last executing test programs:

1m33.42560415s ago: executing program 1 (id=107):
fsopen(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x50, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0x10, 0xc, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=@delchain={0x24, 0x65, 0xe0a, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x8, 0xffe0}, {0xc, 0xa}, {0x8, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd", @ANYRES32, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x8040)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m33.42472971s ago: executing program 1 (id=108):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x10, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@alu={0x7, 0x0, 0x5, 0x9, 0x0, 0x0, 0xfc7cce807af2adb8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x8}, 0x94)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
migrate_pages(0x0, 0x5, &(0x7f0000000000)=0x9, &(0x7f0000000080)=0x272)
bind$alg(r2, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000040)="4dc07f947163300c", 0x8)
r4 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x20, 0x0, 0x2, 0x70bd2d, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x6d0f, 0x17}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x80080}, 0x4000)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000140)=[0x0], ""/16, <r6=>0x0, 0x0, 0x0, 0x0, 0x1, 0x2, &(0x7f0000000180)=[0x0], &(0x7f00000001c0)=[0x0, 0x0], 0x0, 0x91, 0x0, 0x0, 0x10, &(0x7f0000000240), &(0x7f0000000280), 0x8, 0x1c, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r7, 0x5761, &(0x7f0000000040)={0x1, 0x0, [{}]})
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f0000000700)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4c, 0x4c, 0x6, [@type_tag={0xa, 0x0, 0x0, 0x12, 0x5}, @struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x2, [{0x1, 0x1, 0x9}]}, @decl_tag={0x10, 0x0, 0x0, 0x11, 0x3, 0x8}, @typedef={0x6, 0x0, 0x0, 0x8, 0x2}, @const={0x8}]}, {0x0, [0x2d, 0x30, 0x30, 0x2e]}}, &(0x7f0000001840)=""/249, 0x6a, 0xf9, 0x1, 0x2, 0x10000, @value=r7}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000019c0)=@bpf_tracing={0x1a, 0x17, &(0x7f0000000380)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x35f, 0x0, 0x0, 0x0, 0x40}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x89}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000006c0)='syzkaller\x00', 0x5, 0x1000, &(0x7f0000000840)=""/4096, 0x40f00, 0x52, '\x00', r6, 0x18, r8, 0x8, &(0x7f0000001940)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000001980)={0x1, 0x0, 0xff, 0x6}, 0x10, 0x1962a, r1, 0x0, 0x0, 0x0, 0x10, 0x3978d8f8}, 0x94)
getsockopt$SO_J1939_SEND_PRIO(r5, 0x6b, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)

1m33.290664145s ago: executing program 1 (id=110):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = mq_open(&(0x7f00000005c0)='eth0\x00#\x13\xaeu\xe0\xfb\x050*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\x19\xf1\xcce\xab\x80M\xc9\xcf\xaeR\xb69k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3\xff\a\x00\x00\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\aY\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3Cs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\x96{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\x03\x00\x00\x00y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\x8e\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9\xb3\x83\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|c\xf3\x8b\xc2E\x00\x00\x00\x00\x00\x00', 0x42, 0x0, 0x0)
r2 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0xdff9, 0x800, 0x1000}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_CLOSE={0x13, 0x4e3b947d338dce40, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x1})
syz_emit_ethernet(0x66, &(0x7f00000003c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x14}, @void, {@ipv4={0x88fb, @gre={{0x5, 0x4, 0x2, 0x1, 0x58, 0x66, 0x0, 0x8, 0x2f, 0x0, @multicast2, @initdev={0xac, 0x1e, 0x81, 0x0}}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x1}, {0x8, 0x88be, 0x3, {{0x5, 0x1, 0x6, 0x2, 0x1, 0x1, 0x6, 0x4}, 0x1, {0x500c}}}, {0x8, 0x22eb, 0x4, {{0xe, 0x2, 0xf8, 0x3, 0x1, 0x2, 0x4, 0xf9}, 0x2, {0x1, 0x9, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1}}}, {0x8, 0x6558, 0x3}}}}}}, 0x0)
io_uring_enter(r2, 0x47ba, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$mouse(&(0x7f0000000040), 0xd, 0x82)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xd}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x12}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x78}, 0x1, 0x0, 0x0, 0x840}, 0x0)

1m33.21048582s ago: executing program 1 (id=112):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$9p_virtio(&(0x7f0000000680), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})
fchmodat(0xffffffffffffff9c, 0x0, 0xfffffe99)

1m33.158614124s ago: executing program 1 (id=113):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@ipv6_delrule={0x28, 0x21, 0x1, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_UID_RANGE={0xc, 0x14, {0x0, 0xffffffffffffffff}}]}, 0x28}}, 0x0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000540)={{{@in=@initdev, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@empty}, 0x0, @in6=@loopback}}, &(0x7f0000000240)=0xe8)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001fff001201000006000043be4354", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e00000004000280080004"], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)
r5 = fsopen(&(0x7f0000000040)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
mkdirat(r6, &(0x7f0000000000)='./file0\x00', 0x10)
r7 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r7, &(0x7f00000000c0), 0x492492492492627, 0x0)
setuid(r4)
r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000003d40), 0x2, 0x0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r8, &(0x7f0000000400)={0x12, 0x10, 0xfa00, {0x0, 0xffffffffffffffff, r8}}, 0x18)
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0)
r10 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r10, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r10, 0xc0845657, &(0x7f00000007c0)={0x0, @bt={0xa8d, 0x870, 0x1, 0x2, 0xd59f82, 0x19f5, 0x4, 0xb, 0x0, 0x3, 0x27fd, 0x2800, 0x440, 0x3, 0xd, 0x0, {0x45, 0x80}, 0xcd, 0x3}})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r9, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)

1m32.291627591s ago: executing program 1 (id=129):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x10, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@alu={0x7, 0x0, 0x5, 0x9, 0x0, 0x0, 0xfc7cce807af2adb8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x8}, 0x94)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
migrate_pages(0x0, 0x5, &(0x7f0000000000)=0x9, &(0x7f0000000080)=0x272)
bind$alg(r2, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000040)="4dc07f947163300c", 0x8)
r4 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x20, 0x0, 0x2, 0x70bd2d, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x6d0f, 0x17}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x80080}, 0x4000)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000140)=[0x0], ""/16, <r6=>0x0, 0x0, 0x0, 0x0, 0x1, 0x2, &(0x7f0000000180)=[0x0], &(0x7f00000001c0)=[0x0, 0x0], 0x0, 0x91, &(0x7f0000000200), 0x0, 0x10, &(0x7f0000000240), &(0x7f0000000280), 0x8, 0x1c, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r7, 0x5761, &(0x7f0000000040)={0x1, 0x0, [{}]})
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f0000000700)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4c, 0x4c, 0x6, [@type_tag={0xa, 0x0, 0x0, 0x12, 0x5}, @struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x2, [{0x1, 0x1, 0x9}]}, @decl_tag={0x10, 0x0, 0x0, 0x11, 0x3, 0x8}, @typedef={0x6, 0x0, 0x0, 0x8, 0x2}, @const={0x8}]}, {0x0, [0x2d, 0x30, 0x30, 0x2e]}}, &(0x7f0000001840)=""/249, 0x6a, 0xf9, 0x1, 0x2, 0x10000, @value=r7}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000019c0)=@bpf_tracing={0x1a, 0x17, &(0x7f0000000380)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x35f, 0x0, 0x0, 0x0, 0x40}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x89}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000006c0)='syzkaller\x00', 0x5, 0x1000, &(0x7f0000000840)=""/4096, 0x40f00, 0x52, '\x00', r6, 0x18, r8, 0x8, &(0x7f0000001940)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000001980)={0x1, 0x0, 0xff, 0x6}, 0x10, 0x1962a, r1, 0x0, 0x0, 0x0, 0x10, 0x3978d8f8}, 0x94)
getsockopt$SO_J1939_SEND_PRIO(r5, 0x6b, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)

1m16.782145497s ago: executing program 32 (id=129):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x10, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@alu={0x7, 0x0, 0x5, 0x9, 0x0, 0x0, 0xfc7cce807af2adb8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x8}, 0x94)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
migrate_pages(0x0, 0x5, &(0x7f0000000000)=0x9, &(0x7f0000000080)=0x272)
bind$alg(r2, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000040)="4dc07f947163300c", 0x8)
r4 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x20, 0x0, 0x2, 0x70bd2d, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x6d0f, 0x17}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x80080}, 0x4000)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000140)=[0x0], ""/16, <r6=>0x0, 0x0, 0x0, 0x0, 0x1, 0x2, &(0x7f0000000180)=[0x0], &(0x7f00000001c0)=[0x0, 0x0], 0x0, 0x91, &(0x7f0000000200), 0x0, 0x10, &(0x7f0000000240), &(0x7f0000000280), 0x8, 0x1c, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r7, 0x5761, &(0x7f0000000040)={0x1, 0x0, [{}]})
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f0000000700)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4c, 0x4c, 0x6, [@type_tag={0xa, 0x0, 0x0, 0x12, 0x5}, @struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x2, [{0x1, 0x1, 0x9}]}, @decl_tag={0x10, 0x0, 0x0, 0x11, 0x3, 0x8}, @typedef={0x6, 0x0, 0x0, 0x8, 0x2}, @const={0x8}]}, {0x0, [0x2d, 0x30, 0x30, 0x2e]}}, &(0x7f0000001840)=""/249, 0x6a, 0xf9, 0x1, 0x2, 0x10000, @value=r7}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000019c0)=@bpf_tracing={0x1a, 0x17, &(0x7f0000000380)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x35f, 0x0, 0x0, 0x0, 0x40}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x89}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000006c0)='syzkaller\x00', 0x5, 0x1000, &(0x7f0000000840)=""/4096, 0x40f00, 0x52, '\x00', r6, 0x18, r8, 0x8, &(0x7f0000001940)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000001980)={0x1, 0x0, 0xff, 0x6}, 0x10, 0x1962a, r1, 0x0, 0x0, 0x0, 0x10, 0x3978d8f8}, 0x94)
getsockopt$SO_J1939_SEND_PRIO(r5, 0x6b, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)

1.862102204s ago: executing program 2 (id=661):
r0 = socket$inet_udp(0x2, 0x2, 0x0) (async)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x149000, 0x0)
ioctl$PTP_EXTTS_REQUEST2(r1, 0xc4c03d12, &(0x7f0000000380)={0x4, 0x1})
ioctl$PTP_EXTTS_REQUEST2(r1, 0x40103d0b, &(0x7f0000000100)={0x2, 0xe})
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) (async)
syz_emit_ethernet(0x34, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x26, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x12, 0x0, @opaque='\x00'/10}}}}}, 0x0)
recvfrom(r0, &(0x7f00000000c0)=""/10, 0xa, 0x0, 0x0, 0x0) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x3e, &(0x7f0000000000)=0x101, 0x4)

978.937328ms ago: executing program 2 (id=686):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0xb, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x3fffff, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r2, 0x3a, 0x1, 0x0, 0x20)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'veth0_vlan\x00'})
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000780)={0x0, @in6={{0xa, 0x4e22, 0x5, @empty, 0x2}}, 0xbbae, 0x3, 0x80000001, 0x81, 0x129, 0xd32f, 0x8}, 0x9c)
pread64(r0, &(0x7f0000000080)=""/237, 0xed, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/uevent_helper', 0x8aa01, 0x118)
write$FUSE_NOTIFY_POLL(r3, &(0x7f0000002540)={0x18, 0x1, 0x0, {0x5}}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f0000000200)=ANY=[@ANYBLOB="18080000feffff00000000000000000085100000060000008510000004000000c4080000000000001800e000000000000000000000000000950000000000000095000000000000030000000000000000765072063743318e366848116095c78e14bda5f586019995a50412e7d314"], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)

919.753353ms ago: executing program 2 (id=689):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) (async)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=@RTM_NEWMDB={0x38, 0x54, 0x1, 0x1, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x3, {@ip4=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000140)={0x5, 0x426, 0x7, 0x6, 0x81, 0x2, 0x8}, 0xc) (async, rerun: 64)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r3, 0xfffff000)

787.076483ms ago: executing program 0 (id=696):
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000580), 0x8000, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)={0x400, 0xa0, 0xa00, 0x600, 0x1800, 0x8, 0x0, 0x1, {0x3ff, 0x10001, 0x1}, {0x1c9, 0x7, 0x1}, {0xc7, 0x0, 0x300}, {0x3, 0x100, 0x1}, 0x0, 0x1dd, 0x6, 0x200, 0x0, 0x8, 0x0, 0x10000, 0xa1fb, 0x101, 0x80000003, 0x5, 0xfbaebe444cba4e0a, 0x2, 0x2, 0x3})

711.049819ms ago: executing program 2 (id=699):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

710.728747ms ago: executing program 0 (id=700):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f00000000c0)={0x8f, 0x0, 0x2})
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x3, 0xdddd1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0xdddd0000, 0x2000, &(0x7f0000000000/0x2000)=nil})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_ro(r4, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)
r6 = fsopen(&(0x7f0000000040)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000000)='source', &(0x7f0000000980)='#\n$)-.\x02\xcc\xd7\xb2f\xcdY\xb9\xc7\x9d\xb2a\r\xd7\xef\xc5\x112s\x88\n\x13:\xd6\xfa\xd5?\xc7\xfd&\x8d*\xbb|&#\xe9\xa3\'\x91>C\x1bV\x87\xeb\xfe\xda\x89\xb7}@\xab\x16\x9c{\x8c\x97\xcc\xe7\xa5\xf5\xeb2\x9a\xed%\xf2\x8f\x97\x18\xce\x92\xc9\xa8\x1c\x9d\\C\xfeI%\xae\x8fKHq\x89\x83\xbb\x9dC\xd6H\x80s\xd66y\xfao\x04\xa4\xb6\x88\xdb\xa1b\xae\xa7\x87\xcc\xc7\xa4\xdc\n=/o\xf3\x96\xaf\b1\x1b48\bu\x01\xab\x90Q\xe8r\xe7\r\'-06,\xff\x84x\'+\xd5\xd4?[e\x19\xa3\\J\xe9\x8a\xb9\xe495\x12B\x06\xe5\x8f\x83Vb\xf1\xbc\xb9E\x1a\x9bH$\x1f^\x9dX\xd0\xca\xcc\xc9\x86\xaa\xd0\x9c\xc0\x82\xabE\xcc{\xcd\xd3\xdb\x97\x1e.y\xb0\x9f\x8f\xefv\x9c\xbd%\x84\xbf\"\xd9\xb4Vm\t.\x15\xf1)\xd6\xd8\x1cb\xc5\xd9=c\xb5<|+K*\x9f\x01u', 0xfeffffff00000000)
preadv(r5, &(0x7f00000000c0)=[{&(0x7f0000000240)=""/140, 0x8c}], 0x1, 0x0, 0x3)
accept4$unix(r5, 0x0, &(0x7f0000000000), 0x80800)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

705.697524ms ago: executing program 3 (id=702):
syz_emit_ethernet(0xfe53, &(0x7f0000000440)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x88, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @parameter_prob={0xc, 0x0, 0x0, 0x0, 0xb, 0x3, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @multicast2}}}}}}, 0x0)
r0 = socket(0x1e, 0x805, 0x0)
r1 = getpgid(0x0)
r2 = syz_pidfd_open(r1, 0x0)
fstat(r2, &(0x7f0000003200))
connect$tipc(r0, &(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e24, 0x4000}}, 0x10) (async)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000180)={0x1, 0x14, 0x4, 0xfffd, 0x0, 0x40, 0x0}) (async)
r3 = add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r4 = add_key$user(&(0x7f00000001c0), &(0x7f0000000300)={'syz', 0x1}, &(0x7f0000000080)="bc", 0x1, r3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r8, @ANYBLOB="0c009985f2330fd547793c000800a0003a0900080500390104000000080026"], 0x40}}, 0x0) (async)
sendmsg$NL80211_CMD_TESTMODE(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000200)={&(0x7f0000000480)={0x374, r6, 0x503, 0x70bd25, 0x7, {{}, {@void, @void}}, [@NL80211_ATTR_TESTDATA={0x98, 0x45, "e6a2d806581c1f0e8c619806672ab057fd55d86b23318c34beac31e2650914d316bfe3c1a9b7bc8a1ef08678499910d5e186fe1eb086c44890e93c9ff169cdab3490f6f3f44412053fc62a230c95f221448166002e8e332f0f681ef3ebed2154c4e92a3b4e0a0b2572b10a8c6d9d5ca756f87840f0f0aca72bf2c2dc4857132e8a18c6a5bcad1c35a4c5f8ada7566dae5f9fb409"}, @NL80211_ATTR_TESTDATA={0x82, 0x45, "082a592b3eae365e4f538640a0d1891b9ff9fd9295516fe304125af3b63e87212385012c658dcf2e02dccea0ea2b33400e10a11d8b2b9001fbaf7de7223fabd35fe13a46e73b1c320a6f359f3c965b006267c10e408dbf73f020ca781b0f1db25719b63f427283da16e3b3fc6e2317e425a3d04be5668e3e6737ea4b9976"}, @NL80211_ATTR_TESTDATA={0x9b, 0x45, "a34426a1fb12d7ae0a8b6f7db662bdde7388f427556932868886ad407c9ee206d024628c3a2f9e34f23158a22588ad88b297d1e9feced2ea4c8d6f5574d95afa709a7770b5de6ab96866f2f7a6b7f16fb9e62b49910bda43902984c7fb40178add4c8bbeb40562abf285eb11e8de1ea71619688a6dac2acc24e181a5274aac1e67ed2a0486c29f030f869630c0c82c58a584304d45f0f2"}, @NL80211_ATTR_TESTDATA={0xb4, 0x45, "26066a23f989622887b13df99b32e29db5f3551f437a8e52712b5f147431c6fd170fe2cac60f49c8ed7b8c5de51908ceec176e438f585fda3f1c0500d5f14f42ab17f4035d00aaeadffc474e5eee9d7263619a0818d7f69c5838c0dcf9face48ae64a8ea8d2a4e8a384cba8b73e7ff02419c6f408122ff3d5211129aa44c327c68b2a1919e355f8b29d43dd5eadc70114c2a6b2106b4ac7cc5cc7eaef8bb0b407c3ca31d983aaaf057ebf2f8d8ef085c"}, @NL80211_ATTR_TESTDATA={0xf3, 0x45, "50dbd910f7ee271323d90cc10643cfa60f0a3ac297cdaf1a0a4044da2860bed289dd648b26f4826e27b0da47eb524aaa5e7d61f13cd163a7abc933df9f40ac6f9105b551d3321eefb523abb54ead6a6e5b8893fbfee96efc0faf1ec362117af101a319785ee5248df4bee60d0684a95b41340e1f4794b9392a74a46d7c912965c353d9a4f9def66421332718561d7aeda8b3607fbcd68af19149403eac45724104bd45d3b285d68012237390c727d847d9d26af822ec0f3909dfeacbefd37b8e25fd07206ff9364647e03c8884aa5cb42d6e73f14da8f6a5af9a3e77f32f5011267f56a2f04cf29d348ac78c6ddda5"}]}, 0x374}, 0x1, 0x0, 0x0, 0x4000000}, 0x20008815) (async)
r9 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r9, r4}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r0)
readahead(r0, 0x720, 0x9)

640.926301ms ago: executing program 2 (id=703):
r0 = socket$packet(0x11, 0x2, 0x300)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x0, 0x4008094, &(0x7f00000000c0)={0x11, 0x11, r1, 0x1, 0x4, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, 0x14)

640.710212ms ago: executing program 3 (id=704):
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xffffffffffffffff, 0x4031, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}) (async, rerun: 32)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) (rerun: 32)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000007c0)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&'], 0x10) (async)
sendmsg$inet(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000780)='}', 0x1}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f00000002c0)=r0}, 0x20)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0) (async)
recvmsg$unix(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)=""/229, 0xec1}], 0x1}, 0x0) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xd) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000008b"]) (async)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
vmsplice(r8, &(0x7f00000013c0)=[{&(0x7f0000000080)='4', 0xfee1}, {&(0x7f0000000100)="a7", 0x1}, {&(0x7f0000000240)="9f", 0x1}, {&(0x7f0000000300)='b', 0x1}], 0x10000000000000e0, 0x1)

570.38605ms ago: executing program 4 (id=706):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000000)='syzkaller\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000540)="390000fa461ad7e48489bffa560200130011186809fc071200000f0000ff3f21000000170a001700e0fc6ca9e48270faf047105bc79e0b9971bcbedac0eeadc6dbecddc2a8000000004fc4c966d6df4adaece2fe6aa00d4523f6a06fe53e9a238347266a62198857c5bb104ba0ffeea8195cec4ca13a1c5fc9dd9ec29c19183225002e81a6d7de2852293856a977ab8e5a676b99fb6d284d091eae9a7192", 0x9e}], 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000300)=0x80000000)
listen(r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="120040000400ff03f60000120000000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000a80)={r2, &(0x7f0000000940), &(0x7f0000000a40)=@tcp6=r1}, 0x20)
recvmmsg(r1, &(0x7f00000003c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)=""/52, 0x34}], 0x1}, 0xe}], 0x2, 0x0, 0x0)
shutdown(r1, 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64])
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/kexec_loaded', 0x5411c2, 0x1)
read$FUSE(r3, &(0x7f0000001cc0)={0x2020}, 0x2020)
ioctl$SG_NEXT_CMD_LEN(r3, 0x2283, &(0x7f0000000100)=0x3f)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x4000000, 0x2000, 0xdc0, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0x2b, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b71119246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5af40bb6f4c526", 0x0, 0x8000}, 0x24)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000000)='syzkaller\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94) (async)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000540)="390000fa461ad7e48489bffa560200130011186809fc071200000f0000ff3f21000000170a001700e0fc6ca9e48270faf047105bc79e0b9971bcbedac0eeadc6dbecddc2a8000000004fc4c966d6df4adaece2fe6aa00d4523f6a06fe53e9a238347266a62198857c5bb104ba0ffeea8195cec4ca13a1c5fc9dd9ec29c19183225002e81a6d7de2852293856a977ab8e5a676b99fb6d284d091eae9a7192", 0x9e}], 0x1) (async)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
ioctl$int_in(r1, 0x5452, &(0x7f0000000300)=0x80000000) (async)
listen(r1, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="120040000400ff03f60000120000000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) (async)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000a80)={r2, &(0x7f0000000940), &(0x7f0000000a40)=@tcp6=r1}, 0x20) (async)
recvmmsg(r1, &(0x7f00000003c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)=""/52, 0x34}], 0x1}, 0xe}], 0x2, 0x0, 0x0) (async)
shutdown(r1, 0x1) (async)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64]) (async)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/kexec_loaded', 0x5411c2, 0x1) (async)
read$FUSE(r3, &(0x7f0000001cc0)={0x2020}, 0x2020) (async)
ioctl$SG_NEXT_CMD_LEN(r3, 0x2283, &(0x7f0000000100)=0x3f) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x4000000, 0x2000, 0xdc0, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0x2b, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b71119246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5af40bb6f4c526", 0x0, 0x8000}, 0x24) (async)

