 0x24, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

860.031333ms ago: executing program 0 (id=2706):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f0000000180)={0x4, &(0x7f0000000440)=[{}, {@fixed}, {@none}, {}]})
r1 = socket(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_require}]}) (async)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_require}]})
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="b40000001900010000000000000000001d0109004d0011806f9886ff8308eb1d7c1bbdbe3160578f5aa421ea2a089f6ab00ada4e5605b2e72655b3cc4c48e6405c0cf5329cb7f1821ec7ecca1d3ffb2d7144f29af11fe6557f8a74d923d12c43bc0000004d0012"], 0xb4}}, 0x0)
ioprio_get$pid(0x1, 0x0) (async)
ioprio_get$pid(0x1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="0000000000000a000000000e0a01010000000000000000050000070000010073797a300000000000000000e00900"/58], 0x74}}, 0x0) (async)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="0000000000000a000000000e0a01010000000000000000050000070000010073797a300000000000000000e00900"/58], 0x74}}, 0x0)

759.609192ms ago: executing program 0 (id=2707):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0xf0b, 0x70bd29, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0xfff6, 0x5}, {0xfff1, 0xc}, {0xfff3, 0x10}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4048005}, 0x10) (async)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'}) (async, rerun: 64)
r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000200), 0x101600, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000002c0)=[@text64={0x40, &(0x7f0000000240)="48b87fc8279a000000000f23c00f21f83500000c000f23f80f225266bad00466b8bdda66efb9800000c00f3235002000000f3048b800280000000000000f23d00f21f835300000090f23f8c42195743866baa000b0fcee660ffd75cd460f233d3666426f", 0x64}], 0x1, 0x1, &(0x7f0000000300)=[@cr4={0x1, 0x412144}], 0x1) (async)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) (async)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000380)={'team_slave_0\x00', {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x19}}}) (async)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0, <r5=>0x0}, &(0x7f0000000280)=0x5)
setresuid(r4, 0xffffffffffffffff, 0x0) (async)
r6 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000600)={'team0\x00', <r7=>0x0})
r8 = socket$netlink(0x10, 0x3, 0x0) (async, rerun: 64)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0) (rerun: 64)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async, rerun: 32)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000540)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file2'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@redirect_dir_nofollow}]}) (async, rerun: 32)
r9 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r9, &(0x7f00000002c0)='./file1\x00', 0xc000, 0x0) (async, rerun: 32)
chdir(&(0x7f00000003c0)='./bus\x00') (rerun: 32)
linkat(r9, &(0x7f0000000100)='./file1\x00', r9, &(0x7f0000000240)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2) (async)
sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0x40, 0x24, 0xf0b, 0x3, 0x0, {0x0, 0x0, 0x12, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x8000, 0x0, 0x1}}}}]}, 0x40}}, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x2, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x1a, '\x00', r7, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x1000006)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca0000c441f96ec80fc4c60066400fe2def3ad46c7045300101000f00fc01ec422e10399c5c1202066410f6f15040000000000e1f563df", 0xdc000006, 0x0}, 0x0, 0x8, &(0x7f0000000300))
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000480)={0x24, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYRES8=r5, @ANYRESOCT=0x0], 0x0}, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

745.432936ms ago: executing program 0 (id=2708):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000030c0)=[{&(0x7f00000001c0)="1400000016001963d25a80648c56915a19aa2bfe", 0x14}], 0x1}, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_clone(0xa1b4000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)="eccd991c06d89e9bf0a47c552bdd3a206b5798aea93e75f350a912245285727a9ee658ca85b2fb28e65b53ecdbf03886c737")
ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, &(0x7f00000004c0)={0x4, 0x15, 0x20, 0x0, "c3fe1700"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000400)="66e000b8010000000f01c1b94c0300000f32b9be0200000f32b9800000c00f3235000400000f307373baf80cb8185c2989b8dd6a00000f23c80f21f8350c0000000f23f86619820c252566baf80cb89fa7d981ef66bafc0cec0f01c566ba4200b00dee0f01cb", 0x66}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0xf6, 0x0, 0x1, '\x00', 0x1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

674.052247ms ago: executing program 2 (id=2709):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x20000, 0x0)
ioctl$FIONREAD(r0, 0x7041, 0x0)
read$FUSE(r0, &(0x7f0000001140)={0x2020}, 0x2020)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x18}, [@ldst={0x6, 0x0, 0x3}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xa, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7030000070000008500000021000000b70000000000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0xe8a2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

672.817045ms ago: executing program 0 (id=2710):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_usb_connect$printer(0x4, 0x2d, 0x0, 0x0)
syz_emit_ethernet(0x72, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaa6acf7427c100000000000000000000ff020000003c4b899e0000000000000173009078000000000c79ef1cfb698e35cb7c556097"], 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_WRITEPROTECT(r3, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}, 0x1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

672.611651ms ago: executing program 3 (id=2711):
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f00000001c0)=""/137, 0x89)
renameat(r0, &(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000080)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000003440), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x3a})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001140)={&(0x7f0000001080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict]}}, &(0x7f0000001100)=""/43, 0x26, 0x2b, 0x1, 0x5, 0x0, @void, @value}, 0x20)
r1 = syz_open_dev$video4linux(&(0x7f0000000000), 0x800, 0x201)
fcntl$notify(r1, 0x402, 0x8000000a)

589.959917ms ago: executing program 2 (id=2712):
mkdir(&(0x7f0000000440)='./file1\x00', 0x1)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f00000003c0)='./file1\x00')
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x40)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000440)={0x53, 0x0, 0x10, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r2, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, 0x6, 0x40006, 0x9, 0x0, 0x101, 0x4087})
write$selinux_create(r2, &(0x7f0000000140)=@objname={'system_u:object_r:dhcp_state_t:s0', 0x20, '/usr/lib/telepathy/mission-control-5', 0x20, 0x1, 0x20, './file1\x00'}, 0x64)

589.35667ms ago: executing program 3 (id=2713):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba9a12})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/oops_count', 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
sendfile(r3, r2, 0x0, 0x6)
r4 = gettid()
tkill(r4, 0x16)
write$cgroup_pid(r3, &(0x7f0000000040)=r4, 0x12)
write$tun(r0, &(0x7f0000000100)=ANY=[], 0x46)

588.901073ms ago: executing program 5 (id=2714):
syz_io_uring_setup(0x26fa, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xdff02f65c678deba)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x3)

460.587774ms ago: executing program 5 (id=2715):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)

459.927735ms ago: executing program 3 (id=2716):
mmap(&(0x7f00003ea000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x4000)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x29e903, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r0, 0x400455cb, 0x0)
r1 = io_uring_setup(0x168e, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xffffffff})
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ppoll(&(0x7f0000000080)=[{r3, 0x540a}, {r2, 0x2189}], 0x2, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000000080)=[{&(0x7f0000001700)=""/4081, 0xdf8}, {&(0x7f0000000100)=""/134, 0x86}], 0x2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

387.664805ms ago: executing program 5 (id=2717):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0)
syz_usb_connect$hid(0xf63067478e218e8, 0x36, &(0x7f00000000c0)=ANY=[], 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYBLOB="05"], 0x9)
mlockall(0x3)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil) (async)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) (async)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
brk(0x20ffc004)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000340)={0x0, 0x5}, 0x8)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, 0x0) (async)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, 0x0)

119.079566ms ago: executing program 3 (id=2718):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000030c0)=[{&(0x7f00000001c0)="1400000016001963d25a80648c56915a19aa2bfe", 0x14}], 0x1}, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_clone(0xa1b4000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)="eccd991c06d89e9bf0a47c552bdd3a206b5798aea93e75f350a912245285727a9ee658ca85b2fb28e65b53ecdbf03886c737")
ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, &(0x7f00000004c0)={0x4, 0x15, 0x20, 0x0, "c3fe1700"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000400)="66e000b8010000000f01c1b94c0300000f32b9be0200000f32b9800000c00f3235000400000f307373baf80cb8185c2989b8dd6a00000f23c80f21f8350c0000000f23f86619820c252566baf80cb89fa7d981ef66bafc0cec0f01c566ba4200b00dee0f01cb", 0x66}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0xf6, 0x0, 0x1, '\x00', 0x1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

