last executing test programs:

1m0.984802147s ago: executing program 2 (id=615):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c008cff2d00010026bd7000fcdbdf250400000008000c00"], 0x1c}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)

1m0.984446747s ago: executing program 2 (id=616):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) (async, rerun: 32)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000480)=0x14) (rerun: 32)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0) (async)
r2 = socket$netlink(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c000200b919e7f827c31fc0b8b9ff91e32c6a0800010005"], 0x3c}}, 0x40014)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB="6c00000010001fff109e00008000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000003f0000440012800b00010067656e6576650000340002800500030003000000060005004e20000005000400ab000000050009000100000005000a0001000000050009000100000008000a00", @ANYRES32=r4, @ANYRESDEC, @ANYRESHEX=r2, @ANYRESHEX=r4], 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x4000845) (async)
r5 = socket(0x10, 0x803, 0x2) (async)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd25, 0x7ffe, {0x0, 0x0, 0x0, r9, {0x0, 0x7}, {}, {0xffff, 0x6}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20008050}, 0x4)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0}) (async)
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001640)=@deltfilter={0x24, 0x2d, 0x1, 0x70bd2c, 0x25dfdbf7, {0x0, 0x0, 0x0, r11, {0xb, 0x19}, {0x0, 0xfff1}, {0xe, 0x6}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00'}) (async, rerun: 32)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5) (async)
r13 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
r14 = socket(0x1, 0x803, 0x0) (rerun: 32)
getsockname$packet(r14, &(0x7f0000000100)={0x11, 0x0, <r15=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r13, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800e0001006970366772657461700000001800028014000700fc00000000000000000000000000000008000a00", @ANYRES32=r15], 0x54}}, 0x0)

1m0.919076927s ago: executing program 2 (id=618):
mkdir(&(0x7f0000000040)='./file0/../file0\x00', 0x80)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syslog(0x2, &(0x7f00000004c0)=""/164, 0xa4)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='iso9660\x00', 0x405, 0x0)

1m0.831513936s ago: executing program 2 (id=620):
r0 = socket(0x10, 0x2, 0x0)
pipe(&(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_io_uring_setup(0x496, &(0x7f00000000c0)={0x0, 0x100079af, 0xb144, 0x3, 0x40024b}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd_index=0x3, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="380000003e0007012fbd7000fcdbdf25047c0000040000002000018006000600800a0000140019"], 0x38}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x89901)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
writev(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f0000000100)="1d4ac370cf8c47025bd7", 0xa}], 0x1)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000"])
r7 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
move_mount(r6, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r10 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r10, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f00000000c0)='./file0/../file0/../file0/../file0/../file0\x00')
io_uring_enter(r2, 0x627, 0x4c1, 0x43, 0x0, 0x0)
write$cgroup_devices(r1, 0x0, 0xffdd)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r11, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="24000000040800020000000000000000070000040600024088e70000050003002f000000"], 0x24}, 0x1, 0x0, 0x0, 0x24004011}, 0x20008000)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000140)={'syztnl1\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x29, 0x0, 0x6, 0x7f, 0x5, @ipv4={'\x00', '\xff\xff', @multicast1}, @mcast1, 0x0, 0x40, 0x6, 0x41}})

1m0.741526431s ago: executing program 2 (id=622):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x85, &(0x7f0000000240)={0x0, @in6={{0xa, 0x4e24, 0x5, @initdev={0xfe, 0x88, '\x00', 0x80, 0x0}}}, 0x0, 0xb}, 0x90)
r2 = socket$inet6(0xa, 0x3, 0x38)
setsockopt$inet6_int(r2, 0x29, 0x7, &(0x7f0000000040)=0xeffe, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="580000000102010800000000000000000a000000440002802c00018014000300fe8000000000000000000000000000bb14000400fc01000000000000000800000000000010000280050001"], 0x58}}, 0x0)
sendmsg$nl_generic(r3, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000002640)=ANY=[@ANYBLOB="14000000380001002cbd7000ffdbdf250f"], 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0xc804)
connect$inet6(r2, &(0x7f0000000300)={0xa, 0x4e21, 0x41200003, @loopback, 0xb}, 0x1c)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r5, &(0x7f0000000000)={0x1f, 0x0, @none, 0x4}, 0xe)
connect$bt_l2cap(r5, &(0x7f0000000040)={0x1f, 0x0, @none, 0x1, 0x2}, 0x18)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xf338}], 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xd)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0xfd)
ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000100))
r6 = syz_init_net_socket$ax25(0x3, 0x2, 0xcd)
close(r6)
setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000040)=0x4, 0x4)

1m0.428494993s ago: executing program 2 (id=633):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000150081054e81f782db44b9040a1d3b020a000000040000a11800020000e9400084150e1208000f0100810401a80016ea1f0006400303000803600cfab94dcf5c0461c1d67f6e94007134cf6ee08002a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad9561b4a29c828f6a3aa2fcf72baa7ea67e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a753916647f616b762439deec51", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x4000) (async)
r1 = socket$inet_udp(0x2, 0x2, 0x0) (async)
mount(&(0x7f0000000340)=@sg0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='tmpfs\x00', 0x800080, &(0x7f0000000400)='ip6erspan0\x00')
r2 = socket(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f00000007c0)="7800000018002507b9199b02ffff48000203be04020406050a02040c5c000900580006080a0000000d0085a168d0bf46d32345653600648d270015000a00000849935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000407160016000a0000000000e000e218d1dd3b6ed538f2523250", 0x78, 0x0, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x2a8, 0xffffffff, 0x98, 0x98, 0x130, 0xffffffff, 0xffffffff, 0x210, 0x210, 0x210, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@ip={@private, @multicast1, 0x0, 0x0, 'ip6gre0\x00', 'ip6gre0\x00', {}, {}, 0x6, 0x0, 0x64}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@private, @remote, 0x0, 0x0, 'ip6erspan0\x00', 'wlan1\x00'}, 0x0, 0xb0, 0xe0, 0x0, {}, [@common=@set={{0x40}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x308)

1m0.393853036s ago: executing program 32 (id=633):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000150081054e81f782db44b9040a1d3b020a000000040000a11800020000e9400084150e1208000f0100810401a80016ea1f0006400303000803600cfab94dcf5c0461c1d67f6e94007134cf6ee08002a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad9561b4a29c828f6a3aa2fcf72baa7ea67e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a753916647f616b762439deec51", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x4000) (async)
r1 = socket$inet_udp(0x2, 0x2, 0x0) (async)
mount(&(0x7f0000000340)=@sg0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='tmpfs\x00', 0x800080, &(0x7f0000000400)='ip6erspan0\x00')
r2 = socket(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f00000007c0)="7800000018002507b9199b02ffff48000203be04020406050a02040c5c000900580006080a0000000d0085a168d0bf46d32345653600648d270015000a00000849935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000407160016000a0000000000e000e218d1dd3b6ed538f2523250", 0x78, 0x0, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x2a8, 0xffffffff, 0x98, 0x98, 0x130, 0xffffffff, 0xffffffff, 0x210, 0x210, 0x210, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@ip={@private, @multicast1, 0x0, 0x0, 'ip6gre0\x00', 'ip6gre0\x00', {}, {}, 0x6, 0x0, 0x64}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@private, @remote, 0x0, 0x0, 'ip6erspan0\x00', 'wlan1\x00'}, 0x0, 0xb0, 0xe0, 0x0, {}, [@common=@set={{0x40}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x308)

45.071158824s ago: executing program 1 (id=942):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000600)={<r0=>0xffffffffffffffff})
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_KICK(r1, 0x8008af26, &(0x7f0000000180)={0x1})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'team_slave_0\x00', &(0x7f0000001ac0)=@ethtool_cmd={0x2, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x9, 0x0, 0x0, 0xffffffff, [0x2]}})
r2 = syz_open_dev$rtc(&(0x7f00000000c0), 0x80000004, 0xc84483)
ioctl$RTC_WKALM_RD(r2, 0x80287010, &(0x7f0000000000))

45.070601956s ago: executing program 1 (id=943):
r0 = syz_open_dev$video4linux(&(0x7f00000000c0), 0xa, 0x8580)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000000)={0x0, 0x0, 0x1009, 0x4, 0x0, 0x10000, 0x3e12, 0x1})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x1)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r2, 0x40045730, &(0x7f0000002780))
mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x3, 0x4010, r1, 0x4000)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
write$binfmt_aout(r4, &(0x7f0000000000)=ANY=[], 0xff52)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x32)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r6 = dup(r5)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r5, 0xc0109428, &(0x7f0000000100)={0x1, 0x2})
r7 = landlock_create_ruleset(&(0x7f0000000240)={0x1eff}, 0x18, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_SET_NESTED_STATE(r6, 0x4080aebf, &(0x7f00000007c0)={{0x3, 0x0, 0x80, {0x1000, 0xdddd0000}}, "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", "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"})
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x3000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
r10 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0xfffffffffffffffe)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
mmap$binder(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x2)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
landlock_restrict_self(r7, 0x0)
mq_open(&(0x7f0000000100)='&\x00', 0x40, 0x100, 0x0)
ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000040)={0x1, 0x4, 0x6, 0x0, 0x1})

44.889974621s ago: executing program 1 (id=950):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2) (async)
r1 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r2, 0xc008ae09, &(0x7f0000000040)=""/41)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
times(0xfffffffffffffffe)
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x0, 0x2, 0x0, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "fafc00"}, 0x0, 0x1, {0x0}})
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000280)=0x2) (async)
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000280)=0x2)
close_range(r0, 0xffffffffffffffff, 0x400000000000000)

44.820901422s ago: executing program 1 (id=952):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r2 = syz_open_pts(r1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$9p_fd(0x0, &(0x7f0000000280)='./file1\x00', 0x0, 0x10000, 0x0)
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_READY(r4, 0x9360, 0x800000000000001)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
dup3(r2, r1, 0x0)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r5, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r5, 0x40045567, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000ec0)={'syz0\x00', {0x0, 0x0, 0x0, 0x9}, 0x0, [0x0, 0x3, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x1, 0x7, 0x0, 0x0, 0x0, 0x5, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, 0x0, 0x8, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x8, 0xb16, 0x0, 0x200000, 0x0, 0x0, 0x0, 0xffffffff, 0x7ff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x1000, 0x0, 0xf, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0xfffffffd, 0x0, 0xfffffffa, 0x0, 0x80000000, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0xe], [0x7, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffffffc, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xe, 0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xe6d, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x7, 0x4], [0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc045, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x80, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0xfffffffd, 0xa, 0x0, 0x0, 0x0, 0x0, 0x5]}, 0x45c)
write$uinput_user_dev(r5, &(0x7f0000001340)={'syz0\x00', {0x7, 0x9, 0x4, 0xa423}, 0x3f, [0x78, 0x4, 0x10, 0x80000000, 0x1, 0x5, 0x3, 0x7ff, 0x3, 0x8, 0x0, 0x3, 0x27, 0x8, 0x400, 0x5, 0x8, 0x5, 0xfffffffd, 0x5, 0x2, 0x100, 0x8, 0x3, 0x3, 0x46, 0x4, 0x401, 0x0, 0x5a5f, 0x5, 0xffffffff, 0x200, 0xca, 0xdf, 0x2, 0x7, 0x3, 0x6788d794, 0x5, 0x1, 0x8001, 0xfffffff4, 0xdc8, 0x2, 0xf9f, 0x3, 0x4, 0x8, 0x22, 0x3, 0x4, 0xf65, 0x4, 0x200, 0x7, 0xfffffffb, 0x7, 0x2, 0x3, 0x6, 0x2, 0x1, 0x1c5], [0x4, 0x6, 0x3, 0x7, 0x7fff, 0x5, 0x1, 0x2, 0x1, 0x6, 0x7fffffff, 0xd60a, 0xf, 0x10, 0x9, 0x4d1, 0x2, 0x5, 0x77ccec8f, 0x4624, 0xffff, 0x14, 0x1aa, 0x7, 0xfff, 0x3, 0x401, 0x2, 0x9, 0x9, 0x40000000, 0x9, 0x6, 0xe, 0x0, 0x1e, 0x0, 0x7fffffff, 0x5, 0x7, 0x4, 0x2, 0x5, 0x7, 0xfffffe34, 0x19a9, 0x5, 0x49, 0x4, 0x6701, 0x1000, 0x9, 0x2, 0x5, 0x7ff, 0x101, 0xb0, 0x2, 0x3, 0xfffffff9, 0x8ec9, 0x81, 0x1, 0x8], [0x2, 0x7b7, 0x5, 0x7, 0xffff, 0x5, 0x9, 0x1, 0x2, 0x8, 0xf0, 0x8, 0xe, 0x2, 0x9, 0x80000000, 0x9, 0x3, 0x80, 0x5, 0xd, 0x2, 0x0, 0x27, 0x1, 0x8, 0x48, 0x5, 0xffffffd6, 0xffff856f, 0x1, 0x3ff, 0x8, 0x81, 0x9, 0x9, 0x2, 0x55c0, 0x7fff, 0x4, 0x0, 0x4, 0x3, 0x8, 0x200, 0x1, 0x9, 0xa07, 0x48000000, 0x7dca7f70, 0x1000, 0xb, 0x9, 0x1e, 0x100, 0x9a, 0xe, 0x8, 0xffff, 0x40a, 0x80000000, 0x91ce, 0xd, 0x8], [0x60c6707f, 0x5, 0x6, 0xf, 0x8, 0x800, 0x5, 0x9, 0x9, 0x35, 0x4, 0x4, 0x3ff, 0x7, 0x20c4, 0x6, 0x4, 0x1000, 0x8, 0xb654, 0x6, 0x8, 0x9, 0xfffff0b3, 0x1, 0x5, 0x3, 0x8, 0x3, 0x1, 0x8, 0x7, 0x6, 0x8001, 0x8, 0x3, 0x2, 0x7, 0x40400000, 0x1, 0x6, 0x2, 0x9, 0x8, 0x8001, 0x1, 0x5, 0x6, 0x0, 0x0, 0x4, 0x2, 0x7, 0x6, 0x1, 0x0, 0xffff85a0, 0x6, 0x6, 0x9, 0x3, 0x6, 0x80, 0x7]}, 0x45c)
ioctl$UI_DEV_CREATE(r5, 0x5501)
write$uinput_user_dev(r5, &(0x7f0000000a40)={'syz1\x00', {0xfffd, 0xd}, 0x4d, [0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0xffff, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xffffffff, 0x3, 0x3, 0x0, 0x0, 0x6, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x400000, 0x1, 0x0, 0x0, 0xfffffffe, 0x0, 0x4, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd5], [0x0, 0x80000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x7fffffc, 0x0, 0x0, 0x7fff, 0x0, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x6, 0x2], [0x81, 0x0, 0x5d30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfc2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xe58b, 0xe, 0x0, 0x3, 0x0, 0x1, 0x1ff]}, 0x45c)
close_range(r0, 0xffffffffffffffff, 0x0)

44.699838373s ago: executing program 1 (id=956):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20044002)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x71)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r3}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x404c81c}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_FLAGS={0x8, 0x8, 0x781}]}, 0x34}}, 0x0)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x4e20, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000000)={r7, @in={{0x2, 0x0, @empty}}, 0x27c0}, 0x90)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000001c0)={r7, @in6={{0xa, 0x4e20, 0xffffffff, @private2, 0xffffffff}}}, 0x90)
unshare(0x6a040000)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)

44.639127009s ago: executing program 1 (id=957):
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
write(0xffffffffffffffff, &(0x7f0000000040)="9f10a563d806a07f2474cb4be95f3a72712e9bc98c3660f728c56c8945887e7347f90961a654870f0d7c81cc516bd90b4a882301f2b0", 0x36) (async)
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wg2\x00', <r1=>0x0})
setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@mcast1, @in6=@local, 0x4e22, 0x0, 0x4e22, 0x6, 0xa, 0x80, 0x20, 0x41, r1, 0xee00}, {0x8000, 0x93, 0x7, 0x7, 0x81, 0x1, 0x1, 0x3}, {0x3, 0x6, 0x7, 0x2dbe}, 0x5, 0x6e6bbc, 0x1, 0x0, 0x1, 0x1}, {{@in=@broadcast, 0x4d3, 0x6c}, 0x2, @in=@multicast1, 0x3500, 0x3, 0x0, 0x6, 0x6, 0x10000, 0x1}}, 0xe8) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x40010, r4, 0x86fb3000)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000003e0007012dbd7000fcdbdf25047c0000040000001400018006000600800a0000080016"], 0x2c}, 0x1, 0xc00000000000000}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) (async)
openat$cgroup_ro(r4, &(0x7f0000000200)='cpuacct.usage_all\x00', 0x0, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

44.565496196s ago: executing program 33 (id=957):
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
write(0xffffffffffffffff, &(0x7f0000000040)="9f10a563d806a07f2474cb4be95f3a72712e9bc98c3660f728c56c8945887e7347f90961a654870f0d7c81cc516bd90b4a882301f2b0", 0x36) (async)
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wg2\x00', <r1=>0x0})
setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@mcast1, @in6=@local, 0x4e22, 0x0, 0x4e22, 0x6, 0xa, 0x80, 0x20, 0x41, r1, 0xee00}, {0x8000, 0x93, 0x7, 0x7, 0x81, 0x1, 0x1, 0x3}, {0x3, 0x6, 0x7, 0x2dbe}, 0x5, 0x6e6bbc, 0x1, 0x0, 0x1, 0x1}, {{@in=@broadcast, 0x4d3, 0x6c}, 0x2, @in=@multicast1, 0x3500, 0x3, 0x0, 0x6, 0x6, 0x10000, 0x1}}, 0xe8) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x40010, r4, 0x86fb3000)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000003e0007012dbd7000fcdbdf25047c0000040000001400018006000600800a0000080016"], 0x2c}, 0x1, 0xc00000000000000}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) (async)
openat$cgroup_ro(r4, &(0x7f0000000200)='cpuacct.usage_all\x00', 0x0, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

936.981154ms ago: executing program 4 (id=1891):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3000001, 0x80010, 0xffffffffffffffff, 0x8000000)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000d, 0x10, 0xffffffffffffffff, 0x10000000) (async)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SPLICE={0x1e, 0x5a, 0x0, @fd=r0, 0x8000000000000001, {0x0, r0}, 0x8001, 0x6, 0x1, {0x0, r3, r0}}) (async)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@migrate={0xac, 0x21, 0x1, 0x70bd27, 0x25dfdbfb, {{@in6=@mcast1, @in6=@remote, 0x4e21, 0x0, 0x4e21, 0x9ffd, 0x7, 0x180, 0x20, 0x1d}, 0x6e6ba8, 0x4b75cd6ef3e93cb3}, [@migrate={0x50, 0x11, [{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in6=@loopback, @in=@broadcast, @in6=@empty, 0x6c, 0x1, 0x0, 0x0, 0xa, 0x2}]}, @offload={0xc, 0x1c, {0x0, 0x2}}]}, 0xac}, 0x1, 0x0, 0x0, 0x4000840}, 0x20004040)

934.714841ms ago: executing program 4 (id=1892):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x1}})
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x20, 0x19, 0xa, 0x101, 0x0, 0x0, {}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x4)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000102c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x401, 0xfffffffc, 0x100, {0x0, 0x0, 0x0, 0x0, 0xc0, 0x8040}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0x6b, 0x1, @random="0e1d6c77e161"}]}, 0x40}}, 0x0)

881.058225ms ago: executing program 4 (id=1893):
msgctl$IPC_RMID(0x0, 0x0) (async)
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x3, &(0x7f0000001300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x90)
r3 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
write(r4, &(0x7f0000001280)='\f', 0x1) (async)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) (async)
r5 = fsmount(r3, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r2, r5, 0x3, 0x0, @val=@perf_event={0x1}}, 0x18) (async)
listen(r1, 0x0) (async)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x1, 0x0) (async)
lremovexattr(0x0, 0x0) (async)
syz_usbip_server_init(0x6)
syz_usbip_server_init(0x5) (async)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r6=>0xffffffffffffffff}) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x820000, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r8, 0xc048aec8, &(0x7f0000000080)={0x6}) (async)
socket$netlink(0x10, 0x3, 0x8)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0xd0f, 0x70bd27, 0x0, {0x60, 0x0, 0x0, r9, {0x0, 0x8}, {0xffff, 0xffff}, {0xe, 0xa}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x5, '\x00', 0x1, 0x8, 0xffffffff, 0x100}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80d1}, 0x1000c01d) (async)
r10 = msgget$private(0x0, 0x10)
msgctl$MSG_STAT(r10, 0xb, &(0x7f00000000c0)=""/89)

880.824237ms ago: executing program 4 (id=1894):
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18}, './file0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x9, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000611230000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc}, 0x94)
prctl$PR_MCE_KILL(0x21, 0x1, 0x1)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
syz_open_dev$swradio(&(0x7f0000002440), 0x1, 0x2)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r4, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0x6, 0x1}}, 0x20)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0xc048aeca, &(0x7f0000000080))
r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r5, r0, &(0x7f0000002080)=0x3a, 0x23b)
r6 = eventfd2(0x4, 0x1800)
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000000)=r6, 0x1)

740.502458ms ago: executing program 0 (id=1898):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, &(0x7f0000000000)=0x2, 0x4)
r0 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r0, 0x107, 0xb, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="20000000010805000000000000000000af0000010900010073797a3100000000d7757870c091c8e4cb373b3d0471416baa003b7c30f5eea725c031b3f7111068c008c0b8728b2b8cd0f043653fc640d38709c1123fc8ef8ed7aed0323f3bd3184b6167c2487b9d64a70db99a0dcba383330ae101d2a823b7b6"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)

