last executing test programs:

31.720906382s ago: executing program 2 (id=1383):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x3)
mount(0x0, &(0x7f0000003c40)='./file0\x00', &(0x7f0000000040)='proc\x00', 0x0, &(0x7f0000000200)='gid=1\x00nk]e\xb2}\x9c6\b\xc1\x04\xbb\xbe \x9f\xe7\x8c\xc6\x06y\x89sd\xeb\xf4\x94\x1f\xdf\x91A!\xf9}\xee\xe7\x89\xcf\x99\n[\'\xca\xb3\x84\xb6j\xb9\x8c#\xf4\xf0\x96\x8e\xaa\x04\x82\x99f7\xf3\xd8\x17\xfc\x00\x00\x00\x00\x9c$Nn\x13\x8f\xf7\b\x00\x00\x00/\xf5|H\xe1\xbd0\x0fz\xbat\x0e-\x95c.j\xdd\xbe\x1dc3\xca\xd5\x91\xc8\x12f\x90\xac\x97\xdb\x06\x10?]\")\xb4\xe7tD6G\"<')
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
read$FUSE(r1, &(0x7f00000029c0)={0x2020}, 0x2020)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'dummy0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3000000010000304000000000000000000000400", @ANYRES32=r2, @ANYBLOB="0000000000000000050021"], 0x30}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), r4)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r6=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='T\x00'], 0x54}}, 0x0)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=ANY=[@ANYBLOB="98030000", @ANYRES16=r5, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r6, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001bae9ee14d4284d73c826d8bce62cb84c8b765cbac71c46bc4718", @ANYRES16=r4], 0x398}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@ipv4_delrule={0x68, 0x21, 0x200, 0x70bd2d, 0x25dfdbfd, {0x2, 0x10, 0x10, 0x4, 0x9, 0x0, 0x0, 0x3, 0x10002}, [@FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0xfffffffffffffff7}, @FRA_GENERIC_POLICY=@FRA_PROTOCOL={0x5, 0x15, 0x3}, @FRA_FLOW={0x8, 0xb, 0x2}, @FRA_GENERIC_POLICY=@FRA_IIFNAME={0x14, 0x3, 'pimreg1\x00'}, @FRA_DST={0x8, 0x1, @multicast2}, @FRA_GENERIC_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x3}, @FRA_TUN_ID={0xc}]}, 0x68}}, 0x0)

31.720085625s ago: executing program 2 (id=1384):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000008c0)={'dvmrp1\x00', 0x2})
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100feffffff000000001400000018000180140002006e657464657673696d3000000000000005001900010000000800100004090000080011"], 0x44}}, 0x44000) (async)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000240)={0x1, &(0x7f0000000100)=[{0x6}]}) (async)
ioctl$TUNDETACHFILTER(r0, 0x401054d6, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000040)={0x802, 0x0, 0x800}, 0xfffffffffffffecf) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r5, @ANYBLOB="01000000000000000000010000000c000597ff000000000000000c0002000000000000000000040007800c000800000000000000000008000a0000000000440007800800", @ANYRES32, @ANYBLOB='2'], 0x90}}, 0x0)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f00000001c0), 0xffffffffffffffff) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000200)=<r7=>0x0)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r4, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, r6, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x142}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0xa}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008000}, 0x4000010)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)={0x14, 0xfffe, 0x400, 0x0, 0x0, {0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x40090}, 0x40031) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) (async)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000480)=@v3={0x3000000, [{0xf876, 0x102}, {0x6, 0x1}]}, 0x18, 0x0) (async)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], &(0x7f0000000500)=""/211, 0xd3) (async)
r8 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x1c402, 0x0)
ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f0000000140)={{r8}, {@void, @max}}) (async)
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r8, 0x1e, &(0x7f0000000340)={r3}, 0x1)

31.62096204s ago: executing program 2 (id=1385):
mkdirat(0xffffffffffffff9c, &(0x7f0000000cc0)='./file0\x00', 0x0) (async, rerun: 32)
mount$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x81, &(0x7f0000000700)={[{@mpol={'mpol', 0x3d, {'default', '=relative', @void}}}]}) (async, rerun: 32)
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @multicast1}, &(0x7f0000000040)=0x10, 0x800)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
fallocate(r1, 0x0, 0x0, 0x10fff9)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x7000001, 0x12, r1, 0x0) (async, rerun: 64)
sendfile(r0, r1, &(0x7f0000000080)=0x7fff, 0x0) (rerun: 64)

31.620808885s ago: executing program 2 (id=1386):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000007112240000000000950000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x4, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x32b, 0x108}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e20}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000007112240000000000950000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x4, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x32b, 0x108}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e20}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x0) (async)

31.550889125s ago: executing program 2 (id=1387):
openat(0xffffffffffffffff, 0x0, 0x80, 0x10e)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x1c, r1, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x1c}, 0x4, 0x700000000000000}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="ac0000000001010400000000000000000a0000003c0001802c00018014000300fe8000f2f200000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa1400040500480000000000ac00000000000000010c00028005000100000000000800074000000000180006801400040020010000000000000000000000000001a49ef72d57aade760c258cb39c69236a1aa587f730f4dfc2f37bda6e5396b9ea3618503caf476fed17d9bc6738f62672c721225ebb7b2908a6dc359bcf798175e80bbee93a60fdfb659dd18894959ba14e38a4c769c5e05dde2b175308e2cd4883369b6e0d0c51f9ced89006281d1538dcbf1b52b55d4a9693ee490506fa57007e2bb89e17b4c7d4f29bef8001f2b2b690b6c9952d1730dbfa2f2c80d60905490f"], 0xac}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)={0xac, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0xac}}, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x1, 0x4}, &(0x7f0000000040))
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r7 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
ioctl$LOOP_CONFIGURE(r7, 0x4c0a, &(0x7f0000001ac0)={r6, 0x0, {0x0, 0x0, 0x0, 0x1, 0x8000, 0x0, 0x0, 0x0, 0x4, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03540250ceaac594b1b3d741dd17c1c50d38ef40f35e06000000000000006500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174ff10000000000000010e200"}})
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x2c240, 0x0)
r9 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x0)
ioctl$LOOP_CHANGE_FD(r9, 0x4c06, r8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
modify_ldt$write(0x1, &(0x7f0000000040)={0x600}, 0x10)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000240)=[@mss, @sack_perm, @timestamp, @mss={0x2, 0x1}, @window, @window={0x3, 0x0, 0xfffc}, @timestamp, @timestamp], 0x8)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)

30.720264231s ago: executing program 2 (id=1401):
r0 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
r2 = syz_open_dev$vim2m(&(0x7f0000000080), 0x20001, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r2, 0x40045612, &(0x7f0000000000)=0x1)
write(r1, &(0x7f0000000000)="fa", 0xfffffdef)
fadvise64(r0, 0x100000001, 0xfc, 0x1)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x200013, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r5, 0x8983, &(0x7f00000004c0)={0x8, 'vlan0\x00', {'veth1_to_bridge\x00'}, 0x3})
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000180)={<r6=>0x0, 0x6}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000200)={r6, 0x5, 0x1, [0x8]}, &(0x7f0000000240)=0xa)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000340)="d80000001c0081044e81f782db44b904021d080201000000001c00a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x6, 0x1405, 0x20, 0x70bd26, 0x25dfdbfc, "", [{{0x0, 0x1, 0x200}, {0x0, 0x3, 0x3}}, {{0x0, 0x1, 0x2}, {0x0, 0x3, 0x2}}]}, 0x10}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004840)

30.500278889s ago: executing program 32 (id=1401):
r0 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
r2 = syz_open_dev$vim2m(&(0x7f0000000080), 0x20001, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r2, 0x40045612, &(0x7f0000000000)=0x1)
write(r1, &(0x7f0000000000)="fa", 0xfffffdef)
fadvise64(r0, 0x100000001, 0xfc, 0x1)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x200013, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r5, 0x8983, &(0x7f00000004c0)={0x8, 'vlan0\x00', {'veth1_to_bridge\x00'}, 0x3})
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000180)={<r6=>0x0, 0x6}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000200)={r6, 0x5, 0x1, [0x8]}, &(0x7f0000000240)=0xa)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000340)="d80000001c0081044e81f782db44b904021d080201000000001c00a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x6, 0x1405, 0x20, 0x70bd26, 0x25dfdbfc, "", [{{0x0, 0x1, 0x200}, {0x0, 0x3, 0x3}}, {{0x0, 0x1, 0x2}, {0x0, 0x3, 0x2}}]}, 0x10}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004840)

12.534409849s ago: executing program 1 (id=1861):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x400})
r1 = io_uring_setup(0x7b1, &(0x7f0000000440)={0x0, 0xf42f, 0x0, 0xffa, 0x32c})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000})
r2 = io_uring_setup(0x4896, &(0x7f00000004c0)={0x0, 0xbcd3, 0x3, 0x0, 0x245})
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r3, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r3, 0x20000005)
openat$cgroup_ro(r0, &(0x7f0000000100)='blkio.bfq.io_wait_time\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000071123d000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
close_range(r2, 0xffffffffffffffff, 0x0)

12.130692696s ago: executing program 1 (id=1868):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c0000001a0001002dbd7000ffdbdf251c00"], 0x1c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000006300)={0x2020, 0x0, <r3=>0x0, <r4=>0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb1000008747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb80035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22383e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485a4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2245eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e4c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad64c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc590800", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3966, 0x3, 0x8000, 0x0, r4, r5, 0xe, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 32)
r6 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0) (rerun: 32)
write$tcp_congestion(r6, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r6, r2) (async)
ioctl$PPPIOCGFLAGS(r6, 0x8004745a, &(0x7f0000000080)) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) (async, rerun: 64)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r9, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000780)={0x50, r8, 0x801, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee339084eeef16f162471f4"}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac06}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x50}, 0x1, 0x0, 0x0, 0x40905}, 0x0) (async)
sendmsg$NL80211_CMD_VENDOR(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000000)={0x24, r0, 0x400, 0x0, 0x0, {{0x32}, {@val={0x8, 0x1, 0xd}, @val={0x8, 0x3, r10}, @void}}}, 0x24}, 0x1, 0x0, 0x0, 0x44884}, 0x0)

12.130502762s ago: executing program 1 (id=1869):
sendmsg$NFC_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="81012dbd7000d90200000100000008"], 0x1c}}, 0x0) (async)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="6800000015000100000000000000ff00fe8800000000000000000000800000010000000000000000000000000000000000040000000000000000b10000000000", @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\b'], 0x68}}, 0x440c4)

12.070798563s ago: executing program 1 (id=1870):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r1 = fsopen(&(0x7f0000000000)='binfmt_misc\x00', 0x1)
fsconfig$FSCONFIG_SET_FLAG(r1, 0x0, &(0x7f00000002c0)='mand\x00', 0x0, 0x0) (async)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) (async)
r2 = open(0x0, 0x80000, 0x95)
open_by_handle_at(r2, 0x0, 0x4e03c2)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x1, 0xfffffffd) (async)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) (async)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000340)={0x2020}, 0xcb0a)
fsmount(r1, 0x0, 0x81) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000002380)=ANY=[@ANYBLOB="1100000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000f52a587b1a6c687a18b1e835166904d98a2cb1def6a7e1267cfa7c6173dc9fe4c773fab2692293833babd0847ffc11b5c61221a3297637d8bc9439b7ce916070a7c70c37b95ceadcbe9745e53ba242e8f66a8c6b949d48ad077cde92eeb34a5dc77b48cf87d230e34bbb61c298b2583a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000004b9d301ddaff54aa516d000000"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000200)={r3, &(0x7f0000000080), &(0x7f0000000000)=""/10, 0x2}, 0x20)

12.070358882s ago: executing program 1 (id=1872):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x100000c, 0x100010, 0xffffffffffffffff, 0x8000000)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x1000004, 0x40010, 0xffffffffffffffff, 0x10000000)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f00000000c0)=@IORING_OP_ACCEPT={0xd, 0x14, 0x4, r2, &(0x7f0000000000)=0x80, &(0x7f0000000040)=@in6={0xa, 0x0, 0x0, @private1}, 0x0, 0x800, 0x0, {0x0, r3}})
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r4, 0x0, 0x63, &(0x7f0000001c40)={'IDLETIMER\x00'}, &(0x7f0000004580)=0x1e)

11.857926742s ago: executing program 1 (id=1876):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newtaction={0x6c, 0x30, 0x1, 0x3, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PROTO={0x6, 0x4, 0x8848}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x7, 0xab5, 0x6, 0xf808, 0x8}, 0x3}}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r1, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x285c, 0x4)
sendmsg$key(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="0208000002"], 0x10}}, 0x0)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000040)='btrfs\x00', 0x208000, 0x0)

11.795815921s ago: executing program 33 (id=1876):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newtaction={0x6c, 0x30, 0x1, 0x3, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PROTO={0x6, 0x4, 0x8848}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x7, 0xab5, 0x6, 0xf808, 0x8}, 0x3}}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r1, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x285c, 0x4)
sendmsg$key(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="0208000002"], 0x10}}, 0x0)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000040)='btrfs\x00', 0x208000, 0x0)

1.309764111s ago: executing program 3 (id=2075):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000240)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {0x3}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x4}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x54}}, 0x8800)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xf, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r1, r2, 0x6, 0x0, @void}, 0x10) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0) (async)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x20) (async)
r4 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r4, 0xc06864b8, &(0x7f0000000000)={0x0, 0xc1, 0x7f, 0x20203243, 0x2, [0x2], [0x800], [], [0x0, 0xfd19]})
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) (async)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r7 = dup2(r6, r6)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x10, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000000040850000008600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000018000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r9, 0x27, 0x0, 0x120, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(xeta-generic)\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r10, 0x117, 0x1, &(0x7f0000000000)="2c385aa3d49100dc6626c892b6bc436a", 0x10) (async)
r11 = accept4(r10, 0x0, 0x0, 0x80000)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), r11) (async)
r12 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0)
syz_usb_connect$hid(0xf63067478e218e8, 0x36, &(0x7f00000000c0)=ANY=[], 0x0) (async)
ioctl$SNAPSHOT_FREE(r12, 0x3305)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f0000000000)={0x4, 0x0, 0x9, 0x0, <r13=>0x0})
ioctl$DRM_IOCTL_MODE_MAP_DUMB(r5, 0xc01064b3, &(0x7f00000000c0)={r13})
ioctl$UI_ABS_SETUP(r7, 0x401c5504, &(0x7f0000000800)={0x0, {0x2f, 0x0, 0x3, 0x2, 0x2}})
ioctl$UI_DEV_SETUP(r6, 0x405c5503, &(0x7f00000001c0)={{}, 'syz1\x00'})

830.64242ms ago: executing program 0 (id=2087):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@ipv6_newaddr={0x34, 0x14, 0x1, 0x0, 0x0, {0xa, 0x0, 0xa1, 0x0, r2}, [@IFA_ADDRESS={0x14, 0x1, @mcast1={0xff, 0x5}}, @IFA_FLAGS={0x8, 0x8, 0x402}]}, 0x34}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000015"], 0x34}, 0x1, 0x0, 0x0, 0x41c1}, 0x4040800)
ioctl$NS_GET_NSTYPE(0xffffffffffffffff, 0xb703, 0x0)

760.413525ms ago: executing program 0 (id=2091):
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x10000, @loopback, 0x10001}, 0x1c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0xcc, 0x3b, 0x107, 0x0, 0x25dfdbfe, {0x1, 0x7c}, [@nested={0x4, 0xfc}, @nested={0xc, 0xdd, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @typed={0x8, 0x5, 0x0, 0x0, @u32=0xa}, @nested={0x9d, 0x2, 0x0, 0x1, [@generic="7efc1f117a25dbee9c2acc7fededcaab9021a63986e867ebdf19e6ac5f762c10e9125da511f8f95993688797be2c4a3415a64a016185e17b2ff61a84750d384c0720c68ede59c66aa26312cdce57ed6430684601cf8360ca98a4a5a76e25b90fd527c00c8a774d2487741fbc1ba14c2ea1c326e78815e8d6c35ebd524d31a0787332602da0b8bb8492d665e550517951ef779e44d25aba26cd"]}]}, 0xcc}}, 0xc000)
r2 = accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000080))
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e23, 0xdb729b8, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7}, 0x1c)

759.957856ms ago: executing program 0 (id=2092):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x2, &(0x7f0000000040)=0x800007f, 0x4)
bind$inet(r2, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r3, 0x1, 0x2, &(0x7f0000000040)=0x7f, 0x4)
bind$inet(r3, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
listen(r3, 0x0)
listen(r3, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

699.975797ms ago: executing program 0 (id=2095):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'veth1_virt_wifi\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000180)="02030c65420002000000ab5d71acedd7c9560385dcb1080084d7dc039806112405ce811cc352", 0xff88, 0x0, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x25, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x60}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
read$FUSE(0xffffffffffffffff, &(0x7f00000003c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_STATFS(0xffffffffffffffff, &(0x7f00000001c0)={0x60, 0xffffffffffffffda, r3, {{0x8, 0x3, 0x3514, 0xe, 0x4, 0x38000, 0x5, 0xff}}}, 0x60)
socket$packet(0x11, 0x3, 0x300) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'veth1_virt_wifi\x00'}) (async)
sendto$packet(r0, &(0x7f0000000180)="02030c65420002000000ab5d71acedd7c9560385dcb1080084d7dc039806112405ce811cc352", 0xff88, 0x0, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x25, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x60}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) (async)
read$FUSE(0xffffffffffffffff, &(0x7f00000003c0)={0x2020}, 0x2020) (async)
write$FUSE_STATFS(0xffffffffffffffff, &(0x7f00000001c0)={0x60, 0xffffffffffffffda, r3, {{0x8, 0x3, 0x3514, 0xe, 0x4, 0x38000, 0x5, 0xff}}}, 0x60) (async)

640.207955ms ago: executing program 0 (id=2098):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = fsopen(&(0x7f0000000040)='btrfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f0000000340)='cgroup.stat\x00', 0x300, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
open_by_handle_at(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000200000007"], 0x1082c0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901ac040098007f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f00000e970300"/216, 0xd8}], 0x1}, 0x48002)

639.425459ms ago: executing program 0 (id=2100):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x2c, 0x1, 0x4, 0x201, 0x0, 0x0, {0x7, 0x0, 0x2}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x4}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0xabd0}, @NFULA_CFG_QTHRESH={0x8, 0x5, 0x1, 0x0, 0x5f}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000100)
r3 = memfd_create(&(0x7f000003affa)='posix_acl_access{Y\x00', 0x0)
lseek(r3, 0x7ffffffffffffffb, 0x0)
writev(r3, &(0x7f0000000740)=[{&(0x7f0000000000)="64c5808745627fb1f718792e", 0xc}], 0x1)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000880)=@migrate={0x50, 0x21, 0xd39, 0x0, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x20}, @in=@dev={0xac, 0x14, 0x14, 0x30}, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, 0x0, 0x2c}}}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)={0x38, r5, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x38}}, 0x0)
ioctl$HCIINQUIRY(r0, 0x400448e1, &(0x7f0000000240)={0x0, 0x0, "be5eec", 0x0, 0xff})
rt_sigaction(0x34, &(0x7f0000000180)={&(0x7f0000000040)="c40259287503c481895cfa64deaa3c0d000043dc29c4c119d5d16664f3400f1ec464f7aa0bb10000660ff43e44c08c29980000001067f240ac", 0x0, &(0x7f0000000080)="2e66410f642267f3430faece3e420f1a9efeeffffff3f3f246223d0000008143fa2ef0830a103e450f690fc463b16e0300dc770d8f0978d1d2", {[0x2]}}, &(0x7f00000002c0)={&(0x7f0000000200)="c4220dcf87facd761fc4e1996ac98f6978e2d4c4a1fc1127660fe11cc845dae98fa978999200000020c4437bf0a715d100000a460f01dcc4a245b7da", 0x0, &(0x7f0000000280)="c463b122e00766410f5827670fdbf63e450f603b66420f69ecc4e36d5f9b3d040000fec4a3f9155f0ffcc4c21d0aaa050000006544af6a03"}, 0x8, &(0x7f0000000300))

