last executing test programs:

42.141989101s ago: executing program 0 (id=486):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x50, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x24, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}]}]}]}], {0x14}}, 0x78}, 0x1, 0x0, 0x0, 0x4810}, 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000388a846008864290008004500005800000000082fac"], 0x0)

42.141278465s ago: executing program 0 (id=488):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket(0x1, 0x803, 0x0)
getsockopt$SO_BINDTODEVICE(r3, 0x1, 0x2f, &(0x7f0000000000), 0x20000000)
r4 = syz_open_dev$evdev(&(0x7f0000002740), 0x0, 0x68000)
ioctl$EVIOCGID(r4, 0x80084502, &(0x7f0000002780)=""/55)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000)=0x20, 0x4)
setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f00000000c0)=r1, 0x4)
listen(r2, 0x0)
close(r2)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000a00000500150003000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
socket(0x1, 0x803, 0x0) (async)
getsockopt$SO_BINDTODEVICE(r3, 0x1, 0x2f, &(0x7f0000000000), 0x20000000) (async)
syz_open_dev$evdev(&(0x7f0000002740), 0x0, 0x68000) (async)
ioctl$EVIOCGID(r4, 0x80084502, &(0x7f0000002780)=""/55) (async)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000)=0x20, 0x4) (async)
setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f00000000c0)=r1, 0x4) (async)
listen(r2, 0x0) (async)
close(r2) (async)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000a00000500150003000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0) (async)

42.062085197s ago: executing program 0 (id=489):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x8044}, 0x20040000)

41.210262903s ago: executing program 0 (id=499):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x45110, 0x0)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000480)={[{@noswap}]})
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0x2100)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000280)={0x80000000, 0x2})
syz_emit_ethernet(0xa6, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x70, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "ffffffffff60000000000000"}]}}}}}}, 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r2, 0xc0f85403, &(0x7f0000000040)={{0x1, 0x1}, 0x0, 0x0, 'id0\x00', 'timer1\x00', 0x0, 0x0, 0x0, 0xced})
syz_emit_ethernet(0x46, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6012000800103afffe8000000000000000000000000000bbff0200000000000000000000000000018600907800fd02000000000000000000a847bdc35a9a5e122ed95af0d82e316d8bab3c11c30caa0c3ec7af8d861cf047d7f9c773db963a57cae5ecdd3640c9452482a6b63ed48ec64b77ef0aa83d97804506f1523fae5d4464ce3786491391bf6367a104f7d470965187c9cda54e64defdf0c47e678f7a5cd62f36f6f1c566d34b4a3adc07e10dd4ab655ebdfa923305a75c070d583c4a0d8a3537ed8f87c4edf4731aae16c5"], 0x0)

41.210040981s ago: executing program 0 (id=500):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.freeze\x00', 0x275a, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
socket(0x2a, 0x2, 0x0)
fsopen(&(0x7f0000000000)='ocfs2_dlmfs\x00', 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
socket$rxrpc(0x21, 0x2, 0xa)
io_uring_setup(0x4c2d, &(0x7f0000000480)={0x0, 0x6e21, 0x8, 0x2, 0x2ec})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$rxrpc(0x21, 0x2, 0xa)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r2}, 0x20)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r1], 0x0, &(0x7f0000000200), &(0x7f0000000040)})

40.83975127s ago: executing program 0 (id=511):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0xb, &(0x7f0000000580)=@framed={{0x18, 0x2}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x7b}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="20010000", @ANYRES16=r1, @ANYBLOB="0500000c0000000000000f00000008000300", @ANYRES32=r3, @ANYBLOB="47000e00800000000802110000000802110000015050505050500000000000000000000064000000000602020202020204060000000000000602000025030034003c040106b80400080026006c09000008000c006400000008000d0000000000a2000f00019c"], 0x120}, 0x1, 0x0, 0x0, 0x90}, 0x0)

40.788699696s ago: executing program 32 (id=511):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0xb, &(0x7f0000000580)=@framed={{0x18, 0x2}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x7b}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="20010000", @ANYRES16=r1, @ANYBLOB="0500000c0000000000000f00000008000300", @ANYRES32=r3, @ANYBLOB="47000e00800000000802110000000802110000015050505050500000000000000000000064000000000602020202020204060000000000000602000025030034003c040106b80400080026006c09000008000c006400000008000d0000000000a2000f00019c"], 0x120}, 0x1, 0x0, 0x0, 0x90}, 0x0)