569.970905ms ago: executing program 4 (id=707):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0)={0xaa, 0x380})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000113000/0x3000)=nil, 0x400000, 0x0, 0x2})
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x48}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x0)
sendto$packet(r1, 0x0, 0x0, 0x20008084, &(0x7f00000000c0)={0x11, 0x11, 0x0, 0x1, 0x4, 0x6, @multicast}, 0x14)

439.806671ms ago: executing program 3 (id=708):
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000580), 0x8000, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)={0x400, 0xa0, 0xa00, 0x600, 0x1800, 0x8, 0x0, 0x1, {0x3ff, 0x10001, 0x1}, {0x1c9, 0x7, 0x1}, {0xc7, 0x0, 0x1f00}, {0x3, 0x100, 0x1}, 0x0, 0x1dd, 0x6, 0x200, 0x0, 0x8, 0x0, 0x10000, 0xa1fb, 0x101, 0x80000003, 0x5, 0xfbaebe444cba4e0a, 0x2, 0x2, 0x3})

439.189884ms ago: executing program 2 (id=709):
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vfat\x00', 0x200000, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@getsadinfo={0x114, 0x23, 0x800, 0x70bd27, 0x25dfdbff, 0x0, [@tfcpad={0x8, 0x16, 0x6}, @coaddr={0x14, 0xe, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @lifetime_val={0x24, 0x9, {0x4, 0x401, 0x6, 0xffffffffffffffff}}, @replay_esn_val={0x44, 0x17, {0xa, 0x70bd26, 0x70bd26, 0x70bd2a, 0x70bd26, 0x9, [0x6, 0x400, 0x5, 0x9, 0x6, 0x0, 0x1, 0x7, 0x2, 0x6]}}, @algo_auth_trunc={0x5e, 0x14, {{'sm3-generic\x00'}, 0x90, 0x40, "807c141d9712cdcfcd9b289576e7c40dd5f8"}}, @replay_val={0x10, 0xa, {0x70bd26, 0x70bd27, 0xfffffff7}}, @mark={0xc, 0x15, {0x350759, 0x7}}]}, 0x114}}, 0x4000080)
r1 = creat(&(0x7f0000000ac0)='./file0\x00', 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x0)
chown(&(0x7f00000000c0)='./file0\x00', r2, 0xee01)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901ac040098007f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef409000000b466f7108ea142f8cc89bca3611fb791643a5ee4b116027ba10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd68493e4edef3d93452a92307f00000e970300000000", 0xd8}], 0x1}, 0x48002)
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f0000000300)={{}, {}, [], {}, [], {0x10, 0x2}}, 0x24, 0x0)
creat(&(0x7f0000000ac0)='./file0\x00', 0x0) (async)
creat(&(0x7f0000000ac0)='./file0\x00', 0x0)
ioctl$UI_SET_SNDBIT(r1, 0x4004556a, 0x7) (async)
ioctl$UI_SET_SNDBIT(r1, 0x4004556a, 0x7)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000004c0), r4)
syz_open_dev$rtc(&(0x7f0000000000), 0x5, 0x4c040)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x20, r5, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc}]}, 0x20}, 0x1, 0x0, 0x0, 0x8800}, 0x4000000)
r6 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r6, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4) (async)
setsockopt$SO_RDS_TRANSPORT(r6, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f0000000780)={r6}) (async)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f0000000780)={r6})
recvmsg$inet_nvme(r6, &(0x7f00000003c0)={&(0x7f0000000340)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @dev}}}}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000740)=""/139, 0x8b}, {&(0x7f0000000100)=""/20, 0x14}, {&(0x7f0000000880)=""/111, 0x6f}, {&(0x7f0000000b00)=""/4096, 0x1000}, {&(0x7f0000000900)=""/179, 0xb3}], 0x5, &(0x7f0000001b00)=""/4096, 0x1000}, 0x10020) (async)
recvmsg$inet_nvme(r6, &(0x7f00000003c0)={&(0x7f0000000340)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @dev}}}}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000740)=""/139, 0x8b}, {&(0x7f0000000100)=""/20, 0x14}, {&(0x7f0000000880)=""/111, 0x6f}, {&(0x7f0000000b00)=""/4096, 0x1000}, {&(0x7f0000000900)=""/179, 0xb3}], 0x5, &(0x7f0000001b00)=""/4096, 0x1000}, 0x10020)

380.555574ms ago: executing program 3 (id=710):
fsopen(&(0x7f0000000140)='hfsplus\x00', 0x0) (async)
r0 = fsopen(&(0x7f0000000140)='hfsplus\x00', 0x0)
socket$can_j1939(0x1d, 0x2, 0x7) (async)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'veth0_virt_wifi\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8001]}}]}}]}, 0x8c}}, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r5, 0x29, 0x8, 0x0, &(0x7f0000000240))
sendmsg$IPCTNL_MSG_EXP_DELETE(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)={0x1c, 0x2, 0x2, 0x801, 0x0, 0x0, {0x1, 0x0, 0x8}, [@CTA_EXPECT_HELP_NAME={0x8, 0x6, 'RAS\x00'}]}, 0xf}, 0x1, 0x0, 0x0, 0x4004090}, 0x4004000)

379.042946ms ago: executing program 3 (id=711):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

378.62468ms ago: executing program 4 (id=712):
syz_emit_vhci(&(0x7f00000011c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x0, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0x4c, 0xa}, {0x4, 0x8, 0x8, 0x1, 0x9}}}}, 0x17)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000000a000085000000ad0000009500000000000000b3cd91115eb8e652f2de1652464abeffe45ea5d02a47dd0af49d3cbdb819ac0afe07341685ca0461afbead16a3e9cb460665223ffb26b9fd6339402d71f59771e951e6ffa0e9c6c9a7352c6b"], &(0x7f0000000340)='GPL\x00', 0x3}, 0x94)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r1, 0x407, 0x100000)
sendmmsg$unix(r1, &(0x7f0000000300)=[{{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000080)="eebefa035f9c5a69e5aadfb12eab9ab8f0fd5ac79ab16860ae377b82a37b8449ec8afdb92384b794ddb74109f48c7cfcdda68d1cd140ac06649e25543fcc16f2ba1a62e88a614baa8164988b696e76274b05d7166f89b0420f95df5434332e328f1c8858033c8c6a5a6e8346866d232dbef350c9a04d10ab8c1f1a1b07e370452066f43d74181c4c8c5001dba7ef68566a47940610accc7ee1cb5e89c00de3da09240c0682a281d2c7ceb4587ae7fb444cd24e0816c2082f3b9a452acae95c13a92ddd5ea1e4318765824bcbc78d1db32395409fce1082ca7506ee063d580c6a1b898ad015ac4c8494016368ec", 0xed}, {&(0x7f0000000180)="f2001c1c314d35c77e4e2e9a6dd8ead5f6200ce8e7c6a055f8fe98cd34b2358938a488e960e4ab4d418624d96adbfd8331a484ff9681007aa2cf7d99b2bb55b89997ea64d801744ebcfac21f7bf49d1ecec180a949e5a47b56", 0x59}, {&(0x7f0000000200)="414f77c1095fc2d8a2646532d7444e7dfa23566c03af90ec03fb121de13a4d5151399979ac655a44578944af624d6923d06d5b548c27adda762302003ccbf293916429b60a17a41634b28a970b3addc7e944878dbbd46e33e70e51c388ef8566009944ee7436", 0x66}], 0x3, &(0x7f00000002c0)=[@rights={{0x20, 0x1, 0x1, [r0, r0, r0, r0]}}], 0x20, 0x10}}], 0x1, 0x400c015)

345.450818ms ago: executing program 3 (id=713):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000200)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r2=>0x0})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r6, r7, &(0x7f0000fda000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000080)="b805000000b9fa0000000f0560d9d9d978c4020a6b1bc7c705000000b90000c0fe0fae41d901000000b87f8b7f26ba00000000b8000000000f23d00f21f835100000080f23f8c775022e0fba600c980f320f3566b857000f00d0", 0x5a}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r8)
sendmsg$TIPC_CMD_ENABLE_BEARER(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x60040, 0x0)
close(r10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001000000010000000050000000400000000000000000000e962000000000000d500"], 0x0, 0x2d, 0x0, 0x1}, 0x28)
r11 = socket$unix(0x1, 0x1, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r13=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(0xffffffffffffffff, 0xc010641d, &(0x7f0000000180)={0x0, &(0x7f0000000440)=""/230})
sendmsg$nl_route_sched(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r13, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffe0}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{0x3, 0x7, 0x6361, 0x5, 0xffffffff, 0x4}, [@TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0xfffffff5, 0x6, 0x80000000, 0x3}}]}]}}}]}, 0x64}, 0x1, 0x0, 0x0, 0x240080c1}, 0x8000)
ioctl$SIOCSIFHWADDR(r10, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x8, r2, 0x0, r0}, 0x10)

289.233356ms ago: executing program 4 (id=714):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000100)=0x14)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x1, 0x60, 0x0, 0x0)
read(r0, &(0x7f00000019c0)=""/4093, 0xffd)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e08831b0c"], 0xb)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x9, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}, @volatile={0x0, 0x0, 0x0, 0x9, 0x3}, @func={0x7}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x51}, 0x20)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r3, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x1)
recvfrom(r3, &(0x7f0000000000)=""/205, 0xcd, 0x10, &(0x7f0000000100)=@pptp={0x18, 0x2, {0x2, @remote}}, 0x80)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f00000001c0)={<r4=>0x0, 0x7f, 0x100}, &(0x7f0000000200)=0x8)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000240)={r4, 0x200, 0xfffc}, 0x8)

288.993825ms ago: executing program 0 (id=715):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x3f00, 0x20008084, &(0x7f00000000c0)={0x11, 0x11, r1, 0x1, 0x4, 0x6, @multicast}, 0x14)

288.357884ms ago: executing program 0 (id=716):
mkdir(&(0x7f0000000100)='./file0\x00', 0x11c)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000040)='vxfs\x00', 0x11, 0x0) (async)
pivot_root(&(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000140)='./file0\x00')
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000280)={'comedi_parport\x00', [0x4f29, 0x5, 0x3ff, 0x601, 0x1, 0xcc7, 0x1, 0x5c952399, 0x805, 0x7ff, 0x2, 0x1, 0x2, 0x4, 0x1, 0x0, 0x5, 0x1a44b, 0x3, 0x201, 0xbe8, 0xfffffff9, 0x9, 0x20001e56, 0x9, 0x2000003, 0x3c, 0x8, 0x4, 0x8000000, 0x1]}) (async)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000040)={0xa000005, 0x0, 0x0, 0xffffffff, 0x10000})

200.530415ms ago: executing program 0 (id=717):
r0 = socket$packet(0x11, 0x2, 0x300)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x0, 0x4008094, &(0x7f00000000c0)={0x11, 0x11, r1, 0x1, 0x4, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, 0x14)

110.293772ms ago: executing program 4 (id=718):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2ae482, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200900, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0, {0x3635}}, './file0\x00'})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x2}, 0x0, 0x0, 0x0)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="10edca609c383f4ae5ba7deafb4b78180e52fc68cbeaaec68b8e61b98f70b07244afbc535c4259fbbe26e949d43fac12525affcaf8819cb8e7f6323d9241b7f6f08edf1f2b9c246900f166d9f550cbfeacf0b5a87ef7548a14d1612e71e13ab32bfb46b51a8d483ffd7afd701dc2a83aed2338652d43f73c4eaf2a59b464b222da01930ac121080e24f8b305173a0579b708a920abce106be41d6342e2acb22c197ca67b5283193d041b1840f77c3872f8395bc2effdfad96d12c4f9ab25c5bab21931baf0159991ef257bf8dd65c70161176fb39a3f43"], 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x30008000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x3, 0x4, &(0x7f00000004c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x41000}, 0x94)
add_key$keyring(&(0x7f0000000040), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, r3)
getsockopt$CAN_RAW_RECV_OWN_MSGS(r2, 0x65, 0x4, &(0x7f0000000100), &(0x7f0000000140)=0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
pidfd_getfd(r2, r2, 0x0)
ioctl$KDSETLED(r5, 0x4b32, 0x2)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x7ff, 0x10001}}, './file0\x00'})
openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2)
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="016f080001000000004600003f0000c0f9008490783fffffffac1414aa000000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="ba0000fe9078001809c40005020000fffd000000000002d58838068b91000000"], 0x4e)

803.372µs ago: executing program 0 (id=719):
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x28}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x180, 0x4, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x5, 0x5, 0x6, 0x0, 0x45, 0x4, 0xbdb], 0x1, 0x1c4213})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

