last executing test programs:

22.306021526s ago: executing program 1 (id=693):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8000}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000200)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVex:De', 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r7, 0x5, 0x0, 0xffffffff, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="050000000000080000002e00000008000300", @ANYRES32=r8, @ANYBLOB="050034008b000000080026"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x8aa, 0x0, 0x0, 0x0, 0x0)
r9 = io_uring_setup(0x3c92, &(0x7f0000000100))
r10 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r10, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc)
bind$inet6(r10, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r10, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r10, &(0x7f0000000c80)="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", 0x34000, 0xbcff, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r10, 0x84, 0x72, &(0x7f0000000080), 0xc)
writev(r10, &(0x7f0000001300)=[{&(0x7f0000000100)='^', 0xa043}], 0x1)
close_range(r9, 0xffffffffffffffff, 0x0)

21.477455029s ago: executing program 1 (id=697):
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2000)
setresuid(0x0, r1, 0x0)
utimensat(r0, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000002140)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='initcall_start\x00', r2}, 0x10)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000001c0)={<r3=>0x0, @initdev, @remote}, &(0x7f0000000540)=0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000d80)=ANY=[@ANYBLOB="180800cf00000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf0908000000000055090100000000009500000000000000bf9110000000000056080000000000008500000007000000b7000000000000009500000000000000"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', r3, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
close(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ppoll(&(0x7f0000000340)=[{}], 0x1, 0x0, 0x0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae03, 0x4a)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = openat$fb1(0xffffff9c, &(0x7f0000000180), 0x2040, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000380)={0x400, 0x80, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, {0x0, 0x7}, {}, {}, {}, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x2a, 0x0, 0x2})
socket$kcm(0x29, 0x2, 0x0)
r7 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x109802, 0x0)
write$dsp(r7, &(0x7f00000010c0)="ab29f3", 0x3)
ioctl$SNDCTL_DSP_SYNC(r7, 0x5001, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
r8 = memfd_create(&(0x7f0000000d00)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea', 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x200080, 0x0)
fcntl$dupfd(r8, 0x0, r8)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)

20.545955506s ago: executing program 1 (id=698):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x5a, &(0x7f0000000100)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
read$msr(r1, 0x0, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000001100), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000002f00)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='devices.list\x00', 0x275a, 0x2)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4), 0x1c)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x48, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_REPLY={0x2c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x4}]}, 0x48}}, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x103201, 0x0)
write$P9_RSTATu(r5, &(0x7f0000000080)={0x265, 0x2, 0xafd, {{0x500, 0x124, 0x28, 0x1f00, {}, 0x0, 0x0, 0xc, 0x401, 0xffffffffffffff7d, '\nnodev{evo\x03\xd3\x8b\x92\x00'/27, 0x28, 'pg>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00\x00\x18x\x99\xa9\x16c\x88\x14\xe5p\x81\x03\xb4\x94\xe1\x00\x00\x00\x00\x00\x00\x00\x00', 0x2, '\b\x00', 0xac, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4@\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xe2\x89\xdad\x9a7\x009\x86Ac\x1dD\xf4\xa3\x9b\x11\x91\x93z(\x0e\x8d\x88\x9f\xc2 \xd1\x15\xac\x8e/\x18K\x9aau\x8d&w*\xb0\xf2\x04M\x8e\xf0&=\xdd\x97\xd3\xc4\'\xb3\xa52\xef\xab\x1d\x1c\xe3,\xa7\xc1\xfc#\x1a\xf4\x84\b\xe0+%P(\xb7\xc9\xbb\x859oM\x8a\xf0\xeb\x95\xfc\x0e\xcc\x99\xf7\x80\xe2'}, 0x12c, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0xfd85)

20.286239729s ago: executing program 1 (id=699):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000004c0)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
ioctl$CEC_TRANSMIT(r1, 0xc0386105, &(0x7f0000000140)={0xa4a, 0x4e3bf1ce, 0x1fc, 0xfffffffe, 0x8000, 0x81, "4f1b50acd047e59fcef5394a909a25bb", 0x4, 0x0, 0x6, 0x0, 0x6, 0x3, 0x4})

20.221743146s ago: executing program 1 (id=700):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0xfffe, @remote}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
lstat(0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b400000000000000791090000000000061000000000000009500000000000000a45c8b106d45385a1964b904e462de529745a4cd61a7a0d25ddfd38b8b9a36c14ae1ee5ae29051b28b53a4182deb5ae03bc2644f3f168925ab06dcde9fe4ee40405e10326cb901765f30c1d039e73af80f39ba982e44fe40c17211db9c82e6da61712f41775115599d65c29cfcd0bffdff01000000000000d375c71938d9faa1df3117a99ecbddbfee7f7abeba22c29a9cb001001079a87ed5790000000b8fc3b5fd11e6ca750a6dc5dba2b8b8cd1d9fed1fb63bafef7d7bdd5bad81e4037962"], &(0x7f0000000080)='syzkaller\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x15, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000180)='./file0/file0\x00', 0x12)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
chdir(&(0x7f0000000140)='./bus\x00')
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000002540))
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x9, 0x0, 0xfffffff9, 0x9}, {0x7fff, 0x7, 0x3, 0xd06a}}}, 0x0, 0x600)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYBLOB="0200000000000000000085e9effd00000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x49)
write$binfmt_elf64(r2, &(0x7f00000028c0)=ANY=[@ANYBLOB="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"/1645], 0x9f3)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={&(0x7f0000000500)=ANY=[@ANYRES32=r1], &(0x7f0000000640)=""/93, 0x110, 0x5d, 0x0, 0x100, 0x0, @void, @value}, 0x28)
mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x8000, 0x0)
write$selinux_create(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/tcp_cdg', 0x0, 0x0)
mknodat$loop(r3, &(0x7f0000000100)='./file3\x00', 0x10, 0x0)

18.94631023s ago: executing program 1 (id=704):
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private2}}}, 0x30)
write$binfmt_elf64(r2, 0x0, 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
chdir(&(0x7f0000000100)='./file0\x00')
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

7.21282196s ago: executing program 0 (id=733):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x18)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r2, <r3=>0xffffffffffffffff}, 0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000310b000000000000000000008500000087000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000020"], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f00000003c0)="386d178529a39dea18dd3f87d7a5", 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = getpid()
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="18"], 0x68}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c00000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c0002800500010001000000080002"], 0x4c}}, 0x20040800)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r8 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r8, &(0x7f0000000080), 0x10)
listen(r8, 0x0)
r9 = accept4$llc(r8, 0x0, 0x0, 0x0)
process_vm_readv(r5, 0x0, 0x0, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="580000b0d06cd1837ec5ab82d9047b435f6c8b5f9769cd2f380f518fd55911bf329723ab0516603f2bccc0ccede4913737a96987fed51b88305f44575ef1c1076ab70a3e336c497aaf8f4e1bdebc737a36f7ff0866b1d213096b02fda5144820f8cbcb28d482cb7ca58471910a45f20d164db615cde49614e43fb94f11bc95011343f9424e66c5460f4b5d7a21b7534581000000", @ANYRESOCT=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800", @ANYRES32=r3, @ANYRES8=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_vhci(0x0, 0x22)
socket$nl_netfilter(0x10, 0x3, 0xc)
r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r11 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$SNDCTL_SEQ_TESTMIDI(r11, 0x40045108, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r10, 0x29, 0x36, &(0x7f00000001c0)=ANY=[], 0x8)
connect$inet6(r10, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
r12 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r12, 0x5423, &(0x7f00000000c0)=0x5)
ioctl$TIOCSTI(r12, 0x5412, &(0x7f0000000200)=0xdc)

6.301642551s ago: executing program 3 (id=736):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0xfff1, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xfffffe4f, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x10, 0x11}, @TCA_FQ_QUANTUM={0x8}]}}]}, 0x40}}, 0x0)

5.887893632s ago: executing program 2 (id=737):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "75287ad1ee602ec4452a04ea7cdcd151bb2cd9893bc31f80718316d9bd3517076db9ad1f6a120d8be6d7f81cd81ec2757d0386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60)
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000004000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2045)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r3, 0x0, 0x0, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x44401, 0x0)
execve(&(0x7f0000000100)='./cgroup/../file0\x00', &(0x7f0000000380)={[&(0x7f0000000140)='\x00', &(0x7f0000000180)='#\x00', &(0x7f0000000200)='\x00', &(0x7f0000000240)='%*],-)-[(%:\x00', &(0x7f0000000280)='-&\x00', &(0x7f00000002c0)='.!)-\x00', &(0x7f0000000300)='},\\*\x1c\x00', &(0x7f0000000340)='/dev/fuse\x00']}, &(0x7f0000000600)={[&(0x7f0000000400)='/dev/ptp0\x00', &(0x7f0000000440)='-!\x00', &(0x7f0000000480)='\\\x00', &(0x7f00000004c0)='(*\x00', &(0x7f0000000500)='(\x00', &(0x7f0000000540)='}*^\x00', &(0x7f0000000580)='/dev/ptp0\x00', &(0x7f00000005c0)='/*-\\\x00']})
write$FUSE_INTERRUPT(r5, &(0x7f00000001c0)={0x10}, 0x10)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6})
dup3(r2, r3, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r6 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r6, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "75287ad1ee602ec4452a04ea7cdcd151bb2cd9893bc31f80718316d9bd3517076db9ad1f6a120d8be6d7f81cd81ec2757d0386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60)
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, &(0x7f0000005380))
r7 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCSIFBR(r7, 0x8941, &(0x7f00000006c0)=@add_del={0x2, &(0x7f0000000680)='wlan1\x00'})

5.827880369s ago: executing program 3 (id=738):
r0 = creat(0x0, 0xecf86c37d53049e9)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='gadgetfs\x00', 0x3188881, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x21, 0x107, 0xfffffffd, 0x0, {0x2, 0x7c}}, 0x14}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000002c0)=<r3=>0x0)
syz_open_procfs$namespace(r3, &(0x7f0000000300)='ns/user\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x7, &(0x7f0000000140)=@framed={{0x18, 0x7}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @alu={0x6}, @exit={0x95, 0x0, 0x7b00}, @call={0x85, 0x0, 0x0, 0x13}]}, &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=@getlink={0x20, 0x12, 0x221, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x2808}}, 0x20}}, 0x0)

5.827596371s ago: executing program 3 (id=739):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000004c0)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
ioctl$CEC_TRANSMIT(r1, 0xc0386105, &(0x7f0000000140)={0xa4a, 0x4e3bf1ce, 0x1fc, 0xfffffffe, 0x8000, 0x81, "4f1b50acd047e59fcef5394a909a25bb", 0x4, 0x0, 0x6, 0x0, 0x6, 0x3, 0x4})

5.826106194s ago: executing program 2 (id=740):
r0 = openat$proc_mixer(0xffffffffffffff9c, 0x0, 0x66aa00, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000300)) (async, rerun: 32)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xca, 0x0) (async)
ppoll(&(0x7f0000000000), 0x20000000000000a4, 0x0, 0x0, 0x0) (async)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000003b000701000e000000000000047c0000040000001400018006000600800a00000800130000000000"], 0x2c}}, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
r3 = socket(0x2, 0x80805, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r3, 0x84, 0x23, &(0x7f0000000180)={0x0, 0x10}, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'dummy0\x00', <r6=>0x0}) (async, rerun: 64)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="180000d0000000000000000000950000009500000000000002"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (rerun: 64)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10) (async)
r9 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r9, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r9, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000180)=[<r10=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r9, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, <r11=>0x0], &(0x7f0000000200), 0x5, r10})
ioctl$DRM_IOCTL_MODE_ATOMIC(r9, 0xc03864bc, &(0x7f0000000840)={0x0, 0x1, &(0x7f00000000c0)=[r10], &(0x7f0000000180), &(0x7f0000000280)=[r11], &(0x7f0000000040)})
r12 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x4) (async)
r13 = openat$vnet(0xffffffffffffff9c, &(0x7f00000038c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r13, 0xaf01, 0x0) (async)
pselect6(0x25, &(0x7f00000000c0)={0xc}, 0x0, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_VRING_KICK(r13, 0xaf02, 0x0) (async)
mount$9p_fd(0x0, &(0x7f0000000440)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r12, @ANYBLOB=',wfdno=', @ANYRESHEX=r8, @ANYBLOB="0100"/17])
ioctl$KDSKBENT(r12, 0x4b47, &(0x7f0000000040)={0xe2, 0x6, 0x8}) (async)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="0000000000000000240012800c0001006d6163766c616e00140002800800010008000000080003000000000008000500", @ANYRES32=r6], 0x4c}}, 0x0)

5.731072695s ago: executing program 3 (id=741):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000100)={0x10002, 0x1, 0x1})
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
ioctl$VIDIOC_G_FREQUENCY(r2, 0xc02c5638, &(0x7f0000000440))
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
ioctl$VIDIOC_S_PARM(r0, 0xc0cc5616, &(0x7f0000000380)={0x7, @output={0x1000, 0x0, {0x1, 0x4}, 0xff, 0x2}})
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$binfmt_script(r4, &(0x7f00000002c0)={'#! ', './file0', [], 0xa, "0a64436dc90b"}, 0x11)
sendmsg$IPSET_CMD_LIST(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_FLAGS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f0000000100)={0x70, 0x0, '\x00', {0x0, @reserved}})

5.730751251s ago: executing program 0 (id=742):
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'team0\x00', <r0=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYRESOCT=r0, @ANYRES32, @ANYBLOB="0dfa130016000000240012000c00010000000000000000000c0002f60800000001180000080001"], 0x44}}, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$PPPIOCBRIDGECHAN(r3, 0x40047435, &(0x7f0000000140)=0x1ff)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r2], 0x48}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x3a, 0x40, 0x0, 0x0)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sched_setscheduler(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r8 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
r9 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r9, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000040)=@secondary)
keyctl$search(0xa, r8, &(0x7f0000000140)='keyring\x00', &(0x7f00000001c0)={'syz', 0x1}, r9)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000000203010100dc0000000000000000000808000340000000000800010001"], 0x30}}, 0x0)

4.551716094s ago: executing program 0 (id=743):
mknod$loop(&(0x7f0000000100)='./file0\x00', 0x2000, 0x1)
mount(&(0x7f0000000040)=@sr0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='ocfs2\x00', 0xd, 0x0) (fail_nth: 12)

4.5514938s ago: executing program 3 (id=744):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@gettfilter={0x24, 0x2e, 0x301, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}, 0x1, 0x400000000000000}, 0x0)

4.471446802s ago: executing program 0 (id=745):
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, 0x0, 0x0, 0xe014, 0x0, 0x0, 0xf290fe5919da84ca, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10001, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x40000000000011a, 0x44000)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x5, 0x5, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)=@generic={&(0x7f00000000c0)='./file0\x00', 0x0, 0x10}, 0x18)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r5, 0x11, 0x68, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
socket(0x10, 0x3, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000001400000018"], 0x44}}, 0x0)
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x400452c8, &(0x7f0000000100))
ioctl$FS_IOC_GETFSLABEL(r6, 0x400452c9, &(0x7f0000000100))

3.201356785s ago: executing program 2 (id=746):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000011c0)=""/4106, 0x100a}, {&(0x7f00000001c0)=""/4096, 0x1000}], 0x2}, 0xffffff21}], 0x1, 0x40012120, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
r2 = gettid()
setpriority(0x0, r2, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r3, 0x0, 0xd2, &(0x7f0000000040)={@remote, @empty, 0x0, "4ef7289910e0843a8f13f2fe244b73fb24e0fe49951c925bca907f6a609d8f49"}, 0x3c)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
unshare(0x0)
r4 = fsopen(&(0x7f0000000040)='bpf\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r4, 0x0, &(0x7f0000000000)='nolazytime\x00', 0x0, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
read$FUSE(r5, &(0x7f0000003d00)={0x2020}, 0x2020)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
ioctl$TIOCPKT(r4, 0x5420, &(0x7f0000000100)=0x7f)
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c)
socket$packet(0x11, 0x3, 0x300)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
ioctl$AUTOFS_IOC_FAIL(r0, 0x9361, 0xfffffffffffffff7)