59.969705ms ago: executing program 3 (id=2719):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x38, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffff81, 0x4310}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @hsr={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8}]}}}]}, 0x38}}, 0x0) (async)
sendmsg$sock(r0, &(0x7f0000000240)={&(0x7f0000000100)=@nfc={0x27, 0x0, 0x0, 0x5}, 0x80, &(0x7f0000001980)=[{&(0x7f0000000180)="af99302e26d7ebb83923ea387ce83dab21351197165bcfd877977a407ac2088cfac5db94ace3356a97a12255a39e2313c72bb5e149736ca68898039438393ddc3ea668d725a6860a39c2a3f5ea7189a9045b217a9f4fbc895d53230b671ca53c30cce87e75188ead2ad78bfbf092638ccfc0b4b55097a8a6699e8e037353798f30f9a22b81718f569e671a7b3dab2c55c1d507464d6d62af67bfc03451319f69e8882342a471", 0xa6}, {&(0x7f00000002c0)="76beace719cb90273639323e889d61af28819ec5c289824d4310399a0f89fe7dabf161f97668e81c3a1d95533f151f089f37a4a203a55dfdebf459d6d5e47d041217bea009d5f5ea35a08de60c5a7ea9059f91939247aeafa1f0b294861e8ee433feaae2c5f7ee6159f01f1d292bafc7893a4c0c8970ae991a4b94996a98ff68f86387ba04bdf576c3d7c44afa2cccbb411c918ec9b4d0e4f08857f6a6b07fc734c3ff5f0631b964b02a5661df2689514d30e0", 0xb3}, {&(0x7f0000000380)="dfa71a250085ddcdd5e8a2f6c60a472457856d8351ca9f6c0f0f2f5a497906fe34ad8e3ccb13305d096e9f66a2452ac5a12917424d65a26cc758967886dc4f1ab11767f596b1b9c5cac2c4a3cb6a2c0c2435eb8fe44a7c5a1640255b58aab0f8e8fba458effe828f9d0f89363d5c83838148d591a9485b9430915c175fc26b6f4d0bdbfa2508e800340143b57ab67c843408f5ad5b29ab4b62870c66bb742678e802a7c1503d3a6f6a0ba453dc502fa09d0b80274ca28c26c9631d35c2ef", 0xbe}, {&(0x7f0000000440)="22f74a9b9a6b27175dbc5692ab58a65946081e5c5227b7e788c544b1735403fc140a05ac74286e0a1b257e33390509160d2feb387bb2682143a4f87189dbade05395df502e4d975fac3b86adc96b95df15b9b13b5c54b6446c63e2708913d31f1d60012f34000904b03284fee89c1ac560636f853e80d6e6a172339fdb8306044891ee68f3ecada58afb8b62f765f91e0c38e194e66d42231de6cf0ae810693df11e6904fdd92985edcb214beb0e3dc7a8b05aa886a729f93b9d8ca990d612b37bea01131bd8b13297acd7550aefc1312313", 0xd2}, {&(0x7f0000000540)="6a9867f3c27807ac55e66dbd2b3852cde29bffd946b84ed440b69f1f3bdaffd9db9c1f928d42199edab2ede11cb9c25c2b8ba374547e2e385776250c3f8d9edbaf8a30b69460f99651b6a4453a61f43136a4bcfaa084e5bb4849ed32b597ebb9cea71810bbb611c681b4b9b8fee280be99404d55414eda3681c90f3944b4fc7a59fc5fe8e78893363a1a2ff9604d4aa6f453", 0x92}, {&(0x7f0000000600)="eb9c7546094ae3f4254b2960cdc446cdc413c89c6cffb6e8ba662ceeff9e1b657192a50c3c6bb472e84f471a75fef3bbdcb94db645a03932396772b4432bc514acd9510d68efaa746f34a36ae939b548159a52e943ea55e57b6ed9e4b09898a23fd2d356773bcabd3867b687a00ac80f32b3a525a0d89818aad30158345b2c968ee333b87a1c584c1082ce28f8dc24349f63ffcd28b243772bd8826879aba9c8ca9f9c215bfac272c6021df05b1cff8cb44199a8a5810106649587dbe38c746c0e17761a86bf99f3968a9f7d992cc8", 0xcf}, {&(0x7f0000000700)="0b33314c94f306d5262939b2bc64980741661fbf39e04b840ce462a46a8a033e673e53eb0684df4f68a270591b3f7a34ecdd94603718bd9f725edcdce481815ef178421d54e8a19a74986be8eac501fe19d2b37a2ea22135199410424213d6fb6d53ed8f0193c3169cdf79223a7968a625e3965a59ea6e95bb29f9b08ea88435ec252c854faba3a434ad6f9a6c3a47fd366cafa34dc56ab9eeafcb520acb411b55da5ac0cdb9252c53632d2a0653722a199e44ac117aad9041447b5241fba176f39cf56b3ac1510d5bf8ade6a846808a713c94d1629e20b280ab61b54835725b75aed5d6e5c486e1dacf22f3c9d7e2bf305ad9c894234ef700", 0xf9}, {&(0x7f0000000800)="4fec73bb6d5c8844ebd145646d3b7d737281ae3139c1d350886ef3dfb0c249cb40fe7d37e1f35300dcf3a2a7b09788d6f8e9b83c95de64602b9423bafef3d227ee7b391085a281d99a990cefd6161ad67d69673ca73b6574d2ecd35a691bb07ca4a1d7c77fcd8b6b781122dfce59e1658491ed0d7c376226d4b6903d70983e6209c20c9fe03f128fbba735158a0e4836807944fa7cf6700f7a75f7cd040172b567304e0f9aa36b658c082c97a8ed4ee6b87c5ee72792460f32b5086d46c96121e5e20dbfe05e3f7ddf4be11f45856f4066eed5f3845b8b9fdfaaf5f5784532622ebde0d273b427eab6dd0cf9963044fa57880846b1edeaa0931e2b3c697bd9eb03fc8a87e4d03371e03ff7504f357b6f6eddcfa773e778e091fb54148c6617a1a711e4aefe627417c8b3477547296df2940a9e1a583dee1673a2f5bf980bb48763ad2a52e43a5f6567902aab95e27f4693fd93af2b0b611bcc3024ab6d7043e237d9627270d887fa68d9c1fa83a2ce6ce03ca8182e9f8dc54bc3952fc431fd4cef88cf554ccf2269abb305f8dfe0f259a284f6f87d74a04aa87846a77367eb2db801d83672bf13c4f81b106b6570ea5c7b692e67e24d1d9a08ad3e452bb83090f98e77cc3b142248a3f5cca54cc0eb9b9a4e8833a276b999674de09c493e35fee8eb24c219b0e1db4b834e2aa2e7df9e9c76bb173e225775af2197faa961834ec699a35d200cadb759b94a7e9f96a5df3f7526a326287d45eb8ecf3994cb88bd6b1054c3446953b3a2e209b00c394cbfe7289b55ea9234d6b5e966c721a9deb628066514c92e13d3daf984d08ebbfe7e5e456c5aadbd03f489b5872bcbd9b9cf3307b8000bb3504ced129491e6eae3b663e50a9c34432910695bb872bccc6e0e6b5e73890b81a069b8ee6b46c74c08f635a8c46533b0304efdcf6d04ebb207e0d5db947b9bff4e3ae3b4681dbe8d3d68961f3e7f71d833e6b1cb75798715ec8ffd5230ae346db995ab2a8d0d9e0d1db422e69bf3039d3bf6fe33333c3e8b22f55da7ee6973b50674409c626bab9174b5782de6a0b889c05b514251532c149d46ceea8655baaa88e37ddcb83fe8f7473bca2481cbef671be06d6226904700b78bc24d35070265a55c90ccae15be040beeab4103d81ed009335d98d881f53f9c7b7cc8fa0f09117debb4c1e3fdf865a4363f304c1701b3cfa7f10635ed4b68a6017be9cd502be12ee4348006d760464828ad02af2be88394e148412620f7fe8c8bc8489408ffa85af1c4b1d0009c2abf02180978ccc6fa97140caeae03517cd46ba35ffba8a0931697de287a03e66bf99bde698ac087fc1a1a6a0860d58d01707541f992ae58f9d29cbf72c6f91c5582cdcba56b5e4ec2330559415a513e9c590c3df23ce8c32606e7a9042b131c30e4c57954a06bdd1300afed8743d5d296be2db75163585fcc4eb87761aeb6c3177119affd5268a3d7449191bc22e4f8188841ca41f1bcdf11afbed639077350339b52da4a80d87ebbfe0daa7068f753f403f4dacf031c8900ac54b7acc27a69d4de39f138df383261862d0d4bbc8c5e7cb36ad0e28d6d24af6a28613c85d484f147e577a28df379a826197204ba9ba2e803b43802c6f3953c3636c351f1335a44bd74b3649d7e9b337f0fda2a78f2a97be0e7097e1d41fbdacd720d907f3dbe50fa33b110baa866a3889f4d665345dda03b2ca396699573d749072dff9947bf71b7d45b4c95c6f181093bf877e482c68a63ed2b3f2f77e0ee2bebf4c587219d46928fb501576f98f37403b6170817c52411baa00ecf3b6a2b4ee46355a4026310ff544cf5d0d53193b2ff84ecdb35ccb0a66e6be0ab86d65d6df0bc1ec9c1f215cdab286635f45a1b07adf2097546fe7328f9fac8b4f48d85303eaa0cdc1388c8aa7b22c170bca54a5bfd970800ef8e071bad24778d99e3bb450409c68ba484a6b77e8f52ad7dd44090d88b88cdccd53c7d0932aca98f591f05b6e62019789faed7aff53bdbe4c39e6f94ce9bd3e672f7bf3a3cad73a790181f33d1be2771574eb1201756961ff5ca81bf78437dcba56552751c7e61e5899587bc1f533db38c25c9e82f52c2511907b89149532091454cfc7f1cef54946f4c73cdecc97780ac858c7cf6a40bf6717802379aa2c9d99d72b236eeb0aaf803ae8b532c301aef83bec0ef232bce57388546b9ecc42a3203d385404ddea429ce032f72714ae6f78a4f7d7214d63ff9480963c731166f075d4b220a9d644ef91b6002b0b21d1c9276e338a24d9a3391078e341dc6eee2aeaa46f661cc8619cf88f403d25f45bfc3060020cbaa76e03171274cd6c02caa83bd0de881c0800f8d8e84ff671193fb1d00718f5754b385284b572caf274e176d6da2a3b27ef85865e570f3274091163dbb5030b1721ce6a60817462c7e8d4a86ee0bb88203a5c3bbcf60f2e3fcfe1702bcec4ac917a972da8db0aefac0daeee09c8fda01eaf546578d503e7ce23a867ad503c0afe3b96df0c8ee5c4ef865bb21fb8d6c96fb14e606d13eeb10c71adf872998a56347a858109b8b4dd8b97f76f78fbeea63858dc1422e818c73b8860beaa3bba8e08de3a595aad83f28ea56cdac81ee3ca9b1444d20e874f5578cb9380d4ef0dbd70cf5d4e7ed8f64b9c8ba35e2b7889dd9b01dd69ebd567298726af046bfa99b42579d5b4b633bf388bf3a7b8c73ad6e8cac56fdb68edf1708f489ed9d988ab810e8f57569a99631f17186d9f991296b892008a713ae7b96d6bc0362a036171ec573eeb5feaf416d8a2f4080a544d6fd552900b6c9614d1b4ff20931cf2da58948d5b02298fb5f387d6bc9caed3e39f67d76c139cbfa9366951ad9528e8e743fcf3dc6da0af5fde40c18b621f972953efc5d5760fd09e7222d0c20d7126fadae84ec9233dbd053fe645345e585ed7b0ec2e1a88de2a523476d2cf733021d58a61ab547deda4ae712d5c7d81751379f3bc4cfe17815e21ea62cf162d67a310e6b334dbd3bbe98ebac8ffa5592d6800027c987b6edd79578e390eae2a9b8a07777c1047f740e23040f5e5c9d9cf31a44eae921fbc72a4e93ad65d3a63205dbf1208362eb4f46bff1a6491e64914ae9bb95567536ef90caab47e40f8e1950ddc9cbb824539aafa1e2985cc49fb20ce72c79eb4c8dbe3ef2b314cdd0ee0487a564a1a7cb093127f1ad24dc7b9d8defdd152749c8e43eb11cfbc7491166e6cb5ecd914a30fbea852226428ee33246c0313126bdc8952bbf7ae924259e2ef3dc49a346b11844fd69144f13a0ba57a6c51e2830b129b04d033cc336fa626b47a1723745266c54831b93541d08471bd7d092f75a910ffb9f6c2b8864f5104d53ed55f74f1e7e3dd240043e6c9e92ac83d2089ea4664734c40cfd83fb74a9d9ddbc6e25646e72e0c78962e3509d1060da39768bdbfd4ec5c1a390af77c7e4688840afc22577ccc79171028ebb98bba052b3f4179ad1c8b00c38bab44932025672e03bc493a14c4a1ddc202e650f9e4470d0d87ba27cd6faf25705137b0bc7b5e571b5836ed089a7d82179e63bd3074b7a783514f14dfdc8bfc00608b61965693a267a96260f3f3d4ee8484eec38d0ea6077f4c957b153d80e9800b8fdff9145d37cd750f79aac7d94db00e77454661ed437b346f86fb1ce0d5eb7309f06aaec26d36ba77005624c4849637441a1c32c5886db68b5bbe8a51f7daefae938e29aa96644d1c79757ea05956a0f957cab3146c58293f4ac76df3bdb28266b78be6abff380b62291f87b0f955ffce74eb98f5fca387de8451700c36dadaa517d954362f8911da591452da00b8ba2853fa0fcbabfe0ea87f55844dc7390a9bbacfa921b84c25f4be88f036fa42367444388952cf2e0628d1a583a21b35403be4ff247fd1148503ca6fb4b08155b1472d7a864a900b69f6c90cb50d227b4274b0e7a3a515669559753394d0e7fb1ac52d47df7b423e10fec9b462ecd18938f32fcc6ea3a3d41bf827b05ed87b07b9915c29f4452baa9503b43276bbb878e14b444436ba6799c54eec379e3f6ff0cdb0c1ba337db03e993f138eaa0fe65442abe5207aaf8b7546cb3e6b7d22b41a4f188cd6b295bdb976a8e8f2d82a9807e8f3533ab9e0e9068c8440df17348502b3bc726cf652fdd1bb0674c41467f4c5896f749ba0130d1027da4549a9b1c56c2cbb399986d14f5efebaeb58de49acb94ef98968df3e90fb72f0905322b85e0b1fc474d587d65232266c5931c53106d281edbee1d66519b1844d100fb20c48497a5a0cfafcc80749c234d8b6cbcee99c5d3dc574031a458c2db1639575cc2d5b570bf06afcced466d04275f034585c933fbdf552bf0d7efe874b139e6640aed46f99ed14137ba13b9e33c5875f7458dc3f6a4dc7784b5073e1721c4eaff8c356dcae8bc90bee3db8d8da2ec8c38a3fd08c2f47284dd5e55990fa33176398846b431628e3d6822ec81ab1e06bec66a2cfaa2f11a133fa6322b8e043b0dc25eaa67f2e49b527fd6c1d76138f5dbfed20080ca417213f6399b858cb6ca998a8fe2c09a37bb7613880c39b7398cfab919ca50ac04953441d358c6b683069f937a05da296c43c7d4b96ca2abdc7fe56e06ad061d7506b71771e5da45f8be0f2ce96f690f6d957d7c308a19008ae800bf8d712fe822351312c4129142b493b90cc87a3b4b127c53faf1844249d16f7e33d0527e701cb998cb51b0a5b8ecb76373eaa930773e68ea58e2b852758f0a7307175ff1054891193e480363f58a37a37e0ca0a236cd4d4020856ba7aaa7ec15bd26415cb8d962f6e2144d3125e1dc3a9ab755aa5a97726a38013f6586abe96044511cd6e72d297878a663ac042723f34676e5c51064905e65fa4f8367d22ca6c949ecbf1c372706f8f97216c524b1d9d2fddfdb8de5e5aaeefa222e77c5a16a98f0d30c7eed3f656ecadc79ec9ef15f25fbbdbcd9796fbe8f1d6bc35546b1894913f894105c18e2d5642234e7b8cdf32dbe32e9ce44446ce7f58d96429239048e78420560592796ae4d3307bd5424831c154f3ce282baa32707b4fe40f7427854d85c6ad4e19f703d09a8b34b4f039b0414824ec6be7437feef73166b4c080b73e012c70c655bce3cf4fbfd23768b2a378caf0492d5f85d9ab2e426b181f7f49217d2747e8d0d7ee5794747bee4ff49d792dcb11cbe882fe42981515984e522c064eb5089afc3624228e9b417c0914d6b32981675b86e60338b5f47e85d9d1a39d43adb6aecdc15136d3866a52bbd2b33feb6b6a8d8c8e5ead48600b9b2b0e97ccf05a1d0ff6ac208449431d1a83bdaf3dea4056e0d2aa7885b4c8897f35cb7ca51f65fadf38caf64c248fac8905373e7f37aeb79abae97b8973b836ddd94ccc62e3ffc2b40573ba5827a194c0c2bc3947038dc3d1bcf3a1fba86ea414a4fde9ce766fb4078b6fc767fce6b814697d5f259b385d618a87329aaac5390cb3472a2b11ba0c3cd758ca9e3c9b90e2a5b34f4e3492235a1e3d7fec60dfb880c764ab8a9bb9727c8e80b22ac4327db453b04bd0d531d87fbe1076f69bb91182e62321a29114cced657538094cf3a3d10e7580d6995638ef2991b45fa7a5f4321339965ca249e5e06d1ada836ef55d220001b27d97670a9b82dfd9a7f14e20e92417a52755b6e8f0acfabf93805ace195ec4ba1d17960394269a2c447a91bddbb08802c10b58b329886a24eec0750b0bbe6a32eb01706c43e51f2a9b446afccf4371cbcd3b29723a0b2a7912bad01a81eb666caa509cce210ea4535c7b0f1deed77", 0x1000}, {&(0x7f0000001800)="7cb7ca7c813e05fc34738932a974d95aa43f75b0364619e24323b133d0e0e8ebeec3e2effa7ed84bde930c5dbe6230d49be9e408395d8136790b4b482fe9ac36e9aa7b5c38912532cdcb50ad8f935f08e69e1ae16b0f13d6ab841f1dbd8fdc197728fe266b1f1118", 0x68}, {&(0x7f0000001880)="1cc966469c77d70a430e5542f4ab3b86461b5b381f31a1c9eac0d60f40f89dd5ce4b6b2514cfb67457636b5f8d5da1d7ca159333f94ef5feb7371276e2c7d3c60edc180c2e27782d183ab3d47b895e30c6b8acb08d21030ffca5accaaefcc0db6e0874b3c5272a44a1f8ba2ead34f0ad4dd51f77698b82f3a153655fe11aebdb89206b1b728a5a70eb869d7b172b66b459083236d047dacc4cd3f28acaf9829a1ac86ba2586debc5f424099a5185cb66e6ea73c6cfba5233015f9b0961dc0bb405a6b7d363d7676f9187b31514cf4b70a02a849070d0c6293b44dfdffc50c518", 0xe0}], 0xa, &(0x7f0000000080)=[@timestamping={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x6000}}], 0x30}, 0x40080)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x5c, @dev={0xac, 0x14, 0x14, 0x37}, 0x4e22, 0x3, 'sh\x00', 0x58, 0x4, 0x65}, 0x2c)

0s ago: executing program 3 (id=2720):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$L2TP_CMD_SESSION_GET(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x68, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@L2TP_ATTR_FD={0x8, 0x17, @l2tp6=r2}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x80}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0xff99}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_MTU={0x6, 0x1c, 0xde46}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e20}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x6f}, @L2TP_ATTR_MRU={0x6, 0x1d, 0xe3}]}, 0x68}, 0x1, 0x0, 0x0, 0x84}, 0x4000)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r4, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r5 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r5, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r5, &(0x7f0000000980)={0x2, 0x0, {0x0, 0x4b, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r5, &(0x7f0000002080)={0x2, 0x0, {&(0x7f0000001f80)=""/152, 0x98, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r5, &(0x7f00000007c0)={0x2, 0x0, {&(0x7f0000000840)=""/126, 0x7e, 0x0, 0x2, 0x3}}, 0x48)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x16}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
sendto$inet(r8, &(0x7f0000000040)="e5", 0xffffffe4, 0xa000000, 0x0, 0x0)
r9 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200))
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001000250800170000000000000a000000", @ANYRES32=r10, @ANYBLOB="01"], 0x20}}, 0x0)
r11 = socket(0x1, 0x803, 0x0)
getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=@newlink={0x4c, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r12}, @IFLA_MASTER={0x8, 0xa, r12}]}, 0x4c}}, 0x0)

kernel console output (not intermixed with test programs):