18.439264149s ago: executing program 2 (id=870):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x4, &(0x7f0000000100)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0)={0x0, 0x8}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

18.379089905s ago: executing program 2 (id=873):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x1, &(0x7f0000000000), 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c000000100000c99ef2f15feebf04b5a3228bf4966149f931ba3efc5a35356735df5d699840de54b5fc806bb9d6bf61d3384db606b0d96e5752140a0fa0072187ccf643ec7f364cf84aab33d78b1d8e658f8a389549601304a9f849d9d58c4e559203bc735ee8f867f38f9e42f5c9f9c12f81622b0dddd2de24d44bb60706e97338a2ba38a81c1f951a392c0d21a0028772747e70f300dfbff4f3a2177c987f90b7dda2c49c8c799c60f687da74a9f5636217cb16bf9e1d80858e0a18122318725fe7eb58d3ed743681f70be6f224fa2722c3cb1895d3ed59de089837417d437692ed74bd10bba4276b51970201", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b000100697036746e6c00000c0002800500060001000000"], 0x3c}}, 0x0)
r1 = memfd_create(&(0x7f0000000040)='%]}.-,\xf4/)\x00', 0x4)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$nfc_llcp(r2, &(0x7f0000000240)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "d9298498abdba7f061bd1ca44c226af5160e961711a07760760beeab11e88509de7f1939e8abff005597c8ef039a5be42200", 0x38}, 0x60)
readv(r2, &(0x7f0000000000)=[{&(0x7f0000000100)=""/72, 0x48}], 0x1)
fcntl$setsig(r1, 0xa, 0x2b)
r3 = socket$netlink(0x10, 0x3, 0x0)
socket(0x2, 0x80805, 0x0)
utimensat(0xffffffffffffff9c, 0x0, &(0x7f0000000100)={{0x0, 0x3ffffffe}, {0x0, 0x3ffffffe}}, 0x0)
getsockopt$bt_hci(r2, 0x84, 0x0, &(0x7f00000020c0)=""/4116, &(0x7f0000001040)=0x1014)
r4 = syz_open_dev$ptys(0xc, 0x3, 0x1)
pipe2(&(0x7f0000000000)={0x0, <r5=>0x0}, 0x0)
socket$isdn_base(0x22, 0x3, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
socket$inet(0x2, 0x3, 0x73)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0)
ioctl$KDGKBTYPE(r4, 0x4b33, &(0x7f00000001c0))
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

18.317686579s ago: executing program 2 (id=876):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}]}]}]}], {0x14}}, 0x80}, 0x1, 0x0, 0x0, 0x4810}, 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000388a846008100290008004500005800004000082fac"], 0x0)

18.241293045s ago: executing program 2 (id=877):
socket$inet_dccp(0x2, 0x6, 0x0) (async)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0) (async)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x3, 0x300) (async)
r2 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300) (async)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'geneve0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb1000000080089064803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x0, r4}, 0x14)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r1)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x19fd85b, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0/file0\x00', &(0x7f00000000c0), 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000007c0), 0xffffffffffffffff) (async)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f00000007c0), 0xffffffffffffffff)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r9=>0x0})
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0) (async)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0)
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(0xffffffffffffffff, 0x1e, &(0x7f0000000080)={r2}, 0x1)
socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=@getnexthop={0x18, 0x76, 0x401}, 0x18}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x34, r7, 0x1, 0x1000, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x44001}, 0x4008010)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f00000025c0))

18.171925073s ago: executing program 2 (id=878):
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x211000, 0x1000}, 0x20)
setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'ipvlan1\x00', <r4=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r2, &(0x7f0000000100)={0x2c, 0x0, r4}, 0x10)
write(r1, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24)
r5 = socket$netlink(0x10, 0x3, 0x400000000000004)
writev(r5, &(0x7f0000019440)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f0000600ec000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1)