2.241286103s ago: executing program 2 (id=747):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "75287ad1ee602ec4452a04ea7cdcd151bb2cd9893bc31f80718316d9bd3517076db9ad1f6a120d8be6d7f81cd81ec2757d0386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60)
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000004000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2045)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r3, 0x0, 0x0, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x44401, 0x0)
execve(&(0x7f0000000100)='./cgroup/../file0\x00', &(0x7f0000000380)={[&(0x7f0000000140)='\x00', &(0x7f0000000180)='#\x00', &(0x7f0000000200)='\x00', &(0x7f0000000240)='%*],-)-[(%:\x00', &(0x7f0000000280)='-&\x00', &(0x7f00000002c0)='.!)-\x00', &(0x7f0000000300)='},\\*\x1c\x00', &(0x7f0000000340)='/dev/fuse\x00']}, &(0x7f0000000600)={[&(0x7f0000000400)='/dev/ptp0\x00', &(0x7f0000000440)='-!\x00', &(0x7f0000000480)='\\\x00', &(0x7f00000004c0)='(*\x00', &(0x7f0000000500)='(\x00', &(0x7f0000000540)='}*^\x00', &(0x7f0000000580)='/dev/ptp0\x00', &(0x7f00000005c0)='/*-\\\x00']})
write$FUSE_INTERRUPT(r5, &(0x7f00000001c0)={0x10}, 0x10)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6})
dup3(r2, r3, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r6 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r6, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "75287ad1ee602ec4452a04ea7cdcd151bb2cd9893bc31f80718316d9bd3517076db9ad1f6a120d8be6d7f81cd81ec2757d0386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60)
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, &(0x7f0000005380))
r7 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCSIFBR(r7, 0x8941, &(0x7f00000006c0)=@add_del={0x2, &(0x7f0000000680)='wlan1\x00'})

143.697552ms ago: executing program 2 (id=748):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000004c0)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
ioctl$CEC_TRANSMIT(r1, 0xc0386105, &(0x7f0000000140)={0xa4a, 0x4e3bf1ce, 0x1fc, 0xfffffffe, 0x8000, 0x81, "4f1b50acd047e59fcef5394a909a25bb", 0x4, 0x0, 0x6, 0x0, 0x6, 0x3, 0x4})

143.358149ms ago: executing program 3 (id=749):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x20, 0x3a, 0xb, 0x0, 0x8000000, {0x3}, [@typed={0x4}, @typed={0x8, 0x8, 0x0, 0x0, @uid}]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f0000000100)={0x70, 0x0, '\x00', {0x0, @reserved}})
r4 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000600)={'team0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newchain={0x60, 0x64, 0x200, 0x70bd28, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0xffe0, 0x7}, {0x9, 0x1}, {0x0, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0x20, 0x2, [@TCA_FLOWER_KEY_IPV6_DST_MASK={0x14, 0x11, [0xff000000, 0xffffff00, 0x0, 0xffffffff]}, @TCA_FLOWER_KEY_PORT_DST_MIN={0x6, 0x59, 0x4e20}]}}, @TCA_RATE={0x6, 0x5, {0x3}}, @TCA_RATE={0x6, 0x5, {0xa1, 0x81}}]}, 0x60}, 0x1, 0x7a00, 0x0, 0x4010041}, 0x0)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000800)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000100000000000000014100000018001700000000000000006574683a7465616d30"], 0x34}}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r9, 0x6, 0x13, 0x0, 0x0)
r10 = dup(0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000500)=0x20000000005)
r11 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r11, &(0x7f0000000100)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
syz_io_uring_setup(0x111, &(0x7f0000000140)={0x0, 0xe177, 0x0, 0x0, 0x158}, 0x0, &(0x7f0000000240)=<r12=>0x0)
syz_emit_ethernet(0xa2, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='devpts\x00', 0x0, 0x0)
mount$binder(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x1500b4, &(0x7f0000000640)=ANY=[@ANYRESOCT=r12, @ANYRES64=r10, @ANYRESDEC=r10, @ANYRES8=r8, @ANYRES64=r9])
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x104, &(0x7f0000000340)=0xc97, 0x0, 0x4)

143.105608ms ago: executing program 0 (id=750):
r0 = semget$private(0x0, 0x3, 0x8)
semctl$SEM_STAT_ANY(r0, 0x2, 0x14, &(0x7f0000000000)=""/209)
stat(&(0x7f0000000100)='.\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000001c0)={{{@in6=@mcast2, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@ipv4={""/10, ""/2, @private}}, 0x0, @in=@loopback}}, &(0x7f00000002c0)=0xe8)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000300)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000340)=0xc)
semctl$IPC_SET(r0, 0x0, 0x1, &(0x7f0000000380)={{0x2, 0xffffffffffffffff, r1, r2, r3, 0x40, 0x2}, 0xd8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1})
r4 = socket$nl_audit(0x10, 0x3, 0x9)
write(r4, &(0x7f0000000400)="b50e8bcac6c75cfa50", 0x9)
bpf$ENABLE_STATS(0x20, &(0x7f0000000440), 0x4)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$EXT4_IOC_GROUP_EXTEND(r5, 0x40086607, &(0x7f0000000480)=0x29b9)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000004c0), 0x101000, 0x0)
read$FUSE(r6, &(0x7f0000000500)={0x2020}, 0x2020)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r6, 0x4008ae73, &(0x7f0000002540)={0x1, 0x9})
semtimedop(r0, &(0x7f0000002580)=[{0x0, 0x6, 0x800}], 0x1, &(0x7f00000025c0))

49.374858ms ago: executing program 0 (id=751):
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x2, 0x440200)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, &(0x7f00000001c0)={r3, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000380)={0x0, 0x1, &(0x7f00000000c0)=[r4], &(0x7f00000020c0), 0x0, 0x0})
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="2000000010000107000000000000f4ff0a000800200002006e6c383032313100"], 0x20}}, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, 0x0, 0x0)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$SNDCTL_SEQ_GETINCOUNT(r5, 0xc0045103, 0xfffffffffffffffe)
r6 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r6, &(0x7f0000000340)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x10)
r7 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
bind$llc(r7, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x10)
syz_emit_ethernet(0x1f, &(0x7f0000000140)=ANY=[@ANYBLOB="2105000b1e85b11c60b11300001142"], 0x0)
bind$llc(r6, &(0x7f0000000100)={0x1a, 0x6, 0x0, 0x7, 0x80, 0x2, @multicast}, 0x10)
r8 = syz_open_dev$video(&(0x7f0000000040), 0x41a4, 0x0)
ioctl$VIDIOC_ENUMINPUT(r8, 0xc050561a, &(0x7f0000000080)={0x0, "6f2699bf988913927a7f60763318f4d49461aa1a41a0d3264519fee88f3c3a8e"})
r9 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x520000, 0x148, 0x30}, 0x18)
openat(r9, &(0x7f00000000c0)='./file0\x00', 0x109480, 0x1f4)
r10 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f00000000c0)={<r11=>0x0, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x15}}}, 0xf, 0xc9}, &(0x7f00000001c0)=0x90)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r10, 0x84, 0x6, &(0x7f0000000200)={r11, @in={{0x2, 0x4e23, @remote}}}, &(0x7f00000002c0)=0x84)
socket$inet6_udp(0xa, 0x2, 0x0)

0s ago: executing program 2 (id=752):
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private2}}}, 0x30)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
chdir(&(0x7f0000000100)='./file0\x00')
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

kernel console output (not intermixed with test programs):