0s ago: executing program 4 (id=720):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1200000009000000040000000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000bc00"/17], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r0}, 0x20)
r2 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f00000000c0)={0x1d, r3, 0x8000000000000003, {0x0, 0x0, 0x1}, 0xfd}, 0x18)
sendmsg$nl_route_sched(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)={&(0x7f000000e500)=@delchain={0x2074, 0x65, 0x1, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0xfff6, 0xfff3}, {0x0, 0x3}, {0x9, 0x4}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x9}}, @TCA_CHAIN={0x8, 0xb, 0xfffffff9}, @TCA_RATE={0x6, 0x5, {0x3, 0x3}}, @TCA_RATE={0x6, 0x5, {0x8, 0x1}}, @TCA_RATE={0x6, 0x5, {0x2, 0x70}}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_cgroup={{0xb}, {0x2014, 0x2, [@TCA_CGROUP_ACT={0x2010, 0x1, [@m_mirred={0x140, 0xf, 0x0, 0x0, {{0xb}, {0x84, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x655, 0x1, 0x0, 0x3}, 0x3, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x724, 0xffffffff, 0x4, 0x7, 0x8000}, 0x3, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x3, 0x6, 0x6, 0x40}, 0x1, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x10001, 0x8, 0x7fffffff, 0x534c}, 0x3, r3}}]}, {0x92, 0x6, "96e435a4c46e5f55666205f75f4c94669178b093f2a52b5e46394f154f0e37cafb73a558eab2d4f91eb8435c61bf3612436374e95f624e947cc00ee8666f5a565fefb07e500249279a8a46996622eb968f77933c2c05f26f10c05d1042a951eba2bad9ffe8230bf2bdbbba8d791011df376a29ca4a3c3ba4a4e645ddfd87856567f0db52835b0578eaebed6179e2"}, {0xc}, {0xc}}}, @m_mirred={0x150, 0x19, 0x0, 0x0, {{0xb}, {0xc4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x2, 0x8, 0x5, 0x1065}, 0x3, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4c7dfb68, 0x800, 0x0, 0xfff, 0x4}, 0x5, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x7, 0x0, 0x4, 0x4}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0xffffffff, 0x3, 0x6e3a, 0x3}, 0x4, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x800, 0xffffffffffffffff, 0x5, 0x2}, 0x3, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0xe3, 0x2, 0x6, 0x3}, 0x4, r3}}]}, {0x61, 0x6, "ae15550d5fc33dfc9bb03393030d8b21e9494efb01e98fef3a61d0726f8992a5877550b9f2676bb503d32227beebed5a8993f2bca0c1ed6318f6f8e3bb1d09e97704d568fed5f16c588a02dd87dc9a1e59ac522c5ea32cda6aa80d1eb2"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_pedit={0x1d7c, 0x2, 0x0, 0x0, {{0xa}, {0x1cc8, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe80, 0x4, {{{0x21e, 0x0, 0x2, 0x5, 0x3ff}, 0x6, 0x90, [{0x0, 0x0, 0x3ff, 0xd33, 0x7, 0x1}, {0x6, 0x7, 0x8001, 0x0, 0x1, 0x6}, {0x2, 0x7fffffff, 0x5000000, 0x2, 0x4}, {0x49fa, 0x7df, 0x5, 0x81, 0xfffffffa, 0x1}]}, [{0x4, 0x942, 0x5, 0x7fff, 0x4, 0x3}, {0x2, 0x80000000, 0x9, 0xc, 0x6f389117, 0x9}, {0x9, 0x3, 0x8ee, 0x6, 0x9, 0x2f432006}, {0x3, 0x84, 0x5, 0xed, 0x800000, 0x7ff}, {0xffffffff, 0x9, 0x9c83, 0x3, 0x800, 0x9}, {0x4, 0x0, 0xff, 0x7fffffff, 0x39, 0x9}, {0x16, 0x0, 0x8000, 0x4, 0x10000, 0x7f}, {0x0, 0x7, 0x6, 0x0, 0x57, 0x5}, {0xec53, 0x5, 0x1, 0x2000, 0xd453, 0x5}, {0x5, 0x0, 0x8, 0x0, 0x4, 0xfffffff8}, {0x2a5, 0x7f, 0x7, 0xfffffffe, 0x6}, {0x1, 0xe, 0x8, 0xb, 0x8, 0x6}, {0x4, 0x2, 0x5, 0xc, 0x6}, {0x0, 0x3, 0x4793, 0x800, 0x9, 0x5}, {0x5, 0x4, 0x626eb02f, 0x74, 0x3a, 0x7}, {0x4, 0x8, 0x10001, 0x10000, 0x3, 0x80000000}, {0xffff8001, 0x1dc, 0x7, 0x6, 0xf, 0x1}, {0x6, 0x400, 0x8, 0xffff68bd, 0x9, 0x7fff}, {0xea, 0x7, 0x7, 0x4, 0x800, 0x3}, {0x7ff, 0x5, 0x8, 0x81, 0x0, 0x2}, {0x72c, 0x2, 0x10001, 0x1, 0x333c, 0x4}, {0x8, 0x8, 0xfffffff8, 0x8, 0x4, 0x4}, {0x800, 0x6, 0x8, 0x9, 0xcdc, 0x7fffffff}, {0x8000, 0x9, 0xff, 0x4, 0x4, 0x9}, {0x5, 0x3, 0x40, 0x4, 0x8000, 0x4}, {0x6, 0x1, 0x6, 0x6, 0x1}, {0x2, 0x5, 0xc, 0x9f3a, 0x610, 0xffff}, {0x7325, 0x3, 0x4, 0x2, 0x800, 0x10}, {0x1, 0x7, 0xffffffc6, 0x2, 0xffff, 0x5}, {0x10000004, 0xa, 0x17a, 0x6452, 0x80, 0xd}, {0x4, 0x3ff, 0x8, 0x8, 0x1, 0x1}, {0x400, 0x8, 0x7, 0x8, 0x2, 0x6}, {0x3f7ed251, 0x7f, 0x81, 0x1, 0x2, 0x335}, {0x99a0, 0x6, 0x7653afb4, 0x40, 0x8, 0x18a}, {0x0, 0x81, 0x8, 0x1000, 0x5, 0x800}, {0x2, 0x3, 0xffff, 0xffff, 0x7, 0x80000000}, {0xfffffff8, 0x2, 0x2, 0x40, 0x5a, 0x8}, {0x5, 0x5, 0x4, 0xe, 0xc, 0x2}, {0x1, 0xfffffff9, 0x1, 0x13, 0x4, 0x2}, {0xae5, 0x0, 0x9, 0x0, 0x6, 0x1ff}, {0x1, 0x8, 0xffff, 0x1, 0x1, 0xfb07}, {0xace, 0x80, 0xf4d, 0x0, 0x0, 0x64e}, {0x1, 0x71, 0x3, 0x6, 0x0, 0x101}, {0x9, 0x9, 0x1, 0x4681, 0x6, 0xc9}, {0x10, 0x1, 0x1, 0x1, 0x3}, {0x8, 0x4, 0x8, 0x4fdb, 0x8001, 0x3000000}, {0x5, 0x5, 0x401, 0xef8, 0xc0000000, 0x2}, {0x10001, 0xf6d3, 0xfffffffc, 0x1, 0x3, 0xfff}, {0x4, 0xb, 0x7, 0x100, 0x6, 0x9}, {0x10, 0x4a53fc85, 0x0, 0x9, 0x4, 0x10000}, {0x6, 0x6, 0x65, 0xf, 0x3, 0x3}, {0x7fffffff, 0x60, 0x4, 0x0, 0x81, 0xf98f}, {0xe, 0x3, 0xffffffff, 0x4, 0xf, 0x2}, {0x83ad, 0x1, 0x6, 0xffff, 0x4, 0x7}, {0x5, 0x407e, 0x4, 0x3, 0x2, 0x2}, {0xf, 0x7b, 0x2, 0x4, 0x52, 0x7cbf}, {0x7, 0xfffffff7, 0xa779, 0xe, 0x2, 0x10}, {0x1, 0xfffffff7, 0xce, 0x80000001, 0x5, 0x2}, {0x3, 0x6, 0xfffffff8, 0x6, 0x6, 0x7}, {0x80, 0x2f, 0x6, 0x4, 0x4}, {0x1, 0x3, 0x2, 0xe, 0x7f, 0x81}, {0x0, 0x6, 0x0, 0xff, 0x7ff, 0x8}, {0x1, 0x0, 0x6, 0x2, 0x5, 0x4}, {0x1, 0x9, 0xca, 0x4c, 0x7fffffff, 0x7}, {0xfffffff7, 0xffffffff, 0x1e, 0x0, 0x90000}, {0x1, 0x318, 0x0, 0xb0bda3cd, 0x0, 0x80000000}, {0x0, 0x25e, 0x1, 0x3fc0, 0x51, 0x7}, {0x3, 0xa4df, 0x253, 0x0, 0x10000, 0x7fffffff}, {0x8, 0x8, 0x8001, 0x9, 0xffffffff}, {0xfffffff6, 0x2, 0x7f, 0x4, 0xfff}, {0x3, 0x9, 0x8, 0x27, 0x2, 0x49}, {0x6, 0x6, 0xb61d, 0x10, 0x5a6, 0x9}, {0xc8c, 0xb, 0x4d5, 0x6, 0xc6, 0x800}, {0x1, 0xa8, 0x8, 0x6b9c1396, 0x4, 0x2}, {0x2, 0x0, 0x40, 0x6, 0x35ba, 0x1}, {0x8, 0xffffffff, 0x8b, 0x75b9, 0x54, 0x7fffffff}, {0x5, 0x1, 0x4, 0x8, 0x952e336, 0x8}, {0x8, 0x6, 0xe, 0x0, 0xff, 0x8000}, {0xe, 0x9, 0x1, 0x5, 0x0, 0x7fffffff}, {0x1, 0x8000, 0xb, 0x4, 0x3, 0x3}, {0x1, 0x0, 0x8001, 0x9, 0x40, 0xb4c}, {0x1, 0x200, 0x4, 0x4, 0x9, 0x7}, {0x6, 0x4, 0x8, 0x0, 0x9, 0x1}, {0x9, 0xc, 0x92ae, 0x5, 0x7, 0x7}, {0x2, 0x5, 0x3ff, 0x3, 0x3, 0x1}, {0x10001, 0xfffffffe, 0x7ff, 0x400, 0x10, 0x2}, {0xa, 0x0, 0x5, 0x9a, 0x101, 0x7}, {0xe, 0xfffffff6, 0x3, 0x600000, 0xd0, 0x1}, {0x5779, 0x8, 0xfff, 0x9, 0x9, 0xd}, {0xffff, 0x3ff, 0xfffffffb, 0x9, 0xe, 0xfffffffe}, {0x8, 0x1, 0xa52, 0x10, 0x0, 0x3}, {0x41d4, 0x9, 0x2, 0x8, 0x2, 0x9}, {0xffffff11, 0x1ff, 0x53000000, 0x7, 0xe6c8, 0xfffffff7}, {0xb29, 0x3, 0x5, 0x3, 0x100, 0x7}, {0x8eb, 0x786, 0x1, 0x0, 0x7ff, 0x340a}, {0x1, 0x9, 0x3, 0xdd9, 0x800, 0x9}, {0x5, 0x6, 0x5, 0x9, 0x7, 0xb9}, {0x80000001, 0x6, 0x6, 0x1000, 0x81, 0x7}, {0x1, 0x3, 0xb56, 0x8000, 0x2, 0x2}, {0x5, 0xffff, 0x9, 0x20, 0x9, 0x8}, {0x800, 0x0, 0xd, 0x1, 0x5, 0x9}, {0x2, 0x10, 0x2, 0xdf, 0x7000, 0xc}, {0x8681, 0x4, 0x7, 0xd218, 0x0, 0x8}, {0x8, 0xf9, 0x6, 0x5, 0x5, 0x80}, {0xc4c7, 0x7, 0x1, 0x8a8, 0x7, 0x1}, {0x6, 0xe, 0xfff, 0x0, 0x6, 0xd84}, {0x4, 0x6, 0x7, 0xfffffff8, 0x3, 0x9}, {0x2, 0xf6c3, 0x8, 0x8, 0x8, 0x3}, {0x1, 0x5, 0x9, 0x2, 0x4, 0x14f}, {0x3, 0x8001, 0xb, 0x7f, 0xb, 0x2}, {0x3, 0x3, 0x0, 0x5, 0x9, 0x2}, {0xee1, 0x5, 0x7f00, 0x871c, 0x5, 0x5}, {0xff, 0x1000, 0x51, 0x9, 0xff, 0x7fffffff}, {0x3, 0x7ff, 0x6, 0xfffffffe, 0x5, 0x1}, {0x0, 0x3, 0x9, 0x1, 0x5, 0x3}, {0x1, 0x4, 0x6, 0x6, 0x5, 0x8000}, {0x1, 0xf6, 0x5, 0xfffffff8, 0x8, 0x8}, {0x9, 0x100, 0x50, 0x100, 0xffffffff, 0x2}, {0x4, 0x0, 0x4, 0x6, 0x4, 0x9}, {0x9, 0x8e, 0x9, 0x7fff, 0x7ff, 0x8001}, {0x4, 0x7, 0x3, 0xfffffff7, 0x5, 0x2}, {0x9, 0x7ff, 0xb0, 0x8001, 0x1, 0x5}, {0x4, 0xffffffff, 0x8, 0xffffff5f, 0x7692, 0x3408d690}, {0x38dc, 0x8, 0xfffffffe, 0x0, 0x7fff, 0x4}, {0x1, 0x6, 0x24, 0x40}, {0xc5, 0x3, 0x8f, 0x3, 0xc955, 0x5}, {0x7, 0x6, 0x1, 0xd, 0xffff, 0x2}, {0xfffffff7, 0x6, 0xfcbd, 0xa9d2, 0xaf, 0x7}], [{0x3}, {0x4}, {0x0, 0x1}, {0x2, 0x1}, {0x4, 0x2}, {0x0, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5}, {0x5}, {0x1, 0x1}, {0x1}, {0x2}, {0x1}, {0x1, 0x1}, {0x0, 0x1}, {0xfbdf6cbfb3972623, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x2, 0x1}, {0x1, 0x1}, {0x5}, {0x1}, {0x2, 0x1}, {0x2}, {0x5, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x5}, {0x2, 0x1}, {0x5}, {0x3, 0x740a27418a534553}, {0x3}, {}, {0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x4, 0x3}, {0x1, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x3}, {0x1, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {0x2}, {0x2}, {0x4, 0x1}, {0x4}, {0x3}, {0x4, 0x1}, {0x1}, {0x3}, {0x5}, {}, {0x5, 0x1}, {0x7}, {0x1, 0x1}, {0x5}, {0x5, 0x1}, {0x5}, {0x3}, {0x5}, {0x0, 0x1}, {0x1}, {0x0, 0x1}, {0x3}, {0x6, 0x1}, {0x5, 0x1}, {0x2}, {0x2}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x1}, {}, {0x5}, {0x1, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5}, {0x2}, {0x3, 0x1}, {0x4}, {0x2, 0x1}, {0x1, 0x1}, {}, {0x1}, {0x1}, {0x2}, {0x5}, {}, {0x4, 0x1}, {0x3, 0x1}, {0x1, 0x3}, {0x4, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x3}, {}, {0x5}, {0x5}, {0x2}, {0x3}, {0x3, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {}, {0x2}, {0x3, 0x1}, {0x5}, {0x1, 0x1}, {0x4}, {0x1}, {0x5}, {0x2, 0x1}], 0x1}}, @TCA_PEDIT_KEYS_EX={0x4}, @TCA_PEDIT_KEYS_EX={0x8, 0x5, 0x0, 0x1, [{0x4}]}, @TCA_PEDIT_PARMS={0xe38, 0x2, {{{0xffffffff, 0x10000, 0x10000000, 0x4eed7b60, 0x8001}, 0x2, 0x3, [{0x8, 0x0, 0x5, 0x3, 0x3, 0x2}]}, [{0x5, 0x3, 0xa42, 0x8, 0x3, 0x8}, {0x9, 0x52, 0xfff, 0x7fffffff, 0x0, 0x8}, {0x0, 0xffffff44, 0xa00, 0x87, 0x0, 0xff}, {0xfffffffc, 0x8, 0xfff, 0x8, 0x401, 0x1}, {0xfff, 0x4, 0x80000001, 0x5, 0x9, 0x5}, {0xfffffffd, 0xb2, 0xa6, 0x10001, 0x23f, 0x9}, {0x6, 0x9, 0x400, 0x80, 0x1}, {0x9, 0x8, 0x1, 0x3, 0x8e, 0x8}, {0x200, 0x6, 0x9, 0x6, 0x1, 0x6bc}, {0xe3, 0x5, 0x3ff, 0x40, 0x1c3b, 0x1000009}, {0x3, 0x1, 0xfff, 0x1, 0xfff, 0x1}, {0x9, 0x0, 0x5, 0x3, 0xa28, 0x53f}, {0x10001, 0x9, 0x4, 0x4, 0x3, 0x3}, {0x10001, 0x8, 0x1, 0x4, 0x3, 0x7}, {0x3, 0x7, 0x7ca, 0x1, 0x0, 0xa}, {0x6, 0x2, 0x0, 0x8001, 0x4, 0x5}, {0x9, 0x7, 0x7983, 0x9249, 0x3, 0x2}, {0xffff, 0x8, 0x7f, 0xc9da, 0x5, 0xfffffffa}, {0x1, 0xe, 0x4cd, 0x1, 0xbae6, 0xd2c}, {0x4, 0x2, 0x7, 0x5, 0xfff, 0x1ff}, {0x101, 0xfffffffd, 0x7, 0xa0, 0x40, 0x1}, {0x9, 0x9, 0x0, 0x3ff, 0x2, 0xb}, {0x9, 0xa, 0xfc0, 0x0, 0xa, 0x53310551}, {0x3, 0x3, 0x9, 0xb02, 0x5, 0x26}, {0x98, 0x4, 0xc, 0x5, 0x4d, 0x7d}, {0x1, 0x8, 0x8, 0x200, 0x2, 0x9}, {0xb, 0x29, 0x2, 0x7, 0x4, 0x800}, {0x80000001, 0xa55d, 0x100, 0x7e, 0x5, 0x7}, {0x3, 0x1, 0x91, 0x1, 0x1000, 0xfffffff9}, {0x5, 0x7f, 0x5, 0x2, 0x8, 0x9}, {0x4, 0x5, 0x7, 0xa6e1, 0x5, 0x5}, {0x1, 0x5, 0x0, 0x99a3, 0x8001, 0x80000001}, {0x0, 0x731, 0x10001, 0x0, 0x568e33f4, 0x7}, {0x9, 0x877, 0x10001, 0xa1, 0xfffffff8, 0x6}, {0x1, 0x401, 0x100, 0x8, 0x80000001, 0x3}, {0x7fffffff, 0x8001, 0x39, 0x1, 0x3936, 0xd}, {0x7fff, 0x9, 0x9, 0x8, 0x2000, 0x400}, {0x1, 0x86, 0x0, 0x200, 0x81}, {0x400002, 0x132, 0x8, 0x4, 0xd, 0xac}, {0x9, 0x2, 0x5, 0x0, 0x8, 0x8}, {0x9, 0x6, 0x3, 0x4, 0x1000, 0x6}, {0x80000000, 0x8, 0x120f, 0x9, 0x5, 0x80003ff}, {0x8, 0xfffffff8, 0x7, 0x2ebb, 0x1, 0xa0}, {0x2, 0x5, 0x8, 0x133, 0x2, 0xfffffbff}, {0x2, 0x2, 0x4fa28bfc, 0x8000, 0x79def35f, 0x4a}, {0x2, 0x4, 0x81, 0xac09, 0x80000001, 0x6}, {0xc309, 0x5, 0x5cc0, 0x4, 0x5, 0x9a}, {0x8, 0x3, 0x2, 0x2, 0x6, 0x2}, {0x0, 0x101, 0x1, 0x8, 0x395c, 0xffff}, {0x2, 0x1cf7, 0x270, 0xff, 0x1, 0x3}, {0x247, 0x1, 0x0, 0xa2, 0x4, 0x2}, {0x4, 0xffff, 0xfff, 0x9, 0x5c}, {0x2, 0x400, 0x8, 0xa892, 0x0, 0x2dbb}, {0xfffffff9, 0x9, 0x5, 0x60000, 0x2, 0x5}, {0x800, 0x80, 0xc, 0xfffffff8, 0x10001, 0x2}, {0x6, 0x3ff, 0x5, 0x13500000, 0x100, 0x200}, {0x8, 0xf419, 0x7fff, 0x4, 0x9, 0x8}, {0x4, 0x4932, 0xd0, 0x54, 0x8, 0x4450}, {0x6, 0x9, 0x1, 0x7, 0x7, 0x1}, {0x81, 0x4, 0xfffffff7, 0x7, 0xfffffb40, 0x8}, {0x0, 0x9, 0x81, 0x81, 0xffffffff, 0x80000001}, {0xfffffff7, 0x9, 0x3, 0xc76, 0x1, 0x38000000}, {0x100, 0x6, 0x6c280, 0xd, 0x167}, {0x2, 0x2, 0x1, 0x6, 0xfffffffc, 0x8}, {0x9, 0x57c9, 0x0, 0x9926, 0x0, 0x7caa}, {0xffffffff, 0x101, 0x9, 0xb, 0xe, 0x8}, {0x9, 0x3ff, 0x1, 0x80000000, 0x5, 0x8}, {0x8, 0x27, 0x80000001, 0x80000001, 0xfffffff2, 0x7}, {0xa, 0x3577, 0x8, 0x0, 0x3}, {0x310, 0x8, 0x0, 0x9, 0x1, 0x2}, {0x7, 0xfffff65a, 0x2, 0x4, 0xeda, 0x1}, {0x0, 0x10, 0x800, 0x6, 0x1, 0x10001}, {0x3, 0x8, 0x0, 0x1, 0x9d5, 0x9}, {0x9, 0x0, 0x619, 0x4, 0x8, 0x400}, {0x8, 0x4, 0x7, 0x8, 0x6, 0x5}, {0x6, 0x3, 0x5e, 0x3, 0x3cc, 0x7ff}, {0x8, 0x2, 0x6, 0x1, 0x100, 0x2}, {0x1, 0x9, 0x8c, 0x0, 0x40, 0xe}, {0x6, 0xfffffff9, 0xc, 0x2, 0x400, 0x2}, {0x1000, 0x3, 0xc3, 0xe00, 0xfffff3e9, 0x2}, {0x1, 0x9, 0x7, 0x0, 0x3, 0x8}, {0x5, 0xe05, 0x7fff, 0x8, 0x3, 0x7}, {0x5, 0x36, 0x4, 0x3, 0x1d, 0x4}, {0x8, 0x9, 0xffffffff, 0x3, 0x80000001, 0x6}, {0xff, 0xd, 0x8, 0x1, 0x8, 0x5}, {0x8, 0x8001, 0x5, 0x3dfb6881, 0xb7, 0x1}, {0x9, 0x1, 0x4, 0x400, 0x2, 0x6}, {0x8, 0xe, 0x1ff, 0x51c, 0x1ab, 0x60cc23a0}, {0x7, 0xe3, 0x3, 0x0, 0x10000, 0x9}, {0x100, 0x8, 0x2, 0xc92, 0x2, 0x5}, {0x0, 0x4, 0x2, 0x6, 0x0, 0x4}, {0xfff, 0x9, 0x37, 0x7f, 0x6, 0x74db3c5c}, {0x9, 0x7ff, 0x1, 0x2ac, 0xc299a9e, 0x8001}, {0x6, 0x9, 0x24, 0x10, 0x4000, 0x332}, {0x4, 0x8, 0xc80, 0x2, 0x7, 0xc}, {0x8, 0x7fff, 0x8, 0xcaa1, 0x1ff, 0x5}, {0x12, 0x7, 0x11, 0x0, 0x0, 0x2}, {0x51, 0xd, 0x4, 0x1790000, 0x3, 0x31}, {0x2, 0x8, 0x5, 0x6, 0x7fffffff}, {0x7, 0x3, 0x8, 0x5, 0x7, 0x1b8}, {0x7fff, 0x3, 0x9, 0x6, 0x10, 0x2}, {0x100, 0x9, 0xd, 0x4, 0x2, 0xfffffff8}, {0x9, 0x9, 0xf, 0x8001, 0x4, 0x8}, {0x7ede, 0xfffff458, 0x8, 0x2, 0x2, 0x200}, {0x4, 0x2, 0xc, 0x80000000, 0x80, 0x1}, {0x4, 0x7fff, 0x0, 0x4, 0x4, 0x9}, {0x6, 0x0, 0x9, 0xc, 0x2, 0x2}, {0x101, 0xb66, 0x1, 0x4, 0xeed9, 0x3ff}, {0x4, 0x35a05fe6, 0x8, 0x1, 0x10001, 0x10000}, {0x8, 0x869, 0x8, 0x7, 0x9, 0x8}, {0xffffffff, 0x0, 0x7ff, 0xd8e, 0x800, 0x2}, {0x4, 0xaabe, 0x9, 0x5, 0x7ff, 0x8}, {0x50, 0x8, 0x6, 0x8, 0x804, 0x6}, {0xffff0000, 0xff, 0x1, 0x7, 0x1, 0xfffffffd}, {0x200, 0x2, 0x7, 0x7, 0x7}, {0x9, 0xd1df, 0x4, 0x5, 0x40, 0x10001}, {0x8, 0x6, 0xfffffffe, 0x8000, 0x5, 0x9}, {0x2, 0x6da, 0xff, 0x3, 0x4, 0xd}, {0x401, 0x8000, 0x8, 0xe4f2, 0x0, 0x6}, {0xffffff00, 0x8, 0x204142ac, 0x8, 0x0, 0x100}, {0x66f40c77, 0x2, 0x3, 0xd7, 0x10000, 0xf561}, {0x1000000, 0x800, 0x7, 0x8, 0x38aa}, {0x4, 0x6, 0x40, 0x9, 0x2}, {0xd, 0x8, 0x1, 0xaca3, 0x5, 0x4}, {0x3, 0xff, 0x1, 0xf5, 0x2, 0x8}, {0x3a6, 0x6, 0x6, 0x0, 0x8, 0x9}, {0xefa, 0xf16, 0x6, 0x0, 0x8001, 0x9}, {0x0, 0x2, 0xbc74, 0x73, 0xd32}], [{0x5}, {0x5, 0x1}, {0x4}, {0x0, 0x1}, {0x1}, {0x2, 0x1}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x3}, {}, {0x5, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {0x1, 0x1}, {0x0, 0x1}, {0x4}, {0x2, 0x1}, {0x3}, {0x1, 0x1}, {0x2, 0x1}, {0x464bd4b7e1803e12, 0x1}, {0x4}, {0x0, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x589b1183c9f40d0c}, {0x6}, {0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x1}, {}, {0x2}, {}, {0x3}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {0x5, 0x1}, {0x3, 0x1}, {0x5}, {0x1}, {0x2}, {0x1, 0x1}, {0x4, 0x1}, {0x3}, {0x3}, {0x1}, {0x2, 0x1}, {}, {0x3}, {0x5}, {0x3, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x5}, {0x1}, {0x5}, {0x1, 0x1}, {0x4}, {0x0, 0x1}, {0x3}, {0x3, 0x1}, {0x1}, {0x2, 0x1}, {0x5}, {0x4, 0x1}, {0x1}, {0x4, 0xfe16e3e2987eae15}, {0x1}, {0x3}, {0x3}, {0x2, 0x1}, {0x3, 0x1}, {0x5}, {0x5, 0x1}, {0x5}, {0x0, 0x1}, {}, {0x1}, {0x4}, {0x6}, {0x2, 0x1}, {0x1}, {0x3, 0x1}, {0x2}, {0x2, 0x1}, {0x2}, {0x4, 0x1}, {0x1, 0x1}, {0x5}, {0x34667b929ef74225, 0x1}, {}, {0x5}, {0x2}, {0x4, 0x1}, {0x3, 0x1}, {0x5}, {0x3}, {0x2, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x1}, {0x2}, {0x1}, {}, {0x5, 0x1}, {0x2}, {0x0, 0x1}, {0x5}, {0x5, 0x1}, {0x4}, {0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x3}]}}]}, {0x8a, 0x6, "051c12556ab25df103c361dd9384ddef97efad6269a52e923f07dd2cf67b54ce30cca55975156331acbf88927d97376faa87d33b0e387b65e67171bcb05e10e34b9e7be8466a8ade9dcfaed8ff051d9d99675896d06b430ec7689d9f057f50b098df4c443505fff00a635933e9508e3a117648edf97e68856f3f29e0ecba70745b3b80185fd5"}, {0xc}, {0xc, 0x8, {0x1}}}}]}]}}]}, 0x2074}, 0x1, 0x0, 0x0, 0x4c804}, 0x4091)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, &(0x7f0000000040)}, 0x20)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$setpipe(r4, 0x407, 0x7000000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120001007f00000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000004c0)={r5, 0x0, 0x0}, 0x20)
r6 = syz_open_dev$vcsn(&(0x7f0000000080), 0x6, 0x68c040)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r7=>0xffffffffffffffff, {0x2, 0xfff}}, './file0\x00'})
getpeername$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14)
r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x7, [@func={0x10, 0x0, 0x0, 0xc, 0x1}]}, {0x0, [0x2e, 0x30, 0x4f, 0x61, 0x51]}}, &(0x7f0000000380)=""/162, 0x2b, 0xa2, 0x1, 0xfff}, 0x28)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x18, 0x5, &(0x7f0000000500)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x8}, [@btf_id={0x18, 0x5, 0x3, 0x0, 0x5}]}, &(0x7f0000000540)='syzkaller\x00', 0x1ff, 0xc0, &(0x7f0000000580)=""/192, 0x40f00, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x7, 0x1}, 0x8, 0x10, &(0x7f0000000680)={0x1, 0x2, 0x4, 0x1ff000}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000006c0)=[0xffffffffffffffff, 0x1, r1, 0x1], 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_tracing={0x1a, 0x1c, &(0x7f0000000100)=@raw=[@generic={0xb, 0x7, 0x3, 0x8, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @map_val={0x18, 0x2, 0x2, 0x0, r4, 0x0, 0x0, 0x0, 0x800}, @map_val={0x18, 0x0, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x5}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @alu={0x7, 0x0, 0x7, 0x0, 0x9, 0x18, 0xfffffffffffffffc}, @func={0x85, 0x0, 0x1, 0x0, 0x6}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r6}}, @printk={@lli, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}], &(0x7f0000000200)='syzkaller\x00', 0x4, 0x49, &(0x7f0000000240)=""/73, 0x41000, 0x58, '\x00', r8, 0x1c, r9, 0x8, &(0x7f0000000480)={0xa, 0x4}, 0x8, 0x10, &(0x7f00000004c0)={0x3, 0xe, 0x7, 0x2}, 0x10, 0x1dada, r10, 0x2, 0x0, &(0x7f0000000880)=[{0x4, 0x5, 0xc, 0x2}, {0x1, 0x4, 0x3, 0x9}], 0x10, 0xd3f}, 0x94)
pipe2$9p(&(0x7f0000000240)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff}, 0x0)
r13 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x161042, 0x91)
pwrite64(r13, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
write$P9_RVERSION(r12, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r14 = dup(r12)
write$FUSE_BMAP(r14, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r14, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
write$FUSE_DIRENTPLUS(r14, &(0x7f0000000140)=ANY=[], 0x10)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file1\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r11, @ANYBLOB=',wfdno=', @ANYRESHEX=r14, @ANYBLOB=',posixacl'])
exit(0x8)
userfaultfd(0x80800)

kernel console output (not intermixed with test programs):