1012] Malformed UNC in devname
[  463.669627][T11012] 
[  463.673362][T11012] CIFS: VFS: Malformed UNC in devname
[  464.117292][T11016] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1791'.
[  464.150295][T11018] lo: MTU too low for tipc bearer
[  464.151942][T11018] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  464.170529][ T5299] Bluetooth: hci1: command 0x0c1a tx timeout
[  464.178825][ T5299] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  464.182612][T11020] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1793'.
[  464.250504][T10962] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  464.250585][ T5299] Bluetooth: hci0: command 0x041b tx timeout
[  464.252319][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout
[  464.296263][T11027] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1796'.
[  464.300141][T11030] mkiss: ax0: crc mode is auto.
[  464.341675][T11034] netlink: 'syz.2.1798': attribute type 10 has an invalid length.
[  464.344227][T11033] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  464.457055][   T39] audit: type=1400 audit(1737257821.141:642): avc:  denied  { append } for  pid=11035 comm="syz.5.1799" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  464.528998][T11042] fuse: Bad value for 'fd'
[  464.537256][T11042] overlayfs: conflicting lowerdir path
[  464.610259][T11037] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  464.612243][T11037] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  464.614172][T11037] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  464.658218][T11049] input: syz1 as /devices/virtual/input/input15
[  464.909087][   T39] audit: type=1400 audit(1737257821.591:643): avc:  denied  { append } for  pid=11056 comm="syz.2.1804" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  466.580588][ T5983] Bluetooth: hci1: command 0x0c1a tx timeout
[  466.650637][ T5983] Bluetooth: hci0: command 0x041b tx timeout
[  466.652374][T11035] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  466.661101][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout
[  466.740560][   T39] audit: type=1400 audit(1737257823.421:644): avc:  denied  { getopt } for  pid=11075 comm="syz.0.1811" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  466.816060][T11088] xt_hashlimit: size too large, truncated to 1048576
[  467.044598][T11095] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  467.046503][T11095] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  467.048443][T11095] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  467.052730][T11105] nbd: socks must be embedded in a SOCK_ITEM attr
[  467.101337][T11112] lo: MTU too low for tipc bearer
[  467.103191][T11112] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  467.308016][   T39] audit: type=1400 audit(1737257823.991:645): avc:  denied  { remount } for  pid=11121 comm="syz.0.1826" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  467.308050][T11122] binder: Binderfs stats mode cannot be changed during a remount
[  467.556958][T11135] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  467.559597][T11135] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  467.720636][ T5918] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  467.800545][ T6015] usb 8-1: new full-speed USB device number 9 using dummy_hcd
[  467.871648][ T5918] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  467.874832][ T5918] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  467.879223][ T5918] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  467.882884][ T5918] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  467.885798][ T5918] usb 5-1: Manufacturer: syz
[  467.888631][ T5918] usb 5-1: config 0 descriptor??
[  467.930610][ T5918] rc_core: IR keymap rc-hauppauge not found
[  467.932980][ T5918] Registered IR keymap rc-empty
[  467.935485][ T5918] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  467.940502][ T6015] usb 8-1: device descriptor read/64, error -71
[  467.941946][ T5918] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input16
[  468.149634][T11141] input input17: cannot allocate more than FF_MAX_EFFECTS effects
[  468.180477][ T6015] usb 8-1: new full-speed USB device number 10 using dummy_hcd
[  468.310535][ T6015] usb 8-1: device descriptor read/64, error -71
[  468.421261][ T6015] usb usb8-port1: attempt power cycle
[  468.760530][ T6015] usb 8-1: new full-speed USB device number 11 using dummy_hcd
[  468.780869][ T6015] usb 8-1: device descriptor read/8, error -71
[  468.970509][ T5299] Bluetooth: hci1: command 0x0c1a tx timeout
[  469.020548][ T6015] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[  469.041114][ T6015] usb 8-1: device descriptor read/8, error -71
[  469.050477][ T5299] Bluetooth: hci0: command 0x041b tx timeout
[  469.050516][ T5985] Bluetooth: hci3: command 0x0c1a tx timeout
[  469.054435][T11091] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  469.088359][T11143] __nla_validate_parse: 9 callbacks suppressed
[  469.088370][T11143] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1833'.
[  469.092889][T11143] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1833'.
[  469.112742][ T5918] usb 5-1: USB disconnect, device number 8
[  469.160894][ T6015] usb usb8-port1: unable to enumerate USB device
[  469.208297][   T39] audit: type=1400 audit(1737257825.891:646): avc:  denied  { write } for  pid=11148 comm="syz.2.1836" path="socket:[36800]" dev="sockfs" ino=36800 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  469.369455][   T39] audit: type=1400 audit(1737257826.051:647): avc:  denied  { sqpoll } for  pid=11161 comm="syz.5.1841" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  469.662106][T11168] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1843'.
[  469.665843][T11168] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1843'.
[  469.806270][T11174] netlink: 'syz.0.1846': attribute type 1 has an invalid length.
[  469.891987][T11179] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  469.896567][T11179] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  469.955134][T11181] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  469.994742][T11184] netlink: 'syz.0.1849': attribute type 10 has an invalid length.
[  469.997047][T11184] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1849'.
[  470.011159][T11184] team0: Port device geneve0 added
[  470.175966][T11194] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1851'.
[  470.178951][T11194] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1851'.
[  470.592411][T11205] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  470.595221][T11205] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  470.598056][T11205] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  470.606137][T11205] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  470.630827][ T6015] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  470.656384][T11214] nbd: must specify an index to disconnect
[  470.656537][T11213] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1859'.
[  470.661633][T11213] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1859'.
[  470.704582][T11217] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1861'.
[  470.712110][   T39] audit: type=1400 audit(1737257827.401:648): avc:  denied  { create } for  pid=11215 comm="syz.3.1861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  470.725633][   T39] audit: type=1400 audit(1737257827.411:649): avc:  denied  { write } for  pid=11215 comm="syz.3.1861" path="socket:[36968]" dev="sockfs" ino=36968 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  470.764061][T11224] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  470.770464][ T6015] usb 7-1: device descriptor read/64, error -71
[  471.004029][T11236] program syz.5.1868 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  471.020612][ T6015] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  471.160475][ T6015] usb 7-1: device descriptor read/64, error -71
[  471.281220][ T6015] usb usb7-port1: attempt power cycle
[  471.426883][   T39] audit: type=1400 audit(1737257828.111:650): avc:  denied  { ioctl } for  pid=11251 comm="syz.0.1873" path="socket:[33643]" dev="sockfs" ino=33643 ioctlcmd=0x5451 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  471.478850][T11252] RDS: rds_bind could not find a transport for ::ffff:10.1.1.1, load rds_tcp or rds_rdma?
[  471.515443][   T39] audit: type=1400 audit(1737257828.201:651): avc:  denied  { create } for  pid=11255 comm="syz.0.1874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  471.572294][   T39] audit: type=1400 audit(1737257828.261:652): avc:  denied  { write } for  pid=11255 comm="syz.0.1874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  471.578332][   T39] audit: type=1400 audit(1737257828.261:653): avc:  denied  { ioctl } for  pid=11255 comm="syz.0.1874" path="socket:[39092]" dev="sockfs" ino=39092 ioctlcmd=0x8907 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  471.640499][ T6015] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  471.671160][ T6015] usb 7-1: device descriptor read/8, error -71
[  471.758681][ T7536] IPVS: starting estimator thread 0...
[  471.862954][T11268] can: request_module (can-proto-3) failed.
[  471.880618][T11260] IPVS: using max 39 ests per chain, 93600 per kthread
[  471.922059][ T6015] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  471.925648][   T39] audit: type=1400 audit(1737257828.611:654): avc:  denied  { module_load } for  pid=11273 comm="syz.3.1879" path="/510/bus" dev="tmpfs" ino=2722 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  471.943583][ T6015] usb 7-1: device descriptor read/8, error -71
[  472.050758][ T6015] usb usb7-port1: unable to enumerate USB device
[  472.220510][ T6015] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  472.360600][ T6015] usb 7-1: device descriptor read/64, error -71
[  472.546383][T11301] nbd: nbd0 already in use
[  472.570633][ T5983] Bluetooth: hci1: command 0x0c1a tx timeout
[  472.610553][ T6015] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  472.650783][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout
[  472.750478][ T6015] usb 7-1: device descriptor read/64, error -71
[  472.855275][   T39] audit: type=1400 audit(1737257829.541:655): avc:  denied  { map } for  pid=11320 comm="syz.3.1893" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  472.863958][   T39] audit: type=1400 audit(1737257829.541:656): avc:  denied  { execute } for  pid=11320 comm="syz.3.1893" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  472.871792][ T6015] usb usb7-port1: attempt power cycle
[  473.230477][ T6015] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  473.251123][ T6015] usb 7-1: device descriptor read/8, error -71
[  473.888859][T11352] openvswitch: netlink: Flow actions attr not present in new flow.
[  473.987752][   T39] audit: type=1400 audit(1737257830.671:657): avc:  denied  { watch watch_reads } for  pid=11347 comm="syz.3.1901" path="/proc/1279/task" dev="proc" ino=33725 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  474.070269][T11352] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  474.072393][T11352] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  474.074409][T11352] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  474.388218][T11368] cifs: Unknown parameter 'cAche'
[  474.515220][   T39] audit: type=1400 audit(1737257831.201:658): avc:  denied  { append } for  pid=11375 comm="syz.3.1911" name="usbmon2" dev="devtmpfs" ino=743 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  475.600560][ T6015] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  475.655403][   T39] audit: type=1400 audit(1737257832.341:659): avc:  denied  { write } for  pid=11394 comm="syz.3.1919" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  475.760965][ T6015] usb 10-1: Using ep0 maxpacket: 8
[  475.763858][ T6015] usb 10-1: config 2 interface 0 has no altsetting 0
[  475.767385][ T6015] usb 10-1: New USB device found, idVendor=04e2, idProduct=1412, bcdDevice=ca.10
[  475.770063][ T6015] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.772822][ T6015] usb 10-1: Product: syz
[  475.774074][ T6015] usb 10-1: Manufacturer: syz
[  475.775458][ T6015] usb 10-1: SerialNumber: syz
[  475.858505][T11406] __nla_validate_parse: 11 callbacks suppressed
[  475.858516][T11406] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1924'.
[  475.863227][T11406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1924'.
[  475.983278][ T6015] usb 10-1: USB disconnect, device number 3
[  476.011142][ T5983] Bluetooth: hci1: command 0x0c1a tx timeout
[  476.067905][T11427] sock: sock_set_timeout: `syz.0.1931' (pid 11427) tries to set negative timeout
[  476.100755][ T5983] Bluetooth: hci0: command 0x041b tx timeout
[  476.101171][ T5985] Bluetooth: hci3: command 0x0c1a tx timeout
[  476.105280][T11344] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  476.107692][T11427] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  476.289856][ T5985] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  476.293818][ T5985] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  476.297096][ T5985] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  476.300320][ T5985] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  476.314221][ T5985] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  476.323401][ T5985] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  476.332481][ T5918] usb 8-1: new full-speed USB device number 13 using dummy_hcd
[  476.354214][T11430] vxcan1 speed is unknown, defaulting to 1000
[  476.457284][T11430] chnl_net:caif_netlink_parms(): no params data found
[  476.460757][ T5918] usb 8-1: device descriptor read/64, error -71
[  476.511450][T11430] bridge0: port 1(bridge_slave_0) entered blocking state
[  476.513585][T11430] bridge0: port 1(bridge_slave_0) entered disabled state
[  476.515645][T11430] bridge_slave_0: entered allmulticast mode
[  476.517844][T11430] bridge_slave_0: entered promiscuous mode
[  476.520559][T11430] bridge0: port 2(bridge_slave_1) entered blocking state
[  476.522630][T11430] bridge0: port 2(bridge_slave_1) entered disabled state
[  476.524686][T11430] bridge_slave_1: entered allmulticast mode
[  476.526814][T11430] bridge_slave_1: entered promiscuous mode
[  476.528995][T11439] netlink: 100 bytes leftover after parsing attributes in process `syz.5.1933'.
[  476.566575][T11430] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  476.573230][T11430] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  476.614345][T11430] team0: Port device team_slave_0 added
[  476.616001][T11430] team0: Port device team_slave_1 added
[  476.651365][T11430] batman_adv: batadv0: Adding interface: batadv_slave_0
[  476.651382][T11430] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  476.651404][T11430] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  476.652780][T11430] batman_adv: batadv0: Adding interface: batadv_slave_1
[  476.652793][T11430] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  476.652813][T11430] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  476.700857][ T5918] usb 8-1: new full-speed USB device number 14 using dummy_hcd
[  476.702408][T11430] hsr_slave_0: entered promiscuous mode
[  476.706029][T11430] hsr_slave_1: entered promiscuous mode
[  476.711592][T11430] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  476.730844][T11430] Cannot create hsr debugfs directory
[  476.736163][T11443] netlink: 696 bytes leftover after parsing attributes in process `syz.2.1935'.
[  476.830575][ T5918] usb 8-1: device descriptor read/64, error -71
[  476.844265][T11430] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.935854][T11456] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1940'.
[  476.939271][T11456] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1940'.
[  476.943704][ T5918] usb usb8-port1: attempt power cycle
[  477.002507][T11430] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.023954][T11461] tipc: Enabling <eth:lo> not permitted
[  477.025609][T11461] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  477.037933][   T39] audit: type=1400 audit(1737257833.721:660): avc:  denied  { setopt } for  pid=11462 comm="syz.5.1943" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  477.082945][T11430] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.199869][T11430] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.285370][ T5918] usb 8-1: new full-speed USB device number 15 using dummy_hcd
[  477.301478][ T5918] usb 8-1: device descriptor read/8, error -71
[  477.306547][T11430] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  477.311656][T11430] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  477.315202][T11430] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  477.331733][T11430] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  477.374086][T11430] 8021q: adding VLAN 0 to HW filter on device bond0
[  477.381571][T11430] 8021q: adding VLAN 0 to HW filter on device team0
[  477.385763][ T8091] bridge0: port 1(bridge_slave_0) entered blocking state
[  477.387950][ T8091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  477.394213][ T8091] bridge0: port 2(bridge_slave_1) entered blocking state
[  477.396899][ T8091] bridge0: port 2(bridge_slave_1) entered forwarding state
[  477.455186][T11485] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1949'.
[  477.458844][T11485] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1949'.
[  477.484762][T11430] 8021q: adding VLAN 0 to HW filter on device batadv0
[  477.503901][T11430] veth0_vlan: entered promiscuous mode
[  477.522797][T11430] veth1_vlan: entered promiscuous mode
[  477.539308][T11430] veth0_macvtap: entered promiscuous mode
[  477.540849][ T5918] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[  477.544524][T11430] veth1_macvtap: entered promiscuous mode
[  477.554890][T11430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  477.558753][T11430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.560946][ T5918] usb 8-1: device descriptor read/8, error -71
[  477.563771][T11430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  477.567281][T11430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.570182][T11430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  477.573319][T11430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.576580][T11430] batman_adv: batadv0: Interface activated: batadv_slave_0
[  477.582566][T11430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.585484][T11430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.588215][T11430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.591416][T11430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.594649][T11430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.597559][T11430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.600142][T11430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  477.603472][T11430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  477.606734][T11430] batman_adv: batadv0: Interface activated: batadv_slave_1
[  477.612629][T11430] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  477.615106][T11430] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  477.617569][T11430] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  477.620004][T11430] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  477.655173][ T6735] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  477.657410][ T6735] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  477.670212][ T6744] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  477.672795][ T6744] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  477.674981][ T5918] usb usb8-port1: unable to enumerate USB device
[  477.683910][   T39] audit: type=1400 audit(1737257834.371:661): avc:  denied  { mounton } for  pid=11430 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  478.005098][T11498] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  478.007014][T11498] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  478.008902][T11498] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  478.010907][T11498] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  478.017994][T11498] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  479.447210][T11522] netlink: 'syz.5.1960': attribute type 10 has an invalid length.
[  479.449797][T11521] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  480.012099][   T39] audit: type=1400 audit(1737257836.701:662): avc:  denied  { read } for  pid=11525 comm="syz.5.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  480.020634][ T5983] Bluetooth: hci4: command 0x041b tx timeout
[  480.020708][ T5985] Bluetooth: hci0: command 0x041b tx timeout
[  480.021435][ T5299] Bluetooth: hci3: command 0x0c1a tx timeout
[  480.027097][T11497] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  480.055754][   T39] audit: type=1400 audit(1737257836.741:663): avc:  denied  { read } for  pid=11528 comm="syz.0.1963" path="socket:[40589]" dev="sockfs" ino=40589 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  480.064266][T11529] netlink: 'syz.5.1964': attribute type 9 has an invalid length.
[  480.064319][   T39] audit: type=1400 audit(1737257836.741:664): avc:  denied  { read } for  pid=11527 comm="syz.5.1964" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  480.067360][T11529] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1964'.
[  480.083698][   T39] audit: type=1400 audit(1737257836.771:665): avc:  denied  { ioctl } for  pid=11528 comm="syz.0.1963" path="socket:[40589]" dev="sockfs" ino=40589 ioctlcmd=0x6611 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  480.127428][   T39] audit: type=1400 audit(1737257836.811:666): avc:  denied  { bind } for  pid=11538 comm="syz.0.1967" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  480.128029][T11539] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1967'.
[  480.134531][   T39] audit: type=1400 audit(1737257836.811:667): avc:  denied  { write } for  pid=11538 comm="syz.0.1967" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  480.215465][T11544] netlink: 'syz.5.1969': attribute type 10 has an invalid length.
[  480.218721][T11543] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  480.236118][T11546] netlink: 'syz.3.1970': attribute type 2 has an invalid length.
[  480.431336][T11558] tipc: Enabling <eth:lo> not permitted
[  480.433127][T11558] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  480.762111][   T39] audit: type=1400 audit(1737257837.451:668): avc:  denied  { map } for  pid=11578 comm="syz.5.1983" path="socket:[40632]" dev="sockfs" ino=40632 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  480.769594][   T39] audit: type=1400 audit(1737257837.451:669): avc:  denied  { read } for  pid=11578 comm="syz.5.1983" path="socket:[40632]" dev="sockfs" ino=40632 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  480.778492][T11576] netlink: 'syz.3.1982': attribute type 4 has an invalid length.
[  480.786353][T11576] netlink: 'syz.3.1982': attribute type 4 has an invalid length.
[  480.822590][T11587] veth0_to_bond: entered promiscuous mode
[  480.860161][T11593] program syz.5.1987 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  481.028087][T11613] : entered promiscuous mode
[  481.069069][T11618] __nla_validate_parse: 5 callbacks suppressed
[  481.069091][T11618] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1995'.
[  481.075408][T11618] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1995'.
[  481.299450][   T39] audit: type=1400 audit(1737257837.981:670): avc:  denied  { read append } for  pid=11632 comm="syz.2.2001" name="cgroup.kill" dev="9p" ino=37618296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  481.306670][   T39] audit: type=1400 audit(1737257837.981:671): avc:  denied  { open } for  pid=11632 comm="syz.2.2001" path="/529/file0/cgroup.kill" dev="9p" ino=37618296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  481.360505][ T7536] usb 8-1: new low-speed USB device number 17 using dummy_hcd
[  481.501261][T11644] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2005'.
[  481.509310][T11646] tipc: Enabling <eth:lo> not permitted