478.763237ms ago: executing program 5 (id=2107):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002520702500000000690000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0xffffffffffffff50, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r0}, 0x10) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01000000040000000a0000000c00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.freeze\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001280)={{}, 0x0, &(0x7f0000000200)=r1}, 0x20)
openat$cgroup_ro(r1, &(0x7f0000000000)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)

410.67966ms ago: executing program 5 (id=2109):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd7000fddbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="04002481"], 0x20}, 0x1, 0x0, 0x0, 0x4000011}, 0x40000)

409.877682ms ago: executing program 4 (id=2110):
r0 = fsopen(&(0x7f0000000000)='exofs\x00', 0x0)
syz_emit_vhci(&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x7)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
r2 = epoll_create(0x7fffffff)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)={0x2})
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20-simd,anubis-generic,nhpoly1305-sse2)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000013a40)={0x0, 0x0, &(0x7f0000013a00)={&(0x7f0000000100)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x4}}}, 0x24}}, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x4000000000000000)
r9 = dup(r8)
syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000008c0)=[@text64={0x40, 0x0}], 0x1, 0x1a, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000024d564b000000eccd"])
ioctl$KVM_RUN(r8, 0xae80, 0x0)
write$sndseq(r5, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r10 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x1d5}, &(0x7f0000000000)=<r11=>0x0, &(0x7f00000001c0)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r12, &(0x7f0000000200)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x30, 0x4004, @fd_index=0x7, 0x0, 0x0, 0x0, 0x6, 0x0, {0x3}})
socket(0x27, 0x2, 0x80000000)
io_uring_enter(r10, 0x47ba, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='rpc_pipefs\x00', 0x0, 0x0)

409.729476ms ago: executing program 5 (id=2111):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x4) (async)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x4)
fcntl$notify(r2, 0x402, 0x3c)
close_range(r1, r2, 0x0)
inotify_init1(0x0) (async)
inotify_init1(0x0)
r3 = syz_open_procfs(r0, &(0x7f0000000000)='attr/current\x00')
close(0x3)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={@map=r1, 0x13, 0x0, 0x400, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0], <r4=>0x0}, 0x40)
openat$cgroup(r3, &(0x7f00000001c0)='syz1\x00', 0x200002, 0x0) (async)
r5 = openat$cgroup(r3, &(0x7f00000001c0)='syz1\x00', 0x200002, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000180)={@cgroup=r5, r3, 0x17, 0x4, r1, @void, @value=r2, @void, @void, r4}, 0x20) (async)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000180)={@cgroup=r5, r3, 0x17, 0x4, r1, @void, @value=r2, @void, @void, r4}, 0x20)

358.735964ms ago: executing program 4 (id=2112):
unshare(0x68060200)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8917, &(0x7f0000000080)={'syz_tun\x00', {0x2, 0x0, @remote}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{0x1, <r2=>0xffffffffffffffff}, &(0x7f0000000280), &(0x7f00000002c0)=r1}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1c, 0x9, 0x3, 0xfffffff8, 0x400, r2, 0x10, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)=ANY=[@ANYBLOB="140000001000010000050000000000000000000a88000000000a010100000000000000000a00000008000240000000010c00044000000000000000030c00044000000000000000031f0006006cdcbf1cfe826d48bf25307caf3c613751de9e05155995167f1ba4000c00044000000000000000020900010073797a3100090000040006000900010073797a31000000000900010073797a30000000002c000000030a010300000000000000000a0000000900030073797a31000000000900010073797a300000000028000000000a010400000000000000000a0000000900010073797a3000000000080002"], 0x104}}, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r4)
sendmsg$NLBL_MGMT_C_ADDDEF(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="01000000004700000000000000000800020005000000"], 0x1c}}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(r6, 0x801c581f, &(0x7f0000001100))
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x3, [@decl_tag={0x3, 0x0, 0x0, 0x11, 0x3, 0x8}]}, {0x0, [0x0]}}, &(0x7f00000000c0)=""/226, 0x2b, 0xe2, 0x1, 0xed, 0x10000, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0xfffffffd, 0x93d, 0x761, 0x42, r6, 0x2, '\x00', 0x0, r7, 0x5, 0x2, 0x3, 0x9, @void, @value, @void, @value}, 0x50)
r8 = socket(0x10, 0x3, 0x0)
sendto$inet6(r8, &(0x7f0000000080)="7800000018002507b9409b14ffff0b7a0204be04020714056406040c5c0009003f0006180a0000000d0085a168d0bf46d32345653610648d270005000a06024e49935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000400160008030a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'macsec0\x00'})

358.572445ms ago: executing program 5 (id=2113):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000004c0)='highspeed\x00', 0xa)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000003c0), r2)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r2, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)={0x14, r3, 0xfb59b128081ca7fb}, 0x14}}, 0x0)
sendfile(r0, r1, 0x0, 0x1000004)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmmsg(r5, &(0x7f0000003840)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x40, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c00000010000304000000000000000000007400", @ANYRES32=0x0, @ANYRES16=r0], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x44050)
preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000000)=""/230, 0xe6}, {&(0x7f0000000100)=""/34, 0x14}, {&(0x7f00000001c0)=""/57, 0x39}], 0x37, 0x8, 0x7)

357.209248ms ago: executing program 3 (id=2114):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r1 = socket$inet_sctp(0x2, 0x1, 0x84) (rerun: 32)
connect$inet(r1, &(0x7f0000000580)={0x2, 0x4e21, @private=0xa010100}, 0x10) (async, rerun: 64)
sendmmsg$inet(r1, &(0x7f00000049c0)=[{{&(0x7f00000005c0)={0x2, 0x4e22, @private=0xa010100}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000600)="cd29", 0x2}], 0x1}}], 0x1, 0x8000) (async, rerun: 64)
setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, 0x0, 0x0)
sendmsg$netlink(r0, &(0x7f00000003c0)={&(0x7f00000000c0)=@kern={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)=[{&(0x7f0000000100)={0x6c, 0x2b, 0x300, 0x70bd25, 0x25dfdbfe, "", [@typed={0x8, 0x6a, 0x0, 0x0, @ipv4=@empty}, @nested={0x51, 0x2d, 0x0, 0x1, [@nested={0x4, 0xd1}, @generic="bde411a9996661087da337ed7a05e091f1dcff", @nested={0x4, 0xe5}, @generic="321ad2a0a0503120d8f7b78e4308891e226b035e6ebab57e186f88fcbfee1bfb4b389554fb307409061871ece800", @nested={0x4, 0x88}]}]}, 0x6c}], 0x1, &(0x7f0000000280)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1]}}], 0x20, 0x4004000}, 0xc0000) (async, rerun: 32)
r2 = shmget$private(0x0, 0x9000, 0x0, &(0x7f0000ff7000/0x9000)=nil) (async, rerun: 32)
prlimit64(0x0, 0xb, &(0x7f0000000240)={0x0, 0x6}, 0x0) (async)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003"], 0xcdc}}, 0x10) (async, rerun: 32)
setns(r4, 0x24020000) (rerun: 32)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x4}, @NFTA_SET_DESC={0x14, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x98}}, 0x0) (async)
r7 = syz_clone(0x16040000, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r7, 0x4)
r8 = syz_open_procfs$userns(r3, &(0x7f0000000040))
mount_setattr(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x8900, &(0x7f0000000080)={0x0, 0x1, 0x60000, {r8}}, 0x20) (async)
shmat(r2, &(0x7f0000ff9000/0x1000)=nil, 0x5000) (async)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)

290.654359ms ago: executing program 3 (id=2115):
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x7)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000080)={0x0, 0xffff}, &(0x7f00000000c0)=0x8) (async)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000080)={<r2=>0x0, 0xffff}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000100)={0x7, 0xa67, 0x200, 0x0, 0x8, 0xeb, 0x7, 0x3, r2}, &(0x7f0000000180)=0x20)
getsockopt$ax25_int(r0, 0x101, 0x19, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r3 = getpid()
syz_pidfd_open(r3, 0x0) (async)
r4 = syz_pidfd_open(r3, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000e00)='/sys/kernel/crash_elfcorehdr_size', 0x0, 0x0)
read(r5, &(0x7f00000003c0)=""/118, 0x76)
setns(r4, 0x24020000) (async)
setns(r4, 0x24020000)
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

288.130307ms ago: executing program 3 (id=2116):
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x10001, 0x7fff, 0x7e, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
socket(0x10, 0x3, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r2}, 0x8)
ioctl$SIOCSIFHWADDR(r1, 0x89f0, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'})
socket$inet6(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
dup(r4)

287.87558ms ago: executing program 4 (id=2117):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) (async)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x6f, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x50) (async, rerun: 32)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) (rerun: 32)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) (async)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0) (async)
r1 = syz_open_dev$sg(&(0x7f0000007700), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x40) (async, rerun: 64)
syz_emit_vhci(&(0x7f0000000140)=@HCI_VENDOR_PKT, 0x2) (async, rerun: 64)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x2c, r3, 0x1, 0x80, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x99}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
syz_emit_vhci(&(0x7f0000000240)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}, {0x77, 0xc9}}}, 0x6) (async)
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x48, r7, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_FRAME={0x24, 0x33, @reassoc_resp={{{0x0, 0x0, 0x3, 0x0, 0x0, 0x1}, {}, @broadcast, @device_a, @random="37e6fc966e04", {0x0, 0x7}}, 0x4c85, 0x5d, @default, @val, @void}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x8, 0xcd, [0x1, 0x0]}]}, 0x48}, 0x1, 0x0, 0x0, 0xc0}, 0x0) (async, rerun: 64)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000340)={r2, <r8=>0xffffffffffffffff}, 0x4) (rerun: 64)
ioctl$FS_IOC_SETFLAGS(r8, 0x40086602, &(0x7f0000000380)=0x80000000) (async)
ioctl$SIOCAX25GETINFO(0xffffffffffffffff, 0x89ed, &(0x7f00000002c0))

149.994224ms ago: executing program 3 (id=2118):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1}, 0x6e)
socket$unix(0x1, 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1c9a00, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r4, 0x13138000)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cpuacct.usage_percpu\x00', 0x0, 0x0)

90.12708ms ago: executing program 5 (id=2119):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1d"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000/0x2000)=nil, 0x2000})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x8, 0xf, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf0910000000000035090100700000000600000003000000bf98000000000000760800000000000085000000ba000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140)) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) (async)
write$UHID_CREATE2(r5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1d"], 0x118) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0) (async)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000/0x2000)=nil, 0x2000}) (async)
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x8, 0xf, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf0910000000000035090100700000000600000003000000bf98000000000000760800000000000085000000ba000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)

89.660114ms ago: executing program 4 (id=2120):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="300000001d000bcc000000000000070007000000", @ANYRES32=r2, @ANYBLOB="000000000a000200aaaaaaaaaa0c00000600050001"], 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x0)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f00000004c0))

7.233018ms ago: executing program 4 (id=2121):
socket$inet6_udp(0xa, 0x2, 0x0) (async)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001f00)=@raw={'raw\x00', 0x3c1, 0x3, 0x468, 0x268, 0x5802, 0x294, 0x268, 0x294, 0x398, 0x325, 0x378, 0x398, 0x378, 0x3, 0x0, {[{{@ipv6={@loopback, @empty, [], [], 'pimreg0\x00', 'macsec0\x00'}, 0x0, 0x240, 0x268, 0x52020000, {}, [@common=@inet=@hashlimit2={{0x150}, {'gre0\x00', {0x0, 0x4, 0x0, 0x6, 0x0, 0x1, 0x7fffffff}}}, @common=@dst={{0x48}, {0x1000, 0x5, 0x0, [0x1003, 0x6, 0x9000, 0x5, 0x8, 0x7f, 0x2, 0x5, 0x5e7, 0xc85, 0x5e4, 0xd, 0x5, 0xfff9, 0x0, 0x9], 0x2}}]}, @common=@unspec=@NFQUEUE1={0x28}}, {{@uncond, 0x0, 0x108, 0x130, 0x0, {}, [@common=@ah={{0x30}, {[], 0xfffffffe}}, @common=@frag={{0x30}, {[], 0x800000, 0x1}}]}, @common=@unspec=@NFQUEUE0={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4c8)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_OPENQRY(r2, 0x4bfb, &(0x7f00000002c0))
connect(r1, &(0x7f00000004c0)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x8}, 0x80)
syz_emit_vhci(&(0x7f0000003980)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}, {0x6, 0xc8}}}, 0x6)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x101301) (async)
syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x101301)
socket(0x10, 0x803, 0x0) (async)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r5, {0xf0, 0x7}, {}, {0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x8, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x4, 0x20}]}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc0c4}, 0x0)
r6 = syz_genetlink_get_family_id$fou(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000280)={'ip6gre0\x00', &(0x7f0000000200)={'syztnl1\x00', <r7=>0x0, 0x2f, 0xa, 0x9, 0x9, 0x70, @mcast1, @private2, 0x7, 0x8, 0x5, 0x7}})
sendmsg$FOU_CMD_ADD(r3, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, r6, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@FOU_ATTR_IFINDEX={0x8, 0xb, r7}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_V4={0x8, 0x8, @rand_addr=0x64010100}]}, 0x28}}, 0x840) (async)
sendmsg$FOU_CMD_ADD(r3, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, r6, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@FOU_ATTR_IFINDEX={0x8, 0xb, r7}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_V4={0x8, 0x8, @rand_addr=0x64010100}]}, 0x28}}, 0x840)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x10)
r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) (async)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r11, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYRES64=r8]) (async)
ioctl$KVM_SET_CPUID2(r11, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYRES64=r8])
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000100)='v7\x00', 0x208000, 0x0) (async)
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000100)='v7\x00', 0x208000, 0x0)

6.734758ms ago: executing program 5 (id=2122):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000200)=0x1, 0x12)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
socket$packet(0x11, 0x3, 0x300)
r3 = syz_open_dev$video4linux(&(0x7f0000000080), 0xffe, 0x8200)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r3, 0xc0305602, &(0x7f0000000140)={0x0, 0x8, 0x2001, 0x1})
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000080)={0x0, 0x7, 0x10}, 0xc)
r4 = socket$inet(0x2, 0x80000, 0x3)
sendto$inet(r4, &(0x7f0000000040)='M', 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e20, @local}, 0x10)

939.468µs ago: executing program 4 (id=2123):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000200000008000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000f6ffffffffffffff00"], 0x50)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni-avx2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(r2, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000003c80)=ANY=[], 0x12f4}}, 0x0)
read$alg(r2, &(0x7f0000000200)=""/4087, 0xff7)
bpf$MAP_CREATE(0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="0b0000001f00000002040000ff03000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000150dd89a000000000000000000000000000000ffff5101f2e6d0fc7a3f04c59627bf8a01b97d5215d180257fd41d4da2acbb3f3319162ff8a8786feddc180c9905fbec9424a4b72018d0cfac54e769953f66517d40c65dc88adeaf55edbc01bd079f176caab2666dfcb8d334f52ac67ffbc31a029750543d97cf3422"], 0x50)
close(r0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x4, 0x9, 0x0, 0x1, 0xff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xa)
syz_emit_vhci(&(0x7f0000001400)=ANY=[@ANYBLOB="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"], 0xf4)
sendmsg$nl_route_sched(r4, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x2}, 0x4, r6}}]}, {0x4, 0xa}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}]}, 0x68}}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000001200), 0x800, 0x0)
ioctl$SIOCSIFHWADDR(r7, 0x8924, &(0x7f0000000140)={'bond_slave_1\x00', @remote})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
getpeername$inet(r9, 0x0, 0x0)
r10 = dup(0xffffffffffffffff)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x100715, &(0x7f00000000c0)=ANY=[@ANYBLOB="677fa90478"])
mount$afs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="6479e91d2b20e2e06e2c00"])
sendmsg$nl_route_sched(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004000)={&(0x7f0000001340)=@newtaction={0x84, 0x30, 0x101, 0x0, 0x0, {0x0, 0x0, 0x1100}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0x24}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x20000000, 0x0, 0x7ff, 0x0, {0x1, 0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x9, 0x0, 0x2}, 0x0, 0xfffffffd}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x84}}, 0x8000)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000001280)={r0, &(0x7f0000001540)="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", &(0x7f0000000000)=""/7, 0x2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000001900)={0xc, 0xd, &(0x7f00000012c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a0000001811000052f250efdef80bbe28c397a6cfee196e88eb4f1a2819829f63", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', r6, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r11, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc}, 0x1c)

0s ago: executing program 3 (id=2124):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f0000000140)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000100)={@local})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r2, 0x7b1, &(0x7f0000000080)={0x0, 0x1})
syz_usbip_server_init(0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x9)
r3 = eventfd2(0x10000, 0x800)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x10000)
ioctl$DRM_IOCTL_GET_MAGIC(r4, 0x80046402, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000000)={0x6, <r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SG_FREE(r4, 0x40106439, &(0x7f0000000080)={0xb0a3, r5})
ioctl$KVM_HYPERV_EVENTFD(r1, 0x400caed0, &(0x7f0000000180)={0x2, r3, 0xffffffff})

kernel console output (not intermixed with test programs):

54][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   96.040878][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[   96.043663][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   96.046553][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[   96.049737][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[   96.063193][ T9296] netlink: 20 bytes leftover after parsing attributes in process `syz.2.939'.
[   96.109926][   T39] audit: type=1400 audit(1737708182.775:666): avc:  denied  { name_bind } for  pid=9300 comm="syz.3.940" src=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[   96.140137][ T9299] netlink: 4 bytes leftover after parsing attributes in process `syz.2.941'.
[   96.143130][ T9299] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   96.149147][   T39] audit: type=1400 audit(1737708182.815:667): avc:  denied  { relabelfrom } for  pid=9307 comm="syz.3.942" name="" dev="pipefs" ino=27309 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   96.221401][   T39] audit: type=1804 audit(1737708182.885:668): pid=9314 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.945" name="/newroot/220/file0" dev="tmpfs" ino=1201 res=1 errno=0
[   96.431676][ T9321] netlink: 8 bytes leftover after parsing attributes in process `syz.2.946'.
[   96.490293][ T9327] netlink: 8 bytes leftover after parsing attributes in process `syz.2.948'.
[   96.492990][ T9327] netlink: 12 bytes leftover after parsing attributes in process `syz.2.948'.
[   96.573203][ T9329] netlink: 'syz.2.949': attribute type 21 has an invalid length.
[   96.575745][ T9329] netlink: 156 bytes leftover after parsing attributes in process `syz.2.949'.
[   96.648271][ T9335] hfs: can't find a HFS filesystem on dev sr0
[   96.710219][   T39] audit: type=1400 audit(1737708183.375:669): avc:  denied  { shutdown } for  pid=9338 comm="syz.2.953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   96.789945][ T9350] team0: Device gtp1 is of different type
[   96.842670][   T39] audit: type=1400 audit(1737708183.505:670): avc:  denied  { ioctl } for  pid=9349 comm="syz.0.957" path="socket:[27404]" dev="sockfs" ino=27404 ioctlcmd=0x89e8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   96.966057][ T9359] XFS (nullb0): Invalid superblock magic number
[   97.046368][ T9376] pimreg: entered allmulticast mode
[   97.117408][ T9381] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[   97.119247][ T9381] [U] J"—e:ÀÆ"