17.956187902s ago: executing program 2 (id=881):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.freeze\x00', 0x275a, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
socket(0x29, 0x4, 0x0)
fsopen(&(0x7f0000000000)='ocfs2_dlmfs\x00', 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="120200000000000034001280110001006272696467655f736c617665000000001c000580050019000300000006001f000000000005001e000a"], 0x54}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
socket$rxrpc(0x21, 0x2, 0xa)
io_uring_setup(0x4c2d, &(0x7f0000000480)={0x0, 0x6e21, 0x8, 0x2, 0x3d4})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$rxrpc(0x21, 0x2, 0xa)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
syz_io_uring_setup(0x2265, &(0x7f0000000280)={0x0, 0xf998, 0x42, 0x0, 0x288, 0x0, r0}, &(0x7f0000000300), &(0x7f0000000340)=<r5=>0x0)
r6 = io_uring_setup(0x6030, &(0x7f0000000580)={0x0, 0xd4b5})
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0x16, 0x20000002, r7)
syz_io_uring_submit(0x0, r5, &(0x7f0000000380)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x12, 0x0, 0x0, 0x0, 0x23457, 0x0, 0x0, 0x1, {0x0, r7}})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r8=>0x0], 0x1})
r9 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r9}, 0x20)
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r8], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000440)=[0x0]})
r10 = open(&(0x7f00000002c0)='./bus\x00', 0x60102, 0x0)
read$FUSE(r10, &(0x7f0000001f40)={0x2020}, 0x2020)
splice(0xffffffffffffffff, 0x0, r10, 0x0, 0xffffffe1, 0x0)
copy_file_range(r10, &(0x7f00000003c0)=0x100000, r3, &(0x7f0000000400)=0x8000, 0xb6, 0x0)

17.850931012s ago: executing program 33 (id=881):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.freeze\x00', 0x275a, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
socket(0x29, 0x4, 0x0)
fsopen(&(0x7f0000000000)='ocfs2_dlmfs\x00', 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYRESHEX=r2, @ANYRESOCT, @ANYBLOB="120200000000000034001280110001006272696467655f736c617665000000001c000580050019000300000006001f000000000005001e000a"], 0x54}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
socket$rxrpc(0x21, 0x2, 0xa)
io_uring_setup(0x4c2d, &(0x7f0000000480)={0x0, 0x6e21, 0x8, 0x2, 0x3d4})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$rxrpc(0x21, 0x2, 0xa)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
syz_io_uring_setup(0x2265, &(0x7f0000000280)={0x0, 0xf998, 0x42, 0x0, 0x288, 0x0, r0}, &(0x7f0000000300), &(0x7f0000000340)=<r5=>0x0)
r6 = io_uring_setup(0x6030, &(0x7f0000000580)={0x0, 0xd4b5})
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0x16, 0x20000002, r7)
syz_io_uring_submit(0x0, r5, &(0x7f0000000380)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x12, 0x0, 0x0, 0x0, 0x23457, 0x0, 0x0, 0x1, {0x0, r7}})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r8=>0x0], 0x1})
r9 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r9}, 0x20)
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r8], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000440)=[0x0]})
r10 = open(&(0x7f00000002c0)='./bus\x00', 0x60102, 0x0)
read$FUSE(r10, &(0x7f0000001f40)={0x2020}, 0x2020)
splice(0xffffffffffffffff, 0x0, r10, 0x0, 0xffffffe1, 0x0)
copy_file_range(r10, &(0x7f00000003c0)=0x100000, r3, &(0x7f0000000400)=0x8000, 0xb6, 0x0)

3.359336758s ago: executing program 4 (id=1185):
syz_80211_join_ibss(0x0, &(0x7f0000000040)=@default_ibss_ssid, 0x6, 0x100000000000000)

3.358658087s ago: executing program 4 (id=1187):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, &(0x7f0000000340)="d25d00266726f30fc775008eed57013166b883810000bad10466b80000008066ef4f7e6635020006000f23f80f302626650f01cfb82f010f00d866b80500000066b9108b00000f01c136660f6ea606000f01df", 0x53}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.191314373s ago: executing program 4 (id=1189):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x1, 0x2)
r1 = socket$alg(0x26, 0x5, 0x0)
syz_usb_connect(0x3, 0x0, 0x0, 0x0)
bind$alg(r0, 0x0, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
socket(0x200000100000011, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r3, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r4, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
listen(r4, 0x20000005)
r5 = socket$inet6(0xa, 0x6, 0x0)
r6 = landlock_create_ruleset(&(0x7f00000000c0)={0x0, 0x2, 0x3}, 0x11, 0x0)
landlock_restrict_self(r6, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000005000), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NODES(r7, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r8, 0x1, 0x70bd2f, 0x25dfdbfc}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)