740.041281ms ago: executing program 0 (id=1899):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha512\x00'}, 0x58)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98)
r4 = accept4(r0, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_VENDOR(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="dfbf00000000000000006700000008000300", @ANYRES32=r7, @ANYBLOB="0800c300741300000800c40001"], 0x30}, 0x1, 0x0, 0x0, 0x40002}, 0x0)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r4, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000900)={0x1298, r5, 0x800, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME={0x6a, 0x33, @ctrl_frame=@ba={{}, {0x793d}, @device_b, @device_a, @multi={{0x0, 0x1, 0x1, 0x0, 0x6}, [{0x0, 0x4, {0x8, 0x1}, "891b7f46e64e8876"}, {0x0, 0xb, {0x9, 0xffd}, "f2aa241ccf367dad"}, {0x0, 0x5, {0x8, 0xd}, "49a5f8e9f8bd7dce"}, {0x0, 0x3, {0x2, 0x3}, "933c2143b5b8a658"}, {0x0, 0x3, {0xb, 0x445}, "c264ae7953dfb672"}, {0x0, 0x4, {0x2, 0x4}, "3bb3546ee1d4982e"}], {0x0, 0x9, {0xb, 0xffb}, "395c668f39c6b3f7"}}}}, @NL80211_ATTR_FRAME={0x18, 0x33, @ctrl_frame=@bar={{}, {0x7}, @device_a, @broadcast, @compressed={{0x1, 0x0, 0x1, 0x0, 0xc}, {0x3, 0x8}}}}, @NL80211_ATTR_FRAME={0x119e, 0x33, @data_frame={@a_msdu=@type11={{0x0, 0x2, 0x4, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x9}, @broadcast, @device_b, @random="a57f73ecbd3c", {0x2, 0x8}, @device_b, @void, @value=@ver_80211n={0x0, 0x7c47, 0x3, 0x0, 0x0, 0x2, 0x1}}, @a_msdu=[{@broadcast, @device_a, 0x67, "7a84c9e727874c0865827d330eb3e72fdeaf01dc186927466cd4b117e7e104a608d91c212ca69e0fc98949ca699a8193a1b7a6ca93292839dcb03a07120c362bd41a56f3542e263079d6663cf5502a9914a716fe0586b98ec656de3889383993be0b1deb17e20f"}, {@device_b, @broadcast, 0x1000, "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"}, {@device_a, @device_a, 0xe2, "592c8cf9f5ec5dbf4ac56dc2660b769a9a7ec9495705b2fde4ba475f6c813305674d092ac9ae4b8ce0b809a4a3bb6d39ab4e06334f7581135d8fd60c1a615d0f1489e54b8f894330fb3a2a4da8d03ff80b57d0f0af6c854b5cc8dbdaaf35cc46aff70b51dc49e972e969723b4c642082d68a24df3ef2d36f2303773f0d79f45d3230b8f6e5c2a0141cae91c783d3ddca256e09367725c023f7e89893723b9aa457dafc3c931990febeab1e87269437730eaf847b853d960808cfaf8abaf5010ea33735d7ed01af96d41875ebf7c48c9d4fbb2d25de516313f608b123437f04b03d50"}]}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_FRAME={0x32, 0x33, @mgmt_frame=@reassoc_req={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, {0xfd}, @broadcast, @device_b, @initial, {0x0, 0x8}, @value=@ver_80211n={0x0, 0x6, 0x1, 0x3, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1}}, 0x4200, 0x7, @device_a, {0x0, 0x6, @default_ap_ssid}, @void, @void}}, @NL80211_ATTR_FRAME={0x20, 0x33, @ctrl_frame=@ba={{}, {0x7068}, @device_b, @device_b, @compressed={{0x1, 0x0, 0x1, 0x0, 0x3}, {0x8, 0x9}, "2d0cc9552a2d2061"}}}]}, 0x1298}, 0x1, 0x0, 0x0, 0x34006860}, 0x80)
recvmmsg(r4, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000500)=""/223, 0xdf}], 0x1}}], 0x2, 0x60, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r6, 0xc008551a, &(0x7f0000000140)={0xe, 0xc, [0x1ff, 0x59aa, 0xe0]})
socket$alg(0x26, 0x5, 0x0) (async)
bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha512\x00'}, 0x58) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vxcan0\x00'}) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98) (async)
accept4(r0, 0x0, 0x0, 0x0) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000100)={'wlan1\x00'}) (async)
sendmsg$NL80211_CMD_VENDOR(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="dfbf00000000000000006700000008000300", @ANYRES32=r7, @ANYBLOB="0800c300741300000800c40001"], 0x30}, 0x1, 0x0, 0x0, 0x40002}, 0x0) (async)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r4, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000900)={0x1298, r5, 0x800, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME={0x6a, 0x33, @ctrl_frame=@ba={{}, {0x793d}, @device_b, @device_a, @multi={{0x0, 0x1, 0x1, 0x0, 0x6}, [{0x0, 0x4, {0x8, 0x1}, "891b7f46e64e8876"}, {0x0, 0xb, {0x9, 0xffd}, "f2aa241ccf367dad"}, {0x0, 0x5, {0x8, 0xd}, "49a5f8e9f8bd7dce"}, {0x0, 0x3, {0x2, 0x3}, "933c2143b5b8a658"}, {0x0, 0x3, {0xb, 0x445}, "c264ae7953dfb672"}, {0x0, 0x4, {0x2, 0x4}, "3bb3546ee1d4982e"}], {0x0, 0x9, {0xb, 0xffb}, "395c668f39c6b3f7"}}}}, @NL80211_ATTR_FRAME={0x18, 0x33, @ctrl_frame=@bar={{}, {0x7}, @device_a, @broadcast, @compressed={{0x1, 0x0, 0x1, 0x0, 0xc}, {0x3, 0x8}}}}, @NL80211_ATTR_FRAME={0x119e, 0x33, @data_frame={@a_msdu=@type11={{0x0, 0x2, 0x4, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x9}, @broadcast, @device_b, @random="a57f73ecbd3c", {0x2, 0x8}, @device_b, @void, @value=@ver_80211n={0x0, 0x7c47, 0x3, 0x0, 0x0, 0x2, 0x1}}, @a_msdu=[{@broadcast, @device_a, 0x67, "7a84c9e727874c0865827d330eb3e72fdeaf01dc186927466cd4b117e7e104a608d91c212ca69e0fc98949ca699a8193a1b7a6ca93292839dcb03a07120c362bd41a56f3542e263079d6663cf5502a9914a716fe0586b98ec656de3889383993be0b1deb17e20f"}, {@device_b, @broadcast, 0x1000, "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"}, {@device_a, @device_a, 0xe2, "592c8cf9f5ec5dbf4ac56dc2660b769a9a7ec9495705b2fde4ba475f6c813305674d092ac9ae4b8ce0b809a4a3bb6d39ab4e06334f7581135d8fd60c1a615d0f1489e54b8f894330fb3a2a4da8d03ff80b57d0f0af6c854b5cc8dbdaaf35cc46aff70b51dc49e972e969723b4c642082d68a24df3ef2d36f2303773f0d79f45d3230b8f6e5c2a0141cae91c783d3ddca256e09367725c023f7e89893723b9aa457dafc3c931990febeab1e87269437730eaf847b853d960808cfaf8abaf5010ea33735d7ed01af96d41875ebf7c48c9d4fbb2d25de516313f608b123437f04b03d50"}]}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_FRAME={0x32, 0x33, @mgmt_frame=@reassoc_req={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, {0xfd}, @broadcast, @device_b, @initial, {0x0, 0x8}, @value=@ver_80211n={0x0, 0x6, 0x1, 0x3, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1}}, 0x4200, 0x7, @device_a, {0x0, 0x6, @default_ap_ssid}, @void, @void}}, @NL80211_ATTR_FRAME={0x20, 0x33, @ctrl_frame=@ba={{}, {0x7068}, @device_b, @device_b, @compressed={{0x1, 0x0, 0x1, 0x0, 0x3}, {0x8, 0x9}, "2d0cc9552a2d2061"}}}]}, 0x1298}, 0x1, 0x0, 0x0, 0x34006860}, 0x80) (async)
recvmmsg(r4, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000500)=""/223, 0xdf}], 0x1}}], 0x2, 0x60, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r6, 0xc008551a, &(0x7f0000000140)={0xe, 0xc, [0x1ff, 0x59aa, 0xe0]}) (async)

640.378008ms ago: executing program 5 (id=1903):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket(0x15, 0x5, 0x0)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r1}, 0x8)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x4, [@enum={0x3, 0x4, 0x0, 0x6, 0x4, [{0x0, 0xfffffffd}, {0x2, 0x9}, {0x1, 0x3}, {0x0, 0x5}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x4, 0x6}}]}, {0x0, [0x61, 0x5f]}}, &(0x7f0000000200)=""/73, 0x60, 0x49, 0x1, 0x8}, 0x28)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r2}, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xd7, 0x9, 0x0, 0x8082, 0x1, 0x6, '\x00', 0x0, r3, 0x0, 0x0, 0x4, 0xa, @value=r3}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r4, &(0x7f00000002c0), &(0x7f00000004c0)=@udp}, 0x20)
pipe(&(0x7f0000000080))
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000080)={0x0, 0x8408, &(0x7f0000000680)=[{&(0x7f0000000180)="5c00000014006b03c84e21008bf32c19021800f80200000044000200ac14143705251e6182949a36c23d3b48dfd8cdbf9367b498fa51f60a64c9f4d4938037e786a6d0bdd77f6f60c1504bb9189d9193e9bd1c1b7800000000000000", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
getsockopt(r1, 0x200000000114, 0x271f, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000002c0), 0x400, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b00)=ANY=[@ANYBLOB="140000001000010000000000000000000200000a280000000c0a010200000000000000000200000308000440000000010900020073797a310000000030000000000a01080000000000000000050000090900010073797a3000000000040006000900010073797a3100000000140000000c0a020200000000000000000200000620000000000a01030000000000000000010000080900010073797a310000000030000000160a01040000000000000000050000090900010073797a310000000004000380090002"], 0x104}, 0x1, 0x0, 0x0, 0x40}, 0xc840)

580.782655ms ago: executing program 0 (id=1904):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000840)='./bus\x00', 0xa4)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=ANY=[@ANYBLOB="30000000180001000000000000000000020000000000000900000000060015000a0000000c001680080002007f"], 0x30}}, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x52}, 0x28)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0xc0189436, &(0x7f0000000140))

579.929132ms ago: executing program 3 (id=1905):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, 0x0, 0x20008000)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x38, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x38}}, 0x0)

569.240173ms ago: executing program 5 (id=1906):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000c7f000)='./file0\x00', &(0x7f0000df9000)='nfs4\x00', 0x0, &(0x7f0000590ffe)='v4') (async)
r0 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000002240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) (async, rerun: 64)
sendmsg(r2, 0x0, 0x0) (rerun: 64)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) (async)
landlock_create_ruleset(0x0, 0x0, 0x2) (async, rerun: 64)
r3 = socket$kcm(0x2, 0x5, 0x84) (rerun: 64)
sendmsg$inet(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0x2, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000001800)='_', 0x1}], 0x1}, 0x64) (async)
ioctl$SIOCAX25DELFWD(r0, 0x89eb, &(0x7f0000000040)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default}) (async)
setsockopt$sock_attach_bpf(r3, 0x84, 0x1e, &(0x7f0000000000), 0x10) (async, rerun: 64)
r4 = socket$kcm(0x10, 0x2, 0x0) (rerun: 64)
sendmsg$kcm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000006c0)}, 0x20040004)

490.781005ms ago: executing program 3 (id=1907):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
r3 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r3, 0xc0405665, &(0x7f0000000140)={0x0, 0x2, 0x0, 0x0, 0x8, 0x7})
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xf, 0x4, 0x8, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r4}, 0x0, 0x0}, 0x20)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000140)=ANY=[], 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',posixacl'])

490.498465ms ago: executing program 5 (id=1908):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/4140], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f741065666765f36f0f330f09660f3a0cb9000000752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x32}], 0x1, 0x12, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_update={'update ', 'ecryptfs', 0x20, 'user:', 'new '}, 0x1a, 0xfffffffffffffffc)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r3 = add_key$user(&(0x7f0000000380), &(0x7f0000000140)={'syz', 0x2}, &(0x7f0000000400)='_', 0x1, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
r5 = add_key$user(&(0x7f00000001c0), &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000d00)="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", 0x151, 0xfffffffffffffffd)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes192\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, 0x0, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r3, r4, r5}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'sha3-512-generic\x00'}})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x1000000000, 0x2004cb, 0x1, 0xfffffffffffffffe, 0x3, 0x0, 0xff, 0x0, 0x4, 0x2, 0x1ffc], 0x80a0000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

381.124954ms ago: executing program 3 (id=1909):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
io_uring_enter(r3, 0x557a, 0xc9, 0x4, &(0x7f0000000040)={[0x5]}, 0x8)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000600)=@newsa={0x144, 0x10, 0x1, 0x0, 0x25dfdbfd, {{@in6=@empty, @in6=@local, 0x200, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@mcast2, 0x4d2, 0x6c}, @in6=@remote, {0x0, 0x0, 0x0, 0x1, 0x0, 0xa, 0x0, 0xffffffffffffffff}, {0x0, 0x4}, {}, 0x0, 0x3501, 0x2, 0x0, 0xfd}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @offload={0xc, 0x1c, {r2, 0x2}}]}, 0x144}, 0x1, 0x0, 0x0, 0x800}, 0x2004c840)

309.339801ms ago: executing program 3 (id=1910):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})

308.712576ms ago: executing program 5 (id=1911):
r0 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000026c0)={0x0, &(0x7f0000002600)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "427f4d05618664ecb7f952ed7667675bc32afc7ebbfea1deee1e2e520cc38c6a"}})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x300)

242.906063ms ago: executing program 5 (id=1912):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b40)=@filter={'filter\x00', 0x4, 0x4, 0x4b8, 0xffffffff, 0x260, 0x260, 0xe8, 0xfeffffff, 0xffffffff, 0x3e8, 0x3e8, 0x3e8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xffffffff, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0x138, 0x178, 0x0, {}, [@common=@srh1={{0x90}, {0x21, 0x12, 0xbe, 0x7, 0x5aa9, @ipv4={'\x00', '\xff\xff', @empty}, @private1, @local, [0xff000000, 0xff000000, 0x0, 0xff], [0xffffff00, 0xff000000, 0xff], [0x0, 0xffffff, 0xffffff00, 0x7fffff7f], 0x3c80}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x2000010}}}}, {{@uncond, 0x0, 0x160, 0x188, 0x0, {}, [@common=@unspec=@addrtype1={{0x28}, {0x21, 0x180, 0x5}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x3, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @private1, [0x0, 0x0, 0xff, 0xff], [0x0, 0xffffff00], [0x0, 0xff000000], 0x843, 0x1400}}]}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x518)
r1 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r1, 0x8)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
accept4(r3, &(0x7f0000000040)=@tipc, &(0x7f00000000c0)=0x80, 0xc0000)
setsockopt$netlink_NETLINK_RX_RING(r3, 0x10e, 0x6, &(0x7f0000000000)={0xb7, 0x80000000, 0xfffffff8, 0x7ff}, 0x10)
sendto$inet(r2, &(0x7f00000002c0)='\x00', 0x1, 0x4008080, 0x0, 0x0)
r4 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r4, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x81, 0x42}, 0x10)
r5 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r5, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000400)={0x0, 0x4}, 0x8)
sendmsg$TCPDIAG_GETSOCK(r2, 0x0, 0x40)