[   97.125263][ T9385] netlink: 12 bytes leftover after parsing attributes in process `syz.3.965'.
[   97.128283][ T9385] netlink: 36 bytes leftover after parsing attributes in process `syz.3.965'.
[   97.133846][ T9383] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9383 comm=syz.0.964
[   97.350477][ T5815] usb 6-1: Cannot read MAC address
[   97.352162][ T5815] MOSCHIP usb-ethernet driver 6-1:139.255: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[   97.368961][ T5815] usb 6-1: Cannot read MAC address
[   97.370740][ T5815] MOSCHIP usb-ethernet driver 6-1:139.132: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[   97.383068][ T5815] usb 6-1: Cannot read MAC address
[   97.384805][ T5815] MOSCHIP usb-ethernet driver 6-1:139.8: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[   97.390000][ T5815] usb 6-1: USB disconnect, device number 6
[   97.390442][   T39] audit: type=1400 audit(1737713304.058:671): avc:  denied  { write } for  pid=9390 comm="syz.3.967" name="cgroup.kill" dev="9p" ino=36575259 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   97.399947][   T39] audit: type=1400 audit(1737713304.068:672): avc:  denied  { map } for  pid=9390 comm="syz.3.967" path="/266/file0/cgroup.kill" dev="9p" ino=36575259 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   98.090601][ T9413] syzkaller0: entered promiscuous mode
[   98.092996][ T9413] syzkaller0: entered allmulticast mode
[   98.150287][ T9413] binder: 9412:9413 ioctl ae80 0 returned -22
[   98.324693][   T39] audit: type=1400 audit(1737713304.978:673): avc:  denied  { ioctl } for  pid=9415 comm="syz.1.975" path="socket:[28208]" dev="sockfs" ino=28208 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   98.337410][   T39] audit: type=1400 audit(1737713304.998:674): avc:  denied  { connect } for  pid=9415 comm="syz.1.975" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   98.489323][ T9422] program syz.1.977 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   98.668697][ T9428] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=11440 sclass=netlink_route_socket pid=9428 comm=syz.1.979
[   99.395361][ T9430] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) !
[   99.599852][ T9448] bridee_slave_0: renamed from lo (while UP)
[   99.741289][ T9463] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   99.778190][ T9465] syz.3.991 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   99.859434][ T9463] bridge0: port 3(macsec1) entered blocking state
[   99.861564][ T9463] bridge0: port 3(macsec1) entered disabled state
[   99.864064][ T9463] macsec1: entered allmulticast mode
[   99.868262][ T9463] macsec1: left allmulticast mode
[   99.968158][ T9482] xt_time: unknown flags 0xc
[   99.993065][ T9486] tmpfs: Unknown parameter '`Gn¥å3'
[  100.109926][ T9499] binder: 9498:9499 ioctl 4604 20000180 returned -22
[  100.110818][ T9505] netlink: 'syz.1.1007': attribute type 29 has an invalid length.
[  100.159190][ T9517] futex_wake_op: syz.2.1010 tries to shift op by 32; fix this program
[  100.378631][ T9558] netlink: 'syz.1.1026': attribute type 29 has an invalid length.
[  100.383527][ T9558] netlink: 'syz.1.1026': attribute type 3 has an invalid length.
[  100.388620][ T9558] __nla_validate_parse: 12 callbacks suppressed
[  100.388628][ T9558] netlink: 204 bytes leftover after parsing attributes in process `syz.1.1026'.
[  100.423066][ T9558] netlink: 'syz.1.1026': attribute type 29 has an invalid length.
[  100.424631][ T9564] xt_hashlimit: overflow, rate too high: 0
[  100.518553][ T9573] loop6: detected capacity change from 0 to 8
[  100.521879][ T9573] ldm_validate_partition_table(): Disk read failed.
[  100.524366][ T9573] Dev loop6: unable to read RDB block 0
[  100.527615][ T9573]  loop6: unable to read partition table
[  100.529415][ T9573] loop6: partition table beyond EOD, truncated
[  100.531299][ T9573] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  100.755687][    T8] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  100.863055][ T9583] x_tables: ip6_tables: HL target: only valid in mangle table, not ./file0
[  100.912224][    T8] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  100.914862][    T8] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  100.918097][    T8] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  100.920857][    T8] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  100.924233][    T8] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  100.930856][    T8] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  100.933665][    T8] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  100.936287][    T8] usb 7-1: Product: syz
[  100.937575][    T8] usb 7-1: Manufacturer: syz
[  100.941066][    T8] cdc_wdm 7-1:1.0: skipping garbage
[  100.942727][    T8] cdc_wdm 7-1:1.0: skipping garbage
[  100.945710][    T8] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  100.947543][    T8] cdc_wdm 7-1:1.0: Unknown control protocol
[  101.021736][ T9596] binder: Unknown parameter 'appraise_type'
[  101.039822][ T9599] netlink: 'syz.1.1040': attribute type 13 has an invalid length.
[  101.042301][ T9599] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1040'.
[  101.046256][ T9599] syz_tun: refused to change device tx_queue_len
[  101.048266][ T9599] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  101.088914][ T9607] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1041'.
[  101.118444][ T9613] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1044'.
[  101.219267][ T9627] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1048'.
[  101.223232][ T9632] xt_cgroup: xt_cgroup: no path or classid specified
[  101.237272][ T9627] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1048'.
[  101.328722][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  101.328732][   T39] audit: type=1400 audit(1737713307.998:682): avc:  denied  { read } for  pid=9634 comm="syz.1.1051" path="socket:[29693]" dev="sockfs" ino=29693 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  101.452450][   T39] audit: type=1400 audit(1737713308.108:683): avc:  denied  { mounton } for  pid=9650 comm="syz.1.1058" path="/269/file0" dev="hugetlbfs" ino=28471 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  101.452826][ T9654] overlayfs: maximum fs stacking depth exceeded
[  101.453151][ T9653] dvmrp8: entered allmulticast mode
[  101.453440][ T9649] dvmrp8: left allmulticast mode
[  101.495730][   T62] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  101.506969][ T9659] ip6gretap0: entered promiscuous mode
[  101.509442][ T9659] ip6gretap0: left promiscuous mode
[  101.564785][ T9661] hpfs: Bad magic ... probably not HPFS
[  101.597101][   T39] audit: type=1400 audit(1737713308.258:684): avc:  denied  { execute } for  pid=9662 comm="syz.3.1061" path="/sys/kernel/debug/binder/transaction_log" dev="debugfs" ino=6994 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=file permissive=1
[  101.607130][   T39] audit: type=1400 audit(1737713308.258:685): avc:  denied  { execute } for  pid=9662 comm="syz.3.1061" path="/sys/kernel/debug/binder/transaction_log" dev="debugfs" ino=6994 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=file permissive=1
[  101.632341][   T39] audit: type=1400 audit(1737713308.288:686): avc:  denied  { map } for  pid=9665 comm="syz.3.1063" path="/dev/bus/usb/007/001" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  101.645811][   T62] usb 5-1: Using ep0 maxpacket: 8
[  101.651636][   T62] usb 5-1: config index 0 descriptor too short (expected 74, got 45)
[  101.654066][   T62] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  101.656101][ T9668] input: syz1 as /devices/virtual/input/input25
[  101.660474][   T62] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  101.666303][   T62] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  101.669405][   T62] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  101.685694][   T62] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  101.688339][   T62] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.711366][   T69] usb 7-1: USB disconnect, device number 15
[  101.803750][   T39] audit: type=1400 audit(1737713308.458:687): avc:  denied  { ioctl } for  pid=9677 comm="syz.1.1066" path="socket:[31771]" dev="sockfs" ino=31771 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  101.893876][   T62] usb 5-1: GET_CAPABILITIES returned 0
[  101.895551][   T62] usbtmc 5-1:16.0: can't read capabilities
[  102.098645][    C2] usbtmc 5-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  102.101758][ T9635] usbtmc 5-1:16.0: Unable to send data, error -71
[  102.106304][   T62] usb 5-1: USB disconnect, device number 8
[  102.465942][   T39] audit: type=1326 audit(1737713309.118:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9665 comm="syz.3.1063" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614958cd29 code=0x7fc00000
[  102.472883][   T39] audit: type=1326 audit(1737713309.118:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9665 comm="syz.3.1063" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f614958cd29 code=0x7fc00000
[  102.479705][   T39] audit: type=1326 audit(1737713309.118:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9665 comm="syz.3.1063" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614958cd29 code=0x7fc00000
[  102.486515][   T39] audit: type=1326 audit(1737713309.118:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9665 comm="syz.3.1063" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614958cd29 code=0x7fc00000
[  102.702611][ T9715] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1079'.
[  102.710329][ T9715] libceph: resolve '
[  102.710329][ T9715] -&õÌ×fÍY¹Ç�²a×ïÅ2iˆ
[  102.710329][ T9715] .ÖúÕ?Çý&�*»§&' (ret=-3): failed
[  102.721212][ T9718] tmpfs: Bad value for 'mpol'
[  102.748203][ T9722] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16414 sclass=netlink_route_socket pid=9722 comm=syz.2.1082
[  102.933808][ T9751] program syz.1.1094 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  102.942262][ T9754] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes
[  102.969550][ T9766] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes
[  103.047248][ T9779] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1101'.
[  103.106772][ T9793] delete_channel: no stack
[  103.137172][ T9802] netlink: 'syz.1.1109': attribute type 4 has an invalid length.
[  103.246948][ T9819] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  103.452222][ T9858] XFS (loop1): no-recovery mounts must be read-only.
[  103.506182][ T9853] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1123'.
[  103.514287][ T5935] Bluetooth: hci4: sending frame failed (-49)
[  103.518151][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  103.522657][ T9868] Bluetooth: hci4: Frame reassembly failed (-84)
[  103.691501][ T9896] mkiss: ax0: crc mode is auto.
[  103.824380][ T9910] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  103.945792][ T9922] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1143'.
[  104.003781][ T9928] syz.3.1145 (9928) used greatest stack depth: 20928 bytes left
[  104.016227][ T9930] dlm: no locking on control device
[  104.059268][ T9925] warn_alloc: 1 callbacks suppressed
[  104.059280][ T9925] syz.0.1144: vmalloc error: size 2768896, failed to allocated page array size 5408, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  104.067245][ T9925] CPU: 1 UID: 0 PID: 9925 Comm: syz.0.1144 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0
[  104.067258][ T9925] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.067263][ T9925] Call Trace:
[  104.067266][ T9925]  <TASK>
[  104.067270][ T9925]  dump_stack_lvl+0x16c/0x1f0
[  104.067297][ T9925]  warn_alloc+0x24d/0x3a0
[  104.067317][ T9925]  ? __pfx_warn_alloc+0x10/0x10
[  104.067334][ T9925]  ? __get_vm_area_node+0x1b0/0x2f0
[  104.067345][ T9925]  ? __get_vm_area_node+0x1dc/0x2f0
[  104.067358][ T9925]  __vmalloc_node_range_noprof+0x1105/0x1530
[  104.067375][ T9925]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  104.067391][ T9925]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  104.067407][ T9925]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  104.067420][ T9925]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  104.067432][ T9925]  vmalloc_user_noprof+0x6b/0x90
[  104.067444][ T9925]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  104.067457][ T9925]  vb2_vmalloc_alloc+0x11e/0x3d0
[  104.067471][ T9925]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  104.067484][ T9925]  __vb2_queue_alloc+0x896/0x1230
[  104.067502][ T9925]  vb2_core_reqbufs+0xa73/0xfb0
[  104.067517][ T9925]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  104.067529][ T9925]  ? __pfx___mutex_trylock_common+0x10/0x10
[  104.067542][ T9925]  ? __video_do_ioctl+0x4a2/0xf00
[  104.067559][ T9925]  ? trace_contention_end+0xee/0x140
[  104.067571][ T9925]  ? __mutex_lock+0x1cc/0xb10
[  104.067584][ T9925]  vb2_reqbufs+0x1a5/0x1f0
[  104.067595][ T9925]  ? __pfx_vb2_reqbufs+0x10/0x10
[  104.067607][ T9925]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  104.067621][ T9925]  v4l2_m2m_ioctl_reqbufs+0xdc/0x1e0
[  104.067634][ T9925]  v4l_reqbufs+0x14c/0x1e0
[  104.067649][ T9925]  __video_do_ioctl+0xaf0/0xf00
[  104.067662][ T9925]  ? __pfx___video_do_ioctl+0x10/0x10
[  104.067671][ T9925]  ? __might_fault+0xe3/0x190
[  104.067689][ T9925]  video_usercopy+0x4d2/0x1620
[  104.067701][ T9925]  ? __pfx___video_do_ioctl+0x10/0x10
[  104.067712][ T9925]  ? __pfx_video_usercopy+0x10/0x10
[  104.067729][ T9925]  v4l2_ioctl+0x1ba/0x250
[  104.067738][ T9925]  ? __pfx_v4l2_ioctl+0x10/0x10
[  104.067748][ T9925]  __x64_sys_ioctl+0x190/0x200
[  104.067759][ T9925]  do_syscall_64+0xcd/0x250
[  104.067772][ T9925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.067785][ T9925] RIP: 0033:0x7f2b7a38cd29
[  104.067793][ T9925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.067803][ T9925] RSP: 002b:00007f2b7b1c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  104.067811][ T9925] RAX: ffffffffffffffda RBX: 00007f2b7a5a5fa0 RCX: 00007f2b7a38cd29
[  104.067817][ T9925] RDX: 0000000020000040 RSI: 00000000c0145608 RDI: 0000000000000007
[  104.067823][ T9925] RBP: 00007f2b7a40e2a0 R08: 0000000000000000 R09: 0000000000000000
[  104.067828][ T9925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  104.067833][ T9925] R13: 0000000000000000 R14: 00007f2b7a5a5fa0 R15: 00007ffc654921c8
[  104.067845][ T9925]  </TASK>
[  104.067848][ T9925] Mem-Info:
[  104.084610][ T9939] ptrace attach of "/syz-executor exec"[9940] was attempted by "/syz-executor exec"[9939]
[  104.085792][ T9925] active_anon:11986 inactive_anon:0 isolated_anon:0
[  104.085792][ T9925]  active_file:4518 inactive_file:48723 isolated_file:0
[  104.085792][ T9925]  unevictable:1763 dirty:166 writeback:0
[  104.085792][ T9925]  slab_reclaimable:11848 slab_unreclaimable:75553
[  104.085792][ T9925]  mapped:27273 shmem:8173 pagetables:907
[  104.085792][ T9925]  sec_pagetables:300 bounce:0
[  104.085792][ T9925]  kernel_misc_reclaimable:0
[  104.085792][ T9925]  free:453180 free_pcp:7337 free_cma:0
[  104.105373][ T9942] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  104.107505][ T9925] Node 0 active_anon:48192kB inactive_anon:0kB active_file:18064kB inactive_file:194816kB unevictable:3516kB isolated(anon):0kB isolated(file):0kB mapped:109216kB dirty:660kB writeback:0kB shmem:29156kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13168kB pagetables:3628kB sec_pagetables:1200kB all_unreclaimable? no
[  104.109961][ T9942] overlayfs: failed to set xattr on upper
[  104.110989][ T9925] Node 1 active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:76kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  104.111015][ T9925] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  104.112454][ T9942] overlayfs: ...falling back to redirect_dir=nofollow.
[  104.113929][ T9925] lowmem_reserve[]: 0 1240
[  104.116351][ T9942] overlayfs: ...falling back to metacopy=off.
[  104.118952][ T9925]  0
[  104.119843][ T9942] overlayfs: ...falling back to index=off.
[  104.119850][ T9942] overlayfs: ...falling back to uuid=null.
[  104.217862][ T9925]  0 0
[  104.218764][ T9925] Node 0 DMA32 free:234404kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:48068kB inactive_anon:0kB active_file:18064kB inactive_file:194816kB unevictable:3516kB writepending:660kB present:2080628kB managed:1269808kB mlocked:0kB bounce:0kB free_pcp:3512kB local_pcp:1368kB free_cma:0kB
[  104.227722][ T9925] lowmem_reserve[]: 0 0 0 0 0
[  104.229178][ T9925] Node 1 Normal free:1564716kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:76kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:24528kB local_pcp:5380kB free_cma:0kB
[  104.237846][ T9925] lowmem_reserve[]: 0 0 0 0 0
[  104.239339][ T9925] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  104.243147][ T9925] Node 0 DMA32: 74*4kB (UME) 19*8kB (UE) 28*16kB (UE) 134*32kB (UME) 181*64kB (UME) 22*128kB (UME) 19*256kB (UME) 35*512kB (UM) 21*1024kB (UM) 13*2048kB (UME) 35*4096kB (UM) = 233856kB
[  104.248650][ T9925] Node 1 Normal: 18*4kB (UME) 47*8kB (UME) 59*16kB (UME) 110*32kB (UME) 14*64kB (UME) 15*128kB (UME) 2*256kB (U) 2*512kB (UM) 3*1024kB (UME) 4*2048kB (UME) 377*4096kB (UM) = 1564720kB
[  104.254165][ T9925] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  104.257312][ T9925] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  104.259983][ T9925] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  104.262812][ T9925] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  104.265591][ T9925] 61414 total pagecache pages
[  104.267104][ T9925] 0 pages in swap cache
[  104.268439][ T9925] Free swap  = 124228kB
[  104.269713][ T9925] Total swap = 124996kB
[  104.270988][ T9925] 1048443 pages RAM
[  104.272160][ T9925] 0 pages HighMem/MovableOnly
[  104.273605][ T9925] 281670 pages reserved
[  104.274846][ T9925] 0 pages cma reserved
[  104.330866][ T6710] bond0: (slave bond_slave_0): interface is now down
[  104.331496][ T9954] netlink: 'syz.0.1153': attribute type 10 has an invalid length.
[  104.334940][ T6710] bond0: (slave bond_slave_1): interface is now down
[  104.336833][ T9954] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.341091][ T9954] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.345208][ T9954] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.347800][ T9954] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.350071][ T9954] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.352236][ T9954] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.356840][ T6714] bond0: (slave bond_slave_0): interface is now down
[  104.358169][ T9954] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  104.359409][ T6714] bond0: (slave bond_slave_1): interface is now down
[  104.365910][ T6714] bond0: (slave bridge0): interface is now down
[  104.373787][ T6714] bond0: now running without any active interface!
[  104.477929][ T9964] netlink: 'syz.0.1155': attribute type 1 has an invalid length.
[  104.581173][ T9968] ipt_REJECT: ECHOREPLY no longer supported.
[  104.726832][ T9984] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  104.730596][ T9984] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  104.734105][ T9984] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  104.736164][ T9982] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  104.737833][ T9984] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  104.743904][ T9984] vxlan0: entered promiscuous mode
[  104.814084][ T9990] 9pnet: Could not find request transport: 0xffffffffffffffff
[  104.818373][ T9990] netlink: 'syz.3.1163': attribute type 21 has an invalid length.
[  104.821144][ T9990] netlink: 'syz.3.1163': attribute type 21 has an invalid length.
[  104.950808][T10019] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  104.954325][T10019] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  104.962828][T10021] Cannot find set identified by id 65534 to match
[  105.023918][T10028] bond0: (slave rose0): Enslaving as an active interface with an up link
[  105.134639][T10037] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[  105.227763][T10044] ip6t_srh: unknown srh invflags 7863
[  105.362340][T10052] ip6tnl1: entered promiscuous mode
[  105.405004][T10058] tc_dump_action: action bad kind
[  105.413948][T10055] dvmrp1: entered allmulticast mode
[  106.051268][T10071] loop2: detected capacity change from 0 to 524287999
[  106.111302][T10078] xt_hashlimit: size too large, truncated to 1048576
[  106.209568][T10100] sp0: Synchronizing with TNC
[  106.214216][T10100] sp0: Found TNC
[  106.259306][T10104] netlink: 'syz.0.1199': attribute type 1 has an invalid length.
[  106.278295][T10104] bond2: entered promiscuous mode
[  106.280009][T10104] 8021q: adding VLAN 0 to HW filter on device bond2
[  106.347265][T10119] netlink: 'syz.0.1202': attribute type 13 has an invalid length.
[  106.382464][T10125] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  106.590368][T10139] dccp_invalid_packet: P.Data Offset(59) too large
[  106.622473][T10141] netlink: 'syz.0.1212': attribute type 4 has an invalid length.
[  106.662838][T10143] XFS (nullb0): Invalid superblock magic number
[  106.906436][   T39] kauditd_printk_skb: 39 callbacks suppressed
[  106.906447][   T39] audit: type=1400 audit(1737713313.568:731): avc:  denied  { accept } for  pid=10170 comm="syz.0.1223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  106.921104][   T39] audit: type=1400 audit(1737713313.578:732): avc:  denied  { write } for  pid=10174 comm="syz.2.1224" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  106.921163][T10175] __nla_validate_parse: 6 callbacks suppressed
[  106.921171][T10175] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1224'.
[  106.928971][   T39] audit: type=1400 audit(1737713313.578:733): avc:  denied  { nlmsg_write } for  pid=10174 comm="syz.2.1224" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  106.996480][T10180] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pid=10180 comm=syz.0.1225
[  107.088194][   T39] audit: type=1400 audit(1737715873.756:734): avc:  denied  { write } for  pid=10194 comm="syz.2.1229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  107.300307][T10213] program syz.1.1234 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  107.305841][T10213] netlink: 'syz.1.1234': attribute type 10 has an invalid length.
[  107.308043][T10213] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1234'.
[  107.310432][T10213] team0: entered promiscuous mode
[  107.311814][T10213] team_slave_0: entered promiscuous mode
[  107.313433][T10213] team_slave_1: entered promiscuous mode
[  107.315161][T10213] bridge0: port 3(team0) entered blocking state
[  107.317637][T10213] bridge0: port 3(team0) entered disabled state
[  107.319430][T10213] team0: entered allmulticast mode
[  107.320826][T10213] team_slave_0: entered allmulticast mode
[  107.322518][T10213] team_slave_1: entered allmulticast mode
[  107.324768][T10213] bridge0: port 3(team0) entered blocking state
[  107.326346][T10213] bridge0: port 3(team0) entered forwarding state
[  107.360674][T10218] overlayfs: missing 'workdir'
[  107.471334][T10234] Can't find a SQUASHFS superblock on nullb0
[  107.495690][T10237] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1241'.
[  107.571966][T10245] can0: slcan on ptm1.
[  107.578444][T10245] ksmbd: Unknown IPC event: 1, ignore.
[  107.636334][T10244] can0 (unregistered): slcan off ptm1.
[  107.679601][T10248] PKCS7: Unknown OID: [4] 0.38.35.0.951690.11253
[  107.681888][T10248] PKCS7: Only support pkcs7_signedData type
[  107.798045][T10259] ÿÿÿÿÿÿ: renamed from veth0
[  107.864183][T10263] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  107.865868][T10266] vlan2: entered promiscuous mode
[  107.871093][T10266] erspan0: entered promiscuous mode
[  107.930345][   T39] audit: type=1400 audit(1737715874.596:735): avc:  denied  { setopt } for  pid=10267 comm="syz.1.1250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  108.005188][T10278] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1253'.
[  108.010020][T10278] macsec0: entered promiscuous mode
[  108.038318][T10280] xt_l2tp: wrong L2TP version: 0
[  108.125195][T10295] PKCS7: Unknown OID: [4] 5.25.43183(bad)
[  108.127393][T10295] PKCS7: Only support pkcs7_signedData type
[  108.387557][   T39] audit: type=1400 audit(1737715875.056:736): avc:  denied  { getopt } for  pid=10304 comm="syz.1.1262" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  108.393687][T10309] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1262'.
[  108.399882][T10309] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  108.402179][T10309] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  108.404421][T10309] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  108.406736][T10309] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  108.409121][T10309] vxlan0: entered promiscuous mode