1.871525223s ago: executing program 5 (id=1221):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca0000c441f96ec80fc4c60066400fe2def3ad46c7045300101000f00fc01ec422e10399c5c1202066410f6f15040000000000e1f563df", 0xdc000006, 0x0}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220f"], 0x0}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0xc00000000000000)

1.341661391s ago: executing program 5 (id=1233):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0) (async)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) (async)
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0xce20, @local}, 0x10) (async)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="1404000013000100000000040000000080"], 0x14}], 0x1, 0x0, 0x0, 0x88}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, 0x0) (async)
r2 = gettid()
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x7, 0x4, @tid=r2}, &(0x7f0000044000)) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000003a00)={0x1, &(0x7f00000039c0)=[{0x6}]}) (async)
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
timer_settime(0x0, 0x1, &(0x7f0000000540)={{}, {0x0, 0x9}}, 0x0)
listen(r0, 0x3)

1.341498319s ago: executing program 5 (id=1234):
r0 = socket$netlink(0x10, 0x3, 0x14)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413010048100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'team_slave_0\x00'}}]}, 0x38}}, 0x0)

1.218592737s ago: executing program 5 (id=1236):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000080)={0x1d, r1, 0x2}, 0x18)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000100)={0x1d, r3}, 0x18)
connect$can_j1939(r2, &(0x7f0000000140)={0x1d, r3}, 0x18)
sendmsg$can_j1939(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)='data', 0x4}}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-aesni)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
pipe(&(0x7f00000045c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r8, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r8, 0x0)
vmsplice(r7, &(0x7f0000000180)=[{&(0x7f0000000c00)="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", 0x401}], 0x1, 0x1)
splice(r6, 0x0, r5, 0x0, 0x8000, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r11=>0x0})
sendmsg$nl_route(r9, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c80000010000d0429bd7000fc02df2500000000", @ANYRES32=r11, @ANYBLOB="10000000000000001c0012800b00010062726964676500000c0002800500190084000000"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
fsetxattr$security_ima(r2, &(0x7f0000000300), &(0x7f0000000340)=@ng={0x4, 0x12, "5172ba044c0ed7d2f951a5"}, 0xd, 0x3)

1.080913099s ago: executing program 5 (id=1242):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000400000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)

942.873185ms ago: executing program 5 (id=1245):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000050cb5340450c10108e492940a80909021b00090000000009040002010035040009058dff86"], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000140)={0x50, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0xfffc}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11, 0x1, 0x0, 0x100}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x21}, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r1, &(0x7f0000000000)="ccd6", 0x2)

181.980181ms ago: executing program 3 (id=1258):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x11, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a603f00000000000500000014000500200100000000fc0000000100000000001c00090008000000", @ANYRES32=r1], 0x4c}}, 0x0)

181.768638ms ago: executing program 1 (id=1259):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000100)={0xc})
ioctl$IOMMU_TEST_OP_ACCESS_REPLACE_IOAS(r0, 0x3ba0, &(0x7f0000000500)={0x48})

180.330881ms ago: executing program 4 (id=1260):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000080)={0x1d, r1, 0x2}, 0x18)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000100)={0x1d, r3}, 0x18)
connect$can_j1939(r2, &(0x7f0000000140)={0x1d, r3}, 0x18)
sendmsg$can_j1939(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)='data', 0x4}}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-aesni)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
pipe(&(0x7f00000045c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r8, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r8, 0x0)
vmsplice(r7, &(0x7f0000000180)=[{&(0x7f0000000c00)="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", 0x401}], 0x1, 0x1)
splice(r6, 0x0, r5, 0x0, 0x8000, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000000c0)={'bridge0\x00'})

180.22657ms ago: executing program 3 (id=1261):
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ibss_ssid, 0xb, 0x1100000000000000)