 tclass=tcp_socket permissive=1
[   54.275306][   T40] audit: type=1400 audit(1756605295.644:63): avc:  denied  { execute } for  pid=5964 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   54.284320][   T40] audit: type=1400 audit(1756605295.644:64): avc:  denied  { execute_no_trans } for  pid=5964 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   56.636581][   T40] audit: type=1400 audit(1756605298.004:65): avc:  denied  { mounton } for  pid=5964 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   56.644736][   T40] audit: type=1400 audit(1756605298.014:66): avc:  denied  { mount } for  pid=5964 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   56.649444][ T5964] cgroup: Unknown subsys name 'net'
[   56.818665][ T5964] cgroup: Unknown subsys name 'cpuset'
[   56.826661][ T5964] cgroup: Unknown subsys name 'rlimit'
[   57.165348][ T5969] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   57.993759][ T5964] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   61.558894][   T40] kauditd_printk_skb: 13 callbacks suppressed
[   61.558906][   T40] audit: type=1400 audit(1756605302.924:80): avc:  denied  { execmem } for  pid=5972 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   61.803806][   T40] audit: type=1400 audit(1756605303.174:81): avc:  denied  { create } for  pid=5976 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.823722][   T40] audit: type=1400 audit(1756605303.174:82): avc:  denied  { read write } for  pid=5976 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   61.831853][   T40] audit: type=1400 audit(1756605303.174:83): avc:  denied  { open } for  pid=5976 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   61.842201][   T40] audit: type=1400 audit(1756605303.194:84): avc:  denied  { ioctl } for  pid=5976 comm="syz-executor" path="socket:[1834]" dev="sockfs" ino=1834 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.869349][ T5985] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   61.876625][ T5987] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   61.879755][ T5986] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   61.880539][ T5987] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   61.883712][ T5986] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   61.885778][ T5987] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   61.888754][ T5986] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   61.890855][ T5987] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   61.893400][ T5989] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   61.895086][ T5989] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   61.895965][ T5986] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   61.896795][ T5987] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   61.897109][ T5986] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   61.905459][   T40] audit: type=1400 audit(1756605303.274:85): avc:  denied  { read } for  pid=5988 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   61.909763][ T5992] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   61.913593][ T5986] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   61.916186][ T5986] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   61.916878][ T5986] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   61.918010][   T40] audit: type=1400 audit(1756605303.274:86): avc:  denied  { open } for  pid=5988 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   61.937016][ T5979] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   61.939942][   T40] audit: type=1400 audit(1756605303.274:87): avc:  denied  { mounton } for  pid=5988 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   61.948138][ T5979] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   61.951645][ T5979] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   62.183773][   T40] audit: type=1400 audit(1756605303.554:88): avc:  denied  { module_request } for  pid=5981 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   62.287051][ T5981] chnl_net:caif_netlink_parms(): no params data found
[   62.350555][ T5988] chnl_net:caif_netlink_parms(): no params data found
[   62.360113][ T5980] chnl_net:caif_netlink_parms(): no params data found
[   62.636958][ T5981] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.640659][ T5981] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.645699][ T5981] bridge_slave_0: entered allmulticast mode
[   62.648666][ T5981] bridge_slave_0: entered promiscuous mode
[   62.653443][ T5981] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.656307][ T5981] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.659841][ T5981] bridge_slave_1: entered allmulticast mode
[   62.664805][ T5981] bridge_slave_1: entered promiscuous mode
[   62.689476][ T5980] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.691953][ T5980] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.694900][ T5980] bridge_slave_0: entered allmulticast mode
[   62.698374][ T5980] bridge_slave_0: entered promiscuous mode
[   62.719695][ T5988] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.722989][ T5988] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.725652][ T5988] bridge_slave_0: entered allmulticast mode
[   62.729460][ T5988] bridge_slave_0: entered promiscuous mode
[   62.769409][ T5980] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.771719][ T5980] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.774725][ T5980] bridge_slave_1: entered allmulticast mode
[   62.777778][ T5980] bridge_slave_1: entered promiscuous mode
[   62.802578][ T5988] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.806234][ T5988] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.808649][ T5988] bridge_slave_1: entered allmulticast mode
[   62.812060][ T5988] bridge_slave_1: entered promiscuous mode
[   62.820171][ T5981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.828019][ T5981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.891331][ T5976] chnl_net:caif_netlink_parms(): no params data found
[   62.925004][ T5980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.951005][ T5981] team0: Port device team_slave_0 added
[   62.956138][ T5980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.961847][ T5988] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.971209][ T5988] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.977331][ T5981] team0: Port device team_slave_1 added
[   63.113097][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.115494][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.126185][ T5981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.132099][ T5980] team0: Port device team_slave_0 added
[   63.150690][ T5988] team0: Port device team_slave_0 added
[   63.154378][ T5988] team0: Port device team_slave_1 added
[   63.156936][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.159356][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.168362][ T5981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.174210][ T5980] team0: Port device team_slave_1 added
[   63.191147][ T5976] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.196029][ T5976] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.200377][ T5976] bridge_slave_0: entered allmulticast mode
[   63.204082][ T5976] bridge_slave_0: entered promiscuous mode
[   63.257680][ T5976] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.260912][ T5976] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.263494][ T5976] bridge_slave_1: entered allmulticast mode
[   63.266346][ T5976] bridge_slave_1: entered promiscuous mode
[   63.342096][ T5988] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.345438][ T5988] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.356752][ T5988] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.389684][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.392294][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.404045][ T5980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.440955][ T5988] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.443353][ T5988] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.451619][ T5988] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.475765][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.478312][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.487519][ T5980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.495689][ T5976] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.506084][ T5976] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.515304][ T5981] hsr_slave_0: entered promiscuous mode
[   63.519287][ T5981] hsr_slave_1: entered promiscuous mode
[   63.714578][ T5976] team0: Port device team_slave_0 added
[   63.748670][ T5980] hsr_slave_0: entered promiscuous mode
[   63.751220][ T5980] hsr_slave_1: entered promiscuous mode
[   63.755574][ T5980] debugfs: 'hsr0' already exists in 'hsr'
[   63.757573][ T5980] Cannot create hsr debugfs directory
[   63.764952][ T5988] hsr_slave_0: entered promiscuous mode
[   63.768245][ T5988] hsr_slave_1: entered promiscuous mode
[   63.771408][ T5988] debugfs: 'hsr0' already exists in 'hsr'
[   63.774493][ T5988] Cannot create hsr debugfs directory
[   63.778771][ T5976] team0: Port device team_slave_1 added
[   63.865283][ T5976] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.868004][ T5976] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.880815][ T5976] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.913478][ T5976] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.913549][ T5979] Bluetooth: hci1: command tx timeout
[   63.913555][   T63] Bluetooth: hci3: command tx timeout
[   63.916205][ T5976] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.931617][ T5976] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.005327][ T5979] Bluetooth: hci2: command tx timeout
[   64.005370][   T63] Bluetooth: hci0: command tx timeout
[   64.076157][ T5976] hsr_slave_0: entered promiscuous mode
[   64.079413][ T5976] hsr_slave_1: entered promiscuous mode
[   64.082533][ T5976] debugfs: 'hsr0' already exists in 'hsr'
[   64.085215][ T5976] Cannot create hsr debugfs directory
[   64.281776][ T5981] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   64.310560][ T5981] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   64.331263][ T5981] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   64.343897][ T5981] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   64.396723][ T5980] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   64.404975][ T5980] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   64.411611][ T5980] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   64.416743][ T5980] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   64.481754][ T5988] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   64.496962][ T5988] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   64.502267][ T5988] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   64.508881][ T5988] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   64.569703][ T5976] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   64.574825][ T5976] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   64.580141][ T5976] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   64.586036][ T5976] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   64.613444][ T5981] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.643877][ T5981] 8021q: adding VLAN 0 to HW filter on device team0
[   64.663192][ T5980] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.671229][ T1236] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.673998][ T1236] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.694377][ T1236] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.698217][ T1236] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.731805][ T5980] 8021q: adding VLAN 0 to HW filter on device team0
[   64.744052][ T1236] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.747179][ T1236] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.761770][ T5988] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.779910][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.782244][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.797909][ T5988] 8021q: adding VLAN 0 to HW filter on device team0
[   64.814507][ T1236] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.817842][ T1236] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.846265][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.849227][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.879306][ T5976] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.883202][ T5980] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   64.885102][   T40] audit: type=1400 audit(1756605306.254:89): avc:  denied  { sys_module } for  pid=5981 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   64.920005][ T5988] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   64.931197][ T5976] 8021q: adding VLAN 0 to HW filter on device team0
[   64.941781][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.944159][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.961991][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.964708][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.005825][ T5981] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.043579][ T5981] veth0_vlan: entered promiscuous mode
[   65.055224][ T5981] veth1_vlan: entered promiscuous mode
[   65.064179][ T5980] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.107660][ T5981] veth0_macvtap: entered promiscuous mode
[   65.115399][ T5981] veth1_macvtap: entered promiscuous mode
[   65.126721][ T5988] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.137639][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.149656][ T5980] veth0_vlan: entered promiscuous mode
[   65.156681][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.173034][ T5980] veth1_vlan: entered promiscuous mode
[   65.176470][ T1146] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.179519][ T1146] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.189114][ T1146] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.195714][   T80] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.215457][ T5976] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.250323][ T5988] veth0_vlan: entered promiscuous mode
[   65.276378][ T5988] veth1_vlan: entered promiscuous mode
[   65.285492][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.288333][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.301210][ T5976] veth0_vlan: entered promiscuous mode
[   65.319030][ T5980] veth0_macvtap: entered promiscuous mode
[   65.329437][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.330618][ T5976] veth1_vlan: entered promiscuous mode
[   65.332273][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.336463][ T5980] veth1_macvtap: entered promiscuous mode
[   65.353292][ T5988] veth0_macvtap: entered promiscuous mode
[   65.360385][ T5988] veth1_macvtap: entered promiscuous mode
[   65.374266][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.378406][ T5988] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.397151][ T5988] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.399051][ T5981] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   65.408196][ T1236] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.415174][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.425082][ T1236] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.428926][ T1236] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.437464][ T5976] veth0_macvtap: entered promiscuous mode
[   65.452163][ T1236] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.456609][ T1236] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.461983][ T5976] veth1_macvtap: entered promiscuous mode
[   65.472977][ T1236] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.476164][ T1236] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.477306][ T6062] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1'.
[   65.485030][ T1236] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.495900][ T5976] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.531222][ T5976] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.557212][ T1145] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.571257][ T1236] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.575893][ T1236] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.575963][ T1145] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.582568][ T1145] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.599484][ T1145] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.635016][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.638275][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.660161][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.663925][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.688725][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.693725][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.706329][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.710118][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.738543][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.741247][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.793818][ T6073] block nbd2: Attempted send on invalid socket
[   65.796097][ T6073] I/O error, dev nbd2, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.799870][ T6073] block nbd2: Attempted send on invalid socket
[   65.802315][ T6073] I/O error, dev nbd2, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.802993][ T6075] 9pnet_fd: Insufficient options for proto=fd
[   65.808159][ T6073] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[   65.814664][ T6073] block nbd2: Attempted send on invalid socket
[   65.817337][ T6073] I/O error, dev nbd2, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.822017][ T6073] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[   65.829469][ T6073] block nbd2: Attempted send on invalid socket
[   65.840172][ T6073] I/O error, dev nbd2, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.850434][  T117] block nbd2: Attempted send on invalid socket
[   65.852393][  T117] I/O error, dev nbd2, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.859548][ T6073] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[   65.865580][ T6073] block nbd2: Attempted send on invalid socket
[   65.868197][ T6073] I/O error, dev nbd2, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.875798][ T6073] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[   65.879718][ T6073] block nbd2: Attempted send on invalid socket
[   65.881797][ T6073] I/O error, dev nbd2, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.886360][ T6073] block nbd2: Attempted send on invalid socket
[   65.888310][ T6073] I/O error, dev nbd2, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.891214][ T6073] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[   65.895791][ T6073] block nbd2: Attempted send on invalid socket
[   65.897918][ T6073] I/O error, dev nbd2, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.902250][ T6073] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[   65.904867][ T6082] bond1: entered promiscuous mode
[   65.908702][ T6073] block nbd2: Attempted send on invalid socket
[   65.910748][ T6073] I/O error, dev nbd2, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.916012][ T6073] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[   65.920877][ T6073] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[   65.924079][ T6073] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[   65.956851][ T6087] input: syz1 as /devices/virtual/input/input5
[   65.978610][ T6091] process 'syz.2.10' launched './file0' with NULL argv: empty string added
[   65.993059][   T63] Bluetooth: hci3: command tx timeout
[   65.994470][ T5979] Bluetooth: hci1: command tx timeout
[   66.043088][ T6044] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   66.073159][ T5979] Bluetooth: hci0: command tx timeout
[   66.083225][ T5979] Bluetooth: hci2: command tx timeout
[   66.097650][ T6103] binder: 6102:6103 ioctl c0306201 200000000080 returned -14
[   66.143897][ T6107] =======================================================
[   66.143897][ T6107] WARNING: The mand mount option has been deprecated and
[   66.143897][ T6107]          and is ignored by this kernel. Remove the mand
[   66.143897][ T6107]          option from the mount to silence this warning.
[   66.143897][ T6107] =======================================================
[   66.160989][ T6107] 9pnet_virtio: no channels available for device syz
[   66.167042][ T6106] Bluetooth: MGMT ver 1.23
[   66.206554][ T6044] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   66.212219][ T6044] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   66.215949][ T6044] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   66.219192][ T6044] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.227364][ T6071] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   66.241646][ T6044] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   66.493257][ T6067] usb 6-1: USB disconnect, device number 2
[   66.602360][ T6132] mmap: syz.3.23 (6132) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   66.703834][   T40] kauditd_printk_skb: 85 callbacks suppressed
[   66.703850][   T40] audit: type=1400 audit(1756605308.074:175): avc:  denied  { create } for  pid=6136 comm="syz.3.25" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   66.708662][ T6137] netlink: 'syz.3.25': attribute type 11 has an invalid length.
[   66.716481][   T40] audit: type=1400 audit(1756605308.074:176): avc:  denied  { create } for  pid=6136 comm="syz.3.25" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   66.756473][   T40] audit: type=1400 audit(1756605308.124:177): avc:  denied  { create } for  pid=6138 comm="syz.0.26" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   66.766585][   T40] audit: type=1400 audit(1756605308.124:178): avc:  denied  { create } for  pid=6138 comm="syz.0.26" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   66.766807][ T6145] syz.3.27 uses obsolete (PF_INET,SOCK_PACKET)
[   66.779722][   T40] audit: type=1400 audit(1756605308.144:179): avc:  denied  { create } for  pid=6142 comm="syz.3.27" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   66.786346][   T40] audit: type=1400 audit(1756605308.144:180): avc:  denied  { ioctl } for  pid=6142 comm="syz.3.27" path="socket:[11343]" dev="sockfs" ino=11343 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   66.839352][ T6143] syzkaller1: entered promiscuous mode
[   66.841442][ T6143] syzkaller1: entered allmulticast mode
[   66.884309][   T40] audit: type=1400 audit(1756605308.254:181): avc:  denied  { remount } for  pid=6147 comm="syz.0.29" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   66.888004][ T6148] ata1.00: invalid multi_count 1 ignored
[   66.893514][   T40] audit: type=1400 audit(1756605308.254:182): avc:  denied  { read write } for  pid=6147 comm="syz.0.29" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   66.904144][   T40] audit: type=1400 audit(1756605308.254:183): avc:  denied  { open } for  pid=6147 comm="syz.0.29" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   66.912121][   T40] audit: type=1400 audit(1756605308.254:184): avc:  denied  { ioctl } for  pid=6147 comm="syz.0.29" path="/dev/sg0" dev="devtmpfs" ino=721 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   66.943109][ T6152] warning: `syz.0.29' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   67.122174][ T6170] netlink: 'syz.3.35': attribute type 62 has an invalid length.
[   67.296926][ T6186] netlink: 8 bytes leftover after parsing attributes in process `syz.1.39'.
[   67.339597][ T6194] netlink: 'syz.2.41': attribute type 1 has an invalid length.
[   67.345051][ T6194] netlink: 'syz.2.41': attribute type 1 has an invalid length.
[   67.348842][ T6194] netlink: 160 bytes leftover after parsing attributes in process `syz.2.41'.
[   67.351944][ T6194] netlink: 'syz.2.41': attribute type 1 has an invalid length.
[   67.355903][ T6194] netlink: 12 bytes leftover after parsing attributes in process `syz.2.41'.
[   67.553023][ T6024] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   67.611494][ T6210] netlink: 12 bytes leftover after parsing attributes in process `+\{]'.
[   67.713443][ T6024] usb 6-1: Using ep0 maxpacket: 8
[   67.717808][ T6024] usb 6-1: config index 0 descriptor too short (expected 74, got 45)
[   67.721264][ T6024] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[   67.727158][ T6024] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   67.731552][ T6024] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[   67.737850][ T6024] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[   67.742358][ T6024] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   67.748411][ T6024] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   67.751639][ T6216] 9pnet_virtio: no channels available for device syz
[   67.755016][ T6024] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   67.758370][ T6219] netlink: 96 bytes leftover after parsing attributes in process `syz.0.46'.
[   67.820769][ T6221] loop3: detected capacity change from 0 to 1
[   67.828332][ T6221] Dev loop3: unable to read RDB block 1
[   67.831583][ T6221]  loop3: unable to read partition table
[   67.835225][ T6221] loop3: partition table beyond EOD, truncated
[   67.839549][ T6221] loop_reread_partitions: partition scan of loop3 (�被x������ ) failed (rc=-5)
[   67.870593][ T6221] program syz.2.48 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   67.966656][ T6024] usb 6-1: GET_CAPABILITIES returned 0
[   67.969405][ T6024] usbtmc 6-1:16.0: can't read capabilities
[   68.004877][ T6225] netlink: 12 bytes leftover after parsing attributes in process `syz.2.49'.
[   68.008666][ T5971] usb 6-1: USB disconnect, device number 3
[   68.072954][ T5979] Bluetooth: hci1: command tx timeout
[   68.114130][ T6234] Zero length message leads to an empty skb
[   68.165552][   T63] Bluetooth: hci0: command tx timeout
[   68.165651][ T5979] Bluetooth: hci2: command tx timeout
[   68.262368][ T6246] netlink: 4 bytes leftover after parsing attributes in process `syz.1.56'.
[   68.286384][   T34] hid-generic 0CB4:0046:0005.0002: item fetching failed at offset 3/4
[   68.287780][ T6251] netlink: 24 bytes leftover after parsing attributes in process `syz.3.53'.
[   68.290584][   T34] hid-generic 0CB4:0046:0005.0002: probe with driver hid-generic failed with error -22
[   68.296255][ T6251] netlink: 24 bytes leftover after parsing attributes in process `syz.3.53'.
[   68.340890][   T63] Bluetooth: Unexpected start frame (len 10)
[   68.405473][ T6261] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   68.408233][ T6261] overlayfs: failed to set xattr on upper
[   68.410398][ T6261] overlayfs: ...falling back to redirect_dir=nofollow.
[   68.414622][ T6261] overlayfs: ...falling back to index=off.
[   68.417082][ T6264] 9pnet_virtio: no channels available for device syz
[   68.421697][ T6261] overlayfs: ...falling back to uuid=null.
[   68.437545][ T6261] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   68.441209][ T6261] overlayfs: failed to set xattr on upper
[   68.450112][ T6261] overlayfs: ...falling back to redirect_dir=nofollow.
[   68.452360][ T6261] overlayfs: ...falling back to index=off.
[   68.455003][ T6261] overlayfs: ...falling back to uuid=null.
[   68.655190][ T6294] 9pnet_virtio: no channels available for device syz
[   68.891716][ T6352] capability: warning: `syz.0.81' uses 32-bit capabilities (legacy support in use)
[   68.909292][ T6357] 9pnet_virtio: no channels available for device syz
[   68.922197][ T6359] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   68.953595][   T63] Bluetooth: hci3: command tx timeout
[   68.969198][ T6365] binder: 6362:6365 ioctl 4018620d 0 returned -22
[   69.661120][   T63] Bluetooth: hci3: SCO packet too small
[   69.832201][ T6416] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   69.873740][   T63] Bluetooth: Unexpected start frame (len 10)
[   69.977129][ T6423] bridge0: entered promiscuous mode
[   70.148973][ T6436] kvm: kvm [6435]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7
[   70.155004][ T6436] kvm: kvm [6435]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7
[   70.233196][   T63] Bluetooth: hci0: command tx timeout
[   70.233370][ T5979] Bluetooth: hci2: command tx timeout
[   70.266891][ T6450] tipc: Started in network mode
[   70.269562][ T6450] tipc: Node identity ffecff00000000000000000000000001, cluster identity 4711
[   70.273880][ T6450] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   70.347246][ T6462] 9pnet_virtio: no channels available for device syz
[   70.563288][ T1024] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   70.585625][ T6472] netlink: 'syz.0.115': attribute type 1 has an invalid length.
[   70.589762][ T6472] netlink: 'syz.0.115': attribute type 2 has an invalid length.
[   70.596487][ T6472] netlink: 'syz.0.115': attribute type 2 has an invalid length.
[   70.599948][ T6472] netlink: 'syz.0.115': attribute type 1 has an invalid length.
[   70.673749][ T6476] __nla_validate_parse: 13 callbacks suppressed
[   70.673769][ T6476] netlink: 24 bytes leftover after parsing attributes in process `syz.0.117'.
[   70.680677][ T6476] netlink: 24 bytes leftover after parsing attributes in process `syz.0.117'.
[   70.725048][ T1024] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   70.729584][ T1024] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   70.733718][ T1024] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[   70.736978][ T1024] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   70.743446][ T6478] netlink: 68 bytes leftover after parsing attributes in process `syz.0.118'.
[   70.744157][ T1024] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   70.750384][ T1024] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   70.752993][ T1024] usb 8-1: Product: syz
[   70.755990][ T1024] usb 8-1: Manufacturer: syz
[   70.767600][ T1024] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22
[   71.039380][   T55] usb 8-1: USB disconnect, device number 2
[   71.078974][ T6493] netlink: 68 bytes leftover after parsing attributes in process `syz.2.123'.
[   71.135702][ T6501] netlink: 24 bytes leftover after parsing attributes in process `syz.2.126'.
[   71.139242][ T6501] netlink: 24 bytes leftover after parsing attributes in process `syz.2.126'.
[   71.168173][ T5979] Bluetooth: Unexpected start frame (len 10)
[   71.313496][ T6518] netlink: 32 bytes leftover after parsing attributes in process `syz.0.131'.
[   71.562967][   T34] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   71.571825][ T6520] 9pnet_virtio: no channels available for device syz
[   71.617159][ T6522] 9pnet_virtio: no channels available for device syz
[   71.620140][ T6522] FAULT_INJECTION: forcing a failure.
[   71.620140][ T6522] name failslab, interval 1, probability 0, space 0, times 1
[   71.624554][ T6522] CPU: 1 UID: 0 PID: 6522 Comm: syz.3.133 Not tainted syzkaller #0 PREEMPT(full) 
[   71.624571][ T6522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   71.624578][ T6522] Call Trace:
[   71.624582][ T6522]  <TASK>
[   71.624586][ T6522]  dump_stack_lvl+0x16c/0x1f0
[   71.624604][ T6522]  should_fail_ex+0x512/0x640
[   71.624618][ T6522]  ? fs_reclaim_acquire+0xae/0x150
[   71.624635][ T6522]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   71.624654][ T6522]  should_failslab+0xc2/0x120
[   71.624667][ T6522]  __kmalloc_noprof+0xd2/0x510
[   71.624683][ T6522]  tomoyo_realpath_from_path+0xc2/0x6e0
[   71.624701][ T6522]  ? tomoyo_profile+0x47/0x60
[   71.624713][ T6522]  tomoyo_path_number_perm+0x245/0x580
[   71.624727][ T6522]  ? tomoyo_path_number_perm+0x237/0x580
[   71.624743][ T6522]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   71.624758][ T6522]  ? find_held_lock+0x2b/0x80
[   71.624785][ T6522]  ? find_held_lock+0x2b/0x80
[   71.624798][ T6522]  ? hook_file_ioctl_common+0x145/0x410
[   71.624813][ T6522]  ? __fget_files+0x20e/0x3c0
[   71.624829][ T6522]  security_file_ioctl+0x9b/0x240
[   71.624847][ T6522]  __x64_sys_ioctl+0xb7/0x210
[   71.624865][ T6522]  do_syscall_64+0xcd/0x4c0
[   71.624880][ T6522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.624892][ T6522] RIP: 0033:0x7fb740f8ebe9
[   71.624902][ T6522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.624913][ T6522] RSP: 002b:00007fb741d95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   71.624924][ T6522] RAX: ffffffffffffffda RBX: 00007fb7411c5fa0 RCX: 00007fb740f8ebe9
[   71.624931][ T6522] RDX: 0000200000000240 RSI: 00000000c0189374 RDI: 0000000000000003
[   71.624938][ T6522] RBP: 00007fb741d95090 R08: 0000000000000000 R09: 0000000000000000
[   71.624944][ T6522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.624951][ T6522] R13: 00007fb7411c6038 R14: 00007fb7411c5fa0 R15: 00007ffc2e7209d8
[   71.624965][ T6522]  </TASK>
[   71.625304][ T6522] ERROR: Out of memory at tomoyo_realpath_from_path.
[   71.713968][   T34] usb 5-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[   71.717471][   T34] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   71.720958][   T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.750905][   T40] kauditd_printk_skb: 123 callbacks suppressed
[   71.750915][   T40] audit: type=1400 audit(1756605313.114:308): avc:  denied  { create } for  pid=6524 comm="syz.3.134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   71.809599][   T40] audit: type=1400 audit(1756605313.174:309): avc:  denied  { setopt } for  pid=6524 comm="syz.3.134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   71.816736][   T40] audit: type=1400 audit(1756605313.174:310): avc:  denied  { connect } for  pid=6524 comm="syz.3.134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   71.826003][   T40] audit: type=1400 audit(1756605313.174:311): avc:  denied  { write } for  pid=6524 comm="syz.3.134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   71.849522][   T40] audit: type=1400 audit(1756605313.214:312): avc:  denied  { remount } for  pid=6532 comm="syz.3.135" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   71.856453][   T40] audit: type=1400 audit(1756605313.224:313): avc:  denied  { mount } for  pid=6532 comm="syz.3.135" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   71.857207][ T6533] 9pnet_virtio: no channels available for device syz