[  108.428494][T10310] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  108.829764][T10275] 9pnet_fd: p9_fd_create_tcp (10275): problem connecting socket to 127.0.0.1
[  108.871596][T10326] overlayfs: empty lowerdir
[  108.978527][T10336] netlink: 1128 bytes leftover after parsing attributes in process `syz.2.1270'.
[  108.981352][T10336] openvswitch: netlink: Encap mask attribute is set for non-VLAN frame.
[  108.982410][T10338] binder: 10337:10338 ioctl c00c620f 20000540 returned -22
[  108.988092][T10338] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=27 sclass=netlink_audit_socket pid=10338 comm=syz.0.1273
[  108.992222][   T39] audit: type=1400 audit(1737715875.656:737): avc:  denied  { listen } for  pid=10337 comm="syz.0.1273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  108.998285][   T39] audit: type=1400 audit(1737715875.656:738): avc:  denied  { accept } for  pid=10337 comm="syz.0.1273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  109.150919][T10340] Bluetooth: Short BCSP packet
[  109.154707][ T6707] Bluetooth: Error in BCSP hdr checksum
[  109.156085][T10340] input: syz0 as /devices/virtual/input/input26
[  109.364986][T10347] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10347 comm=syz.3.1276
[  109.409268][T10347] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1276'.
[  109.412179][T10347] openvswitch: netlink: Flow key attr not present in new flow.
[  109.935605][T10375] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  109.965753][T10380] netlink: 'syz.2.1287': attribute type 29 has an invalid length.
[  110.072262][   T39] audit: type=1400 audit(1737715876.736:739): avc:  denied  { listen } for  pid=10389 comm="syz.2.1291" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  110.114946][   T39] audit: type=1400 audit(1737715876.776:740): avc:  denied  { write } for  pid=10396 comm="syz.2.1293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  110.326696][ T1118] sr 2:0:0:0: [sr0] tag#14 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  110.330383][ T1118] sr 2:0:0:0: [sr0] tag#14 Sense Key : Illegal Request [current] 
[  110.333161][ T1118] sr 2:0:0:0: [sr0] tag#14 Add. Sense: Invalid command operation code
[  110.336446][ T1118] sr 2:0:0:0: [sr0] tag#14 CDB: Write(10) 2a 00 00 00 00 00 00 00 02 00
[  110.339136][ T1118] blk_print_req_error: 40 callbacks suppressed
[  110.339144][ T1118] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[  110.344055][ T1118] buffer_io_error: 39 callbacks suppressed
[  110.344061][ T1118] Buffer I/O error on dev sr0, logical block 0, lost async page write
[  110.382884][T10406] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  110.461213][T10411] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  110.477161][T10413] tc_dump_action: action bad kind
[  110.593819][T10423] efs: device does not support 512 byte blocks
[  110.596969][T10423] device does not support 512 byte blocks
[  110.596969][T10423] 
[  110.822301][T10446] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1310'.
[  110.935482][T10455] ufs: You didn't specify the type of your ufs filesystem
[  110.935482][T10455] 
[  110.935482][T10455] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  110.935482][T10455] 
[  110.935482][T10455] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  110.946243][T10455] ufs: failed to set blocksize
[  111.165785][ T5935] Bluetooth: hci4: command 0x1003 tx timeout
[  111.167982][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  111.620441][T10478] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  111.625501][T10478] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1320'.
[  111.628753][T10478] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1320'.
[  111.851157][T10481] netlink: 'syz.2.1321': attribute type 18 has an invalid length.
[  111.854022][T10480] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10480 comm=syz.2.1321
[  111.889580][T10484] team_slave_0: left promiscuous mode
[  111.910696][T10484] team0: Port device team_slave_0 removed
[  111.912863][T10484] team_slave_1: left promiscuous mode
[  111.921157][T10484] team0: Port device team_slave_1 removed
[  111.923179][T10484] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  111.925481][T10484] batman_adv: batadv0: Removing interface: batadv_slave_0
[  111.928736][T10484] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  111.930955][T10484] batman_adv: batadv0: Removing interface: batadv_slave_1
[  111.940967][T10484] vlan0: entered promiscuous mode
[  111.949044][T10484] team0: Port device vlan0 added
[  111.951025][T10486] __nla_validate_parse: 3 callbacks suppressed
[  111.951034][T10486] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1323'.
[  112.032281][T10501] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1328'.
[  112.155980][T10512] xt_NFQUEUE: number of queues (65534) out of range (got 131068)
[  112.159070][   T39] kauditd_printk_skb: 3 callbacks suppressed
[  112.159078][   T39] audit: type=1400 audit(1737715878.826:744): avc:  denied  { bind } for  pid=10508 comm="syz.2.1330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  112.237341][T10533] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1335'.
[  112.244022][T10539] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(13)
[  112.246066][T10539] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  112.251259][T10539] vhci_hcd vhci_hcd.0: Device attached
[  112.253419][T10540] vhci_hcd: cannot find a urb of seqnum 9 max seqnum 0
[  112.258365][ T6712] vhci_hcd: stop threads
[  112.259650][ T6712] vhci_hcd: release socket
[  112.261155][ T6712] vhci_hcd: disconnect device
[  112.342761][T10547] bio_check_eod: 171 callbacks suppressed
[  112.342772][T10547] syz.0.1339: attempt to access beyond end of device
[  112.342772][T10547] sr0: rw=2048, sector=0, nr_sectors = 4 limit=0
[  112.349363][T10547] hfsplus: unable to find HFS+ superblock
[  112.430058][   T39] audit: type=1400 audit(1737715879.096:745): avc:  denied  { write } for  pid=10559 comm="syz.0.1344" name="net" dev="proc" ino=36890 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  112.436620][   T39] audit: type=1400 audit(1737715879.096:746): avc:  denied  { add_name } for  pid=10559 comm="syz.0.1344" name="pfkey" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  112.442700][   T39] audit: type=1400 audit(1737715879.096:747): avc:  denied  { create } for  pid=10559 comm="syz.0.1344" name="pfkey" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[  112.448732][   T39] audit: type=1400 audit(1737715879.096:748): avc:  denied  { associate } for  pid=10559 comm="syz.0.1344" name="pfkey" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  112.455027][   T39] audit: type=1400 audit(1737715879.096:749): avc:  denied  { append } for  pid=10559 comm="syz.0.1344" dev="proc" ino=4026533266 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  112.462831][   T39] audit: type=1400 audit(1737715879.096:750): avc:  denied  { read append } for  pid=10559 comm="syz.0.1344" name="nbd0" dev="devtmpfs" ino=690 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  112.470021][   T39] audit: type=1400 audit(1737715879.096:751): avc:  denied  { open } for  pid=10559 comm="syz.0.1344" path="/dev/nbd0" dev="devtmpfs" ino=690 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  112.480110][   T39] audit: type=1400 audit(1737715879.096:752): avc:  denied  { ioctl } for  pid=10559 comm="syz.0.1344" path="/dev/nbd0" dev="devtmpfs" ino=690 ioctlcmd=0xab09 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  112.574120][   T39] audit: type=1400 audit(1737715879.236:753): avc:  denied  { write } for  pid=5940 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  112.658499][T10577] syzkaller1: entered promiscuous mode
[  112.660372][T10577] syzkaller1: entered allmulticast mode
[  112.949035][T10586] syz.0.1353: attempt to access beyond end of device
[  112.949035][T10586] nbd0: rw=0, sector=1, nr_sectors = 1 limit=0
[  112.954708][T10586] VFS: unable to read V7 FS superblock on device nbd0.
[  112.957586][T10586] VFS: could not find a valid V7 on nbd0.
[  113.000729][T10588] 9pnet_fd: Insufficient options for proto=fd
[  113.118475][T10594] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1356'.
[  113.123794][T10594] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.126544][T10594] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.404767][T10602] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1359'.
[  113.555310][T10606] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1360'.
[  113.639334][T10611] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  113.693710][T10617] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1365'.
[  113.744402][T10625] tmpfs: Bad value for 'mpol'
[  113.772447][T10625] ata1.00: invalid cdb length 6
[  113.794816][T10629] netlink: 'syz.3.1370': attribute type 23 has an invalid length.
[  113.797297][T10629] IPv6: NLM_F_CREATE should be specified when creating new route
[  113.800486][T10630] CIFS mount error: No usable UNC path provided in device string!
[  113.800486][T10630] 
[  113.803552][T10630] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  113.861901][T10634] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.939496][T10634] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.971406][T10643] netlink: 696 bytes leftover after parsing attributes in process `syz.0.1374'.
[  114.000563][T10634] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.011326][T10645] ptrace attach of "/syz-executor exec"[5938] was attempted by "/syz-executor exec"[10645]
[  114.077803][T10634] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.092392][T10648] ptm ptm54: ldisc open failed (-12), clearing slot 54
[  114.151792][T10634] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.159686][T10634] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.165521][T10634] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.175106][T10634] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.241352][T10658] Bluetooth: hci4: Frame reassembly failed (-84)
[  114.246846][ T6707] Bluetooth: hci4: Frame reassembly failed (-84)
[  114.248853][ T6707] Bluetooth: hci4: Frame reassembly failed (-84)
[  114.744840][T10671] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1383'.
[  114.749054][T10671] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1383'.
[  114.779428][T10673] nbd: socks must be embedded in a SOCK_ITEM attr
[  114.917090][T10684] loop6: detected capacity change from 0 to 64
[  115.261671][T10690] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf
[  115.509078][T10708] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check.
[  115.515249][T10708] netlink: ct family unspecified
[  115.517487][T10708] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  115.742947][T10724] xt_hashlimit: max too large, truncated to 1048576
[  115.745451][T10724] xt_bpf: check failed: parse error
[  115.788136][T10728] syz.0.1402: attempt to access beyond end of device
[  115.788136][T10728] nbd0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  115.791893][T10728] SQUASHFS error: Failed to read block 0x0: -5
[  115.793749][T10728] unable to read squashfs_super_block
[  115.826121][T10733] program syz.0.1403 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  115.837059][T10737] XFS (nullb0): Invalid superblock magic number
[  116.107399][ T5937] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  116.125362][ T5937] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  116.129490][ T5937] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  116.134438][ T5937] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  116.136732][ T6458] syz_tun (unregistering): left promiscuous mode
[  116.137607][ T5937] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  116.141281][ T5937] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  116.150788][ T5935] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  116.156997][ T5935] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  116.159700][ T5935] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  116.165103][ T5935] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  116.167851][ T5935] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  116.170437][ T5935] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  116.275674][T10757] chnl_net:caif_netlink_parms(): no params data found
[  116.285720][T10658] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  116.285895][ T5935] Bluetooth: hci4: command 0xfc11 tx timeout
[  116.286175][ T5944] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  116.338709][T10777] input: syz1 as /devices/virtual/input/input27
[  116.350694][T10757] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.352835][T10757] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.354947][T10757] bridge_slave_0: entered allmulticast mode
[  116.358059][T10757] bridge_slave_0: entered promiscuous mode
[  116.361174][T10757] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.363779][T10757] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.367251][T10757] bridge_slave_1: entered allmulticast mode
[  116.370215][T10757] bridge_slave_1: entered promiscuous mode
[  116.393195][T10757] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  116.397444][T10757] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  116.423354][T10757] team0: Port device team_slave_0 added
[  116.427742][T10757] team0: Port device team_slave_1 added
[  116.446170][T10757] batman_adv: batadv0: Adding interface: batadv_slave_0
[  116.448313][T10757] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.456381][T10757] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  116.460296][T10757] batman_adv: batadv0: Adding interface: batadv_slave_1
[  116.462385][T10757] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.472297][T10757] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  116.512482][T10757] hsr_slave_0: entered promiscuous mode
[  116.514440][T10757] hsr_slave_1: entered promiscuous mode
[  116.516652][T10757] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  116.518880][T10757] Cannot create hsr debugfs directory
[  116.599474][T10757] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  116.603058][T10757] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  116.607602][T10757] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  116.610867][T10757] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  116.620148][T10757] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.622293][T10757] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.624516][T10757] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.626643][T10757] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.649674][T10757] 8021q: adding VLAN 0 to HW filter on device bond0
[  116.658860][ T6707] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.663117][ T6707] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.675309][T10757] 8021q: adding VLAN 0 to HW filter on device team0
[  116.681823][ T6707] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.683996][ T6707] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.689332][ T6713] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.691579][ T6713] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.709786][T10757] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  116.778978][T10757] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.869559][T10757] veth0_vlan: entered promiscuous mode
[  116.873336][T10757] veth1_vlan: entered promiscuous mode
[  116.885702][T10757] veth0_macvtap: entered promiscuous mode
[  116.889535][T10757] veth1_macvtap: entered promiscuous mode
[  116.896788][T10757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.899809][T10757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.903453][T10757] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.919481][T10757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.922597][T10757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.925475][T10757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.929345][T10757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.933013][T10757] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.937770][T10757] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.940386][T10757] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.942973][T10757] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.945577][T10757] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.987998][ T6712] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.992487][ T6712] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.002675][ T6707] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.005162][ T6707] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.053511][T10826] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  117.057115][T10828] SELinux: security_context_str_to_sid („) failed with errno=-22
[  117.067891][T10829] 9pnet_virtio: no channels available for device syz
[  117.216455][   T39] kauditd_printk_skb: 20 callbacks suppressed
[  117.216466][   T39] audit: type=1400 audit(1737715883.886:774): avc:  denied  { setopt } for  pid=10839 comm="syz.4.1425" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  117.278004][   T39] audit: type=1400 audit(1737715883.946:775): avc:  denied  { connect } for  pid=10845 comm="syz.4.1431" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  117.389722][T10856] __nla_validate_parse: 12 callbacks suppressed
[  117.389736][T10856] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1429'.
[  117.389824][T10856] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1429'.
[  117.393792][T10854] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1432'.
[  117.422880][T10863] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1434'.
[  117.513012][T10871] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1436'.
[  117.590868][T10875] xt_hashlimit: size too large, truncated to 1048576
[  117.669191][   T39] audit: type=1400 audit(1737715884.336:776): avc:  denied  { setattr } for  pid=10878 comm="syz.0.1438" name="video36" dev="devtmpfs" ino=1067 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  118.205767][ T5944] Bluetooth: hci5: command tx timeout
[  118.217855][   T39] audit: type=1400 audit(1737715884.886:777): avc:  denied  { accept } for  pid=10908 comm="syz.4.1448" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  118.425852][T10934] fuse: Bad value for 'group_id'
[  118.427397][T10934] fuse: Bad value for 'group_id'
[  118.462348][   T39] audit: type=1400 audit(1737715885.126:778): avc:  denied  { getopt } for  pid=10939 comm="syz.4.1453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  118.517213][   T39] audit: type=1400 audit(1737715885.186:779): avc:  denied  { watch } for  pid=10939 comm="syz.4.1453" path="/7/file1" dev="autofs" ino=39957 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1
[  118.524090][   T39] audit: type=1400 audit(1737715885.186:780): avc:  denied  { watch_reads } for  pid=10939 comm="syz.4.1453" path="/7/file1" dev="autofs" ino=39957 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1
[  118.649766][T10959] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1461'.
[  118.906170][T10977] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1470'.
[  118.933497][T10979] overlayfs: failed to resolve './file1': -2
[  118.935879][ T5991] usb 5-1: new low-speed USB device number 9 using dummy_hcd
[  119.085761][ T5991] usb 5-1: Invalid ep0 maxpacket: 16
[  119.225756][ T5991] usb 5-1: new low-speed USB device number 10 using dummy_hcd
[  119.378885][ T5991] usb 5-1: Invalid ep0 maxpacket: 16
[  119.381344][ T5991] usb usb5-port1: attempt power cycle
[  119.725833][ T5991] usb 5-1: new low-speed USB device number 11 using dummy_hcd
[  119.756116][ T5991] usb 5-1: Invalid ep0 maxpacket: 16
[  119.851299][T11003] netlink: 'syz.4.1478': attribute type 10 has an invalid length.
[  119.857982][T11003] team0: Device hsr_slave_0 failed to register rx_handler
[  119.871746][T11006] netlink: 'syz.4.1478': attribute type 10 has an invalid length.
[  119.874434][T11006] team0: Device hsr_slave_0 failed to register rx_handler
[  119.874939][T11005] binder_alloc: 11004: binder_alloc_buf, no vma
[  119.878984][T11005] netlink: 'syz.1.1479': attribute type 10 has an invalid length.
[  119.881355][T11005] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1479'.
[  119.885724][ T5991] usb 5-1: new low-speed USB device number 12 using dummy_hcd
[  119.892843][T11005] geneve0: entered promiscuous mode
[  119.894479][T11005] geneve0: entered allmulticast mode
[  119.897897][T11005] team0: Port device geneve0 added
[  119.906187][ T5991] usb 5-1: Invalid ep0 maxpacket: 16
[  119.908430][ T5991] usb usb5-port1: unable to enumerate USB device
[  119.921412][   T39] audit: type=1400 audit(1737715886.586:781): avc:  denied  { module_load } for  pid=11009 comm="syz.4.1480" path="/12/bus" dev="tmpfs" ino=89 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  120.003062][   T39] audit: type=1400 audit(1737715886.666:782): avc:  denied  { bind } for  pid=11015 comm="syz.1.1482" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  120.178410][T11026] netlink: 'syz.1.1485': attribute type 4 has an invalid length.
[  120.182485][T11026] tmpfs: Unknown parameter 'no‡wap'
[  120.189765][T11026] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1485'.
[  120.192546][T11026] tipc: Started in network mode
[  120.193930][T11026] tipc: Node identity 7, cluster identity 5
[  120.195733][T11026] tipc: Node number set to 7
[  120.199312][T11026] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1485'.
[  120.296012][ T5944] Bluetooth: hci5: command tx timeout
[  120.359555][T11035] sctp: [Deprecated]: syz.1.1488 (pid 11035) Use of struct sctp_assoc_value in delayed_ack socket option.
[  120.359555][T11035] Use struct sctp_sack_info instead
[  120.413806][    T9] IPVS: starting estimator thread 0...
[  120.426767][T11037] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  120.502542][T11041] macvlan0: entered allmulticast mode
[  120.504600][T11041] veth1_vlan: entered allmulticast mode
[  120.508595][T11042] pim6reg: entered allmulticast mode
[  120.510849][T11043] veth1_vlan: left allmulticast mode
[  120.522133][T11043] macvlan0 (unregistering): left allmulticast mode
[  120.525828][T11038] IPVS: using max 38 ests per chain, 91200 per kthread
[  120.654918][T11045] hsr_slave_0 (unregistering): left promiscuous mode
[  120.743698][T11050] hsr_slave_1 (unregistering): left promiscuous mode
[  120.842187][   T39] audit: type=1400 audit(2000000000.039:783): avc:  denied  { setopt } for  pid=11062 comm="syz.4.1498" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  120.842420][T11063] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11063 comm=syz.4.1498
[  120.994099][T11082] mkiss: ax0: crc mode is auto.
[  121.238329][T11107] 
: renamed from bond0 (while UP)
[  121.385256][T11134] XFS (nullb0): Invalid superblock magic number
[  121.448720][T11145] ntfs3(sr0): try to read out of volume at offset 0x0
[  121.456880][T11143] netlink: 'syz.1.1524': attribute type 12 has an invalid length.
[  121.463909][T11143] xt_TCPMSS: Only works on TCP SYN packets
[  121.495493][T11152] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  121.790051][T11157] binder: BINDER_SET_CONTEXT_MGR already set
[  121.792143][T11157] binder: 11156:11157 ioctl 4018620d 20000440 returned -16
[  121.908671][T11163] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  121.908671][T11163] The task syz.0.1531 (11163) triggered the difference, watch for misbehavior.
[  121.914832][T11163] netlink: 'syz.0.1531': attribute type 12 has an invalid length.
[  122.217951][T11199] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11199 comm=syz.1.1542
[  122.251943][T11203] netlink: 'syz.1.1544': attribute type 15 has an invalid length.
[  122.257162][T11203] xt_hashlimit: max too large, truncated to 1048576
[  122.261568][T11207] netlink: 'syz.4.1545': attribute type 12 has an invalid length.
[  122.322962][T11208] netlink: 'syz.4.1545': attribute type 12 has an invalid length.
[  122.377013][ T5944] Bluetooth: hci5: command tx timeout
[  122.461627][T11233] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11233 comm=syz.3.1553
[  122.507987][T11239] __nla_validate_parse: 11 callbacks suppressed
[  122.507998][T11239] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1556'.
[  122.512600][T11239] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  122.547261][   T39] kauditd_printk_skb: 3 callbacks suppressed