120.937148ms ago: executing program 1 (id=1262):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='nv\x00', 0xfec1)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000002c0)="316f825a3d29f96a2093a917017b4cd300000200bee70035ed313e19d6dd1fb41a20baf7f7343067fd40cdd4b16742e94b62f4eb1c5d9faab7f3028100ae8180db94b9de7456ae62b0e6fe7766a0842912179154a96fa88e161d4adf77a486e10d1d1d0b90c8997e6917226fa4bb5d77e85729336ba6369a4c33ac53b45d46a92db9fda99af4429dc23db6a1706328df4e75eb173a81bd4af8b89d1870c9b2382a759d67a4cbb1280955e9a59cd8e5e8ac68c27da3d542aece1ba7920e8f39b270458224e74a", 0xc6}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df28a3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25cb51279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63e", 0x82}, {&(0x7f0000000700)="6a8fa35a5ac69c3f3504610b7a65154b8a319d412cae86d445126356a7ea73e2cc334fba45667941bdeaebee3915c7685d4a2c125a1898bb727147075b79a19e162ca01c17cdb0398d7303a2955433e8f9de6d144dddc2ca170b10d505c3eb024dcacee0c139b5a9044f1f3a0fd4e958406a6ba551007ed89e2312e678f38707c8f37e5c8fe3cb977b7035046ea60fc263c1f72c13c1c7be3f14407e96c832dd5b10a03966185a38402e2cf26722ddeb0ef8f2d4a071d516ed09b0adec288e14e03b42147a29ba7f26c6886c05bea9ef56a3bb171e67a92b838a19c3a646", 0xde}], 0x3}}, {{0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000014c0)='#', 0x1}], 0x1}}], 0x2, 0x0)

120.58328ms ago: executing program 3 (id=1263):
socketpair(0x3d, 0x4, 0x10, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6_vti0\x00', &(0x7f0000000300)={'syztnl0\x00', 0x0, 0x29, 0x10, 0x7, 0x8, 0x60, @ipv4={'\x00', '\xff\xff', @remote}, @loopback, 0x78c6, 0x8, 0x4, 0x8}})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = socket(0x2a, 0x2, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'vlan0\x00', &(0x7f0000000280)=@ethtool_drvinfo={0x3, "70a57749c95ae3d489dc81a6432358a2efd4ec99b43ef68c1aa21eb80ed77ead", "b3f754f20a73ccbf0f3a93eeb0ff97fe7c2a50f7481c8053fd824dc757177c85", "1aa370797e6f0a5b31403f1e8606e0ca0270dcda34baff5e3f0a2b94b8fcda97", "4a9ca544a6d9124410e38ceffef9026e3cec1d019b78b944885ed800b15551d4", "7dfad2ae4b667fe868ec4f57d9663f42c0b7f1711a0537024c24fd79155a0aad", "703bddf42789cb342cbe0d47", 0x0, 0x9, 0x5, 0xd, 0x924}})
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000012c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}}, 0x0, 0x0, 0xf, 0x0, "0c9e8100000001860b479037073d223b3c1b324debec40e57a050000007eb48821996aff367154e746be4d76062e2700c425a7519cc275d04e6205abd307a0c4fa381300"}, 0xd8)
socket$netlink(0x10, 0x3, 0x8000000004)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000000)={0x2, &(0x7f00000000c0)=[{0x3c, 0x0, 0x0, 0x200}, {0x3, 0x8, 0x6}]})
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)=@generic={&(0x7f0000000040)='./file0\x00', 0x0, 0x8}, 0x18)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r3, 0x8000, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
read$FUSE(r4, &(0x7f0000004180)={0x2020}, 0x2020)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = dup(r5)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x8, 0x0, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000240)={0x73622a85, 0x0, 0xffffffffffffffff})
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r9 = dup3(r8, r7, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r10, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})

120.471336ms ago: executing program 1 (id=1264):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
socket$rxrpc(0x21, 0x2, 0xa)
io_uring_setup(0x4c2d, &(0x7f0000000480)={0x0, 0x6e21, 0x8, 0x2, 0x2ec})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x0)