[   71.939314][   T34] usb 5-1: string descriptor 0 read error: -71
[   71.942288][   T34] usb 5-1: USB disconnect, device number 2
[   72.029705][   T40] audit: type=1400 audit(1756605313.394:314): avc:  denied  { create } for  pid=6534 comm="syz.3.136" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   72.038792][   T40] audit: type=1400 audit(1756605313.404:315): avc:  denied  { read } for  pid=6534 comm="syz.3.136" name="fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   72.049505][   T40] audit: type=1400 audit(1756605313.404:316): avc:  denied  { open } for  pid=6534 comm="syz.3.136" path="/dev/fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   72.049543][   T40] audit: type=1400 audit(1756605313.404:317): avc:  denied  { ioctl } for  pid=6534 comm="syz.3.136" path="/dev/fb1" dev="devtmpfs" ino=640 ioctlcmd=0x460f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   72.070872][ T6535] (syz.3.136,6535,2):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   72.074753][ T6535] (syz.3.136,6535,3):ocfs2_fill_super:1177 ERROR: status = -22
[   72.097783][ T6542] netlink: 24 bytes leftover after parsing attributes in process `syz.2.137'.
[   72.101868][ T6542] netlink: 24 bytes leftover after parsing attributes in process `syz.2.137'.
[   72.312986][ T5979] Bluetooth: hci0: command tx timeout
[   72.763348][ T6557] 9pnet_virtio: no channels available for device syz
[   72.766740][ T6557] FAULT_INJECTION: forcing a failure.
[   72.766740][ T6557] name failslab, interval 1, probability 0, space 0, times 0
[   72.771040][ T6557] CPU: 3 UID: 0 PID: 6557 Comm: syz.3.143 Not tainted syzkaller #0 PREEMPT(full) 
[   72.771059][ T6557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.771067][ T6557] Call Trace:
[   72.771073][ T6557]  <TASK>
[   72.771079][ T6557]  dump_stack_lvl+0x16c/0x1f0
[   72.771099][ T6557]  should_fail_ex+0x512/0x640
[   72.771115][ T6557]  ? fs_reclaim_acquire+0xae/0x150
[   72.771134][ T6557]  ? tomoyo_encode2+0x100/0x3e0
[   72.771153][ T6557]  should_failslab+0xc2/0x120
[   72.771169][ T6557]  __kmalloc_noprof+0xd2/0x510
[   72.771182][ T6557]  ? d_absolute_path+0x136/0x1a0
[   72.771204][ T6557]  tomoyo_encode2+0x100/0x3e0
[   72.771225][ T6557]  tomoyo_encode+0x29/0x50
[   72.771243][ T6557]  tomoyo_realpath_from_path+0x18f/0x6e0
[   72.771268][ T6557]  tomoyo_path_number_perm+0x245/0x580
[   72.771284][ T6557]  ? tomoyo_path_number_perm+0x237/0x580
[   72.771304][ T6557]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   72.771329][ T6557]  ? find_held_lock+0x2b/0x80
[   72.771367][ T6557]  ? find_held_lock+0x2b/0x80
[   72.771384][ T6557]  ? hook_file_ioctl_common+0x145/0x410
[   72.771402][ T6557]  ? __fget_files+0x20e/0x3c0
[   72.771422][ T6557]  security_file_ioctl+0x9b/0x240
[   72.771444][ T6557]  __x64_sys_ioctl+0xb7/0x210
[   72.771467][ T6557]  do_syscall_64+0xcd/0x4c0
[   72.771490][ T6557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.771505][ T6557] RIP: 0033:0x7fb740f8ebe9
[   72.771518][ T6557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.771531][ T6557] RSP: 002b:00007fb741d95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   72.771545][ T6557] RAX: ffffffffffffffda RBX: 00007fb7411c5fa0 RCX: 00007fb740f8ebe9
[   72.771554][ T6557] RDX: 0000200000000240 RSI: 00000000c0189374 RDI: 0000000000000003
[   72.771563][ T6557] RBP: 00007fb741d95090 R08: 0000000000000000 R09: 0000000000000000
[   72.771571][ T6557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.771579][ T6557] R13: 00007fb7411c6038 R14: 00007fb7411c5fa0 R15: 00007ffc2e7209d8
[   72.771597][ T6557]  </TASK>
[   72.771614][ T6557] ERROR: Out of memory at tomoyo_realpath_from_path.
[   72.885175][ T5979] Bluetooth: Unexpected start frame (len 10)
[   72.939648][ T6561] 9pnet_virtio: no channels available for device syz
[   73.178258][ T6575] netlink: 24 bytes leftover after parsing attributes in process `syz.0.148'.
[   73.350198][ T6584] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[   73.354592][ T6584] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[   73.547290][ T6592] FAULT_INJECTION: forcing a failure.
[   73.547290][ T6592] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   73.552400][ T6592] CPU: 3 UID: 0 PID: 6592 Comm: syz.0.154 Not tainted syzkaller #0 PREEMPT(full) 
[   73.552423][ T6592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.552432][ T6592] Call Trace:
[   73.552441][ T6592]  <TASK>
[   73.552448][ T6592]  dump_stack_lvl+0x16c/0x1f0
[   73.552472][ T6592]  should_fail_ex+0x512/0x640
[   73.552493][ T6592]  _copy_from_user+0x2e/0xd0
[   73.552514][ T6592]  _autofs_dev_ioctl+0x117/0xb40
[   73.552535][ T6592]  ? hook_file_ioctl_common+0x145/0x410
[   73.552552][ T6592]  ? __pfx__autofs_dev_ioctl+0x10/0x10
[   73.552577][ T6592]  ? selinux_file_ioctl+0x180/0x270
[   73.552598][ T6592]  ? selinux_file_ioctl+0xb4/0x270
[   73.552621][ T6592]  autofs_dev_ioctl+0x1a/0x30
[   73.552640][ T6592]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   73.552678][ T6592]  __x64_sys_ioctl+0x18b/0x210
[   73.552705][ T6592]  do_syscall_64+0xcd/0x4c0
[   73.552724][ T6592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.552740][ T6592] RIP: 0033:0x7f9ec878ebe9
[   73.552753][ T6592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.552767][ T6592] RSP: 002b:00007f9ec9601038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   73.552782][ T6592] RAX: ffffffffffffffda RBX: 00007f9ec89c5fa0 RCX: 00007f9ec878ebe9
[   73.552792][ T6592] RDX: 0000200000000240 RSI: 00000000c0189374 RDI: 0000000000000003
[   73.552800][ T6592] RBP: 00007f9ec9601090 R08: 0000000000000000 R09: 0000000000000000
[   73.552809][ T6592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.552817][ T6592] R13: 00007f9ec89c6038 R14: 00007f9ec89c5fa0 R15: 00007ffc2b0facf8
[   73.552835][ T6592]  </TASK>
[   73.750597][ T6597] netlink: 'syz.3.156': attribute type 1 has an invalid length.
[   73.753202][ T6597] netlink: 'syz.3.156': attribute type 4 has an invalid length.
[   73.756540][ T6595] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[   73.903525][ T6608] overlay: filesystem on ./bus not supported as upperdir
[   73.978988][ T6614] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   74.056358][ T5979] Bluetooth: Unexpected start frame (len 10)
[   74.133089][ T6619] 9pnet_virtio: no channels available for device syz
[   74.200447][ T6625] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[   74.207998][ T6625] 9pnet_virtio: no channels available for device syz
[   74.243789][ T6628] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=4012402100 (32099216800 ns) > initial count (12556981776 ns). Using initial count to start timer.
[   74.292364][ T6629] /dev/sg0: Can't lookup blockdev
[   74.562346][ T6638] 9pnet_virtio: no channels available for device syz
[   74.938658][ T6646] tmpfs: Bad value for 'mpol'
[   75.149549][ T6662] netlink: 'syz.0.182': attribute type 21 has an invalid length.
[   75.191849][ T6664] SELinux: failure in selinux_parse_skb(), unable to parse packet
[   75.233755][ T5979] Bluetooth: Unexpected start frame (len 10)
[   75.838637][ T6672] 9pnet_virtio: no channels available for device syz
[   75.843923][ T6672] FAULT_INJECTION: forcing a failure.
[   75.843923][ T6672] name failslab, interval 1, probability 0, space 0, times 0
[   75.851197][ T6672] CPU: 0 UID: 0 PID: 6672 Comm: syz.2.186 Not tainted syzkaller #0 PREEMPT(full) 
[   75.851238][ T6672] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.851247][ T6672] Call Trace:
[   75.851253][ T6672]  <TASK>
[   75.851260][ T6672]  dump_stack_lvl+0x16c/0x1f0
[   75.851287][ T6672]  should_fail_ex+0x512/0x640
[   75.851307][ T6672]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   75.851328][ T6672]  should_failslab+0xc2/0x120
[   75.851350][ T6672]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   75.851366][ T6672]  ? getname_kernel+0x52/0x370
[   75.851390][ T6672]  getname_kernel+0x52/0x370
[   75.851415][ T6672]  kern_path+0x1d/0x50
[   75.851435][ T6672]  autofs_dev_ioctl_openmount+0x167/0x490
[   75.851465][ T6672]  ? __pfx_autofs_dev_ioctl_openmount+0x10/0x10
[   75.851497][ T6672]  ? _copy_from_user+0x59/0xd0
[   75.851521][ T6672]  ? __pfx_autofs_dev_ioctl_openmount+0x10/0x10
[   75.851546][ T6672]  _autofs_dev_ioctl+0x3cf/0xb40
[   75.851572][ T6672]  ? __pfx__autofs_dev_ioctl+0x10/0x10
[   75.851600][ T6672]  ? selinux_file_ioctl+0x180/0x270
[   75.851623][ T6672]  ? selinux_file_ioctl+0xb4/0x270
[   75.851650][ T6672]  autofs_dev_ioctl+0x1a/0x30
[   75.851672][ T6672]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   75.851696][ T6672]  __x64_sys_ioctl+0x18b/0x210
[   75.851722][ T6672]  do_syscall_64+0xcd/0x4c0
[   75.851746][ T6672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.851762][ T6672] RIP: 0033:0x7fab5db8ebe9
[   75.851778][ T6672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.851795][ T6672] RSP: 002b:00007fab5e9c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.851812][ T6672] RAX: ffffffffffffffda RBX: 00007fab5ddc5fa0 RCX: 00007fab5db8ebe9
[   75.851821][ T6672] RDX: 0000200000000240 RSI: 00000000c0189374 RDI: 0000000000000003
[   75.851833][ T6672] RBP: 00007fab5e9c5090 R08: 0000000000000000 R09: 0000000000000000
[   75.851843][ T6672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.851853][ T6672] R13: 00007fab5ddc6038 R14: 00007fab5ddc5fa0 R15: 00007ffc79ea03c8
[   75.851878][ T6672]  </TASK>
[   75.984520][ T6674] netlink: 'syz.2.187': attribute type 16 has an invalid length.
[   75.986933][ T6674] netlink: 'syz.2.187': attribute type 17 has an invalid length.
[   76.017733][ T6674] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.021559][ T6674] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.088695][ T6674] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   76.101744][ T6674] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   76.231318][ T6318] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   76.234779][ T6318] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   76.238189][ T6318] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   76.243352][ T6318] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   76.251881][ T6689] __nla_validate_parse: 13 callbacks suppressed
[   76.251895][ T6689] netlink: 24 bytes leftover after parsing attributes in process `syz.0.190'.
[   76.259119][ T6689] netlink: 24 bytes leftover after parsing attributes in process `syz.0.190'.
[   76.305097][ T6698] tipc: Enabling of bearer <ud#:s> rejected, media not registered
[   76.320575][ T6701] FAULT_INJECTION: forcing a failure.
[   76.320575][ T6701] name failslab, interval 1, probability 0, space 0, times 0
[   76.332410][ T6701] CPU: 1 UID: 0 PID: 6701 Comm: syz.2.195 Not tainted syzkaller #0 PREEMPT(full) 
[   76.332463][ T6701] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.332470][ T6701] Call Trace:
[   76.332475][ T6701]  <TASK>
[   76.332480][ T6701]  dump_stack_lvl+0x16c/0x1f0
[   76.332497][ T6701]  should_fail_ex+0x512/0x640
[   76.332512][ T6701]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   76.332525][ T6701]  should_failslab+0xc2/0x120
[   76.332539][ T6701]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   76.332551][ T6701]  ? getname_kernel+0x52/0x370
[   76.332568][ T6701]  getname_kernel+0x52/0x370
[   76.332586][ T6701]  kern_path+0x1d/0x50
[   76.332597][ T6701]  autofs_dev_ioctl_openmount+0x167/0x490
[   76.332617][ T6701]  ? __pfx_autofs_dev_ioctl_openmount+0x10/0x10
[   76.332643][ T6701]  ? _copy_from_user+0x59/0xd0
[   76.332685][ T6701]  ? __pfx_autofs_dev_ioctl_openmount+0x10/0x10
[   76.332703][ T6701]  _autofs_dev_ioctl+0x3cf/0xb40
[   76.332723][ T6701]  ? __pfx__autofs_dev_ioctl+0x10/0x10
[   76.332748][ T6701]  ? selinux_file_ioctl+0x180/0x270
[   76.332767][ T6701]  ? selinux_file_ioctl+0xb4/0x270
[   76.332785][ T6701]  autofs_dev_ioctl+0x1a/0x30
[   76.332799][ T6701]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   76.332814][ T6701]  __x64_sys_ioctl+0x18b/0x210
[   76.332839][ T6701]  do_syscall_64+0xcd/0x4c0
[   76.332858][ T6701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.332870][ T6701] RIP: 0033:0x7fab5db8ebe9
[   76.332884][ T6701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.332899][ T6701] RSP: 002b:00007fab5e9c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.332914][ T6701] RAX: ffffffffffffffda RBX: 00007fab5ddc5fa0 RCX: 00007fab5db8ebe9
[   76.332921][ T6701] RDX: 0000200000000240 RSI: 00000000c0189374 RDI: 0000000000000003
[   76.332928][ T6701] RBP: 00007fab5e9c5090 R08: 0000000000000000 R09: 0000000000000000
[   76.332934][ T6701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.332940][ T6701] R13: 00007fab5ddc6038 R14: 00007fab5ddc5fa0 R15: 00007ffc79ea03c8
[   76.332956][ T6701]  </TASK>
[   76.420030][    C1] vkms_vblank_simulate: vblank timer overrun
[   76.540756][ T6717] 9pnet_virtio: no channels available for device syz
[   76.544604][ T6716] delete_channel: no stack
[   76.626637][ T6725] netlink: 24 bytes leftover after parsing attributes in process `syz.2.203'.
[   76.629983][ T6725] netlink: 24 bytes leftover after parsing attributes in process `syz.2.203'.
[   76.654510][ T6727] netlink: 4 bytes leftover after parsing attributes in process `syz.3.204'.
[   76.692549][ T6731] 9pnet_virtio: no channels available for device syz
[   76.697266][ T6731] FAULT_INJECTION: forcing a failure.
[   76.697266][ T6731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.702217][ T6731] CPU: 0 UID: 0 PID: 6731 Comm: syz.3.206 Not tainted syzkaller #0 PREEMPT(full) 
[   76.702234][ T6731] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.702241][ T6731] Call Trace:
[   76.702248][ T6731]  <TASK>
[   76.702254][ T6731]  dump_stack_lvl+0x16c/0x1f0
[   76.702274][ T6731]  should_fail_ex+0x512/0x640
[   76.702291][ T6731]  _copy_from_user+0x2e/0xd0
[   76.702307][ T6731]  kstrtouint_from_user+0xd6/0x1d0
[   76.702319][ T6731]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   76.702329][ T6731]  ? __lock_acquire+0xb97/0x1ce0
[   76.702355][ T6731]  proc_fail_nth_write+0x83/0x220
[   76.702370][ T6731]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   76.702388][ T6731]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   76.702400][ T6731]  vfs_write+0x29d/0x11d0
[   76.702415][ T6731]  ? __pfx___mutex_lock+0x10/0x10
[   76.702430][ T6731]  ? __pfx_vfs_write+0x10/0x10
[   76.702446][ T6731]  ? __fget_files+0x20e/0x3c0
[   76.702463][ T6731]  ksys_write+0x12a/0x250
[   76.702475][ T6731]  ? __pfx_ksys_write+0x10/0x10
[   76.702487][ T6731]  ? fput+0x9b/0xd0
[   76.702505][ T6731]  do_syscall_64+0xcd/0x4c0
[   76.702526][ T6731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.702538][ T6731] RIP: 0033:0x7fb740f8d69f
[   76.702548][ T6731] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   76.702559][ T6731] RSP: 002b:00007fb741d95030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   76.702571][ T6731] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb740f8d69f
[   76.702578][ T6731] RDX: 0000000000000001 RSI: 00007fb741d950a0 RDI: 0000000000000004
[   76.702584][ T6731] RBP: 00007fb741d95090 R08: 0000000000000000 R09: 0000000000000000
[   76.702591][ T6731] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   76.702597][ T6731] R13: 00007fb7411c6038 R14: 00007fb7411c5fa0 R15: 00007ffc2e7209d8
[   76.702612][ T6731]  </TASK>
[   76.730099][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[   76.794523][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[   76.821633][   T40] kauditd_printk_skb: 41 callbacks suppressed
[   76.821650][   T40] audit: type=1400 audit(1756605318.184:359): avc:  denied  { map } for  pid=6734 comm="syz.2.208" path="socket:[10996]" dev="sockfs" ino=10996 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   76.836527][   T40] audit: type=1400 audit(1756605318.194:360): avc:  denied  { read } for  pid=6734 comm="syz.2.208" path="socket:[10996]" dev="sockfs" ino=10996 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   76.882207][ T6735] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[   76.892222][   T40] audit: type=1400 audit(1756605318.254:361): avc:  denied  { read } for  pid=6734 comm="syz.2.208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   76.897064][ T1145] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[   76.944250][ T6741] netlink: 4 bytes leftover after parsing attributes in process `syz.2.208'.
[   76.952036][ T6741] netlink: 'syz.2.208': attribute type 15 has an invalid length.
[   77.045583][   T40] audit: type=1400 audit(1756605318.414:362): avc:  denied  { getopt } for  pid=6744 comm="syz.3.211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   77.404678][ T6749] openvswitch: netlink: Missing key (keys=40, expected=200000)
[   77.407698][ T6751] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6751 comm=syz.0.212
[   77.455875][ T6753] netlink: 24 bytes leftover after parsing attributes in process `syz.0.213'.
[   77.459677][ T6753] netlink: 24 bytes leftover after parsing attributes in process `syz.0.213'.
[   77.576845][   T40] audit: type=1400 audit(1756605318.944:363): avc:  denied  { mounton } for  pid=6756 comm="syz.0.215" path="/68/file0" dev="9p" ino=35913883 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   77.579857][ T6757] 9pnet_virtio: no channels available for device syz
[   77.831644][   T40] audit: type=1400 audit(1756605319.194:364): avc:  denied  { watch watch_reads } for  pid=6766 comm="syz.2.218" path="pipe:[11012]" dev="pipefs" ino=11012 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   77.891445][   T40] audit: type=1400 audit(1756605319.254:365): avc:  denied  { execute } for  pid=6766 comm="syz.2.218" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=13129 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   77.979934][   T40] audit: type=1400 audit(1756605319.344:366): avc:  denied  { ioctl } for  pid=6774 comm="syz.3.219" path="socket:[11026]" dev="sockfs" ino=11026 ioctlcmd=0x8b05 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   77.995292][   T40] audit: type=1400 audit(1756605319.364:367): avc:  denied  { egress } for  pid=24 comm="kworker/2:0" saddr=fe80::1b daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[   78.007622][   T40] audit: type=1400 audit(1756605319.364:368): avc:  denied  { sendto } for  pid=24 comm="kworker/2:0" saddr=fe80::1b daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[   78.283673][ T6785] netlink: 4 bytes leftover after parsing attributes in process `syz.0.223'.
[   78.332370][ T6787] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[   78.709591][ T6800] netlink: 'syz.2.228': attribute type 1 has an invalid length.
[   78.712608][ T6800] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.228'.
[   78.807037][ T1024] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   78.974092][ T6821] vxlan0: entered promiscuous mode
[   78.980565][ T6318] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   78.995978][ T6318] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   78.999748][ T6318] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   79.006734][ T6318] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   81.112928][    C3] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[   86.776194][   T40] kauditd_printk_skb: 3 callbacks suppressed
[   86.776213][   T40] audit: type=1400 audit(1756605328.144:372): avc:  denied  { execute } for  pid=6855 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   86.790776][   T40] audit: type=1400 audit(1756605328.144:373): avc:  denied  { execute_no_trans } for  pid=6855 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   86.828862][ T6860] input: syz0 as /devices/virtual/input/input6
[   86.857020][   T40] audit: type=1400 audit(1756605328.224:374): avc:  denied  { setopt } for  pid=6856 comm="syz.2.238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   86.857703][ T6863] openvswitch: netlink: Missing valid actions attribute.
[   86.871417][ T6863] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   86.965015][   T54] cfg80211: failed to load regulatory.db
[   86.973359][ T1024] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   86.984553][   T63] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   86.995123][   T63] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   87.005520][   T63] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   87.012164][   T63] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   87.020286][   T63] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   87.309654][ T6866] chnl_net:caif_netlink_parms(): no params data found
[   87.364798][ T6318] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.393855][ T6901] __nla_validate_parse: 3 callbacks suppressed
[   87.393870][ T6901] netlink: 4 bytes leftover after parsing attributes in process `syz.2.245'.
[   87.439007][ T6903] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5129 sclass=netlink_route_socket pid=6903 comm=syz.3.244
[   87.467444][ T6318] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.492965][ T6906] netlink: 12 bytes leftover after parsing attributes in process `syz.2.246'.
[   87.565384][ T6318] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.594682][ T6866] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.597878][ T6866] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.600463][ T6866] bridge_slave_0: entered allmulticast mode
[   87.604768][ T6866] bridge_slave_0: entered promiscuous mode
[   87.609065][ T6866] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.611922][ T6866] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.614616][ T6866] bridge_slave_1: entered allmulticast mode
[   87.617251][ T6866] bridge_slave_1: entered promiscuous mode
[   87.622986][ T6906] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1016 sclass=netlink_route_socket pid=6906 comm=syz.2.246
[   87.666437][ T6318] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.678430][ T6866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.685833][ T6866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.726587][ T6866] team0: Port device team_slave_0 added
[   87.736111][ T6866] team0: Port device team_slave_1 added
[   87.778652][ T6866] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.781279][ T6866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.790297][ T6866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.809414][ T6866] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.811751][ T6866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.821191][ T6866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.897030][ T6866] hsr_slave_0: entered promiscuous mode
[   87.899866][ T6866] hsr_slave_1: entered promiscuous mode
[   87.902231][ T6866] debugfs: 'hsr0' already exists in 'hsr'
[   87.904937][ T6866] Cannot create hsr debugfs directory
[   87.915972][ T6318] bridge_slave_1: left allmulticast mode
[   87.918017][ T6318] bridge_slave_1: left promiscuous mode
[   87.921459][ T6318] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.928737][ T6318] bridge_slave_0: left allmulticast mode
[   87.930697][ T6318] bridge_slave_0: left promiscuous mode
[   87.936269][ T6318] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.297064][ T6318] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   88.303823][ T6318] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   88.308579][ T6318] bond0 (unregistering): Released all slaves
[   88.547152][ T6866] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   88.584183][ T6866] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   88.589159][ T6866] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   88.595543][ T6866] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   88.661550][ T6318] hsr_slave_0: left promiscuous mode
[   88.664478][ T6318] hsr_slave_1: left promiscuous mode
[   88.666709][ T6318] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   88.669455][ T6318] batman_adv: batadv0: Removing interface: batadv_slave_0
[   88.672620][ T6318] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   88.675997][ T6318] batman_adv: batadv0: Removing interface: batadv_slave_1
[   88.704088][ T6318] veth1_macvtap: left promiscuous mode
[   88.706410][ T6318] veth0_macvtap: left promiscuous mode
[   88.708703][ T6318] veth1_vlan: left promiscuous mode
[   88.710478][ T6318] veth0_vlan: left promiscuous mode
[   89.126784][   T63] Bluetooth: hci4: command tx timeout
[   89.371649][ T6318] team0 (unregistering): Port device team_slave_1 removed
[   89.456413][ T6318] team0 (unregistering): Port device team_slave_0 removed
[   89.970212][ T6866] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.987171][ T6866] 8021q: adding VLAN 0 to HW filter on device team0
[   89.995572][ T6337] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.998034][ T6337] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.007966][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.010921][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.152840][    C3] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[   90.204894][ T6866] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.427422][ T6866] veth0_vlan: entered promiscuous mode
[   90.439979][ T6866] veth1_vlan: entered promiscuous mode
[   90.468799][ T6866] veth0_macvtap: entered promiscuous mode
[   90.476888][ T6866] veth1_macvtap: entered promiscuous mode
[   90.497124][ T6866] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.505053][ T6866] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.514157][ T6318] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.517031][ T6318] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.520927][ T6318] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.524967][ T6318] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.575481][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.578160][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.595876][ T6318] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.599386][ T6318] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.606796][   T40] audit: type=1400 audit(1756605331.974:375): avc:  denied  { mount } for  pid=6866 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   90.617712][   T40] audit: type=1400 audit(1756605331.984:376): avc:  denied  { mounton } for  pid=6866 comm="syz-executor" path="/syzkaller.xq310P/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   91.193334][   T63] Bluetooth: hci4: command tx timeout
[   93.273105][   T63] Bluetooth: hci4: command tx timeout
[   95.353136][   T63] Bluetooth: hci4: command tx timeout
[   98.871287][ T6991] netlink: 'syz.4.248': attribute type 4 has an invalid length.
[   98.879847][   T40] audit: type=1400 audit(1756605340.244:377): avc:  denied  { setopt } for  pid=6992 comm="syz.2.249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   98.891246][   T40] audit: type=1400 audit(1756605340.244:378): avc:  denied  { append } for  pid=6992 comm="syz.2.249" name="nvme-fabrics" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   98.978353][ T7009] netlink: 4 bytes leftover after parsing attributes in process `syz.4.253'.
[   98.999764][ T6063] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   99.042788][   T40] audit: type=1400 audit(1756605340.404:379): avc:  denied  { bind } for  pid=7012 comm="syz.3.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   99.049051][   T40] audit: type=1400 audit(1756605340.404:380): avc:  denied  { name_bind } for  pid=7012 comm="syz.3.254" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   99.068949][   T40] audit: type=1400 audit(1756605340.404:381): avc:  denied  { node_bind } for  pid=7012 comm="syz.3.254" saddr=127.0.0.1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[   99.077866][   T40] audit: type=1400 audit(1756605340.404:382): avc:  denied  { read } for  pid=7012 comm="syz.3.254" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   99.085782][   T40] audit: type=1400 audit(1756605340.414:383): avc:  denied  { listen } for  pid=7012 comm="syz.3.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   99.165495][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[   99.170384][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[   99.184355][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[   99.188740][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[   99.193700][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[   99.197288][ T7025] tap0: tun_chr_ioctl cmd 1074025677
[   99.198116][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[   99.200052][ T7025] tap0: linktype set to 805
[   99.204323][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[   99.210831][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[   99.215262][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.257'.
[  100.069325][   T40] audit: type=1400 audit(1756605341.434:384): avc:  denied  { ioctl } for  pid=7048 comm="syz.0.259" path="socket:[14985]" dev="sockfs" ino=14985 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  100.273502][ T1024] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  100.296045][   T40] audit: type=1400 audit(1756605341.664:385): avc:  denied  { setopt } for  pid=7069 comm="syz.0.265" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  100.400980][   T40] audit: type=1400 audit(1756605341.764:386): avc:  denied  { ioctl } for  pid=7082 comm="syz.3.269" path="socket:[16441]" dev="sockfs" ino=16441 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  100.451081][ T7005] Set syz1 is full, maxelem 65536 reached
[  100.451659][ T7088] ip6tnl2: entered promiscuous mode
[  100.456253][ T7088] ip6tnl2: entered allmulticast mode
[  100.502971][ T7089] openvswitch: netlink: Flow actions attr not present in new flow.
[  101.507226][ T7098] nbd_handle_cmd: 2 callbacks suppressed
[  101.507252][ T7098] block nbd2: Attempted send on invalid socket
[  101.511906][ T7098] blk_print_req_error: 2 callbacks suppressed
[  101.511925][ T7098] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[  101.521355][ T7098] XFS (nbd2): SB validate failed with error -5.
[  101.631230][ T7125] random: crng reseeded on system resumption
[  101.660646][ T7128] loop2: detected capacity change from 0 to 7
[  101.667610][ T7125] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  101.671969][ T7125] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  101.672420][ T6984] Dev loop2: unable to read RDB block 7
[  101.677274][ T7125] overlayfs: failed to get uuid (/file1, err=-95); falling back to uuid=null.
[  101.685284][ T6984]  loop2: unable to read partition table
[  101.687221][ T6984] loop2: partition table beyond EOD, truncated
[  101.688129][ T7125] tipc: Trying to set illegal importance in message
[  101.698996][ T7128] Dev loop2: unable to read RDB block 7
[  101.701297][ T7128]  loop2: unable to read partition table
[  101.704406][ T7128] loop2: partition table beyond EOD, truncated
[  101.707937][ T7128] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  103.115113][ T1024] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  103.263626][ T7222] [U] 
[  103.264793][ T7222] [U] 
[  103.265748][ T7222] [U] 
[  103.266746][ T7222] [U] 
[  103.267824][ T7222] [U] 
[  103.268819][ T7222] [U] 
[  103.269840][ T7222] [U] 
[  103.270903][ T7222] [U] 
[  103.272106][ T7222] [U] 
[  103.273048][ T7222] [U] 
[  103.274074][ T7222] [U] 
[  103.274995][ T7222] [U] 
[  103.278533][ T7222] [U] 
[  103.279743][ T7222] [U] 
[  103.280776][ T7222] [U] 
[  103.281803][ T7222] [U] 
[  103.284834][ T7219] [U] 
[  108.073235][    C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  117.053515][ T7262] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7262 comm=syz.4.306
[  117.109448][ T7261] __nla_validate_parse: 13 callbacks suppressed
[  117.109469][ T7261] netlink: 16 bytes leftover after parsing attributes in process `syz.0.305'.
[  117.118938][ T7261] netlink: 16 bytes leftover after parsing attributes in process `syz.0.305'.
[  131.137827][   T40] kauditd_printk_skb: 21 callbacks suppressed
[  131.137847][   T40] audit: type=1400 audit(1756605372.504:408): avc:  denied  { read write } for  pid=7267 comm="syz.0.307" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  131.152973][   T40] audit: type=1400 audit(1756605372.504:409): avc:  denied  { open } for  pid=7267 comm="syz.0.307" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  131.164984][   T40] audit: type=1400 audit(1756605372.504:410): avc:  denied  { ioctl } for  pid=7267 comm="syz.0.307" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  131.245040][   T29] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  131.274716][   T40] audit: type=1400 audit(1756605372.644:411): avc:  denied  { connect } for  pid=7273 comm="syz.4.308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  131.412823][   T40] audit: type=1400 audit(1756605372.774:412): avc:  denied  { ioctl } for  pid=7273 comm="syz.4.308" path="socket:[15949]" dev="sockfs" ino=15949 ioctlcmd=0x662c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  131.421274][   T40] audit: type=1400 audit(1756605372.774:413): avc:  denied  { accept } for  pid=7273 comm="syz.4.308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  131.464207][ T7297] netlink: 92 bytes leftover after parsing attributes in process `syz.3.313'.
[  131.469004][   T40] audit: type=1400 audit(1756605372.834:414): avc:  denied  { setopt } for  pid=7296 comm="syz.3.313" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  131.528124][ T7301] netlink: 12 bytes leftover after parsing attributes in process `syz.0.314'.
[  131.537909][   T40] audit: type=1400 audit(1756605372.904:415): avc:  denied  { map } for  pid=7296 comm="syz.3.313" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  131.549093][   T40] audit: type=1400 audit(1756605372.904:416): avc:  denied  { execute } for  pid=7296 comm="syz.3.313" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  131.552952][ T7307] input: syz1 as /devices/virtual/input/input7
[  131.617997][ T6325] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  131.621756][ T6325] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  131.622885][ T7312] netlink: 60 bytes leftover after parsing attributes in process `syz.2.317'.