242.426814ms ago: executing program 5 (id=1913):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000700)={'\x00', 0x100, 0xfff, 0x3, 0x80000000, 0x4, <r4=>r1})
newfstatat(0xffffffffffffff9c, &(0x7f0000000780)='.\x00', &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x4000)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f00000021c0)={0x2020, 0x0, <r7=>0x0, <r8=>0x0, <r9=>0x0}, 0x2020)
write$FUSE_INIT(r6, &(0x7f0000000380)={0x50, 0x0, r7, {0x7, 0x28, 0x0, 0x40488060, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24522716a989086f, 0xfffffffc}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f000000a280)="03680f2a20da68ab7a58c28b635d19c32b6efabb6ae3b5eee5a74d8943c613539e166c8baef50500824343a2f05093a5c21f746caefe9f9bccd83cca0fc28da20e2706308c61398dfce5f54ea9f266791ba29a4c7da158637def8b816aa296815ff13c06d632df45feaec1fd272ec1b510eaf58fe6b26cc36df3ecc0f5b1f258a190304e2519dd39ba9f5bc1788926ced5202e3b1e3afa16ae0b5d66dc05b36d3a00f72e5f318f8bdfc7eddc94238c50031d0657a22445ad0b3b90a86b086eed837a00bf0a3888bf61b4db57d6d8d6b286bbb13ba3b246def60ac34241eb843f89fe77d7e3e52573e90d791f21d4a8dfcc24ba95db60e2135634c02bd4b14535285df4fbe381ec036d876c4c8057c79371fa9717414590890e182a7b9e0ab927812083acf0d04e04c20c0555c8ceedc5bcf9b0e814be6eca98ce7b2f9f17d098bea541b75a1617c09fa99902ad746811f89a1fc5e6a80d77528247d6c104395715d2c9f9102f070a295f20c4307b9e848d3928b50985bfa2486893139761925b8fab96d26291243db23c4fd4d96864f4db860731a4e3e10b52d8d0487f5a8536cb4507dbdc111570ad0321b918edbc52807c2e0676d3257553702d9c1bd6741e9cd5cdeb3b8f636b6eb02a3b0066d7f677d586de5018850000f000ab3960f6656fb98039ceb6400d0299c356fc22b7298ed157c667bed5563fac2192a8ff7706a9e58d9d2f92632d6b25d8b090642e3f323bf7ff4d8264617a43a97099dd7347fbe3b1c439737913f17eff57f3e1ff4fdac374fb554e9a6a1ff32daa69507698d660d8d5f591801d8e4a9309342c3dc84966dbfcd2652800200bcb0dde9d456b7a07c5409f4f5387d0150daa34dbc865c6108d34dcc51eedb277e9638b43ce3c9afac5d7aa0f8542e58b0a84632a07557b041845d0012cf016ef065f97660b731ce1b79493de71def047277a3ae6d4a0d86591847d3475926039848c5baf6e1b43bc83053855182423156e54cadc8c85089265b49da853d15e5a701fedf2bf7986a723abf72e513fa05cb178345f2fcc859df49e74c8ccef196000a05cb090f22986ffb6f8f74ab41d2d88b6b535507a23b03d2fc2743f6f69fbcd43b8ff52b1ba32fa0137d542c515569b7f486f8ffa02ad1f54767f51701eb4c141437720884d529a57e17bc2837799124f7f112f42bd90f5b435d7a5d7524f7667bb7a6266263e62bf7ebf6896888d584c65a530b766111f078630d8629ffa91acb5ed02498549bd7e042acae0fab7ccb23278088a364be3da9619d91e1061bbaa9b33c3c5fbbcbc725ce8c2cc9ab0f2b4d30078040d3ca79d3ca056c360381ee87e743dea73a25ea2b4843f9ef280feb507f933fb556c718d8bf8f8618db72805b65d381b319f65c745c1e5060dae2f498852e79aff8dd9c88fd939a31871a430d3ba96fb118c79d1b08a397af23b1a188d1802106f588c768a1e6c9d244ac9a38d2a54ed50f19b78bf25e0ae1f9337ceaa8ff5ca8640104b19bcd643b51501d4e03ed5ffb383e7ed0ab78d540ae10bbd64fba1af59a4190215b7d10230992bbb4ff618d8284a2e2446990511fc2bff07cce9ba94a11d3db041e220e3d931fdf129d8ec2c9b17d6587a0044c9e09f52848db43ddc0df94513cc9e94e9d427623502a910deea0f21d86b16366769a46bf0d6d9fc0d2cd6b98ed885e9e2d765bdd051196bf20bd27c46ec902726d96de352c346d904fa00d63b67d272f116dce489f9d636cef61b441b9c113addec983b8b2fbdb2b32049e436c972b2fcf5140dc7b094c5047cb6226da700b72aeb3febdf16a75b6f61a311f606251c99b377c775c8fb3446ccf25dc4cca24290b3939f948019b05c80b5a6382112f63e0990b324c16a087c72aaec08796afc769f678e3634100a5a9da8215cb5d7a6a6b50a81676ef4edca35595b11f9606bef2fb84fe1f0a0703c886579f09986086f0dca6eb8061f9a74c79c1f758684a7363974b14561b9d2efdaba6c4cd8cb70627da1e195fcae3d8b2fa751278e8f220c83e677e14731eccd6fe0c357b011ed88b6df0c266b383f224b8e95384e401b717030b1227582d0d1042bd90377c4f2c7206a19983fc5905e4eb87edb6532b26ca9e28e160202606d19d9f5da34762f4b3fa842d7bff382ad70dcbc411f8b3e4cace8c8e0c72898d24023545e0dfdc4176209276a535491ce11c045c57b45c40f19b12dcf6ffbf78ab23e7fe9bdc404cf47db9855f2b835e1fce57debfa071803ec38da3c77a904080a4c737ce2b20e14e8449762f1ca0b1ce71779d2e6ee5299e1cf230e8070045c23c1d0e52f66fe9039f95cdc0b448dc12d24de39157934270345991948fce921b5d8e739315cc75d4b3b49928437b88672c1a7770365207b43895f45909d5d972f48aa66de609152a5afa2c7d75f0a14189d0409f0b623eab3b6e7d81025cde140893ed71b6f24f5a36d21dafb62af6be9da845403bc8ed36672efa74d7da19d5794cb4b79fa1c86940b1890c012e14b7c3bb261f16bdd99efaa9819b0bc00af842a6b94c6086d15b16ab81af9331ba3a5bd6941ef35239e85455ceab02c598ccee8fbad97ed37daebfe3b26a5a6c9eda5f65a1cfaf7a1f1688267c812a56c552ae11b465dac030e18f9008ad03cad80bf2cb91a7d99dcfa54d323ae0a4c3a6dc0f80d7ff703870610a945eb0ab5b6d14e81869c8872f6b123d98edcf6bba10d76d35cff4b0bb73db8b6695a8351785bcba1e160a42ed367c4da727da38f91562e941e5c4fa90cd585c5f1cd3a7d6892f18a5aa3c74a4fc00bf5909267489b937a928d9d8ff92530b5226eedf8ab9a957e5ffec45bc3a55e6955b38393ce52892655265d1f741e0b744808eb568a08d145a8bc5ada9b079f6d0bec5fc2ace0502b3f926372dff49478fbd10451f0de4b3d1a63b9d4e17ade45628d2e9dca041fcf7fc1e105e1fc44089fde9caf418ba8454dc361df4a59e1bd79143d280613e3c79ad18e922a43e199aa5927bb9553dd31e6223ad19bf8aff6e1dac8b3680feea3138bc61742b03f047b3d77039c1a4c2d05bd89c4bc12a1b83d78b4e7023f690fce6a44608c423d8cbc2e80942b9d9df2f4bf5606640fa47692f3e003885983a73e1dc313b243bbab5c3c6348afab796da766044ba142eda5a9d3713e3eda8c54c1708909c5da89ba67d29cd7f409c9b759cba316c42028754e3cb6eae2cc4f6d66982f212320f199b2e837bb4c54c54bcdcd2ac240ef6295d38e9889b4213819ef0f9aba6ceead4e0fd2c4becdc1f8ee3049831996c9a74a5fd4e12a1fd21ed47cf27e29f9d61e4b673d88914c36eefa53d3c49d94b463b7f8462c1951dfe33c10993d5cfcd0ededd50ad55009528f1e79fbc2fa70c3338b32c40ae3bb45d7079c7ae8433fb1aa19affbd3fbce0cb5ab0d557afb3be036856066eea45c28e93528b35477fc97fe9ff3641e5bb0f0e46069eb653c027daabff38541250081c77e0e3a1d030a73289e771cc41db10819af60599b5df0ad978fcf0b46af821c6b717b265e07d3a85397ea94de26f510290ddb5df8fcff76fe624843c8577802809c145916afce01d9dfdfa8bf07633e98f14fc73d5ef58ae5cb0c308bc74ca38259692a1cd4cf16752786a1c816f24612c27393d7e40a2df9a3dfa23a0c59613c8a7ccdd97c3fc67ecab94dcd8cc4b4517ed2414d41ce574074ffebd156e3d65c4421b0f339bc9f29abbfe49db62122248cf96b74d9639b3ef9d935cd81315a7ecfb0dc6ea1ee053c2e5c3615fbc10782f16a564fcabe1df70da7de989e00eedc346cef5b5cf880e9d563fc15302f056d37f98a939fd1dd5478b4318c256e93b77e31f87d8f7fe31755191b40d778ddb2ada1480bb9fcb96a09783fcf2c2c9fac2c3a2771dd0e2fb113cd460ee2c9cf4a712f04eb1b1a746091109f7ce0655e1ff7781fbe853e3d03bb91c9d8f4f416f5745c6b607bbf72786bd3c0ac4761e6e6d70f12dbefa1b13542086f793b72c6102ac06e75be17bdbb1efbf7e007f07f9bd433fd9d9cbf93e760757b792f15231895561fe49d9d683ccc066f38af581422b71702627162c0f0f35c36a61eaaa92129114b7334281e35fd39576e51d8593c149c9326e0c710ea4dcc9ef39a432a48ae1834f5046b954f9c033d6035cde0dbffe3e97f48a1dc695f4b2f6fe5d4eee83008318def105c37e11c9015670f13417ed036e68f6fbfca2a8289829677feb23079f3f2ee53b26e491924fefc1c50e54f288a8c4b6ba6d319054c3a9e39e14bba81b423acbd44b51279bbea6b0bb2047325837ce8b2191454f52ffa2cd04abe89e3de5bc102e9fdf740d3efd975bc9503af796e6aeee711ef8797de5d507a964730aa70cb9d3840054d4e1ffc57de378b511f7649666a54a6b3d91ed517198d76322bf99d13bef530a43ed3f13196bf2def6dcfb39f76471c75c5779bedf105717e546057fb478bfd24e8fdf3c12d028b542d1f424a9d45bb9e026e6098eb1cb0a77378300ec1b4c9f006aa4dfb7fb5c57cf1b035cbe96009ead1ca25ea1e5fae40312a4e9fe250684a1c8653bb303209e0fc6a498f3a08f6c5b946378a349f3aea45104a2badb8a45f500bb4f0f6cd620ce794e0f390e1cb7f2f1fc0039f4250a577544a6862b47bf89eea3a8c1516b7a9dd111c2ca719190e8feb1a7079e9fdfdb8224dc50791c986825469c087c8f081616edaa4193e161281aa68b7286a364cbb336b2459f0892e57c40afcfda7d16ea1877efb4e4b0d4b5c31e8cba15066903d3a91bdc7fb64452fb9843436110596f0b038da167a86f97d32c807270a1c994fe88e2517e11bdd210dd982d3c8158459440108308a936c9d2370b9d157c3f9caec36ff05bc40b37f095edf33bf4fad440f38c3f52129456936c07014140be5618f4e9d07b66679238023390cd676b1a3a28d0e90d5ad9ef13a31fcdc5a435454309367c437424e340a1f91c6483bce1026d85a16fb854252ea4ede39a4e69702ecff76432de508e064eda0df9f263a25c0f626d1c1ffaa6783be2975451ee936cc2178648935a924f6fb2db2f8ba34e348920d903114520918cc6872b842e3744fc18d1363583a107ec7b89c7792c0d8069e12f873f6d668f6fdeb47b72986914e45c2b061c5c936c73c9bcf1475ea0d25edaad21cf193405c8acef3bff4e4f1b2b321d70dba59e856a8849c2bba9508bad775370669b2bb7f5e53181af8bff525e13a4935d7e28b997b4ff15da9e36f1353a154ab701ad15420786daaf27ba7e122f7b825c668185b685630420378b4142ec4e4242c2cf0bf6e143f7e55cb12fb9dd59a8df9959ce4fc5fff68ae7174977a31ad7fd644bc94a20bae76f0af474034990fdfec8ceca0e6cd93fe21d84837b7e9d74c17b6d3054f0c008ee05764745fd8773a0c1c31bb3eef5b7e261b54805b5c805a4eeef05c812fcdede200442e7340c63490645ebd09c235d5c52a785542526edfe3875ad08267faed1d0a15236f00c6736b94c1a3821302ff610697ad7becdbc96f54b55138b585cd122e0d5aeaf43c9ba373e8aa1c1297e3415552cc57cd60ee1f3c04500ed0eed37775c873de3066c034c176c67c5bfbe9899a47732030855781341374641da058eee61d01d11b9db8f19fd4558957897340e32cdfbc39713f1f439be0638f614cdb5361433a45a6ff024e39c94141dc5403af101404ce5f2efa97b90d9ecdb7c361785dab977feded32554d1a74d5cbfe2435be7f0329ba382455c2ac11fbe29fe3826796d4bea03dc53a37f63f5be2773f83faf282f0ae24d9fe5762b71b499fd37b4ce7e71f93c3a983f80fed477708bbf2261c89893c4b76e34fac9b42671b6cc81678cc867f53e8c3ec47716206212743ca0c4941c2c61ed3177fccf85921e998d2b826df751173944bb07eeaae4001f677a0687a2550eeac8bb5128ecad9c7b6a514596a30b8292fbacc09ab488193507b6785d7a35c979db774b2c413246f1ae88d35d1914b20b8fb501034321642fb0b0baba3378e4c31fb5e247c177e573295df0194462b99079a436400ba1be2e30d39b8714c0fb2bdcd981d5a5cd514f8d4f14e4e0437108630355d8f2b60a6d18cb14ceb2b5d0704aa6e93e180bd79cb17e176bc4f81a03db12a03413de6189896955bb9e3cc69b6f9a50a7eda3742527f98c71d7ea8ba75e253c2b783f7104813c619949e6a0765179b1b9cbe68b703335ab5986928d86384357a2f4189f4b4ffcd61a3d29709bbc93b5371f0e7798cb72ae4c17bcee24f8e566f2777803c3d182d15a63ac40063f0ccdf4bd790404524eae02eafb6b54c699578486490033f0be866c74a134083003d330498658ba973ea674c4a0ff158403987b4c4752b07c8637a119b019fd5093406960144445056f6ffe73eda0235dc1871bb6058d4a9feecac628265689d58a81453d33290ab56eb691f3180d0288449f41844e56f5c6cf522d4a5866b24fb9552fde71946c4d25dcceaa41cfddb5a33c51c54c0a0a5abd31be8fb6ec53c1d14ba648e183979dbd0db01b9e51ba3803be7e7d3dee752668367264c783f74838121797ae5706ef3aa460682d1bf55808c70e69ae29d7683368470d08e7e9a1095305dce250b5b4bd48c02e098d241b1089736e8306a737e3a1a93e554cc3ab24672b8c74bfb8825004ca869e347f873de14575493836662ad741d79269904f905d7df64d0581ab8d76ee51a32d72ccb719f3a25c0a856b5bd2b2a1269e208d70c32e1d5ad0dfdc0ef43f0230e95eb85871eb4d6033abbf0be7025382d878eeaeea73c94270e79bd5757dc1bac95236a62545cd467830b12dcc30d7cc81e889d360d073db40058e9a1c7b41fc53e67740bc984132a1452cf7d000378f14ef93a7eb0dc9bacf23584ad6761139576607f8214757f71fc47b2944127116ca3e83b9d9643bce8d7bb44b4d16b5d5cff70a9e1114cd920b6fc1f409672648ad56ac3136ef0a314adb458faf3d3f171cb2fc513d76e43e6bda2f1a68e6fcf4a4ecbe6bc87716e2a82ea0c4657983ca0caaf8d75fdf5b0d7930e4f3e95eb1271485f938e7ad2bf0c97b7c11745de45518a1e3a74341968588558e7197b407d24eda0671ee28f219e4c5f809a7ea6f9f5b9705f4634a96112eb262bd5967db5237285b865d3f64516495ea6d1ec20dbed7af02362370bcc98671a61241fa1ef5b3095609d66ecc16010f6f67a280d1c6d215ec224ead17d68bbc9bc64b363b5be9b479b7aa2cbc8587a6b48cf653fde7a262a11ab3a10356f55f122310feac77c32ce0994d6e8a70f1c53331cb473a8e29427322fb6da292c4443b1678877f1c981fa05fbdef96520e5895aeb2a3a8e62652f9d8830c3b144b9598873e2ef41b7ade943807766877d609972cca74855eaedce07cda35b50557de96e736ca3107c154d31aeee78db214687b9964517bcd2c6c9ec047514b45c831aee4588166dc3ec9ab36bd1033e74b3d02d731c5bd84f659fa9fe55cac08c12cb999a2e64fac52f6cb7d1fffbf45d9a1126787d0060fd1be563ccbc278ac97dab0c1bee664675f273f5fa429bdc24b21ff1cf0a3ad3c687fb07ffd88bad6ab6c6b422a43b77ff76f96bf405c07f8a667bb8ff54d6714aaa21ceba2e78ce03146b2ab9f49e6d65081119b8e7cf3843e91349790d2b975c9f9c305df0ab4f2b1b2f30f629313cc66a325e4037f38f29842ee5781ba73d2f30f506cf7ff2237a72b4075aefa32cdd5ba0ae4e65cb6fa47a3e06f0d5f684b7172d6b58f5f7d783c4122db4f4b8b4f9d3296c9d115f432710c29d40dfca0010ecbe2f42fac899911d65c84f08aaa1923c8add5af518286211db14e1187a8839f3b2ae8bd914eafc16a576bbe3eba6271a4c5b3170c3f543761f11f1326a05c575bde1b5c6afd3876bea4fbb649071a95caf74de9f7b3421803ec351f934b8d0932ce72a13abf3627d9a396c10875fc167ef1ae98ff92af9ca366033c99d30306fd540a09d67d26ab192504e7c09f9e4d06287a2b1748f1761ba3c16d9d08be7562b7351c4b4679f5d4b38681bfd86c7f2003a9749b20b602112a95803469f5d252c564912b55c4bf3409298dbd066d877cc70a89b484b9ee6bb836c9acd1e53086c4be85e9a3bc5969c7016db9c72b68620c241409d06f4d7f72fe2289c9b4921055922783b8b886bc22926b7d194820af2b90e3c60e87e1a7851f38a970c07c1da120d1da75de2bb994ff7d05a313522373326f160914a9589711e0439d694f5221afe8cc118722ce4927e9543e61a12a76bcf2da1d01a0f258095d32063387349b4e9f253d8b73c6e834b6866f8a56b4797b92d521fa732aa0d55c8e9d6c56011ee6fb450853dc564d18e97c463609c27a63f9c91c46d7bd80ace4edc0615ca342f43ca3b3d0cc36ed52b7d1f457e5b4b26b5eca0d91abe4f1a42a2eec40ec2faff1222f71dc226d6344e947b45155691205c09913fc3c6ab3fe76f4d1b11fa45869e20694b5f0a1074780a07332764212533b797dd24d8df157d4172f91253b77eb2ec90c8222307ed59136463057b7f469116086410b7503b44cef401c47811c1390060da5b3321d34096b67468a7702978d98d4bd721c18a25ed541249638e90281dc8e3565dc33e66d7b832a9bd62c02c5ed0e92935c92472499653d2d842ea6697c733ee80d775884074b3a0c250a4aa021bb6ea93514f9cc5f09feb5719d270cd184e364ca966f1416e10f111bc425f32a993fc5cd75503f99d89d91d7ddc6dee70193057cb946e5fbf8663c53e12cebffe5dbd4a86bfcf5f35f0d8aa43763a60e00356b4f8bc2bca01b02cfddde38f0c4df1e7f98709fdebc5abb5eb9631bdc3dbfcf15517fabcf16931eb7381e83713b081ad1947274d4896ee8953d772e9e71f363b6f1147317bc739ec128e4ec865f8f0ea34cd5ff19fb2c28931d2c85846735358504ae9161535cd7890e8b95c814cfec116b78e6d0eb5097cd4f35888121452e27391d865c15f0b986925d0d0c623bcbb4d8ca66603720253af17853967ea5954eb5ef0dc43de185ec4925026c680464e66d1caff1f4c7c757bd55ec2515ffe7183e3481ff6f626c2228a3fc3d15f63e4bfbec76a2a170206142cbbcf204a1cbfe0ee56eb47dfb79c80894c0a0fbf8a2955d861678fc2f8f9ad7a28052197b5992bced1273658da5b1f42fca48c80883600c24d8515a0c7113deb4c97df918ab64bca16a0c14f2547dc91d5ce4f884978c95fe54899f77ffc20a2c4b27350bc451bef72a46d8e144ad57a8d5f8ac039f58b8a53ea1f3fd5fce612a171bf82ba17c0681cf46ce5c8181a522ed2e986361903903159643046c7be1787dac6ccab09d18a30997541dc6e9efa260f1ff0392bc1890f19d8bb725f4fe7d8bc618f46e0c23be6b9ca67777dd3f5a89b41ccfb11a526a3bed045a2906f86cc5186a1db7a70391261b694b423e5a44d374f9d3720330e083574083f8950b2b35c8bb5b6c0a7fe259f235dc1c069d4581a9f0a7451890561a0829bb290de6aefe4d243ae0b00ca61a1dc4262bb4951242b21d88148eb7b6a9718d6433274f2b3c9bcdbb6d5df67b48ff42692d8cd7f4b7f41728de68ea1ce0f3e4a2843c5b9ffc43f69b8a0445dce44081f5b443a327084b0d00d07cbdbbfd2da5d67bf8d4bb4ee408d17eeee48b61decd06bd3dac9a1adbeb069b49ec96608b9179bb3af4c10f2ade6778b31fd4c22c2961cb949a64e9a8a4879c550f8d8783064cb304511e40e2e562ba83c08ba8ae011a784ed9db03db5527a7aae222c856c8df0a94f9c4def0f94244c5b8e3db9f39dbd337928e24d9d8562f231fea72116c01089163d2c5f4ca17faab20b73c9957fa1a9af20837a804870034d4e64281125b070d8ee0dbf05f95e5fb079e2a57e9af977222e90b664189114dccbca81ee58b7de90a813768a2049052b339a608d3e9966bdb3b584291fbf7694a7d1dea7f72ca604894e6cca5d326ed5e48c15eff5e6a8cc11c40f84ca920d79a5c55d07001909bf6338921c656a39d59d03f62bb5b8870189f0416ec8c317b03ccdcbbeb3e1a9bf2661813f4966b57eb56a2757de5f7745851b5f7bf75e41eb1646e61a41923c5c0e58c2ea478d95b5c39c450744aea0aad3706fce684cb7338ff3dacab60e8d968f0e6fc070693ae3ca16996b34a50afb7e6e377546ae28dc8de7a2ea3a657b4b0003a91a488e347c61971d62f32eaf843d4d4c4f86cc4033c1244c8408def09188dde509c629323f34072f9089a3846680894e8b000a03865438b2ea212b68fdef7f17583f92014eef2c8115a37c9c82dee06213c1407c1433690f68cdc8e91971104039dfe06774b946f43b68b7957a5ca3ee763eafbb7437850eb0a285c413bcf6965232d593d8da47a2a06abc635ae38e596a9dae55b43f341bcc6fe72d79b453ac1c259da37f64cbc1f1508caf280aa6a3f4cd2ff5564cc5a8727f222431454a5ac93398a29fb95b4e057686cd6fcd920992f74e5870749676a36e043bec5fc1b0fce5563affe9addfaa3689e857383ccd1f2924080449d2cfb006e855570b711c1dedd1df2629afaa3806f4ae229a9a8ef1940ddf2c55dac7812d2374c0684b7ba27b2f0849ee4c055d2b8ccc8e41c593378340d7546bb974bc8032f220b37099e3b04c6591c40d2c50a855a491e03c1c9cbb32c400f6104341262d92daaf3e2c04936cf28788fdff8e0a77770a9deb9089a9e32eb5d9e2581aecd98f83881ca8e7d49e603556dc03a9aa19a8f3a4735aaee347b25ea35b36fa57484c0b6d591979b4a3da894fa0c15966d6a5e02e397cccdb9c314b504372b81ef6913877767001263c05dae362b49e5928ef36f554ce245b4111486417634f1e7f4530a760ae6ffd3123f5736ac12c5bf506c5dca03079c0fd0776cdb56c938cdf480fb9b97b1685dfa3be6f712aae107e2dda726bec137b2ebdf56c0fcaecca4350bd7b5c84d57f29c2a2c99ae10c30cece4831d71ae4ee3362983cc816bb6cb9225b9db08503a1be23a26a0425a8628a2e718feae5df91d829f27966f766b623a0a4958a57642aefae259713733670d5b1d027fb8eb2d0d3a0b4acd482076dfa09ffe883f556b2db2262bc0872e1bd713f100dd7a8a8f2d725b46e09c625d513179872bbcc9a41e596a18b2471d977f4ca2bebd06cdaba31b70ef25e098f214fef16f16f725cad4311eb91457fdb70b471eddb65ecafb1e2b03c5ff21356241e3cab2c8ba601f9ef1aec9006b7cd0b81da29be01cb4c1d52e563298e373013886ebb1889bd5616647c6c418ea6bc1f3c0853b65cae48467b35f08318e3a9d034af7224cc3520ab1ece7751ba15407298b21e4f84ef7c23d7993739403d4f116cba2d0ae2d4003a28334c461c734d4555105b986ad0af28aac36c753ab52b91b7e23ae3ab07d3b170fe53a2249efe5b65463a3f237cec72091b04005f95a15ae595191ba39d0ae1d91d8e00b132ae9339884bc57bbb79978a308e1c31c5f213b092f380a7ba58f55869e9c29a5a6e7a7aa4f8d58e5787cc05e5", 0x2000, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x200, 0x0, {0x5, 0x0, 0x7, 0x1000007, 0x3, 0x0, 0xfffffffe, 0x8000000, 0x0, 0xa000, 0x10000, 0x0, r9, 0x734}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r6, &(0x7f0000006680)="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", 0x2000, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x8, {0x4, 0x1, 0xfffffdfffffffff1, 0x0, 0x9, 0x4, {0x6, 0x80000808000080, 0x3, 0x6, 0x2b9, 0x100000000000008, 0x80000000, 0x4, 0x6, 0x97e092f1f294850e, 0x7fffffff, r8, r9, 0x0, 0xcc}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000009c0)=[{{&(0x7f00000002c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000340)="e5f0d019244ce58f3a0d3037d7564346f98d97f5ff6dbd591b4b86", 0x1b}, {&(0x7f0000000380)="9671ceef7b608fd4f0482f0213b6c65504e4fd7d149e79f145b41878f4b61b19fbcd5f6f6da301b1771420c2a47dc3780f002b42f19077c0c65f5417091b5164824b68638571c4b745064fd1859399dfc402d7acfd1a47bb8d818af43aa77046edd6d669c7cf3d6d596b2ce204eec7d04ede33144ce79871fb91356fa78b89948e37832fdcffb68b5e4dd24e59c216da7869e42b770547b9f4d14c", 0x9b}, {&(0x7f0000000440)="284c76c1bc3f4ef897d35995e55e4f8fd7ce7f3919f9c124fbe0b3d69170cff63fc17dd438919bf889eaf236f34bae18197a12a2e75bca93dd303a90d5a44721b62bbf283dddb6cbd551fd760850ea1b525ce5149c328384", 0x58}, {&(0x7f00000004c0)="baf3eb1df4cfc16c2abb4c04070e3c6568e322eeef3ae8d03995681730a9d1588e", 0x21}, {&(0x7f0000000500)="d9f02734cdd5c8197aafc03c3be9f92ed36b65716f708e382e4980203b7f8285e7afdefc49a8dc581a048233e52cda887af9b47fc1dfdaff26fedea7098c752eb4ada0f24374dafc0f3fa2412831ee14a23b9ff5e18cf598024bedb59adba433792e4664f7fd9afaff41643fd5af30480114cc9232b31f8b0bf65c6b645c8b33f3ab59c6be3096e4d2b703ee7f5a01c6aa9dd4c7586b2a7c0a3b7195dd748277f50b5b3c2b99518bb00297d8ae9054a70d876b3cd19c01ef89c3a0a88ca93062c1103e2c8c63b0babe2eaf796b8ea2592b8caff74cf34777aa0f0f4af977ff41325d1f18910773332b312e121ff4", 0xee}, {&(0x7f0000000600)="9fb835d2fa47d17e14799c47cbf258cd333c5c98704ef23e574acc9fb14932c3041ddc23fcb3155753be744fe5536bfab51181565f40a75c7a2e105a48afba5c3df224f6d73fd15788c2dc4e31b334c0158f264eb15a3a8ffbef26d70ca02bf409", 0x61}], 0x6, &(0x7f0000000900)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYRES32=r0, @ANYRES32, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r0, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r9, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000280000005050db4a28072a180100f5ff", @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r3], 0xb0, 0xa004}}], 0x1, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sync()
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000002a00), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r10, &(0x7f0000002b40)={0x0, 0x0, &(0x7f0000002b00)={&(0x7f0000002a40)=ANY=[@ANYBLOB="14000000", @ANYRES16=r11, @ANYBLOB="01002da27000fcdbdf2505"], 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x4)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="c4000400", @ANYRES16=r11, @ANYBLOB="890226bd7000fcdbdf25080000000c000180060001000a0000000c000680060005004e240000080004000100000020000180080006000600000014000400ff0200000000000000000000000000010800040000000080050005008100000005000500080000004800068005000200fb00000014000400fe8800000000000000000000000005010600010014000000050002000400000008000300e00000010500020004000000080006000c00000005000500780000000800040009000000"], 0xc4}, 0x1, 0x0, 0x0, 0x200400c0}, 0x4004010)
r12 = syz_io_uring_setup(0x110, &(0x7f0000001240)={0x0, 0xf8cf, 0x80, 0x2, 0xa}, &(0x7f0000000100)=<r13=>0x0, &(0x7f0000000280))
r14 = eventfd2(0x2, 0x801)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r12, 0x7, &(0x7f0000000140)=r14, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r13, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r12, 0xdb4, 0x0, 0x0, 0x0, 0x0)

160.693521ms ago: executing program 3 (id=1914):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="180000002d000100000000000000000004000080040012"], 0x18}], 0x1, 0x0, 0x0, 0x2c000810}, 0x4000084)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r1)

160.509704ms ago: executing program 0 (id=1915):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, 0x0, 0x20008000)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x3c, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x3c}}, 0x0)

156.591891ms ago: executing program 0 (id=1916):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r1, 0x401, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0xd4}, 0x4)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='batadv_slave_0\x00', 0x10)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_opts(r2, 0x0, 0x4, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000140), 0x4)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@msize={'msize', 0x3d, 0x20590e85}}]}})

78.569067ms ago: executing program 0 (id=1917):
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01080000c235406f1a607c61fa9808000300", @ANYRES32=r3], 0x44}}, 0x0) (async)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0) (async)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) (async)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r5, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=@newlink={0x50, 0x10, 0xffffff1f, 0x70bd29, 0x1, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, r5, 0x100, 0x2000}}}}}}, @IFLA_CARRIER={0x5, 0x21, 0x32}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="a428040000000000140035", @ANYRES32=r5], 0x3c}, 0x1, 0x0, 0x0, 0x4008800}, 0x8000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'veth1\x00', <r10=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x4}]}}}, @IFLA_LINK={0x8, 0x5, r10}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0)

78.021575ms ago: executing program 3 (id=1918):
r0 = syz_clone(0x23802400, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x6a000000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x48802, 0x0)
ioctl$BLKBSZSET(r3, 0x40081271, &(0x7f0000000040))
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r4, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r4, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
write$binfmt_misc(r6, &(0x7f00000000c0)="99ed3094", 0x4)
setsockopt$inet_mreq(r5, 0x0, 0x20, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @local}, 0x8)
syz_emit_ethernet(0x3e, &(0x7f0000000040)=ANY=[@ANYBLOB="aa1442aaaaaaaaaaaaaaaabb08004500003000000020fc0290780000001ce00003000306907800fa000945f4fff600650005010400030a010102ac1414aa"], 0x0)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r7, 0x0, 0xca, &(0x7f0000000140)={0x1, 0x1, 0x4, 0x5, @vifc_lcl_addr=@remote, @loopback}, 0x10)
setsockopt$MRT_ADD_MFC_PROXY(r7, 0x0, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "8a79348df081496d0420922f45a71c1daa8b610468cd140526c41efcd3a4a422", 0x3, 0x1, 0x85}, 0x3c)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0x150}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

1.020793ms ago: executing program 4 (id=1919):
r0 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc1, 0x180, 0x3432523e, 0x3, [0x2], [0x80ffff, 0x0, 0x0, 0xfffffff8], [], [0x400000000000000]})
syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0) (async)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc1, 0x180, 0x3432523e, 0x3, [0x2], [0x80ffff, 0x0, 0x0, 0xfffffff8], [], [0x400000000000000]}) (async)

0s ago: executing program 4 (id=1920):
r0 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000026c0)={0x0, &(0x7f0000002600)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "427f4d05618664ecb7f952ed7667675bc32afc7ebbfea1deee1e2e520cc38c6a"}})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x1f00)

kernel console output (not intermixed with test programs):