[  481.511676][T11646] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  481.541690][ T7536] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  481.544091][ T7536] usb 8-1: config 0 has no interface number 0
[  481.545914][ T7536] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  481.549164][ T7536] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  481.553540][ T7536] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  481.557433][ T7536] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  481.560720][ T7536] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  481.564066][ T7536] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  481.567747][ T7536] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  481.570344][ T7536] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.574050][ T7536] usb 8-1: config 0 descriptor??
[  481.575928][T11622] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  481.578094][T11622] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  481.586409][ T7536] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  481.625561][T11638] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  481.627451][T11638] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  481.629377][T11638] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  481.638322][T11656] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2011'.
[  481.641686][T11656] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2011'.
[  481.778800][T11668] tipc: Enabling <eth:lo> not permitted
[  481.781177][T11668] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  481.788515][ T7536] usb 8-1: USB disconnect, device number 17
[  481.792404][ T7536] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[  482.024306][T11683] NILFS (nullb0): couldn't find nilfs on the device
[  482.056185][T11685] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  482.065194][T11686] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  482.095489][T11688] netlink: 100 bytes leftover after parsing attributes in process `syz.2.2025'.
[  482.324034][T11694] tipc: Enabling <eth:lo> not permitted
[  482.326167][T11694] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  482.933814][T11724] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  483.531094][ T5985] Bluetooth: hci3: command 0x0c1a tx timeout
[  483.691012][ T5983] Bluetooth: hci0: command 0x041b tx timeout
[  483.692915][ T5985] Bluetooth: hci4: command 0x041b tx timeout
[  483.695902][T11634] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  483.737000][T11733] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2043'.
[  483.739783][T11733] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2043'.
[  483.872179][T11747] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2047'.
[  483.876145][T11747] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2047'.
[  483.980892][T11760] xt_hashlimit: size too large, truncated to 1048576
[  484.056844][T11767] tipc: Started in network mode
[  484.058286][T11767] tipc: Node identity 7f000001, cluster identity 4711
[  484.061640][T11767] tipc: Enabled bearer <udp:syz1>, priority 10
[  484.544944][T11814] program syz.5.2070 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  484.606200][T11822] netlink: 'syz.3.2073': attribute type 3 has an invalid length.
[  485.080697][ T6015] tipc: Node number set to 2130706433
[  485.145825][T11829] ata1.00: invalid multi_count 128 ignored
[  485.520531][ T7536] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  485.527466][T11850] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  485.535896][T11850] kvm: requested 62857 ns i8254 timer period limited to 200000 ns
[  485.672902][ T7536] usb 5-1: not running at top speed; connect to a high speed hub
[  485.676725][ T7536] usb 5-1: config 1 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  485.679827][ T7536] usb 5-1: config 1 interface 0 altsetting 9 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  485.684472][ T7536] usb 5-1: config 1 interface 0 has no altsetting 0
[  485.688193][ T7536] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  485.691842][ T7536] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  485.694793][ T7536] usb 5-1: Product: 럡橆酈횁쀄備䑉媗鍈
[  485.697419][ T7536] usb 5-1: Manufacturer: Л
[  485.699084][ T7536] usb 5-1: SerialNumber: ᰐҿ㲰쟗㪲ꭆ呎ࣤ⍣犢᭽ؼᮅ땔鶦횕疫氠痏턟쉗ḏﱚ䖢掚紺౿䥁
[  485.706234][T11844] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  485.709215][T11844] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  485.770615][ T5985] Bluetooth: hci4: command 0x041b tx timeout
[  485.770652][ T5983] Bluetooth: hci0: command 0x041b tx timeout
[  485.915089][ T7536] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22
[  485.925330][ T7536] usb 5-1: USB disconnect, device number 9
[  485.946674][T11866] netlink: 'syz.2.2091': attribute type 10 has an invalid length.
[  485.949141][T11865] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  486.030513][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  486.030529][   T39] audit: type=1400 audit(1737257842.711:677): avc:  denied  { connect } for  pid=11869 comm="syz.5.2093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  486.039597][   T39] audit: type=1400 audit(1737257842.721:678): avc:  denied  { listen } for  pid=11869 comm="syz.5.2093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  486.204622][T11877] __nla_validate_parse: 9 callbacks suppressed
[  486.204637][T11877] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2095'.
[  486.360566][ T7536] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  486.504759][T11884] binder: 11883:11884 ioctl c0306201 200003c0 returned -14
[  486.511577][ T7536] usb 5-1: not running at top speed; connect to a high speed hub
[  486.514844][ T7536] usb 5-1: config 1 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  486.518256][ T7536] usb 5-1: config 1 interface 0 altsetting 9 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  486.522288][ T7536] usb 5-1: config 1 interface 0 has no altsetting 0
[  486.525753][ T7536] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  486.528383][ T7536] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.531110][ T7536] usb 5-1: Product: Є
[  486.532570][ T7536] usb 5-1: Manufacturer: Б
[  486.533923][ T7536] usb 5-1: SerialNumber: 緓㽗쁅ࣁꅰ₳㸯虈闌趈꣖뱾憁녫暐腷寠◧긦鞨둩簖뷝牔⎋柡撚柴ꭄ㮎ϲ撩꽋❁紊잒Ᾰ౤礟䇁ʹ霖쬀︯෕䅺챭ꥋ춟Ặ鱙徥怉맃觎헖쥺ᚕز멃窯㈕䦠艓篩Ε蕢碦쒚舴戫衋樅ᛱ妿ߟ್⊫딴ρ杝ꀮ茖誃剋ꠔꩥｱ쾋彶븼ɩ婚Ö氨ﳬ䧒瑆뀟귟䣯
[  486.547934][T11844] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  486.550969][T11844] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  486.552118][T11887] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2099'.
[  486.556675][T11887] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2099'.
[  486.559482][T11887] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2099'.
[  486.773138][T11895] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  486.773150][   T39] audit: type=1400 audit(1737257843.461:679): avc:  denied  { getopt } for  pid=11894 comm="syz.3.2100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  486.777021][T11895] xt_nat: multiple ranges no longer supported
[  486.792104][   T39] audit: type=1400 audit(1737257843.481:680): avc:  denied  { setopt } for  pid=11894 comm="syz.3.2100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  486.959787][T11844] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  486.963683][T11844] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  487.169481][T11844] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  487.175379][T11844] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  487.182128][ T7536] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22
[  487.187752][ T7536] usb 5-1: USB disconnect, device number 10
[  487.191101][ T7396] udevd[7396]: setting owner of /dev/bus/usb/005/010 to uid=0, gid=0 failed: No such file or directory
[  487.200015][T11909] ipt_REJECT: ECHOREPLY no longer supported.
[  487.204540][T11910] ipt_REJECT: ECHOREPLY no longer supported.
[  487.348598][T11920] hsr0: entered allmulticast mode
[  487.350091][T11920] hsr_slave_0: entered allmulticast mode
[  487.352149][T11920] hsr_slave_1: entered allmulticast mode
[  487.354694][T11920] hsr_slave_0: left promiscuous mode
[  487.357313][T11920] hsr_slave_1: left promiscuous mode
[  487.372243][T11920] hsr0 (unregistering): left allmulticast mode
[  487.393110][T11922] netlink: 'syz.3.2107': attribute type 21 has an invalid length.
[  487.395679][T11922] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2107'.
[  487.510337][T11932] tipc: Enabling <eth:lo> not permitted
[  487.514163][T11932] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  487.602585][   T39] audit: type=1400 audit(1737257844.291:681): avc:  denied  { bind } for  pid=11929 comm="syz.2.2111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  487.850538][ T5983] Bluetooth: hci0: command 0x041b tx timeout
[  487.850584][ T5985] Bluetooth: hci4: command 0x041b tx timeout
[  487.961532][T11962] openvswitch: netlink: VXLAN extension 15883 out of range max 1
[  487.969413][   T39] audit: type=1400 audit(1737257844.651:682): avc:  denied  { write } for  pid=11961 comm="syz.0.2120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  488.012899][T11966] tipc: Enabling <eth:lo> not permitted
[  488.014657][T11966] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  488.067382][T11970] netlink: 100 bytes leftover after parsing attributes in process `syz.3.2124'.
[  488.137062][T11974] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2126'.
[  488.382381][   T39] audit: type=1400 audit(1737257845.071:683): avc:  denied  { accept } for  pid=11990 comm="syz.5.2134" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  488.449865][T12001] tipc: Enabling <eth:lo> not permitted
[  488.451917][T12001] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  488.535135][T12008] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5147 sclass=netlink_route_socket pid=12008 comm=syz.5.2139
[  488.611130][ T5918] usb 7-1: new full-speed USB device number 18 using dummy_hcd
[  488.667051][ T5985] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  488.791975][ T5918] usb 7-1: config 1 interface 0 altsetting 15 endpoint 0x1 has invalid maxpacket 1023, setting to 64
[  488.795165][ T5918] usb 7-1: config 1 interface 0 altsetting 15 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  488.799235][ T5918] usb 7-1: config 1 interface 0 has no altsetting 0
[  488.802081][   T39] audit: type=1400 audit(1737257845.491:684): avc:  denied  { create } for  pid=12033 comm="syz.5.2145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  488.810881][ T5918] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  488.813495][ T5918] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  488.816405][ T5918] usb 7-1: Product: 攤잟騜ᦷ瞐심椱ꒋⰖ꜈ἐ䭫嶫뇔맠鹵륗傁䖿※ݹ윎히掿
[  488.818591][   T39] audit: type=1400 audit(1737257845.501:685): avc:  denied  { sys_admin } for  pid=12033 comm="syz.5.2145" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  488.830494][ T5918] usb 7-1: Manufacturer: 롊᤻⿩ᝌ萷簗귵鐇梜ꥆᲠ߫㒽ἥ砧걅薂ꔃ벓ꍔ槴덯圈쭏餴匾ᕏ鎌ᨹꎾ♟ꬫ摲
[  488.834854][ T5918] usb 7-1: SerialNumber: 〉
[  488.838047][T11989] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  488.889801][T12045] netlink: 100 bytes leftover after parsing attributes in process `syz.5.2146'.
[  488.986604][T12053] macvtap0: entered promiscuous mode
[  488.988725][T12053] macvtap0: left promiscuous mode
[  489.052340][T11989] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  489.056067][T11989] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  489.061790][T11989] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  489.064677][T11989] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  489.074364][ T5918] usb 7-1: USB disconnect, device number 18
[  489.254178][   T39] audit: type=1400 audit(1737257845.941:686): avc:  denied  { write } for  pid=12061 comm="syz.5.2154" path="socket:[44245]" dev="sockfs" ino=44245 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  489.530605][ T5918] usb 7-1: new full-speed USB device number 19 using dummy_hcd
[  489.697549][ T5918] usb 7-1: config 1 interface 0 altsetting 15 endpoint 0x1 has invalid maxpacket 1023, setting to 64
[  489.702658][ T5918] usb 7-1: config 1 interface 0 altsetting 15 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  489.707514][ T5918] usb 7-1: config 1 interface 0 has no altsetting 0
[  489.712020][ T5918] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  489.715351][ T5918] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  489.718278][ T5918] usb 7-1: Product: syz
[  489.719582][ T5918] usb 7-1: Manufacturer: syz
[  489.721031][ T5918] usb 7-1: SerialNumber: syz
[  489.723707][T11989] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  489.931539][ T5983] Bluetooth: hci4: command 0x041b tx timeout
[  489.947474][ T5918] usb 7-1: USB disconnect, device number 19
[  490.473812][T12109] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2165'.
[  490.476438][T12109] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2165'.
[  490.833754][T12161] FAULT_INJECTION: forcing a failure.
[  490.833754][T12161] name failslab, interval 1, probability 0, space 0, times 0
[  490.838956][T12161] CPU: 1 UID: 0 PID: 12161 Comm: syz.0.2177 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  490.843160][T12161] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  490.847177][T12161] Call Trace:
[  490.848166][T12161]  <TASK>
[  490.849294][T12161]  dump_stack_lvl+0x16c/0x1f0
[  490.851128][T12161]  should_fail_ex+0x497/0x5b0
[  490.853246][T12161]  ? fs_reclaim_acquire+0xae/0x150
[  490.854933][T12161]  should_failslab+0xc2/0x120
[  490.856688][T12161]  __kmalloc_noprof+0xcb/0x510
[  490.858497][T12161]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  490.860744][T12161]  tomoyo_realpath_from_path+0xb9/0x720
[  490.861081][T12165] program syz.3.2175 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  490.863187][T12161]  ? tomoyo_path_number_perm+0x235/0x590
[  490.863227][T12161]  ? tomoyo_path_number_perm+0x235/0x590
[  490.869423][T12161]  tomoyo_path_number_perm+0x248/0x590
[  490.871256][T12161]  ? tomoyo_path_number_perm+0x235/0x590
[  490.872939][T12161]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  490.874593][T12161]  ? __pfx_lock_release+0x10/0x10
[  490.876174][T12161]  ? trace_lock_acquire+0x14e/0x1f0
[  490.878330][T12161]  ? lock_acquire+0x2f/0xb0
[  490.880265][T12161]  ? __fget_files+0x40/0x3a0
[  490.882054][T12161]  ? __fget_files+0x206/0x3a0
[  490.883391][T12161]  security_file_ioctl+0x9b/0x240
[  490.884902][T12161]  __x64_sys_ioctl+0xb7/0x200
[  490.886780][T12161]  do_syscall_64+0xcd/0x250
[  490.888658][T12161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.891060][T12161] RIP: 0033:0x7fd889585d29
[  490.892851][T12161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  490.900482][T12161] RSP: 002b:00007fd88a3ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  490.903588][T12161] RAX: ffffffffffffffda RBX: 00007fd889775fa0 RCX: 00007fd889585d29
[  490.905931][T12161] RDX: 0000000020000100 RSI: 0000000000003b88 RDI: 0000000000000003
[  490.908356][T12161] RBP: 00007fd88a3ea090 R08: 0000000000000000 R09: 0000000000000000
[  490.910926][T12161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  490.914056][T12161] R13: 0000000000000000 R14: 00007fd889775fa0 R15: 00007ffcb03ca728
[  490.917204][T12161]  </TASK>
[  490.919190][T12161] ERROR: Out of memory at tomoyo_realpath_from_path.
[  490.920947][T12167] pim6reg1: entered promiscuous mode
[  490.923675][T12167] pim6reg1: entered allmulticast mode
[  491.021863][T12183] Bluetooth: MGMT ver 1.23
[  491.027286][T12182] syz.0.2182: attempt to access beyond end of device
[  491.027286][T12182] nbd0: rw=4096, sector=2, nr_sectors = 2 limit=0
[  491.033078][T12182] EXT4-fs (nbd0): unable to read superblock
[  491.039001][T12181] bridge0: port 3(syz_tun) entered blocking state
[  491.043492][T12181] bridge0: port 3(syz_tun) entered disabled state
[  491.045529][T12181] syz_tun: entered allmulticast mode
[  491.048927][T12181] syz_tun: entered promiscuous mode
[  491.052396][T12181] bridge0: port 3(syz_tun) entered blocking state
[  491.054676][T12181] bridge0: port 3(syz_tun) entered forwarding state
[  491.064175][   T39] kauditd_printk_skb: 1 callbacks suppressed
[  491.064183][   T39] audit: type=1400 audit(1737257847.751:688): avc:  denied  { execute } for  pid=12185 comm="syz.3.2183" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  491.150298][   T39] audit: type=1400 audit(1737257847.831:689): avc:  denied  { append } for  pid=12201 comm="syz.3.2187" name="video7" dev="devtmpfs" ino=974 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  491.151406][T12203] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  491.370632][ T5985] Bluetooth: hci0: command 0x041b tx timeout
[  491.451554][T12254] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  491.819716][   T39] audit: type=1400 audit(1737257848.501:690): avc:  denied  { setopt } for  pid=12276 comm="syz.2.2202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  491.833148][   T39] audit: type=1400 audit(1737257848.521:691): avc:  denied  { bind } for  pid=12278 comm="syz.5.2203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  491.854231][T12280] sp0: Synchronizing with TNC
[  491.857164][T12280] tmpfs: Unknown parameter '��'
[  491.977849][T12287] __nla_validate_parse: 2 callbacks suppressed
[  491.977860][T12287] netlink: 100 bytes leftover after parsing attributes in process `syz.5.2205'.
[  492.010628][ T5985] Bluetooth: hci4: command 0x041b tx timeout
[  492.475028][T12324] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2219'.
[  492.477770][T12324] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2219'.
[  492.616825][T12333] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.2221'.
[  492.748412][T12343] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=10259 sclass=netlink_route_socket pid=12343 comm=syz.0.2226
[  492.764689][T12347] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2227'.
[  492.769104][T12347] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2227'.
[  492.772808][T12346] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2228'.
[  492.809301][   T39] audit: type=1400 audit(1737257849.491:692): avc:  denied  { setattr } for  pid=12342 comm="syz.0.2226" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  492.816478][   T39] audit: type=1400 audit(1737257849.491:693): avc:  denied  { setattr } for  pid=12342 comm="syz.0.2226" name="ALG" dev="sockfs" ino=43508 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  492.872262][T12350] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  492.876367][T12350] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  492.887970][T12350] program syz.2.2229 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  492.900591][T10410] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  492.947087][   T39] audit: type=1400 audit(1737257849.631:694): avc:  denied  { remount } for  pid=12353 comm="syz.2.2231" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  493.050532][T10410] usb 8-1: Using ep0 maxpacket: 8
[  493.052808][T12366] overlayfs: failed to resolve './file1': -2
[  493.056888][T10410] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  493.061735][T10410] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  493.065394][T10410] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  493.071399][T10410] usb 8-1: config 0 descriptor??
[  493.152605][   T39] audit: type=1400 audit(1737257849.841:695): avc:  denied  { ioctl } for  pid=12375 comm="syz.0.2240" path="/dev/usbmon0" dev="devtmpfs" ino=737 ioctlcmd=0x9201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  493.156817][T12376] netlink: 'syz.0.2240': attribute type 1 has an invalid length.
[  493.164990][T12376] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2240'.
[  493.169343][   T39] audit: type=1400 audit(1737257849.851:696): avc:  denied  { map } for  pid=12375 comm="syz.0.2240" path="socket:[45125]" dev="sockfs" ino=45125 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  493.277944][T10410] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  493.367581][T12400] netlink: 14 bytes leftover after parsing attributes in process `syz.0.2250'.
[  493.383337][T12399] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  493.450637][ T5985] Bluetooth: hci0: command 0x041b tx timeout
[  493.628020][   T39] audit: type=1400 audit(1737257850.311:697): avc:  denied  { write } for  pid=12404 comm="syz.2.2251" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  493.684778][T12337] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2223'.
[  493.692352][ T7536] usb 8-1: USB disconnect, device number 18
[  494.090464][ T5985] Bluetooth: hci4: command 0x041b tx timeout
[  494.269736][T12414] binder: Unknown parameter 'de[��e��'
[  494.909978][T12432] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  495.023174][T12444] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  495.024943][T12444] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  495.027615][T12444] vhci_hcd vhci_hcd.0: Device attached
[  495.200506][ T6015] vhci_hcd: vhci_device speed not set
[  495.260496][ T6015] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[  495.530537][ T5983] Bluetooth: hci0: command 0x041b tx timeout
[  495.904159][T12459] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  495.905150][T12459] openvswitch: netlink: IP tunnel attribute has 7 unknown bytes.
[  496.180498][ T5983] Bluetooth: hci4: command 0x041b tx timeout
[  496.220513][ T1339] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  496.383929][ T1339] usb 10-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  496.387176][ T1339] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  496.389910][ T1339] usb 10-1: Product: syz
[  496.391522][ T1339] usb 10-1: Manufacturer: syz
[  496.393174][ T1339] usb 10-1: SerialNumber: syz
[  496.395687][ T1339] usb 10-1: config 0 descriptor??
[  496.607819][T10410] usb 10-1: USB disconnect, device number 4
[  496.898346][ T5299] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  496.902365][ T5299] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  496.905971][ T5299] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  496.909678][ T5299] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  496.916057][ T5299] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  496.919161][ T5299] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  496.945630][T12463] vxcan1 speed is unknown, defaulting to 1000
[  497.050639][ T5983] Bluetooth: hci1: command 0x1003 tx timeout
[  497.050693][ T5985] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  497.068549][T12446] vhci_hcd: connection reset by peer
[  497.073776][ T8086] vhci_hcd: stop threads
[  497.077175][ T8086] vhci_hcd: release socket
[  497.081671][ T8086] vhci_hcd: disconnect device
[  497.110028][T12463] chnl_net:caif_netlink_parms(): no params data found
[  497.177502][T12478] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 12478 comm: syz.0.2275)
[  497.186486][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  497.186495][   T39] audit: type=1800 audit(1737257853.871:703): pid=12478 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.2275" name="blkio.throttle.io_service_bytes_recursive" dev="mqueue" ino=42930 res=0 errno=0
[  497.228193][T12463] bridge0: port 1(bridge_slave_0) entered blocking state
[  497.230356][T12463] bridge0: port 1(bridge_slave_0) entered disabled state
[  497.232841][T12463] bridge_slave_0: entered allmulticast mode
[  497.235053][T12463] bridge_slave_0: entered promiscuous mode
[  497.239291][T12463] bridge0: port 2(bridge_slave_1) entered blocking state
[  497.243085][T12463] bridge0: port 2(bridge_slave_1) entered disabled state
[  497.246021][T12463] bridge_slave_1: entered allmulticast mode
[  497.249316][T12463] bridge_slave_1: entered promiscuous mode
[  497.305884][T12463] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  497.311880][T12463] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  497.357100][T12493] __nla_validate_parse: 1 callbacks suppressed
[  497.357115][T12493] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2282'.