[  122.547270][   T39] audit: type=1400 audit(2000000001.749:787): avc:  denied  { getopt } for  pid=11244 comm="syz.4.1558" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  122.724042][T11260] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1562'.
[  122.726750][T11260] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.729690][T11260] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  122.731917][T11260] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.741388][T11260] 
: (slave batadv0): Releasing backup interface
[  122.775431][T11268] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1562'.
[  122.778553][T11268] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1562'.
[  122.789525][T11270] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11270 comm=syz.0.1564
[  122.911145][T11278] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1567'.
[  122.927357][   T39] audit: type=1400 audit(2000000002.119:788): avc:  denied  { setcheckreqprot } for  pid=11282 comm="syz.0.1568" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  122.933328][T11283] SELinux: syz.0.1568 (11283) set checkreqprot to 1. This is no longer supported.
[  123.039797][T11296] openvswitch: netlink: nsh attr 8192 is out of range max 3
[  123.042745][T11296] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  123.069863][T11298] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1573'.
[  123.072641][T11298] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[  123.075312][T11298] netlink: 'syz.3.1573': attribute type 13 has an invalid length.
[  123.112349][T11313] input: syz0 as /devices/virtual/input/input28
[  123.176921][T11323] sctp: [Deprecated]: syz.4.1580 (pid 11323) Use of int in max_burst socket option.
[  123.176921][T11323] Use struct sctp_assoc_value instead
[  123.206222][T11326] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1581'.
[  123.259958][T11332] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1583'.
[  123.347656][T11340] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1585'.
[  123.355378][T11342] syz.1.1586 (11342): /proc/11341/oom_adj is deprecated, please use /proc/11341/oom_score_adj instead.
[  123.365086][   T39] audit: type=1400 audit(2000000002.569:789): avc:  denied  { bind } for  pid=11341 comm="syz.1.1586" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  123.373075][T11342] Context (ID=0x1) not attached to queue pair (handle=0x1:0x0)
[  123.440515][T11350] delete_channel: no stack
[  123.529834][T11365] overlay: ./file0 is not a directory
[  123.529975][   T39] audit: type=1400 audit(2000000002.729:790): avc:  denied  { create } for  pid=11366 comm="syz.1.1593" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  123.537692][   T39] audit: type=1400 audit(2000000002.739:791): avc:  denied  { getopt } for  pid=11366 comm="syz.1.1593" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  123.544616][T11370] tty tty22: ldisc open failed (-12), clearing slot 21
[  123.686013][T11384] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11384 comm=syz.4.1597
[  123.739414][T11391] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[  123.739803][T11392] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[  123.900802][T11411] bridge1: the hash_elasticity option has been deprecated and is always 16
[  123.907861][T11413] fuse: Unknown parameter 'fƒN0x0000000000000047'
[  124.075125][T11433] $Hÿ: renamed from bond0 (while UP)
[  124.080633][T11433] $Hÿ: entered promiscuous mode
[  124.082131][T11433] bond_slave_0: entered promiscuous mode
[  124.083851][T11433] bond_slave_1: entered promiscuous mode
[  124.154590][T11457] loop2: detected capacity change from 0 to 524287999
[  124.245960][   T39] audit: type=1400 audit(2000000003.439:792): avc:  denied  { ioctl } for  pid=11467 comm="syz.4.1622" path="socket:[40863]" dev="sockfs" ino=40863 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  124.313498][T11472] bond0: (slave bridge0): Releasing backup interface
[  124.317240][T11472] bridge0: adding interface bridge0 with same address as a received packet (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  124.322772][T11472] bridge_slave_0: left allmulticast mode
[  124.324529][T11472] bridge_slave_0: left promiscuous mode
[  124.327088][T11472] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.334886][T11472] bridge_slave_1: left allmulticast mode
[  124.337596][T11472] bridge_slave_1: left promiscuous mode
[  124.339512][T11472] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.344180][T11472] bond0: (slave bond_slave_0): Releasing backup interface
[  124.350100][T11472] bond0: (slave bond_slave_1): Releasing backup interface
[  124.360859][T11472] team_slave_0: left promiscuous mode
[  124.371172][T11472] team0: Port device team_slave_0 removed
[  124.375074][T11472] team_slave_1: left promiscuous mode
[  124.379845][T11472] team0: Port device team_slave_1 removed
[  124.409900][T11480] team0: Mode "" not found
[  124.440248][   T39] audit: type=1400 audit(2000000003.649:793): avc:  denied  { connect } for  pid=11484 comm="syz.1.1627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  124.445747][ T5935] Bluetooth: hci5: command tx timeout
[  124.448009][   T39] audit: type=1400 audit(2000000003.649:794): avc:  denied  { shutdown } for  pid=11484 comm="syz.1.1627" lport=54802 faddr=fc01:: scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  124.453710][   T39] audit: type=1400 audit(2000000003.649:795): avc:  denied  { write } for  pid=11484 comm="syz.1.1627" lport=54802 faddr=fc01:: scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  124.530905][T11501] 9pnet_fd: Insufficient options for proto=fd
[  124.573869][T11508] 8021q: adding VLAN 0 to HW filter on device team0
[  124.576944][T11508] team0: entered promiscuous mode
[  124.578460][T11508] team_slave_0: entered promiscuous mode
[  124.580156][T11508] team_slave_1: entered promiscuous mode
[  124.582025][T11508] $Hÿ: (slave team0): Enslaving as an active interface with an up link
[  124.608025][T11514] overlayfs: failed to clone upperpath
[  124.608080][T11513] overlayfs: failed to clone upperpath
[  124.928413][T11544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11544 comm=syz.0.1647
[  124.951536][   T39] audit: type=1400 audit(2000000004.149:796): avc:  denied  { listen } for  pid=11547 comm="syz.4.1649" lport=59339 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  125.137296][T11569] overlayfs: conflicting options: userxattr,metacopy=on
[  125.138356][T11570] validate_nla: 2 callbacks suppressed
[  125.138369][T11570] netlink: 'syz.4.1655': attribute type 4 has an invalid length.
[  125.158719][T11570] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.259422][ T5935] Bluetooth: hci5: unexpected event 0x03 length: 17 > 11
[  125.267014][T11584] fuse: Unknown parameter ''
[  125.307076][T11588] netlink: 'syz.1.1661': attribute type 39 has an invalid length.
[  125.357171][T11591] $Hÿ: (slave team0): Releasing backup interface
[  125.359803][T11591] team0: left promiscuous mode
[  125.361363][T11591] team_slave_0: left promiscuous mode
[  125.363031][T11591] team_slave_1: left promiscuous mode
[  125.364865][T11591] team0: Cannot enslave team device to itself
[  125.415422][T11594] /dev/nullb0: Can't lookup blockdev
[  125.550800][T11607] netlink: 'syz.4.1667': attribute type 10 has an invalid length.
[  125.553904][T11607] hsr0: entered allmulticast mode
[  125.556752][T11607] hsr_slave_0: entered allmulticast mode
[  125.558753][T11607] hsr_slave_1: entered allmulticast mode
[  125.917378][T11632] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=68 sclass=netlink_route_socket pid=11632 comm=syz.0.1672
[  126.108433][T11644] "syz.0.1675" (11644) uses obsolete ecb(arc4) skcipher
[  126.229335][T11669] fuse: Unknown parameter 'ÿ0x0000000000000003'
[  126.233687][T11669] cgroup: Unknown subsys name 'cpuset'
[  126.238541][T11669] geneve2: entered promiscuous mode
[  126.240178][T11669] geneve2: entered allmulticast mode
[  126.243006][T11669] batman_adv: batadv0: Adding interface: geneve2
[  126.244960][T11669] batman_adv: batadv0: Interface activated: geneve2
[  126.289304][T11670] dvmrp3: entered allmulticast mode
[  126.292355][T11670] pimreg: left allmulticast mode
[  126.294927][T11670] dvmrp3: left allmulticast mode
[  126.525883][ T5935] Bluetooth: hci5: command tx timeout
[  126.605903][    T9] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  126.632549][T11683] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  126.765768][    T9] usb 6-1: Using ep0 maxpacket: 16
[  126.768935][    T9] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  126.772919][    T9] usb 6-1: unable to read config index 0 descriptor/start: -61
[  126.775405][    T9] usb 6-1: can't read configurations, error -61
[  126.873251][T11697] tipc: Enabling of bearer <udf:s> rejected, media not registered
[  126.905789][    T9] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  127.076530][    T9] usb 6-1: Using ep0 maxpacket: 16
[  127.083117][    T9] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  127.087503][    T9] usb 6-1: unable to read config index 0 descriptor/start: -61
[  127.089830][    T9] usb 6-1: can't read configurations, error -61
[  127.091892][    T9] usb usb6-port1: attempt power cycle
[  127.165203][T11723] overlayfs: conflicting options: userxattr,metacopy=on
[  127.180564][T11726] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=36005 sclass=netlink_route_socket pid=11726 comm=syz.0.1702
[  127.436379][    T9] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  127.466214][    T9] usb 6-1: Using ep0 maxpacket: 16
[  127.468214][    T9] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  127.472391][    T9] usb 6-1: unable to read config index 0 descriptor/start: -61
[  127.474748][    T9] usb 6-1: can't read configurations, error -61
[  127.615819][    T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  127.636422][    T9] usb 6-1: Using ep0 maxpacket: 16
[  127.638560][    T9] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  127.641995][    T9] usb 6-1: unable to read config index 0 descriptor/start: -61
[  127.644372][    T9] usb 6-1: can't read configurations, error -61
[  127.647714][    T9] usb usb6-port1: unable to enumerate USB device
[  127.968638][   T39] kauditd_printk_skb: 13 callbacks suppressed
[  127.968699][   T39] audit: type=1400 audit(2000000007.169:810): avc:  denied  { unmount } for  pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  128.000568][   T39] audit: type=1400 audit(2000000007.199:811): avc:  denied  { create } for  pid=11760 comm="syz.3.1714" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  128.000586][T11761] o2cb: This node has not been configured.
[  128.009520][T11761] o2cb: Cluster check failed. Fix errors before retrying.
[  128.011700][T11761] (syz.3.1714,11761,0):user_dlm_register:674 ERROR: status = -22
[  128.014081][T11761] (syz.3.1714,11761,0):dlmfs_mkdir:436 ERROR: Error -22 could not register domain "bus"
[  128.023987][T11763] __nla_validate_parse: 19 callbacks suppressed
[  128.024002][T11763] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1715'.
[  128.047652][T11765] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1715'.
[  128.172892][T11777] tmpfs: Bad value for 'mpol'
[  128.283648][T11787] input: syz0 as /devices/virtual/input/input30
[  128.392618][T11794] netlink: 'syz.0.1724': attribute type 21 has an invalid length.
[  128.394991][T11794] netlink: 'syz.0.1724': attribute type 20 has an invalid length.
[  128.398349][T11794] IPv6: NLM_F_CREATE should be specified when creating new route
[  128.501613][   T39] audit: type=1400 audit(2000000007.699:812): avc:  denied  { ioctl } for  pid=11798 comm="syz.0.1726" path="socket:[44256]" dev="sockfs" ino=44256 ioctlcmd=0x7210 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  128.584501][T11808] FAULT_INJECTION: forcing a failure.
[  128.584501][T11808] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  128.589086][T11808] CPU: 1 UID: 0 PID: 11808 Comm: syz.0.1730 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0
[  128.589100][T11808] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.589106][T11808] Call Trace:
[  128.589109][T11808]  <TASK>
[  128.589113][T11808]  dump_stack_lvl+0x16c/0x1f0
[  128.589128][T11808]  should_fail_ex+0x497/0x5b0
[  128.589142][T11808]  _copy_from_user+0x2e/0xd0
[  128.589155][T11808]  copy_msghdr_from_user+0x99/0x160
[  128.589170][T11808]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  128.589189][T11808]  ___sys_sendmsg+0xff/0x1e0
[  128.589203][T11808]  ? __pfx____sys_sendmsg+0x10/0x10
[  128.589221][T11808]  ? __pfx_lock_release+0x10/0x10
[  128.589233][T11808]  ? trace_lock_acquire+0x14e/0x1f0
[  128.589252][T11808]  ? __fget_files+0x206/0x3a0
[  128.589268][T11808]  __sys_sendmsg+0x16e/0x220
[  128.589281][T11808]  ? __pfx___sys_sendmsg+0x10/0x10
[  128.589302][T11808]  do_syscall_64+0xcd/0x250
[  128.589316][T11808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.589336][T11808] RIP: 0033:0x7f2b7a38cd29
[  128.589345][T11808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.589354][T11808] RSP: 002b:00007f2b7b1c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  128.589364][T11808] RAX: ffffffffffffffda RBX: 00007f2b7a5a5fa0 RCX: 00007f2b7a38cd29
[  128.589370][T11808] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  128.589376][T11808] RBP: 00007f2b7b1c5090 R08: 0000000000000000 R09: 0000000000000000
[  128.589382][T11808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.589388][T11808] R13: 0000000000000000 R14: 00007f2b7a5a5fa0 R15: 00007ffc654921c8
[  128.589399][T11808]  </TASK>
[  128.647004][    C1] vkms_vblank_simulate: vblank timer overrun
[  128.733786][T11821] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.800517][T11822] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.820722][T11821] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.889013][T11821] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.949922][T11821] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.956723][   T39] audit: type=1400 audit(2000000008.159:813): avc:  denied  { setopt } for  pid=11829 comm="syz.0.1738" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  128.966109][T11830] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  128.968053][T11830] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  128.970973][T11830] vhci_hcd vhci_hcd.0: Device attached
[  128.973368][T11831] vhci_hcd: connection closed
[  128.974576][ T6714] vhci_hcd: stop threads
[  128.975034][T11830] netlink: 184 bytes leftover after parsing attributes in process `syz.0.1738'.
[  128.976656][ T6714] vhci_hcd: release socket
[  128.983393][ T6714] vhci_hcd: disconnect device
[  129.020802][T11821] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.026632][T11821] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.033875][T11821] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.041391][T11821] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.076776][   T39] audit: type=1400 audit(2000000008.279:814): avc:  denied  { setopt } for  pid=11833 comm="syz.3.1739" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  129.097150][T11834] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1739'.
[  129.101023][   T39] audit: type=1400 audit(2000000008.299:815): avc:  denied  { ioctl } for  pid=11833 comm="syz.3.1739" path="socket:[44433]" dev="sockfs" ino=44433 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  129.221522][T11847] syz_tun: entered allmulticast mode
[  129.269219][T11852] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.339130][T11852] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.389690][T11852] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.399505][   T39] audit: type=1400 audit(2000000008.599:816): avc:  denied  { mount } for  pid=11854 comm="syz.1.1747" name="/" dev="pstore" ino=5519 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  129.461029][T11852] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.550799][T11863] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=5123 sclass=netlink_tcpdiag_socket pid=11863 comm=syz.0.1750
[  129.769936][T11879] FAULT_INJECTION: forcing a failure.
[  129.769936][T11879] name failslab, interval 1, probability 0, space 0, times 1
[  129.773736][T11879] CPU: 3 UID: 0 PID: 11879 Comm: syz.1.1756 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0
[  129.773749][T11879] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.773755][T11879] Call Trace:
[  129.773758][T11879]  <TASK>
[  129.773762][T11879]  dump_stack_lvl+0x16c/0x1f0
[  129.773791][T11879]  should_fail_ex+0x497/0x5b0
[  129.773808][T11879]  should_failslab+0xc2/0x120
[  129.773822][T11879]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  129.773836][T11879]  ? skb_clone+0x190/0x3f0
[  129.773851][T11879]  skb_clone+0x190/0x3f0
[  129.773865][T11879]  netlink_deliver_tap+0xabd/0xd30
[  129.773879][T11879]  netlink_unicast+0x5e1/0x7f0
[  129.773893][T11879]  ? __pfx_netlink_unicast+0x10/0x10
[  129.773908][T11879]  netlink_sendmsg+0x8b8/0xd70
[  129.773921][T11879]  ? __pfx_netlink_sendmsg+0x10/0x10
[  129.773938][T11879]  ____sys_sendmsg+0xaaf/0xc90
[  129.773947][T11879]  ? copy_msghdr_from_user+0x10b/0x160
[  129.773960][T11879]  ? __pfx_____sys_sendmsg+0x10/0x10
[  129.773976][T11879]  ___sys_sendmsg+0x135/0x1e0
[  129.773989][T11879]  ? __pfx____sys_sendmsg+0x10/0x10
[  129.774007][T11879]  ? __pfx_lock_release+0x10/0x10
[  129.774018][T11879]  ? trace_lock_acquire+0x14e/0x1f0
[  129.774037][T11879]  ? __fget_files+0x206/0x3a0
[  129.774052][T11879]  __sys_sendmsg+0x16e/0x220
[  129.774064][T11879]  ? __pfx___sys_sendmsg+0x10/0x10
[  129.774085][T11879]  do_syscall_64+0xcd/0x250
[  129.774098][T11879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.774113][T11879] RIP: 0033:0x7f4f85f8cd29
[  129.774121][T11879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.774130][T11879] RSP: 002b:00007f4f86e90038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  129.774139][T11879] RAX: ffffffffffffffda RBX: 00007f4f861a5fa0 RCX: 00007f4f85f8cd29
[  129.774145][T11879] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  129.774151][T11879] RBP: 00007f4f86e90090 R08: 0000000000000000 R09: 0000000000000000
[  129.774156][T11879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.774161][T11879] R13: 0000000000000000 R14: 00007f4f861a5fa0 R15: 00007fff416a07b8
[  129.774173][T11879]  </TASK>
[  129.946291][T11895] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1761'.
[  129.980092][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  129.982436][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  129.984674][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  129.988716][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  129.991009][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  129.993228][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  129.995416][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  129.997833][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.000020][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.002237][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.004411][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.006671][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.008853][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.011057][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.013243][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.015411][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.017659][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.019839][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.022159][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.024340][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.026606][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.028799][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.031066][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.033280][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.035424][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.037709][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.039891][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.042203][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.044392][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.046976][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.049224][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.051453][ T5974] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  130.059918][ T5974] hid-generic 0000:0000:0000.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  130.176328][T11897] syz.0.1758: attempt to access beyond end of device
[  130.176328][T11897] nbd0: rw=0, sector=2, nr_sectors = 2 limit=0
[  130.179405][T11906] fuse: Unknown parameter 'å´'
[  130.180220][T11897] syz.0.1758: attempt to access beyond end of device
[  130.180220][T11897] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0
[  130.235740][    T9] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  130.386210][    T9] usb 6-1: too many configurations: 34, using maximum allowed: 8
[  130.390553][    T9] usb 6-1: unable to read config index 0 descriptor/start: -61
[  130.392892][    T9] usb 6-1: can't read configurations, error -61
[  130.535881][    T9] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  130.602741][T11928] overlayfs: failed to clone upperpath
[  130.605371][T11928] netlink: 168 bytes leftover after parsing attributes in process `syz.4.1772'.
[  130.661798][T11929] 9pnet_fd: Insufficient options for proto=fd
[  130.686568][    T9] usb 6-1: too many configurations: 34, using maximum allowed: 8
[  130.690041][    T9] usb 6-1: unable to read config index 0 descriptor/start: -61
[  130.692363][    T9] usb 6-1: can't read configurations, error -61
[  130.694369][    T9] usb usb6-port1: attempt power cycle
[  130.814246][T11944] program syz.0.1777 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  130.968591][T11964] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1784'.
[  131.045747][    T9] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  131.067759][    T9] usb 6-1: too many configurations: 34, using maximum allowed: 8
[  131.073946][    T9] usb 6-1: unable to read config index 0 descriptor/start: -61
[  131.080452][    T9] usb 6-1: can't read configurations, error -61
[  131.225710][    T9] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  131.248167][    T9] usb 6-1: too many configurations: 34, using maximum allowed: 8
[  131.251593][    T9] usb 6-1: unable to read config index 0 descriptor/start: -61
[  131.253926][    T9] usb 6-1: can't read configurations, error -61
[  131.256179][    T9] usb usb6-port1: unable to enumerate USB device
[  131.352711][T12007] netlink: 3284 bytes leftover after parsing attributes in process `syz.4.1788'.
[  131.381443][T12009] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  131.383847][T12009] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  131.592212][T12026] cgroup: Invalid name
[  131.693205][T12033] netlink: 'syz.4.1797': attribute type 10 has an invalid length.
[  131.696047][T12033] team0: Device hsr_slave_0 failed to register rx_handler
[  131.979000][T12040] overlayfs: disabling nfs_export due to verity=on
[  131.979224][T12041] overlayfs: disabling nfs_export due to verity=on
[  131.983730][T12041] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  132.069194][   T39] audit: type=1326 audit(2000000011.269:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12044 comm="syz.0.1800" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b7a38cd29 code=0x0
[  132.545179][T11852] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.550503][T11852] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.555783][T11852] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.562243][T11852] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.609239][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  132.765020][T12062] fuse: Bad value for 'rootmode'
[  132.958721][T12081] netlink: 'syz.0.1812': attribute type 10 has an invalid length.
[  132.964776][T12080] bond0: entered promiscuous mode
[  133.002752][T12092] netlink: 140 bytes leftover after parsing attributes in process `syz.0.1815'.
[  133.094085][T12113] netlink: 'syz.3.1818': attribute type 2 has an invalid length.
[  133.110026][   T39] audit: type=1400 audit(2000000012.309:818): avc:  denied  { getopt } for  pid=12114 comm="syz.1.1819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  133.383617][   T39] audit: type=1400 audit(2000000012.579:819): avc:  denied  { map } for  pid=12145 comm="syz.0.1828" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  133.595462][T12186] overlayfs: failed to clone upperpath
[  133.611770][T12184] bond0: (slave vlan3): Opening slave failed
[  133.696305][T12199] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1848'.