:1.0: probe with driver cdc_ether failed with error -22
[   89.916600][  T835] usbhid 9-1:0.0: can't add hid device: -71
[   89.918578][  T835] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[   89.924247][  T835] usb 9-1: USB disconnect, device number 2
[   89.992991][ T6025] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 12 if 0 alt 137 proto 1 vid 0x0525 pid 0xA4A8
[   89.998118][ T6025] usb 8-1: USB disconnect, device number 12
[   90.002283][ T6025] usblp0: removed
[   90.198513][ T8661] netlink: 12 bytes leftover after parsing attributes in process `syz.0.807'.
[   90.260724][ T8665] netlink: 24 bytes leftover after parsing attributes in process `syz.0.809'.
[   90.295896][ T8665] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8665 comm=syz.0.809
[   90.397126][ T8670] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.401058][ T8670] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.420017][ T8671] IPv6: NLM_F_CREATE should be specified when creating new route
[   90.431974][ T8669] mmap: syz.0.811 (8669) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   90.505018][ T8675] @: renamed from vlan0
[   90.774904][   T29] usb 8-1: new full-speed USB device number 13 using dummy_hcd
[   90.784497][ T8683] binder: 8682:8683 ioctl c018620c 200000000300 returned -1
[   90.926650][   T29] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   90.929761][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[   90.934133][   T29] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   90.940499][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   90.945172][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[   90.950742][   T29] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   90.958739][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[   90.963119][   T29] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   90.969588][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   90.973960][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[   90.980242][   T29] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   90.983776][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[   90.989677][   T29] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   90.995667][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   91.000659][   T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[   91.008437][   T29] usb 8-1: string descriptor 0 read error: -22
[   91.010450][   T29] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   91.013268][   T29] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.023411][   T29] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   91.173115][ T8705] netlink: 'syz.0.821': attribute type 1 has an invalid length.
[   91.175859][ T5938] Bluetooth: hci3: command tx timeout
[   91.186185][ T8705] 8021q: adding VLAN 0 to HW filter on device bond6
[   91.200626][ T8705] bond6: (slave geneve2): making interface the new active one
[   91.206373][ T8705] bond6: (slave geneve2): Enslaving as an active interface with an up link
[   91.255822][ T8710] IPVS: set_ctl: invalid protocol: 108 172.30.1.1:20001
[   91.535543][ T8724] binder: 8723:8724 ioctl c0306201 200000000180 returned -14
[   91.570988][ T8731] geneve2: entered promiscuous mode
[   91.572696][ T8731] geneve2: entered allmulticast mode
[   92.084681][   T40] kauditd_printk_skb: 26 callbacks suppressed
[   92.084693][   T40] audit: type=1400 audit(1751344577.287:588): avc:  denied  { connect } for  pid=8782 comm="syz.4.837" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   92.439052][   T59] usb 6-1: USB disconnect, device number 5
[   92.659619][ T8813] binder: 8812:8813 ioctl c018620c 2000000002c0 returned -1
[   92.688645][ T8816] FAULT_INJECTION: forcing a failure.
[   92.688645][ T8816] name failslab, interval 1, probability 0, space 0, times 1
[   92.693055][ T8816] CPU: 2 UID: 0 PID: 8816 Comm: syz.1.848 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[   92.693070][ T8816] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.693077][ T8816] Call Trace:
[   92.693081][ T8816]  <TASK>
[   92.693085][ T8816]  dump_stack_lvl+0x16c/0x1f0
[   92.693105][ T8816]  should_fail_ex+0x512/0x640
[   92.693127][ T8816]  ? fs_reclaim_acquire+0xae/0x150
[   92.693138][ T8816]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   92.693154][ T8816]  should_failslab+0xc2/0x120
[   92.693169][ T8816]  __kmalloc_noprof+0xd2/0x510
[   92.693186][ T8816]  tomoyo_realpath_from_path+0xc2/0x6e0
[   92.693201][ T8816]  ? tomoyo_profile+0x47/0x60
[   92.693218][ T8816]  tomoyo_path_number_perm+0x245/0x580
[   92.693230][ T8816]  ? tomoyo_path_number_perm+0x237/0x580
[   92.693243][ T8816]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   92.693256][ T8816]  ? find_held_lock+0x2b/0x80
[   92.693281][ T8816]  ? find_held_lock+0x2b/0x80
[   92.693292][ T8816]  ? hook_file_ioctl_common+0x145/0x410
[   92.693312][ T8816]  ? __fget_files+0x20e/0x3c0
[   92.693328][ T8816]  security_file_ioctl+0x9b/0x240
[   92.693343][ T8816]  __x64_sys_ioctl+0xb7/0x210
[   92.693356][ T8816]  do_syscall_64+0xcd/0x4c0
[   92.693372][ T8816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.693383][ T8816] RIP: 0033:0x7faeb578e929
[   92.693392][ T8816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.693402][ T8816] RSP: 002b:00007faeb651e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   92.693412][ T8816] RAX: ffffffffffffffda RBX: 00007faeb59b5fa0 RCX: 00007faeb578e929
[   92.693418][ T8816] RDX: 0000200000000040 RSI: 0000000000008b19 RDI: 0000000000000004
[   92.693424][ T8816] RBP: 00007faeb651e090 R08: 0000000000000000 R09: 0000000000000000
[   92.693430][ T8816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.693436][ T8816] R13: 0000000000000000 R14: 00007faeb59b5fa0 R15: 00007ffc4cd96868
[   92.693449][ T8816]  </TASK>
[   92.693453][ T8816] ERROR: Out of memory at tomoyo_realpath_from_path.
[   92.901218][   T40] audit: type=1326 audit(1751344578.107:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8835 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faeb578e929 code=0x7ffc0000
[   92.910336][   T40] audit: type=1326 audit(1751344578.107:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8835 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7faeb578e929 code=0x7ffc0000
[   92.924953][   T40] audit: type=1326 audit(1751344578.117:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8835 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faeb578e929 code=0x7ffc0000
[   92.932288][   T40] audit: type=1326 audit(1751344578.117:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8837 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faeb57c11e5 code=0x7ffc0000
[   92.939926][   T40] audit: type=1326 audit(1751344578.117:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8835 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7faeb578d58a code=0x7ffc0000
[   92.947624][   T40] audit: type=1326 audit(1751344578.117:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8835 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faeb57c11e5 code=0x7ffc0000
[   93.060509][   T40] audit: type=1326 audit(1751344578.267:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8837 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7faeb578e929 code=0x7ffc0000
[   93.110847][   T40] audit: type=1326 audit(1751344578.317:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8835 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faeb578e929 code=0x7ffc0000
[   93.119824][   T40] audit: type=1326 audit(1751344578.317:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8835 comm="syz.1.856" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faeb578e929 code=0x7ffc0000
[   93.195127][ T6839] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   93.279420][ T8848] FAULT_INJECTION: forcing a failure.
[   93.279420][ T8848] name failslab, interval 1, probability 0, space 0, times 0
[   93.283438][ T8848] CPU: 1 UID: 0 PID: 8848 Comm: syz.4.860 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[   93.283453][ T8848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.283460][ T8848] Call Trace:
[   93.283464][ T8848]  <TASK>
[   93.283468][ T8848]  dump_stack_lvl+0x16c/0x1f0
[   93.283488][ T8848]  should_fail_ex+0x512/0x640
[   93.283502][ T8848]  ? fs_reclaim_acquire+0xae/0x150
[   93.283514][ T8848]  ? tomoyo_encode2+0x100/0x3e0
[   93.283527][ T8848]  should_failslab+0xc2/0x120
[   93.283542][ T8848]  __kmalloc_noprof+0xd2/0x510
[   93.283559][ T8848]  tomoyo_encode2+0x100/0x3e0
[   93.283574][ T8848]  tomoyo_encode+0x29/0x50
[   93.283587][ T8848]  tomoyo_realpath_from_path+0x18f/0x6e0
[   93.283603][ T8848]  ? tomoyo_profile+0x47/0x60
[   93.283620][ T8848]  tomoyo_path_number_perm+0x245/0x580
[   93.283632][ T8848]  ? tomoyo_path_number_perm+0x237/0x580
[   93.283645][ T8848]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   93.283657][ T8848]  ? find_held_lock+0x2b/0x80
[   93.283682][ T8848]  ? find_held_lock+0x2b/0x80
[   93.283694][ T8848]  ? hook_file_ioctl_common+0x145/0x410
[   93.283713][ T8848]  ? __fget_files+0x20e/0x3c0
[   93.283729][ T8848]  security_file_ioctl+0x9b/0x240
[   93.283744][ T8848]  __x64_sys_ioctl+0xb7/0x210
[   93.283757][ T8848]  do_syscall_64+0xcd/0x4c0
[   93.283773][ T8848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.283784][ T8848] RIP: 0033:0x7f417af8e929
[   93.283792][ T8848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.283802][ T8848] RSP: 002b:00007f417bdca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   93.283813][ T8848] RAX: ffffffffffffffda RBX: 00007f417b1b5fa0 RCX: 00007f417af8e929
[   93.283819][ T8848] RDX: 0000200000000040 RSI: 0000000000008b19 RDI: 0000000000000004
[   93.283825][ T8848] RBP: 00007f417bdca090 R08: 0000000000000000 R09: 0000000000000000
[   93.283831][ T8848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.283837][ T8848] R13: 0000000000000000 R14: 00007f417b1b5fa0 R15: 00007ffc2f348c48
[   93.283850][ T8848]  </TASK>
[   93.283860][ T8848] ERROR: Out of memory at tomoyo_realpath_from_path.
[   93.358264][ T6839] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   93.361539][ T6839] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.364283][ T6839] usb 6-1: Product: syz
[   93.366397][ T6839] usb 6-1: Manufacturer: syz
[   93.367873][ T6839] usb 6-1: SerialNumber: syz
[   93.377558][ T6839] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   93.402721][ T5995] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   93.625531][ T8857] fuseblk: Unknown parameter '«4
NH±†£‡»+¨î”éÖ'
[   93.722492][ T8864] netlink: 'syz.4.866': attribute type 2 has an invalid length.
[   93.815344][ T5982] usb 8-1: USB disconnect, device number 13
[   94.227491][ T8876] __nla_validate_parse: 4 callbacks suppressed
[   94.227558][ T8876] netlink: 12 bytes leftover after parsing attributes in process `syz.0.870'.
[   94.283329][ T8882] netlink: 8 bytes leftover after parsing attributes in process `syz.0.871'.
[   94.685153][ T5995] usb 6-1: Service connection timeout for: 256
[   94.687267][ T5995] ath9k_htc 6-1:1.0: ath9k_htc: Unable to initialize HTC services
[   94.706878][ T5995] ath9k_htc: Failed to initialize the device
[   94.718262][ T5995] usb 6-1: ath9k_htc: USB layer deinitialized
[   94.884266][ T8913] bond0: entered promiscuous mode
[   94.935049][ T6839] usb 6-1: USB disconnect, device number 6
[   95.014524][ T8921] netlink: 4 bytes leftover after parsing attributes in process `syz.3.883'.
[   95.020012][ T8921] netlink: 12 bytes leftover after parsing attributes in process `syz.3.883'.
[   95.087520][ T8931] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8931 comm=syz.0.887
[   95.170667][ T8936] netlink: 36 bytes leftover after parsing attributes in process `syz.0.888'.
[   95.913439][ T8950] dlm: no locking on control device
[   95.931233][ T8933] Bluetooth: hci0: Opcode 0x080f failed: -4
[   96.078765][ T8973] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   96.344382][ T9004] netlink: 8 bytes leftover after parsing attributes in process `syz.1.909'.
[   96.347458][ T9004] netlink: 12 bytes leftover after parsing attributes in process `syz.1.909'.
[   96.350233][ T9004] netlink: 'syz.1.909': attribute type 7 has an invalid length.
[   96.426175][ T8868] syz.4.867 (8868) used greatest stack depth: 20008 bytes left
[   96.479688][ T9024] sctp: [Deprecated]: syz.0.913 (pid 9024) Use of int in maxseg socket option.
[   96.479688][ T9024] Use struct sctp_assoc_value instead
[   96.537601][ T9032] xt_hashlimit: size too large, truncated to 1048576
[   96.537845][ T9033] xt_hashlimit: size too large, truncated to 1048576
[   96.851224][ T9056] overlayfs: failed to clone upperpath
[   97.131253][   T40] kauditd_printk_skb: 31 callbacks suppressed
[   97.131267][   T40] audit: type=1400 audit(1751344582.337:629): avc:  denied  { listen } for  pid=9062 comm="syz.3.922" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   97.348022][ T9071] netlink: 28 bytes leftover after parsing attributes in process `syz.3.925'.
[   97.622742][    C1] sr 2:0:0:0: [sr0] tag#12 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[   97.626239][    C1] sr 2:0:0:0: [sr0] tag#12 CDB: opcode=0x96 96 43 8e ee d7 42 7e b8 ae 87 04 a2
[   97.946691][ T9113] netlink: 'syz.1.938': attribute type 1 has an invalid length.
[   97.950851][ T9113] netlink: 12 bytes leftover after parsing attributes in process `syz.1.938'.
[   97.959808][   T40] audit: type=1400 audit(1751344583.167:630): avc:  denied  { create } for  pid=9107 comm="syz.4.937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   97.966221][   T40] audit: type=1400 audit(1751344583.167:631): avc:  denied  { write } for  pid=9107 comm="syz.4.937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   98.072264][   T40] audit: type=1400 audit(1751344583.267:632): avc:  denied  { map } for  pid=9125 comm="syz.1.943" path="socket:[24422]" dev="sockfs" ino=24422 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   98.214560][ T9153] use of bytesused == 0 is deprecated and will be removed in the future,
[   98.219408][ T9153] use the actual size instead.
[   98.232476][ T9140] fuse: Unknown parameter ''
[   98.237510][   T40] audit: type=1400 audit(1751344583.447:633): avc:  denied  { write } for  pid=9156 comm="syz.3.951" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   98.299343][ T9166] ip6t_srh: unknown srh invflags 7863
[   98.333139][ T9160] input: syz0 as /devices/virtual/input/input9
[   98.336490][ T9166] netlink: 4 bytes leftover after parsing attributes in process `syz.3.954'.
[   98.340323][   T40] audit: type=1400 audit(1751344583.557:634): avc:  denied  { write } for  pid=9165 comm="syz.3.954" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   98.493393][   T40] audit: type=1400 audit(1751344583.697:635): avc:  denied  { getopt } for  pid=9164 comm="syz.4.953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   98.596928][ T9179] block device autoloading is deprecated and will be removed.
[   98.720733][ T5934] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   98.727407][ T5934] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   98.729034][ T5934] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   98.731244][ T5934] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   98.737883][ T5934] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   98.740150][   T40] audit: type=1400 audit(1751344583.947:636): avc:  denied  { execute_no_trans } for  pid=9184 comm="syz.3.962" path=2F6D656D66643A202864656C6574656429 dev="hugetlbfs" ino=23377 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   98.746290][ T9186] ata1.00: invalid multi_count 1 ignored
[   98.919810][ T9198] hsr_slave_0 (unregistering): left promiscuous mode
[   98.929012][ T9185] chnl_net:caif_netlink_parms(): no params data found
[   99.056681][ T9185] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.058938][ T9185] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.061212][ T9185] bridge_slave_0: entered allmulticast mode
[   99.063842][ T9185] bridge_slave_0: entered promiscuous mode
[   99.069411][ T9185] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.071670][ T9185] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.074103][ T9185] bridge_slave_1: entered allmulticast mode
[   99.077146][ T9185] bridge_slave_1: entered promiscuous mode
[   99.100274][   T40] audit: type=1400 audit(1751344584.307:637): avc:  denied  { connect } for  pid=9214 comm="syz.0.970" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   99.167970][ T9185] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   99.175469][ T9185] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.236462][ T9185] team0: Port device team_slave_0 added
[   99.239945][ T9185] team0: Port device team_slave_1 added
[   99.295017][ T9185] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.297320][ T9185] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.306103][ T9185] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.310601][ T9185] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.312831][ T9185] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.321136][ T9185] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.373218][ T9185] hsr_slave_0: entered promiscuous mode
[   99.376215][ T9185] hsr_slave_1: entered promiscuous mode
[   99.378767][ T9185] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   99.381904][ T9185] Cannot create hsr debugfs directory
[   99.458752][   T40] audit: type=1400 audit(1751344584.667:638): avc:  denied  { nlmsg_read } for  pid=9221 comm="syz.0.972" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[   99.503087][ T9227] 9pnet_virtio: no channels available for device syz
[   99.552670][ T9185] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   99.558552][ T9185] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   99.564586][ T9185] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   99.569234][ T9185] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   99.592220][ T9185] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.594612][ T9185] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.597186][ T9185] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.599526][ T9185] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.632936][ T9185] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.643311][ T6784] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.647017][ T6784] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.665333][ T9185] 8021q: adding VLAN 0 to HW filter on device team0
[   99.673974][ T6784] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.676258][ T6784] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.681909][ T6785] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.684712][ T6785] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.818615][ T9185] 8021q: adding VLAN 0 to HW filter on device batadv0
[   99.967621][ T9185] veth0_vlan: entered promiscuous mode
[   99.974105][ T9185] veth1_vlan: entered promiscuous mode
[  100.000023][ T9185] veth0_macvtap: entered promiscuous mode
[  100.006099][ T9185] veth1_macvtap: entered promiscuous mode
[  100.016334][ T9185] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.023206][ T9185] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.030877][ T9185] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.033612][ T9185] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.036612][ T9185] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.039560][ T9185] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.089397][ T6801] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.092637][ T6801] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.117251][ T6790] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.119795][ T6790] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.161048][ T9262] trusted_key: encrypted_key: master key parameter '/snd/controlC#' is invalid
[  100.167442][ T9263] __nla_validate_parse: 6 callbacks suppressed
[  100.167454][ T9263] netlink: 220 bytes leftover after parsing attributes in process `syz.5.958'.
[  100.407513][ T9275] netlink: 28 bytes leftover after parsing attributes in process `syz.0.981'.
[  100.413957][ T9277] Invalid logical block size (2)
[  100.443391][ T9279] netlink: 40 bytes leftover after parsing attributes in process `syz.4.983'.
[  100.449094][ T9279] netlink: 8 bytes leftover after parsing attributes in process `syz.4.983'.
[  100.453285][ T9279] openvswitch: netlink: nsh attr 0 has unexpected len 4 expected 0
[  100.456680][ T9279] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  100.599001][ T9297] overlayfs: failed to resolve './file0': -2
[  100.765307][ T5938] Bluetooth: hci1: command tx timeout
[  100.819521][ T9318] netlink: 20 bytes leftover after parsing attributes in process `syz.0.996'.
[  100.904005][ T9326] netlink: 8 bytes leftover after parsing attributes in process `syz.3.999'.
[  100.989276][ T9337] netlink: 160 bytes leftover after parsing attributes in process `syz.0.1003'.
[  101.103359][ T9343] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1004'.
[  101.105066][ T9344] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1004'.
[  101.399690][ T9357] cgroup: none used incorrectly
[  101.401925][ T9357] virtio-fs: tag </dev/md0> not found
[  101.506438][ T9365] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  101.509243][ T9365] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  101.608906][ T9365] syz.4.1011 (9365) used greatest stack depth: 17784 bytes left
[  101.629801][ T9369] xt_cgroup: invalid path, errno=-2
[  101.657031][ T9371] (unnamed net_device) (uninitialized): down delay (4) is not a multiple of miimon (8), value rounded to 0 ms
[  101.671271][ T9371] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  101.707720][ T9374] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  101.712113][ T9374] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  101.924495][ T9384] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1017'.
[  101.937542][ T9384] netlink: 'syz.4.1017': attribute type 2 has an invalid length.
[  102.363284][    C0] vcan0: j1939_tp_rxtimer: 0xffff888025ae1000: rx timeout, send abort
[  102.367106][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888025ae1000: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  102.453775][ T9423] xt_hashlimit: size too large, truncated to 1048576
[  102.572835][   T40] kauditd_printk_skb: 12 callbacks suppressed
[  102.572849][   T40] audit: type=1400 audit(1751344587.777:651): avc:  denied  { getopt } for  pid=9430 comm="syz.0.1032" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  102.583726][   T40] audit: type=1400 audit(1751344587.787:652): avc:  denied  { block_suspend } for  pid=9430 comm="syz.0.1032" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  102.667596][ T9433] bond0: option use_carrier: invalid value (7)
[  102.698476][   T40] audit: type=1400 audit(1751344587.907:653): avc:  denied  { watch_sb } for  pid=9437 comm="syz.0.1034" path="/358" dev="tmpfs" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  102.845304][ T5934] Bluetooth: hci1: command tx timeout
[  102.934920][   T40] audit: type=1400 audit(1751344588.137:654): avc:  denied  { setopt } for  pid=9447 comm="syz.0.1038" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  103.093194][ T9461] netlink: 'syz.0.1041': attribute type 1 has an invalid length.
[  103.108382][ T9461] 8021q: adding VLAN 0 to HW filter on device bond7
[  103.124620][ T9461] bond7: (slave gretap1): making interface the new active one
[  103.129518][ T9461] bond7: (slave gretap1): Enslaving as an active interface with an up link
[  103.202194][ T9461] bond7 (unregistering): (slave gretap1): Releasing active interface
[  103.207914][ T9461] bond7 (unregistering): Released all slaves
[  103.389494][ T9470] syz.0.1043: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  103.394440][ T9470] CPU: 0 UID: 0 PID: 9470 Comm: syz.0.1043 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  103.394455][ T9470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.394462][ T9470] Call Trace:
[  103.394467][ T9470]  <TASK>
[  103.394471][ T9470]  dump_stack_lvl+0x16c/0x1f0
[  103.394503][ T9470]  warn_alloc+0x248/0x3a0
[  103.394518][ T9470]  ? __pfx_warn_alloc+0x10/0x10
[  103.394530][ T9470]  ? __pfx_stack_trace_save+0x10/0x10
[  103.394544][ T9470]  ? stack_depot_save_flags+0x28/0xa40
[  103.394566][ T9470]  ? kasan_save_stack+0x42/0x60
[  103.394583][ T9470]  ? kasan_save_stack+0x33/0x60
[  103.394595][ T9470]  ? kasan_save_track+0x14/0x30
[  103.394610][ T9470]  ? xskq_create+0x52/0x1d0
[  103.394622][ T9470]  ? xsk_setsockopt+0x640/0x840
[  103.394633][ T9470]  ? do_sock_setsockopt+0x221/0x470
[  103.394651][ T9470]  ? xskq_create+0xfb/0x1d0
[  103.394664][ T9470]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  103.394680][ T9470]  ? xskq_create+0xfb/0x1d0
[  103.394696][ T9470]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  103.394712][ T9470]  ? xskq_create+0xfb/0x1d0
[  103.394724][ T9470]  vmalloc_user_noprof+0x9e/0xe0
[  103.394735][ T9470]  ? xskq_create+0xfb/0x1d0
[  103.394748][ T9470]  xskq_create+0xfb/0x1d0
[  103.394762][ T9470]  xsk_setsockopt+0x640/0x840
[  103.394775][ T9470]  ? __pfx_xsk_setsockopt+0x10/0x10
[  103.394800][ T9470]  ? __lock_acquire+0x622/0x1c90
[  103.394821][ T9470]  ? selinux_socket_setsockopt+0x6a/0x80
[  103.394835][ T9470]  ? __pfx_xsk_setsockopt+0x10/0x10
[  103.394847][ T9470]  do_sock_setsockopt+0x221/0x470
[  103.394863][ T9470]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  103.394892][ T9470]  __sys_setsockopt+0x1a0/0x230
[  103.394908][ T9470]  __x64_sys_setsockopt+0xbd/0x160
[  103.394921][ T9470]  ? do_syscall_64+0x91/0x4c0
[  103.394936][ T9470]  ? lockdep_hardirqs_on+0x7c/0x110
[  103.394950][ T9470]  do_syscall_64+0xcd/0x4c0
[  103.394966][ T9470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.394977][ T9470] RIP: 0033:0x7f7e33f8e929
[  103.394986][ T9470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.394996][ T9470] RSP: 002b:00007f7e31df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  103.395006][ T9470] RAX: ffffffffffffffda RBX: 00007f7e341b5fa0 RCX: 00007f7e33f8e929
[  103.395013][ T9470] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  103.395019][ T9470] RBP: 00007f7e34010b39 R08: 0000000000000004 R09: 0000000000000000
[  103.395025][ T9470] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  103.395031][ T9470] R13: 0000000000000000 R14: 00007f7e341b5fa0 R15: 00007ffe25e47b48
[  103.395044][ T9470]  </TASK>
[  103.478388][ T9470] Mem-Info:
[  103.479422][ T9470] active_anon:9496 inactive_anon:137 isolated_anon:0
[  103.479422][ T9470]  active_file:6482 inactive_file:21032 isolated_file:0
[  103.479422][ T9470]  unevictable:18113 dirty:86 writeback:0
[  103.479422][ T9470]  slab_reclaimable:8629 slab_unreclaimable:85963
[  103.479422][ T9470]  mapped:25123 shmem:2405 pagetables:1312
[  103.479422][ T9470]  sec_pagetables:307 bounce:0
[  103.479422][ T9470]  kernel_misc_reclaimable:0
[  103.479422][ T9470]  free:429035 free_pcp:32160 free_cma:0
[  103.493508][ T9470] Node 0 active_anon:37980kB inactive_anon:548kB active_file:25884kB inactive_file:83924kB unevictable:68916kB isolated(anon):0kB isolated(file):0kB mapped:100488kB dirty:340kB writeback:0kB shmem:6084kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:15664kB pagetables:5044kB sec_pagetables:1228kB all_unreclaimable? no Balloon:0kB
[  103.503937][ T9470] Node 1 active_anon:4kB inactive_anon:0kB active_file:44kB inactive_file:204kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:272kB pagetables:204kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  103.514222][ T9470] Node 0 DMA free:13972kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:92kB local_pcp:0kB free_cma:0kB
[  103.523277][ T9470] lowmem_reserve[]: 0 1235 1235 1235 1235
[  103.525428][ T9470] Node 0 DMA32 free:108952kB boost:0kB min:27516kB low:34392kB high:41268kB reserved_highatomic:0KB free_highatomic:0KB active_anon:37980kB inactive_anon:548kB active_file:25884kB inactive_file:83924kB unevictable:68916kB writepending:340kB present:2080628kB managed:1264692kB mlocked:0kB bounce:0kB free_pcp:100160kB local_pcp:28572kB free_cma:0kB
[  103.535873][ T9470] lowmem_reserve[]: 0 0 0 0 0
[  103.537413][ T9470] Node 1 Normal free:1593216kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:44kB inactive_file:204kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781956kB mlocked:0kB bounce:0kB free_pcp:28596kB local_pcp:5888kB free_cma:0kB
[  103.546902][ T9470] lowmem_reserve[]: 0 0 0 0 0
[  103.548406][ T9470] Node 0 DMA: 13*4kB (UM) 14*8kB (UM) 19*16kB (UM) 20*32kB (UE) 15*64kB (UME) 9*128kB (UME) 4*256kB (UME) 5*512kB (UME) 5*1024kB (UME) 1*2048kB (U) 0*4096kB = 13972kB
[  103.553553][ T9470] Node 0 DMA32: 1200*4kB (UME) 513*8kB (UME) 403*16kB (UME) 338*32kB (UME) 81*64kB (UME) 28*128kB (UME) 43*256kB (UME) 35*512kB (UM) 24*1024kB (UME) 10*2048kB (UM) 0*4096kB = 108920kB
[  103.559724][ T9470] Node 1 Normal: 78*4kB (UME) 77*8kB (UM) 64*16kB (UM) 87*32kB (UME) 40*64kB (UME) 24*128kB (UME) 23*256kB (UME) 12*512kB (U) 10*1024kB (UE) 8*2048kB (UM) 377*4096kB (UM) = 1593216kB
[  103.565559][ T9470] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  103.568564][ T9470] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  103.571419][ T9470] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  103.574316][ T9470] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  103.577993][ T9470] 46262 total pagecache pages
[  103.579581][ T9470] 2 pages in swap cache
[  103.580927][ T9470] Free swap  = 124988kB
[  103.582249][ T9470] Total swap = 124996kB
[  103.583556][ T9470] 1048443 pages RAM
[  103.584769][ T9470] 0 pages HighMem/MovableOnly