[  497.365771][T12463] team0: Port device team_slave_0 added
[  497.370057][T12463] team0: Port device team_slave_1 added
[  497.400305][T12463] batman_adv: batadv0: Adding interface: batadv_slave_0
[  497.403553][T12463] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  497.412987][T12463] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  497.418106][T12463] batman_adv: batadv0: Adding interface: batadv_slave_1
[  497.420795][T12463] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  497.430071][T12463] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  497.468884][T12463] hsr_slave_0: entered promiscuous mode
[  497.473722][T12463] hsr_slave_1: entered promiscuous mode
[  497.476163][T12463] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  497.478899][T12463] Cannot create hsr debugfs directory
[  497.559704][T12463] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.610475][ T5985] Bluetooth: hci0: command 0x041b tx timeout
[  497.640320][T12463] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.677941][T12495] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  497.681366][T12495] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  497.685114][T12495] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  497.687418][T12495] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  497.702405][T12463] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.783852][T12463] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.942339][T12463] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  497.946694][T12463] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  497.950317][T12463] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  497.973165][T12463] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  497.983926][T12463] bridge0: port 2(bridge_slave_1) entered blocking state
[  497.986056][T12463] bridge0: port 2(bridge_slave_1) entered forwarding state
[  497.988183][T12463] bridge0: port 1(bridge_slave_0) entered blocking state
[  497.990194][T12463] bridge0: port 1(bridge_slave_0) entered forwarding state
[  498.017925][T12463] 8021q: adding VLAN 0 to HW filter on device bond0
[  498.028448][ T8092] bridge0: port 1(bridge_slave_0) entered disabled state
[  498.032491][ T8092] bridge0: port 2(bridge_slave_1) entered disabled state
[  498.044432][T12463] 8021q: adding VLAN 0 to HW filter on device team0
[  498.055654][ T8092] bridge0: port 1(bridge_slave_0) entered blocking state
[  498.057735][ T8092] bridge0: port 1(bridge_slave_0) entered forwarding state
[  498.064278][ T8092] bridge0: port 2(bridge_slave_1) entered blocking state
[  498.066288][ T8092] bridge0: port 2(bridge_slave_1) entered forwarding state
[  498.095479][T12463] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  498.098605][T12463] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  498.175425][T12463] 8021q: adding VLAN 0 to HW filter on device batadv0
[  498.196714][T12463] veth0_vlan: entered promiscuous mode
[  498.202503][T12463] veth1_vlan: entered promiscuous mode
[  498.214236][T12463] veth0_macvtap: entered promiscuous mode
[  498.217841][T12463] veth1_macvtap: entered promiscuous mode
[  498.224512][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  498.227549][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.230316][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  498.233934][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.236911][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  498.240202][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.243062][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  498.246258][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.249793][T12463] batman_adv: batadv0: Interface activated: batadv_slave_0
[  498.254486][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  498.257616][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.261227][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  498.264194][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.267026][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  498.270045][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.272926][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  498.275860][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.278804][T12463] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  498.282936][T12463] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.287415][T12463] batman_adv: batadv0: Interface activated: batadv_slave_1
[  498.290930][T12463] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  498.293805][T12463] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  498.296480][T12463] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  498.299081][T12463] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  498.316395][T12524] x86/PAT: syz.5.2290:12524 freeing invalid memtype [mem 0xfed00000-0xfed00fff]
[  498.346699][ T8086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  498.349846][ T8086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  498.373002][ T8091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  498.375776][ T8091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  498.605928][T12535] netlink: 100 bytes leftover after parsing attributes in process `syz.2.2293'.
[  498.970648][ T5985] Bluetooth: hci2: command tx timeout
[  499.131896][T12523] x86/PAT: syz.5.2290:12523 freeing invalid memtype [mem 0xfed00000-0xfed00fff]
[  499.157831][ T5983] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  499.164870][ T5983] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  499.168528][ T5983] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  499.174977][ T5983] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  499.178508][ T5983] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  499.182621][ T5983] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  499.201351][T12544] vxcan1 speed is unknown, defaulting to 1000
[  499.309588][T12544] chnl_net:caif_netlink_parms(): no params data found
[  499.405489][T12544] bridge0: port 1(bridge_slave_0) entered blocking state
[  499.408457][T12544] bridge0: port 1(bridge_slave_0) entered disabled state
[  499.411464][T12544] bridge_slave_0: entered allmulticast mode
[  499.414579][T12544] bridge_slave_0: entered promiscuous mode
[  499.418341][T12544] bridge0: port 2(bridge_slave_1) entered blocking state
[  499.420659][T12544] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.422894][T12544] bridge_slave_1: entered allmulticast mode
[  499.425531][T12544] bridge_slave_1: entered promiscuous mode
[  499.469132][T12544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  499.474893][T12544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  499.482865][   T39] audit: type=1400 audit(1737257856.171:704): avc:  denied  { setattr } for  pid=12555 comm="syz.0.2297" name="file0" dev="9p" ino=37618265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  499.504498][   T39] audit: type=1400 audit(1737257856.191:705): avc:  denied  { mounton } for  pid=12555 comm="syz.0.2297" path="/91/file0/file0" dev="9p" ino=37618265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  499.521994][   T39] audit: type=1400 audit(1737257856.211:706): avc:  denied  { ioctl } for  pid=12555 comm="syz.0.2297" path="/91/file0/file0" dev="9p" ino=37618265 ioctlcmd=0x5441 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  499.524545][T12544] team0: Port device team_slave_0 added
[  499.535690][T12544] team0: Port device team_slave_1 added
[  499.571395][T12544] batman_adv: batadv0: Adding interface: batadv_slave_0
[  499.573974][T12544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  499.583196][T12544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  499.588442][T12544] batman_adv: batadv0: Adding interface: batadv_slave_1
[  499.590981][T12544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  499.601205][T12544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  499.651177][T12544] hsr_slave_0: entered promiscuous mode
[  499.653755][T12544] hsr_slave_1: entered promiscuous mode
[  499.655973][T12544] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  499.658338][T12544] Cannot create hsr debugfs directory
[  499.690491][ T5985] Bluetooth: hci0: command 0x041b tx timeout
[  499.740196][T12544] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.817785][T12544] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.922925][T12544] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.005020][T12544] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.212475][T12544] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  500.217394][T12544] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  500.222224][T12544] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  500.231311][T12544] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  500.245291][T12568] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2303'.
[  500.277563][   T39] audit: type=1326 audit(1737257856.961:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12569 comm="syz.5.2304" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe578f85d29 code=0x0
[  500.287041][T12544] 8021q: adding VLAN 0 to HW filter on device bond0
[  500.297602][T12544] 8021q: adding VLAN 0 to HW filter on device team0
[  500.301747][ T8086] bridge0: port 1(bridge_slave_0) entered blocking state
[  500.303773][ T8086] bridge0: port 1(bridge_slave_0) entered forwarding state
[  500.308149][ T8092] bridge0: port 2(bridge_slave_1) entered blocking state
[  500.310162][ T8092] bridge0: port 2(bridge_slave_1) entered forwarding state
[  500.389931][T12544] 8021q: adding VLAN 0 to HW filter on device batadv0
[  500.410739][ T6015] vhci_hcd: vhci_device speed not set
[  500.416871][T12544] veth0_vlan: entered promiscuous mode
[  500.422211][T12544] veth1_vlan: entered promiscuous mode
[  500.438051][T12544] veth0_macvtap: entered promiscuous mode
[  500.444784][T12544] veth1_macvtap: entered promiscuous mode
[  500.454456][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  500.458379][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.463419][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  500.467414][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.471247][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  500.475432][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.479498][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  500.484132][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.488143][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  500.492376][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.497249][T12544] batman_adv: batadv0: Interface activated: batadv_slave_0
[  500.503311][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  500.507414][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.512379][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  500.516353][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.520225][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  500.524785][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.528862][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  500.533084][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.536818][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  500.541357][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.545426][T12544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  500.549161][T12544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.552681][T12544] batman_adv: batadv0: Interface activated: batadv_slave_1
[  500.557410][T12544] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  500.560079][T12544] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  500.562744][T12544] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  500.565303][T12544] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  500.598712][ T8101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  500.603566][ T8101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  500.634317][ T8091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  500.637461][ T8091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  500.732776][T12581] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2307'.
[  501.051073][ T5985] Bluetooth: hci2: command tx timeout
[  501.139839][T12619] program syz.5.2313 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  501.212233][ T5985] Bluetooth: hci1: command tx timeout
[  501.216617][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  501.234957][   T39] audit: type=1400 audit(1737257857.921:708): avc:  denied  { getopt } for  pid=12628 comm="syz.5.2318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  501.272296][   T39] audit: type=1400 audit(1737257857.961:709): avc:  denied  { setcurrent } for  pid=12632 comm="syz.5.2319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  501.280993][   T39] audit: type=1400 audit(1737257857.971:710): avc:  denied  { map } for  pid=12632 comm="syz.5.2319" path="/dev/sr0" dev="devtmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:removable_device_t tclass=blk_file permissive=1
[  501.287673][   T39] audit: type=1400 audit(1737257857.971:711): avc:  denied  { execute } for  pid=12632 comm="syz.5.2319" path="/dev/sr0" dev="devtmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:removable_device_t tclass=blk_file permissive=1
[  501.319124][T12638] nbd: illegal input index -1996488704
[  501.404611][T12652] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2324'.
[  501.407904][T12652] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2324'.
[  501.440450][T12654] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  501.447383][T12654] CIFS mount error: No usable UNC path provided in device string!
[  501.447383][T12654] 
[  501.450914][T12654] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  501.480971][T12657] netlink: 100 bytes leftover after parsing attributes in process `syz.3.2326'.
[  501.716272][ T7536] IPVS: starting estimator thread 0...
[  501.731420][T12675] tipc: Started in network mode
[  501.732867][T12675] tipc: Node identity ac1414aa, cluster identity 4711
[  501.735084][T12675] tipc: Enabled bearer <udp:sr>, priority 10
[  501.770555][ T5985] Bluetooth: hci0: command 0x041b tx timeout
[  501.820524][T12676] IPVS: using max 39 ests per chain, 93600 per kthread
[  501.875375][   T39] audit: type=1400 audit(1737257858.561:712): avc:  denied  { unlink } for  pid=12682 comm="syz.3.2337" name="file1" dev="9p" ino=37618318 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  501.890548][ T5918] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[  502.017363][T12687] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2339'.
[  502.020618][ T5918] usb 10-1: device descriptor read/64, error -71
[  502.044872][T12689] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2340'.
[  502.048235][T12689] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2340'.
[  502.077382][T12694] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12694 comm=syz.3.2342
[  502.090870][T12694] netlink: 'syz.3.2342': attribute type 1 has an invalid length.
[  502.096287][T12694] batadv1: entered promiscuous mode
[  502.150214][T12698] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  502.152811][T12698] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  502.155853][T12698] vhci_hcd vhci_hcd.0: Device attached
[  502.157990][T12699] vhci_hcd: cannot find the pending unlink 2
[  502.173311][T12699] vhci_hcd: connection closed
[  502.173566][ T8091] vhci_hcd: stop threads
[  502.176402][ T8091] vhci_hcd: release socket
[  502.177780][ T8091] vhci_hcd: disconnect device
[  502.280542][ T5918] usb 10-1: new full-speed USB device number 6 using dummy_hcd
[  502.420515][ T5918] usb 10-1: device descriptor read/64, error -71
[  502.535577][ T5918] usb usb10-port1: attempt power cycle
[  502.713873][T12715] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2347'.
[  502.745985][T12725] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2350'.
[  502.748647][T12725] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2350'.
[  502.752801][T12720] cdrom: dropping to single frame dma
[  502.817380][T12727] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  502.860599][ T7536] tipc: Node number set to 2886997162
[  502.891569][ T5918] usb 10-1: new full-speed USB device number 7 using dummy_hcd
[  502.906214][T12736] mkiss: ax0: crc mode is auto.
[  502.913207][ T5918] usb 10-1: device descriptor read/8, error -71
[  502.921613][   T39] kauditd_printk_skb: 1 callbacks suppressed
[  502.921623][   T39] audit: type=1400 audit(1737257859.601:714): avc:  denied  { mount } for  pid=12734 comm="syz.2.2353" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  503.130647][ T5985] Bluetooth: hci2: command tx timeout
[  503.132569][T12753] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2357'.
[  503.135266][T12753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2357'.
[  503.160584][ T5918] usb 10-1: new full-speed USB device number 8 using dummy_hcd
[  503.181387][ T5918] usb 10-1: device descriptor read/8, error -71
[  503.194312][T12758] tipc: Enabling <eth:lo> not permitted
[  503.196077][   T39] audit: type=1400 audit(1737257859.881:715): avc:  denied  { mounton } for  pid=12757 comm="syz.2.2360" path="/16/file0" dev="tmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  503.199956][T12758] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  503.290643][ T5985] Bluetooth: hci1: command tx timeout
[  503.296767][ T5918] usb usb10-port1: unable to enumerate USB device
[  503.302826][   T39] audit: type=1400 audit(1737257859.991:716): avc:  denied  { setopt } for  pid=12757 comm="syz.2.2360" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  503.338531][T12775] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2366'.
[  503.341879][T12775] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2366'.
[  503.344571][T12775] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2366'.
[  503.347519][T12775] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2366'.
[  503.475793][T12782] netlink: 100 bytes leftover after parsing attributes in process `syz.3.2369'.
[  503.506213][T12785] veth1_to_batadv: entered promiscuous mode
[  503.508324][T12785] macsec1: entered promiscuous mode
[  503.547869][T12787] usb usb7: usbfs: interface 0 claimed by hub while 'syz.3.2371' resets device
[  503.551181][   T39] audit: type=1400 audit(1737257860.241:717): avc:  denied  { read } for  pid=12786 comm="syz.3.2371" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  503.660729][T12789] overlayfs: failed to resolve './file0': -2
[  503.663568][T12790] overlayfs: failed to resolve './file0': -2
[  503.666384][T12789] syz.3.2372 (12789): attempted to duplicate a private mapping with mremap.  This is not supported.
[  503.860844][ T5985] Bluetooth: hci0: command 0x041b tx timeout
[  504.253932][T12805] tipc: Enabling <eth:lo> not permitted
[  504.256123][T12805] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  504.377599][T12815] netlink: 'syz.2.2383': attribute type 1 has an invalid length.
[  504.439277][   T39] audit: type=1326 audit(1737257861.121:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12816 comm="syz.2.2384" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3cb185d29 code=0x7ff00000
[  504.447919][   T39] audit: type=1326 audit(1737257861.121:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12816 comm="syz.2.2384" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3cb185d29 code=0x7ff00000
[  504.454731][   T39] audit: type=1326 audit(1737257861.121:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12816 comm="syz.2.2384" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3cb185d29 code=0x7ff00000
[  504.461422][T12820] fuse: Unknown parameter '0x0000000000000003'
[  504.463616][   T39] audit: type=1326 audit(1737257861.121:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12816 comm="syz.2.2384" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3cb185d29 code=0x7ff00000
[  504.472262][   T39] audit: type=1326 audit(1737257861.121:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12816 comm="syz.2.2384" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3cb185d29 code=0x7ff00000
[  504.479214][   T39] audit: type=1326 audit(1737257861.121:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12816 comm="syz.2.2384" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3cb185d29 code=0x7ff00000
[  504.974532][T12831] FAULT_INJECTION: forcing a failure.
[  504.974532][T12831] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  504.978958][T12831] CPU: 0 UID: 0 PID: 12831 Comm: syz.0.2389 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  504.982291][T12831] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  504.985323][T12831] Call Trace:
[  504.986286][T12831]  <TASK>
[  504.987147][T12831]  dump_stack_lvl+0x16c/0x1f0
[  504.988484][T12831]  should_fail_ex+0x497/0x5b0
[  504.989841][T12831]  _copy_from_user+0x2e/0xd0
[  504.991205][T12831]  userfaultfd_ioctl+0x2302/0x3830
[  504.993242][T12831]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  504.995253][T12831]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[  504.997125][T12831]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  504.998983][T12831]  ? __pfx_lock_release+0x10/0x10
[  505.000426][T12831]  ? selinux_file_ioctl+0x180/0x270
[  505.001956][T12831]  ? selinux_file_ioctl+0xb4/0x270
[  505.003409][T12831]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  505.005008][T12831]  ? __x64_sys_ioctl+0x190/0x200
[  505.006424][T12831]  __x64_sys_ioctl+0x190/0x200
[  505.007821][T12831]  do_syscall_64+0xcd/0x250
[  505.009211][T12831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.010951][T12831] RIP: 0033:0x7fd889585d29
[  505.012340][T12831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.018626][T12831] RSP: 002b:00007fd88a3ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  505.021859][T12831] RAX: ffffffffffffffda RBX: 00007fd889775fa0 RCX: 00007fd889585d29
[  505.024670][T12831] RDX: 0000000020000080 RSI: 00000000c020aa08 RDI: 0000000000000004
[  505.026994][T12831] RBP: 00007fd88a3ea090 R08: 0000000000000000 R09: 0000000000000000
[  505.029118][T12831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  505.031611][T12831] R13: 0000000000000000 R14: 00007fd889775fa0 R15: 00007ffcb03ca728
[  505.034212][T12831]  </TASK>
[  505.197723][T12841] dccp_invalid_packet: P.Data Offset(4) too small
[  505.220483][ T5985] Bluetooth: hci2: command tx timeout
[  505.346429][T12845] binder: 12844:12845 unknown command 0
[  505.348562][T12845] binder: 12844:12845 ioctl c0306201 200001c0 returned -22
[  505.380822][ T5985] Bluetooth: hci1: command tx timeout
[  505.458436][T12862] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  505.613523][T12863] FAULT_INJECTION: forcing a failure.
[  505.613523][T12863] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  505.617669][T12863] CPU: 2 UID: 0 PID: 12863 Comm: syz.5.2400 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  505.620750][T12863] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  505.623804][T12863] Call Trace:
[  505.624774][T12863]  <TASK>
[  505.625691][T12863]  dump_stack_lvl+0x16c/0x1f0
[  505.627081][T12863]  should_fail_ex+0x497/0x5b0
[  505.628450][T12863]  ? fs_reclaim_acquire+0xae/0x150
[  505.629874][T12863]  should_fail_alloc_page+0xe7/0x130
[  505.631355][T12863]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  505.633114][T12863]  ? __pfx_mark_lock+0x10/0x10
[  505.634491][T12863]  __alloc_pages_noprof+0x190/0x25b0
[  505.636022][T12863]  ? __pfx_register_lock_class+0x10/0x10
[  505.637644][T12863]  ? __pfx___lock_acquire+0x10/0x10
[  505.639164][T12863]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  505.640961][T12863]  ? __lock_acquire+0x15a9/0x3c40
[  505.642554][T12863]  ? __pfx___lock_acquire+0x10/0x10
[  505.644115][T12863]  ? lock_vma_under_rcu+0x6b9/0x980
[  505.645683][T12863]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  505.647498][T12863]  ? policy_nodemask+0xea/0x4e0
[  505.648962][T12863]  alloc_pages_mpol_noprof+0x2c8/0x620