="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   89.342540][ T6641] serio: Serial port ptm0
[   89.519003][   T39] audit: type=1400 audit(1729546615.489:384): avc:  denied  { unmount } for  pid=6269 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   90.645774][   T39] audit: type=1400 audit(1729546616.609:385): avc:  denied  { ioctl } for  pid=6669 comm="syz.3.370" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 ioctlcmd=0x9425 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   90.709630][ T5351] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   90.713377][ T5351] Bluetooth: hci3: Injecting HCI hardware error event
[   90.718321][ T4777] Bluetooth: hci3: hardware error 0x00
[   91.356077][   T39] audit: type=1400 audit(1729546617.319:386): avc:  denied  { bind } for  pid=6680 comm="syz.0.373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   91.362883][ T6681] No control pipe specified
[   91.467449][ T6683] netlink: 4 bytes leftover after parsing attributes in process `syz.3.374'.
[   91.480242][ T6683] FAULT_INJECTION: forcing a failure.
[   91.480242][ T6683] name failslab, interval 1, probability 0, space 0, times 0
[   91.484390][ T6683] CPU: 3 UID: 0 PID: 6683 Comm: syz.3.374 Not tainted 6.12.0-rc4-syzkaller #0
[   91.487209][ T6683] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.491133][ T6683] Call Trace:
[   91.492309][ T6683]  <TASK>
[   91.493328][ T6683]  dump_stack_lvl+0x16c/0x1f0
[   91.495002][ T6683]  should_fail_ex+0x497/0x5b0
[   91.496628][ T6683]  ? fs_reclaim_acquire+0xae/0x150
[   91.498375][ T6683]  should_failslab+0xc2/0x120
[   91.500004][ T6683]  kmem_cache_alloc_node_noprof+0x71/0x310
[   91.501997][ T6683]  ? __alloc_skb+0x2b1/0x380
[   91.503410][ T6683]  __alloc_skb+0x2b1/0x380
[   91.504903][ T6683]  ? __pfx___alloc_skb+0x10/0x10
[   91.506506][ T6683]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   91.508571][ T6683]  netlink_alloc_large_skb+0x69/0x130
[   91.510402][ T6683]  netlink_sendmsg+0x689/0xd70
[   91.512054][ T6683]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.513857][ T6683]  ? __import_iovec+0x1fd/0x6e0
[   91.515554][ T6683]  ____sys_sendmsg+0xaaf/0xc90
[   91.517196][ T6683]  ? copy_msghdr_from_user+0x10b/0x160
[   91.519104][ T6683]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.521023][ T6683]  ? __pfx___lock_acquire+0x10/0x10
[   91.522903][ T6683]  ___sys_sendmsg+0x135/0x1e0
[   91.524554][ T6683]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.526337][ T6683]  ? lock_acquire+0x2f/0xb0
[   91.527806][ T6683]  ? __fget_files+0x40/0x3f0
[   91.529360][ T6683]  ? fdget+0x176/0x210
[   91.530700][ T6683]  __sys_sendmsg+0x117/0x1f0
[   91.532129][ T6683]  ? __pfx___sys_sendmsg+0x10/0x10
[   91.533518][ T6683]  ? __fget_files+0x244/0x3f0
[   91.535121][ T6683]  do_syscall_64+0xcd/0x250
[   91.536418][ T6683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.538038][ T6683] RIP: 0033:0x7f1b77d7dff9
[   91.539235][ T6683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.544237][ T6683] RSP: 002b:00007f1b78b78038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   91.546415][ T6683] RAX: ffffffffffffffda RBX: 00007f1b77f35f80 RCX: 00007f1b77d7dff9
[   91.548438][ T6683] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[   91.550526][ T6683] RBP: 00007f1b78b78090 R08: 0000000000000000 R09: 0000000000000000
[   91.552643][ T6683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.554762][ T6683] R13: 0000000000000000 R14: 00007f1b77f35f80 R15: 00007ffcbf24d4f8
[   91.556846][ T6683]  </TASK>
[   91.593342][ T6688] fuse: Unknown parameter 'group_id00000000000000000000'
[   91.837812][ T5699] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[   92.000480][ T5699] usb 6-1: config 0 has no interfaces?
[   92.097107][ T5699] usb 6-1: New USB device found, idVendor=1668, idProduct=0323, bcdDevice=5f.ca
[   92.099674][ T5699] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.102578][ T5699] usb 6-1: config 0 descriptor??
[   92.161606][   T39] audit: type=1400 audit(1729546618.129:387): avc:  denied  { ioctl } for  pid=6698 comm="syz.2.380" path="socket:[17128]" dev="sockfs" ino=17128 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   92.401091][ T6702] input: syz0 as /devices/virtual/input/input6
[   92.403987][ T6702] input: failed to attach handler leds to device input6, error: -6
[   92.573696][ T6706] syz.3.381: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   92.584467][ T6706] CPU: 0 UID: 0 PID: 6706 Comm: syz.3.381 Not tainted 6.12.0-rc4-syzkaller #0
[   92.586858][ T6706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.589607][ T6706] Call Trace:
[   92.590499][ T6706]  <TASK>
[   92.591316][ T6706]  dump_stack_lvl+0x16c/0x1f0
[   92.592515][ T6706]  warn_alloc+0x24d/0x3a0
[   92.593667][ T6706]  ? __pfx_warn_alloc+0x10/0x10
[   92.595049][ T6706]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   92.596763][ T6706]  ? kasan_save_stack+0x42/0x60
[   92.598087][ T6706]  ? kasan_save_stack+0x33/0x60
[   92.599410][ T6706]  ? kasan_save_track+0x14/0x30
[   92.600712][ T6706]  ? __kasan_kmalloc+0xaa/0xb0
[   92.602159][ T6706]  ? xskq_create+0x52/0x1d0
[   92.603504][ T6706]  ? do_sock_setsockopt+0x222/0x480
[   92.604837][ T6706]  ? __sys_setsockopt+0x1a4/0x270
[   92.606223][ T6706]  ? __x64_sys_setsockopt+0xbd/0x160
[   92.607712][ T6706]  __vmalloc_node_range_noprof+0x11a7/0x15a0
[   92.609299][ T6706]  ? xskq_create+0xfb/0x1d0
[   92.610560][ T6706]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   92.612242][ T6706]  ? xskq_create+0xfb/0x1d0
[   92.613463][ T6706]  vmalloc_user_noprof+0x6b/0x90
[   92.614835][ T6706]  ? xskq_create+0xfb/0x1d0
[   92.616074][ T6706]  xskq_create+0xfb/0x1d0
[   92.617240][ T6706]  xsk_setsockopt+0x757/0xa10
[   92.618503][ T6706]  ? __pfx_xsk_setsockopt+0x10/0x10
[   92.619130][ T6708] 9pnet_fd: Insufficient options for proto=fd
[   92.619909][ T6706]  ? selinux_socket_setsockopt+0x6a/0x80
[   92.623185][ T6706]  ? __pfx_xsk_setsockopt+0x10/0x10
[   92.624597][ T6706]  do_sock_setsockopt+0x222/0x480
[   92.625978][ T6706]  ? __pfx_do_sock_setsockopt+0x10/0x10
[   92.627494][ T6706]  ? fdget+0x176/0x210
[   92.628620][ T6706]  __sys_setsockopt+0x1a4/0x270
[   92.629957][ T6706]  ? __pfx___sys_setsockopt+0x10/0x10
[   92.631431][ T6706]  ? __pfx___x64_sys_futex+0x10/0x10
[   92.632903][ T6706]  ? ksys_write+0x1ad/0x260
[   92.634171][ T6706]  ? __pfx_ksys_write+0x10/0x10
[   92.635573][ T6706]  __x64_sys_setsockopt+0xbd/0x160
[   92.637317][ T6706]  ? do_syscall_64+0x91/0x250
[   92.638994][ T6706]  ? lockdep_hardirqs_on+0x7c/0x110
[   92.640720][ T6706]  do_syscall_64+0xcd/0x250
[   92.642316][ T6706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.644391][ T6706] RIP: 0033:0x7f1b77d7dff9
[   92.645957][ T6706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.652022][ T6706] RSP: 002b:00007f1b78b78038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   92.654344][ T6706] RAX: ffffffffffffffda RBX: 00007f1b77f35f80 RCX: 00007f1b77d7dff9
[   92.656487][ T6706] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000009
[   92.658449][ T6706] RBP: 00007f1b77df0296 R08: 0000000000000020 R09: 0000000000000000
[   92.660423][ T6706] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000
[   92.662551][ T6706] R13: 0000000000000000 R14: 00007f1b77f35f80 R15: 00007ffcbf24d4f8
[   92.664744][ T6706]  </TASK>
[   92.665691][    C0] vkms_vblank_simulate: vblank timer overrun
[   92.678109][ T6706] Mem-Info:
[   92.679042][ T6706] active_anon:14510 inactive_anon:0 isolated_anon:0
[   92.679042][ T6706]  active_file:17056 inactive_file:38359 isolated_file:0
[   92.679042][ T6706]  unevictable:1768 dirty:385 writeback:0
[   92.679042][ T6706]  slab_reclaimable:10184 slab_unreclaimable:68040
[   92.679042][ T6706]  mapped:21986 shmem:5159 pagetables:746
[   92.679042][ T6706]  sec_pagetables:305 bounce:0
[   92.679042][ T6706]  kernel_misc_reclaimable:0
[   92.679042][ T6706]  free:480396 free_pcp:8638 free_cma:0
[   92.690815][ T6706] Node 0 active_anon:58040kB inactive_anon:0kB active_file:68224kB inactive_file:153364kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:87944kB dirty:1540kB writeback:0kB shmem:17100kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11248kB pagetables:3108kB sec_pagetables:1220kB all_unreclaimable? no
[   92.699413][ T6706] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[   92.710906][ T6706] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   92.718541][ T6706] lowmem_reserve[]: 0 1214 0 0 0
[   92.720192][ T6706] Node 0 DMA32 free:302264kB boost:0kB min:27636kB low:34544kB high:41452kB reserved_highatomic:0KB active_anon:58272kB inactive_anon:0kB active_file:68224kB inactive_file:153368kB unevictable:3536kB writepending:1540kB present:2080628kB managed:1272188kB mlocked:0kB bounce:0kB free_pcp:30092kB local_pcp:3660kB free_cma:0kB
[   92.729993][ T6706] lowmem_reserve[]: 0 0 0 0 0
[   92.731257][ T6706] Node 1 Normal free:1603452kB boost:0kB min:39600kB low:49500kB high:59400kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:4360kB local_pcp:956kB free_cma:0kB
[   92.738950][ T6706] lowmem_reserve[]: 0 0 0 0 0
[   92.740280][ T6706] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   92.743669][ T6706] Node 0 DMA32: 378*4kB (UME) 357*8kB (UME) 299*16kB (UME) 469*32kB (UME) 818*64kB (UME) 455*128kB (UME) 188*256kB (UM) 43*512kB (UM) 15*1024kB (UM) 18*2048kB (UM) 11*4096kB (UM) = 302176kB
[   92.751805][ T6706] Node 1 Normal: 7*4kB (UME) 36*8kB (UME) 14*16kB (UME) 109*32kB (UME) 51*64kB (UME) 18*128kB (UME) 6*256kB (U) 2*512kB (E) 4*1024kB (UME) 1*2048kB (U) 387*4096kB (UM) = 1603452kB
[   92.758060][ T6706] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   92.760639][ T6706] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   92.763093][ T6706] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   92.765625][ T6706] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   92.768614][ T6706] 60557 total pagecache pages
[   92.769984][ T6706] 0 pages in swap cache
[   92.771089][ T6706] Free swap  = 124728kB
[   92.772213][ T6706] Total swap = 124996kB
[   92.773334][ T6706] 1048443 pages RAM
[   92.774413][ T6706] 0 pages HighMem/MovableOnly
[   92.775755][ T6706] 281075 pages reserved
[   92.777195][ T6706] 0 pages cma reserved
[   92.789286][ T4777] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[   92.969376][ T6718] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=30290 sclass=netlink_route_socket pid=6718 comm=syz.3.386
[   93.025921][   T39] kauditd_printk_skb: 4 callbacks suppressed
[   93.025976][   T39] audit: type=1400 audit(1729546618.989:392): avc:  denied  { shutdown } for  pid=6716 comm="syz.3.386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   93.303508][   T39] audit: type=1400 audit(1729546619.269:393): avc:  denied  { cmd } for  pid=6725 comm="syz.3.387" path="socket:[16034]" dev="sockfs" ino=16034 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   93.901871][ T6736] overlayfs: missing 'lowerdir'
[   93.920392][   T39] audit: type=1400 audit(1729546619.889:394): avc:  denied  { ioctl } for  pid=6734 comm="syz.2.390" path="socket:[17165]" dev="sockfs" ino=17165 ioctlcmd=0x89ef scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   94.303652][ T6746] netlink: 40 bytes leftover after parsing attributes in process `syz.0.393'.
[   94.406066][ T6748] syzkaller0: entered allmulticast mode
[   94.411350][ T6748] syzkaller0: mtu greater than device maximum
[   94.537534][ T6750] netlink: 12 bytes leftover after parsing attributes in process `syz.0.393'.
[   94.947707][    C0] vkms_vblank_simulate: vblank timer overrun
[   95.036174][   T63] usb 6-1: USB disconnect, device number 4
[   95.054933][ T6754] netlink: 8 bytes leftover after parsing attributes in process `syz.3.396'.
[   95.072767][ T6756] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=30290 sclass=netlink_route_socket pid=6756 comm=syz.1.404
[   95.308151][ T6761] fuse: Bad value for 'user_id'
[   95.309851][ T6761] fuse: Bad value for 'user_id'
[   95.341510][ T6763] netlink: 'syz.0.397': attribute type 1 has an invalid length.
[   95.346814][ T6763] netlink: 168864 bytes leftover after parsing attributes in process `syz.0.397'.
[   95.351410][ T6763] netlink: 1 bytes leftover after parsing attributes in process `syz.0.397'.
[   96.085113][   T39] audit: type=1400 audit(1729546622.049:395): avc:  denied  { mount } for  pid=6783 comm="syz.3.406" name="/" dev="ramfs" ino=17232 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   96.784590][   T39] audit: type=1400 audit(1729546622.749:396): avc:  denied  { unmount } for  pid=6269 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   96.803993][ T6794] fuse: Bad value for 'user_id'
[   96.805962][ T6794] fuse: Bad value for 'user_id'
[   96.916890][ T6799] serio: Serial port ptm0
[   97.027924][ T4777] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   97.031751][ T4777] Bluetooth: hci0: Injecting HCI hardware error event
[   97.035678][ T4777] Bluetooth: hci0: hardware error 0x00
[   97.245123][ T6805] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=30290 sclass=netlink_route_socket pid=6805 comm=syz.2.410
[   97.255803][ T5351] Bluetooth: hci2: unexpected event for opcode 0x1003
[   97.517361][ T6817] netlink: zone id is out of range
[   97.519336][ T6817] netlink: zone id is out of range
[   97.520853][ T6817] netlink: zone id is out of range
[   97.522281][ T6817] netlink: zone id is out of range
[   97.523706][ T6817] netlink: zone id is out of range
[   97.525052][ T6817] netlink: zone id is out of range
[   97.526636][ T6817] netlink: zone id is out of range
[   97.528170][ T6817] netlink: zone id is out of range
[   97.529607][ T6817] netlink: zone id is out of range
[   98.588102][ T6836] fuse: Bad value for 'fd'
[   98.989853][ T6848] serio: Serial port ptm0
[   99.109377][ T4777] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[   99.118044][ T4777] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   99.120336][ T4777] Bluetooth: hci1: Injecting HCI hardware error event
[   99.123646][ T4777] Bluetooth: hci1: hardware error 0x00
[   99.620762][   T39] audit: type=1400 audit(1729546625.589:397): avc:  denied  { setcheckreqprot } for  pid=6863 comm="syz.0.426" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   99.620913][ T6864] SELinux: syz.0.426 (6864) set checkreqprot to 1. This is no longer supported.
[   99.642986][ T6864] x_tables: ip_tables: udp match: only valid for protocol 17
[   99.673538][ T6869] fuse: Bad value for 'fd'
[   99.682552][ T6868] random: crng reseeded on system resumption
[   99.711001][ T6871] No control pipe specified
[  100.585027][   T55] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  100.760308][   T55] usb 7-1: config 0 has no interfaces?
[  100.761774][   T55] usb 7-1: New USB device found, idVendor=1668, idProduct=0323, bcdDevice=5f.ca
[  100.764146][   T55] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.767350][   T55] usb 7-1: config 0 descriptor??
[  101.040509][ T6886] input: syz0 as /devices/virtual/input/input7
[  101.042904][ T6886] input: failed to attach handler leds to device input7, error: -6
[  101.197805][ T4777] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  101.268726][ T4777] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  101.272039][ T4777] Bluetooth: hci2: Injecting HCI hardware error event
[  101.276358][ T5351] Bluetooth: hci2: hardware error 0x00
[  101.421650][ T6898] fuse: Bad value for 'fd'
[  101.453830][   T39] audit: type=1400 audit(1729546627.419:398): avc:  denied  { connect } for  pid=6892 comm="syz.3.437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  102.629402][ T6925] fuse: Bad value for 'fd'
[  102.785580][ T6931] syzkaller1: entered promiscuous mode
[  102.787881][ T6931] syzkaller1: entered allmulticast mode
[  103.347897][ T5351] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  103.420471][    T8] usb 7-1: USB disconnect, device number 2
[  103.448139][ T6933] netlink: 'syz.2.449': attribute type 1 has an invalid length.
[  103.450130][ T6933] netlink: 216 bytes leftover after parsing attributes in process `syz.2.449'.
[  103.873631][ T6940] random: crng reseeded on system resumption
[  104.765906][   T39] audit: type=1400 audit(1729546630.729:399): avc:  denied  { execute_no_trans } for  pid=6955 comm="syz.2.457" path="/121/file0" dev="tmpfs" ino=665 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  105.465788][ T6968] syzkaller1: entered promiscuous mode
[  105.467272][ T6968] syzkaller1: entered allmulticast mode
[  105.901103][   T39] audit: type=1326 audit(1729546631.859:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6970 comm="syz.2.461" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17be57dff9 code=0x0
[  105.959342][   T39] audit: type=1400 audit(1729546631.929:401): avc:  denied  { connect } for  pid=6972 comm="syz.3.462" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  106.705969][ T6988] netlink: 8 bytes leftover after parsing attributes in process `syz.0.466'.
[  106.708598][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.466'.
[  107.053786][   T39] audit: type=1326 audit(1729546633.019:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6998 comm="syz.2.470" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17be57dff9 code=0x7ffc0000
[  107.060276][   T39] audit: type=1326 audit(1729546633.019:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6998 comm="syz.2.470" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17be57dff9 code=0x7ffc0000
[  107.065929][   T39] audit: type=1326 audit(1729546633.019:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6998 comm="syz.2.470" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f17be57dff9 code=0x7ffc0000
[  107.072036][   T39] audit: type=1326 audit(1729546633.019:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6998 comm="syz.2.470" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17be57dff9 code=0x7ffc0000
[  107.078359][   T39] audit: type=1326 audit(1729546633.019:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6998 comm="syz.2.470" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17be57dff9 code=0x7ffc0000
[  107.084615][   T39] audit: type=1326 audit(1729546633.019:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6998 comm="syz.2.470" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f17be57c990 code=0x7ffc0000
[  107.091240][   T39] audit: type=1326 audit(1729546633.019:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6998 comm="syz.2.470" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17be57dff9 code=0x7ffc0000
[  107.153228][ T7000] UBIFS error (pid: 7000): cannot open "./file0", error -22
[  107.466779][ T7007] capability: warning: `syz.3.471' uses 32-bit capabilities (legacy support in use)
[  109.452321][ T7056] overlayfs: missing 'lowerdir'
[  109.523372][ T7059] fuse: Bad value for 'fd'
[  109.536071][ T7059] ipvlan2: entered promiscuous mode
[  109.841704][ T7068] FAULT_INJECTION: forcing a failure.
[  109.841704][ T7068] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.846389][ T7068] CPU: 3 UID: 0 PID: 7068 Comm: syz.0.490 Not tainted 6.12.0-rc4-syzkaller #0
[  109.849421][ T7068] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.853081][ T7068] Call Trace:
[  109.854244][ T7068]  <TASK>
[  109.855339][ T7068]  dump_stack_lvl+0x16c/0x1f0
[  109.857005][ T7068]  should_fail_ex+0x497/0x5b0
[  109.858653][ T7068]  _copy_from_iter+0x2a1/0x1540
[  109.860363][ T7068]  ? __pfx__copy_from_iter+0x10/0x10
[  109.862220][ T7068]  ? __virt_addr_valid+0x1a4/0x590
[  109.864016][ T7068]  ? __virt_addr_valid+0x5e/0x590
[  109.865788][ T7068]  ? __phys_addr_symbol+0x30/0x80
[  109.867565][ T7068]  ? __check_object_size+0x488/0x710
[  109.869477][ T7068]  netlink_sendmsg+0x813/0xd70
[  109.871190][ T7068]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.873026][ T7068]  ? __import_iovec+0x1fd/0x6e0
[  109.874784][ T7068]  ____sys_sendmsg+0xaaf/0xc90
[  109.876465][ T7068]  ? copy_msghdr_from_user+0x10b/0x160
[  109.878209][ T7068]  ? __pfx_____sys_sendmsg+0x10/0x10
[  109.880071][ T7068]  ? __pfx___lock_acquire+0x10/0x10
[  109.881887][ T7068]  ___sys_sendmsg+0x135/0x1e0
[  109.883536][ T7068]  ? __pfx____sys_sendmsg+0x10/0x10
[  109.885379][ T7068]  ? lock_acquire+0x2f/0xb0
[  109.886979][ T7068]  ? __fget_files+0x40/0x3f0
[  109.888367][ T7068]  ? fdget+0x176/0x210
[  109.889443][ T7068]  __sys_sendmsg+0x117/0x1f0
[  109.890681][ T7068]  ? __pfx___sys_sendmsg+0x10/0x10
[  109.892045][ T7068]  ? __fget_files+0x244/0x3f0
[  109.893296][ T7068]  do_syscall_64+0xcd/0x250
[  109.894519][ T7068]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.896063][ T7068] RIP: 0033:0x7ff28b97dff9
[  109.897243][ T7068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.902756][ T7068] RSP: 002b:00007ff28c7c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  109.902774][ T7068] RAX: ffffffffffffffda RBX: 00007ff28bb35f80 RCX: 00007ff28b97dff9
[  109.902781][ T7068] RDX: 0000000020050800 RSI: 00000000200000c0 RDI: 0000000000000003
[  109.902788][ T7068] RBP: 00007ff28c7c3090 R08: 0000000000000000 R09: 0000000000000000
[  109.902795][ T7068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.902802][ T7068] R13: 0000000000000000 R14: 00007ff28bb35f80 R15: 00007ffd98b77388
[  109.902814][ T7068]  </TASK>
[  110.278130][ T7081] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  110.281800][ T7081] netlink: 32 bytes leftover after parsing attributes in process `syz.2.493'.
[  110.284783][ T7081] netlink: 32 bytes leftover after parsing attributes in process `syz.2.493'.
[  110.288067][ T7081] vivid-000: disconnect
[  110.302352][   T39] kauditd_printk_skb: 8 callbacks suppressed
[  110.302728][   T39] audit: type=1400 audit(1729546636.269:417): avc:  denied  { write } for  pid=7080 comm="syz.2.493" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  110.313738][   T39] audit: type=1400 audit(1729546636.269:418): avc:  denied  { read } for  pid=7080 comm="syz.2.493" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  110.448739][ T7080] vivid-000: reconnect
[  110.483067][ T7083] fuse: Invalid rootmode
[  112.043788][   T39] audit: type=1400 audit(1729546638.009:419): avc:  denied  { write } for  pid=7104 comm="syz.2.502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  112.115179][ T7105] xt_CT: No such helper "pptp"
[  112.317157][ T7119] netlink: 8 bytes leftover after parsing attributes in process `syz.0.503'.