[  131.634680][ T6325] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  131.643266][ T6325] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  131.695150][ T7318] netlink: 'syz.2.317': attribute type 10 has an invalid length.
[  131.698366][ T7318] netlink: 40 bytes leftover after parsing attributes in process `syz.2.317'.
[  131.704760][ T7318] batman_adv: batadv0: Adding interface: virt_wifi0
[  131.707966][ T7318] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.719335][ T7318] batman_adv: batadv0: Interface activated: virt_wifi0
[  132.294402][ T7323] netlink: 12 bytes leftover after parsing attributes in process `syz.4.320'.
[  132.424311][   T29] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  132.556245][ T7346] cgroup: subsys name conflicts with all
[  132.609371][ T7355] futex_wake_op: syz.2.327 tries to shift op by 32; fix this program
[  132.622107][ T7355] netlink: 12 bytes leftover after parsing attributes in process `syz.2.327'.
[  132.629956][ T7355] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65280 sclass=netlink_xfrm_socket pid=7355 comm=syz.2.327
[  132.639664][ T7356] vlan3: entered allmulticast mode
[  132.641959][ T7356] bond0: entered allmulticast mode
[  132.649775][ T7356] bond_slave_0: entered allmulticast mode
[  132.652474][ T7356] bond_slave_1: entered allmulticast mode
[  132.952928][ T6024] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  133.119302][ T6024] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  133.123053][ T6024] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  133.126869][ T6024] usb 8-1: config 0 interface 0 has no altsetting 0
[  133.131809][ T6024] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  133.135872][ T6024] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  133.139140][ T6024] usb 8-1: Product: syz
[  133.140926][ T6024] usb 8-1: Manufacturer: syz
[  133.143445][ T6024] usb 8-1: SerialNumber: syz
[  133.153883][ T6024] usb 8-1: config 0 descriptor??
[  133.158365][ T6024] hub 8-1:0.0: bad descriptor, ignoring hub
[  133.161268][ T6024] hub 8-1:0.0: probe with driver hub failed with error -5
[  133.168104][ T6024] usb 8-1: selecting invalid altsetting 0
[  133.457808][   T40] audit: type=1400 audit(1756605374.824:417): avc:  denied  { open } for  pid=7374 comm="syz.4.332" path="/dev/ptyqc" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  133.474312][ T6067] usb 8-1: USB disconnect, device number 3
[  133.802972][   T29] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  133.943045][   T29] usb 9-1: device descriptor read/64, error -71
[  134.032115][ T7415] netlink: 4 bytes leftover after parsing attributes in process `syz.3.344'.
[  134.169665][ T7415] team0 (unregistering): Port device team_slave_0 removed
[  134.177187][ T7415] team0 (unregistering): Port device team_slave_1 removed
[  134.192826][   T29] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  134.322952][   T29] usb 9-1: device descriptor read/64, error -71
[  134.383837][ T1024] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  134.432983][   T29] usb usb9-port1: attempt power cycle
[  134.504067][ T7452] netlink: 4 bytes leftover after parsing attributes in process `syz.2.353'.
[  134.589749][ T7452] batman_adv: batadv0: Removing interface: batadv_slave_1
[  134.794449][   T29] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  134.823740][   T29] usb 9-1: device descriptor read/8, error -71
[  135.082874][   T29] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  135.103611][   T29] usb 9-1: device descriptor read/8, error -71
[  135.214990][   T29] usb usb9-port1: unable to enumerate USB device
[  135.395217][ T7464] overlay: Unknown parameter 'subj_role'
[  135.398464][ T7464] random: crng reseeded on system resumption
[  135.451419][ T7471] openvswitch: netlink: Unexpected mask (mask=c0, allowed=10048)
[  135.514737][ T7473] block nbd2: Attempted send on invalid socket
[  135.517353][ T7473] I/O error, dev nbd2, sector 128 op 0x0:(READ) flags 0x1800 phys_seg 1 prio class 2
[  135.521359][ T7473] gfs2: error -5 reading superblock
[  135.563500][ T1024] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  138.157683][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  138.160479][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  142.633041][    C3] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  144.189434][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  144.189451][   T40] audit: type=1400 audit(1756605385.554:431): avc:  denied  { associate } for  pid=7548 comm="syz.0.364" name="pfkey" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  144.205547][   T40] audit: type=1400 audit(1756605385.554:432): avc:  denied  { listen } for  pid=7544 comm="syz.4.365" lport=51196 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  144.213264][   T40] audit: type=1400 audit(1756605385.554:433): avc:  denied  { accept } for  pid=7544 comm="syz.4.365" lport=51196 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  144.223289][   T40] audit: type=1400 audit(1756605385.554:434): avc:  denied  { override_creds } for  pid=7544 comm="syz.4.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  144.300008][   T40] audit: type=1400 audit(1756605385.664:435): avc:  denied  { ioctl } for  pid=7563 comm="syz.3.371" path="socket:[16992]" dev="sockfs" ino=16992 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  144.301543][ T7564] geneve2: entered promiscuous mode
[  144.345054][ T7565] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.421957][ T7572] netlink: 12 bytes leftover after parsing attributes in process `syz.0.374'.
[  144.433038][   T24] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  144.435534][ T7565] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.519768][ T7565] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.591129][   T24] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  144.595731][   T24] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  144.600287][   T24] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  144.604917][   T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  144.607336][ T7565] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.609888][   T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  144.622908][   T24] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  144.627582][   T24] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  144.631149][   T24] usb 7-1: Product: syz
[  144.633133][   T24] usb 7-1: Manufacturer: syz
[  144.642308][   T24] cdc_wdm 7-1:1.0: skipping garbage
[  144.645977][   T24] cdc_wdm 7-1:1.0: skipping garbage
[  144.651982][   T24] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  144.654931][   T24] cdc_wdm 7-1:1.0: Unknown control protocol
[  144.724465][ T6325] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  144.742593][ T6325] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  144.752414][ T6325] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  144.763425][ T6324] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  144.848205][ T7579] netlink: 16 bytes leftover after parsing attributes in process `syz.3.376'.
[  144.853994][   T40] audit: type=1400 audit(1756605386.214:436): avc:  denied  { read write } for  pid=7543 comm="syz.2.366" name="cdc-wdm0" dev="devtmpfs" ino=2911 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  144.864338][   T40] audit: type=1400 audit(1756605386.214:437): avc:  denied  { open } for  pid=7543 comm="syz.2.366" path="/dev/cdc-wdm0" dev="devtmpfs" ino=2911 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  144.910314][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  144.910335][   T54] usb 7-1: USB disconnect, device number 2
[  144.915158][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  144.920161][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  144.995854][   T40] audit: type=1400 audit(1756605386.364:438): avc:  denied  { map } for  pid=7586 comm="syz.3.377" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  145.005788][   T40] audit: type=1400 audit(1756605386.364:439): avc:  denied  { execute } for  pid=7586 comm="syz.3.377" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  145.152608][   T40] audit: type=1326 audit(1756605386.514:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7592 comm="syz.0.379" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9ec878ebe9 code=0x0
[  145.513434][ T7604] geneve2: entered promiscuous mode
[  145.593429][ T7606] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744073709551615)
[  145.596857][ T7606] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[  145.630314][ T7610] netlink: 8 bytes leftover after parsing attributes in process `syz.3.383'.
[  145.666348][ T7612] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  145.681063][ T7614] FAULT_INJECTION: forcing a failure.
[  145.681063][ T7614] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  145.685587][ T7614] CPU: 2 UID: 0 PID: 7614 Comm: syz.3.385 Not tainted syzkaller #0 PREEMPT(full) 
[  145.685605][ T7614] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.685666][ T7614] Call Trace:
[  145.685673][ T7614]  <TASK>
[  145.685679][ T7614]  dump_stack_lvl+0x16c/0x1f0
[  145.685765][ T7614]  should_fail_ex+0x512/0x640
[  145.685787][ T7614]  _copy_from_iter+0x29f/0x1720
[  145.685806][ T7614]  ? __alloc_skb+0x200/0x380
[  145.685818][ T7614]  ? __pfx__copy_from_iter+0x10/0x10
[  145.685833][ T7614]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  145.685849][ T7614]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  145.685870][ T7614]  netlink_sendmsg+0x829/0xdd0
[  145.685886][ T7614]  ? __pfx_netlink_sendmsg+0x10/0x10
[  145.685904][ T7614]  ____sys_sendmsg+0xa98/0xc70
[  145.685920][ T7614]  ? copy_msghdr_from_user+0x10a/0x160
[  145.685932][ T7614]  ? __pfx_____sys_sendmsg+0x10/0x10
[  145.685949][ T7614]  ? kfree+0x24f/0x4d0
[  145.685965][ T7614]  ? __pfx__kstrtoull+0x10/0x10
[  145.685977][ T7614]  ___sys_sendmsg+0x134/0x1d0
[  145.685993][ T7614]  ? __pfx____sys_sendmsg+0x10/0x10
[  145.686017][ T7614]  ? __pfx___might_resched+0x10/0x10
[  145.686034][ T7614]  __sys_sendmmsg+0x200/0x420
[  145.686048][ T7614]  ? __pfx___sys_sendmmsg+0x10/0x10
[  145.686064][ T7614]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  145.686090][ T7614]  ? fput+0x9b/0xd0
[  145.686105][ T7614]  ? ksys_write+0x1ac/0x250
[  145.686116][ T7614]  ? __pfx_ksys_write+0x10/0x10
[  145.686129][ T7614]  __x64_sys_sendmmsg+0x9c/0x100
[  145.686141][ T7614]  ? lockdep_hardirqs_on+0x7c/0x110
[  145.686153][ T7614]  do_syscall_64+0xcd/0x4c0
[  145.686167][ T7614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.686179][ T7614] RIP: 0033:0x7fb740f8ebe9
[  145.686189][ T7614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.686199][ T7614] RSP: 002b:00007fb741d95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  145.686212][ T7614] RAX: ffffffffffffffda RBX: 00007fb7411c5fa0 RCX: 00007fb740f8ebe9
[  145.686219][ T7614] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000003
[  145.686225][ T7614] RBP: 00007fb741d95090 R08: 0000000000000000 R09: 0000000000000000
[  145.686231][ T7614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.686237][ T7614] R13: 00007fb7411c6038 R14: 00007fb7411c5fa0 R15: 00007ffc2e7209d8
[  145.686251][ T7614]  </TASK>
[  145.834736][ T7612] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  145.846785][ T7618] netlink: 12 bytes leftover after parsing attributes in process `syz.3.387'.
[  145.885617][ T7612] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  145.942161][ T7612] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  146.051515][ T7627] comedi comedi0: Cannot bond this driver to itself!
[  146.059551][ T6318] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  146.063930][ T6318] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  146.081508][ T6324] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  146.105297][ T1145] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  146.271860][ T7622] netlink: 28 bytes leftover after parsing attributes in process `syz.4.388'.
[  146.284036][ T7622] netlink: 28 bytes leftover after parsing attributes in process `syz.4.388'.
[  146.313713][   T63] Bluetooth: hci0: command tx timeout
[  146.591454][ T7653] binder: 7652:7653 ioctl 4058534c 200000000280 returned -22
[  146.754320][ T7663] cgroup2: Unknown parameter 'memor'
[  146.852710][ T7672] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  146.856341][ T7672] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  146.920576][ T7674] binder: 7673:7674 ioctl 400c620e 200000000640 returned -22
[  146.969616][ T7678] netlink: 12 bytes leftover after parsing attributes in process `syz.4.406'.
[  147.116454][ T7683] netlink: 'syz.3.408': attribute type 12 has an invalid length.
[  147.120182][ T7683] netlink: 4 bytes leftover after parsing attributes in process `syz.3.408'.
[  147.133320][ T7683] netlink: 'syz.3.408': attribute type 12 has an invalid length.
[  147.133338][ T1145] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  147.136387][ T7683] netlink: 4 bytes leftover after parsing attributes in process `syz.3.408'.
[  147.139935][ T1145] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  147.147342][ T1145] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  147.150652][ T1145] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  147.286991][ T7688] bridge_slave_0: left allmulticast mode
[  147.289859][ T7688] bridge_slave_0: left promiscuous mode
[  147.294337][ T7688] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.300404][ T7688] bridge_slave_1: left allmulticast mode
[  147.303566][ T7688] bridge_slave_1: left promiscuous mode
[  147.306163][ T7688] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.323093][ T7688] bond0: (slave bond_slave_0): Releasing backup interface
[  147.328602][ T7688] bond_slave_0: left allmulticast mode
[  147.336154][ T7688] bond0: (slave bond_slave_1): Releasing backup interface
[  147.339911][ T7688] bond_slave_1: left allmulticast mode
[  147.346228][ T7688] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.349385][ T7688] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.354330][ T7688] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.356547][ T7688] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.385577][ T7647] comedi comedi0: reset error (fatal)
[  147.620352][ T7716] ata1.00: invalid multi_count 1 ignored
[  147.636607][ T7718] netlink: 12 bytes leftover after parsing attributes in process `syz.2.418'.
[  147.674667][   T63] Bluetooth: hci3: command tx timeout
[  147.870050][ T7742] Invalid logical block size (4)
[  147.983788][ T7733] unknown channel width for channel at 909000KHz?
[  148.077096][ T7758] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7758 comm=syz.4.433
[  148.081532][ T7758] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7758 comm=syz.4.433
[  148.130467][ T7765] 9pnet_virtio: no channels available for device 127.0.0.1
[  148.133010][ T7764] tmpfs: Bad value for 'huge'
[  148.226880][ T7766] kvm: pic: non byte write
[  148.438667][ T7776] netlink: 'syz.0.440': attribute type 12 has an invalid length.
[  148.441846][ T7776] netlink: 'syz.0.440': attribute type 12 has an invalid length.
[  148.539534][ T1024] libceph: connect (1)[c::]:6789 error -101
[  148.544952][ T1024] libceph: mon0 (1)[c::]:6789 connect error
[  148.554905][ T7783] ceph: No mds server is up or the cluster is laggy
[  148.626187][ T7792] QAT: Invalid ioctl -2144835806
[  148.636748][ T7792] openvswitch: netlink: Message has 8 unknown bytes.
[  149.014146][   T10] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  149.060689][ T7806] netlink: 'syz.0.452': attribute type 12 has an invalid length.
[  149.064954][ T7806] netlink: 'syz.0.452': attribute type 12 has an invalid length.
[  149.117551][ T7808] netlink: 'syz.2.448': attribute type 3 has an invalid length.
[  149.120459][ T7808] netlink: 'syz.2.448': attribute type 1 has an invalid length.
[  149.122994][ T7808] NCSI netlink: No device for ifindex 33022
[  149.187058][   T10] usb 8-1: too many configurations: 9, using maximum allowed: 8
[  149.191790][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  149.196504][   T10] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.201290][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  149.205041][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  149.208361][   T10] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.212053][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  149.215662][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  149.219386][   T10] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.223555][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  149.226712][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  149.229560][   T10] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.233222][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  149.236525][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  149.239501][   T10] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.243463][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  149.246413][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  149.248356][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.249255][   T10] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.252569][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.256803][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  149.257752][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  149.259775][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.262045][   T10] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.266602][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.268608][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  149.274230][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.274261][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.274284][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.277626][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  149.279505][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.279530][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.281802][   T10] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.285034][   T54] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  149.287513][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  149.298615][   T54] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [����Z��w��[ba���|\rn�)A�#6�oү�?��a�I����s��5hV�3��(;��
[  149.298615][   T54] �ѝ�P�$zɷ�X$����w[S���R��e�zx��u�S�r���l��[�5l'�ZCz2�] on ��t�DK��Y縣Ϫ򞿹,����U��O���p���{"i�x�A�[�ew���Ò}�ZX��A
[  149.301171][   T10] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  149.317913][   T10] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  149.320563][   T10] usb 8-1: Product: syz
[  149.321950][   T10] usb 8-1: Manufacturer: syz
[  149.323596][   T10] usb 8-1: SerialNumber: syz
[  149.335635][   T10] usb 8-1: config 0 descriptor??
[  149.343409][   T10] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0
[  149.353935][ T7817] fido_id[7817]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  149.423667][ T7828] __nla_validate_parse: 10 callbacks suppressed
[  149.423680][ T7828] netlink: 28 bytes leftover after parsing attributes in process `syz.2.458'.
[  149.437195][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  149.437209][   T40] audit: type=1400 audit(1756605390.804:452): avc:  denied  { write } for  pid=7827 comm="syz.2.458" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  149.549463][   T54] usb 8-1: USB disconnect, device number 4
[  149.564546][   T54] yurex 8-1:0.0: USB YUREX #0 now disconnected
[  149.707646][ T7858] kvm: emulating exchange as write
[  149.943069][   T40] audit: type=1400 audit(1756605391.304:453): avc:  denied  { map } for  pid=7880 comm="syz.0.474" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  149.954968][   T40] audit: type=1400 audit(1756605391.314:454): avc:  denied  { setattr } for  pid=7880 comm="syz.0.474" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  149.968780][   T40] audit: type=1400 audit(1756605391.324:455): avc:  denied  { read } for  pid=7880 comm="syz.0.474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  149.977653][   T40] audit: type=1400 audit(1756605391.324:456): avc:  denied  { accept } for  pid=7880 comm="syz.0.474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  149.985978][ T7889] netlink: 'syz.2.475': attribute type 4 has an invalid length.
[  149.987191][   T40] audit: type=1400 audit(1756605391.324:457): avc:  denied  { getopt } for  pid=7880 comm="syz.0.474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  150.005134][   T10] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  150.026726][   T40] audit: type=1400 audit(1756605391.394:458): avc:  denied  { ioctl } for  pid=7890 comm="syz.2.476" path="socket:[19204]" dev="sockfs" ino=19204 ioctlcmd=0x5720 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  150.039876][   T40] audit: type=1400 audit(1756605391.394:459): avc:  denied  { read } for  pid=7890 comm="syz.2.476" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  150.048113][   T40] audit: type=1400 audit(1756605391.394:460): avc:  denied  { ioctl } for  pid=7890 comm="syz.2.476" path="socket:[19868]" dev="sockfs" ino=19868 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  150.086036][   T40] audit: type=1400 audit(1756605391.454:461): avc:  denied  { bind } for  pid=7895 comm="syz.2.477" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  150.186751][   T10] usb 9-1: config 1 interface 0 altsetting 6 bulk endpoint 0x1 has invalid maxpacket 72
[  150.191386][   T10] usb 9-1: config 1 interface 0 has no altsetting 0
[  150.197909][   T10] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  150.201597][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.205004][   T10] usb 9-1: Product: ଡ≁쯓夐ᐫ猱调㼎僂ꪕ‍ሆ溫콾⦗窸乸棷鳖燡䄾하騋㜙쳊䈜氮岽欭춝࿬늀ᐷ疶ꅳ≌Ύ餡⩤᥀當妮裤增䯳钜嫂㉩䵔挮넝け팗솓꒕鏠ꆞȻᠻ썼莋鞠뻢譨縰鵸ἠ巂綀刾飾૸뇣팫뒎㗦袂⵾縛⚗늒去ⲣ歍傡嘚嶅奦卲쑫
[  150.218254][   T10] usb 9-1: Manufacturer: ܾ᫂칵쌧㎼绨꾬ᡣ菫鞖棺ࡃ裃팘独
[  150.221167][   T10] usb 9-1: SerialNumber: ᐊ
[  150.228226][ T7866] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  150.407902][ T7910] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  150.442643][   T10] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 6 proto 1 vid 0x0525 pid 0xA4A8
[  150.454567][   T10] usb 9-1: USB disconnect, device number 6
[  150.461194][   T10] usblp0: removed
[  150.469525][ T7915] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  150.653743][ T6063] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  150.673313][ T7925] netlink: 'syz.4.486': attribute type 2 has an invalid length.
[  150.675950][ T7925] netlink: 132 bytes leftover after parsing attributes in process `syz.4.486'.
[  151.726965][ T7958] overlay: ./file0 is not a directory
[  151.775034][ T6063] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  151.919813][ T7966] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7966 comm=syz.3.499
[  151.919878][ T7967] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7967 comm=syz.3.499
[  151.924745][ T7966] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7966 comm=syz.3.499
[  151.930340][ T7967] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7967 comm=syz.3.499
[  152.777458][ T7984] netlink: 132 bytes leftover after parsing attributes in process `syz.0.504'.
[  152.784757][ T7984] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7984 comm=syz.0.504
[  152.809347][ T7992] netlink: 12 bytes leftover after parsing attributes in process `syz.2.508'.
[  153.070594][ T8014] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2867246407 (367007540096 ns) > initial count (285445133056 ns). Using initial count to start timer.
[  153.179951][ T8024] [U] 
[  153.275019][ T8030] netlink: 8 bytes leftover after parsing attributes in process `syz.4.519'.
[  153.791429][ T8038] FAULT_INJECTION: forcing a failure.
[  153.791429][ T8038] name failslab, interval 1, probability 0, space 0, times 0
[  153.797625][ T8038] CPU: 2 UID: 0 PID: 8038 Comm: syz.4.522 Not tainted syzkaller #0 PREEMPT(full) 
[  153.797652][ T8038] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.797663][ T8038] Call Trace:
[  153.797672][ T8038]  <TASK>
[  153.797680][ T8038]  dump_stack_lvl+0x16c/0x1f0
[  153.797737][ T8038]  should_fail_ex+0x512/0x640
[  153.797777][ T8038]  should_failslab+0xc2/0x120
[  153.797801][ T8038]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  153.797821][ T8038]  ? __alloc_skb+0x2b2/0x380
[  153.797844][ T8038]  __alloc_skb+0x2b2/0x380
[  153.797863][ T8038]  ? __pfx___alloc_skb+0x10/0x10
[  153.797886][ T8038]  ? do_raw_spin_lock+0x12c/0x2b0
[  153.797914][ T8038]  skb_copy+0x1c9/0x3a0
[  153.797935][ T8038]  mac80211_hwsim_tx_frame_no_nl.isra.0+0xb6e/0x13c0
[  153.797972][ T8038]  ? __pfx_mac80211_hwsim_tx_frame_no_nl.isra.0+0x10/0x10
[  153.798015][ T8038]  ? mac80211_hwsim_monitor_rx+0x1cd/0x880
[  153.798041][ T8038]  mac80211_hwsim_tx+0x7b0/0x2500
[  153.798078][ T8038]  ieee80211_handle_wake_tx_queue+0x18c/0x260
[  153.798107][ T8038]  ? __pfx_ieee80211_handle_wake_tx_queue+0x10/0x10
[  153.798130][ T8038]  ? __pfx___ieee80211_schedule_txq+0x10/0x10
[  153.798149][ T8038]  ? mark_held_locks+0x49/0x80
[  153.798176][ T8038]  ? __local_bh_enable_ip+0xa4/0x120
[  153.798204][ T8038]  ieee80211_queue_skb+0x12b2/0x1fe0
[  153.798242][ T8038]  ieee80211_tx+0x2e4/0x420
[  153.798267][ T8038]  ? __pfx_ieee80211_tx+0x10/0x10
[  153.798307][ T8038]  ? ieee80211_skb_resize+0x22a/0x630
[  153.798331][ T8038]  ? ieee80211_set_qos_hdr+0xba/0x3f0
[  153.798383][ T8038]  ieee80211_xmit+0x30f/0x3e0
[  153.798408][ T8038]  __ieee80211_subif_start_xmit+0x880/0x1390
[  153.798440][ T8038]  ? sock_alloc_send_pskb+0x7fb/0x990
[  153.798458][ T8038]  ? __pfx___ieee80211_subif_start_xmit+0x10/0x10
[  153.798490][ T8038]  ? __pfx_do_syscall_64+0x10/0x10
[  153.798515][ T8038]  ? __lock_acquire+0x62e/0x1ce0
[  153.798555][ T8038]  ieee80211_subif_start_xmit+0x11b/0x1970
[  153.798578][ T8038]  ? __pfx_skb_network_protocol+0x10/0x10
[  153.798616][ T8038]  ? __pfx_ieee80211_subif_start_xmit+0x10/0x10
[  153.798641][ T8038]  ? dev_queue_xmit_nit+0x924/0xca0
[  153.798668][ T8038]  ? dev_queue_xmit_nit+0x929/0xca0
[  153.798695][ T8038]  ? dev_hard_start_xmit+0x94/0x740
[  153.798719][ T8038]  dev_hard_start_xmit+0x94/0x740
[  153.798755][ T8038]  __dev_queue_xmit+0xa46/0x4490
[  153.798787][ T8038]  ? __pfx___alloc_skb+0x10/0x10
[  153.798810][ T8038]  ? __pfx___dev_queue_xmit+0x10/0x10
[  153.798840][ T8038]  ? skb_set_owner_w+0x31f/0x710
[  153.798860][ T8038]  ? __pfx_skb_set_owner_w+0x10/0x10
[  153.798874][ T8038]  ? alloc_skb_with_frags+0x53e/0x860
[  153.798906][ T8038]  ? packet_parse_headers+0x79a/0xb10
[  153.798935][ T8038]  ? __pfx_packet_parse_headers+0x10/0x10
[  153.798954][ T8038]  ? skb_copy_datagram_from_iter+0x4f0/0x740
[  153.798986][ T8038]  packet_xmit+0x23e/0x360
[  153.799004][ T8038]  packet_sendmsg+0x2756/0x5850
[  153.799043][ T8038]  ? sock_has_perm+0x259/0x2f0
[  153.799066][ T8038]  ? __pfx_sock_has_perm+0x10/0x10
[  153.799091][ T8038]  ? __pfx_packet_sendmsg+0x10/0x10
[  153.799124][ T8038]  __sys_sendto+0x4a0/0x520
[  153.799149][ T8038]  ? __pfx___sys_sendto+0x10/0x10
[  153.799190][ T8038]  ? ksys_write+0x1ac/0x250
[  153.799210][ T8038]  ? __pfx_ksys_write+0x10/0x10
[  153.799229][ T8038]  __x64_sys_sendto+0xe0/0x1c0
[  153.799247][ T8038]  ? do_syscall_64+0x91/0x4c0
[  153.799266][ T8038]  ? lockdep_hardirqs_on+0x7c/0x110
[  153.799325][ T8038]  do_syscall_64+0xcd/0x4c0
[  153.799347][ T8038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.799366][ T8038] RIP: 0033:0x7fd2b698ebe9
[  153.799385][ T8038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.799403][ T8038] RSP: 002b:00007fd2b77b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  153.799428][ T8038] RAX: ffffffffffffffda RBX: 00007fd2b6bc5fa0 RCX: 00007fd2b698ebe9
[  153.799441][ T8038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  153.799451][ T8038] RBP: 00007fd2b77b4090 R08: 00002000000000c0 R09: 0000000000000014
[  153.799459][ T8038] R10: 0000000020008084 R11: 0000000000000246 R12: 0000000000000001
[  153.799468][ T8038] R13: 00007fd2b6bc6038 R14: 00007fd2b6bc5fa0 R15: 00007ffd786f2548
[  153.799495][ T8038]  </TASK>
[  154.077731][ T8049] F2FS-fs (nbd4): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  154.082067][ T8049] F2FS-fs (nbd4): Can't find valid F2FS filesystem in 1th superblock
[  154.086867][ T8049] F2FS-fs (nbd4): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  154.089703][ T8049] F2FS-fs (nbd4): Can't find valid F2FS filesystem in 2th superblock
[  154.116387][ T8048] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1795 sclass=netlink_route_socket pid=8048 comm=syz.4.527
[  154.118361][ T8049] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1795 sclass=netlink_route_socket pid=8049 comm=syz.4.527
[  154.127583][ T8048] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  154.147715][ T8058] Sensor A: =================  START STATUS  =================
[  154.151363][ T8058] Sensor A: Test Pattern: 75% Colorbar
[  154.155735][ T8058] Sensor A: Show Information: All
[  154.158543][ T8058] Sensor A: Vertical Flip: false
[  154.160597][ T8058] Sensor A: Horizontal Flip: false
[  154.162752][ T8058] Sensor A: Brightness: 128
[  154.164721][ T8058] Sensor A: Contrast: 128
[  154.166870][ T8058] Sensor A: Hue: 0
[  154.168429][ T8058] Sensor A: Saturation: 128
[  154.170375][ T8058] Sensor A: ==================  END STATUS  ==================
[  154.287352][ T8070] netlink: 12 bytes leftover after parsing attributes in process `syz.2.535'.
[  154.347830][ T8075] netlink: 4 bytes leftover after parsing attributes in process `syz.4.537'.
[  154.357732][ T8075] ip6gretap0: entered promiscuous mode
[  154.361572][ T8075] macsec1: entered allmulticast mode
[  154.364063][ T8075] ip6gretap0: entered allmulticast mode
[  154.371523][ T8075] ip6gretap0: left allmulticast mode
[  154.374523][ T8075] ip6gretap0: left promiscuous mode
[  154.565475][ T8078] netlink: 8 bytes leftover after parsing attributes in process `syz.4.538'.
[  154.575345][ T8078] netlink: 24 bytes leftover after parsing attributes in process `syz.4.538'.
[  154.828456][ T8092] afs: Unknown parameter 'dyn.uw�
'
[  155.010670][ T8106] netlink: 8 bytes leftover after parsing attributes in process `syz.0.547'.
[  155.014856][ T8107] netlink: 8 bytes leftover after parsing attributes in process `syz.0.547'.
[  155.041460][   T40] kauditd_printk_skb: 27 callbacks suppressed
[  155.041476][   T40] audit: type=1400 audit(1756605396.404:489): avc:  denied  { create } for  pid=8108 comm="syz.4.548" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  155.052739][   T40] audit: type=1400 audit(1756605396.414:490): avc:  denied  { write } for  pid=8108 comm="syz.4.548" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  155.063453][ T8111] netlink: 12 bytes leftover after parsing attributes in process `syz.0.549'.
[  155.088926][ T8113] netlink: 32 bytes leftover after parsing attributes in process `syz.4.550'.
[  155.093870][ T8113] netlink: 32 bytes leftover after parsing attributes in process `syz.4.550'.
[  155.453461][   T63] Bluetooth: Unexpected start frame (len 10)
[  155.574674][   T40] audit: type=1400 audit(1756605396.944:491): avc:  denied  { create } for  pid=8140 comm="syz.0.560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  155.582469][   T40] audit: type=1400 audit(1756605396.944:492): avc:  denied  { accept } for  pid=8140 comm="syz.0.560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  155.586225][ T8142] netlink: 8 bytes leftover after parsing attributes in process `syz.0.560'.
[  155.646562][ T8149] netlink: 12 bytes leftover after parsing attributes in process `syz.0.563'.
[  155.783745][   T40] audit: type=1400 audit(1756605397.154:493): avc:  denied  { append } for  pid=8152 comm="syz.2.564" name="usbmon5" dev="devtmpfs" ino=753 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  155.863411][   T40] audit: type=1400 audit(1756605397.224:494): avc:  denied  { relabelfrom } for  pid=8156 comm="syz.2.566" name="" dev="pipefs" ino=21398 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  155.898641][ T8159] netlink: 12 bytes leftover after parsing attributes in process `syz.2.567'.
[  155.956605][ T8164] fuse: Unknown parameter 'f�b'
[  155.968642][ T8164] batman_adv: batadv0: Removing interface: batadv_slave_0
[  155.973961][ T8164] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  155.973992][ T8164] batman_adv: batadv0: Removing interface: virt_wifi0
[  156.344877][ T8174] pimreg: entered allmulticast mode
[  156.349872][   T40] audit: type=1400 audit(1756605397.714:495): avc:  denied  { ioctl } for  pid=8172 comm="syz.4.571" path="socket:[22973]" dev="sockfs" ino=22973 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  156.883147][   T63] Bluetooth: Unexpected start frame (len 10)
[  157.110086][ T8207] CUSE: info not properly terminated
[  157.113729][   T54] hid-generic 0008:0002:0003.0004: reserved main item tag 0xe
[  157.114910][   T40] audit: type=1400 audit(1756605398.484:496): avc:  denied  { append } for  pid=8206 comm="syz.2.580" name="pmem0" dev="devtmpfs" ino=710 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  157.117886][   T54] hid_parser_main: 6 callbacks suppressed
[  157.117911][   T54] hid-generic 0008:0002:0003.0004: unknown main item tag 0x0
[  157.134335][   T54] hid-generic 0008:0002:0003.0004: ignoring exceeding usage max
[  157.139618][   T54] hid-generic 0008:0002:0003.0004: reserved main item tag 0xd
[  157.143422][   T54] hid-generic 0008:0002:0003.0004: unknown main item tag 0x1
[  157.146548][   T54] hid-generic 0008:0002:0003.0004: unknown main item tag 0x0
[  157.150498][   T54] hid-generic 0008:0002:0003.0004: item fetching failed at offset 67/88
[  157.156047][   T54] hid-generic 0008:0002:0003.0004: probe with driver hid-generic failed with error -22
[  157.502550][ T8217] validate_nla: 1 callbacks suppressed
[  157.502569][ T8217] netlink: 'syz.4.584': attribute type 11 has an invalid length.
[  157.810923][ T8236] [U] v�3��f��"S��/��4:�XTz�W�t��lW��=
[  157.813457][ T8236] [U] J"�e:��"