[  505.650605][T12863]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  505.652422][T12863]  ? rwsem_read_trylock+0x12d/0x250
[  505.654002][T12863]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  505.655683][T12863]  ? mfill_atomic_poison+0x1f8/0x1a70
[  505.657318][T12863]  ? lock_acquire+0x2f/0xb0
[  505.658664][T12863]  pte_alloc_one+0x20/0x390
[  505.660016][T12863]  __pte_alloc+0x6e/0x3b0
[  505.661334][T12863]  ? __pfx___pte_alloc+0x10/0x10
[  505.662831][T12863]  ? mm_alloc_pmd+0x15c/0x240
[  505.664283][T12863]  mfill_atomic_poison+0xf3d/0x1a70
[  505.665873][T12863]  ? trace_lock_acquire+0x14e/0x1f0
[  505.667490][T12863]  ? lock_acquire+0x2f/0xb0
[  505.668868][T12863]  ? __might_fault+0xe3/0x190
[  505.670304][T12863]  ? __pfx_mfill_atomic_poison+0x10/0x10
[  505.672031][T12863]  ? __might_fault+0xe3/0x190
[  505.673472][T12863]  userfaultfd_ioctl+0x25a1/0x3830
[  505.675033][T12863]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  505.676753][T12863]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[  505.678765][T12863]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  505.680768][T12863]  ? __pfx_lock_release+0x10/0x10
[  505.682353][T12863]  ? selinux_file_ioctl+0x180/0x270
[  505.683961][T12863]  ? selinux_file_ioctl+0xb4/0x270
[  505.685569][T12863]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  505.687287][T12863]  ? __x64_sys_ioctl+0x190/0x200
[  505.688829][T12863]  __x64_sys_ioctl+0x190/0x200
[  505.690321][T12863]  do_syscall_64+0xcd/0x250
[  505.691741][T12863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.693556][T12863] RIP: 0033:0x7fe578f85d29
[  505.694937][T12863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.700818][T12863] RSP: 002b:00007fe579d69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  505.703336][T12863] RAX: ffffffffffffffda RBX: 00007fe579175fa0 RCX: 00007fe578f85d29
[  505.705735][T12863] RDX: 0000000020000080 RSI: 00000000c020aa08 RDI: 0000000000000004
[  505.708129][T12863] RBP: 00007fe579d69090 R08: 0000000000000000 R09: 0000000000000000
[  505.710530][T12863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  505.712933][T12863] R13: 0000000000000000 R14: 00007fe579175fa0 R15: 00007fff293c7458
[  505.715323][T12863]  </TASK>
[  507.037120][T12937] openvswitch: netlink: IP tunnel dst address not specified
[  507.268778][T12942] pim6reg1: entered allmulticast mode
[  507.281988][T12950] bond0: option ad_select: unable to set because the bond device is up
[  507.450512][ T5983] Bluetooth: hci1: command tx timeout
[  507.469890][T12987] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  507.473208][T12987] xt_socket: unknown flags 0x50
[  507.847000][T13047] xt_hashlimit: size too large, truncated to 1048576
[  507.984932][   T39] kauditd_printk_skb: 31902 callbacks suppressed
[  507.984949][   T39] audit: type=1400 audit(1737257864.671:32626): avc:  granted  { setsecparam } for  pid=13049 comm="syz.0.2442" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  508.170279][T13061] XFS (nullb0): no-recovery mounts must be read-only.
[  508.278619][T13070] autofs: Bad value for 'fd'
[  508.429774][T13074] __nla_validate_parse: 7 callbacks suppressed
[  508.429783][T13074] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2448'.
[  508.453440][T13086] binder: 13082:13086 unknown command 0
[  508.455152][T13086] binder: 13082:13086 ioctl c0306201 20000080 returned -22
[  508.470801][T13086] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2451'.
[  508.502096][T13088] netlink: 'syz.5.2453': attribute type 10 has an invalid length.
[  508.504595][T13087] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  508.537479][   T39] audit: type=1400 audit(1737257865.221:32627): avc:  denied  { mount } for  pid=13091 comm="syz.0.2454" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  508.595216][T13101] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2456'.
[  508.778990][   T39] audit: type=1400 audit(1737257865.461:32628): avc:  denied  { getopt } for  pid=13119 comm="syz.0.2461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  508.880689][ T5970] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  508.907857][T13131] tipc: Enabling <eth:lo> not permitted
[  508.910281][T13131] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  509.023147][ T5970] usb 8-1: device descriptor read/64, error -71
[  509.123681][   T39] audit: type=1400 audit(1737257865.811:32629): avc:  denied  { map } for  pid=13146 comm="syz.0.2470" path="socket:[49613]" dev="sockfs" ino=49613 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  509.139480][   T39] audit: type=1400 audit(1737257865.821:32630): avc:  denied  { read write } for  pid=13146 comm="syz.0.2470" path="socket:[49613]" dev="sockfs" ino=49613 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  509.147988][   T39] audit: type=1400 audit(1737257865.821:32631): avc:  denied  { getopt } for  pid=13150 comm="syz.5.2472" lport=37302 faddr=::ffff:172.20.255.187 fport=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  509.270633][ T5970] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  509.400648][ T5970] usb 8-1: device descriptor read/64, error -71
[  509.417813][T13164] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2475'.
[  509.513041][ T5970] usb usb8-port1: attempt power cycle
[  509.530293][T13170] netlink: 100 bytes leftover after parsing attributes in process `syz.5.2476'.
[  509.540920][ T5983] Bluetooth: hci1: command 0x0405 tx timeout
[  509.563659][T13172] netlink: 'syz.5.2477': attribute type 10 has an invalid length.
[  509.566173][T13171] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  509.850867][ T5970] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  509.870970][ T5970] usb 8-1: device descriptor read/8, error -71
[  509.948403][T13176] loop2: detected capacity change from 0 to 7
[  509.954433][T13176] Dev loop2: unable to read RDB block 7
[  509.956232][T13176]  loop2: unable to read partition table
[  509.957992][T13176] loop2: partition table beyond EOD, truncated
[  509.959806][T13176] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  510.096387][T13187] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2482'.
[  510.123286][ T5970] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  510.142703][ T5970] usb 8-1: device descriptor read/8, error -71
[  510.148852][T13192] bridge0: port 2(bridge_slave_1) entered disabled state
[  510.196175][T13195] FAULT_INJECTION: forcing a failure.
[  510.196175][T13195] name failslab, interval 1, probability 0, space 0, times 0
[  510.201955][T13195] CPU: 0 UID: 0 PID: 13195 Comm: syz.2.2486 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  510.205219][T13195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  510.208579][T13195] Call Trace:
[  510.209583][T13195]  <TASK>
[  510.210472][T13195]  dump_stack_lvl+0x16c/0x1f0
[  510.211908][T13195]  should_fail_ex+0x497/0x5b0
[  510.213351][T13195]  ? fs_reclaim_acquire+0xae/0x150
[  510.214861][T13195]  should_failslab+0xc2/0x120
[  510.216374][T13195]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  510.218329][T13195]  ? __pfx___page_table_check_pte_clear+0x10/0x10
[  510.220248][T13195]  ? find_held_lock+0x2d/0x110
[  510.221696][T13195]  ? ptlock_alloc+0x1f/0x70
[  510.223048][T13195]  ptlock_alloc+0x1f/0x70
[  510.224337][T13195]  pte_alloc_one+0x74/0x390
[  510.225705][T13195]  __pte_alloc+0x6e/0x3b0
[  510.227109][T13195]  ? __pfx___pte_alloc+0x10/0x10
[  510.228615][T13195]  ? __pfx___might_resched+0x10/0x10
[  510.230158][T13195]  ? __pfx___sanitizer_cov_trace_pc+0x10/0x10
[  510.231937][T13195]  ? mm_alloc_pmd+0x15c/0x240
[  510.233548][T13195]  mfill_atomic_poison+0xf3d/0x1a70
[  510.235319][T13195]  ? trace_lock_acquire+0x14e/0x1f0
[  510.236967][T13195]  ? lock_acquire+0x2f/0xb0
[  510.238334][T13195]  ? __might_fault+0xe3/0x190
[  510.239776][T13195]  ? __pfx_mfill_atomic_poison+0x10/0x10
[  510.241493][T13195]  ? __might_fault+0xe3/0x190
[  510.242914][T13195]  userfaultfd_ioctl+0x25a1/0x3830
[  510.244510][T13195]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  510.246204][T13195]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[  510.248210][T13195]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  510.250187][T13195]  ? __pfx_lock_release+0x10/0x10
[  510.251725][T13195]  ? selinux_file_ioctl+0x180/0x270
[  510.253349][T13195]  ? selinux_file_ioctl+0xb4/0x270
[  510.254875][T13195]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  510.256611][T13195]  ? __x64_sys_ioctl+0x190/0x200
[  510.258179][T13195]  __x64_sys_ioctl+0x190/0x200
[  510.259625][T13195]  do_syscall_64+0xcd/0x250
[  510.261133][T13195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  510.262943][T13195] RIP: 0033:0x7fc3cb185d29
[  510.264475][T13195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  510.270224][T13195] RSP: 002b:00007fc3cbeda038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  510.272681][T13195] RAX: ffffffffffffffda RBX: 00007fc3cb375fa0 RCX: 00007fc3cb185d29
[  510.275003][T13195] RDX: 0000000020000080 RSI: 00000000c020aa08 RDI: 0000000000000004
[  510.277357][T13195] RBP: 00007fc3cbeda090 R08: 0000000000000000 R09: 0000000000000000
[  510.279674][T13195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  510.282032][T13195] R13: 0000000000000000 R14: 00007fc3cb375fa0 R15: 00007ffef058b758
[  510.284426][T13195]  </TASK>
[  510.286626][ T5970] usb usb8-port1: unable to enumerate USB device
[  510.361820][T13213] program syz.0.2492 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  510.444878][   T39] audit: type=1400 audit(1737257867.131:32632): avc:  denied  { setattr } for  pid=13214 comm="syz.2.2491" path="/dev/virtual_nci" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  510.451890][   T39] audit: type=1400 audit(1737257867.141:32633): avc:  denied  { ioctl } for  pid=13214 comm="syz.2.2491" path="socket:[50338]" dev="sockfs" ino=50338 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  510.475751][T13202] kvm: kvm [13201]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x6d00000800
[  510.585153][T13232] veth1_to_batadv: entered promiscuous mode
[  510.587569][T13232] macsec1: entered promiscuous mode
[  510.611383][T13232] ALSA: seq fatal error: cannot create timer (-16)
[  510.746931][T13239] FAULT_INJECTION: forcing a failure.
[  510.746931][T13239] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  510.752342][T13239] CPU: 3 UID: 0 PID: 13239 Comm: syz.0.2500 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  510.756551][T13239] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  510.760711][T13239] Call Trace:
[  510.761962][T13239]  <TASK>
[  510.763114][T13239]  dump_stack_lvl+0x16c/0x1f0
[  510.764967][T13239]  should_fail_ex+0x497/0x5b0
[  510.766808][T13239]  ? fs_reclaim_acquire+0xae/0x150
[  510.768864][T13239]  should_fail_alloc_page+0xe7/0x130
[  510.770876][T13239]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  510.773231][T13239]  ? register_lock_class+0xb1/0x1240
[  510.775280][T13239]  ? __memcg_kmem_charge_page+0x1b0/0x2b0
[  510.777513][T13239]  __alloc_pages_noprof+0x190/0x25b0
[  510.779561][T13239]  ? kasan_save_track+0x14/0x30
[  510.781461][T13239]  ? kmem_cache_alloc_noprof+0x226/0x3d0
[  510.783629][T13239]  ? hlock_class+0x4e/0x130
[  510.785408][T13239]  ? __lock_acquire+0x15a9/0x3c40
[  510.787345][T13239]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  510.789483][T13239]  ? __pfx___lock_acquire+0x10/0x10
[  510.791520][T13239]  ? mark_lock+0xb5/0xc60
[  510.793197][T13239]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  510.795482][T13239]  ? policy_nodemask+0xea/0x4e0
[  510.797391][T13239]  alloc_pages_mpol_noprof+0x2c8/0x620
[  510.799523][T13239]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  510.801863][T13239]  ? __page_table_check_pte_clear+0xb1/0x580
[  510.804210][T13239]  ? __pfx___page_table_check_pte_clear+0x10/0x10
[  510.806723][T13239]  ? find_held_lock+0x2d/0x110
[  510.808672][T13239]  ? find_held_lock+0x2d/0x110
[  510.810570][T13239]  pte_alloc_one+0x20/0x390
[  510.812379][T13239]  __pte_alloc+0x6e/0x3b0
[  510.814077][T13239]  ? __pfx___pte_alloc+0x10/0x10
[  510.815981][T13239]  ? __pfx___might_resched+0x10/0x10
[  510.818107][T13239]  ? mm_alloc_pmd+0x15c/0x240
[  510.819975][T13239]  mfill_atomic_poison+0xf3d/0x1a70
[  510.822061][T13239]  ? trace_lock_acquire+0x14e/0x1f0
[  510.824128][T13239]  ? lock_acquire+0x2f/0xb0
[  510.825913][T13239]  ? __might_fault+0xe3/0x190
[  510.827773][T13239]  ? __pfx_mfill_atomic_poison+0x10/0x10
[  510.829966][T13239]  ? __might_fault+0xe3/0x190
[  510.831847][T13239]  userfaultfd_ioctl+0x25a1/0x3830
[  510.833387][T13239]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  510.834929][T13239]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[  510.836778][T13239]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  510.838611][T13239]  ? __pfx_lock_release+0x10/0x10
[  510.840066][T13239]  ? selinux_file_ioctl+0x180/0x270
[  510.841558][T13239]  ? selinux_file_ioctl+0xb4/0x270
[  510.843030][T13239]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  510.844613][T13239]  ? __x64_sys_ioctl+0x190/0x200
[  510.846064][T13239]  __x64_sys_ioctl+0x190/0x200
[  510.847468][T13239]  do_syscall_64+0xcd/0x250
[  510.848802][T13239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  510.850510][T13239] RIP: 0033:0x7fd889585d29
[  510.851915][T13239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  510.857488][T13239] RSP: 002b:00007fd88a3ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  510.859919][T13239] RAX: ffffffffffffffda RBX: 00007fd889775fa0 RCX: 00007fd889585d29
[  510.862251][T13239] RDX: 0000000020000080 RSI: 00000000c020aa08 RDI: 0000000000000004
[  510.864532][T13239] RBP: 00007fd88a3ea090 R08: 0000000000000000 R09: 0000000000000000
[  510.866809][T13239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  510.869104][T13239] R13: 0000000000000000 R14: 00007fd889775fa0 R15: 00007ffcb03ca728
[  510.871380][T13239]  </TASK>
[  510.952648][T13245] overlayfs: failed to resolve './file1': -2
[  511.143835][   T39] audit: type=1326 audit(1737257867.831:32634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13254 comm="syz.0.2505" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd889585d29 code=0x0
[  511.212501][T13257] syzkaller1: entered promiscuous mode
[  511.214527][T13257] syzkaller1: entered allmulticast mode
[  511.218592][T13257] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 4032
[  511.231417][T13257] omfs: Invalid superblock (0)
[  511.296321][T13264] netlink: 'syz.0.2508': attribute type 3 has an invalid length.
[  511.298963][T13264] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2508'.
[  511.393534][T13267] FAULT_INJECTION: forcing a failure.
[  511.393534][T13267] name failslab, interval 1, probability 0, space 0, times 0
[  511.397218][T13267] CPU: 2 UID: 0 PID: 13267 Comm: syz.2.2509 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  511.400256][T13267] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  511.403338][T13267] Call Trace:
[  511.404541][T13267]  <TASK>
[  511.405433][T13267]  dump_stack_lvl+0x16c/0x1f0
[  511.406792][T13267]  should_fail_ex+0x497/0x5b0
[  511.408184][T13267]  ? fs_reclaim_acquire+0xae/0x150
[  511.409649][T13267]  should_failslab+0xc2/0x120
[  511.411014][T13267]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  511.412551][T13267]  ? __pfx___page_table_check_pte_clear+0x10/0x10
[  511.414381][T13267]  ? find_held_lock+0x2d/0x110
[  511.415769][T13267]  ? ptlock_alloc+0x1f/0x70
[  511.417111][T13267]  ptlock_alloc+0x1f/0x70
[  511.418384][T13267]  pte_alloc_one+0x74/0x390
[  511.419655][T13267]  __pte_alloc+0x6e/0x3b0
[  511.420883][T13267]  ? __pfx___pte_alloc+0x10/0x10
[  511.422303][T13267]  ? __pfx___might_resched+0x10/0x10
[  511.423808][T13267]  ? mm_alloc_pmd+0x15c/0x240
[  511.425170][T13267]  mfill_atomic_poison+0xf3d/0x1a70
[  511.426661][T13267]  ? trace_lock_acquire+0x14e/0x1f0
[  511.428183][T13267]  ? lock_acquire+0x2f/0xb0
[  511.429485][T13267]  ? __might_fault+0xe3/0x190
[  511.430853][T13267]  ? __pfx_mfill_atomic_poison+0x10/0x10
[  511.432442][T13267]  ? __might_fault+0xe3/0x190
[  511.433755][T13267]  userfaultfd_ioctl+0x25a1/0x3830
[  511.435213][T13267]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  511.436772][T13267]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[  511.438618][T13267]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  511.440421][T13267]  ? __pfx_lock_release+0x10/0x10
[  511.441871][T13267]  ? selinux_file_ioctl+0x180/0x270
[  511.443361][T13267]  ? selinux_file_ioctl+0xb4/0x270
[  511.444834][T13267]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  511.446365][T13267]  ? __x64_sys_ioctl+0x190/0x200
[  511.447833][T13267]  __x64_sys_ioctl+0x190/0x200
[  511.449230][T13267]  do_syscall_64+0xcd/0x250
[  511.450525][T13267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.452232][T13267] RIP: 0033:0x7fc3cb185d29
[  511.453513][T13267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  511.459018][T13267] RSP: 002b:00007fc3cbeda038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  511.461494][T13267] RAX: ffffffffffffffda RBX: 00007fc3cb375fa0 RCX: 00007fc3cb185d29
[  511.463746][T13267] RDX: 0000000020000080 RSI: 00000000c020aa08 RDI: 0000000000000004
[  511.466008][T13267] RBP: 00007fc3cbeda090 R08: 0000000000000000 R09: 0000000000000000
[  511.468276][T13267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  511.470526][T13267] R13: 0000000000000000 R14: 00007fc3cb375fa0 R15: 00007ffef058b758
[  511.472793][T13267]  </TASK>
[  511.473778][    C2] vkms_vblank_simulate: vblank timer overrun
[  511.560510][T10410] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  511.566592][   T39] audit: type=1400 audit(1737257868.251:32635): avc:  denied  { setattr } for  pid=13273 comm="syz.2.2512" name="/" dev="configfs" ino=2106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  511.720554][T10410] usb 5-1: Using ep0 maxpacket: 32
[  511.724332][T10410] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  511.727155][T10410] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  511.729686][T10410] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  511.732553][T10410] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  511.741542][T10410] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  511.744788][T10410] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  511.748888][T10410] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  511.751826][T10410] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  511.751928][T13278] bridge0: entered promiscuous mode
[  511.755021][T10410] usb 5-1: config 0 descriptor??
[  511.756178][T13278] macvlan2: entered promiscuous mode
[  511.760050][T13278] bridge0: port 3(macvlan2) entered blocking state
[  511.762194][T13278] bridge0: port 3(macvlan2) entered disabled state
[  511.764538][T13278] macvlan2: entered allmulticast mode
[  511.766603][T13278] bridge0: entered allmulticast mode
[  511.769591][T13278] macvlan2: left allmulticast mode
[  511.771701][T13278] bridge0: left allmulticast mode
[  511.774055][T13278] bridge0: left promiscuous mode
[  511.913648][T13280] tipc: Enabling <eth:lo> not permitted
[  511.915787][T13280] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  511.942054][T13282] netlink: 'syz.3.2515': attribute type 10 has an invalid length.
[  511.945670][T13281] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  511.964120][T10410] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 11 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  512.222796][    C0] usblp0: nonzero read bulk status received: -71
[  512.223022][ T5970] usb 5-1: USB disconnect, device number 11
[  512.228174][T13264] usblp0: error -71 reading from printer
[  512.235735][T13264] usblp0: removed
[  512.665660][T13314] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2527'.
[  512.826414][T13321] SELinux:  Context system_u:object_r:iptables_initrc_exec_t:s0 is not valid (left unmapped).
[  512.865598][T13325] netlink: 'syz.0.2530': attribute type 10 has an invalid length.
[  512.872411][T13325] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  512.878806][T13324] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  513.559543][T13341] tipc: Enabling <eth:lo> not permitted
[  513.566530][T13341] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  513.688989][T13350] CIFS mount error: No usable UNC path provided in device string!
[  513.688989][T13350] 
[  513.700540][T13350] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  513.813703][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  513.813719][   T39] audit: type=1400 audit(1737257870.501:32640): avc:  denied  { read } for  pid=13353 comm="syz.5.2542" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  513.840534][   T39] audit: type=1400 audit(1737257870.501:32641): avc:  denied  { open } for  pid=13353 comm="syz.5.2542" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  514.353571][T13346] FAULT_INJECTION: forcing a failure.
[  514.353571][T13346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.364822][T13346] CPU: 1 UID: 0 PID: 13346 Comm: syz.0.2538 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  514.367894][T13346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  514.370993][T13346] Call Trace:
[  514.371958][T13346]  <TASK>
[  514.372822][T13346]  dump_stack_lvl+0x16c/0x1f0
[  514.374198][T13346]  should_fail_ex+0x497/0x5b0
[  514.375585][T13346]  _copy_to_user+0x32/0xd0
[  514.376909][T13346]  copy_siginfo_to_user+0x23/0xc0
[  514.378378][T13346]  x64_setup_rt_frame+0x814/0xcf0
[  514.379841][T13346]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  514.381463][T13346]  arch_do_signal_or_restart+0x5e6/0x7e0
[  514.383083][T13346]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  514.384884][T13346]  ? selinux_file_ioctl+0xb4/0x270
[  514.386372][T13346]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  514.387975][T13346]  syscall_exit_to_user_mode+0x150/0x2a0
[  514.389614][T13346]  do_syscall_64+0xda/0x250
[  514.390961][T13346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.392684][T13346] RIP: 0033:0x7fd889585d29
[  514.393978][T13346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.399497][T13346] RSP: 002b:00007fd88a3ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  514.401878][T13346] RAX: 0000000000000000 RBX: 00007fd889775fa0 RCX: 00007fd889585d29
[  514.404142][T13346] RDX: 0000000020000080 RSI: 00000000c020aa08 RDI: 0000000000000004
[  514.406411][T13346] RBP: 00007fd88a3ea090 R08: 0000000000000000 R09: 0000000000000000
[  514.408689][T13346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  514.410957][T13346] R13: 0000000000000000 R14: 00007fd889775fa0 R15: 00007ffcb03ca728
[  514.413235][T13346]  </TASK>
[  514.602046][T13363] vxcan1 speed is unknown, defaulting to 1000
[  514.759221][T13368] FAULT_INJECTION: forcing a failure.
[  514.759221][T13368] name failslab, interval 1, probability 0, space 0, times 0
[  514.764855][T13368] CPU: 2 UID: 0 PID: 13368 Comm: syz.0.2546 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  514.767978][T13368] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  514.771128][T13368] Call Trace:
[  514.772222][T13368]  <TASK>
[  514.773102][T13368]  dump_stack_lvl+0x16c/0x1f0
[  514.774494][T13368]  should_fail_ex+0x497/0x5b0
[  514.776186][T13368]  ? fs_reclaim_acquire+0xae/0x150
[  514.778074][T13368]  should_failslab+0xc2/0x120
[  514.779527][T13368]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  514.781233][T13368]  ? __alloc_skb+0x2b1/0x380
[  514.782686][T13368]  ? __pfx_mark_lock+0x10/0x10
[  514.784542][T13368]  __alloc_skb+0x2b1/0x380
[  514.786004][T13368]  ? __pfx___alloc_skb+0x10/0x10
[  514.787490][T13368]  ? __pfx_lock_release+0x10/0x10
[  514.788954][T13368]  ? trace_lock_acquire+0xa0/0x1f0
[  514.790522][T13368]  ? hlock_class+0x4e/0x130
[  514.791858][T13368]  ? mark_lock+0xb5/0xc60
[  514.793139][T13368]  alloc_skb_with_frags+0xe4/0x850
[  514.794631][T13368]  ? mark_lock+0xb5/0xc60
[  514.795978][T13368]  sock_alloc_send_pskb+0x7f1/0x980
[  514.797549][T13368]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  514.799270][T13368]  ? __lock_acquire+0xcc5/0x3c40