[  103.586422][ T9470] 282941 pages reserved
[  103.587840][ T9470] 0 pages cma reserved
[  103.617990][   T40] audit: type=1400 audit(1751344588.827:655): avc:  denied  { setopt } for  pid=9477 comm="syz.0.1044" lport=49476 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  103.761566][ T9484] bond1: entered promiscuous mode
[  103.763182][ T9484] bond1: entered allmulticast mode
[  103.765313][ T9484] 8021q: adding VLAN 0 to HW filter on device bond1
[  103.796107][ T9491] tmpfs: Cannot change global quota limit on remount
[  103.862649][ T9487] netlink: 'syz.0.1048': attribute type 21 has an invalid length.
[  103.992748][ T9510] 8021q: adding VLAN 0 to HW filter on device bond7
[  104.002455][ T9510] 8021q: adding VLAN 0 to HW filter on device bond7
[  104.004717][ T9510] bond7: (slave vti1): The slave device specified does not support setting the MAC address
[  104.009401][ T9510] bond7: (slave vti1): Error -95 calling set_mac_address
[  104.131474][ T9514] pim6reg: entered allmulticast mode
[  104.285036][ T5938] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  104.287772][   T40] audit: type=1400 audit(1751344589.497:656): avc:  denied  { setattr } for  pid=9522 comm="syz.0.1057" name="NETLINK" dev="sockfs" ino=28010 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  104.288710][ T9524] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  104.301941][ T9524] xt_CHECKSUM: unsupported CHECKSUM operation f4
[  104.344308][   T40] audit: type=1400 audit(1751344589.547:657): avc:  denied  { read } for  pid=9531 comm="syz.4.1059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  104.405558][ T9536] netlink: 'syz.0.1061': attribute type 10 has an invalid length.
[  104.408039][ T9536] tipc: Resetting bearer <eth:team0>
[  104.413739][ T9536] bridge0: port 1(team0) entered disabled state
[  104.417594][ T9536] team0: left allmulticast mode
[  104.419300][ T9536] team0: left promiscuous mode
[  104.421072][ T9536] bridge0: port 1(team0) entered disabled state
[  104.426569][ T9536] batman_adv: batadv0: Adding interface: team0
[  104.428841][ T9536] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.437458][ T9536] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  104.442868][ T9536] netlink: 'syz.0.1061': attribute type 10 has an invalid length.
[  104.446385][ T9536] team0: entered promiscuous mode
[  104.448997][ T9536] 8021q: adding VLAN 0 to HW filter on device team0
[  104.451594][ T9536] batman_adv: batadv0: Interface activated: team0
[  104.454233][ T9536] batman_adv: batadv0: Interface deactivated: team0
[  104.457878][ T9536] batman_adv: batadv0: Removing interface: team0
[  104.461256][ T9536] bridge0: port 1(team0) entered blocking state
[  104.463650][ T9536] bridge0: port 1(team0) entered disabled state
[  104.466529][ T9536] team0: entered allmulticast mode
[  104.518588][ T9540] mkiss: ax0: crc mode is auto.
[  104.553034][ T9545] netlink: 'syz.3.1065': attribute type 1 has an invalid length.
[  104.573916][ T9545] 8021q: adding VLAN 0 to HW filter on device bond4
[  104.624214][ T9550] overlay: filesystem on ./bus not supported as upperdir
[  104.636726][ T9550] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  104.701200][   T40] audit: type=1400 audit(1751344589.907:658): avc:  denied  { create } for  pid=9560 comm="syz.4.1070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  104.735978][   T40] audit: type=1400 audit(1751344589.947:659): avc:  denied  { listen } for  pid=9567 comm="syz.4.1072" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  104.744581][   T40] audit: type=1400 audit(1751344589.947:660): avc:  denied  { accept } for  pid=9567 comm="syz.4.1072" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  104.924894][ T5938] Bluetooth: hci1: command tx timeout
[  104.951171][ T9597] netlink: 'syz.5.1080': attribute type 1 has an invalid length.
[  104.975581][ T9597] bond2 (unregistering): Released all slaves
[  105.102354][ T9618] IPv4: Oversized IP packet from 127.202.26.0
[  105.169955][ T9629] loop2: detected capacity change from 0 to 7
[  105.172379][ T9629] Dev loop2: unable to read RDB block 7
[  105.174249][ T9629]  loop2: AHDI p1 p2 p3
[  105.175806][ T9629] loop2: partition table partially beyond EOD, truncated
[  105.178004][ T9629] loop2: p1 start 1601398130 is beyond EOD, truncated
[  105.180021][ T9629] loop2: p2 start 1702059890 is beyond EOD, truncated
[  105.363760][ T9653] __nla_validate_parse: 10 callbacks suppressed
[  105.363778][ T9653] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1101'.
[  105.393804][ T9660] loop2: detected capacity change from 0 to 7
[  105.405874][ T9660] Dev loop2: unable to read RDB block 7
[  105.407820][ T9660]  loop2: AHDI p1 p2 p3
[  105.409181][ T9660] loop2: partition table partially beyond EOD, truncated
[  105.411914][ T9660] loop2: p1 start 1601398130 is beyond EOD, truncated
[  105.414130][ T9660] loop2: p2 start 1702059890 is beyond EOD, truncated
[  105.600073][ T9675] sock: sock_timestamping_bind_phc: sock not bind to device
[  105.627599][ T9679] trusted_key: encrypted_key: master key parameter '' is invalid
[  105.650884][ T9675] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  105.742231][ T9690] XFS (nbd3): no-recovery mounts must be read-only.
[  105.778905][ T9696] overlayfs: failed to clone upperpath
[  105.779239][ T9692] overlayfs: failed to clone upperpath
[  105.885461][ T9709] usb usb8: usbfs: process 9709 (syz.3.1120) did not claim interface 0 before use
[  105.917129][ T9711] 9pnet_fd: p9_fd_create_unix (9711): problem connecting socket: éq‰Y’3aK: -91
[  105.920813][ T9711] netlink: 'syz.4.1121': attribute type 4 has an invalid length.
[  105.958851][ T9713] input: syz0 as /devices/virtual/input/input11
[  106.087169][ T9723] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1128'.
[  106.217437][ T9734] netlink: 'syz.3.1132': attribute type 10 has an invalid length.
[  106.244030][ T9734] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  106.291014][ T9736] kvm: pic: non byte read
[  106.294073][ T9736] kvm: pic: level sensitive irq not supported
[  106.294345][ T9736] kvm: pic: non byte read
[  106.299257][ T9736] kvm: pic: level sensitive irq not supported
[  106.299488][ T9736] kvm: pic: non byte read
[  106.304215][ T9736] kvm: pic: level sensitive irq not supported
[  106.304467][ T9736] kvm: pic: non byte read
[  106.309923][ T9736] kvm: pic: level sensitive irq not supported
[  106.310185][ T9736] kvm: pic: non byte read
[  106.316184][ T9736] kvm: pic: level sensitive irq not supported
[  106.316514][ T9736] kvm: pic: non byte read
[  106.321373][ T9736] kvm: pic: level sensitive irq not supported
[  106.321700][ T9736] kvm: pic: non byte read
[  106.406175][ T9743] openvswitch: netlink: IP tunnel dst address not specified
[  106.409245][ T9747] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1135'.
[  106.449027][ T9749] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1137'.
[  106.451948][ T9749] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1137'.
[  106.454747][ T9749] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1137'.
[  106.460864][ T9749] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1137'.
[  106.463769][ T9749] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1137'.
[  106.571124][ T9760] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1142' sets config #1
[  106.578194][ T9760] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1142'.
[  106.643381][ T9767] No source specified
[  106.749906][ T9779] geneve2: entered promiscuous mode
[  106.751647][ T9779] geneve2: entered allmulticast mode
[  106.939052][ T9794] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1152'.
[  107.005018][ T5938] Bluetooth: hci1: command tx timeout
[  107.037457][ T5982] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  107.130404][ T9822] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  107.185130][ T5982] usb 8-1: Using ep0 maxpacket: 16
[  107.188024][ T5982] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  107.191140][ T5982] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 255, changing to 11
[  107.194546][ T5982] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid maxpacket 59391, setting to 1024
[  107.198348][ T5982] usb 8-1: config 0 interface 0 has no altsetting 0
[  107.201983][ T5982] usb 8-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  107.204860][ T5982] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.207336][ T5982] usb 8-1: Product: syz
[  107.208653][ T5982] usb 8-1: Manufacturer: syz
[  107.210124][ T5982] usb 8-1: SerialNumber: syz
[  107.213008][ T5982] usb 8-1: config 0 descriptor??
[  107.215240][ T9789] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  107.436923][ T9789] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  107.443133][ T5982] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input12
[  107.618210][ T9839] support for cryptoloop has been removed.  Use dm-crypt instead.
[  107.706772][  T836] usb 8-1: USB disconnect, device number 14
[  107.831281][ T9856] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  107.879619][ T9859] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  107.883974][ T9859] netlink: 'syz.5.1173': attribute type 10 has an invalid length.
[  107.900116][ T9859] veth0_vlan: left promiscuous mode
[  107.905131][ T9859] veth0_vlan: entered promiscuous mode
[  107.911147][ T9859] team0: Device veth0_vlan failed to register rx_handler
[  108.072770][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.076704][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.080222][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.083914][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.088176][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.092103][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.096424][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.100253][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.104041][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.108345][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.112275][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.116651][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.120640][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.124957][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.128990][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.132844][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.136836][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.140567][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.144414][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.148591][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.152234][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.156031][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.159527][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.164502][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.169680][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.173233][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.176627][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.179874][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.182794][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.186555][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.189812][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.193535][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.203955][ T9869] usb usb9: usbfs: process 9869 (syz.4.1176) did not claim interface 0 before use
[  108.346961][ T9878] XFS (nullb0): Invalid superblock magic number
[  108.399723][ T9880] dvmrp8: entered allmulticast mode
[  108.452287][ T9895] tmpfs: Unknown parameter 'grpquota_block_h'
[  108.480465][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  108.480481][   T40] audit: type=1400 audit(1751344849.695:671): avc:  denied  { getopt } for  pid=9896 comm="syz.4.1184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  108.527924][   T40] audit: type=1400 audit(1751344849.745:672): avc:  denied  { read } for  pid=9908 comm="syz.4.1187" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  108.553012][ T9916] tmpfs: Unknown parameter '00000000000000000003'
[  108.558928][ T9914] netlink: 'syz.0.1190': attribute type 1 has an invalid length.
[  108.565952][ T9914] overlayfs: failed to clone upperpath
[  108.597165][ T9909] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  108.600389][ T9909] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  108.616924][ T9909] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  108.621959][ T9909] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  108.625004][ T9909] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  108.646544][ T9909] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  108.647916][ T9927] tmpfs: Bad value for 'mpol'
[  108.654738][   T40] audit: type=1400 audit(1751344849.865:673): avc:  denied  { watch } for  pid=9929 comm="syz.5.1195" path="/41/file0" dev="tmpfs" ino=234 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  108.677336][ T9932] IPVS: Unknown mcast interface: ip6erspan0
[  108.709166][ T9943] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  108.712575][ T9943] ipt_REJECT: TCP_RESET invalid for non-tcp
[  108.715469][ T9940] batadv_slave_1: entered allmulticast mode
[  108.739920][ T9950] program syz.3.1200 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  108.777224][ T9959] erofs (device nbd3): cannot find valid erofs superblock
[  108.837293][ T9970] bond0: entered promiscuous mode
[  108.838973][ T9970] bond_slave_0: entered promiscuous mode
[  108.841006][ T9970] bond_slave_1: entered promiscuous mode
[  108.844071][ T9970] batadv0: entered promiscuous mode
[  108.849236][ T9970] 8021q: adding VLAN 0 to HW filter on device hsr1
[  108.853296][ T9970] bond0: left promiscuous mode
[  108.856693][ T9970] bond_slave_0: left promiscuous mode
[  108.858652][ T9970] bond_slave_1: left promiscuous mode
[  108.859518][ T9972] tmpfs: Cannot change global quota limit on remount
[  108.862992][ T9970] batadv0: left promiscuous mode
[  108.995300][ T9978] program syz.3.1209 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  109.091311][ T9990] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5 sclass=netlink_route_socket pid=9990 comm=syz.5.1213
[  109.122706][ T9990] kvm: emulating exchange as write
[  109.285714][    T9] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  109.434882][    T9] usb 8-1: Using ep0 maxpacket: 8
[  109.438735][    T9] usb 8-1: config 179 has an invalid interface number: 65 but max is 0
[  109.442177][    T9] usb 8-1: config 179 has no interface number 0
[  109.447633][    T9] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  109.452002][    T9] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  109.458199][    T9] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  109.462021][    T9] usb 8-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  109.466933][    T9] usb 8-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  109.469924][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.474135][ T9986] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  109.666706][T10018] cgroup: none used incorrectly
[  109.692470][   T40] audit: type=1400 audit(1751344850.905:674): avc:  denied  { unmount } for  pid=8098 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  109.692819][    C0] xpad 8-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  109.692819][ T5995] usb 8-1: USB disconnect, device number 15
[  109.692845][    C0] xpad 8-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  109.753657][   T40] audit: type=1400 audit(1751344850.965:675): avc:  denied  { setattr } for  pid=10034 comm="syz.3.1228" name="task" dev="proc" ino=31441 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  109.779977][   T40] audit: type=1400 audit(1751344850.995:676): avc:  denied  { unmount } for  pid=5929 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  109.953078][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  109.965623][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  109.968058][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  109.970539][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  109.972932][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  109.993197][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  109.998260][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.000990][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.003386][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.010615][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.012990][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.026481][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.032005][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.034536][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.038666][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.041072][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.043470][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.046449][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.048854][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.051255][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.053637][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.059699][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.062850][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.067271][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.076687][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.079081][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.083013][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.085760][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.088378][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.090817][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.093245][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.096602][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.099048][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.101632][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.104071][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.111508][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.114323][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.117865][   T40] audit: type=1400 audit(1751344851.335:677): avc:  denied  { read } for  pid=10078 comm="syz.0.1241" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  110.124076][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.126921][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.129365][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.132370][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.135651][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.138192][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  110.146199][ T5995] hid-generic 0000:007F:FFFFFFFE.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  110.163332][   T40] audit: type=1326 audit(1751344851.375:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10083 comm="syz.4.1243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f417af8e929 code=0x7ffc0000
[  110.171758][   T40] audit: type=1326 audit(1751344851.375:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10083 comm="syz.4.1243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f417af8e929 code=0x7ffc0000
[  110.180351][   T40] audit: type=1326 audit(1751344851.385:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10083 comm="syz.4.1243" exe="/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f417af8e929 code=0x7ffc0000
[  110.204695][T10082] fido_id[10082]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  110.220019][T10089] IPVS: set_ctl: invalid protocol: 50 100.1.1.2:20001
[  110.353064][T10110] mkiss: ax0: crc mode is auto.
[  110.412076][T10115] __nla_validate_parse: 4 callbacks suppressed
[  110.412094][T10115] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1253'.
[  110.516358][T10118] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  110.518488][T10124] overlayfs: failed to clone upperpath
[  110.530295][T10124] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  110.532921][T10124] overlayfs: missing 'lowerdir'
[  110.571811][T10130] 9pnet_virtio: no channels available for device syz
[  110.606426][ T5938] Bluetooth: hci3: command 0x0c1a tx timeout
[  110.614691][T10139] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1261'.
[  110.686019][ T5938] Bluetooth: hci1: command 0x0c1a tx timeout
[  110.790281][T10154] xt_hashlimit: size too large, truncated to 1048576
[  110.793245][T10155] xt_hashlimit: size too large, truncated to 1048576
[  110.800577][T10156] NILFS (nullb0): couldn't find nilfs on the device
[  110.959941][T10165] overlayfs: missing 'lowerdir'
[  111.053796][T10169] overlay: Unknown parameter 'fsmagic'
[  111.124478][T10173] loop2: detected capacity change from 0 to 7
[  111.131312][T10173] Dev loop2: unable to read RDB block 7
[  111.133313][T10173]  loop2: AHDI p1 p2 p3
[  111.134921][T10173] loop2: partition table partially beyond EOD, truncated
[  111.137755][T10173] loop2: p1 start 1601398130 is beyond EOD, truncated
[  111.140304][T10173] loop2: p2 start 1702059890 is beyond EOD, truncated
[  111.326241][T10187] overlayfs: missing 'lowerdir'
[  111.496655][T10203] vlan2: left allmulticast mode
[  111.498751][T10203] bond0: left allmulticast mode
[  111.501032][T10203] bridge0: port 1(vlan2) entered disabled state
[  111.560811][T10209] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1285'.
[  111.681213][T10232] overlay: ./file0 is not a directory
[  111.688909][T10225] "syz.3.1290" (10225) uses obsolete ecb(arc4) skcipher
[  111.745404][T10222] overlayfs: missing 'lowerdir'
[  111.851234][T10248] nfs4: Bad value for 'source'
[  111.901451][T10256] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1299'.
[  111.922816][T10238] geneve2: entered promiscuous mode
[  112.006840][T10266] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1301'.
[  112.014754][T10269] netlink: 'syz.4.1303': attribute type 10 has an invalid length.
[  112.030783][T10269] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  112.055630][T10269] bond0: (slave bridge0): Releasing backup interface
[  112.062226][T10272] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  112.093318][T10280] ieee802154 phy0 wpan0: encryption failed: -22
[  112.122356][T10282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1307'.
[  112.182162][T10288] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1309'.
[  112.267860][T10290] overlayfs: missing 'lowerdir'
[  112.315370][T10294] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1310'.
[  112.398319][T10308] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  112.401324][T10308] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  112.404093][T10308] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  112.407155][T10308] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  112.435425][T10305] program syz.4.1315 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  112.441366][T10305] pim6reg: entered allmulticast mode
[  112.444107][T10305] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1315'.
[  112.513550][T10318] loop2: detected capacity change from 0 to 7
[  112.524543][T10318] Dev loop2: unable to read RDB block 7
[  112.526629][T10318]  loop2: AHDI p1 p2 p3
[  112.528189][T10318] loop2: partition table partially beyond EOD, truncated
[  112.530703][T10318] loop2: p1 start 1601398130 is beyond EOD, truncated
[  112.532821][T10318] loop2: p2 start 1702059890 is beyond EOD, truncated
[  112.656177][T10328] overlayfs: missing 'lowerdir'
[  112.673990][T10335] ALSA: seq fatal error: cannot create timer (-19)
[  112.694901][ T5938] Bluetooth: hci3: command 0x0c1a tx timeout
[  112.765973][ T5938] Bluetooth: hci1: command 0x0c1a tx timeout
[  112.803021][T10349] openvswitch: netlink: Missing key (keys=40, expected=100)
[  113.776613][T10374] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1339'.
[  113.812641][T10368] overlayfs: missing 'lowerdir'
[  114.154918][ T5975] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[  114.177749][T10402] cdrom: dropping to single frame dma
[  114.337826][ T5975] usb 8-1: unable to get BOS descriptor or descriptor too short
[  114.341132][ T5975] usb 8-1: no configurations
[  114.343022][ T5975] usb 8-1: can't read configurations, error -22
[  114.405378][T10429] tmpfs: Unknown parameter 'syz'
[  114.443873][T10437] loop2: detected capacity change from 0 to 7
[  114.449231][T10437] Dev loop2: unable to read RDB block 7
[  114.449294][T10372] could not allocate digest TFM handle cryptd(blake2b-160)
[  114.453464][T10437]  loop2: AHDI p1 p2 p3
[  114.458503][T10437] loop2: partition table partially beyond EOD, truncated
[  114.461082][T10437] loop2: p1 start 1601398130 is beyond EOD, truncated
[  114.463212][T10437] loop2: p2 start 1702059890 is beyond EOD, truncated
[  114.531085][T10444] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  114.533543][T10444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  114.583537][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  114.583548][   T40] audit: type=1400 audit(1751344855.795:706): avc:  denied  { bind } for  pid=10441 comm="syz.5.1356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  114.765115][ T5938] Bluetooth: hci3: command 0x0c1a tx timeout
[  114.844978][ T5938] Bluetooth: hci1: command 0x0c1a tx timeout
[  114.924738][T10475] netlink: 'syz.3.1366': attribute type 1 has an invalid length.
[  114.982679][T10480] uprobe: syz.0.1367:10480 failed to unregister, leaking uprobe
[  114.993739][T10479] @: renamed from vlan0 (while UP)
[  115.058294][   T40] audit: type=1400 audit(1751344856.275:707): avc:  denied  { execute } for  pid=10478 comm="syz.3.1368" path="/proc/832/net/vlan/vlan0" dev="proc" ino=4026533662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  115.109406][   T40] audit: type=1400 audit(1751344856.325:708): avc:  denied  { bind } for  pid=10483 comm="syz.0.1369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  115.118360][   T40] audit: type=1400 audit(1751344856.325:709): avc:  denied  { listen } for  pid=10483 comm="syz.0.1369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  115.151621][T10490] macvlan2: entered promiscuous mode
[  115.153755][T10490] macvlan2: entered allmulticast mode
[  115.191579][T10492] x_tables: duplicate underflow at hook 2
[  115.233128][T10497] netlink: 'syz.3.1373': attribute type 1 has an invalid length.
[  115.277941][T10500] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  115.281590][T10500] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  115.350369][T10507] 9pnet: Found fid 0 not clunked
[  115.480674][T10519] binder: BINDER_SET_CONTEXT_MGR already set
[  115.482627][T10519] binder: 10518:10519 ioctl 4018620d 200000000040 returned -16
[  115.524169][   T40] audit: type=1400 audit(1751344856.735:710): avc:  granted  { setsecparam } for  pid=10523 comm="syz.5.1381" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  115.589203][   T40] audit: type=1400 audit(1751344856.805:711): avc:  denied  { getopt } for  pid=10535 comm="syz.3.1385" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  115.658983][T10549] xt_hashlimit: max too large, truncated to 1048576
[  115.663437][T10551] xt_hashlimit: max too large, truncated to 1048576
[  115.716605][T10557] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  115.728878][T10557] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  115.754905][   T34] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  115.844044][T10566] __nla_validate_parse: 12 callbacks suppressed
[  115.844055][T10566] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1394'.
[  115.904904][   T34] usb 9-1: Using ep0 maxpacket: 32
[  115.908665][   T34] usb 9-1: config index 0 descriptor too short (expected 8220, got 796)
[  115.911394][   T34] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  115.914669][   T34] usb 9-1: config 0 has no interfaces?
[  115.920481][   T34] usb 9-1: New USB device found, idVendor=d024, idProduct=5e5a, bcdDevice=16.a9
[  115.923328][   T34] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.927380][   T34] usb 9-1: Product: syz
[  115.929144][   T34] usb 9-1: Manufacturer: syz
[  115.930668][   T34] usb 9-1: SerialNumber: syz
[  115.933827][   T34] usb 9-1: config 0 descriptor??
[  115.971470][T10576] vti1: entered promiscuous mode
[  116.156355][   T34] usb 9-1: USB disconnect, device number 4
[  116.170141][T10591] SELinux: security_context_str_to_sid (5ýÆÉ]ÖS9q#“�ë) failed with errno=-22
[  116.179193][T10591] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1403'.
[  116.184434][T10591] xt_hashlimit: size too large, truncated to 1048576
[  116.374385][T10599] netlink: 4536 bytes leftover after parsing attributes in process `syz.0.1405'.
[  116.434962][T10604] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1407'.
[  116.617355][T10621] wg2: entered promiscuous mode
[  116.618204][T10625] PKCS7: Unknown OID: [4] 5.25.43183(bad)
[  116.618926][T10621] wg2: entered allmulticast mode
[  116.622767][T10625] PKCS7: Only support pkcs7_signedData type
[  116.650635][   T40] audit: type=1400 audit(1751344857.865:712): avc:  denied  { read } for  pid=10629 comm="syz.3.1414" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  116.658527][   T40] audit: type=1400 audit(1751344857.865:713): avc:  denied  { open } for  pid=10629 comm="syz.3.1414" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  116.698558][T10634] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10634 comm=syz.0.1416
[  116.707601][T10634] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1416'.
[  116.850119][T10655] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[  116.852275][T10655] [U] J"—e:ÀÆ"