[  133.700597][T12197] syz.1.1847: attempt to access beyond end of device
[  133.700597][T12197] sr0: rw=0, sector=4, nr_sectors = 4 limit=0
[  133.704350][T12197] vxfs: unable to read disk superblock at 1
[  133.706973][T12197] syz.1.1847: attempt to access beyond end of device
[  133.706973][T12197] sr0: rw=0, sector=32, nr_sectors = 4 limit=0
[  133.710747][T12197] vxfs: unable to read disk superblock at 8
[  133.712544][T12197] vxfs: can't find superblock.
[  133.740712][   T39] audit: type=1400 audit(2000000012.939:820): avc:  denied  { bind } for  pid=12206 comm="syz.1.1851" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  133.754249][   T39] audit: type=1400 audit(2000000012.939:821): avc:  denied  { write } for  pid=12206 comm="syz.1.1851" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  133.816068][T12222] fuse: Bad value for 'fd'
[  133.855246][T12226] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  133.878865][T12228] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1857'.
[  133.888796][   T39] audit: type=1400 audit(2000000013.089:822): avc:  denied  { create } for  pid=12227 comm="syz.0.1857" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  133.951317][T12232] Bluetooth: MGMT ver 1.23
[  133.981824][T12239] xt_l2tp: invalid flags combination: c
[  134.052196][T12245] netlink: 'syz.3.1863': attribute type 3 has an invalid length.
[  134.054635][T12245] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1863'.
[  134.217337][   T39] audit: type=1400 audit(2000000013.419:823): avc:  denied  { connect } for  pid=12253 comm="syz.3.1866" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  134.223176][   T39] audit: type=1400 audit(2000000013.419:824): avc:  denied  { write } for  pid=12253 comm="syz.3.1866" path="socket:[43650]" dev="sockfs" ino=43650 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  134.245337][   T39] audit: type=1400 audit(2000000013.439:825): avc:  denied  { map } for  pid=12255 comm="syz.3.1867" path="/dev/sr0" dev="devtmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:removable_device_t tclass=blk_file permissive=1
[  134.361121][T12264] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1869'.
[  134.363884][   T39] audit: type=1400 audit(2000000013.559:826): avc:  denied  { nlmsg_read } for  pid=12263 comm="syz.1.1869" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  134.733638][T12285] binder: 12284:12285 ioctl c0389424 200001c0 returned -22
[  134.794618][T12292] sctp: [Deprecated]: syz.4.1881 (pid 12292) Use of struct sctp_assoc_value in delayed_ack socket option.
[  134.794618][T12292] Use struct sctp_sack_info instead
[  134.805415][ T5944] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  134.810119][ T5944] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  134.812948][ T5944] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  134.816401][ T5944] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  134.818959][ T5944] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  134.821362][ T5944] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  134.921688][T12301] geneve3: entered promiscuous mode
[  134.923361][T12301] geneve3: entered allmulticast mode
[  134.941260][T12308] netlink: 340 bytes leftover after parsing attributes in process `syz.4.1882'.
[  134.948718][T12308] netlink: 144 bytes leftover after parsing attributes in process `syz.4.1882'.
[  134.962707][T12293] chnl_net:caif_netlink_parms(): no params data found
[  135.007856][T12293] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.010043][T12293] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.012229][T12293] bridge_slave_0: entered allmulticast mode
[  135.024440][T12293] bridge_slave_0: entered promiscuous mode
[  135.027264][T12293] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.029007][T12316] overlayfs: missing 'lowerdir'
[  135.029442][T12293] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.033421][T12293] bridge_slave_1: entered allmulticast mode
[  135.037256][T12293] bridge_slave_1: entered promiscuous mode
[  135.068669][T12293] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  135.073272][T12293] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.099116][T12293] team0: Port device team_slave_0 added
[  135.102115][T12293] team0: Port device team_slave_1 added
[  135.120311][T12293] batman_adv: batadv0: Adding interface: batadv_slave_0
[  135.122428][T12293] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.130091][T12293] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  135.133990][T12293] batman_adv: batadv0: Adding interface: batadv_slave_1
[  135.136407][T12293] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.144065][T12293] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  135.170021][T12293] hsr_slave_0: entered promiscuous mode
[  135.172093][T12293] hsr_slave_1: entered promiscuous mode
[  135.173948][T12293] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  135.176598][T12293] Cannot create hsr debugfs directory
[  135.340051][T12293] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  135.345048][T12293] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  135.348766][T12293] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  135.351990][T12293] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  135.361301][T12293] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.363432][T12293] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.365719][T12293] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.368111][T12293] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.393104][T12293] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.404044][ T6709] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.411206][ T6709] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.426969][T12293] 8021q: adding VLAN 0 to HW filter on device team0
[  135.433881][ T6712] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.436070][ T6712] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.442176][ T6713] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.444400][ T6713] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.522389][T12293] 8021q: adding VLAN 0 to HW filter on device batadv0
[  135.629156][T12293] veth0_vlan: entered promiscuous mode
[  135.637774][T12293] veth1_vlan: entered promiscuous mode
[  135.652423][T12293] veth0_macvtap: entered promiscuous mode
[  135.656970][T12293] veth1_macvtap: entered promiscuous mode
[  135.664048][T12293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.667456][T12293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.670390][T12293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.673495][T12293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.678845][T12293] batman_adv: batadv0: Interface activated: batadv_slave_0
[  135.687014][T12293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.690927][T12293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.694684][T12293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.699660][T12293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.704497][T12293] batman_adv: batadv0: Interface activated: batadv_slave_1
[  135.709503][T12293] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  135.712731][T12293] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  135.716082][T12293] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  135.719412][T12293] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  135.757186][ T6708] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  135.764718][ T6708] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.776602][ T6714] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  135.779497][ T6714] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.869412][T12359] 9pnet_virtio: no channels available for device syz
[  135.889554][   T39] audit: type=1400 audit(2000000015.089:827): avc:  denied  { watch watch_reads } for  pid=12351 comm="syz.3.1894" path="/454/file0/file1" dev="9p" ino=36575053 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  135.952715][T12366] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1897'.
[  136.162816][T12380] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  136.165493][T12380] IPv6: NLM_F_CREATE should be set when creating new route
[  136.201089][T12385] sctp: [Deprecated]: syz.3.1900 (pid 12385) Use of struct sctp_assoc_value in delayed_ack socket option.
[  136.201089][T12385] Use struct sctp_sack_info instead
[  136.235025][T12393] netlink: 1284 bytes leftover after parsing attributes in process `syz.4.1905'.
[  136.239344][T12393] openvswitch: netlink: Missing key (keys=40, expected=80)
[  136.407174][T12414] xt_hashlimit: size too large, truncated to 1048576
[  136.411111][T12414] syz.4.1911: vmalloc error: size 8392704, failed to allocated page array size 16392, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  136.416843][T12414] CPU: 0 UID: 0 PID: 12414 Comm: syz.4.1911 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0
[  136.416856][T12414] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.416862][T12414] Call Trace:
[  136.416865][T12414]  <TASK>
[  136.416869][T12414]  dump_stack_lvl+0x16c/0x1f0
[  136.416897][T12414]  warn_alloc+0x24d/0x3a0
[  136.416912][T12414]  ? __pfx_warn_alloc+0x10/0x10
[  136.416929][T12414]  ? __get_vm_area_node+0x1b0/0x2f0
[  136.416940][T12414]  ? __get_vm_area_node+0x1dc/0x2f0
[  136.416953][T12414]  __vmalloc_node_range_noprof+0x1105/0x1530
[  136.416965][T12414]  ? __pfx___lock_acquire+0x10/0x10
[  136.416979][T12414]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  136.416997][T12414]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  136.417008][T12414]  ? __pfx_lock_release+0x10/0x10
[  136.417019][T12414]  ? trace_lock_acquire+0x14e/0x1f0
[  136.417040][T12414]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  136.417054][T12414]  vmalloc_noprof+0x6b/0x90
[  136.417066][T12414]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  136.417079][T12414]  hashlimit_mt_check_common+0x8b0/0x1450
[  136.417094][T12414]  hashlimit_mt_check+0x71/0x90
[  136.417106][T12414]  ? __pfx_hashlimit_mt_check+0x10/0x10
[  136.417119][T12414]  xt_check_match+0x284/0xa50
[  136.417131][T12414]  ? _cpu_down+0x592/0xf20
[  136.417145][T12414]  ? __pfx_xt_check_match+0x10/0x10
[  136.417159][T12414]  ? xt_find_target+0x1ee/0x290
[  136.417172][T12414]  ? xt_find_match+0x1f2/0x290
[  136.417186][T12414]  find_check_entry.constprop.0+0x34d/0xa20
[  136.417202][T12414]  ? __pfx_find_check_entry.constprop.0+0x10/0x10
[  136.417220][T12414]  ? kvfree+0x47/0x50
[  136.417233][T12414]  translate_table+0xd06/0x17b0
[  136.417249][T12414]  ? __pfx_translate_table+0x10/0x10
[  136.417260][T12414]  ? __might_fault+0xe3/0x190
[  136.417277][T12414]  do_ip6t_set_ctl+0x926/0xbf0
[  136.417287][T12414]  ? trace_contention_end+0xee/0x140
[  136.417299][T12414]  ? __mutex_lock+0x1cc/0xb10
[  136.417311][T12414]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  136.417323][T12414]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  136.417336][T12414]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  136.417353][T12414]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  136.417368][T12414]  nf_setsockopt+0x8a/0xf0
[  136.417380][T12414]  ipv6_setsockopt+0x135/0x170
[  136.417392][T12414]  rawv6_setsockopt+0xd7/0x680
[  136.417401][T12414]  ? __pfx_rawv6_setsockopt+0x10/0x10
[  136.417412][T12414]  ? selinux_socket_setsockopt+0x6a/0x80
[  136.417429][T12414]  ? sock_common_setsockopt+0x2e/0xf0
[  136.417445][T12414]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  136.417460][T12414]  do_sock_setsockopt+0x222/0x480
[  136.417475][T12414]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  136.417489][T12414]  ? lock_acquire+0x2f/0xb0
[  136.417506][T12414]  __sys_setsockopt+0x1a0/0x230
[  136.417520][T12414]  __x64_sys_setsockopt+0xbd/0x160
[  136.417531][T12414]  ? do_syscall_64+0x91/0x250
[  136.417542][T12414]  ? lockdep_hardirqs_on+0x7c/0x110
[  136.417552][T12414]  do_syscall_64+0xcd/0x250
[  136.417564][T12414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.417577][T12414] RIP: 0033:0x7f5bf4b8cd29
[  136.417585][T12414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.417594][T12414] RSP: 002b:00007f5bf59d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  136.417602][T12414] RAX: ffffffffffffffda RBX: 00007f5bf4da6080 RCX: 00007f5bf4b8cd29
[  136.417608][T12414] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000007
[  136.417613][T12414] RBP: 00007f5bf4c0e2a0 R08: 0000000000000588 R09: 0000000000000000
[  136.417619][T12414] R10: 00000000200014c0 R11: 0000000000000246 R12: 0000000000000000
[  136.417624][T12414] R13: 0000000000000000 R14: 00007f5bf4da6080 R15: 00007ffea1ff54c8
[  136.417636][T12414]  </TASK>
[  136.417639][T12414] Mem-Info:
[  136.531468][T12414] active_anon:9266 inactive_anon:0 isolated_anon:0
[  136.531468][T12414]  active_file:4632 inactive_file:48763 isolated_file:0
[  136.531468][T12414]  unevictable:1763 dirty:159 writeback:0
[  136.531468][T12414]  slab_reclaimable:12370 slab_unreclaimable:83801
[  136.531468][T12414]  mapped:24220 shmem:2466 pagetables:834
[  136.531468][T12414]  sec_pagetables:301 bounce:0
[  136.531468][T12414]  kernel_misc_reclaimable:0
[  136.531468][T12414]  free:446320 free_pcp:6057 free_cma:0
[  136.544787][T12414] Node 0 active_anon:37016kB inactive_anon:0kB active_file:18528kB inactive_file:194968kB unevictable:3516kB isolated(anon):0kB isolated(file):0kB mapped:96980kB dirty:680kB writeback:0kB shmem:6328kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13552kB pagetables:3440kB sec_pagetables:1216kB all_unreclaimable? no
[  136.554446][T12414] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:84kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:8kB dirty:16kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  136.563431][T12414] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  136.571520][T12414] lowmem_reserve[]: 0 1240 0 0 0
[  136.573048][T12414] Node 0 DMA32 free:200920kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:37140kB inactive_anon:0kB active_file:18528kB inactive_file:194968kB unevictable:3516kB writepending:680kB present:2080628kB managed:1269808kB mlocked:0kB bounce:0kB free_pcp:3536kB local_pcp:1000kB free_cma:0kB
[  136.581865][T12414] lowmem_reserve[]: 0 0 0 0 0
[  136.583323][T12414] Node 1 Normal free:1568156kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:84kB unevictable:3536kB writepending:16kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:20728kB local_pcp:8132kB free_cma:0kB
[  136.592054][T12414] lowmem_reserve[]: 0 0 0 0 0
[  136.593497][T12414] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  136.596926][T12429] sctp: [Deprecated]: syz.3.1916 (pid 12429) Use of int in maxseg socket option.
[  136.596926][T12429] Use struct sctp_assoc_value instead
[  136.597321][T12414] Node 0 DMA32: 3*4kB (ME) 299*8kB (ME) 364*16kB (ME) 225*32kB (UM) 168*64kB (UME) 54*128kB (UME) 49*256kB (UM) 48*512kB (UM) 42*1024kB (UM) 17*2048kB (UM) 13*4096kB (UM) = 201284kB
[  136.603853][T12430] sctp: [Deprecated]: syz.3.1916 (pid 12430) Use of int in maxseg socket option.
[  136.603853][T12430] Use struct sctp_assoc_value instead
[  136.607695][T12414] Node 1 Normal: 8*4kB (ME) 58*8kB (UME) 73*16kB (UME) 131*32kB (UME) 19*64kB (UME) 16*128kB (UME) 6*256kB (UM) 2*512kB (UM) 2*1024kB (ME) 5*2048kB (UME) 377*4096kB (UM) = 1568160kB
[  136.619129][T12414] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  136.622018][T12414] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  136.624824][T12414] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  136.627764][T12414] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  136.630585][T12414] 55865 total pagecache pages
[  136.632061][T12414] 0 pages in swap cache
[  136.633372][T12414] Free swap  = 123988kB
[  136.634673][T12414] Total swap = 124996kB
[  136.635991][T12414] 1048443 pages RAM
[  136.637167][T12414] 0 pages HighMem/MovableOnly
[  136.638618][T12414] 281670 pages reserved
[  136.639910][T12414] 0 pages cma reserved
[  136.670040][T12432] vlan3: entered promiscuous mode
[  136.671804][T12432] vlan3: entered allmulticast mode
[  136.831319][T12447] bond0 (unregistering): Released all slaves
[  136.840049][T12454] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  136.846069][ T5935] Bluetooth: hci0: command tx timeout
[  136.909508][T12464] cgroup2: Unknown parameter 'euid'
[  137.052795][T12473] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1930'.
[  137.068439][T12473] (syz.3.1930,12473,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  137.071531][T12473] (syz.3.1930,12473,1):ocfs2_fill_super:1178 ERROR: status = -22
[  137.078058][T12473] netlink: 'syz.3.1930': attribute type 1 has an invalid length.
[  137.202368][T12498] overlay: filesystem on ./bus not supported as upperdir
[  137.222872][T12498] netlink: 277 bytes leftover after parsing attributes in process `syz.0.1938'.
[  137.313632][T12519] binder: 12517:12519 ioctl 400448df 20001480 returned -22
[  137.313901][T12520] binder: 12517:12520 ioctl 400448df 20001480 returned -22
[  137.355286][T12516] ptm ptm34: ldisc open failed (-12), clearing slot 34
[  137.453665][T12511] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12511 comm=syz.4.1942
[  138.145845][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  138.145855][   T39] audit: type=1400 audit(2000000017.349:833): avc:  denied  { read } for  pid=12570 comm="syz.4.1958" path="socket:[47467]" dev="sockfs" ino=47467 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  138.478607][   T39] audit: type=1804 audit(2000000017.679:834): pid=12587 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1963" name="/newroot/470/file0" dev="tmpfs" ino=2547 res=1 errno=0
[  138.478783][T12587] ref_ctr going negative. vaddr: 0x20ffc002, curr val: -29824, delta: 1
[  138.485510][   T39] audit: type=1804 audit(2000000017.679:835): pid=12588 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1963" name="/newroot/470/file0" dev="tmpfs" ino=2547 res=1 errno=0
[  138.495259][T12587] ref_ctr increment failed for inode: 0x9f3 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff8880295f2800
[  138.505867][  T833] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  138.668601][  T833] usb 10-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  138.671389][  T833] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.673805][  T833] usb 10-1: Product: syz
[  138.675195][  T833] usb 10-1: Manufacturer: syz
[  138.676719][  T833] usb 10-1: SerialNumber: syz
[  138.681552][  T833] usb 10-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  138.693550][  T833] usb 10-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  138.926187][ T5935] Bluetooth: hci0: command tx timeout
[  138.941139][   T39] audit: type=1400 audit(2000000018.139:836): avc:  denied  { create } for  pid=12601 comm="syz.4.1968" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  138.948222][   T39] audit: type=1400 audit(2000000018.139:837): avc:  denied  { sys_admin } for  pid=12601 comm="syz.4.1968" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  138.998482][   T39] audit: type=1400 audit(2000000018.199:838): avc:  denied  { associate } for  pid=12605 comm="syz.4.1968" name="core" scontext=root:object_r:etc_runtime_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1
[  139.096203][ T5815] usb 10-1: USB disconnect, device number 2
[  139.347681][   T39] audit: type=1400 audit(2000000018.549:839): avc:  denied  { unmount } for  pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[  139.415751][T12620] o2cb: This node has not been configured.
[  139.417606][T12620] o2cb: Cluster check failed. Fix errors before retrying.
[  139.419746][T12620] (syz.3.1971,12620,2):user_dlm_register:674 ERROR: status = -22
[  139.421988][T12620] (syz.3.1971,12620,2):dlmfs_mkdir:436 ERROR: Error -22 could not register domain "bus"
[  139.501879][T12629] fuse: Unknown parameter 'Ó%Кš»:z&”/‰J	“©FùK4š°‡À'
[  139.502954][T12631] fuse: Unknown parameter 'Ó%Кš»:z&”/‰J	“©FùK4š°‡À'
[  139.725901][  T833] ath9k_htc 10-1:1.0: ath9k_htc: Target is unresponsive
[  139.728144][  T833] ath9k_htc: Failed to initialize the device
[  139.730421][ T5815] usb 10-1: ath9k_htc: USB layer deinitialized
[  139.745281][   T69] hid-generic 0001:0000:0009.0006: unknown main item tag 0x4
[  139.749639][   T69] hid-generic 0001:0000:0009.0006: item fetching failed at offset 23/103
[  139.752601][   T69] hid-generic 0001:0000:0009.0006: probe with driver hid-generic failed with error -22
[  140.164019][T12680] sch_fq: defrate 0 ignored.
[  140.166146][T12684] fuse: Unknown parameter ''
[  140.339664][   T39] audit: type=1400 audit(2000000019.539:840): avc:  denied  { read } for  pid=12696 comm="syz.5.1993" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  140.346352][   T39] audit: type=1400 audit(2000000019.539:841): avc:  denied  { open } for  pid=12696 comm="syz.5.1993" path="/26/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  140.355434][   T39] audit: type=1400 audit(2000000019.539:842): avc:  denied  { ioctl } for  pid=12696 comm="syz.5.1993" path="/26/file0/file0" dev="fuse" ino=0 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  140.491868][T12732] netlink: 'syz.0.2006': attribute type 10 has an invalid length.
[  140.717361][   T35] usb 10-1: new full-speed USB device number 3 using dummy_hcd
[  140.865840][   T35] usb 10-1: device descriptor read/64, error -71
[  141.016305][ T5935] Bluetooth: hci0: command tx timeout
[  141.115763][   T35] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[  141.255816][   T35] usb 10-1: device descriptor read/64, error -71
[  141.375862][   T35] usb usb10-port1: attempt power cycle
[  141.715756][   T35] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[  141.736363][   T35] usb 10-1: device descriptor read/8, error -71
[  141.975746][   T35] usb 10-1: new full-speed USB device number 6 using dummy_hcd
[  141.996328][   T35] usb 10-1: device descriptor read/8, error -71
[  142.108398][   T35] usb usb10-port1: unable to enumerate USB device
[  142.347471][T12779] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5125 sclass=netlink_route_socket pid=12779 comm=syz.4.2024
[  142.352875][T12779] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  142.358990][T12779] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12779 comm=syz.4.2024
[  142.394400][T12783] fuse: Bad value for 'fd'
[  143.095748][ T5935] Bluetooth: hci0: command tx timeout
[  143.131237][T12816] syz.3.2036: attempt to access beyond end of device
[  143.131237][T12816] nbd3: rw=0, sector=64, nr_sectors = 1 limit=0
[  143.135430][T12816] syz.3.2036: attempt to access beyond end of device
[  143.135430][T12816] nbd3: rw=0, sector=256, nr_sectors = 1 limit=0
[  143.139551][T12816] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  143.142506][T12816] syz.3.2036: attempt to access beyond end of device
[  143.142506][T12816] nbd3: rw=0, sector=512, nr_sectors = 1 limit=0
[  143.146670][T12816] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  143.148199][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.149504][T12816] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  143.149514][T12816] UDF-fs: Scanning with blocksize 512 failed
[  143.149826][T12816] syz.3.2036: attempt to access beyond end of device
[  143.149826][T12816] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[  143.151584][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.153958][T12816] syz.3.2036: attempt to access beyond end of device
[  143.153958][T12816] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[  143.155513][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.160088][T12816] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  143.161648][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.165483][T12816] syz.3.2036: attempt to access beyond end of device
[  143.165483][T12816] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[  143.167133][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.170029][T12816] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  143.171652][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.175436][T12816] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  143.175447][T12816] UDF-fs: Scanning with blocksize 1024 failed
[  143.178256][T12816] syz.3.2036: attempt to access beyond end of device
[  143.178256][T12816] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[  143.180184][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.182948][T12816] syz.3.2036: attempt to access beyond end of device
[  143.182948][T12816] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[  143.184464][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.186937][T12816] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  143.189829][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.192218][T12816] syz.3.2036: attempt to access beyond end of device