[  514.800748][T13368]  ? hlock_class+0x4e/0x130
[  514.802166][T13368]  ? __lock_acquire+0xcc5/0x3c40
[  514.803737][T13368]  tun_get_user+0xd3b/0x3e50
[  514.805371][T13368]  ? find_held_lock+0x2d/0x110
[  514.806992][T13368]  ? __pfx_tun_get_user+0x10/0x10
[  514.808744][T13368]  ? find_held_lock+0x2d/0x110
[  514.810139][T13368]  ? __pfx_lock_release+0x10/0x10
[  514.811581][T13368]  tun_chr_write_iter+0xdc/0x210
[  514.813119][T13368]  vfs_write+0x5ae/0x1150
[  514.814360][T13368]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  514.816030][T13368]  ? __pfx_vfs_write+0x10/0x10
[  514.817433][T13368]  ? __fget_files+0x40/0x3a0
[  514.818813][T13368]  ksys_write+0x12b/0x250
[  514.820088][T13368]  ? __pfx_ksys_write+0x10/0x10
[  514.821506][T13368]  do_syscall_64+0xcd/0x250
[  514.822914][T13368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.824630][T13368] RIP: 0033:0x7fd889585d29
[  514.826006][T13368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.831549][T13368] RSP: 002b:00007fd88a3ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  514.834048][T13368] RAX: ffffffffffffffda RBX: 00007fd889775fa0 RCX: 00007fd889585d29
[  514.836417][T13368] RDX: 0000000000000046 RSI: 0000000020000100 RDI: 0000000000000003
[  514.838814][T13368] RBP: 00007fd88a3ea090 R08: 0000000000000000 R09: 0000000000000000
[  514.841094][T13368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.843500][T13368] R13: 0000000000000000 R14: 00007fd889775fa0 R15: 00007ffcb03ca728
[  514.845839][T13368]  </TASK>
[  514.846794][    C2] vkms_vblank_simulate: vblank timer overrun
[  514.995369][T13381] FAULT_INJECTION: forcing a failure.
[  514.995369][T13381] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.999142][T13381] CPU: 2 UID: 0 PID: 13381 Comm: syz.5.2551 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  515.002211][T13381] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  515.005287][T13381] Call Trace:
[  515.006265][T13381]  <TASK>
[  515.007148][T13381]  dump_stack_lvl+0x16c/0x1f0
[  515.007620][T13384] bridge1: entered allmulticast mode
[  515.008621][T13381]  should_fail_ex+0x497/0x5b0
[  515.012210][T13381]  _copy_from_user+0x2e/0xd0
[  515.013567][T13381]  kstrtouint_from_user+0xd7/0x1c0
[  515.015045][T13381]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  515.016724][T13381]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  515.018349][T13381]  proc_fail_nth_write+0x84/0x250
[  515.019809][T13381]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  515.021418][T13381]  ? ksys_write+0x12b/0x250
[  515.022732][T13381]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  515.024360][T13381]  vfs_write+0x24c/0x1150
[  515.025591][T13381]  ? __fget_files+0x1fc/0x3a0
[  515.026995][T13381]  ? __pfx___mutex_lock+0x10/0x10
[  515.028454][T13381]  ? __pfx_vfs_write+0x10/0x10
[  515.029844][T13381]  ? __fget_files+0x206/0x3a0
[  515.031217][T13381]  ksys_write+0x12b/0x250
[  515.032481][T13381]  ? __pfx_ksys_write+0x10/0x10
[  515.032770][T13385] netlink: 'syz.2.2552': attribute type 10 has an invalid length.
[  515.033883][T13381]  do_syscall_64+0xcd/0x250
[  515.037517][T13381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.039217][T13381] RIP: 0033:0x7fe578f847df
[  515.040514][T13381] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  515.045983][T13381] RSP: 002b:00007fe579d69030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  515.048367][T13381] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe578f847df
[  515.050630][T13381] RDX: 0000000000000001 RSI: 00007fe579d690a0 RDI: 0000000000000005
[  515.052892][T13381] RBP: 00007fe579d69090 R08: 0000000000000000 R09: 0000000000000000
[  515.055158][T13381] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  515.057459][T13381] R13: 0000000000000000 R14: 00007fe579175fa0 R15: 00007fff293c7458
[  515.059720][T13381]  </TASK>
[  515.060703][    C2] vkms_vblank_simulate: vblank timer overrun
[  515.069248][T13383] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  515.097568][T13387] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2554'.
[  515.104695][T13390] openvswitch: netlink: Actions may not be safe on all matching packets
[  515.104920][T13389] openvswitch: netlink: Actions may not be safe on all matching packets
[  515.148655][T13387] kvm: Disabled LAPIC found during irq injection
[  515.149024][T13394] tipc: Enabling <eth:lo> not permitted
[  515.152746][T13394] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  515.301379][ T5985] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  515.444354][T13426] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2566'.
[  515.447889][T13426] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2566'.
[  515.626389][   T39] audit: type=1400 audit(1737257872.311:32642): avc:  denied  { getopt } for  pid=13441 comm="syz.0.2571" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  515.689031][T13456] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2575'.
[  515.731417][T13459] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57872 sclass=netlink_route_socket pid=13459 comm=syz.0.2576
[  515.735541][T13459] IPVS: length: 135 != 8
[  515.754546][T13459] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[  515.778314][T13459] ERROR: device name not specified.
[  515.879855][T13462] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2577'.
[  515.882712][T13462] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2577'.
[  515.936005][T13465] syz.0.2578: attempt to access beyond end of device
[  515.936005][T13465] nbd0: rw=0, sector=2, nr_sectors = 2 limit=0
[  515.942452][T13465] syz.0.2578: attempt to access beyond end of device
[  515.942452][T13465] nbd0: rw=0, sector=0, nr_sectors = 2 limit=0
[  515.947553][T13465] syz.0.2578: attempt to access beyond end of device
[  515.947553][T13465] nbd0: rw=0, sector=0, nr_sectors = 2 limit=0
[  515.955224][T13465] syz.0.2578: attempt to access beyond end of device
[  515.955224][T13465] nbd0: rw=0, sector=18, nr_sectors = 2 limit=0
[  515.961953][T13465] syz.0.2578: attempt to access beyond end of device
[  515.961953][T13465] nbd0: rw=0, sector=30, nr_sectors = 2 limit=0
[  515.968230][T13465] syz.0.2578: attempt to access beyond end of device
[  515.968230][T13465] nbd0: rw=0, sector=36, nr_sectors = 2 limit=0
[  516.223255][T13476] netlink: 'syz.0.2582': attribute type 10 has an invalid length.
[  516.226641][T13475] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  516.328710][T13482] netlink: 'syz.3.2584': attribute type 1 has an invalid length.
[  516.380174][T13487] x_tables: duplicate underflow at hook 1
[  516.382295][T13488] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) !
[  516.414095][T13492] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2586'.
[  516.454463][   T39] audit: type=1400 audit(1737257873.141:32643): avc:  denied  { ioctl } for  pid=13493 comm="syz.3.2587" path="socket:[50102]" dev="sockfs" ino=50102 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  516.461968][   T39] audit: type=1400 audit(1737257873.141:32644): avc:  denied  { map } for  pid=13493 comm="syz.3.2587" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  516.996285][T13503] usb usb7: usbfs: interface 0 claimed by hub while 'syz.0.2590' resets device
[  517.178033][T13510] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2592'.
[  517.181769][T13510] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2592'.
[  517.307203][T13524] netlink: 148 bytes leftover after parsing attributes in process `syz.0.2597'.
[  517.472247][ T5985] Bluetooth: hci4: unexpected cc 0x203e length: 2 > 1
[  517.475174][T13539] netlink: 'syz.0.2600': attribute type 4 has an invalid length.
[  517.475701][ T5985] Bluetooth: hci4: unexpected event for opcode 0x203e
[  517.550631][T13543] vxcan1 speed is unknown, defaulting to 1000
[  518.093715][T13572] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  518.440793][T11491] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  518.585877][T11491] usb 7-1: device descriptor read/64, error -71
[  518.715096][T13585] binder: 13584:13585 ioctl c018aa06 20000880 returned -22
[  518.831031][T11491] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  518.966787][T11491] usb 7-1: device descriptor read/64, error -71
[  519.072004][T11491] usb usb7-port1: attempt power cycle
[  519.420729][T11491] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  519.422057][T13597] Option '�'M�O��' to dns_resolver key: bad/missing value
[  519.450705][T11491] usb 7-1: device descriptor read/8, error -71
[  519.620704][   T39] audit: type=1400 audit(1737257877.304:32645): avc:  denied  { append } for  pid=13599 comm="syz.3.2619" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  519.690796][T11491] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  519.711241][T11491] usb 7-1: device descriptor read/8, error -71
[  519.752197][T13607] netlink: 'syz.5.2622': attribute type 5 has an invalid length.
[  519.754965][T13606] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  519.830879][T11491] usb usb7-port1: unable to enumerate USB device
[  519.958521][T13613] overlay: Bad value for 'uuid'
[  520.145390][T13619] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  520.242483][   T39] audit: type=1400 audit(1737257877.934:32646): avc:  denied  { execmod } for  pid=13621 comm="syz.0.2628" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=54387 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  520.655943][T13626] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[  520.863624][ T5985] Bluetooth: hci1: unexpected event for opcode 0x0c05
[  521.043881][T13647] __nla_validate_parse: 11 callbacks suppressed
[  521.043892][T13647] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2636'.
[  521.048409][T13647] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2636'.
[  521.092667][T13648] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  521.273009][T13651] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  521.501369][T13656] netlink: 100 bytes leftover after parsing attributes in process `syz.2.2640'.
[  521.538896][   T39] audit: type=1400 audit(1737257879.224:32647): avc:  denied  { append } for  pid=13657 comm="syz.2.2641" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  521.547944][ T5985] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  521.550693][ T5985] Bluetooth: hci4: Injecting HCI hardware error event
[  521.553534][ T5985] Bluetooth: hci4: hardware error 0x00
[  521.643522][   T39] audit: type=1400 audit(1737257879.334:32648): avc:  denied  { ioctl } for  pid=13664 comm="syz.0.2644" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  521.817090][T13677] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input22
[  521.889216][T13677] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  521.924691][T13676] ALSA: mixer_oss: invalid OSS volume '�'
[  521.943498][T13690] binder: 13683:13690 unknown command 0
[  521.945333][T13690] binder: 13683:13690 ioctl c0306201 200001c0 returned -22
[  522.025034][T13695] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2652'.
[  522.045396][T13694] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  522.342522][T13710] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  522.376829][T13717] syz.0.2659 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  522.412795][T13720] tipc: Enabling <eth:lo> not permitted
[  522.414919][T13720] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  522.422244][T13721] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2661'.
[  522.467915][T13727] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2663'.
[  522.473451][T13727] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2663'.
[  522.522372][   T39] audit: type=1400 audit(1737257880.214:32649): avc:  denied  { map } for  pid=13722 comm="syz.0.2662" path="socket:[54535]" dev="sockfs" ino=54535 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  522.529808][   T39] audit: type=1400 audit(1737257880.214:32650): avc:  denied  { accept } for  pid=13722 comm="syz.0.2662" path="socket:[54535]" dev="sockfs" ino=54535 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  522.588543][T13735] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13735 comm=syz.2.2665
[  522.674527][   T39] audit: type=1400 audit(1737257880.364:32651): avc:  denied  { validate_trans } for  pid=13741 comm="syz.2.2667" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  522.816527][T13751] tipc: Enabling <eth:lo> not permitted
[  522.818208][T13751] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  522.959338][T13752] kvm: kvm [13749]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  522.980103][T13752] kvm: kvm [13749]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  523.284356][T13765] autofs: Unknown parameter 't�k�kh�K�N���&Ɂ"�'
[  523.315315][T13767] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2677'.
[  523.346193][T13770] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2678'.
[  523.349795][T13770] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2678'.
[  523.498270][T13778] tipc: Enabling <eth:lo> not permitted
[  523.500035][T13778] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  523.573727][   T39] audit: type=1400 audit(1737257881.264:32652): avc:  denied  { write } for  pid=13787 comm="syz.5.2687" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  523.579115][T13789] tmpfs: Bad value for 'nr_inodes'
[  523.621229][ T5985] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  523.838651][T13806] tipc: Enabling <eth:lo> not permitted
[  523.841409][T13806] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  523.994819][T13817] 8021q: adding VLAN 0 to HW filter on device bond1
[  523.998398][T13817] bond0: (slave bond1): Enslaving as an active interface with an up link
[  524.298656][   T39] audit: type=1400 audit(1737257881.984:32653): avc:  denied  { ioctl } for  pid=13851 comm="syz.0.2707" path="/dev/cachefiles" dev="devtmpfs" ino=4 ioctlcmd=0xae83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  524.433810][T13864] overlayfs: lower data-only dirs require metacopy support.
[  524.670728][T13879] random: crng reseeded on system resumption
[  525.007811][T13885] IPVS: set_ctl: invalid protocol: 92 172.20.20.55:20002
[  525.042647][T13889] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13889 comm=syz.3.2720
[  525.048021][T13889] netlink: 'syz.3.2720': attribute type 1 has an invalid length.
[  525.104589][  T112] 
[  525.105406][  T112] ======================================================
[  525.107876][  T112] WARNING: possible circular locking dependency detected
[  525.110233][  T112] 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0 Not tainted
[  525.114014][  T112] ------------------------------------------------------
[  525.116288][  T112] kswapd0/112 is trying to acquire lock:
[  525.117950][  T112] ffff888026dd8a70 (&q->q_usage_counter(io)#68){++++}-{0:0}, at: blk_mq_submit_bio+0x7ca/0x24c0
[  525.121147][  T112] 
[  525.121147][  T112] but task is already holding lock:
[  525.123757][  T112] ffffffff8e352e20 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat+0xcd9/0x18f0
[  525.126701][   T39] audit: type=1400 audit(1737257882.794:32654): avc:  denied  { ioctl } for  pid=13878 comm="syz.5.2717" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x3314 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  525.126940][  T112] 
[  525.126940][  T112] which lock already depends on the new lock.
[  525.126940][  T112] 
[  525.126947][  T112] 
[  525.126947][  T112] the existing dependency chain (in reverse order) is:
[  525.138448][T13878] PM: hibernation: Basic memory bitmaps freed
[  525.139412][  T112] 
[  525.139412][  T112] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  525.146794][  T112]        fs_reclaim_acquire+0x102/0x150
[  525.148389][  T112]        __kmalloc_node_noprof+0xb7/0x510
[  525.149999][  T112]        __kvmalloc_node_noprof+0xad/0x1a0
[  525.151689][  T112]        sbitmap_init_node+0x1ca/0x770
[  525.153287][  T112]        scsi_realloc_sdev_budget_map+0x2c7/0x610
[  525.155102][  T112]        scsi_add_lun+0x11b4/0x1fd0
[  525.156585][  T112]        scsi_probe_and_add_lun+0x4fa/0xda0
[  525.158288][  T112]        __scsi_add_device+0x24b/0x290
[  525.159836][  T112]        ata_scsi_scan_host+0x215/0x780
[  525.161422][  T112]        async_run_entry_fn+0x9c/0x530
[  525.162959][  T112]        process_one_work+0x9c5/0x1ba0
[  525.164505][  T112]        worker_thread+0x6c8/0xf00
[  525.165963][  T112]        kthread+0x2c1/0x3a0
[  525.167286][  T112]        ret_from_fork+0x45/0x80
[  525.168694][  T112]        ret_from_fork_asm+0x1a/0x30
[  525.170160][  T112] 
[  525.170160][  T112] -> #0 (&q->q_usage_counter(io)#68){++++}-{0:0}:
[  525.172597][  T112]        __lock_acquire+0x249e/0x3c40
[  525.174122][  T112]        lock_acquire.part.0+0x11b/0x380
[  525.175795][  T112]        __bio_queue_enter+0x4c6/0x740
[  525.177383][  T112]        blk_mq_submit_bio+0x7ca/0x24c0
[  525.178955][  T112]        __submit_bio+0x384/0x540
[  525.180396][  T112]        submit_bio_noacct_nocheck+0x698/0xd70
[  525.182150][  T112]        submit_bio_noacct+0x93a/0x1e20
[  525.183718][  T112]        __swap_writepage+0x3a3/0xf50
[  525.185263][  T112]        swap_writepage+0x403/0x1120
[  525.186791][  T112]        shmem_writepage+0xf7b/0x1490
[  525.188603][  T112]        pageout+0x3b2/0xaa0
[  525.190010][  T112]        shrink_folio_list+0x3025/0x42d0
[  525.191665][  T112]        evict_folios+0x6e7/0x1a50
[  525.193213][  T112]        try_to_shrink_lruvec+0x61e/0xa80
[  525.194829][  T112]        shrink_one+0x3e3/0x7b0
[  525.196200][  T112]        shrink_node+0x2763/0x3e60
[  525.197617][  T112]        balance_pgdat+0xc1f/0x18f0
[  525.199083][  T112]        kswapd+0x605/0xc00
[  525.200381][  T112]        kthread+0x2c1/0x3a0
[  525.201702][  T112]        ret_from_fork+0x45/0x80
[  525.203124][  T112]        ret_from_fork_asm+0x1a/0x30
[  525.204632][  T112] 
[  525.204632][  T112] other info that might help us debug this:
[  525.204632][  T112] 
[  525.207508][  T112]  Possible unsafe locking scenario:
[  525.207508][  T112] 
[  525.209617][  T112]        CPU0                    CPU1
[  525.211155][  T112]        ----                    ----
[  525.212678][  T112]   lock(fs_reclaim);
[  525.213844][  T112]                                lock(&q->q_usage_counter(io)#68);
[  525.216093][  T112]                                lock(fs_reclaim);
[  525.217940][  T112]   rlock(&q->q_usage_counter(io)#68);
[  525.219467][  T112] 
[  525.219467][  T112]  *** DEADLOCK ***
[  525.219467][  T112] 
[  525.221741][  T112] 1 lock held by kswapd0/112:
[  525.223508][  T112]  #0: ffffffff8e352e20 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat+0xcd9/0x18f0
[  525.226081][  T112] 
[  525.226081][  T112] stack backtrace:
[  525.227750][  T112] CPU: 0 UID: 0 PID: 112 Comm: kswapd0 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  525.230706][  T112] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  525.233753][  T112] Call Trace:
[  525.234724][  T112]  <TASK>
[  525.235584][  T112]  dump_stack_lvl+0x116/0x1f0
[  525.237011][  T112]  print_circular_bug+0x419/0x5d0
[  525.238452][  T112]  check_noncircular+0x31a/0x400
[  525.239867][  T112]  ? __pfx_check_noncircular+0x10/0x10
[  525.241429][  T112]  ? irqentry_exit+0x3b/0x90
[  525.242710][  T112]  ? lockdep_lock+0xc6/0x200
[  525.244049][  T112]  ? __pfx_lockdep_lock+0x10/0x10
[  525.245508][  T112]  __lock_acquire+0x249e/0x3c40
[  525.246944][  T112]  ? __pfx___lock_acquire+0x10/0x10
[  525.248447][  T112]  lock_acquire.part.0+0x11b/0x380
[  525.249921][  T112]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  525.251425][  T112]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  525.253041][  T112]  ? rcu_is_watching+0x12/0xc0
[  525.254420][  T112]  ? trace_lock_acquire+0x14e/0x1f0
[  525.255908][  T112]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  525.257435][  T112]  ? lock_acquire+0x2f/0xb0
[  525.258738][  T112]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  525.260228][  T112]  __bio_queue_enter+0x4c6/0x740
[  525.261654][  T112]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  525.263134][  T112]  ? __pfx___bio_queue_enter+0x10/0x10
[  525.264731][  T112]  ? blk_mq_submit_bio+0x7b5/0x24c0
[  525.266226][  T112]  ? __pfx_autoremove_wake_function+0x10/0x10
[  525.267979][  T112]  blk_mq_submit_bio+0x7ca/0x24c0
[  525.269448][  T112]  ? __pfx_blk_mq_submit_bio+0x10/0x10
[  525.271016][  T112]  ? __pfx_mark_lock+0x10/0x10
[  525.272412][  T112]  __submit_bio+0x384/0x540
[  525.273710][  T112]  ? __pfx___submit_bio+0x10/0x10
[  525.275146][  T112]  ? ktime_get+0x206/0x300
[  525.276424][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  525.278089][  T112]  ? submit_bio_noacct_nocheck+0x698/0xd70
[  525.279781][  T112]  submit_bio_noacct_nocheck+0x698/0xd70
[  525.281460][  T112]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  525.283444][  T112]  ? __pfx___might_resched+0x10/0x10
[  525.285151][  T112]  ? __pfx___folio_start_writeback+0x10/0x10
[  525.286887][  T112]  submit_bio_noacct+0x93a/0x1e20
[  525.288364][  T112]  __swap_writepage+0x3a3/0xf50
[  525.289825][  T112]  ? __pfx_lock_release+0x10/0x10
[  525.291313][  T112]  swap_writepage+0x403/0x1120
[  525.292901][  T112]  shmem_writepage+0xf7b/0x1490
[  525.294364][  T112]  ? __pfx_shmem_writepage+0x10/0x10
[  525.295965][  T112]  ? inode_to_bdi+0x9e/0x160
[  525.297383][  T112]  ? folio_clear_dirty_for_io+0x112/0x800
[  525.299005][  T112]  pageout+0x3b2/0xaa0
[  525.300242][  T112]  ? __pfx_pageout+0x10/0x10
[  525.301633][  T112]  ? __pfx_folio_referenced_one+0x10/0x10
[  525.303257][  T112]  ? __pfx_folio_lock_anon_vma_read+0x10/0x10
[  525.305089][  T112]  ? __pfx_invalid_folio_referenced_vma+0x10/0x10
[  525.306982][  T112]  ? lock_acquire+0x2f/0xb0
[  525.308373][  T112]  ? folio_evictable+0x2e/0x270
[  525.309815][  T112]  shrink_folio_list+0x3025/0x42d0
[  525.311367][  T112]  ? rcu_is_watching+0x12/0xc0
[  525.312911][  T112]  ? __pfx_shrink_folio_list+0x10/0x10
[  525.314522][  T112]  ? isolate_folios+0x1c57/0x3830
[  525.316053][  T112]  ? hlock_class+0x4e/0x130
[  525.317423][  T112]  ? mark_lock+0xb5/0xc60
[  525.318701][  T112]  ? mark_held_locks+0x9f/0xe0
[  525.320155][  T112]  evict_folios+0x6e7/0x1a50
[  525.321515][  T112]  ? __pfx_evict_folios+0x10/0x10
[  525.323040][  T112]  ? hlock_class+0x4e/0x130
[  525.324512][  T112]  ? __lock_acquire+0x15a9/0x3c40
[  525.326042][  T112]  ? __pfx___might_resched+0x10/0x10
[  525.327661][  T112]  try_to_shrink_lruvec+0x61e/0xa80
[  525.329260][  T112]  ? find_held_lock+0x2d/0x110
[  525.330714][  T112]  ? __pfx_try_to_shrink_lruvec+0x10/0x10
[  525.332459][  T112]  ? shrink_node+0x2743/0x3e60
[  525.334026][  T112]  shrink_one+0x3e3/0x7b0
[  525.335361][  T112]  ? shrink_node+0x2743/0x3e60
[  525.336800][  T112]  shrink_node+0x2763/0x3e60
[  525.338180][  T112]  ? shrink_node+0x24b0/0x3e60
[  525.339592][  T112]  ? __pfx_shrink_node+0x10/0x10
[  525.341113][  T112]  ? __pfx_lock_release+0x10/0x10
[  525.342730][  T112]  ? percpu_ref_put_many.constprop.0+0x1b/0x150
[  525.345249][  T112]  ? balance_pgdat+0xc1f/0x18f0
[  525.346775][  T112]  balance_pgdat+0xc1f/0x18f0
[  525.348097][  T112]  ? __pfx_balance_pgdat+0x10/0x10
[  525.349579][  T112]  ? __pfx___lock_acquire+0x10/0x10
[  525.351055][  T112]  ? lock_acquire.part.0+0x11b/0x380
[  525.352618][  T112]  ? __pfx___might_resched+0x10/0x10
[  525.354143][  T112]  kswapd+0x605/0xc00
[  525.355294][  T112]  ? __pfx_kswapd+0x10/0x10
[  525.356749][  T112]  ? __pfx_autoremove_wake_function+0x10/0x10
[  525.358474][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  525.359985][  T112]  ? __kthread_parkme+0x148/0x220
[  525.361439][  T112]  ? __pfx_kswapd+0x10/0x10
[  525.362834][  T112]  kthread+0x2c1/0x3a0
[  525.364027][  T112]  ? _raw_spin_unlock_irq+0x23/0x50
[  525.365521][  T112]  ? __pfx_kthread+0x10/0x10
[  525.366901][  T112]  ret_from_fork+0x45/0x80
[  525.368261][  T112]  ? __pfx_kthread+0x10/0x10
[  525.369574][  T112]  ret_from_fork_asm+0x1a/0x30
[  525.370937][  T112]  </TASK>