[  157.979527][   T40] audit: type=1400 audit(1756605399.344:497): avc:  denied  { write } for  pid=8244 comm="syz.2.593" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  157.993036][   T40] audit: type=1400 audit(1756605399.344:498): avc:  denied  { ioctl } for  pid=8244 comm="syz.2.593" path="/dev/ppp" dev="devtmpfs" ino=730 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  157.998328][ T8245] overlay: ./file1 is not a directory
[  158.945435][ T8313] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  158.952010][ T8313] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=3632396020 (3632396020 ns) > initial count (548550703 ns). Using initial count to start timer.
[  159.054845][ T8317] tipc: Started in network mode
[  159.057028][ T8317] tipc: Node identity 56fe40a46731, cluster identity 4711
[  159.059860][ T8317] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  159.063008][ T8317] syzkaller0: entered promiscuous mode
[  159.064797][ T8317] syzkaller0: entered allmulticast mode
[  159.071063][ T8317] tipc: Resetting bearer <eth:syzkaller0>
[  159.076953][ T8316] tipc: Resetting bearer <eth:syzkaller0>
[  159.088078][ T8316] tipc: Disabling bearer <eth:syzkaller0>
[  159.307241][ T8335] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8335 comm=syz.2.623
[  159.433338][ T8346] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  159.499739][ T8350] raw_sendmsg: syz.4.629 forgot to set AF_INET. Fix it!
[  159.742111][ T8361] 9pnet: p9_errstr2errno: server reported unknown error �@���������
[  159.793658][ T8364] F2FS-fs (nbd2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  159.796976][ T8364] F2FS-fs (nbd2): Can't find valid F2FS filesystem in 1th superblock
[  159.799876][ T8364] F2FS-fs (nbd2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  159.802386][ T8364] F2FS-fs (nbd2): Can't find valid F2FS filesystem in 2th superblock
[  159.900069][ T8372] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  159.904530][ T8372] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  160.398328][ T8398] __nla_validate_parse: 14 callbacks suppressed
[  160.398342][ T8398] netlink: 472 bytes leftover after parsing attributes in process `syz.4.641'.
[  160.405852][ T8398] openvswitch: netlink: Flow key attr not present in new flow.
[  160.450320][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  160.450338][   T40] audit: type=1400 audit(1756605401.814:507): avc:  denied  { read } for  pid=8400 comm="syz.2.642" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  160.454785][ T8403] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  160.468404][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  160.468932][   T40] audit: type=1400 audit(1756605401.834:508): avc:  denied  { open } for  pid=8400 comm="syz.2.642" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  160.952936][ T5979] Bluetooth: hci4: command 0x0405 tx timeout
[  161.088913][ T8409] delete_channel: no stack
[  161.093703][ T8409] delete_channel: no stack
[  161.311220][ T8426] netlink: 24 bytes leftover after parsing attributes in process `syz.4.650'.
[  161.376945][ T8430] F2FS-fs (nbd2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  161.379395][ T8430] F2FS-fs (nbd2): Can't find valid F2FS filesystem in 1th superblock
[  161.382228][ T8430] F2FS-fs (nbd2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  161.385045][ T8430] F2FS-fs (nbd2): Can't find valid F2FS filesystem in 2th superblock
[  161.516985][ T8449] loop6: detected capacity change from 0 to 7
[  161.524296][ T7840] Dev loop6: unable to read RDB block 7
[  161.524946][ T8447] kvm: pic: single mode not supported
[  161.526363][ T7840]  loop6: AHDI p1
[  161.526393][ T7840] loop6: partition table partially beyond EOD, truncated
[  161.537986][ T8449] Dev loop6: unable to read RDB block 7
[  161.539988][ T8449]  loop6: AHDI p1
[  161.541270][ T8449] loop6: partition table partially beyond EOD, truncated
[  161.716268][   T40] audit: type=1400 audit(1756605403.084:509): avc:  denied  { name_bind } for  pid=8466 comm="syz.2.661" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  161.919215][ T8487] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=8487 comm=syz.3.668
[  161.925462][ T8487] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=8487 comm=syz.3.668
[  162.354806][ T8518] /dev/nullb0: Can't open blockdev
[  162.358254][ T8518] bond0: entered allmulticast mode
[  162.360662][ T8518] bond_slave_0: entered allmulticast mode
[  162.364009][ T8518] bond_slave_1: entered allmulticast mode
[  162.442430][ T8523] netlink: 128 bytes leftover after parsing attributes in process `syz.4.679'.
[  162.652833][ T8552] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.689'.
[  162.657912][ T8552] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.689'.
[  162.662365][ T8552] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.689'.
[  162.673147][ T8552] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.689'.
[  162.679456][ T8552] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.689'.
[  162.686651][ T8552] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.689'.
[  162.690669][ T8552] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.689'.
[  162.775416][ T8574] netlink: 'syz.4.695': attribute type 10 has an invalid length.
[  162.782630][ T8574] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  162.788054][ T8574] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  162.792527][ T8574] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  162.842225][   T40] audit: type=1400 audit(1756605404.204:510): avc:  denied  { mounton } for  pid=8583 comm="syz.4.698" path="mnt:[4026532873]" dev="nsfs" ino=4026532873 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  162.875145][   T40] audit: type=1400 audit(1756605404.234:511): avc:  denied  { connect } for  pid=8587 comm="syz.3.702" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  162.973647][ T8595] overlayfs: failed to resolve './file1': -2
[  163.109946][ T8627] FAT-fs (nullb0): bogus number of reserved sectors
[  163.112589][ T8627] FAT-fs (nullb0): Can't find a valid FAT filesystem
[  163.118822][   T40] audit: type=1400 audit(1756605404.484:512): avc:  denied  { nlmsg_read } for  pid=8626 comm="syz.2.709" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  163.194986][   T63] Bluetooth: Unexpected start frame (len 18)
[  163.285194][ T8652] vxfs: WRONG superblock magic 00000000 at 1
[  163.288747][ T8652] vxfs: WRONG superblock magic 00000000 at 8
[  163.294109][ T8652] vxfs: can't find superblock.
[  163.301131][   T63] Bluetooth: hci4: unexpected event for opcode 0x0c1b
[  163.371804][ T8662] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  163.377528][ T8662] tipc: Resetting bearer <eth:syzkaller0>
[  163.578730][ T8676] ------------[ cut here ]------------
[  163.580643][ T8676] WARNING: CPU: 3 PID: 8676 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x30b/0x23f0
[  163.584347][ T8676] Modules linked in:
[  163.586358][ T8676] CPU: 3 UID: 0 PID: 8676 Comm: syz.4.720 Not tainted syzkaller #0 PREEMPT(full) 
[  163.592517][ T8676] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.596738][ T8676] RIP: 0010:__alloc_frozen_pages_noprof+0x30b/0x23f0
[  163.599467][ T8676] Code: f0 5b 5d 41 5c 41 5d 41 5e 41 5f e9 3f fd 81 09 83 fe 0a 0f 86 0a fe ff ff 80 3d ee af 7e 0e 00 75 0b c6 05 e5 af 7e 0e 01 90 <0f> 0b 90 45 31 f6 eb 81 4d 85 f6 74 22 44 89 fa 89 ee 4c 89 f7 e8
[  163.607159][ T8676] RSP: 0018:ffffc90007bff7f0 EFLAGS: 00010246
[  163.609156][ T8676] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  163.612331][ T8676] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000040d40
[  163.615618][ T8676] RBP: 000000000000001e R08: 0000000000000005 R09: 0000000000000009
[  163.619003][ T8676] R10: 000000000000001e R11: 0000000000000000 R12: 0000000000040d40
[  163.621887][ T8676] R13: 1ffff92000f7ff13 R14: ffffffff9ae7ca24 R15: 000000000000001e
[  163.624712][ T8676] FS:  00007fd2b77b46c0(0000) GS:ffff8880d69b8000(0000) knlGS:0000000000000000
[  163.627921][ T8676] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  163.630508][ T8676] CR2: 00007fd2b69729a0 CR3: 000000004a0ca000 CR4: 0000000000352ef0
[  163.633898][ T8676] Call Trace:
[  163.635251][ T8676]  <TASK>
[  163.636483][ T8676]  ? do_syscall_64+0xcd/0x4c0
[  163.638174][ T8676]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.640276][ T8676]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  163.642771][ T8676]  ? kasan_quarantine_put+0x10a/0x240
[  163.645097][ T8676]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.647427][ T8676]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  163.649519][ T8676]  ? policy_nodemask+0xea/0x4e0
[  163.651107][ T8676]  alloc_pages_mpol+0x1fb/0x550
[  163.652897][ T8676]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  163.655096][ T8676]  ? v9fs_fid_get_acl+0x7a/0x120
[  163.657092][ T8676]  ___kmalloc_large_node+0xed/0x160
[  163.659043][ T8676]  ? v9fs_fid_get_acl+0x7a/0x120
[  163.660715][ T8676]  __kmalloc_large_node_noprof+0x1c/0x70
[  163.663075][ T8676]  __kmalloc_noprof.cold+0xc/0x61
[  163.664764][ T8676]  ? __pfx_iget5_locked+0x10/0x10
[  163.666769][ T8676]  ? v9fs_cache_inode_get_cookie+0x28f/0x3a0
[  163.669124][ T8676]  v9fs_fid_get_acl+0x7a/0x120
[  163.670908][ T8676]  v9fs_get_acl+0xee/0x530
[  163.672348][ T8676]  v9fs_inode_from_fid_dotl+0x264/0x2f0
[  163.674273][ T8676]  v9fs_mount+0x4fd/0xa90
[  163.675842][ T8676]  ? __pfx_v9fs_mount+0x10/0x10
[  163.678029][ T8676]  ? cap_capable+0xb3/0x250
[  163.680339][ T8676]  ? __pfx_v9fs_mount+0x10/0x10
[  163.682424][ T8676]  legacy_get_tree+0x109/0x220
[  163.685196][ T8676]  vfs_get_tree+0x8b/0x340
[  163.687478][ T8676]  path_mount+0x1513/0x2000
[  163.689763][ T8676]  ? __pfx_path_mount+0x10/0x10
[  163.691561][ T8676]  ? kmem_cache_free+0x2d1/0x4d0
[  163.693374][ T8676]  ? putname+0x154/0x1a0
[  163.695008][ T8676]  ? putname+0x154/0x1a0
[  163.696490][ T8676]  ? __x64_sys_mount+0x28d/0x310
[  163.698196][ T8676]  __x64_sys_mount+0x28d/0x310
[  163.700191][ T8676]  ? __pfx___x64_sys_mount+0x10/0x10
[  163.702065][ T8676]  do_syscall_64+0xcd/0x4c0
[  163.704607][ T8676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.707734][ T8676] RIP: 0033:0x7fd2b698ebe9
[  163.709711][ T8676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.716939][ T8676] RSP: 002b:00007fd2b77b4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  163.720134][ T8676] RAX: ffffffffffffffda RBX: 00007fd2b6bc5fa0 RCX: 00007fd2b698ebe9
[  163.723567][ T8676] RDX: 0000200000000b80 RSI: 00002000000003c0 RDI: 0000000000000000
[  163.727090][ T8676] RBP: 00007fd2b6a11e19 R08: 0000200000000580 R09: 0000000000000000
[  163.730062][ T8676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.733990][ T8676] R13: 00007fd2b6bc6038 R14: 00007fd2b6bc5fa0 R15: 00007ffd786f2548
[  163.736988][ T8676]  </TASK>
[  163.738096][ T8676] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  163.740468][ T8676] CPU: 3 UID: 0 PID: 8676 Comm: syz.4.720 Not tainted syzkaller #0 PREEMPT(full) 
[  163.743460][ T8676] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.746901][ T8676] Call Trace:
[  163.747988][ T8676]  <TASK>
[  163.748941][ T8676]  dump_stack_lvl+0x3d/0x1f0
[  163.750445][ T8676]  vpanic+0x6e8/0x7a0
[  163.751727][ T8676]  ? __pfx_vpanic+0x10/0x10
[  163.753241][ T8676]  ? __alloc_frozen_pages_noprof+0x30b/0x23f0
[  163.755225][ T8676]  panic+0xca/0xd0
[  163.756621][ T8676]  ? __pfx_panic+0x10/0x10
[  163.758207][ T8676]  check_panic_on_warn+0xab/0xb0
[  163.759974][ T8676]  __warn+0xf6/0x3c0
[  163.761283][ T8676]  ? __alloc_frozen_pages_noprof+0x30b/0x23f0
[  163.763762][ T8676]  report_bug+0x3c3/0x580
[  163.765523][ T8676]  ? __alloc_frozen_pages_noprof+0x30b/0x23f0
[  163.767987][ T8676]  handle_bug+0x184/0x210
[  163.769629][ T8676]  exc_invalid_op+0x17/0x50
[  163.771188][ T8676]  asm_exc_invalid_op+0x1a/0x20
[  163.772896][ T8676] RIP: 0010:__alloc_frozen_pages_noprof+0x30b/0x23f0
[  163.775202][ T8676] Code: f0 5b 5d 41 5c 41 5d 41 5e 41 5f e9 3f fd 81 09 83 fe 0a 0f 86 0a fe ff ff 80 3d ee af 7e 0e 00 75 0b c6 05 e5 af 7e 0e 01 90 <0f> 0b 90 45 31 f6 eb 81 4d 85 f6 74 22 44 89 fa 89 ee 4c 89 f7 e8
[  163.781502][ T8676] RSP: 0018:ffffc90007bff7f0 EFLAGS: 00010246
[  163.783787][ T8676] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  163.787022][ T8676] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000040d40
[  163.790240][ T8676] RBP: 000000000000001e R08: 0000000000000005 R09: 0000000000000009
[  163.792953][ T8676] R10: 000000000000001e R11: 0000000000000000 R12: 0000000000040d40
[  163.795855][ T8676] R13: 1ffff92000f7ff13 R14: ffffffff9ae7ca24 R15: 000000000000001e
[  163.798682][ T8676]  ? do_syscall_64+0xcd/0x4c0
[  163.800254][ T8676]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.802216][ T8676]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  163.804428][ T8676]  ? kasan_quarantine_put+0x10a/0x240
[  163.806654][ T8676]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.808886][ T8676]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  163.811328][ T8676]  ? policy_nodemask+0xea/0x4e0
[  163.813093][ T8676]  alloc_pages_mpol+0x1fb/0x550
[  163.814697][ T8676]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  163.816724][ T8676]  ? v9fs_fid_get_acl+0x7a/0x120
[  163.818509][ T8676]  ___kmalloc_large_node+0xed/0x160
[  163.820482][ T8676]  ? v9fs_fid_get_acl+0x7a/0x120
[  163.822200][ T8676]  __kmalloc_large_node_noprof+0x1c/0x70
[  163.824179][ T8676]  __kmalloc_noprof.cold+0xc/0x61
[  163.826151][ T8676]  ? __pfx_iget5_locked+0x10/0x10
[  163.827898][ T8676]  ? v9fs_cache_inode_get_cookie+0x28f/0x3a0
[  163.829940][ T8676]  v9fs_fid_get_acl+0x7a/0x120
[  163.831619][ T8676]  v9fs_get_acl+0xee/0x530
[  163.833446][ T8676]  v9fs_inode_from_fid_dotl+0x264/0x2f0
[  163.835382][ T8676]  v9fs_mount+0x4fd/0xa90
[  163.836998][ T8676]  ? __pfx_v9fs_mount+0x10/0x10
[  163.838757][ T8676]  ? cap_capable+0xb3/0x250
[  163.840340][ T8676]  ? __pfx_v9fs_mount+0x10/0x10
[  163.842201][ T8676]  legacy_get_tree+0x109/0x220
[  163.844169][ T8676]  vfs_get_tree+0x8b/0x340
[  163.846208][ T8676]  path_mount+0x1513/0x2000
[  163.847990][ T8676]  ? __pfx_path_mount+0x10/0x10
[  163.849601][ T8676]  ? kmem_cache_free+0x2d1/0x4d0
[  163.851283][ T8676]  ? putname+0x154/0x1a0
[  163.853149][ T8676]  ? putname+0x154/0x1a0
[  163.854912][ T8676]  ? __x64_sys_mount+0x28d/0x310
[  163.856707][ T8676]  __x64_sys_mount+0x28d/0x310
[  163.858390][ T8676]  ? __pfx___x64_sys_mount+0x10/0x10
[  163.860228][ T8676]  do_syscall_64+0xcd/0x4c0
[  163.861829][ T8676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.863935][ T8676] RIP: 0033:0x7fd2b698ebe9
[  163.865640][ T8676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.872979][ T8676] RSP: 002b:00007fd2b77b4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  163.876129][ T8676] RAX: ffffffffffffffda RBX: 00007fd2b6bc5fa0 RCX: 00007fd2b698ebe9
[  163.879068][ T8676] RDX: 0000200000000b80 RSI: 00002000000003c0 RDI: 0000000000000000
[  163.881682][ T8676] RBP: 00007fd2b6a11e19 R08: 0000200000000580 R09: 0000000000000000
[  163.884130][ T8676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.886814][ T8676] R13: 00007fd2b6bc6038 R14: 00007fd2b6bc5fa0 R15: 00007ffd786f2548
[  163.889431][ T8676]  </TASK>
[  163.891411][ T8676] Kernel Offset: disabled
[  163.892716][ T8676] Rebooting in 86400 seconds..