[  143.192218][T12816] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[  143.195865][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.198372][T12816] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  143.200599][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.202792][T12816] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  143.206369][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.208850][T12816] UDF-fs: Scanning with blocksize 2048 failed
[  143.211121][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.213551][T12816] syz.3.2036: attempt to access beyond end of device
[  143.213551][T12816] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[  143.216663][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.217987][T12816] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  143.219147][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.221602][T12816] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  143.224831][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.227400][T12816] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  143.229655][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.231838][T12816] UDF-fs: Scanning with blocksize 4096 failed
[  143.234339][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.236861][T12816] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[  143.238608][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.238621][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.238633][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.252884][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.254849][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.256956][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.258916][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.260935][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.262994][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.264941][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.267001][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.269013][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.270985][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.272936][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.275000][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.277141][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.279128][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.281143][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.283172][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.285239][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.287338][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.289455][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.291487][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.293484][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.295702][   T69] hid-generic 0000:0000:0001.0007: unknown main item tag 0x0
[  143.300756][   T69] hid-generic 0000:0000:0001.0007: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  143.411892][T12842] openvswitch: netlink: Invalid VLAN frame
[  143.464582][T12851] tmpfs: Unknown parameter 'nr_inoes'
[  143.615594][T12863] netlink: 'syz.3.2046': attribute type 2 has an invalid length.
[  143.618048][T12863] __nla_validate_parse: 1 callbacks suppressed
[  143.618056][T12863] netlink: 16138 bytes leftover after parsing attributes in process `syz.3.2046'.
[  143.624026][T12863] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2046'.
[  143.795764][T12874] "syz.5.2049" (12874) uses obsolete ecb(arc4) skcipher
[  144.297509][T12888] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2052'.
[  144.314898][T12891] hsr0: entered allmulticast mode
[  144.319225][T12891] hsr_slave_0: entered allmulticast mode
[  144.320960][T12891] hsr_slave_1: entered allmulticast mode
[  144.323750][T12891] hsr_slave_0: left promiscuous mode
[  144.328162][T12895] "syz.4.2055" (12895) uses obsolete ecb(arc4) skcipher
[  144.330334][T12891] hsr_slave_1: left promiscuous mode
[  144.342055][T12891] hsr0 (unregistering): left allmulticast mode
[  144.446470][   T39] kauditd_printk_skb: 3 callbacks suppressed
[  144.446479][   T39] audit: type=1400 audit(2000000023.649:846): avc:  denied  { create } for  pid=12902 comm="syz.0.2057" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  144.632406][T12928] netlink: 'syz.5.2064': attribute type 3 has an invalid length.
[  144.634832][T12928] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2064'.
[  144.664904][T12930] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2065'.
[  144.820561][   T39] audit: type=1400 audit(2000000024.019:847): avc:  denied  { mounton } for  pid=12931 comm="syz.5.2067" path="/39/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sock_file permissive=1
[  144.829089][T12943] xt_nat: multiple ranges no longer supported
[  144.843798][   T39] audit: type=1400 audit(2000000024.039:848): avc:  denied  { setopt } for  pid=12942 comm="syz.3.2066" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  144.897811][T12949] openvswitch: netlink: ct_state flags 010000e0 unsupported
[  144.897833][T12950] openvswitch: netlink: ct_state flags 010000e0 unsupported
[  144.921162][T12949] tmpfs: Bad value for 'mpol'
[  145.242292][T12975] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2078'.
[  145.343501][   T39] audit: type=1400 audit(2000000024.539:849): avc:  denied  { execute } for  pid=12977 comm="syz.0.2079" path="/dev/bus/usb/002/001" dev="devtmpfs" ino=745 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  145.414969][T12985] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bridge, syncid = 2, id = 0
[  145.668782][T13002] FAULT_INJECTION: forcing a failure.
[  145.668782][T13002] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  145.672685][T13002] CPU: 2 UID: 0 PID: 13002 Comm: syz.5.2082 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0
[  145.672697][T13002] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.672702][T13002] Call Trace:
[  145.672705][T13002]  <TASK>
[  145.672709][T13002]  dump_stack_lvl+0x16c/0x1f0
[  145.672725][T13002]  should_fail_ex+0x497/0x5b0
[  145.672737][T13002]  strncpy_from_user+0x3b/0x2d0
[  145.672748][T13002]  getname_flags.part.0+0x8f/0x550
[  145.672765][T13002]  getname_flags+0x93/0xf0
[  145.672776][T13002]  user_path_at+0x24/0x60
[  145.672787][T13002]  do_faccessat+0x139/0xbd0
[  145.672799][T13002]  ? __pfx_do_faccessat+0x10/0x10
[  145.672813][T13002]  do_syscall_64+0xcd/0x250
[  145.672826][T13002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.672839][T13002] RIP: 0033:0x7f2eeef8cd29
[  145.672847][T13002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.672856][T13002] RSP: 002b:00007f2eefec3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b7
[  145.672865][T13002] RAX: ffffffffffffffda RBX: 00007f2eef1a5fa0 RCX: 00007f2eeef8cd29
[  145.672871][T13002] RDX: 0000000000000002 RSI: 0000000020000280 RDI: ffffffffffffff9c
[  145.672876][T13002] RBP: 00007f2eefec3090 R08: 0000000000000000 R09: 0000000000000000
[  145.672882][T13002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.672887][T13002] R13: 0000000000000000 R14: 00007f2eef1a5fa0 R15: 00007fff72c557f8
[  145.672898][T13002]  </TASK>
[  145.714317][T13005] netlink: 'syz.0.2091': attribute type 2 has an invalid length.
[  145.753006][T13013] netlink: 'syz.0.2092': attribute type 4 has an invalid length.
[  145.827995][T13017] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2094'.
[  145.831858][   T39] audit: type=1400 audit(2000000025.029:850): avc:  denied  { nlmsg_write } for  pid=13016 comm="syz.5.2094" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  145.833795][T13031] IPv6: Can't replace route, no match found
[  145.838268][T13017] tmpfs: Unknown parameter 'mpt¡ÓâDol'
[  146.243375][    C0] Unknown status report in ack skb
[  146.245267][    C0] Unknown status report in ack skb
[  146.247150][    C0] Unknown status report in ack skb
[  146.248849][    C0] Unknown status report in ack skb
[  146.251487][    C0] Unknown status report in ack skb
[  146.253191][    C0] Unknown status report in ack skb
[  146.254887][    C0] Unknown status report in ack skb
[  146.257720][    C0] Unknown status report in ack skb
[  146.259972][    C0] Unknown status report in ack skb
[  146.261675][    C0] Unknown status report in ack skb
[  146.263336][    C0] Unknown status report in ack skb
[  146.265545][    C0] Unknown status report in ack skb
[  146.268406][T13092] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2113'.
[  146.270527][    C0] Unknown status report in ack skb
[  146.272688][    C0] Unknown status report in ack skb
[  146.274334][    C0] Unknown status report in ack skb
[  146.276041][    C0] Unknown status report in ack skb
[  146.277745][    C0] Unknown status report in ack skb
[  146.279429][    C0] Unknown status report in ack skb
[  146.281140][    C0] Unknown status report in ack skb
[  146.282846][    C0] Unknown status report in ack skb
[  146.284555][    C0] Unknown status report in ack skb
[  146.286703][    C0] Unknown status report in ack skb
[  146.288579][    C0] Unknown status report in ack skb
[  146.290305][    C0] Unknown status report in ack skb
[  146.292003][    C0] Unknown status report in ack skb
[  146.293779][    C0] Unknown status report in ack skb
[  146.295475][    C0] Unknown status report in ack skb
[  146.297780][    C0] Unknown status report in ack skb
[  146.299478][    C0] Unknown status report in ack skb
[  146.301170][    C0] Unknown status report in ack skb
[  146.302877][    C0] Unknown status report in ack skb
[  146.304487][    C0] Unknown status report in ack skb
[  146.306297][    C0] Unknown status report in ack skb
[  146.307947][    C0] Unknown status report in ack skb
[  146.309659][    C0] Unknown status report in ack skb
[  146.311387][    C0] Unknown status report in ack skb
[  146.313089][    C0] Unknown status report in ack skb
[  146.314778][    C0] Unknown status report in ack skb
[  146.318312][    C0] Unknown status report in ack skb
[  146.320009][    C0] Unknown status report in ack skb
[  146.321703][    C0] Unknown status report in ack skb
[  146.323390][    C0] Unknown status report in ack skb
[  146.325142][    C0] Unknown status report in ack skb
[  146.326973][    C0] Unknown status report in ack skb
[  146.328702][    C0] Unknown status report in ack skb
[  146.330419][    C0] Unknown status report in ack skb
[  146.332183][    C0] Unknown status report in ack skb
[  146.333920][    C0] Unknown status report in ack skb
[  146.345819][    C1] Unknown status report in ack skb
[  146.348077][    C1] Unknown status report in ack skb
[  146.349896][    C1] Unknown status report in ack skb
[  146.351660][    C1] Unknown status report in ack skb
[  146.353427][    C1] Unknown status report in ack skb
[  146.355154][    C1] Unknown status report in ack skb
[  146.358085][    C1] Unknown status report in ack skb
[  146.359772][    C1] Unknown status report in ack skb
[  146.361482][    C1] Unknown status report in ack skb
[  146.363202][    C1] Unknown status report in ack skb
[  146.368225][    C1] Unknown status report in ack skb
[  146.370498][    C1] Unknown status report in ack skb
[  146.372356][    C1] Unknown status report in ack skb
[  146.374237][    C1] Unknown status report in ack skb
[  146.376259][    C1] Unknown status report in ack skb
[  146.377993][    C1] Unknown status report in ack skb
[  146.379696][    C1] Unknown status report in ack skb
[  146.506755][T13114] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  146.514991][T13114] ------------[ cut here ]------------
[  146.517807][T13114] WARNING: CPU: 3 PID: 13114 at arch/x86/kvm/../../../virt/kvm/pfncache.c:267 __kvm_gpc_refresh+0x174b/0x2390
[  146.521615][T13114] Modules linked in:
[  146.521692][T13110] afs: Unknown parameter 'dyé+ âàn'
[  146.523263][T13114] CPU: 3 UID: 0 PID: 13114 Comm: syz.3.2124 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0
[  146.528089][T13110] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2123'.
[  146.530517][T13114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.537856][T13114] RIP: 0010:__kvm_gpc_refresh+0x174b/0x2390
[  146.540050][T13114] Code: c1 ea 03 80 3c 02 00 0f 85 dc 09 00 00 48 8b 3c 24 49 89 9f 08 01 00 00 31 db e8 20 fb 1f 0a e9 44 f4 ff ff e8 66 a1 81 00 90 <0f> 0b 90 e9 31 f4 ff ff 4c 8b 7c 24 60 e8 53 a1 81 00 31 db e9 e5
[  146.546175][T13114] RSP: 0018:ffffc900066ff228 EFLAGS: 00010287
[  146.548064][T13114] RAX: 0000000000000705 RBX: ffffffffffffffff RCX: ffffc9000c001000
[  146.550508][T13114] RDX: 0000000000080000 RSI: ffffffff811842da RDI: 0000000000000000
[  146.552994][T13114] RBP: dffffc0000000000 R08: 0000000000000000 R09: 0000000000000001
[  146.555384][T13114] R10: 0000000000000001 R11: 0000000000000011 R12: ffff888000000000
[  146.557960][T13114] R13: ffffc9000691a401 R14: ffff887fffffff01 R15: ffffc9000691a408
[  146.560650][T13114] FS:  00007f614a3456c0(0000) GS:ffff88806a900000(0000) knlGS:0000000000000000
[  146.563958][T13114] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  146.566288][T13114] CR2: 00007f6149570ae0 CR3: 000000005c1c8000 CR4: 0000000000352ef0
[  146.568773][T13114] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  146.571260][T13114] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  146.573715][T13114] Call Trace:
[  146.574774][T13114]  <TASK>
[  146.575861][T13114]  ? __warn+0xea/0x3c0
[  146.577170][T13114]  ? __kvm_gpc_refresh+0x174b/0x2390
[  146.578815][T13114]  ? report_bug+0x3c0/0x580
[  146.580275][T13114]  ? handle_bug+0x54/0xa0
[  146.581633][T13114]  ? exc_invalid_op+0x17/0x50
[  146.583103][T13114]  ? asm_exc_invalid_op+0x1a/0x20
[  146.584711][T13114]  ? __kvm_gpc_refresh+0x174a/0x2390
[  146.586484][T13114]  ? __kvm_gpc_refresh+0x174b/0x2390
[  146.588159][T13114]  ? __kvm_gpc_refresh+0x174a/0x2390
[  146.590016][T13114]  ? __mutex_lock+0x1cc/0xb10
[  146.591485][T13114]  ? __pfx___lock_acquire+0x10/0x10
[  146.593107][T13114]  ? __pfx___mutex_lock+0x10/0x10
[  146.594742][T13114]  ? __pfx___kvm_gpc_refresh+0x10/0x10
[  146.597019][T13114]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  146.599265][T13114]  ? rcu_is_watching+0x12/0xc0
[  146.601163][T13114]  ? trace_lock_acquire+0x14e/0x1f0
[  146.603242][T13114]  kvm_gpc_refresh+0xc3/0x140
[  146.605136][T13114]  kvm_xen_set_evtchn.part.0+0x19c/0x270
[  146.607498][T13114]  ? kvm_xen_set_evtchn.part.0+0x184/0x270
[  146.609837][T13114]  kvm_xen_hvm_evtchn_send+0x231/0x290
[  146.612016][T13114]  ? __pfx_kvm_xen_hvm_evtchn_send+0x10/0x10
[  146.614418][T13114]  kvm_arch_vm_ioctl+0x1161/0x1d40
[  146.616571][T13114]  ? hlock_class+0x4e/0x130
[  146.618429][T13114]  ? __pfx_mark_lock+0x10/0x10
[  146.620363][T13114]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[  146.622537][T13114]  ? __lock_acquire+0xcc5/0x3c40
[  146.624525][T13114]  ? hlock_class+0x4e/0x130
[  146.626545][T13114]  ? __lock_acquire+0xcc5/0x3c40
[  146.628548][T13114]  ? hlock_class+0x4e/0x130
[  146.630284][T13114]  ? __lock_acquire+0xcc5/0x3c40
[  146.632216][T13114]  ? __pfx___lock_acquire+0x10/0x10
[  146.634319][T13114]  ? find_held_lock+0x2d/0x110
[  146.636349][T13114]  ? trace_lock_acquire+0x14e/0x1f0
[  146.638433][T13114]  ? lock_acquire+0x2f/0xb0
[  146.640300][T13114]  ? is_bpf_text_address+0x30/0x1a0
[  146.642175][T13114]  ? bpf_ksym_find+0x127/0x1c0
[  146.643868][T13114]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  146.645881][T13114]  ? is_bpf_text_address+0x94/0x1a0
[  146.647510][T13114]  ? kernel_text_address+0x8d/0x100
[  146.649510][T13114]  ? __kernel_text_address+0xd/0x40
[  146.651549][T13114]  ? unwind_get_return_address+0x59/0xa0
[  146.653826][T13114]  ? arch_stack_walk+0xa7/0x100
[  146.656002][T13114]  ? stack_trace_save+0x95/0xd0
[  146.657970][T13114]  ? __pfx_stack_trace_save+0x10/0x10
[  146.660123][T13114]  ? __pfx_mark_lock+0x10/0x10
[  146.662050][T13114]  ? stack_depot_save_flags+0x28/0x9c0
[  146.664226][T13114]  kvm_vm_ioctl+0x1a87/0x3df0
[  146.666211][T13114]  ? security_file_ioctl+0x9b/0x240
[  146.668300][T13114]  ? do_syscall_64+0xcd/0x250
[  146.670190][T13114]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.672624][T13114]  ? hlock_class+0x4e/0x130
[  146.674440][T13114]  ? mark_lock+0xb5/0xc60
[  146.676241][T13114]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  146.678289][T13114]  ? __pfx_mark_lock+0x10/0x10
[  146.680233][T13114]  ? find_held_lock+0x2d/0x110
[  146.682178][T13114]  ? tomoyo_path_number_perm+0x298/0x590
[  146.684444][T13114]  ? __pfx_lock_release+0x10/0x10
[  146.687156][T13114]  ? tomoyo_path_number_perm+0x46d/0x590
[  146.689387][T13114]  ? tomoyo_path_number_perm+0x190/0x590
[  146.691450][T13114]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  146.693677][T13114]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  146.695492][T13035] Bluetooth: hci0: Opcode 0x080f failed: -4
[  146.695575][T13114]  ? do_vfs_ioctl+0x513/0x1990
[  146.699112][T13114]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  146.700683][T13114]  ? kmem_cache_free+0x152/0x4c0
[  146.702370][T13114]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  146.704981][T13114]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  146.707860][T13114]  ? __pfx_lock_release+0x10/0x10
[  146.709882][T13114]  ? selinux_file_ioctl+0x180/0x270
[  146.711511][T13114]  ? selinux_file_ioctl+0xb4/0x270
[  146.713116][T13114]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  146.714678][T13114]  __x64_sys_ioctl+0x190/0x200
[  146.716393][T13114]  do_syscall_64+0xcd/0x250
[  146.717817][T13114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.720049][T13114] RIP: 0033:0x7f614958cd29
[  146.721702][T13114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.727683][T13114] RSP: 002b:00007f614a345038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  146.730386][T13114] RAX: ffffffffffffffda RBX: 00007f61497a5fa0 RCX: 00007f614958cd29
[  146.733463][T13114] RDX: 0000000020000180 RSI: 00000000400caed0 RDI: 0000000000000004
[  146.736316][T13114] RBP: 00007f614960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  146.738734][T13114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  146.741151][T13114] R13: 0000000000000000 R14: 00007f61497a5fa0 R15: 00007ffdb513f3c8
[  146.743557][T13114]  </TASK>
[  146.744524][T13114] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  146.746750][T13114] CPU: 3 UID: 0 PID: 13114 Comm: syz.3.2124 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0
[  146.749819][T13114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.753097][T13114] Call Trace:
[  146.754131][T13114]  <TASK>
[  146.755047][T13114]  dump_stack_lvl+0x3d/0x1f0
[  146.756487][T13114]  panic+0x71d/0x800
[  146.757702][T13114]  ? __pfx_panic+0x10/0x10
[  146.759097][T13114]  ? show_trace_log_lvl+0x29d/0x3d0
[  146.760717][T13114]  ? __kvm_gpc_refresh+0x174b/0x2390
[  146.762339][T13114]  check_panic_on_warn+0xab/0xb0
[  146.763863][T13114]  __warn+0xf6/0x3c0
[  146.765080][T13114]  ? __kvm_gpc_refresh+0x174b/0x2390
[  146.767151][T13114]  report_bug+0x3c0/0x580
[  146.768893][T13114]  handle_bug+0x54/0xa0
[  146.770549][T13114]  exc_invalid_op+0x17/0x50
[  146.772372][T13114]  asm_exc_invalid_op+0x1a/0x20
[  146.774311][T13114] RIP: 0010:__kvm_gpc_refresh+0x174b/0x2390
[  146.776644][T13114] Code: c1 ea 03 80 3c 02 00 0f 85 dc 09 00 00 48 8b 3c 24 49 89 9f 08 01 00 00 31 db e8 20 fb 1f 0a e9 44 f4 ff ff e8 66 a1 81 00 90 <0f> 0b 90 e9 31 f4 ff ff 4c 8b 7c 24 60 e8 53 a1 81 00 31 db e9 e5
[  146.784220][T13114] RSP: 0018:ffffc900066ff228 EFLAGS: 00010287
[  146.786584][T13114] RAX: 0000000000000705 RBX: ffffffffffffffff RCX: ffffc9000c001000
[  146.789218][T13114] RDX: 0000000000080000 RSI: ffffffff811842da RDI: 0000000000000000
[  146.791653][T13114] RBP: dffffc0000000000 R08: 0000000000000000 R09: 0000000000000001
[  146.794067][T13114] R10: 0000000000000001 R11: 0000000000000011 R12: ffff888000000000
[  146.796525][T13114] R13: ffffc9000691a401 R14: ffff887fffffff01 R15: ffffc9000691a408
[  146.798932][T13114]  ? __kvm_gpc_refresh+0x174a/0x2390
[  146.800569][T13114]  ? __kvm_gpc_refresh+0x174a/0x2390
[  146.802184][T13114]  ? __mutex_lock+0x1cc/0xb10
[  146.803628][T13114]  ? __pfx___lock_acquire+0x10/0x10
[  146.805220][T13114]  ? __pfx___mutex_lock+0x10/0x10
[  146.806768][T13114]  ? __pfx___kvm_gpc_refresh+0x10/0x10
[  146.808455][T13114]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  146.810187][T13114]  ? rcu_is_watching+0x12/0xc0
[  146.811775][T13114]  ? trace_lock_acquire+0x14e/0x1f0
[  146.813656][T13114]  kvm_gpc_refresh+0xc3/0x140
[  146.815396][T13114]  kvm_xen_set_evtchn.part.0+0x19c/0x270
[  146.817639][T13114]  ? kvm_xen_set_evtchn.part.0+0x184/0x270
[  146.819954][T13114]  kvm_xen_hvm_evtchn_send+0x231/0x290
[  146.822115][T13114]  ? __pfx_kvm_xen_hvm_evtchn_send+0x10/0x10
[  146.824496][T13114]  kvm_arch_vm_ioctl+0x1161/0x1d40
[  146.826527][T13114]  ? hlock_class+0x4e/0x130
[  146.828343][T13114]  ? __pfx_mark_lock+0x10/0x10
[  146.830246][T13114]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[  146.832423][T13114]  ? __lock_acquire+0xcc5/0x3c40
[  146.834393][T13114]  ? hlock_class+0x4e/0x130
[  146.836167][T13114]  ? __lock_acquire+0xcc5/0x3c40
[  146.838213][T13114]  ? hlock_class+0x4e/0x130
[  146.839924][T13114]  ? __lock_acquire+0xcc5/0x3c40
[  146.841479][T13114]  ? __pfx___lock_acquire+0x10/0x10
[  146.843082][T13114]  ? find_held_lock+0x2d/0x110
[  146.844583][T13114]  ? trace_lock_acquire+0x14e/0x1f0
[  146.846200][T13114]  ? lock_acquire+0x2f/0xb0
[  146.847603][T13114]  ? is_bpf_text_address+0x30/0x1a0
[  146.849225][T13114]  ? bpf_ksym_find+0x127/0x1c0
[  146.850704][T13114]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  146.852624][T13114]  ? is_bpf_text_address+0x94/0x1a0
[  146.854228][T13114]  ? kernel_text_address+0x8d/0x100
[  146.855834][T13114]  ? __kernel_text_address+0xd/0x40
[  146.857470][T13114]  ? unwind_get_return_address+0x59/0xa0
[  146.859214][T13114]  ? arch_stack_walk+0xa7/0x100
[  146.860748][T13114]  ? stack_trace_save+0x95/0xd0
[  146.862248][T13114]  ? __pfx_stack_trace_save+0x10/0x10
[  146.863900][T13114]  ? __pfx_mark_lock+0x10/0x10
[  146.865398][T13114]  ? stack_depot_save_flags+0x28/0x9c0
[  146.867078][T13114]  kvm_vm_ioctl+0x1a87/0x3df0
[  146.868553][T13114]  ? security_file_ioctl+0x9b/0x240
[  146.870175][T13114]  ? do_syscall_64+0xcd/0x250
[  146.871638][T13114]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.873528][T13114]  ? hlock_class+0x4e/0x130
[  146.874928][T13114]  ? mark_lock+0xb5/0xc60
[  146.876287][T13114]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  146.877847][T13114]  ? __pfx_mark_lock+0x10/0x10
[  146.879358][T13114]  ? find_held_lock+0x2d/0x110
[  146.880871][T13114]  ? tomoyo_path_number_perm+0x298/0x590
[  146.882603][T13114]  ? __pfx_lock_release+0x10/0x10
[  146.884162][T13114]  ? tomoyo_path_number_perm+0x46d/0x590
[  146.885901][T13114]  ? tomoyo_path_number_perm+0x190/0x590
[  146.887694][T13114]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  146.889690][T13114]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  146.891667][T13114]  ? do_vfs_ioctl+0x513/0x1990
[  146.893124][T13114]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  146.894605][T13114]  ? kmem_cache_free+0x152/0x4c0
[  146.896070][T13114]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  146.898040][T13114]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  146.900071][T13114]  ? __pfx_lock_release+0x10/0x10
[  146.901582][T13114]  ? selinux_file_ioctl+0x180/0x270
[  146.903151][T13114]  ? selinux_file_ioctl+0xb4/0x270
[  146.904696][T13114]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  146.906210][T13114]  __x64_sys_ioctl+0x190/0x200
[  146.907661][T13114]  do_syscall_64+0xcd/0x250
[  146.909051][T13114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.910810][T13114] RIP: 0033:0x7f614958cd29
[  146.912103][T13114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.917605][T13114] RSP: 002b:00007f614a345038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  146.920028][T13114] RAX: ffffffffffffffda RBX: 00007f61497a5fa0 RCX: 00007f614958cd29
[  146.922381][T13114] RDX: 0000000020000180 RSI: 00000000400caed0 RDI: 0000000000000004
[  146.924669][T13114] RBP: 00007f614960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  146.926933][T13114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  146.929256][T13114] R13: 0000000000000000 R14: 00007f61497a5fa0 R15: 00007ffdb513f3c8
[  146.931590][T13114]  </TASK>
[  146.933136][T13114] Kernel Offset: disabled
[  146.934462][T13114] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:43:53  Registers:
info registers vcpu 0