[  113.397649][   T39] audit: type=1400 audit(1729546639.359:420): avc:  denied  { connect } for  pid=7141 comm="syz.2.513" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  113.419572][   T39] audit: type=1400 audit(1729546639.389:421): avc:  denied  { getopt } for  pid=7141 comm="syz.2.513" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  113.425015][ T7143] netlink: 'syz.2.513': attribute type 10 has an invalid length.
[  113.428517][ T7143] hsr0: entered promiscuous mode
[  113.433643][ T7143] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  113.436795][ T7143] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  113.441527][ T7143] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  113.444589][ T7143] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  113.743722][   T39] audit: type=1400 audit(1729546639.709:422): avc:  denied  { write } for  pid=7148 comm="syz.2.515" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  113.880294][ T7156] netlink: 64 bytes leftover after parsing attributes in process `syz.2.517'.
[  114.074043][   T39] audit: type=1400 audit(1729546640.039:423): avc:  denied  { bind } for  pid=7157 comm="syz.2.518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  114.075431][ T7159] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma?
[  114.456374][   T39] audit: type=1400 audit(1729546640.419:424): avc:  denied  { read } for  pid=7169 comm="syz.2.521" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  114.467862][   T39] audit: type=1400 audit(1729546640.419:425): avc:  denied  { open } for  pid=7169 comm="syz.2.521" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  114.565718][   T39] audit: type=1400 audit(1729546640.529:426): avc:  denied  { bind } for  pid=7175 comm="syz.1.522" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  114.631421][ T7179] netlink: 4 bytes leftover after parsing attributes in process `syz.1.522'.
[  114.684932][ T7182] fuse: Bad value for 'rootmode'
[  114.937829][   T55] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  115.079024][   T55] usb 6-1: device descriptor read/64, error -71
[  115.327799][   T55] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  115.467842][   T55] usb 6-1: device descriptor read/64, error -71
[  115.677339][   T55] usb usb6-port1: attempt power cycle
[  115.712516][   T39] kauditd_printk_skb: 6 callbacks suppressed
[  115.712527][   T39] audit: type=1400 audit(1729546641.679:433): avc:  denied  { read } for  pid=7208 comm="syz.2.533" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  115.798804][ T7212] netlink: 8 bytes leftover after parsing attributes in process `syz.3.531'.
[  116.037773][   T55] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  116.040782][   T39] audit: type=1400 audit(1729546642.009:434): avc:  denied  { unlink } for  pid=5349 comm="syz-executor" name="file0" dev="tmpfs" ino=797 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  116.058340][   T55] usb 6-1: device descriptor read/8, error -71
[  116.070069][ T7216] fuse: Bad value for 'rootmode'
[  116.297768][   T55] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  116.364418][   T55] usb 6-1: device descriptor read/8, error -71
[  116.405600][   T39] audit: type=1400 audit(1729546642.369:435): avc:  denied  { map } for  pid=7219 comm="syz.0.536" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=732 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  116.432977][   T39] audit: type=1400 audit(1729546642.399:436): avc:  denied  { map } for  pid=7219 comm="syz.0.536" path="socket:[19999]" dev="sockfs" ino=19999 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  116.495576][ T7223] fuse: Unknown parameter 'use00000000000000000000'
[  116.648889][   T55] usb usb6-port1: unable to enumerate USB device
[  117.140497][ T7219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  117.480207][   T39] audit: type=1400 audit(1729546643.449:437): avc:  denied  { mounton } for  pid=7233 comm="syz.3.542" path="/71/file0" dev="tmpfs" ino=402 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  117.488088][   T39] audit: type=1400 audit(1729546643.449:438): avc:  denied  { mount } for  pid=7233 comm="syz.3.542" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  117.493939][   T39] audit: type=1400 audit(1729546643.459:439): avc:  denied  { read } for  pid=7233 comm="syz.3.542" name="file0" dev="tmpfs" ino=402 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  117.500307][   T39] audit: type=1400 audit(1729546643.459:440): avc:  denied  { watch } for  pid=7233 comm="syz.3.542" path="/71/file0" dev="tmpfs" ino=402 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  117.724999][   T39] audit: type=1400 audit(1729546643.689:441): avc:  denied  { unmount } for  pid=5349 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  117.992726][ T7242] overlayfs: missing 'lowerdir'
[  118.505122][ T7250] fuse: Unknown parameter 'use00000000000000000000'
[  119.037754][ T1764] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  119.136151][ T7267] netlink: 8 bytes leftover after parsing attributes in process `syz.0.552'.
[  119.141806][   T39] audit: type=1326 audit(1729546645.109:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.0.552" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff28b97dff9 code=0x0
[  119.187805][ T1764] usb 8-1: Using ep0 maxpacket: 16
[  119.192802][ T7256] FAULT_INJECTION: forcing a failure.
[  119.192802][ T7256] name failslab, interval 1, probability 0, space 0, times 0
[  119.196269][ T7256] CPU: 3 UID: 0 PID: 7256 Comm: syz.3.546 Not tainted 6.12.0-rc4-syzkaller #0
[  119.198735][ T7256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.201547][ T7256] Call Trace:
[  119.202444][ T7256]  <TASK>
[  119.203249][ T7256]  dump_stack_lvl+0x16c/0x1f0
[  119.204516][ T7256]  should_fail_ex+0x497/0x5b0
[  119.205806][ T7256]  should_failslab+0xc2/0x120
[  119.207035][ T7256]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  119.208471][ T7256]  ? skb_clone+0x190/0x3f0
[  119.209671][ T7256]  skb_clone+0x190/0x3f0
[  119.210829][ T7256]  netlink_deliver_tap+0xab3/0xd90
[  119.212189][ T7256]  netlink_unicast+0x5e1/0x7f0
[  119.213468][ T7256]  ? __pfx_netlink_unicast+0x10/0x10
[  119.214896][ T7256]  netlink_sendmsg+0x8b8/0xd70
[  119.216184][ T7256]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.217591][ T7256]  ? __import_iovec+0x1fd/0x6e0
[  119.218897][ T7256]  ____sys_sendmsg+0xaaf/0xc90
[  119.220071][ T7256]  ? copy_msghdr_from_user+0x10b/0x160
[  119.221506][ T7256]  ? __pfx_____sys_sendmsg+0x10/0x10
[  119.222930][ T7256]  ? __pfx___lock_acquire+0x10/0x10
[  119.224304][ T7256]  ___sys_sendmsg+0x135/0x1e0
[  119.225557][ T7256]  ? __pfx____sys_sendmsg+0x10/0x10
[  119.226941][ T7256]  ? lock_acquire+0x2f/0xb0
[  119.228141][ T7256]  ? __fget_files+0x40/0x3f0
[  119.229382][ T7256]  ? fdget+0x176/0x210
[  119.230481][ T7256]  __sys_sendmsg+0x117/0x1f0
[  119.231717][ T7256]  ? __pfx___sys_sendmsg+0x10/0x10
[  119.233072][ T7256]  ? __fget_files+0x244/0x3f0
[  119.234346][ T7256]  do_syscall_64+0xcd/0x250
[  119.235695][ T7256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.237253][ T7256] RIP: 0033:0x7f1b77d7dff9
[  119.238607][ T7256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.243592][ T7256] RSP: 002b:00007f1b78b57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  119.245763][ T7256] RAX: ffffffffffffffda RBX: 00007f1b77f36058 RCX: 00007f1b77d7dff9
[  119.247854][ T7256] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  119.249911][ T7256] RBP: 00007f1b78b57090 R08: 0000000000000000 R09: 0000000000000000
[  119.251998][ T7256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.254072][ T7256] R13: 0000000000000000 R14: 00007f1b77f36058 R15: 00007ffcbf24d4f8
[  119.256215][ T7256]  </TASK>
[  119.257177][    C3] vkms_vblank_simulate: vblank timer overrun
[  119.508044][ T7271] Bluetooth: MGMT ver 1.23
[  119.565134][ T7272] netlink: 8 bytes leftover after parsing attributes in process `syz.1.553'.
[  119.859537][ T7277] netlink: 8 bytes leftover after parsing attributes in process `syz.2.554'.
[  120.327058][ T7280] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  120.711529][ T7286] sp0: Synchronizing with TNC
[  121.246614][ T7296] Sensor A: =================  START STATUS  =================
[  121.249296][ T7296] Sensor A: Test Pattern: 75% Colorbar
[  121.251862][ T7296] Sensor A: Show Information: All
[  121.253306][ T7296] Sensor A: Vertical Flip: false
[  121.254712][ T7296] Sensor A: Horizontal Flip: false
[  121.256164][ T7296] Sensor A: Brightness: 128
[  121.257466][ T7296] Sensor A: Contrast: 128
[  121.259206][ T7296] Sensor A: Hue: 0
[  121.260533][ T7296] Sensor A: Saturation: 128
[  121.262024][ T7296] Sensor A: ==================  END STATUS  ==================
[  121.393172][ T7284] [U] è
[  121.530357][ T1764] usb 8-1: unable to get BOS descriptor or descriptor too short
[  121.533014][ T1764] usb 8-1: unable to read config index 0 descriptor/start: -71
[  121.535140][ T1764] usb 8-1: can't read configurations, error -71
[  121.604714][ T7304] fuse: Unknown parameter 'user_i00000000000000000000'
[  121.925871][    T8] IPVS: starting estimator thread 0...
[  121.986123][   T39] kauditd_printk_skb: 2 callbacks suppressed
[  121.986139][   T39] audit: type=1400 audit(1729546647.949:445): avc:  denied  { map } for  pid=7314 comm="syz.3.566" path="socket:[21758]" dev="sockfs" ino=21758 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  121.994815][   T39] audit: type=1400 audit(1729546647.949:446): avc:  denied  { read accept } for  pid=7314 comm="syz.3.566" path="socket:[21758]" dev="sockfs" ino=21758 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  122.017917][ T7312] IPVS: using max 34 ests per chain, 81600 per kthread
[  122.095214][   T39] audit: type=1400 audit(1729546648.059:447): avc:  denied  { connect } for  pid=7314 comm="syz.3.566" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  122.095238][ T7318] ax25_connect(): syz.3.566 uses autobind, please contact jreuter@yaina.de
[  122.106640][   T39] audit: type=1400 audit(1729546648.069:448): avc:  denied  { write } for  pid=7316 comm="syz.1.567" name="usbmon7" dev="devtmpfs" ino=743 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  122.113105][   T39] audit: type=1400 audit(1729546648.079:449): avc:  denied  { create } for  pid=7316 comm="syz.1.567" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  122.119060][   T39] audit: type=1400 audit(1729546648.079:450): avc:  denied  { getopt } for  pid=7316 comm="syz.1.567" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  122.897238][   T39] audit: type=1400 audit(1729546648.859:451): avc:  denied  { ioctl } for  pid=7324 comm="syz.3.569" path="/dev/nvram" dev="devtmpfs" ino=631 ioctlcmd=0x941d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  123.088664][   T39] audit: type=1400 audit(1729546649.059:452): avc:  denied  { watch watch_reads } for  pid=7334 comm="syz.2.573" path="/proc/486/net/unix" dev="proc" ino=4026532921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  123.092300][ T7339] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  123.139605][ T7344] binder: 7341:7344 ioctl c0306201 20000080 returned -14
[  123.144507][ T7344] binder: 7341:7344 ioctl 8010500c 20000100 returned -22
[  123.558795][ T7350] IPVS: Unknown mcast interface: hsr0
[  124.446198][   T39] audit: type=1400 audit(1729546650.409:453): avc:  denied  { watch watch_reads } for  pid=7364 comm="syz.1.581" path=2F6D656D66643A2D42D54E49C56A9A707070F00884A26D202864656C6574656429 dev="tmpfs" ino=1046 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  124.455610][   T39] audit: type=1400 audit(1729546650.419:454): avc:  denied  { setattr } for  pid=7364 comm="syz.1.581" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  124.518430][ T7365] syz.1.581 (7365) used greatest stack depth: 20368 bytes left
[  124.660706][ T7371] FAULT_INJECTION: forcing a failure.
[  124.660706][ T7371] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.664739][ T7371] CPU: 3 UID: 0 PID: 7371 Comm: syz.1.583 Not tainted 6.12.0-rc4-syzkaller #0
[  124.666924][ T7371] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.666935][ T7371] Call Trace:
[  124.666939][ T7371]  <TASK>
[  124.666944][ T7371]  dump_stack_lvl+0x16c/0x1f0
[  124.672425][ T7371]  should_fail_ex+0x497/0x5b0
[  124.673634][ T7371]  _copy_from_iter+0x2a1/0x1540
[  124.674889][ T7371]  ? __pfx__copy_from_iter+0x10/0x10
[  124.676240][ T7371]  ? __virt_addr_valid+0x1a4/0x590
[  124.677533][ T7371]  ? __virt_addr_valid+0x5e/0x590
[  124.678820][ T7371]  ? __phys_addr_symbol+0x30/0x80
[  124.680075][ T7371]  ? __check_object_size+0x488/0x710
[  124.681390][ T7371]  netlink_sendmsg+0x813/0xd70
[  124.682589][ T7371]  ? __pfx_netlink_sendmsg+0x10/0x10
[  124.683935][ T7371]  ? __import_iovec+0x1fd/0x6e0
[  124.685152][ T7371]  ____sys_sendmsg+0xaaf/0xc90
[  124.686340][ T7371]  ? copy_msghdr_from_user+0x10b/0x160
[  124.687709][ T7371]  ? __pfx_____sys_sendmsg+0x10/0x10
[  124.689087][ T7371]  ? __pfx___lock_acquire+0x10/0x10
[  124.690360][ T7371]  ___sys_sendmsg+0x135/0x1e0
[  124.691514][ T7371]  ? __pfx____sys_sendmsg+0x10/0x10
[  124.692763][ T7371]  ? lock_acquire+0x2f/0xb0
[  124.693857][ T7371]  ? __fget_files+0x40/0x3f0
[  124.695096][ T7371]  ? fdget+0x176/0x210
[  124.696135][ T7371]  __sys_sendmsg+0x117/0x1f0
[  124.697318][ T7371]  ? __pfx___sys_sendmsg+0x10/0x10
[  124.698558][ T7371]  ? __fget_files+0x244/0x3f0
[  124.699736][ T7371]  do_syscall_64+0xcd/0x250
[  124.700894][ T7371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.702425][ T7371] RIP: 0033:0x7fc8a977dff9
[  124.703564][ T7371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.708240][ T7371] RSP: 002b:00007fc8aa665038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  124.710257][ T7371] RAX: ffffffffffffffda RBX: 00007fc8a9935f80 RCX: 00007fc8a977dff9
[  124.712150][ T7371] RDX: 0000000020050800 RSI: 00000000200000c0 RDI: 0000000000000003
[  124.714101][ T7371] RBP: 00007fc8aa665090 R08: 0000000000000000 R09: 0000000000000000
[  124.716129][ T7371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.718071][ T7371] R13: 0000000000000000 R14: 00007fc8a9935f80 R15: 00007fff9ebc1de8
[  124.720044][ T7371]  </TASK>
[  124.720920][    C3] vkms_vblank_simulate: vblank timer overrun
[  125.078020][ T7381] net_ratelimit: 12 callbacks suppressed
[  125.078033][ T7381] netlink: zone id is out of range
[  125.081382][ T7381] netlink: zone id is out of range
[  125.083119][ T7381] netlink: zone id is out of range
[  125.084545][ T7381] netlink: zone id is out of range
[  125.085922][ T7381] netlink: zone id is out of range
[  125.089368][ T7381] netlink: set zone limit has 4 unknown bytes
[  125.330510][ T7385] binder: 7383:7385 ioctl c0306201 20000080 returned -14
[  125.333824][ T7385] binder: 7383:7385 ioctl 8010500c 20000100 returned -22
[  125.380575][ T7389] netlink: 40 bytes leftover after parsing attributes in process `syz.2.588'.
[  125.663040][ T7393] netlink: 12 bytes leftover after parsing attributes in process `syz.2.588'.
[  125.979716][ T7396] netlink: 4 bytes leftover after parsing attributes in process `syz.0.589'.
[  125.982939][ T7396] netlink: 12 bytes leftover after parsing attributes in process `syz.0.589'.
[  126.331432][ T7404] kvm: kvm [7403]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xf700000043
[  126.336159][ T7404] kvm: kvm [7403]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xff000000a7
[  126.345442][ T7404] kvm: kvm [7403]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x10d00000081
[  126.543980][ T7414] fuse: Bad value for 'fd'
[  126.597045][ T7416] netlink: 'syz.1.596': attribute type 9 has an invalid length.
[  126.599393][ T7416] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.596'.
[  127.049278][ T7425] IPVS: Unknown mcast interface: hsr0
[  127.066966][ T7406] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  127.721130][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  127.721180][   T39] audit: type=1400 audit(1729546653.679:460): avc:  denied  { bind } for  pid=7435 comm="syz.2.611" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  127.764456][ T7444] input: syz1 as /devices/virtual/input/input8
[  127.894092][ T7447] sctp: [Deprecated]: syz.1.605 (pid 7447) Use of int in max_burst socket option deprecated.
[  127.894092][ T7447] Use struct sctp_assoc_value instead
[  128.535288][ T7466] netlink: 12 bytes leftover after parsing attributes in process `syz.1.614'.
[  128.545105][   T39] audit: type=1400 audit(1729546654.509:461): avc:  denied  { getopt } for  pid=7465 comm="syz.1.614" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  128.937776][   T30] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  129.099239][   T30] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  129.102073][   T30] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  129.104891][   T30] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  129.108188][   T30] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  129.114166][   T30] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  129.117175][   T30] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  129.119827][   T30] usb 6-1: Manufacturer: syz
[  129.126500][   T30] usb 6-1: config 0 descriptor??
[  129.299373][ T7478] fuse: Bad value for 'fd'
[  129.443637][   T39] audit: type=1400 audit(1729546655.409:462): avc:  denied  { remount } for  pid=7479 comm="syz.0.618" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  129.534608][   T30] appleir 0003:05AC:8243.0003: unknown main item tag 0x0
[  129.536682][   T30] appleir 0003:05AC:8243.0003: No inputs registered, leaving
[  129.544260][   T30] appleir 0003:05AC:8243.0003: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  129.575709][ T7486] binder: 7485:7486 ioctl c0306201 0 returned -14
[  129.593006][   T39] audit: type=1400 audit(1729546655.559:463): avc:  denied  { getopt } for  pid=7485 comm="syz.2.620" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  129.697830][   T39] audit: type=1400 audit(1729546655.639:464): avc:  denied  { unmount } for  pid=5345 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  129.818107][ T7499] FAULT_INJECTION: forcing a failure.
[  129.818107][ T7499] name failslab, interval 1, probability 0, space 0, times 0
[  129.821201][ T7501] netlink: 'syz.3.621': attribute type 4 has an invalid length.
[  129.822416][ T7499] CPU: 3 UID: 0 PID: 7499 Comm: syz.2.623 Not tainted 6.12.0-rc4-syzkaller #0
[  129.827545][ T7499] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.831165][ T7499] Call Trace:
[  129.832311][ T7499]  <TASK>
[  129.833317][ T7499]  dump_stack_lvl+0x16c/0x1f0
[  129.834995][ T7499]  should_fail_ex+0x497/0x5b0
[  129.836638][ T7499]  ? fs_reclaim_acquire+0xae/0x150
[  129.838441][ T7499]  should_failslab+0xc2/0x120
[  129.840090][ T7499]  __kmalloc_cache_noprof+0x6b/0x300
[  129.841931][ T7499]  ? __fget_files+0x23a/0x3f0
[  129.843601][ T7499]  ? __io_uring_add_tctx_node+0x134/0x500
[  129.845591][ T7499]  __io_uring_add_tctx_node+0x134/0x500
[  129.847543][ T7499]  ? __pfx___io_uring_add_tctx_node+0x10/0x10
[  129.849671][ T7499]  ? __fget_files+0x244/0x3f0
[  129.851340][ T7499]  __io_uring_add_tctx_node_from_submit+0x89/0x130
[  129.853602][ T7499]  __do_sys_io_uring_enter+0xe80/0x1170
[  129.855469][ T7499]  ? __fget_files+0x244/0x3f0
[  129.856699][ T7499]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  129.858347][ T7499]  ? fput+0x30/0x390
[  129.859416][ T7499]  ? ksys_write+0x1ad/0x260
[  129.860613][ T7499]  ? __pfx_ksys_write+0x10/0x10
[  129.861904][ T7499]  do_syscall_64+0xcd/0x250
[  129.863163][ T7499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.864729][ T7499] RIP: 0033:0x7f17be57dff9
[  129.865909][ T7499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.870883][ T7499] RSP: 002b:00007f17bf2e3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  129.873038][ T7499] RAX: ffffffffffffffda RBX: 00007f17be736058 RCX: 00007f17be57dff9
[  129.875109][ T7499] RDX: 0000000000000000 RSI: 000000000000052e RDI: 0000000000000005
[  129.877160][ T7499] RBP: 00007f17bf2e3090 R08: 0000000000000000 R09: 0000000000000000
[  129.879224][ T7499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.881260][ T7499] R13: 0000000000000001 R14: 00007f17be736058 R15: 00007ffedc7da5b8
[  129.883347][ T7499]  </TASK>
[  130.285795][ T7508] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  130.375779][ T7510] fuse: Unknown parameter '0x0000000000000006'
[  130.531298][ T7517] netlink: 28 bytes leftover after parsing attributes in process `syz.0.629'.
[  130.641234][ T7525] netlink: 8 bytes leftover after parsing attributes in process `syz.0.632'.
[  130.697075][   T39] audit: type=1400 audit(1729546656.659:465): avc:  denied  { read } for  pid=7530 comm="syz.0.633" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  130.707103][ T7527] binder: 7526:7527 ioctl c0306201 0 returned -14
[  131.161327][ T7551] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  131.485289][   T39] audit: type=1400 audit(1729546657.449:466): avc:  denied  { bind } for  pid=7564 comm="syz.0.644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  131.491879][   T39] audit: type=1400 audit(1729546657.449:467): avc:  denied  { name_bind } for  pid=7564 comm="syz.0.644" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  131.492957][ T7565] netlink: 20 bytes leftover after parsing attributes in process `syz.0.644'.
[  131.507021][   T39] audit: type=1400 audit(1729546657.449:468): avc:  denied  { node_bind } for  pid=7564 comm="syz.0.644" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  131.509138][ T7564] dccp_close: ABORT with 1246 bytes unread
[  131.513987][   T39] audit: type=1400 audit(1729546657.449:469): avc:  denied  { listen } for  pid=7564 comm="syz.0.644" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  131.552347][ T7566] overlay: Unknown parameter '/'
[  132.147331][ T5382] usb 6-1: USB disconnect, device number 9
[  132.469801][ T1380] ieee802154 phy0 wpan0: encryption failed: -22
[  132.947867][   T62] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  133.099390][   T62] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  133.102103][   T62] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  133.104702][   T62] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  133.107208][   T62] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  133.111856][   T62] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  133.114689][   T62] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  133.126160][   T62] usb 7-1: Manufacturer: syz
[  133.129493][   T62] usb 7-1: config 0 descriptor??