57.274281ms ago: executing program 1 (id=1265):
socket$nl_generic(0x10, 0x3, 0x10)
socket$can_raw(0x1d, 0x3, 0x1)
socket$packet(0x11, 0x2, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000900)=ANY=[@ANYBLOB="040f1e6d010408"], 0x7)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000080))
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000010000304ecffffff3f00000000000000f6498d5ba4ad735dd29b3062c56ac80e50ad0b663d0fd9496b64ea919390f3b9b48ca2d8c6528c259773ba88872d0ed1ef71d2db6efe02056f8bb4675f8b1f37bdba2d6510979464d0168fee690f17937b43e53c4df2b752670f41aab8f422b1edcd37c42b143d8da0205b30755d18cb38a6a3fb44a00342c4292c929cfd78fae8", @ANYRES32=0x0, @ANYBLOB="a5fdad8800000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2, @ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x4004}, 0x0)

57.096845ms ago: executing program 3 (id=1266):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x8001000d, 0xad, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x8d, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r1, 0x8b2a, &(0x7f0000000040)) (async)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=@ipv4_newrule={0x24, 0x1e, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x1}, [@FRA_DST={0x8, 0x1, @empty}]}, 0x24}}, 0x0)

56.802225ms ago: executing program 1 (id=1267):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r1=>0xffffffffffffffff})
ioctl$DRM_IOCTL_DROP_MASTER(r1, 0x641f) (async)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000007c0)={0xc0, 0x0, &(0x7f0000000600)=[@reply_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000380)={@flat=@binder={0x73622a85, 0x1, 0x1}, @fda={0x66646185, 0x7, 0x0, 0x1a}, @fda={0x66646185, 0x4, 0x0, 0x19}}, &(0x7f0000000140)={0x0, 0x18, 0x38}}, 0x1000}, @enter_looper, @acquire={0x40046305, 0x3}, @transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000540)={@fda={0x66646185, 0x2, 0x2, 0x19}, @ptr={0x70742a85, 0x1, &(0x7f0000000480)=""/183, 0xb7, 0x2, 0x20}, @fda={0x66646185, 0x5, 0x2, 0x1f}}, &(0x7f00000005c0)={0x0, 0x20, 0x48}}}, @exit_looper, @exit_looper, @clear_death={0x400c630f, 0x1}, @dead_binder_done], 0xff, 0x0, &(0x7f00000006c0)="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"})
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000002200007b8b992d095a67c1566b9463d4bf573d0e490b5507e03b766939661cc1520000ffa7fd7bfd8f08bec96f1bd6d1cf4e6162ca61fe679d786003ee256e52d5d7d82377a643920cbce8e3bdb538dc82e768c6e487812d4b09ac17af93dbcf549b6665e90bca40eb84b1237a1a9e7186cf279d234d39fd7bfe63b711ffecacbce586133ee91642d90c0599d42f60c1d500"/162, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='fd\x00') (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc) (async, rerun: 32)
r5 = socket$inet_tcp(0x2, 0x1, 0x0) (async, rerun: 32)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]}) (async, rerun: 64)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0) (rerun: 64)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r6, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000002c0), 0x4) (async)
r7 = fcntl$dupfd(r6, 0x0, r6) (async, rerun: 64)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) (rerun: 64)
sendmsg$IPVS_CMD_GET_CONFIG(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0) (async, rerun: 64)
sendmsg$WG_CMD_GET_DEVICE(r7, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000002fc0)=ANY=[], 0x2b08}}, 0x0) (async, rerun: 64)
setsockopt$inet6_tcp_TLS_TX(r6, 0x11a, 0x2, &(0x7f0000000380)=@ccm_128={{0x303}, "92eecaa98407c49f", "7930285eb54d33eeb97c53d9078c74df", "bd53559e", "ef4a6a5d3c211bfc"}, 0x28) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r7) (async, rerun: 64)
getsockopt$inet_opts(r5, 0x0, 0x6, &(0x7f0000937fed), &(0x7f0000000000)=0x2) (rerun: 64)
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r3, 0x4002f516, &(0x7f0000000100)={0x7f, 0xe6})
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="5c000000020601030000000000000000000000000900020073797a300000000005000100060000000600050000000000050004000000000014000780080011400000000005001500800000000d000300686173683a6d6163"], 0x5c}}, 0x0)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x1414, 0x221}, 0x10}, 0x1, 0x0, 0x0, 0x40015}, 0x0)
statx(r3, 0x0, 0x1000, 0x6000, 0x0)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000400)={r9, <r10=>0xffffffffffffffff}, 0x4) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80001, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x14, 0x14, &(0x7f00000002c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1b}}, {}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}}], {{}, {0x6, 0x0, 0xb, 0x8}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r10, &(0x7f00000009c0)="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"}, 0x20)