VM DIAGNOSIS:
01:56:45  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000118fcd RBX=0000000000000000 RCX=ffffffff8b93fc29 RDX=0000000000000000
RSI=ffffffff8de50a30 RDI=ffffffff8c162980 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08
R8 =0000000000000001 R9 =ffffed100d486655 R10=ffff88806a4332ab R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab5290 R15=0000000000000000
RIP=ffffffff8b93e78f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d66b8000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001008 CR3=000000005191f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc2b0fb080 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc2b0fb206
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc2b0fb206 00007ffc2b0fb20c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec8812e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec8812e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec8812e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec8812e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec8812ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec8812fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000ffff0ff0 RBX=ffff8880248e8000 RCX=ffffc9000c001000 RDX=1ffff1100491d1a6
RSI=ffffffff8153735c RDI=ffff8880248e8d30 RBP=0000000000000002 RSP=ffffc90007a9f9d0
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000002 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=ffff8880248e8000 R15=0000000000000002
RIP=ffffffff81537385 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 00007fb741d956c0 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0000 ffff8880d67b8000 ffffffff 00c09300 DPL=0 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000ffff
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000003227f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0a43 [ST=1] FTW=ff MXCSR=00001f80
FPR0=c000000000000000 ffff FPR1=c000000000000000 ffff
FPR2=c000000000000000 ffff FPR3=c000000000000000 ffff
FPR4=c000000000000000 ffff FPR5=c000000000000000 ffff
FPR6=c000000000000000 ffff FPR7=c000000000000000 ffff
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc79ea08d6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc79ea08d6 00007ffc79ea08dc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000008 RCX=ffffffff81830758 RDX=ffff88801e6aa440
RSI=0000000000000008 RDI=0000000000000005 RBP=ffff888056df6ad0 RSP=ffffc9000062fb70
R8 =0000000000000005 R9 =0000000000000008 R10=0000000000000008 R11=0000000000000000
R12=0000000000000000 R13=ffff88801b887000 R14=dffffc0000000000 R15=ffff88801b887000
RIP=ffffffff81830758 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68b8000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000002100 CR3=0000000034286000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006800000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000f8000000000 00000f8000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000f8000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec8812ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec8812fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec89974a8 00007f9ec89974a0 00007f9ec8997498 00007f9ec8997470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec94fd100 00007f9ec8997460 00007f9ec8997478 00007f9ec89974c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9ec89974b8 00007f9ec89974b0 00007f9ec89974a8 00007f9ec89974a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000007a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85643ab5 RDI=ffffffff9b1120a0 RBP=ffffffff9b112060 RSP=ffffc90007bff160
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000007a R14=ffffffff9b112060 R15=ffffffff85643a50
RIP=ffffffff85643adf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fd2b77b46c0 ffffffff 00c01300
GS =0000 ffff8880d69b8000 ffffffff 00c01300
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fd2b69729a0 CR3=000000004a0ca000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=00000000f802fefe Opmask02=00000000fe000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc79ea0750 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc79ea08d6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc79ea08d6 00007ffc79ea08dc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fab5dc12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000