[  133.391872][ T7596] netlink: 40 bytes leftover after parsing attributes in process `syz.0.653'.
[  133.543183][   T62] appleir 0003:05AC:8243.0004: unknown main item tag 0x0
[  133.545381][   T62] appleir 0003:05AC:8243.0004: No inputs registered, leaving
[  133.549128][   T62] appleir 0003:05AC:8243.0004: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[  133.586880][ T7598] netlink: 12 bytes leftover after parsing attributes in process `syz.0.653'.
[  133.902435][   T39] kauditd_printk_skb: 3 callbacks suppressed
[  133.902446][   T39] audit: type=1400 audit(1729546659.869:473): avc:  denied  { getopt } for  pid=7602 comm="syz.3.657" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  133.909361][   T39] audit: type=1400 audit(1729546659.869:474): avc:  denied  { bind } for  pid=7602 comm="syz.3.657" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  134.149424][ T7599] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  134.167753][   T63] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  134.317862][   T63] usb 8-1: Using ep0 maxpacket: 8
[  134.321778][   T63] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  134.323931][   T63] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  134.326440][   T63] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  134.329034][   T39] audit: type=1400 audit(1729546660.289:475): avc:  denied  { accept } for  pid=7612 comm="syz.0.660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  134.329868][ T5382] usb 7-1: USB disconnect, device number 3
[  134.333982][   T63] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  134.350494][   T63] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  134.353867][   T63] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  134.356214][   T63] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.385038][   T39] audit: type=1400 audit(1729546660.349:476): avc:  denied  { write } for  pid=7612 comm="syz.0.660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  134.520985][ T7621] SELinux: selinux_ima_measure_state_locked: failed to read policy -12.
[  134.528884][   T39] audit: type=1400 audit(1729546660.499:477): avc:  denied  { append } for  pid=4818 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  134.539537][   T39] audit: type=1400 audit(1729546660.509:478): avc:  denied  { read write } for  pid=5349 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  134.545817][   T39] audit: type=1400 audit(1729546660.509:479): avc:  denied  { open } for  pid=5349 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  134.552054][   T39] audit: type=1400 audit(1729546660.509:480): avc:  denied  { ioctl } for  pid=5349 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  134.558529][   T39] audit: type=1400 audit(1729546660.519:481): avc:  denied  { read } for  pid=7624 comm="syz.0.663" name="ptp0" dev="devtmpfs" ino=713 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  134.560379][ T7625] fuse: Unknown parameter '0x0000000000000006'
[  134.566170][   T39] audit: type=1400 audit(1729546660.519:482): avc:  denied  { open } for  pid=7624 comm="syz.0.663" path="/dev/ptp0" dev="devtmpfs" ino=713 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  134.584749][   T63] usb 8-1: usb_control_msg returned -71
[  134.587395][   T63] usbtmc 8-1:16.0: can't read capabilities
[  134.592812][   T63] usb 8-1: USB disconnect, device number 5
[  135.055373][ T7652] fuse: Unknown parameter 'fd0x0000000000000006'
[  136.238385][ T7672] FAULT_INJECTION: forcing a failure.
[  136.238385][ T7672] name failslab, interval 1, probability 0, space 0, times 0
[  136.242639][ T7672] CPU: 0 UID: 0 PID: 7672 Comm: syz.2.677 Not tainted 6.12.0-rc4-syzkaller #0
[  136.244981][ T7672] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.248037][ T7672] Call Trace:
[  136.249027][ T7672]  <TASK>
[  136.249954][ T7672]  dump_stack_lvl+0x16c/0x1f0
[  136.251453][ T7672]  should_fail_ex+0x497/0x5b0
[  136.252831][ T7672]  ? fs_reclaim_acquire+0xae/0x150
[  136.254385][ T7672]  should_failslab+0xc2/0x120
[  136.255777][ T7672]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  136.257316][ T7672]  ? security_inode_alloc+0x3b/0x2b0
[  136.258878][ T7672]  security_inode_alloc+0x3b/0x2b0
[  136.260518][ T7672]  inode_init_always_gfp+0xc5f/0xfb0
[  136.262075][ T7672]  ? __pfx_proc_lookupfd+0x10/0x10
[  136.263480][ T7672]  alloc_inode+0x82/0x230
[  136.264623][ T7672]  new_inode+0x22/0x210
[  136.265734][ T7672]  ? __pfx_proc_lookupfd+0x10/0x10
[  136.267113][ T7672]  proc_pid_make_inode+0x22/0x160
[  136.268457][ T7672]  ? fput+0x30/0x390
[  136.269494][ T7672]  proc_fd_instantiate+0x57/0x240
[  136.270838][ T7672]  proc_lookupfd+0x102/0x210
[  136.272057][ T7672]  ? __pfx_proc_lookupfd+0x10/0x10
[  136.273416][ T7672]  lookup_open.isra.0+0x92d/0x14c0
[  136.274802][ T7672]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  136.276333][ T7672]  ? path_openat+0x88a/0x2d60
[  136.277652][ T7672]  ? mnt_get_write_access+0x20c/0x300
[  136.279216][ T7672]  path_openat+0x904/0x2d60
[  136.280593][ T7672]  ? __pfx_path_openat+0x10/0x10
[  136.281971][ T7672]  ? __pfx___lock_acquire+0x10/0x10
[  136.283369][ T7672]  do_filp_open+0x1dc/0x430
[  136.284566][ T7672]  ? __pfx_do_filp_open+0x10/0x10
[  136.285895][ T7672]  ? find_held_lock+0x2d/0x110
[  136.287185][ T7672]  ? __pfx_kfree_link+0x10/0x10
[  136.288494][ T7672]  ? _raw_spin_unlock+0x28/0x50
[  136.289843][ T7672]  ? alloc_fd+0x2d7/0x6c0
[  136.291046][ T7672]  do_sys_openat2+0x17a/0x1e0
[  136.292415][ T7672]  ? __pfx_do_sys_openat2+0x10/0x10
[  136.293870][ T7672]  ? __pfx___schedule+0x10/0x10
[  136.295275][ T7672]  ? __fget_files+0x244/0x3f0
[  136.296529][ T7672]  __x64_sys_openat+0x175/0x210
[  136.297813][ T7672]  ? __pfx___x64_sys_openat+0x10/0x10
[  136.299233][ T7672]  ? ksys_write+0x1ad/0x260
[  136.300438][ T7672]  do_syscall_64+0xcd/0x250
[  136.301648][ T7672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.303225][ T7672] RIP: 0033:0x7f17be57c990
[  136.304405][ T7672] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  136.309733][ T7672] RSP: 002b:00007f17bf384f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  136.311925][ T7672] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f17be57c990
[  136.313999][ T7672] RDX: 0000000000000002 RSI: 00007f17bf384fa0 RDI: 00000000ffffff9c
[  136.316094][ T7672] RBP: 00007f17bf384fa0 R08: 0000000000000000 R09: 0000000000000000
[  136.318118][ T7672] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  136.320202][ T7672] R13: 0000000000000000 R14: 00007f17be735f80 R15: 00007ffedc7da5b8
[  136.322319][ T7672]  </TASK>
[  136.390730][ T7678] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pid=7678 comm=syz.2.680
[  136.415880][ T7680] fuse: Unknown parameter 'fd0x0000000000000006'
[  138.404267][ T7690] netlink: 116 bytes leftover after parsing attributes in process `syz.1.683'.
[  138.995597][   T39] kauditd_printk_skb: 78 callbacks suppressed
[  138.995609][   T39] audit: type=1400 audit(1729546664.959:559): avc:  denied  { getopt } for  pid=7702 comm="syz.1.687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  139.008414][   T39] audit: type=1400 audit(1729546664.969:560): avc:  denied  { create } for  pid=7702 comm="syz.1.687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  139.014630][   T39] audit: type=1400 audit(1729546664.979:561): avc:  denied  { setopt } for  pid=7702 comm="syz.1.687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  139.024428][   T39] audit: type=1400 audit(1729546664.989:562): avc:  denied  { connect } for  pid=7702 comm="syz.1.687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  139.030482][   T39] audit: type=1400 audit(1729546664.989:563): avc:  denied  { name_connect } for  pid=7702 comm="syz.1.687" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  139.037196][   T39] audit: type=1400 audit(1729546664.989:564): avc:  denied  { write } for  pid=7702 comm="syz.1.687" path="/dev/vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  140.247832][   T39] audit: type=1400 audit(1729546666.189:565): avc:  denied  { read write } for  pid=7709 comm="syz.2.689" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  140.448797][   T39] audit: type=1400 audit(1729546666.189:566): avc:  denied  { open } for  pid=7709 comm="syz.2.689" path="/dev/ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  140.455653][   T39] audit: type=1400 audit(1729546666.249:567): avc:  denied  { write } for  pid=7709 comm="syz.2.689" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  140.462041][   T39] audit: type=1400 audit(1729546666.249:568): avc:  denied  { connect } for  pid=7709 comm="syz.2.689" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  145.106200][   T39] kauditd_printk_skb: 6 callbacks suppressed
[  145.106240][   T39] audit: type=1400 audit(1729546671.069:575): avc:  denied  { execute } for  pid=7721 comm="syz-executor" name="syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  145.115553][   T39] audit: type=1400 audit(1729546671.069:576): avc:  denied  { execute_no_trans } for  pid=7721 comm="syz-executor" path="/syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  145.173290][   T39] audit: type=1400 audit(1729546671.139:577): avc:  denied  { read } for  pid=7722 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  145.181499][   T39] audit: type=1400 audit(1729546671.139:578): avc:  denied  { open } for  pid=7722 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  145.192460][ T4777] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  145.196148][ T4777] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  145.200572][ T4777] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  145.203384][ T4777] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  145.205753][ T4777] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  145.208071][ T4777] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  145.221590][   T39] audit: type=1400 audit(1729546671.189:579): avc:  denied  { mounton } for  pid=7722 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  145.291751][ T7722] chnl_net:caif_netlink_parms(): no params data found
[  145.383280][ T7722] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.385175][ T7722] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.387164][ T7722] bridge_slave_0: entered allmulticast mode
[  145.389484][ T7722] bridge_slave_0: entered promiscuous mode
[  145.392505][ T7722] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.394926][ T7722] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.397299][ T7722] bridge_slave_1: entered allmulticast mode
[  145.399456][ T7722] bridge_slave_1: entered promiscuous mode
[  145.418191][ T7722] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  145.421778][ T7722] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  147.267899][ T4777] Bluetooth: hci4: command tx timeout
[  147.441977][ T7722] team0: Port device team_slave_0 added
[  147.594902][ T7722] team0: Port device team_slave_1 added
[  148.020305][ T7722] batman_adv: batadv0: Adding interface: batadv_slave_0
[  148.022131][ T7722] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  148.030960][ T7722] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  148.035554][ T7722] batman_adv: batadv0: Adding interface: batadv_slave_1
[  148.037388][ T7722] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  148.044497][ T7722] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  148.077138][ T7722] hsr_slave_0: entered promiscuous mode
[  148.079796][ T7722] hsr_slave_1: entered promiscuous mode
[  148.082152][ T7722] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  148.084760][ T7722] Cannot create hsr debugfs directory
[  148.148712][ T7722] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.224268][ T7722] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.629038][ T7722] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.102336][ T7722] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.186976][ T7722] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  149.200621][ T7722] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  149.203794][ T7722] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  149.207524][ T7722] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  149.246930][ T7722] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.259971][ T7722] 8021q: adding VLAN 0 to HW filter on device team0
[  149.265119][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.267046][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.270530][ T5351] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  149.273491][ T5351] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  149.275886][ T5351] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  149.282552][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.285049][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.289534][ T5351] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  149.292858][ T5351] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  149.295549][ T5351] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  149.347905][ T5351] Bluetooth: hci4: command tx timeout
[  149.351544][   T39] audit: type=1400 audit(1729546675.319:580): avc:  denied  { sys_module } for  pid=7722 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  149.419488][ T7733] chnl_net:caif_netlink_parms(): no params data found
[  149.500205][ T7722] 8021q: adding VLAN 0 to HW filter on device batadv0
[  149.502956][ T7733] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.505644][ T7733] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.507641][ T7733] bridge_slave_0: entered allmulticast mode
[  149.509952][ T7733] bridge_slave_0: entered promiscuous mode
[  149.512712][ T7733] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.514608][ T7733] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.516505][ T7733] bridge_slave_1: entered allmulticast mode
[  149.519760][ T7733] bridge_slave_1: entered promiscuous mode
[  149.540246][ T7733] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.543805][ T7733] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.565740][ T7733] team0: Port device team_slave_0 added
[  149.570158][ T7733] team0: Port device team_slave_1 added
[  149.596734][ T7733] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.601007][ T7733] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.608182][ T7733] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  149.611972][ T7733] batman_adv: batadv0: Adding interface: batadv_slave_1
[  149.613778][ T7733] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.620942][ T7733] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.644668][ T7733] hsr_slave_0: entered promiscuous mode
[  149.646649][ T7733] hsr_slave_1: entered promiscuous mode
[  149.649444][ T7733] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  149.651526][ T7733] Cannot create hsr debugfs directory
[  149.695712][ T7722] veth0_vlan: entered promiscuous mode
[  149.707442][ T7722] veth1_vlan: entered promiscuous mode
[  149.745722][ T7733] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.762454][ T7722] veth0_macvtap: entered promiscuous mode
[  149.765810][ T7722] veth1_macvtap: entered promiscuous mode
[  149.773811][ T7722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.776547][ T7722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.781618][ T7722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.784318][ T7722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.786943][ T7722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.789798][ T7722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.792363][ T7722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.795024][ T7722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.798714][ T7722] batman_adv: batadv0: Interface activated: batadv_slave_0
[  149.803776][ T7722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.806494][ T7722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.809325][ T7722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.812027][ T7722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.814556][ T7722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.817225][ T7722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.820205][ T7722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.823052][ T7722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.826296][ T7722] batman_adv: batadv0: Interface activated: batadv_slave_1
[  149.838554][ T7733] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.846332][ T7722] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.848770][ T7722] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.851026][ T7722] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.853267][ T7722] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.876930][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.879545][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.894323][ T1212] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.896614][ T1212] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.916689][ T7733] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.922849][   T39] audit: type=1400 audit(1729546675.889:581): avc:  denied  { mounton } for  pid=7722 comm="syz-executor" path="/syzkaller.2HLHdx/syz-tmp" dev="sda1" ino=1943 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  149.929729][   T39] audit: type=1400 audit(1729546675.889:582): avc:  denied  { mount } for  pid=7722 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  149.935307][   T39] audit: type=1400 audit(1729546675.889:583): avc:  denied  { mounton } for  pid=7722 comm="syz-executor" path="/syzkaller.2HLHdx/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  149.942885][   T39] audit: type=1400 audit(1729546675.889:584): avc:  denied  { mounton } for  pid=7722 comm="syz-executor" path="/syzkaller.2HLHdx/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  150.034586][ T4777] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  150.044883][ T4777] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  150.048835][ T4777] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  150.049918][ T7733] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.051052][ T4777] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  150.057227][ T4777] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  150.059518][ T4777] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  150.168792][ T7733] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  150.181638][ T7733] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  150.190586][ T7733] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  150.194503][ T7733] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  150.206922][ T7749] chnl_net:caif_netlink_parms(): no params data found
[  150.376281][ T7749] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.378651][ T7749] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.381089][ T7749] bridge_slave_0: entered allmulticast mode
[  150.383643][ T7749] bridge_slave_0: entered promiscuous mode
[  150.390708][ T7749] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.393065][ T7749] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.395543][ T7749] bridge_slave_1: entered allmulticast mode
[  150.398447][ T7749] bridge_slave_1: entered promiscuous mode
[  150.474034][ T7749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  150.489181][ T7749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  150.519389][ T7749] team0: Port device team_slave_0 added
[  150.523300][ T7749] team0: Port device team_slave_1 added
[  150.762400][ T7749] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.764243][ T7749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.771192][ T7749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.777133][ T7733] 8021q: adding VLAN 0 to HW filter on device bond0
[  150.782019][ T7749] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.783857][ T7749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.790941][ T7749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  150.806047][ T7733] 8021q: adding VLAN 0 to HW filter on device team0
[  150.827206][ T7749] hsr_slave_0: entered promiscuous mode
[  150.829370][ T7749] hsr_slave_1: entered promiscuous mode
[  150.832033][ T7749] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  150.835857][ T7749] Cannot create hsr debugfs directory
[  150.851452][   T74] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.853376][   T74] bridge0: port 1(bridge_slave_0) entered forwarding state
[  151.223182][ T5351] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  151.227300][ T5351] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  151.233172][ T5351] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  151.236348][ T5351] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  151.239820][ T5351] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  151.242648][ T5351] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  151.349291][ T5351] Bluetooth: hci5: command tx timeout
[  151.427965][ T5351] Bluetooth: hci4: command tx timeout
[  152.128761][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.131468][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  152.147922][ T5351] Bluetooth: hci6: command tx timeout
[  153.279616][ T5351] Bluetooth: hci7: command tx timeout
[  153.427911][ T5351] Bluetooth: hci5: command tx timeout
[  153.507936][ T5351] Bluetooth: hci4: command tx timeout
[  154.228051][ T5351] Bluetooth: hci6: command tx timeout
[  154.382500][ T7749] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.445513][ T7733] 8021q: adding VLAN 0 to HW filter on device batadv0
[  154.452388][ T7763] chnl_net:caif_netlink_parms(): no params data found
[  154.603752][ T7749] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.627092][ T7763] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.630010][ T7763] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.632148][ T7763] bridge_slave_0: entered allmulticast mode
[  154.634255][ T7763] bridge_slave_0: entered promiscuous mode
[  154.640409][ T7763] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.642545][ T7763] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.644500][ T7763] bridge_slave_1: entered allmulticast mode
[  154.647065][ T7763] bridge_slave_1: entered promiscuous mode
[  154.678876][ T7763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.701045][ T7763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.708093][ T7733] veth0_vlan: entered promiscuous mode