[  116.904679][T10661] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1424'.
[  116.937366][T10669] batadv_slave_0: entered promiscuous mode
[  117.006384][T10682] netlink: 'syz.0.1431': attribute type 1 has an invalid length.
[  117.018949][T10682] 8021q: adding VLAN 0 to HW filter on device bond9
[  117.038920][T10682] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1431'.
[  117.044511][T10682] vlan0: entered promiscuous mode
[  117.046764][T10682] bond9: entered promiscuous mode
[  117.049720][T10682] dummy0: entered promiscuous mode
[  117.074574][T10682] bond9: (slave dummy0): making interface the new active one
[  117.079355][T10682] bond9: (slave dummy0): Enslaving as an active interface with an up link
[  117.084149][T10682] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1431'.
[  117.093869][T10682] openvswitch: netlink: Key 8 has unexpected len 2 expected 40
[  117.159192][   T40] audit: type=1400 audit(1751344858.375:714): avc:  denied  { ioctl } for  pid=10690 comm="syz.4.1433" path="/dev/btrfs-control" dev="devtmpfs" ino=1335 ioctlcmd=0x9405 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  117.169904][T10692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1433'.
[  117.404937][T10713] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.1441'.
[  117.456492][T10718] overlayfs: failed to clone upperpath
[  117.466897][T10718] /dev/nbd0: Can't lookup blockdev
[  117.511925][T10720] overlayfs: missing 'lowerdir'
[  117.516008][   T40] audit: type=1326 audit(1751344858.735:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10721 comm="syz.0.1445" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e33f8e929 code=0x7ffc0000
[  117.703211][T10736] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10736 comm=syz.0.1449
[  117.796393][T10742] netlink: 'syz.0.1451': attribute type 10 has an invalid length.
[  117.796474][T10743] netlink: 'syz.0.1451': attribute type 10 has an invalid length.
[  117.808383][T10742] mac80211_hwsim hwsim8 wlan1: entered promiscuous mode
[  117.813766][T10742] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  118.135296][T10755] overlayfs: missing 'workdir'
[  118.412541][T10781] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  118.553290][T10795] overlayfs: missing 'workdir'
[  118.679462][T10816] can: request_module (can-proto-0) failed.
[  118.729704][T10824] IPv6: addrconf: prefix option has invalid lifetime
[  118.775442][T10829] IPv6: sit1: Disabled Multicast RS
[  118.778504][T10829] sit1: entered allmulticast mode
[  118.848289][T10829] IPv6: sit1: Disabled Multicast RS
[  118.850514][T10829] sit1: entered allmulticast mode
[  118.951303][T10829] IPv6: sit1: Disabled Multicast RS
[  118.953600][T10829] sit1: entered allmulticast mode
[  119.018483][T10829] IPv6: sit1: Disabled Multicast RS
[  119.020848][T10829] sit1: entered allmulticast mode
[  119.079330][T10829] IPv6: sit1: Disabled Multicast RS
[  119.081541][T10829] sit1: entered allmulticast mode
[  119.147807][T10829] IPv6: sit1: Disabled Multicast RS
[  119.149858][T10829] sit1: entered allmulticast mode
[  119.207976][T10829] IPv6: sit1: Disabled Multicast RS
[  119.210380][T10829] sit1: entered allmulticast mode
[  119.258509][T10829] IPv6: sit1: Disabled Multicast RS
[  119.260785][T10829] sit1: entered allmulticast mode
[  119.340272][T10829] IPv6: sit1: Disabled Multicast RS
[  119.343446][T10829] sit1: entered allmulticast mode
[  119.420657][T10829] IPv6: sit1: Disabled Multicast RS
[  119.423668][T10829] sit1: entered allmulticast mode
[  119.496796][    C0] vcan0: j1939_tp_rxtimer: 0xffff888026ec9000: rx timeout, send abort
[  119.499529][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888026ec9000: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  119.506978][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802aa75c00: rx timeout, send abort
[  119.511529][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802aa75c00: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  119.518865][T10829] IPv6: sit1: Disabled Multicast RS
[  119.521005][T10829] sit1: entered allmulticast mode
[  119.591123][T10829] IPv6: sit1: Disabled Multicast RS
[  119.594168][T10829] sit1: entered allmulticast mode
[  119.639858][T10846] overlayfs: failed to resolve 'uuid=auto': -2
[  119.674913][ T5975] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  119.703214][T10851] syz_tun: entered allmulticast mode
[  119.835077][ T5975] usb 10-1: Using ep0 maxpacket: 16
[  119.838570][ T5975] usb 10-1: config 0 has an invalid interface number: 8 but max is 0
[  119.841473][ T5975] usb 10-1: config 0 has no interface number 0
[  119.843449][ T5975] usb 10-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  119.845485][   T40] kauditd_printk_skb: 26 callbacks suppressed
[  119.845499][   T40] audit: type=1400 audit(1751344861.065:742): avc:  denied  { setattr } for  pid=10869 comm="syz.3.1493" name="CAN_RAW" dev="sockfs" ino=32533 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  119.847481][ T5975] usb 10-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  119.850799][   T40] audit: type=1400 audit(1751344861.065:743): avc:  denied  { read } for  pid=10869 comm="syz.3.1493" path="socket:[32533]" dev="sockfs" ino=32533 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  119.857584][ T5975] usb 10-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  119.871487][ T5975] usb 10-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  119.874021][ T5975] usb 10-1: Product: syz
[  119.875631][ T5975] usb 10-1: SerialNumber: syz
[  119.876728][T10872] xt_hashlimit: size too large, truncated to 1048576
[  119.881045][ T5975] usb 10-1: config 0 descriptor??
[  119.886219][ T5975] cm109 10-1:0.8: invalid payload size 0, expected 4
[  119.889479][ T5975] input: CM109 USB driver as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.8/input/input13
[  119.925242][    T9] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  120.087460][T10839] netem: unknown loss type 13
[  120.089262][T10839] netem: change failed
[  120.094448][    C2] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  120.094893][    T9] usb 9-1: Using ep0 maxpacket: 32
[  120.098148][    C2] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  120.099646][    T9] usb 9-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  120.100767][    C2] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  120.103523][    T9] usb 9-1: config 1 has no interface number 1
[  120.105786][    C2] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  120.107685][    T9] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  120.110031][ T5975] usb 10-1: USB disconnect, device number 2
[  120.114545][    C2] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  120.114556][    C2] cm109 10-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  120.116272][    T9] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  120.124645][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.127523][    T9] usb 9-1: Product: syz
[  120.127954][ T5975] cm109 10-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  120.128834][    T9] usb 9-1: Manufacturer: ᜫί㭰轇엒䠦�ț輠Ѻ
[  120.128845][    T9] usb 9-1: SerialNumber: syz
[  120.344274][    T9] usb 9-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  120.346479][    T9] usb 9-1: 2:1 : invalid channels 0
[  120.361511][    T9] usb 9-1: USB disconnect, device number 5
[  120.382652][ T6034] udevd[6034]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  120.762501][T10888] fuse: Unknown parameter 'kmem_cache_free'
[  120.764681][T10889] fuse: Unknown parameter 'kmem_cache_free'
[  120.873653][T10901] __nla_validate_parse: 7 callbacks suppressed
[  120.873665][T10901] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1501'.
[  120.955183][T10907] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1503'.
[  121.741090][T10918] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  121.827260][   T40] audit: type=1400 audit(2000000000.969:744): avc:  denied  { bind } for  pid=10925 comm="syz.3.1509" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  121.845079][   T40] audit: type=1400 audit(2000000000.969:745): avc:  denied  { connect } for  pid=10925 comm="syz.3.1509" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  121.851503][T10918] futex_wake_op: syz.4.1505 tries to shift op by -1; fix this program
[  121.876562][T10929] fuse: Unknown parameter '�9'
[  121.880241][T10929] fuse: Unknown parameter '�9'
[  121.945004][T10938] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  122.005337][T10943] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1513'.
[  122.008139][T10943] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1513'.
[  122.306318][T10968] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  122.567578][T10981] netlink: 'syz.5.1523': attribute type 83 has an invalid length.
[  122.686843][T11002] x_tables: duplicate underflow at hook 2
[  122.688763][T11002] x_tables: duplicate underflow at hook 2
[  122.690646][T11002] x_tables: duplicate underflow at hook 2
[  122.699598][T11002] x_tables: duplicate underflow at hook 2
[  122.770808][T11004] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1530'.
[  122.851489][T11007] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1531'.
[  122.893899][T11011] loop2: detected capacity change from 0 to 7
[  122.902575][T11011] Dev loop2: unable to read RDB block 7
[  122.908331][T11011]  loop2: AHDI p1 p2 p3
[  122.914895][T11011] loop2: partition table partially beyond EOD, truncated
[  122.916427][T11014] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  122.917187][T11011] loop2: p1 start 1601398130 is beyond EOD, truncated
[  122.927404][T11011] loop2: p2 start 1702059890 is beyond EOD, truncated
[  123.069977][T11034] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  123.072132][T11034] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  123.076367][T11034] vhci_hcd vhci_hcd.0: Device attached
[  123.080285][T11036] vhci_hcd: unknown pdu 2
[  123.083120][T11034] loop2: detected capacity change from 0 to 7
[  123.087392][ T6801] vhci_hcd: stop threads
[  123.089272][ T6801] vhci_hcd: release socket
[  123.089659][T11034] Dev loop2: unable to read RDB block 7
[  123.091093][ T6801] vhci_hcd: disconnect device
[  123.092905][T11034]  loop2: unable to read partition table
[  123.097142][T11034] loop2: partition table beyond EOD, truncated
[  123.099146][T11034] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  123.138320][T11044] netlink: 212280 bytes leftover after parsing attributes in process `syz.3.1543'.
[  123.147046][T11048] overlayfs: failed to clone upperpath
[  123.276957][T11065] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1548'.
[  123.297939][   T40] audit: type=1400 audit(2000000002.440:746): avc:  denied  { bind } for  pid=11066 comm="syz.4.1549" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  123.497946][T11076] xt_CT: No such helper "pptp"
[  123.787298][T11091] trusted_key: encrypted_key: master key parameter '' is invalid
[  123.792487][   T40] audit: type=1400 audit(2000000002.930:747): avc:  denied  { append } for  pid=11088 comm="syz.5.1555" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  123.852236][   T40] audit: type=1400 audit(2000000002.990:748): avc:  denied  { read } for  pid=11094 comm="syz.4.1558" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  123.855426][T11095] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1558'.
[  123.939951][   T40] audit: type=1400 audit(2000000003.080:749): avc:  denied  { setattr } for  pid=11103 comm="syz.0.1560" name="/" dev="configfs" ino=3173 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  124.099585][T11113] netlink: 'syz.4.1564': attribute type 10 has an invalid length.
[  124.102172][T11113] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1564'.
[  124.340675][T11123] could not allocate digest TFM handle cryptd(blake2b-160)
[  124.514592][T11091] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  124.517097][T11091] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  124.553537][T11129] loop2: detected capacity change from 0 to 7
[  124.556000][T11129] Dev loop2: unable to read RDB block 7
[  124.557760][T11129]  loop2: AHDI p1 p2 p3
[  124.559097][T11129] loop2: partition table partially beyond EOD, truncated
[  124.561494][T11129] loop2: p1 start 1601398130 is beyond EOD, truncated
[  124.563607][T11129] loop2: p2 start 1702059890 is beyond EOD, truncated
[  124.616532][T11131] syz.5.1568 (11131) used obsolete PPPIOCDETACH ioctl
[  124.631499][   T40] audit: type=1326 audit(2000000003.770:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.5.1568" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae5a38e929 code=0x7ffc0000
[  124.652680][   T40] audit: type=1326 audit(2000000003.770:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.5.1568" exe="/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fae5a38e929 code=0x7ffc0000
[  124.708715][T11141] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  124.761498][ T5938] Bluetooth: hci1: Received unexpected HCI Event 0x00
[  124.777987][T11132] uprobe: syz.4.1570:11132 failed to unregister, leaking uprobe
[  124.842682][T11153] xt_hashlimit: size too large, truncated to 1048576
[  124.915322][T11158] loop2: detected capacity change from 0 to 7
[  124.918107][T11158] Dev loop2: unable to read RDB block 7
[  124.920430][T11158]  loop2: AHDI p1 p2 p3
[  124.922161][T11158] loop2: partition table partially beyond EOD, truncated
[  124.927169][T11158] loop2: p1 start 1601398130 is beyond EOD, truncated
[  124.929873][T11158] loop2: p2 start 1702059890 is beyond EOD, truncated
[  125.158408][   T40] kauditd_printk_skb: 55 callbacks suppressed
[  125.158419][   T40] audit: type=1400 audit(2000000004.300:807): avc:  denied  { read } for  pid=11182 comm="syz.0.1586" path="socket:[38957]" dev="sockfs" ino=38957 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  125.173985][T11188] netlink: 'syz.5.1588': attribute type 10 has an invalid length.
[  125.177022][T11188] lo: entered promiscuous mode
[  125.179982][T11188] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  125.229454][   T40] audit: type=1400 audit(2000000004.370:808): avc:  denied  { watch } for  pid=11189 comm="syz.5.1589" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  125.237174][   T40] audit: type=1400 audit(2000000004.370:809): avc:  denied  { watch_sb } for  pid=11189 comm="syz.5.1589" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  125.491168][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  125.494041][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  125.507929][   T40] audit: type=1400 audit(2000000004.650:810): avc:  denied  { create } for  pid=11210 comm="syz.3.1596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  125.539801][T11211] syz.3.1596 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  125.771191][T11223] loop2: detected capacity change from 0 to 7
[  125.774272][T11223] Dev loop2: unable to read RDB block 7
[  125.776387][T11223]  loop2: AHDI p1 p2 p3
[  125.777811][T11223] loop2: partition table partially beyond EOD, truncated
[  125.780175][T11223] loop2: p1 start 1601398130 is beyond EOD, truncated
[  125.782572][T11223] loop2: p2 start 1702059890 is beyond EOD, truncated
[  125.839163][   T40] audit: type=1400 audit(2000000004.980:811): avc:  denied  { name_bind 0x1000000 } for  pid=11224 comm="syz.5.1601" path="socket:[36217]" dev="sockfs" ino=36217 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  125.855045][T11227] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  125.885015][ T5934] Bluetooth: hci3: command 0x0c1a tx timeout
[  126.035034][ T6025] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  126.199209][ T6025] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  126.203033][ T6025] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.207109][ T6025] usb 9-1: Product: syz
[  126.208988][ T6025] usb 9-1: Manufacturer: syz
[  126.211109][ T6025] usb 9-1: SerialNumber: syz
[  126.225340][ T6025] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  126.243083][ T1022] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  126.328721][   T46] Bluetooth: hci4: Frame reassembly failed (-84)
[  126.441255][T11244] program syz.3.1605 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  126.455756][T11221] bridge1: port 1(veth0_to_bond) entered blocking state
[  126.458568][T11221] bridge1: port 1(veth0_to_bond) entered disabled state
[  126.461046][T11221] veth0_to_bond: entered allmulticast mode
[  126.468871][T11221] veth0_to_bond: entered promiscuous mode
[  126.486238][T11221] vlan4: entered allmulticast mode
[  126.487982][T11221] veth1: entered allmulticast mode
[  126.536116][ T5937] Bluetooth: hci1: command 0x0c1a tx timeout
[  126.571624][ T5982] usb 9-1: USB disconnect, device number 6
[  126.592315][T11249] netlink: 'syz.3.1607': attribute type 8 has an invalid length.
[  126.874595][T11256] autofs: Bad value for 'fd'
[  127.042105][    T9] IPVS: starting estimator thread 0...
[  127.047134][T11273] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  127.060475][T11275] __nla_validate_parse: 8 callbacks suppressed
[  127.060485][T11275] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1612'.
[  127.139150][T11283] loop2: detected capacity change from 0 to 7
[  127.144936][T11274] IPVS: using max 43 ests per chain, 103200 per kthread
[  127.145173][T11283] Dev loop2: unable to read RDB block 7
[  127.149791][T11283]  loop2: AHDI p1 p2 p3
[  127.151164][T11283] loop2: partition table partially beyond EOD, truncated
[  127.153751][T11283] loop2: p1 start 1601398130 is beyond EOD, truncated
[  127.157838][T11283] loop2: p2 start 1702059890 is beyond EOD, truncated
[  127.211124][T11293] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1618'.
[  127.326001][ T1022] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[  127.329206][ T1022] ath9k_htc: Failed to initialize the device
[  127.331580][ T5982] usb 9-1: ath9k_htc: USB layer deinitialized
[  128.030206][T11310] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=11310 comm=syz.3.1624
[  128.147416][T11324] netlink: 'syz.0.1628': attribute type 1 has an invalid length.
[  128.163525][T11325] bond10 (unregistering): Released all slaves
[  128.167197][T11328] loop2: detected capacity change from 0 to 7
[  128.171660][ T6034] Dev loop2: unable to read RDB block 7
[  128.173446][ T6034]  loop2: AHDI p1 p2 p3
[  128.176933][ T6034] loop2: partition table partially beyond EOD, truncated
[  128.179569][ T6034] loop2: p1 start 1601398130 is beyond EOD, truncated
[  128.181909][ T6034] loop2: p2 start 1702059890 is beyond EOD, truncated
[  128.191998][T11328] Dev loop2: unable to read RDB block 7
[  128.193797][T11328]  loop2: AHDI p1 p2 p3
[  128.195284][T11328] loop2: partition table partially beyond EOD, truncated
[  128.197783][T11328] loop2: p1 start 1601398130 is beyond EOD, truncated
[  128.199932][T11328] loop2: p2 start 1702059890 is beyond EOD, truncated
[  128.243464][T11332] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes
[  128.365041][ T5938] Bluetooth: hci4: command 0x1003 tx timeout
[  128.368771][ T5934] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  128.645998][ T5995] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  128.744900][ T1022] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  128.795027][ T5995] usb 10-1: Using ep0 maxpacket: 16
[  128.798099][ T5995] usb 10-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  128.801231][ T5995] usb 10-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  128.804696][ T5995] usb 10-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  128.808032][ T5995] usb 10-1: config 0 interface 0 has no altsetting 0
[  128.811997][ T5995] usb 10-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  128.814942][ T5995] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.817534][ T5995] usb 10-1: Product: syz
[  128.818978][ T5995] usb 10-1: Manufacturer: syz
[  128.820546][ T5995] usb 10-1: SerialNumber: syz
[  128.824606][ T5995] usb 10-1: config 0 descriptor??
[  128.894962][ T1022] usb 9-1: Using ep0 maxpacket: 8
[  128.897862][ T1022] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.902129][ T1022] usb 9-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  128.905207][ T1022] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  128.912177][ T1022] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  128.915209][ T1022] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.917708][ T1022] usb 9-1: Product: syz
[  128.919041][ T1022] usb 9-1: Manufacturer: syz
[  128.920535][ T1022] usb 9-1: SerialNumber: syz
[  129.032983][ T5995] input: syz syz as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/input/input14
[  129.037194][ T5328] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.044676][ T5328] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.048217][ T5328] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.057511][ T5328] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.065525][ T5931] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.073795][ T5328] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.079754][ T5328] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.082901][ T5328] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.130753][ T1022] cdc_ncm 9-1:1.0: bind() failure
[  129.134586][ T1022] cdc_ncm 9-1:1.1: CDC Union missing and no IAD found
[  129.136867][ T1022] cdc_ncm 9-1:1.1: bind() failure
[  129.140873][ T1022] usb 9-1: USB disconnect, device number 7
[  129.276404][T11366] syz_tun: left allmulticast mode
[  129.278100][T11366] batadv_slave_1: left allmulticast mode
[  129.283872][T11366] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1641'.
[  129.304940][T11357] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.338109][ T5995] usb 10-1: USB disconnect, device number 3
[  129.423527][   T40] audit: type=1400 audit(2000000008.560:812): avc:  denied  { create } for  pid=11371 comm="syz.0.1643" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  129.427006][T11372] fuse: Bad value for 'fd'
[  129.430453][   T40] audit: type=1400 audit(2000000008.560:813): avc:  denied  { mounton } for  pid=11371 comm="syz.0.1643" path="/551/file0" dev="tmpfs" ino=2981 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  129.440494][   T40] audit: type=1400 audit(2000000008.570:814): avc:  denied  { append } for  pid=11371 comm="syz.0.1643" name="file0" dev="tmpfs" ino=2981 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  129.449485][   T40] audit: type=1400 audit(2000000008.570:815): avc:  denied  { open } for  pid=11371 comm="syz.0.1643" path="/551/file0" dev="tmpfs" ino=2981 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  129.456923][   T40] audit: type=1400 audit(2000000008.590:816): avc:  denied  { unlink } for  pid=5936 comm="syz-executor" name="file0" dev="tmpfs" ino=2981 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  129.658720][T11389] loop2: detected capacity change from 0 to 7
[  129.666899][ T6034] Dev loop2: unable to read RDB block 7
[  129.671996][ T6034]  loop2: AHDI p1 p2 p3
[  129.673394][ T6034] loop2: partition table partially beyond EOD, truncated
[  129.677625][ T6034] loop2: p1 start 1601398130 is beyond EOD, truncated
[  129.679740][ T6034] loop2: p2 start 1702059890 is beyond EOD, truncated
[  129.682723][T11389] Dev loop2: unable to read RDB block 7
[  129.684951][T11389]  loop2: AHDI p1 p2 p3
[  129.686611][T11389] loop2: partition table partially beyond EOD, truncated
[  129.690087][T11389] loop2: p1 start 1601398130 is beyond EOD, truncated
[  129.692761][T11389] loop2: p2 start 1702059890 is beyond EOD, truncated
[  129.710029][T11393] netlink: 'syz.0.1651': attribute type 2 has an invalid length.
[  129.713729][T11393] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  129.798068][ T5995] hid-generic 0000:0004:0009.0006: unknown main item tag 0x0
[  129.800423][ T5995] hid-generic 0000:0004:0009.0006: unknown main item tag 0x0
[  129.802964][ T5995] hid-generic 0000:0004:0009.0006: unknown main item tag 0x0
[  129.809786][ T5995] hid-generic 0000:0004:0009.0006: hidraw1: <UNKNOWN> HID v0.04 Device [syz0] on syz1
[  129.902911][T11414] loop2: detected capacity change from 0 to 7
[  129.905876][T11414] Dev loop2: unable to read RDB block 7
[  129.907731][T11414]  loop2: AHDI p1 p2 p3
[  129.909116][T11414] loop2: partition table partially beyond EOD, truncated
[  129.911656][T11414] loop2: p1 start 1601398130 is beyond EOD, truncated
[  129.913891][T11414] loop2: p2 start 1702059890 is beyond EOD, truncated
[  129.934704][T11418] overlayfs: failed to clone upperpath
[  129.948819][T11420] netlink: 1347 bytes leftover after parsing attributes in process `syz.5.1663'.
[  129.976212][T11422] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1664'.
[  130.099822][T11429] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1667'.
[  130.126379][T11431] devpts: Bad value for 'max'
[  130.207596][T11437] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  130.329512][T11439] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.1671'.
[  130.366210][T11441] loop2: detected capacity change from 0 to 7
[  130.369897][ T6034] Dev loop2: unable to read RDB block 7
[  130.372040][ T6034]  loop2: AHDI p1 p2 p3
[  130.373755][ T6034] loop2: partition table partially beyond EOD, truncated
[  130.376635][ T6034] loop2: p1 start 1601398130 is beyond EOD, truncated
[  130.379535][ T6034] loop2: p2 start 1702059890 is beyond EOD, truncated
[  130.383717][T11441] Dev loop2: unable to read RDB block 7
[  130.387603][T11441]  loop2: AHDI p1 p2 p3
[  130.389024][T11441] loop2: partition table partially beyond EOD, truncated
[  130.391586][T11441] loop2: p1 start 1601398130 is beyond EOD, truncated
[  130.394103][T11441] loop2: p2 start 1702059890 is beyond EOD, truncated
[  130.522388][T11446] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1674'.
[  130.525456][T11446] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1674'.
[  130.533061][T11446] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0
[  130.533191][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  130.533201][   T40] audit: type=1400 audit(2000000009.670:818): avc:  denied  { read } for  pid=11445 comm="syz.5.1674" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  130.545090][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  130.695214][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  130.877417][T11457] overlay: ./file0 is not a directory
[  130.914199][T11460] binder_alloc: 11459: binder_alloc_buf, no vma
[  130.919894][T11460] binder: 11459:11460 ioctl c0306201 200000000300 returned -11
[  130.925348][T11460] binder: 11459:11460 ioctl c0306201 200000000240 returned -11
[  130.928947][T11460] ieee802154 phy0 wpan0: encryption failed: -22
[  130.931089][T11460] CUSE: unknown device info "ÿ
"
[  130.932575][T11460] CUSE: zero length info key specified
[  131.069384][T11466] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  131.148211][T11470] sch_tbf: burst 0 is lower than device geneve0 mtu (1464) !
[  131.213959][   T40] audit: type=1400 audit(2000000010.350:819): avc:  denied  { mounton } for  pid=11479 comm="syz.4.1687" path="/237/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  131.231384][   T40] audit: type=1400 audit(2000000010.370:820): avc:  denied  { setattr } for  pid=11479 comm="syz.4.1687" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  131.245024][   T40] audit: type=1400 audit(2000000010.370:821): avc:  denied  { write } for  pid=11479 comm="syz.4.1687" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  131.317164][T11492] netlink: 'syz.4.1688': attribute type 7 has an invalid length.
[  131.319557][T11492] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1688'.
[  131.681708][T11512] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=11512 comm=syz.3.1693
[  132.017782][T11544] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  132.019764][T11544] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  132.031586][   T40] audit: type=1400 audit(2000000011.170:822): avc:  denied  { map } for  pid=11545 comm="syz.5.1706" path="/dev/zero" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  132.065112][   T59] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  132.158510][T11561] __nla_validate_parse: 2 callbacks suppressed
[  132.158521][T11561] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1713'.
[  132.172719][   T40] audit: type=1800 audit(2000000011.310:823): pid=11563 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.1714" name="nullb0" dev="tmpfs" ino=2565 res=0 errno=0
[  132.203447][T11567] netlink: 196 bytes leftover after parsing attributes in process `syz.0.1715'.
[  132.217946][   T59] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  132.221424][   T59] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  132.224430][   T59] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  132.228546][T11569] netlink: 172 bytes leftover after parsing attributes in process `syz.5.1716'.
[  132.232146][   T59] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  132.237604][   T59] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.242890][   T59] usb 8-1: config 0 descriptor??
[  132.295031][  T835] IPVS: starting estimator thread 0...
[  132.385050][T11576] IPVS: using max 25 ests per chain, 60000 per kthread
[  132.404264][T11585] ptrace attach of "/syz-executor exec"[5936] was attempted by "/syz-executor exec"[11585]
[  132.408868][T11585] netlink: 'syz.0.1720': attribute type 1 has an invalid length.
[  132.411464][T11585] netlink: 'syz.0.1720': attribute type 2 has an invalid length.
[  132.469150][   T40] audit: type=1326 audit(2000000011.610:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11577 comm="syz.0.1720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e33f8e929 code=0x7fc00000
[  132.619697][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  132.621754][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  132.677075][   T59] plantronics 0003:047F:FFFF.0007: reserved main item tag 0xd
[  132.692917][   T59] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  132.762134][T11610] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  132.972036][ T6839] usb 8-1: USB disconnect, device number 18
[  133.130354][   T40] audit: type=1326 audit(2000000012.270:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11577 comm="syz.0.1720" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7e33f8e929 code=0x7fc00000
[  133.193622][T11614] overlayfs: failed to clone upperpath
[  133.573320][   T40] audit: type=1400 audit(2000000012.710:826): avc:  denied  { read } for  pid=11624 comm="syz.3.1734" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  133.800835][T11645] xt_hashlimit: size too large, truncated to 1048576
[  134.160198][T11654] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1745'.
[  134.190510][T11654] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1745'.
[  134.585932][   T40] audit: type=1400 audit(2000000013.730:827): avc:  denied  { watch watch_reads } for  pid=11675 comm="syz.4.1751" path="/syzcgroup/net/syz4/syz0" dev="cgroup" ino=366 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  134.641551][T11682] veth0: entered promiscuous mode
[  134.643571][T11682] veth0: left promiscuous mode
[  134.775015][ T5934] Bluetooth: hci4: command 0x1003 tx timeout
[  134.778126][ T5938] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  135.080411][ T5934] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  135.091372][ T5934] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  135.096970][ T5934] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  135.100490][ T5934] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  135.107094][ T5934] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  135.250216][T11736] chnl_net:caif_netlink_parms(): no params data found
[  135.337452][T11751] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1772'.
[  135.420656][T11736] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.420922][T11759] befs: (nullb0): No write support. Marking filesystem read-only
[  135.423202][T11736] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.427515][T11759] befs: (nullb0): invalid magic header
[  135.430735][T11736] bridge_slave_0: entered allmulticast mode
[  135.433217][T11736] bridge_slave_0: entered promiscuous mode
[  135.439745][T11736] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.442078][T11736] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.446203][T11736] bridge_slave_1: entered allmulticast mode
[  135.448698][T11736] bridge_slave_1: entered promiscuous mode
[  135.484889][T11736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  135.490973][T11736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.542121][T11736] team0: Port device team_slave_0 added
[  135.550138][T11736] team0: Port device team_slave_1 added
[  135.608530][T11762] team_slave_1: entered promiscuous mode
[  135.612277][T11736] batman_adv: batadv0: Adding interface: batadv_slave_0
[  135.614435][T11736] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.623330][T11736] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  135.629725][T11736] batman_adv: batadv0: Adding interface: batadv_slave_1
[  135.631912][T11736] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.639816][T11736] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  135.706113][T11736] hsr_slave_0: entered promiscuous mode
[  135.709602][T11736] hsr_slave_1: entered promiscuous mode
[  135.712562][T11736] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  135.719448][T11736] Cannot create hsr debugfs directory
[  135.802670][T11772] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.859966][T11774] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.867427][T11775] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1778'.
[  135.884241][T11736] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  135.889639][T11736] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.927313][T11772] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.985949][T11736] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  135.989990][T11736] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.071718][T11736] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  136.074865][T11736] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.151556][T11736] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  136.155052][T11736] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.272128][T11736] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  136.276851][T11736] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  136.281178][T11736] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  136.285730][T11736] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  136.364389][T11736] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.376035][T11736] 8021q: adding VLAN 0 to HW filter on device team0