VM DIAGNOSIS:
03:38:01  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851c1355 RDI=ffffffff9ab15b20 RBP=ffffffff9ab15ae0 RSP=ffffc900027de0f8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36
R12=0000000000000000 R13=0000000000000030 R14=ffffffff851c12f0 R15=0000000000000000
RIP=ffffffff851c137f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c36a886 CR3=0000000065dee000 CR4=00352ef0
DR0=0000000000000000 DR1=00000000872c9164 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000006b925051 c7b7fb1906850010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02a9a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02aa7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02aa1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02ab5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02b3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02c19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000002c03000000 4002000800000000 307a797300010009 00000002d5ff1a5e
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100110000001400 000000327a797300 0300090000000004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000200000000ff e6000003010a0300 00002c0300000040 0200080000000030
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=0000000000210001 RCX=ffffffff81e9a510 RDX=1ffff1100003038b
RSI=ffffffff81e172bf RDI=0000000000000006 RBP=ffff8880279d8000 RSP=ffffc90003b17b88
R8 =0000000000000006 R9 =0000000000181067 R10=0000000000181067 R11=00000000000a4001
R12=ffff888025501d40 R13=ffff888000181c58 R14=1ffff92000762f78 R15=0000000000000000
RIP=ffffffff81e172d4 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fe579d696c0 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055c8c62c4280 CR3=000000010e642000 CR4=00352ef0
DR0=00000000000000f4 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcb64650f0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02a9a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02aa7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02aa1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02ab5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02b3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb8cc02c19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000000 RDX=0000000000000600
RSI=0000000000000000 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffc90005e7f980
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b29cdc0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 00007fd88a3ea6c0 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0000 ffff88806a800000 ffffffff 00c09300 DPL=0 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000ffff
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000029a06000 CR4=00352ef0
DR0=0000000000000000 DR1=00000000872c9164 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff293c77f0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe579002a9a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe579002aa7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe579002aa1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe579002ab5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe579002b3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe579002c19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88806a93fdc0 RCX=ffffffff818e3554 RDX=ffff88801d688000
RSI=ffffffff818e352f RDI=0000000000000005 RBP=ffffc90000167d78 RSP=ffffc90000167ca0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c38d66
R12=1ffff9200002cf98 R13=0000000000000001 R14=0000000000000003 R15=ffffed100d527fb9
RIP=ffffffff818e3535 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007feb8a9f5f98 CR3=0000000037bac000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd2e270590 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 00ff000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff000000000000ff 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737232 737326e6ef730a07
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73001605121f0073 431e161e035c1810
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000