CPU#0
RAX=00000000001d5243 RBX=0000000000000000 RCX=ffffffff8b35b239 RDX=0000000000000000
RSI=ffffffff8b6cd6c0 RDI=ffffffff8bd2e660 RBP=fffffbfff1bd2ef8 RSP=ffffffff8de07e20
R8 =0000000000000001 R9 =ffffed100d4c6f7d R10=ffff88806a637beb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8de977c0 R14=ffffffff90624e90 R15=0000000000000000
RIP=ffffffff8b35c61f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fca83350440 CR3=00000000315de000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000040 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffeae494080 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 615f3a6e696c723d 6e3d6573616c6374 20745f6d64617379 733a725f6d646173
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080000002 RBX=ffff88806a73f5c0 RCX=0000000000000000 RDX=ffff88802afa8000
RSI=ffffffff818714bd RDI=ffff88806a73f5c0 RBP=0000000000000001 RSP=ffffc90005bff978
R8 =0000000000000000 R9 =ffffed100d4e58d0 R10=ffff88806a72c683 R11=0000000000000002
R12=0000000000000000 R13=dffffc0000000000 R14=0000000000000009 R15=0000000000000000
RIP=ffffffff8199e47b RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055557ab8c500 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa0fcd99440 CR3=000000006112e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7a40f232
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7a40f23f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7a40f239
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7a40f24d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7a40f2d3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7a40f3b1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7a57c488 00007f2b7a57c480 00007f2b7a57c478 00007f2b7a57c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7b0dd100 00007f2b7a57c440 00007f2b7a570004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2b7a57c498 00007f2b7a57c490 00007f2b7a57c488 00007f2b7a57c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85200025 RDI=ffffffff9ab75e60 RBP=ffffffff9ab75e20 RSP=ffffc90005c7f648
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000004
R12=0000000000000000 R13=0000000000000020 R14=ffffffff851fffc0 R15=0000000000000000
RIP=ffffffff8520004f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f5bf59f76c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020002840 CR3=000000006177c000 CR4=00352ef0
DR0=0000000000000007 DR1=ffffffffffffffff DR2=0000000000000008 DR3=1000000100000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf4c0f232
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf4c0f23f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf4c0f239
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf4c0f24d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf4c0f2d3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf4c0f3b1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf4d7c488 00007f5bf4d7c480 00007f5bf4d7c478 00007f5bf4d7c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf58dd100 00007f5bf4d7c440 00007f5bf4d7c458 00007f5bf4d7c4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5bf4d7c498 00007f5bf4d7c490 00007f5bf4d7c488 00007f5bf4d7c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000001a679 RBX=000000000000005d RCX=ffffc9000c001000 RDX=0000000000080000
RSI=ffffffff8179d756 RDI=0000000000000001 RBP=1ffff92000cdfdda RSP=ffffc900066feec0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000012
R12=0000000000000001 R13=0000000000000200 R14=ffff88802dee4880 R15=ffffc900066fef88
RIP=ffffffff8179d758 RFL=00000083 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f614a3456c0 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f6149570ae0 CR3=000000005c1c8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffffc000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f614a344f80 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f614960f232
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f614960f23f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f614960f239
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f614960f24d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f614960f2d3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f614960f3b1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000030647261632f 6972642f7665642f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000013475142400c 4a51470c5546470c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000