[  154.734426][ T7749] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.752681][ T7763] team0: Port device team_slave_0 added
[  154.756605][ T7763] team0: Port device team_slave_1 added
[  155.348004][ T5351] Bluetooth: hci7: command tx timeout
[  155.468344][ T7733] veth1_vlan: entered promiscuous mode
[  155.508243][ T5351] Bluetooth: hci5: command tx timeout
[  155.917411][ T7749] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.309031][ T5351] Bluetooth: hci6: command tx timeout
[  156.415353][ T7763] batman_adv: batadv0: Adding interface: batadv_slave_0
[  156.417926][ T7763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  156.424743][ T7763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  156.439618][ T7733] veth0_macvtap: entered promiscuous mode
[  156.441997][ T7763] batman_adv: batadv0: Adding interface: batadv_slave_1
[  156.443810][ T7763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  156.450938][ T7763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  156.467852][ T7733] veth1_macvtap: entered promiscuous mode
[  156.473894][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.476929][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.480243][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.483036][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.485581][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.488654][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.491274][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.493989][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.496904][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.499986][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.504664][ T7733] batman_adv: batadv0: Interface activated: batadv_slave_0
[  156.511263][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.514918][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.517642][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.521612][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.525113][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.529567][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.532117][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.534834][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.539010][ T7733] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.542201][ T7733] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.546453][ T7733] batman_adv: batadv0: Interface activated: batadv_slave_1
[  156.577368][ T7733] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.579750][ T7733] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.582211][ T7733] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.585073][ T7733] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  156.596870][ T7763] hsr_slave_0: entered promiscuous mode
[  156.608601][ T7763] hsr_slave_1: entered promiscuous mode
[  156.610605][ T7763] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  156.612581][ T7763] Cannot create hsr debugfs directory
[  156.649222][ T7749] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  156.656438][ T7749] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  156.670744][ T7749] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  156.673832][ T7749] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  157.430546][ T5351] Bluetooth: hci7: command tx timeout
[  157.587881][ T5351] Bluetooth: hci5: command tx timeout
[  157.668739][ T7763] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.697906][   T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.699994][   T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  157.713602][ T1212] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.715671][ T1212] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  157.733407][ T7749] 8021q: adding VLAN 0 to HW filter on device bond0
[  157.754467][ T7763] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.773771][ T7749] 8021q: adding VLAN 0 to HW filter on device team0
[  157.785348][ T1212] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.787269][ T1212] bridge0: port 1(bridge_slave_0) entered forwarding state
[  157.792056][ T1212] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.794523][ T1212] bridge0: port 2(bridge_slave_1) entered forwarding state
[  157.815502][   T39] kauditd_printk_skb: 8 callbacks suppressed
[  157.815518][   T39] audit: type=1400 audit(1729546683.779:593): avc:  denied  { write } for  pid=7776 comm="syz.1.693" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  157.994688][   T39] audit: type=1400 audit(1729546683.959:594): avc:  denied  { name_connect } for  pid=7776 comm="syz.1.693" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  158.388131][ T5351] Bluetooth: hci6: command tx timeout
[  158.443040][ T7763] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.572548][   T39] audit: type=1400 audit(1729546684.539:595): avc:  denied  { mount } for  pid=7784 comm="syz.1.697" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  158.629782][ T7763] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.674439][ T7749] 8021q: adding VLAN 0 to HW filter on device batadv0
[  158.695169][ T7749] veth0_vlan: entered promiscuous mode
[  158.703773][ T7749] veth1_vlan: entered promiscuous mode
[  158.724035][ T7749] veth0_macvtap: entered promiscuous mode
[  158.730774][ T7749] veth1_macvtap: entered promiscuous mode
[  158.757243][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  158.765927][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.769830][   T39] audit: type=1400 audit(1729546684.729:596): avc:  denied  { read } for  pid=7784 comm="syz.1.697" name="fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  158.778057][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  158.780770][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.783313][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  158.789727][   T39] audit: type=1400 audit(1729546684.729:597): avc:  denied  { open } for  pid=7784 comm="syz.1.697" path="/dev/fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  158.798510][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.801075][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  158.804388][   T39] audit: type=1400 audit(1729546684.739:598): avc:  denied  { ioctl } for  pid=7784 comm="syz.1.697" path="/dev/fb1" dev="devtmpfs" ino=640 ioctlcmd=0x4601 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  158.811726][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.814279][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  158.820096][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.823458][   T39] audit: type=1400 audit(1729546684.739:599): avc:  denied  { create } for  pid=7784 comm="syz.1.697" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  158.829729][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  158.833094][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.836980][ T7749] batman_adv: batadv0: Interface activated: batadv_slave_0
[  158.846994][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  158.855500][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.858417][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  158.861303][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.864050][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  158.866888][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.870760][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  158.873619][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.876248][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  158.879521][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.882193][ T7749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  158.885081][ T7749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  158.889667][ T7749] batman_adv: batadv0: Interface activated: batadv_slave_1
[  158.902600][ T7749] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  158.904922][ T7749] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  158.907337][ T7749] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  158.909845][ T7749] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  158.921745][ T7763] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  159.030763][ T7763] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  159.441542][   T39] audit: type=1400 audit(1729546685.409:600): avc:  denied  { unmount } for  pid=7733 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  159.486249][   T39] audit: type=1400 audit(1729546685.449:601): avc:  denied  { write } for  pid=7793 comm="syz.1.698" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  159.494258][ T7763] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  159.507958][ T5351] Bluetooth: hci7: command tx timeout
[  159.819676][ T7763] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  159.849815][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.852007][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  159.871765][   T74] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.874699][   T74] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  159.904294][   T39] audit: type=1400 audit(1729546685.869:602): avc:  denied  { unlink } for  pid=7798 comm="syz.1.700" name="#7" dev="tmpfs" ino=45 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  160.321678][ T7763] 8021q: adding VLAN 0 to HW filter on device bond0
[  160.342267][ T7763] 8021q: adding VLAN 0 to HW filter on device team0
[  160.358990][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.360864][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  160.363671][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.365566][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  160.380911][ T7763] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  160.383656][ T7763] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  160.450917][ T7809] netlink: 48 bytes leftover after parsing attributes in process `syz.0.702'.
[  160.459222][ T4777] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  160.462513][ T4777] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  160.465137][ T4777] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  160.471708][ T4777] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  160.474630][ T4777] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  160.476640][ T4777] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  160.499357][ T7763] 8021q: adding VLAN 0 to HW filter on device batadv0
[  160.545584][ T7763] veth0_vlan: entered promiscuous mode
[  160.562558][ T7763] veth1_vlan: entered promiscuous mode
[  160.609617][ T7763] veth0_macvtap: entered promiscuous mode
[  160.672334][ T7763] veth1_macvtap: entered promiscuous mode
[  160.679689][ T7811] chnl_net:caif_netlink_parms(): no params data found
[  160.687129][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.692927][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.696186][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.700884][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.703776][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.706495][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.715094][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.718378][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.720924][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.723525][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.726394][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.729158][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.731598][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.734213][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.737502][ T7763] batman_adv: batadv0: Interface activated: batadv_slave_0
[  160.753657][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.756324][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.760005][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.762705][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.765127][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.768739][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.771956][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.775292][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.778798][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.781351][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.783889][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.786508][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.793065][ T7763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.796540][ T7763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.800206][ T7763] batman_adv: batadv0: Interface activated: batadv_slave_1
[  160.830381][ T7763] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.832732][ T7763] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.835246][ T7763] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.837604][ T7763] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.081683][   T74] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.213825][ T7811] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.216269][ T7811] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.218825][ T7811] bridge_slave_0: entered allmulticast mode
[  161.221958][ T7811] bridge_slave_0: entered promiscuous mode
[  161.239439][   T74] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.257361][ T7811] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.261803][ T7811] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.264024][ T7811] bridge_slave_1: entered allmulticast mode
[  161.266605][ T7811] bridge_slave_1: entered promiscuous mode
[  161.365940][   T74] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.384045][ T7811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  161.402810][ T7811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  161.429972][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  161.432025][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  161.438805][ T7811] team0: Port device team_slave_0 added
[  161.451004][   T74] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.468772][ T7811] team0: Port device team_slave_1 added
[  161.505628][ T7811] batman_adv: batadv0: Adding interface: batadv_slave_0
[  161.508624][ T7811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.517595][ T7811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  161.524868][ T7811] batman_adv: batadv0: Adding interface: batadv_slave_1
[  161.527210][ T7811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.537554][ T7811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  161.544840][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  161.547509][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  161.618963][   T74] bridge_slave_1: left allmulticast mode
[  161.620748][   T74] bridge_slave_1: left promiscuous mode
[  161.622329][   T74] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.631879][   T74] bridge_slave_0: left allmulticast mode
[  161.633245][   T74] bridge_slave_0: left promiscuous mode
[  161.634731][   T74] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.945027][   T74] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.949866][   T74] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.953598][   T74] bond0 (unregistering): Released all slaves
[  161.980234][ T7811] hsr_slave_0: entered promiscuous mode
[  161.982888][ T7811] hsr_slave_1: entered promiscuous mode
[  161.985264][ T7811] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  161.992470][ T7811] Cannot create hsr debugfs directory
[  162.425662][   T74] hsr_slave_0: left promiscuous mode
[  162.428017][   T74] hsr_slave_1: left promiscuous mode
[  162.430403][   T74] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  162.432482][   T74] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.435553][   T74] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  162.441754][   T74] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.471099][   T74] veth1_macvtap: left promiscuous mode
[  162.472742][   T74] veth0_macvtap: left promiscuous mode
[  162.474260][   T74] veth1_vlan: left promiscuous mode
[  162.475720][   T74] veth0_vlan: left promiscuous mode
[  162.548413][ T4777] Bluetooth: hci8: command tx timeout
[  163.829988][   T74] team0 (unregistering): Port device team_slave_1 removed
[  163.903045][   T74] team0 (unregistering): Port device team_slave_0 removed
[  164.610679][   T39] kauditd_printk_skb: 24 callbacks suppressed
[  164.610690][   T39] audit: type=1400 audit(1729546690.579:627): avc:  denied  { write } for  pid=7869 comm="syz.0.708" name="ppp" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  164.621969][ T7871] netlink: 40 bytes leftover after parsing attributes in process `syz.0.708'.
[  164.627993][ T4777] Bluetooth: hci8: command tx timeout
[  164.753319][ T7811] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  164.758118][ T7811] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  164.768777][ T7811] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  164.792132][ T7811] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  164.843336][ T7883] netlink: 12 bytes leftover after parsing attributes in process `syz.0.708'.
[  164.888883][ T7811] 8021q: adding VLAN 0 to HW filter on device bond0
[  164.912491][ T7811] 8021q: adding VLAN 0 to HW filter on device team0
[  164.921003][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.922929][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.930899][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.932805][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  164.977381][ T7811] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  165.080651][ T7811] 8021q: adding VLAN 0 to HW filter on device batadv0
[  165.116269][ T7811] veth0_vlan: entered promiscuous mode
[  165.121184][ T7811] veth1_vlan: entered promiscuous mode
[  165.134212][ T7811] veth0_macvtap: entered promiscuous mode
[  165.139760][ T7811] veth1_macvtap: entered promiscuous mode
[  165.145806][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.153100][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.155653][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.158461][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.161049][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.163874][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.166450][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.170239][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.172946][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.175709][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.178735][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.181503][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.184112][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.187132][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.191222][ T7811] batman_adv: batadv0: Interface activated: batadv_slave_0
[  165.438199][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.440917][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.443404][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.446062][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.448838][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.451515][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.454049][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.456717][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.459314][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.461972][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.464474][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.467134][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.469784][ T7811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.472467][ T7811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.475758][ T7811] batman_adv: batadv0: Interface activated: batadv_slave_1
[  165.483152][ T7811] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.485448][ T7811] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.487820][ T7811] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.490066][ T7811] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.540509][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.542576][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.559891][ T1212] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.562646][ T1212] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.571530][   T94] bridge_slave_1: left allmulticast mode
[  165.573719][   T94] bridge_slave_1: left promiscuous mode
[  165.575799][   T94] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.609082][   T94] bridge_slave_0: left allmulticast mode
[  165.610612][   T94] bridge_slave_0: left promiscuous mode
[  165.612134][   T94] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.659868][   T39] audit: type=1400 audit(1729546691.629:628): avc:  denied  { create } for  pid=7901 comm="syz.3.701" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  165.665171][   T39] audit: type=1400 audit(1729546691.629:629): avc:  denied  { read } for  pid=7901 comm="syz.3.701" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  165.674456][   T39] audit: type=1400 audit(1729546691.629:630): avc:  denied  { append } for  pid=7901 comm="syz.3.701" name="mouse1" dev="devtmpfs" ino=1111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  166.209656][   T39] audit: type=1400 audit(1729546692.179:631): avc:  denied  { sqpoll } for  pid=7916 comm="syz.3.714" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  166.693805][   T94] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  166.698655][   T94] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  166.702364][   T94] bond0 (unregistering): Released all slaves
[  166.707874][ T4777] Bluetooth: hci8: command tx timeout
[  166.827936][   T39] audit: type=1400 audit(1729546692.789:632): avc:  denied  { write } for  pid=7921 comm="syz.3.717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  166.834754][   T39] audit: type=1400 audit(1729546692.789:633): avc:  denied  { nlmsg_write } for  pid=7921 comm="syz.3.717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  167.110156][   T94] şü: left promiscuous mode
[  167.323695][ T7931] netlink: 40 bytes leftover after parsing attributes in process `syz.3.718'.
[  167.393151][   T39] audit: type=1400 audit(1729546693.359:634): avc:  denied  { accept } for  pid=7933 comm="syz.2.719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  167.405679][   T39] audit: type=1400 audit(1729546693.369:635): avc:  denied  { write } for  pid=7933 comm="syz.2.719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  167.535251][ T7938] netlink: 12 bytes leftover after parsing attributes in process `syz.3.718'.