[  136.380683][ T6778] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.382853][ T6778] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.389205][ T1151] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.391418][ T1151] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.558442][T11790] trusted_key: encrypted_key: hex blob is missing
[  136.561779][T11791] trusted_key: encrypted_key: hex blob is missing
[  136.570174][T11736] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.604682][T11736] veth0_vlan: entered promiscuous mode
[  136.613117][T11736] veth1_vlan: entered promiscuous mode
[  136.627154][T11736] veth0_macvtap: entered promiscuous mode
[  136.630920][T11736] veth1_macvtap: entered promiscuous mode
[  136.643045][T11736] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.650574][T11736] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.659332][T11736] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.662166][T11736] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.666114][T11736] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.668859][T11736] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.735867][ T1151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.738449][ T1151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.789058][ T6780] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.792068][ T6780] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.803216][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  136.803225][   T40] audit: type=1400 audit(2000000016.945:830): avc:  denied  { shutdown } for  pid=11801 comm="syz.4.1782" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  136.867008][T11806] loop2: detected capacity change from 0 to 7
[  136.870147][T11806] Dev loop2: unable to read RDB block 7
[  136.872276][T11806]  loop2: AHDI p1 p2 p3
[  136.873780][T11806] loop2: partition table partially beyond EOD, truncated
[  136.877363][T11806] loop2: p1 start 1601398130 is beyond EOD, truncated
[  136.879962][T11806] loop2: p2 start 1702059890 is beyond EOD, truncated
[  136.885045][T11804] netlink: 'syz.4.1783': attribute type 1 has an invalid length.
[  136.887605][T11804] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.1783'.
[  136.923568][T11811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1785'.
[  137.029039][T11824] netlink: 'syz.5.1788': attribute type 1 has an invalid length.
[  137.031538][T11824] netlink: 216 bytes leftover after parsing attributes in process `syz.5.1788'.
[  137.042764][T11824] ntfs3(sr0): Primary boot signature is not NTFS.
[  137.045351][T11824] ntfs3(sr0): try to read out of volume at offset 0xf800
[  137.166603][ T5934] Bluetooth: hci4: command tx timeout
[  137.323867][T11837] could not allocate digest TFM handle cryptd(blake2b-160)
[  137.328976][T11836] netdevsim netdevsim5 netdevsim0: entered allmulticast mode
[  137.822387][   T40] audit: type=1400 audit(2000000017.965:831): avc:  denied  { create } for  pid=11844 comm="syz.0.1792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  137.937959][   T40] audit: type=1400 audit(2000000018.085:832): avc:  denied  { map } for  pid=11849 comm="syz.0.1794" path="/dev/dlm-monitor" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  137.990438][T11853] macsec2: entered promiscuous mode
[  137.992637][T11853] macsec2: entered allmulticast mode
[  138.020546][T11853] netlink: 'syz.3.1795': attribute type 12 has an invalid length.
[  138.023042][T11853] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1795'.
[  138.053185][   T40] audit: type=1400 audit(2000000018.195:833): avc:  denied  { ioctl } for  pid=11851 comm="syz.3.1795" path="cgroup:[4026532879]" dev="nsfs" ino=4026532879 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  138.147804][T11863] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1800'.
[  138.166337][T11863] bridge4: port 1(veth0_to_bond) entered blocking state
[  138.168757][T11863] bridge4: port 1(veth0_to_bond) entered disabled state
[  138.171861][T11863] veth0_to_bond: entered allmulticast mode
[  138.174450][T11863] veth0_to_bond: entered promiscuous mode
[  138.185755][T11863] vlan2: entered allmulticast mode
[  138.187420][T11863] veth1: entered allmulticast mode
[  138.189866][T11863] bridge4: port 2(vlan2) entered blocking state
[  138.191906][T11863] bridge4: port 2(vlan2) entered disabled state
[  138.196454][T11863] vlan2: entered promiscuous mode
[  138.198064][T11863] veth1: entered promiscuous mode
[  138.207527][T11865] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1801'.
[  138.352534][T11872] netlink: 'syz.4.1804': attribute type 32 has an invalid length.
[  138.355076][T11872] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1804'.
[  138.358302][T11872] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  138.545526][T11858] FAULT_INJECTION: forcing a failure.
[  138.545526][T11858] name failslab, interval 1, probability 0, space 0, times 0
[  138.550716][T11858] CPU: 2 UID: 0 PID: 11858 Comm: syz.5.1798 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  138.550742][T11858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.550753][T11858] Call Trace:
[  138.550761][T11858]  <TASK>
[  138.550769][T11858]  dump_stack_lvl+0x16c/0x1f0
[  138.550815][T11858]  should_fail_ex+0x512/0x640
[  138.550842][T11858]  ? fs_reclaim_acquire+0xae/0x150
[  138.550860][T11858]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  138.550885][T11858]  should_failslab+0xc2/0x120
[  138.550909][T11858]  __kmalloc_noprof+0xd2/0x510
[  138.550939][T11858]  tomoyo_realpath_from_path+0xc2/0x6e0
[  138.550963][T11858]  ? tomoyo_profile+0x47/0x60
[  138.550990][T11858]  tomoyo_path_number_perm+0x245/0x580
[  138.551010][T11858]  ? tomoyo_path_number_perm+0x237/0x580
[  138.551030][T11858]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  138.551048][T11858]  ? find_held_lock+0x2b/0x80
[  138.551086][T11858]  ? find_held_lock+0x2b/0x80
[  138.551105][T11858]  ? hook_file_ioctl_common+0x145/0x410
[  138.551138][T11858]  ? __fget_files+0x20e/0x3c0
[  138.551163][T11858]  security_file_ioctl+0x9b/0x240
[  138.551189][T11858]  __x64_sys_ioctl+0xb7/0x210
[  138.551210][T11858]  do_syscall_64+0xcd/0x4c0
[  138.551234][T11858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.551251][T11858] RIP: 0033:0x7fae5a38e929
[  138.551263][T11858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.551278][T11858] RSP: 002b:00007fae5b1a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.551293][T11858] RAX: ffffffffffffffda RBX: 00007fae5a5b5fa0 RCX: 00007fae5a38e929
[  138.551303][T11858] RDX: 0000200000000140 RSI: 00000000c0189436 RDI: 0000000000000003
[  138.551313][T11858] RBP: 00007fae5b1a2090 R08: 0000000000000000 R09: 0000000000000000
[  138.551322][T11858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.551331][T11858] R13: 0000000000000000 R14: 00007fae5a5b5fa0 R15: 00007ffdc24a9c88
[  138.551348][T11858]  </TASK>
[  138.551353][T11858] ERROR: Out of memory at tomoyo_realpath_from_path.
[  138.674756][T11882] No control pipe specified
[  138.749217][T11887] bridge2: entered promiscuous mode
[  138.750962][T11887] bridge2: entered allmulticast mode
[  138.818767][T11890] loop4: detected capacity change from 0 to 7
[  138.829449][ T6034] Dev loop4: unable to read RDB block 7
[  138.832071][ T6034]  loop4: unable to read partition table
[  138.837049][ T6034] loop4: partition table beyond EOD, truncated
[  138.851274][T11890] Dev loop4: unable to read RDB block 7
[  138.853068][T11890]  loop4: unable to read partition table
[  138.858873][T11890] loop4: partition table beyond EOD, truncated
[  138.860857][T11890] loop_reread_partitions: partition scan of loop4 (þ被xü—ŸÑà– ) failed (rc=-5)
[  139.105592][ T5982] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  139.234890][ T5995] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  139.245082][ T5934] Bluetooth: hci4: command tx timeout
[  139.255635][ T5982] usb 5-1: too many configurations: 55, using maximum allowed: 8
[  139.286519][ T5982] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  139.290190][ T5982] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.293311][ T5982] usb 5-1: Product: syz
[  139.295888][ T5982] usb 5-1: Manufacturer: syz
[  139.297893][ T5982] usb 5-1: SerialNumber: syz
[  139.308234][ T5982] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  139.312581][T11903] binder: 11902:11903 ioctl c018937d 200000000100 returned -22
[  139.320565][T11903] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1816'.
[  139.331146][  T835] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  139.384912][ T5995] usb 10-1: Using ep0 maxpacket: 8
[  139.387970][ T5995] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  139.390580][ T5995] usb 10-1: config 0 has no interface number 0
[  139.392503][ T5995] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  139.396328][ T5995] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  139.399896][ T5995] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  139.403656][ T5995] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  139.409413][ T5995] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  139.412551][ T5995] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.424228][ T5995] usb 10-1: config 0 descriptor??
[  139.427227][T11903] hsr_slave_1 (unregistering): left promiscuous mode
[  139.437976][ T5995] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  139.541521][T11893] futex_wake_op: syz.0.1812 tries to shift op by -1; fix this program
[  139.582143][T11915] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1820'.
[  139.585135][T11915] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1820'.
[  139.602180][T11917] bridge3: entered promiscuous mode
[  139.629703][T11899] ipt_ECN: cannot use operation on non-tcp rule
[  139.642250][ T6025] usb 5-1: USB disconnect, device number 3
[  139.649833][ T5995] usb 10-1: USB disconnect, device number 4
[  139.666689][ T5995] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[  139.763119][T11929] binder: 11927:11929 ioctl 40046205 0 returned -22
[  139.766093][T11929] binder: 11927:11929 ioctl c0306201 200000000800 returned -11
[  139.928269][T11922] tipc: Enabled bearer <eth:team0>, priority 0
[  140.126311][T11930] dvmrp1: entered allmulticast mode
[  140.142004][T11962] can0: slcan on ptm0.
[  140.177467][T11966] loop2: detected capacity change from 0 to 7
[  140.180433][ T6034] Dev loop2: unable to read RDB block 7
[  140.182208][ T6034]  loop2: AHDI p1 p2 p3
[  140.183595][ T6034] loop2: partition table partially beyond EOD, truncated
[  140.186090][ T6034] loop2: p1 start 1601398130 is beyond EOD, truncated
[  140.188289][ T6034] loop2: p2 start 1702059890 is beyond EOD, truncated
[  140.192464][T11966] Dev loop2: unable to read RDB block 7
[  140.194239][T11966]  loop2: AHDI p1 p2 p3
[  140.195634][T11966] loop2: partition table partially beyond EOD, truncated
[  140.198091][T11966] loop2: p1 start 1601398130 is beyond EOD, truncated
[  140.200254][T11966] loop2: p2 start 1702059890 is beyond EOD, truncated
[  140.241941][   T40] audit: type=1326 audit(2000000020.385:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11967 comm="syz.4.1838" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f417af8e929 code=0x0
[  140.249221][T11961] can0 (unregistered): slcan off ptm0.
[  140.367372][  T835] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  140.369769][  T835] ath9k_htc: Failed to initialize the device
[  140.372746][ T6025] usb 5-1: ath9k_htc: USB layer deinitialized
[  140.378358][   T40] audit: type=1400 audit(2000000020.525:835): avc:  denied  { lock } for  pid=11981 comm="syz.0.1844" path="/dev/v4l-subdev6" dev="devtmpfs" ino=971 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  140.415568][T11986] loop2: detected capacity change from 0 to 7
[  140.419033][T11986] Dev loop2: unable to read RDB block 7
[  140.421301][T11986]  loop2: AHDI p1 p2 p3
[  140.422975][T11986] loop2: partition table partially beyond EOD, truncated
[  140.429710][T11986] loop2: p1 start 1601398130 is beyond EOD, truncated
[  140.432603][T11986] loop2: p2 start 1702059890 is beyond EOD, truncated
[  140.573776][T12003] binder: 12002:12003 ioctl c0306201 2000000003c0 returned -22
[  140.596409][T12003] binder: 12002:12003 ioctl 8138ae83 7f9daaecfaa0 returned -22
[  140.774178][T12006] workqueue: Failed to create a rescuer kthread for wq "nfc4_nci_rx_wq": -EINTR
[  140.776720][   T59] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  140.893866][T12027] 9pnet_fd: p9_fd_create_tcp (12027): problem connecting socket to 127.0.0.1
[  140.907694][T12027] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1858'.
[  140.925184][   T59] usb 8-1: Using ep0 maxpacket: 32
[  140.933125][T12001] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.1851'.
[  140.934660][T12025] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  140.942740][   T59] usb 8-1: unable to get BOS descriptor or descriptor too short
[  140.946216][   T59] usb 8-1: unable to read config index 0 descriptor/start: -71
[  140.948671][   T59] usb 8-1: can't read configurations, error -71
[  140.956717][T12032] loop2: detected capacity change from 0 to 7
[  140.959664][ T6034] Dev loop2: unable to read RDB block 7
[  140.961544][ T6034]  loop2: AHDI p1 p2 p3
[  140.962845][ T6034] loop2: partition table partially beyond EOD, truncated
[  140.966156][ T6034] loop2: p1 start 1601398130 is beyond EOD, truncated
[  140.968477][ T6034] loop2: p2 start 1702059890 is beyond EOD, truncated
[  140.975133][T12032] Dev loop2: unable to read RDB block 7
[  140.977008][T12032]  loop2: AHDI p1 p2 p3
[  140.978418][T12032] loop2: partition table partially beyond EOD, truncated
[  140.981220][T12032] loop2: p1 start 1601398130 is beyond EOD, truncated
[  140.983392][T12032] loop2: p2 start 1702059890 is beyond EOD, truncated
[  140.999037][T12036] No control pipe specified
[  141.037133][T12040] SELinux:  policydb magic number 0x3 does not match expected magic number 0xf97cff8c
[  141.040156][T12040] SELinux: failed to load policy
[  141.065379][T12041] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  141.065379][T12041] The task syz.5.1861 (12041) triggered the difference, watch for misbehavior.
[  141.134299][T12050] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1865'.
[  141.138711][T12050] netlink: 'syz.0.1865': attribute type 3 has an invalid length.
[  141.141090][T12050] netlink: 'syz.0.1865': attribute type 1 has an invalid length.
[  141.143418][T12050] NCSI netlink: No device for ifindex 0
[  141.325251][ T5934] Bluetooth: hci4: command tx timeout
[  141.377874][T12059] loop2: detected capacity change from 0 to 7
[  141.380558][ T6034] Dev loop2: unable to read RDB block 7
[  141.382384][ T6034]  loop2: AHDI p1 p2 p3
[  141.383734][ T6034] loop2: partition table partially beyond EOD, truncated
[  141.388905][ T6034] loop2: p1 start 1601398130 is beyond EOD, truncated
[  141.390948][ T6034] loop2: p2 start 1702059890 is beyond EOD, truncated
[  141.393966][T12059] Dev loop2: unable to read RDB block 7
[  141.396974][T12059]  loop2: AHDI p1 p2 p3
[  141.398353][T12059] loop2: partition table partially beyond EOD, truncated
[  141.400787][T12059] loop2: p1 start 1601398130 is beyond EOD, truncated
[  141.402861][T12059] loop2: p2 start 1702059890 is beyond EOD, truncated
[  141.532469][T12076] : entered promiscuous mode
[  141.661770][   T40] audit: type=1400 audit(2000000021.805:836): avc:  denied  { bind } for  pid=12081 comm="syz.3.1878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  142.097374][T12115] netlink: 'syz.4.1890': attribute type 2 has an invalid length.
[  142.100044][   T40] audit: type=1400 audit(2000000022.245:837): avc:  denied  { bind } for  pid=12113 comm="syz.4.1890" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  142.387016][T12140] loop2: detected capacity change from 0 to 7
[  142.390484][T12140] Dev loop2: unable to read RDB block 7
[  142.392941][T12140]  loop2: AHDI p1 p2 p3
[  142.394699][T12140] loop2: partition table partially beyond EOD, truncated
[  142.400151][T12140] loop2: p1 start 1601398130 is beyond EOD, truncated
[  142.402850][T12140] loop2: p2 start 1702059890 is beyond EOD, truncated
[  142.490259][T12150] netlink: 'syz.5.1903': attribute type 2 has an invalid length.
[  142.494196][   T40] audit: type=1400 audit(2000000022.635:838): avc:  denied  { mounton } for  pid=12146 comm="syz.3.1902" path="/415/file0/bus" dev="bpf" ino=40707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1
[  142.498744][T12147] overlayfs: upper fs does not support tmpfile.
[  142.661743][T12164] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  142.793011][T12127] syz.4.1894 (12127): drop_caches: 1
[  142.796038][T12171] loop2: detected capacity change from 0 to 7
[  142.814229][ T5944] Dev loop2: unable to read RDB block 7
[  142.816072][ T5944]  loop2: AHDI p1 p2 p3
[  142.817367][ T5944] loop2: partition table partially beyond EOD, truncated
[  142.819530][ T5944] loop2: p1 start 1601398130 is beyond EOD, truncated
[  142.821652][ T5944] loop2: p2 start 1702059890 is beyond EOD, truncated
[  142.837138][T12171] Dev loop2: unable to read RDB block 7
[  142.837792][T12175] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  142.839230][T12171]  loop2: AHDI p1 p2 p3
[  142.843048][T12171] loop2: partition table partially beyond EOD, truncated
[  142.885194][T12171] loop2: p1 start 1601398130 is beyond EOD, truncated
[  142.887234][T12171] loop2: p2 start 1702059890 is beyond EOD, truncated
[  142.928796][T12127] syz.4.1894 (12127): drop_caches: 1
[  142.978549][T12183] 9pnet_fd: Insufficient options for proto=fd
[  143.018681][T12187] netlink: 'syz.0.1917': attribute type 1 has an invalid length.
[  143.033876][T12187] 8021q: adding VLAN 0 to HW filter on device bond1
[  143.038677][T12188] syz_tun: entered allmulticast mode
[  143.094948][T12189] vlan2: entered allmulticast mode
[  143.097053][T12189] veth1: entered allmulticast mode
[  143.101892][T12189] bond1: (slave vlan2): making interface the new active one
[  143.106690][T12189] bond1: (slave vlan2): Enslaving as an active interface with an up link
[  143.124969][T12188] dvmrp1: entered allmulticast mode
[  143.129360][T12186] ==================================================================
[  143.131747][T12186] BUG: KASAN: slab-use-after-free in __list_del_entry_valid_or_report+0x1d4/0x200
[  143.134652][T12186] Read of size 8 at addr ffff888055cef558 by task syz.3.1918/12186
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  143.137659][T12186] 
[  143.139156][T12186] CPU: 3 UID: 0 PID: 12186 Comm: syz.3.1918 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  143.139170][T12186] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.139177][T12186] Call Trace:
[  143.139182][T12186]  <TASK>
[  143.139186][T12186]  dump_stack_lvl+0x116/0x1f0
[  143.139210][T12186]  print_report+0xcd/0x680
[  143.139225][T12186]  ? __virt_addr_valid+0x81/0x610
[  143.139237][T12186]  ? __phys_addr+0xe8/0x180
[  143.139248][T12186]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  143.139264][T12186]  kasan_report+0xe0/0x110
[  143.139279][T12186]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  143.139296][T12186]  __list_del_entry_valid_or_report+0x1d4/0x200
[  143.139312][T12186]  bt_accept_unlink+0x34/0x2e0
[  143.139329][T12186]  l2cap_sock_teardown_cb+0x1a3/0x3c0
[  143.139345][T12186]  l2cap_chan_del+0xba/0x8f0
[  143.139360][T12186]  l2cap_conn_del+0x37a/0x730
[  143.139372][T12186]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  143.139389][T12186]  ? __pfx_l2cap_disconn_cfm+0x10/0x10
[  143.139401][T12186]  l2cap_disconn_cfm+0x96/0xd0
[  143.139413][T12186]  hci_conn_hash_flush+0x10b/0x260
[  143.139424][T12186]  hci_dev_close_sync+0x602/0x11d0
[  143.139436][T12186]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  143.139445][T12186]  ? find_held_lock+0x2b/0x80
[  143.139459][T12186]  hci_dev_do_close+0x2e/0x90
[  143.139469][T12186]  hci_sock_release+0x479/0x520
[  143.139772][T12186]  __sock_release+0xb0/0x270
[  143.139788][T12186]  ? __pfx_sock_close+0x10/0x10
[  143.139802][T12186]  sock_close+0x1c/0x30
[  143.139816][T12186]  __fput+0x402/0xb70
[  143.139833][T12186]  task_work_run+0x150/0x240
[  143.139843][T12186]  ? __pfx_task_work_run+0x10/0x10
[  143.139853][T12186]  ? __pfx___do_sys_close_range+0x10/0x10
[  143.139869][T12186]  exit_to_user_mode_loop+0xeb/0x110
[  143.139881][T12186]  do_syscall_64+0x3f6/0x4c0
[  143.139897][T12186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.139908][T12186] RIP: 0033:0x7fea41f8e929
[  143.139916][T12186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.139927][T12186] RSP: 002b:00007ffdcf55ddb8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  143.139937][T12186] RAX: 0000000000000000 RBX: 0000000000022e20 RCX: 00007fea41f8e929
[  143.139944][T12186] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  143.139950][T12186] RBP: 00007fea421b7ba0 R08: 0000000000000001 R09: 00000014cf55e0af
[  143.139956][T12186] R10: 00007fea41e00000 R11: 0000000000000246 R12: 00007fea421b608c
[  143.139962][T12186] R13: 00007fea421b6080 R14: ffffffffffffffff R15: 00007ffdcf55ded0
[  143.139972][T12186]  </TASK>
[  143.139976][T12186] 
[  143.233085][T12186] Allocated by task 11972:
[  143.234456][T12186]  kasan_save_stack+0x33/0x60
[  143.235874][T12186]  kasan_save_track+0x14/0x30
[  143.237379][T12186]  __kasan_kmalloc+0xaa/0xb0
[  143.238879][T12186]  __kmalloc_node_track_caller_noprof+0x221/0x510
[  143.240836][T12186]  kmalloc_reserve+0xef/0x2c0
[  143.242233][T12186]  pskb_expand_head+0x238/0x1030
[  143.243725][T12186]  netlink_trim+0x22d/0x310
[  143.245107][T12186]  netlink_broadcast_filtered+0xca/0xf10
[  143.246832][T12186]  nlmsg_notify+0x9e/0x220
[  143.248206][T12186]  rtmsg_ifinfo+0x174/0x1a0
[  143.249611][T12186]  netif_state_change+0x17f/0x3b0
[  143.251147][T12186]  do_setlink.constprop.0+0x387d/0x4380
[  143.252827][T12186]  rtnl_newlink+0x18e0/0x2000
[  143.254242][T12186]  rtnetlink_rcv_msg+0x95b/0xe90
[  143.255738][T12186]  netlink_rcv_skb+0x155/0x420
[  143.257175][T12186]  netlink_unicast+0x53d/0x7f0
[  143.258656][T12186]  netlink_sendmsg+0x8d1/0xdd0
[  143.260147][T12186]  ____sys_sendmsg+0xa95/0xc70
[  143.261589][T12186]  ___sys_sendmsg+0x134/0x1d0
[  143.263013][T12186]  __sys_sendmsg+0x16d/0x220
[  143.264470][T12186]  do_syscall_64+0xcd/0x4c0
[  143.266057][T12186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.267951][T12186] 
[  143.268695][T12186] Freed by task 11972:
[  143.269986][T12186]  kasan_save_stack+0x33/0x60
[  143.271394][T12186]  kasan_save_track+0x14/0x30
[  143.272812][T12186]  kasan_save_free_info+0x3b/0x60
[  143.274332][T12186]  __kasan_slab_free+0x51/0x70
[  143.275731][T12186]  kfree+0x2b4/0x4d0
[  143.276973][T12186]  skb_free_head+0x114/0x210
[  143.278611][T12186]  skb_release_data+0x776/0x9c0
[  143.280420][T12186]  consume_skb+0xbf/0x100
[  143.281762][T12186]  netlink_broadcast_filtered+0x3d5/0xf10
[  143.283647][T12186]  nlmsg_notify+0x9e/0x220
[  143.285206][T12186]  rtmsg_ifinfo+0x174/0x1a0
[  143.286995][T12186]  netif_state_change+0x17f/0x3b0
[  143.288542][T12186]  do_setlink.constprop.0+0x387d/0x4380
[  143.290341][T12186]  rtnl_newlink+0x18e0/0x2000
[  143.291875][T12186]  rtnetlink_rcv_msg+0x95b/0xe90
[  143.293376][T12186]  netlink_rcv_skb+0x155/0x420
[  143.294827][T12186]  netlink_unicast+0x53d/0x7f0
[  143.296289][T12186]  netlink_sendmsg+0x8d1/0xdd0
[  143.297730][T12186]  ____sys_sendmsg+0xa95/0xc70
[  143.299208][T12186]  ___sys_sendmsg+0x134/0x1d0
[  143.300654][T12186]  __sys_sendmsg+0x16d/0x220
[  143.302042][T12186]  do_syscall_64+0xcd/0x4c0
[  143.303411][T12186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.305142][T12186] 
[  143.305908][T12186] The buggy address belongs to the object at ffff888055cef000
[  143.305908][T12186]  which belongs to the cache kmalloc-2k of size 2048
[  143.310113][T12186] The buggy address is located 1368 bytes inside of
[  143.310113][T12186]  freed 2048-byte region [ffff888055cef000, ffff888055cef800)
[  143.314182][T12186] 
[  143.314913][T12186] The buggy address belongs to the physical page:
[  143.316794][T12186] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55ce8
[  143.319402][T12186] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  143.321896][T12186] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  143.324105][T12186] page_type: f5(slab)
[  143.325311][T12186] raw: 00fff00000000040 ffff88801b842f00 dead000000000100 dead000000000122
[  143.327875][T12186] raw: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  143.330558][T12186] head: 00fff00000000040 ffff88801b842f00 dead000000000100 dead000000000122
[  143.333300][T12186] head: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  143.335838][T12186] head: 00fff00000000003 ffffea0001573a01 00000000ffffffff 00000000ffffffff
[  143.338426][T12186] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  143.341083][T12186] page dumped because: kasan: bad access detected
[  143.343062][T12186] page_owner tracks the page as allocated
[  143.344831][T12186] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5936, tgid 5936 (syz-executor), ts 53953948326, free_ts 0
[  143.350922][T12186]  post_alloc_hook+0x1c0/0x230
[  143.352588][T12186]  get_page_from_freelist+0x1321/0x3890
[  143.354279][T12186]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  143.356074][T12186]  alloc_pages_mpol+0x1fb/0x550
[  143.357615][T12186]  new_slab+0x23b/0x330
[  143.359206][T12186]  ___slab_alloc+0xd9c/0x1940
[  143.360635][T12186]  __slab_alloc.constprop.0+0x56/0xb0
[  143.362240][T12186]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  143.364139][T12186]  kmalloc_reserve+0xef/0x2c0
[  143.365554][T12186]  pskb_expand_head+0x238/0x1030
[  143.367051][T12186]  netlink_trim+0x22d/0x310
[  143.368435][T12186]  netlink_broadcast_filtered+0xca/0xf10
[  143.370137][T12186]  nlmsg_notify+0x9e/0x220
[  143.371476][T12186]  rtmsg_ifinfo+0x174/0x1a0
[  143.372855][T12186]  __dev_notify_flags+0x24c/0x2e0
[  143.374374][T12186]  netif_change_flags+0x108/0x160
[  143.375881][T12186] page_owner free stack trace missing
[  143.377480][T12186] 
[  143.378324][T12186] Memory state around the buggy address:
[  143.380081][T12186]  ffff888055cef400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  143.382478][T12186]  ffff888055cef480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  143.384863][T12186] >ffff888055cef500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  143.387300][T12186]                                                     ^
[  143.389675][T12186]  ffff888055cef580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  143.392446][T12186]  ffff888055cef600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  143.394973][T12186] ==================================================================
[  143.397458][    C3] vkms_vblank_simulate: vblank timer overrun
[  143.406433][T12186] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  143.408627][T12186] CPU: 2 UID: 0 PID: 12186 Comm: syz.3.1918 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  143.412434][T12186] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.415641][T12186] Call Trace:
[  143.416660][T12186]  <TASK>
[  143.417590][T12186]  dump_stack_lvl+0x3d/0x1f0
[  143.418989][T12186]  panic+0x71c/0x800
[  143.420159][T12186]  ? __pfx_panic+0x10/0x10
[  143.421500][T12186]  ? irqentry_exit+0x3b/0x90
[  143.422877][T12186]  ? lockdep_hardirqs_on+0x7c/0x110
[  143.424427][T12186]  ? preempt_schedule_thunk+0x16/0x30
[  143.426055][T12186]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  143.427986][T12186]  ? preempt_schedule_common+0x44/0xc0
[  143.429634][T12186]  ? check_panic_on_warn+0x1f/0xb0
[  143.431186][T12186]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  143.433063][T12186]  check_panic_on_warn+0xab/0xb0
[  143.434555][T12186]  end_report+0x107/0x170
[  143.435837][T12186]  kasan_report+0xee/0x110
[  143.437189][T12186]  ? __list_del_entry_valid_or_report+0x1d4/0x200
[  143.439082][T12186]  __list_del_entry_valid_or_report+0x1d4/0x200
[  143.440894][T12186]  bt_accept_unlink+0x34/0x2e0
[  143.442307][T12186]  l2cap_sock_teardown_cb+0x1a3/0x3c0
[  143.444003][T12186]  l2cap_chan_del+0xba/0x8f0
[  143.445379][T12186]  l2cap_conn_del+0x37a/0x730
[  143.446788][T12186]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  143.448516][T12186]  ? __pfx_l2cap_disconn_cfm+0x10/0x10
[  143.450149][T12186]  l2cap_disconn_cfm+0x96/0xd0
[  143.451620][T12186]  hci_conn_hash_flush+0x10b/0x260
[  143.453165][T12186]  hci_dev_close_sync+0x602/0x11d0
[  143.454743][T12186]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  143.456425][T12186]  ? find_held_lock+0x2b/0x80
[  143.457854][T12186]  hci_dev_do_close+0x2e/0x90
[  143.459290][T12186]  hci_sock_release+0x479/0x520
[  143.460753][T12186]  __sock_release+0xb0/0x270
[  143.462160][T12186]  ? __pfx_sock_close+0x10/0x10
[  143.463641][T12186]  sock_close+0x1c/0x30
[  143.464931][T12186]  __fput+0x402/0xb70
[  143.466164][T12186]  task_work_run+0x150/0x240
[  143.467577][T12186]  ? __pfx_task_work_run+0x10/0x10
[  143.469164][T12186]  ? __pfx___do_sys_close_range+0x10/0x10
[  143.470901][T12186]  exit_to_user_mode_loop+0xeb/0x110
[  143.472498][T12186]  do_syscall_64+0x3f6/0x4c0
[  143.473895][T12186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.475695][T12186] RIP: 0033:0x7fea41f8e929
[  143.477041][T12186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.482660][T12186] RSP: 002b:00007ffdcf55ddb8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  143.485105][T12186] RAX: 0000000000000000 RBX: 0000000000022e20 RCX: 00007fea41f8e929
[  143.487417][T12186] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  143.489675][T12186] RBP: 00007fea421b7ba0 R08: 0000000000000001 R09: 00000014cf55e0af
[  143.492009][T12186] R10: 00007fea41e00000 R11: 0000000000000246 R12: 00007fea421b608c
[  143.494312][T12186] R13: 00007fea421b6080 R14: ffffffffffffffff R15: 00007ffdcf55ded0
[  143.496564][T12186]  </TASK>
[  143.498138][T12186] Kernel Offset: disabled
[  143.499386][T12186] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:37:08  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=1ffff920006eefac RCX=0000000000000001 RDX=0000000000000000
RSI=00000000ffffffff RDI=ffffffff8e5c48e0 RBP=0000000000000000 RSP=ffffc90003777d10
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88802cccc880 R13=00000000ffffffff R14=ffff88802cccc880 R15=ffffc90003777e60
RIP=ffffffff8b80d085 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f7f5ec8fc80 ffffffff 00c00000
GS =0000 ffff8880d6752000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fea42e24f98 CR3=000000003470a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000097 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000005000001 Opmask01=0000000000000001 Opmask02=0000000000001000 Opmask03=0000000000000000
Opmask04=00000000ffffefff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffbb07ccab 00007fffbb07ccab
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffbb07d1b0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffbb07d1b0 0000003000000018
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e6f63007325 203a726f72726520 64656e7275746572 2072657672657300
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40514b4a46005600 051f574a57574005 41404b5750514057 0557405357405600
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d3d3d3d3d3d3d3d 3d3d3d3d3d3d3d3d 3d3d3d3d3d3d3d3d 3d3d3d3d3d3d3d3d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313d657669737369 6d72657020726964 3d7373616c637420 745f6670623a725f
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7463656a626f3a75 5f6d65747379733d 747865746e6f6374 20745f6d64617379
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 733a725f6d646173 79733a746f6f723d 747865746e6f6373 2037303730343d6f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e69202266706222 3d76656420227375 622f30656c69662f 3531342f223d6874
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 203137393d6f6e69 20227366706d7476 6564223d76656420 2236766564627573
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffc90006ac0000 RBX=ffff888029d18000 RCX=ffffffff819c9c37 RDX=1ffff110053a325a
RSI=ffffffff86a898df RDI=0000000000000016 RBP=0000000000000083 RSP=ffffc900006a0eb8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffffff90a80a60 R13=dffffc0000000000 R14=ffff888029d192d0 R15=0000000000000000
RIP=ffffffff86a89907 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f1614942300 ffffffff 00c00000
GS =0000 ffff8880d6852000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f8cc48e7d60 CR3=00000000343f4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000010000000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=06b1d11deb1103aa 823c1407569e554b 06b1d11deb1103aa 823c1407569e554b 06b1d11deb1103aa 823c1407569e554b 06b1d11deb1103aa 823c1407569e554b
ZMM18=d2b85fb12ab95d71 e380ca9aa155f922 d2b85fb12ab95d71 e380ca9aa155f922 d2b85fb12ab95d71 e380ca9aa155f922 d2b85fb12ab95d71 e380ca9aa155f922
ZMM19=ba0b000000000000 0000000000000005 ba0b000000000000 0000000000000004 ba0b000000000000 0000000000000003 ba0b000000000000 0000000000000002
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20808084080001c0 9803088080080001 c090030284a59608 0001c08803041000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 048080808c100004 8004060074dc0023 6f656469762f7665 642f01ffffffffff
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffe708048003 041000048080808c 1000048004060174 dc0002000700236f
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 03000000ffffffa6 0300000000000009 ffffffd803000000 ffffff9203000000
ZMM25=a6694c82a6694c82 a6694c82a6694c82 a6694c82a6694c82 a6694c82a6694c82 a6694c82a6694c82 a6694c82a6694c82 a6694c82a6694c82 a6694c82a6694c82
ZMM26=4c1b9cce4c1b9cce 4c1b9cce4c1b9cce 4c1b9cce4c1b9cce 4c1b9cce4c1b9cce 4c1b9cce4c1b9cce 4c1b9cce4c1b9cce 4c1b9cce4c1b9cce 4c1b9cce4c1b9cce
ZMM27=12a01b5e12a01b5e 12a01b5e12a01b5e 12a01b5e12a01b5e 12a01b5e12a01b5e 12a01b5e12a01b5e 12a01b5e12a01b5e 12a01b5e12a01b5e 12a01b5e12a01b5e
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=1909000019090000 1909000019090000 1909000019090000 1909000019090000 1909000019090000 1909000019090000 1909000019090000 1909000019090000
info registers vcpu 2