[  168.233978][   T39] audit: type=1400 audit(1729546694.199:636): avc:  denied  { audit_write } for  pid=7940 comm="syz.2.721" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  168.306291][   T94] hsr_slave_0: left promiscuous mode
[  168.318079][   T94] hsr_slave_1: left promiscuous mode
[  168.321413][   T94] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.324156][   T94] batman_adv: batadv0: Removing interface: batadv_slave_0
[  168.330119][   T94] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  168.332228][   T94] batman_adv: batadv0: Removing interface: batadv_slave_1
[  168.397060][   T94] veth1_macvtap: left promiscuous mode
[  168.399702][   T94] veth0_macvtap: left promiscuous mode
[  168.401774][   T94] veth1_vlan: left promiscuous mode
[  168.403524][   T94] veth0_vlan: left promiscuous mode
[  168.791285][ T4777] Bluetooth: hci8: command tx timeout
[  170.748483][   T94] team0 (unregistering): Port device team_slave_1 removed
[  170.834938][   T94] team0 (unregistering): Port device team_slave_0 removed
[  171.629937][ T5351] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  171.633101][ T5351] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  171.635474][ T5351] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  171.638487][ T5351] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  171.640512][ T5351] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  171.642355][ T5351] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  172.677817][ T7975] netlink: 40 bytes leftover after parsing attributes in process `syz.3.731'.
[  172.705932][ T7965] chnl_net:caif_netlink_parms(): no params data found
[  172.933888][ T7983] netlink: 12 bytes leftover after parsing attributes in process `syz.3.731'.
[  172.986161][ T7965] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.001214][ T7965] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.005335][ T7965] bridge_slave_0: entered allmulticast mode
[  173.012272][ T7965] bridge_slave_0: entered promiscuous mode
[  173.022044][ T7965] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.027266][ T7965] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.031982][ T7965] bridge_slave_1: entered allmulticast mode
[  173.037495][ T7965] bridge_slave_1: entered promiscuous mode
[  173.043788][ T7985] netlink: 8 bytes leftover after parsing attributes in process `syz.0.733'.
[  173.046175][ T7985] (unnamed net_device) (uninitialized): (slave veth1): Device is not bonding slave
[  173.048997][ T7985] (unnamed net_device) (uninitialized): option active_slave: invalid value (veth1)
[  173.069154][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  173.069166][   T39] audit: type=1400 audit(1729546699.029:641): avc:  denied  { create } for  pid=7984 comm="syz.0.733" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  173.075877][   T39] audit: type=1400 audit(1729546699.029:642): avc:  denied  { bind } for  pid=7984 comm="syz.0.733" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  173.080997][   T39] audit: type=1400 audit(1729546699.029:643): avc:  denied  { listen } for  pid=7984 comm="syz.0.733" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  173.086307][   T39] audit: type=1400 audit(1729546699.029:644): avc:  denied  { accept } for  pid=7984 comm="syz.0.733" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  173.126118][ T7965] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  173.131688][ T7965] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  173.152659][ T7986] mkiss: ax0: crc mode is auto.
[  173.233892][ T7965] team0: Port device team_slave_0 added
[  173.239694][ T7965] team0: Port device team_slave_1 added
[  173.265044][ T7965] batman_adv: batadv0: Adding interface: batadv_slave_0
[  173.267401][ T7965] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.278022][ T7965] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  173.283160][ T7965] batman_adv: batadv0: Adding interface: batadv_slave_1
[  173.285452][ T7965] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.298950][ T7965] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  173.354085][ T7965] hsr_slave_0: entered promiscuous mode
[  173.359893][ T7965] hsr_slave_1: entered promiscuous mode
[  173.362302][ T7965] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  173.364532][ T7965] Cannot create hsr debugfs directory
[  173.467449][ T7965] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.511989][   T94] bridge_slave_1: left allmulticast mode
[  173.513638][   T94] bridge_slave_1: left promiscuous mode
[  173.515674][   T94] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.526049][   T94] bridge_slave_0: left allmulticast mode
[  173.537812][   T94] bridge_slave_0: left promiscuous mode
[  173.540212][   T94] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.658797][   T39] audit: type=1400 audit(1729546699.629:645): avc:  denied  { create } for  pid=7991 comm="syz.3.735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  173.665083][   T39] audit: type=1400 audit(1729546699.629:646): avc:  denied  { create } for  pid=7991 comm="syz.3.735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  173.670883][ T5351] Bluetooth: hci1: command tx timeout
[  173.778541][   T39] audit: type=1400 audit(1729546699.749:647): avc:  denied  { create } for  pid=7987 comm="syz.2.734" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  173.833536][   T94] gretap0 (unregistering): left promiscuous mode
[  174.043579][   T94] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  174.052008][   T94] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  174.057793][   T94] bond0 (unregistering): Released all slaves
[  174.063771][   T94] bond1 (unregistering): Released all slaves
[  174.073880][   T94] bond2 (unregistering): Released all slaves
[  174.099389][ T7965] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.126276][ T7997] netlink: 20 bytes leftover after parsing attributes in process `syz.3.736'.
[  174.245087][ T7965] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.385225][ T7965] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.394513][ T8013] netlink: 40 bytes leftover after parsing attributes in process `syz.0.742'.
[  174.643238][ T8017] netlink: 12 bytes leftover after parsing attributes in process `syz.0.742'.
[  174.681464][ T7965] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  174.685921][ T7965] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  174.734028][ T7965] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  174.739306][ T7965] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  174.795709][ T7965] 8021q: adding VLAN 0 to HW filter on device bond0
[  174.818886][ T7965] 8021q: adding VLAN 0 to HW filter on device team0
[  174.832229][ T1100] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.834185][ T1100] bridge0: port 1(bridge_slave_0) entered forwarding state
[  174.842216][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.844470][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.934211][ T7965] 8021q: adding VLAN 0 to HW filter on device batadv0
[  174.956025][ T7965] veth0_vlan: entered promiscuous mode
[  174.963865][ T7965] veth1_vlan: entered promiscuous mode
[  174.981873][ T7965] veth0_macvtap: entered promiscuous mode
[  174.985426][ T7965] veth1_macvtap: entered promiscuous mode
[  174.994061][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  174.996806][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  174.999619][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.002328][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.005127][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.009106][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.012360][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.016286][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.020245][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.024104][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.027834][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.034747][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.045167][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.053642][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.063478][ T7965] batman_adv: batadv0: Interface activated: batadv_slave_0
[  175.312995][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.317255][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.320539][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.323337][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.326471][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.330083][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.333170][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.336158][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.339819][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.342662][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.345132][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.349311][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.351792][ T7965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.354423][ T7965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.357620][ T7965] batman_adv: batadv0: Interface activated: batadv_slave_1
[  175.386743][   T94] batadv_slave_1: left promiscuous mode
[  175.409739][   T39] audit: type=1400 audit(1729546701.379:648): avc:  denied  { create } for  pid=8022 comm="syz.0.743" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  175.424425][ T8023] FAULT_INJECTION: forcing a failure.
[  175.424425][ T8023] name failslab, interval 1, probability 0, space 0, times 0
[  175.428648][ T8023] CPU: 2 UID: 0 PID: 8023 Comm: syz.0.743 Not tainted 6.12.0-rc4-syzkaller #0
[  175.430981][ T8023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.434077][ T8023] Call Trace:
[  175.434974][ T8023]  <TASK>
[  175.435766][ T8023]  dump_stack_lvl+0x16c/0x1f0
[  175.437019][ T8023]  should_fail_ex+0x497/0x5b0
[  175.438271][ T8023]  ? fs_reclaim_acquire+0xae/0x150
[  175.439614][ T8023]  should_failslab+0xc2/0x120
[  175.440857][ T8023]  __kmalloc_noprof+0xcb/0x400
[  175.442118][ T8023]  tomoyo_encode2+0x100/0x3e0
[  175.443423][ T8023]  tomoyo_encode+0x29/0x50
[  175.444609][ T8023]  tomoyo_realpath_from_path+0x19d/0x720
[  175.446104][ T8023]  tomoyo_mount_acl+0x66d/0x880
[  175.447395][ T8023]  ? hlock_class+0x4e/0x130
[  175.448592][ T8023]  ? __lock_acquire+0x163e/0x3ce0
[  175.449905][ T8023]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  175.451317][ T8023]  ? __pfx___lock_acquire+0x10/0x10
[  175.452716][ T8023]  ? stack_trace_save+0x95/0xd0
[  175.454049][ T8023]  ? __pfx_lock_release+0x10/0x10
[  175.455390][ T8023]  ? trace_lock_acquire+0x14a/0x1d0
[  175.456762][ T8023]  ? tomoyo_mount_permission+0x146/0x410
[  175.458260][ T8023]  ? lock_acquire+0x2f/0xb0
[  175.459414][ T8023]  ? tomoyo_mount_permission+0x146/0x410
[  175.460826][ T8023]  tomoyo_mount_permission+0x16b/0x410
[  175.462210][ T8023]  ? tomoyo_mount_permission+0x146/0x410
[  175.463677][ T8023]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  175.465148][ T8023]  ? get_current_fs_domain+0x188/0x1f0
[  175.466466][ T8023]  security_sb_mount+0x9b/0x260
[  175.467650][ T8023]  path_mount+0x129/0x1f20
[  175.468754][ T8023]  ? kmem_cache_free+0x152/0x4b0
[  175.470026][ T8023]  ? __pfx_path_mount+0x10/0x10
[  175.471269][ T8023]  ? putname+0x12e/0x170
[  175.472336][ T8023]  __x64_sys_mount+0x294/0x320
[  175.473582][ T8023]  ? __pfx___x64_sys_mount+0x10/0x10
[  175.475012][ T8023]  do_syscall_64+0xcd/0x250
[  175.476222][ T8023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.477732][ T8023] RIP: 0033:0x7f7ffeb7dff9
[  175.478921][ T8023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.483961][ T8023] RSP: 002b:00007f7fff9d1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  175.486131][ T8023] RAX: ffffffffffffffda RBX: 00007f7ffed35f80 RCX: 00007f7ffeb7dff9
[  175.488203][ T8023] RDX: 0000000020000180 RSI: 0000000020000080 RDI: 0000000020000040
[  175.490489][ T8023] RBP: 00007f7fff9d1090 R08: 0000000000000000 R09: 0000000000000000
[  175.492572][ T8023] R10: 000000000000000d R11: 0000000000000246 R12: 0000000000000002
[  175.494678][ T8023] R13: 0000000000000000 R14: 00007f7ffed35f80 R15: 00007ffdabf8e598
[  175.496748][ T8023]  </TASK>
[  175.498686][ T8023] ERROR: Out of memory at tomoyo_realpath_from_path.
[  175.672511][   T94] hsr_slave_0: left promiscuous mode
[  175.675723][   T94] hsr_slave_1: left promiscuous mode
[  175.681759][   T94] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  175.683697][   T94] batman_adv: batadv0: Removing interface: batadv_slave_0
[  175.687941][   T94] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  175.689959][   T94] batman_adv: batadv0: Removing interface: batadv_slave_1
[  175.731783][   T94] veth1_macvtap: left promiscuous mode
[  175.733402][   T94] veth0_macvtap: left promiscuous mode
[  175.735096][   T94] veth1_vlan: left promiscuous mode
[  175.736644][   T94] veth0_vlan: left promiscuous mode
[  175.748035][ T5351] Bluetooth: hci1: command tx timeout
[  177.834593][ T5351] Bluetooth: hci1: command tx timeout
[  179.188389][   T94] team0 (unregistering): Port device team_slave_1 removed
[  179.286955][   T94] team0 (unregistering): Port device team_slave_0 removed
[  179.840343][ T7965] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.842768][ T7965] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.845141][ T7965] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.847434][ T7965] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.887243][   T39] audit: type=1400 audit(1729546705.849:649): avc:  denied  { ioctl } for  pid=8036 comm="syz.3.749" path="socket:[28607]" dev="sockfs" ino=28607 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  179.902987][ T8037] tipc: Started in network mode
[  179.904434][ T8037] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  179.906574][ T8037] tipc: Enabled bearer <eth:team0>, priority 0
[  179.909717][ T5351] Bluetooth: hci1: command tx timeout
[  180.038703][   T39] audit: type=1400 audit(1729546705.999:650): avc:  denied  { mount } for  pid=8036 comm="syz.3.749" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  180.054858][   T39] audit: type=1400 audit(1729546706.019:651): avc:  denied  { remount } for  pid=8036 comm="syz.3.749" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  180.062357][ T8046] devpts: called with bogus options
[  180.066723][ T8048] ------------[ cut here ]------------
[  180.068705][ T8048] kmem_cache of name '9p-fcall-cache-(null)' already exists
[  180.074796][   T39] audit: type=1400 audit(1729546706.039:652): avc:  denied  { connect } for  pid=8040 comm="syz.0.751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  180.081668][ T8048] WARNING: CPU: 3 PID: 8048 at mm/slab_common.c:107 __kmem_cache_create_args+0xb0/0x3c0
[  180.084484][ T8048] Modules linked in:
[  180.085738][ T8048] CPU: 3 UID: 0 PID: 8048 Comm: syz.2.752 Not tainted 6.12.0-rc4-syzkaller #0
[  180.089844][ T8048] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.092748][ T8048] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0
[  180.094456][ T8048] Code: 98 48 3d b0 d6 31 8e 74 25 48 8b 7b 60 48 89 ee e8 65 e6 42 09 85 c0 75 e0 90 48 c7 c7 48 1f 7b 8d 48 89 ee e8 41 11 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 ef e7 42 09 48 85 c0 0f 85
[  180.097780][   T39] audit: type=1400 audit(1729546706.049:653): avc:  denied  { write } for  pid=5291 comm="syz-executor" path="pipe:[2616]" dev="pipefs" ino=2616 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  180.100399][ T8048] RSP: 0018:ffffc90003d8f900 EFLAGS: 00010282
[  180.107904][ T8048] RAX: 0000000000000000 RBX: ffff88810438e8c0 RCX: ffffc9002ff3d000
[  180.109972][ T8048] RDX: 0000000000040000 RSI: ffffffff814e71b6 RDI: 0000000000000001
[  180.112032][ T8048] RBP: ffff888033e54640 R08: 0000000000000001 R09: 0000000000000000
[  180.114084][ T8048] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  180.116216][ T8048] R13: 0000000000020018 R14: ffffc90003d8f9f0 R15: 0000000000020018
[  180.119077][ T8048] FS:  00007f489355c6c0(0000) GS:ffff88806a900000(0000) knlGS:0000000000000000
[  180.122003][ T8048] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  180.123896][ T8048] CR2: 0000000020001000 CR3: 0000000046560000 CR4: 0000000000352ef0
[  180.126006][ T8048] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  180.128409][ T8048] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  180.130500][ T8048] Call Trace:
[  180.131402][ T8048]  <TASK>
[  180.132238][ T8048]  ? __warn+0xea/0x3d0
[  180.133343][ T8048]  ? __kmem_cache_create_args+0xb0/0x3c0
[  180.134860][ T8048]  ? report_bug+0x3c0/0x580
[  180.136121][ T8048]  ? handle_bug+0x54/0xa0
[  180.137809][ T8048]  ? exc_invalid_op+0x17/0x50
[  180.139410][ T8048]  ? asm_exc_invalid_op+0x1a/0x20
[  180.140725][ T8048]  ? __warn_printk+0x1a6/0x350
[  180.142027][ T8048]  ? __kmem_cache_create_args+0xb0/0x3c0
[  180.143488][ T8048]  p9_client_create+0xee0/0x11f0
[  180.144793][ T8048]  ? __pfx_p9_client_create+0x10/0x10
[  180.146274][ T8048]  ? __raw_spin_lock_init+0x3a/0x110
[  180.147719][ T8048]  v9fs_session_init+0x1f8/0x1a80
[  180.149045][ T8048]  ? __pfx_v9fs_session_init+0x10/0x10
[  180.150716][ T8048]  ? kasan_save_track+0x14/0x30
[  180.152028][ T8048]  v9fs_mount+0xc6/0xa50
[  180.153137][ T8048]  ? __pfx_v9fs_mount+0x10/0x10
[  180.154459][ T8048]  ? selinux_sb_eat_lsm_opts+0x594/0x700
[  180.156339][ T8048]  ? cap_capable+0x1cf/0x240
[  180.157619][ T8048]  ? __pfx_v9fs_mount+0x10/0x10
[  180.159181][ T8048]  legacy_get_tree+0x109/0x220
[  180.160446][ T8048]  vfs_get_tree+0x8f/0x380
[  180.161623][ T8048]  path_mount+0x14e6/0x1f20
[  180.162855][ T8048]  ? kmem_cache_free+0x152/0x4b0
[  180.164141][ T8048]  ? __pfx_path_mount+0x10/0x10
[  180.165406][ T8048]  ? putname+0x12e/0x170
[  180.166603][ T8048]  __x64_sys_mount+0x294/0x320
[  180.167971][ T8048]  ? __pfx___x64_sys_mount+0x10/0x10
[  180.169403][ T8048]  do_syscall_64+0xcd/0x250
[  180.170640][ T8048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.172233][ T8048] RIP: 0033:0x7f489277dff9
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  180.173427][ T8048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.178770][ T8048] RSP: 002b:00007f489355c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  180.180976][ T8048] RAX: ffffffffffffffda RBX: 00007f4892935f80 RCX: 00007f489277dff9
[  180.183111][ T8048] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000000000000
[  180.185336][ T8048] RBP: 00007f48927f0296 R08: 0000000020000200 R09: 0000000000000000
[  180.187529][ T8048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  180.189724][ T8048] R13: 0000000000000000 R14: 00007f4892935f80 R15: 00007fff9c098f28
[  180.191843][ T8048]  </TASK>
[  180.192709][ T8048] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  180.194671][ T8048] CPU: 3 UID: 0 PID: 8048 Comm: syz.2.752 Not tainted 6.12.0-rc4-syzkaller #0
[  180.197293][ T8048] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.200267][ T8048] Call Trace:
[  180.201179][ T8048]  <TASK>
[  180.202024][ T8048]  dump_stack_lvl+0x3d/0x1f0
[  180.203357][ T8048]  panic+0x71d/0x800
[  180.204467][ T8048]  ? __pfx_panic+0x10/0x10
[  180.205749][ T8048]  ? show_trace_log_lvl+0x29d/0x3d0
[  180.207278][ T8048]  ? __kmem_cache_create_args+0xb0/0x3c0
[  180.208891][ T8048]  check_panic_on_warn+0xab/0xb0
[  180.210229][ T8048]  __warn+0xf6/0x3d0
[  180.211288][ T8048]  ? __kmem_cache_create_args+0xb0/0x3c0
[  180.212805][ T8048]  report_bug+0x3c0/0x580
[  180.214002][ T8048]  handle_bug+0x54/0xa0
[  180.215122][ T8048]  exc_invalid_op+0x17/0x50
[  180.216336][ T8048]  asm_exc_invalid_op+0x1a/0x20
[  180.217692][ T8048] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0
[  180.219390][ T8048] Code: 98 48 3d b0 d6 31 8e 74 25 48 8b 7b 60 48 89 ee e8 65 e6 42 09 85 c0 75 e0 90 48 c7 c7 48 1f 7b 8d 48 89 ee e8 41 11 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 ef e7 42 09 48 85 c0 0f 85
[  180.224532][ T8048] RSP: 0018:ffffc90003d8f900 EFLAGS: 00010282
[  180.226278][ T8048] RAX: 0000000000000000 RBX: ffff88810438e8c0 RCX: ffffc9002ff3d000
[  180.228798][ T8048] RDX: 0000000000040000 RSI: ffffffff814e71b6 RDI: 0000000000000001
[  180.231326][ T8048] RBP: ffff888033e54640 R08: 0000000000000001 R09: 0000000000000000
[  180.233702][ T8048] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  180.235977][ T8048] R13: 0000000000020018 R14: ffffc90003d8f9f0 R15: 0000000000020018
[  180.238204][ T8048]  ? __warn_printk+0x1a6/0x350
[  180.239493][ T8048]  p9_client_create+0xee0/0x11f0
[  180.240815][ T8048]  ? __pfx_p9_client_create+0x10/0x10
[  180.242297][ T8048]  ? __raw_spin_lock_init+0x3a/0x110
[  180.243768][ T8048]  v9fs_session_init+0x1f8/0x1a80
[  180.245107][ T8048]  ? __pfx_v9fs_session_init+0x10/0x10
[  180.246867][ T8048]  ? kasan_save_track+0x14/0x30
[  180.248224][ T8048]  v9fs_mount+0xc6/0xa50
[  180.249362][ T8048]  ? __pfx_v9fs_mount+0x10/0x10
[  180.250674][ T8048]  ? selinux_sb_eat_lsm_opts+0x594/0x700
[  180.252162][ T8048]  ? cap_capable+0x1cf/0x240
[  180.253625][ T8048]  ? __pfx_v9fs_mount+0x10/0x10
[  180.254960][ T8048]  legacy_get_tree+0x109/0x220
[  180.256444][ T8048]  vfs_get_tree+0x8f/0x380
[  180.257946][ T8048]  path_mount+0x14e6/0x1f20
[  180.259609][ T8048]  ? kmem_cache_free+0x152/0x4b0
[  180.261361][ T8048]  ? __pfx_path_mount+0x10/0x10
[  180.263249][ T8048]  ? putname+0x12e/0x170
[  180.264896][ T8048]  __x64_sys_mount+0x294/0x320
[  180.266695][ T8048]  ? __pfx___x64_sys_mount+0x10/0x10
[  180.268112][ T8048]  do_syscall_64+0xcd/0x250
[  180.269308][ T8048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.271024][ T8048] RIP: 0033:0x7f489277dff9
[  180.272603][ T8048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.278064][ T8048] RSP: 002b:00007f489355c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  180.280947][ T8048] RAX: ffffffffffffffda RBX: 00007f4892935f80 RCX: 00007f489277dff9
[  180.283706][ T8048] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000000000000
[  180.286535][ T8048] RBP: 00007f48927f0296 R08: 0000000020000200 R09: 0000000000000000
[  180.289254][ T8048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  180.291690][ T8048] R13: 0000000000000000 R14: 00007f4892935f80 R15: 00007fff9c098f28
[  180.293774][ T8048]  </TASK>
[  180.295109][ T8048] Kernel Offset: disabled
[  180.296403][ T8048] Rebooting in 86400 seconds..

VM DIAGNOSIS:
21:38:26  Registers:
info registers vcpu 0

CPU#0
RAX=0000000001262c97 RBX=ffff88806a93ee80 RCX=1ffffffff20be119 RDX=0000000000000000
RSI=ffffffff8b6cd020 RDI=ffffffff8bd1a9c0 RBP=0000000000000000 RSP=ffffffff8de07b40
R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff905f4b0f R11=0000000000000000
R12=0000000000000003 R13=ffff88806a63ee80 R14=dffffc0000000000 R15=ffff88806a63ee80
RIP=ffffffff815e747b RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f48934656c0 CR3=000000003ea08000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c9b01c951f66c0bc f3abb7b652491ec0
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2b54663e8772e552 acb331b73d8e68ad
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4110e78361fbba75 d199e96e9fde6477
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a96f7dd489eafcb 4baab5fa45e4d857
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000060
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000020
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7774760d473d354d 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bf15b7c00000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 77fb0260ffba9ad4 721ea03786fe2f96
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000009c4d315
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 61857a228c907be7 a3c79e632292a00f
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9a4578e4b3de344a a96a5ffb6f878389
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffffea0001710100 RCX=ffffffff81dc6f26 RDX=ffff88801eab4880
RSI=0000000000000001 RDI=0000000000000005 RBP=ffffea0001710100 RSP=ffffc900032ff820
R8 =0000000000000005 R9 =0000000000000001 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000001 R14=0000000000000000 R15=ffffea0001694408
RIP=ffffffff818d800b RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3c64c67d60 CR3=0000000048884000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c6410b6a3 00007f3c6410b6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffec6148660 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555579373874 0000555579373870
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555793634a0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555793636a5 00005555793634c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555793656b4 00005555793656b0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000035323335 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000aa0030008000a 98030008000a9003 0008000a88030008 000a800300080008
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01001000000401c7 0800060104ac002e 01ffffffffffffff fffb080003048004
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 020102c00030656c 69662f2e01ffffff ffffffffffef0804 80030a8004000404
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0102bc0008000aa8 030008000aa00300 08000a9803000800 0a90030008000a88
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030008000a800300 080008030480c094 c408000003088004 0010000380040280
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000048f7dd RBX=0000000000000002 RCX=ffffffff8b226579 RDX=0000000000000000
RSI=ffffffff8b6cd020 RDI=ffffffff8bd1a9c0 RBP=ffffed1003b5b000 RSP=ffffc90000197e08
R8 =0000000000000001 R9 =ffffed100d507025 R10=ffff88806a83812b R11=0000000000000000
R12=0000000000000002 R13=ffff88801dad8000 R14=ffffffff905f4b08 R15=0000000000000000
RIP=ffffffff8b22795f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000104 CR3=0000000049360000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc055c51a0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f81df1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f81df1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f81df113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f81df114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f81df11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f81df12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 732064616200786c 6c36313025783000 657a697320780004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5605414447005d49 49131415005d1500 405f4c56055d404d 5751560541444700
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000d0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff850af9e5 RDI=ffffffff9aae6b80 RBP=ffffffff9aae6b40 RSP=ffffc90003d8f268
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000006c R14=ffffffff850af980 R15=0000000000000000
RIP=ffffffff850afa0f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f489355c6c0 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001000 CR3=0000000046560000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff9c0992c0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48927f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48927f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48927f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48927f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48927f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f48927f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000