CPU#2
RAX=0000000080000000 RBX=0000000000000002 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8df0c08f RDI=ffffffff8c157ca0 RBP=0000000000000002 RSP=ffffc90006777418
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=000000000008ed6d
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b80e41d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00005555756ad500 ffffffff 00c00000
GS =0000 ffff8880d6952000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f417b1b7bac CR3=0000000055ea3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000097 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001020000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe52d57490 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9daa011b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9daa011b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9daa011b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9daa011b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9daa011bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9daa011c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000042800000005 00000270000001a0 ffffffff000000d0 0000000000000270
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000d000000000 00000270000001a0 ffffffff000000d0 000000000000001b
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffffc900049a70cb RCX=0000000000000005 RDX=ffff88802e70c880
RSI=00000000ffffffff RDI=0000000000000000 RBP=00000000ffffffff RSP=ffffc900049a6c60
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=00000000000978ce
R12=ffffc900049a70ce R13=ffffc900049a6cff R14=ffffc900849a70c7 R15=0000000000000002
RIP=ffffffff81bc1be0 RFL=00000096 [--S-AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055557e69a500 ffffffff 00c00000
GS =0000 ffff8880d6a52000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c392303 CR3=000000002a9c6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42011b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42011b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42011b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42011b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42011bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42011c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42184488 00007fea42184480 00007fea42184478 00007fea42184450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42ced100 00007fea42184440 00007fea42180004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fea42184498 00007fea42184490 00007fea42184488 00007fea42184480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000