56.661763ms ago: executing program 3 (id=1268):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000700)=ANY=[@ANYBLOB="500000000104010800000000000000000a00000808000440000000060500010004000000080005400000800008000540000000030500010001"], 0x50}, 0x1, 0x0, 0x0, 0x4000800}, 0x4000040)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000600)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@assoc={0x18, 0x117, 0x4, 0xa3}], 0x18, 0x40}, 0x4)
sendmsg$TIPC_NL_MEDIA_SET(r3, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000004f00)=ANY=[], 0x12f4}}, 0x4)
recvmmsg(r3, &(0x7f0000000d40)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000a40)=""/81, 0x51}, {&(0x7f0000000ac0)=""/215, 0xd7}], 0x2}, 0xfffffffd}], 0x2, 0x40010100, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r1, 0xc4c85513, &(0x7f0000000040)={0xb})

1.840886ms ago: executing program 4 (id=1269):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{0x1, <r3=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)}, 0x20)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x7, &(0x7f00000001c0)={@broadcast, @multicast2, <r4=>0x0}, &(0x7f0000000300)=0xc)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x1ff, 0x0, r3, 0x6, '\x00', r4, 0xffffffffffffffff, 0x2, 0x1, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
write$P9_RVERSION(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15)
r5 = dup(r2)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r5, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58)
ioctl$RNDZAPENTCNT(r5, 0x5204, &(0x7f0000000000)=0x10001)
r6 = userfaultfd(0x80000)
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f00000003c0)={{&(0x7f0000ffd000/0x2000)=nil, 0x2000}, 0x4})
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000010000000000001c001700"], 0x38}}, 0x0)

1.677628ms ago: executing program 3 (id=1270):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x1, 0x2)
r1 = socket$alg(0x26, 0x5, 0x0)
syz_usb_connect(0x3, 0x0, 0x0, 0x0)
bind$alg(r0, 0x0, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
socket(0x200000100000011, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r3, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r4, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
listen(r4, 0x20000005)
r5 = socket$inet6(0xa, 0x6, 0x0)
r6 = landlock_create_ruleset(&(0x7f00000000c0)={0x0, 0x2, 0x3}, 0x11, 0x0)
landlock_restrict_self(r6, 0x0)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)

306.496µs ago: executing program 4 (id=1271):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x11, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a603f00000000000500000014000500200100000080fe0000000100000000001c00090008000000", @ANYRES32=r1], 0x4c}}, 0x0)

0s ago: executing program 1 (id=1272):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x18002, 0x0)
fcntl$setsig(r0, 0xa, 0x1f)
r1 = getpgrp(0x0)
fcntl$setown(0xffffffffffffffff, 0x8, r1)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x40106614, &(0x7f0000000080))
r3 = syz_pidfd_open(r1, 0x0)
r4 = geteuid()
quotactl_fd$Q_QUOTAOFF(r3, 0xffffffff80000301, r4, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r0, 0x7aa, &(0x7f00000000c0)={{@local, 0x8}, 0x9, 0x9})
pidfd_send_signal(r2, 0x39, &(0x7f0000000100)={0x16, 0x0, 0x30}, 0x0)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
cachestat(r5, &(0x7f0000000180)={0x0, 0x9}, &(0x7f00000001c0), 0x0)
sendfile(r0, r0, &(0x7f0000000200)=0x8, 0x7fff)
fcntl$getownex(r3, 0x10, &(0x7f0000000240))
syz_open_dev$tty1(0xc, 0x4, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x6)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000280), r2)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000002c0)={0x10002, 0x4, 0xeeee8000, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
write$binfmt_script(r2, &(0x7f0000000300)={'#! ', './file0', [{}, {0x20, '/selinux/avc/cache_threshold\x00'}, {0x20, '*%$#}^:^\x15*]-'}, {0x20, '!'}, {0x20, '!-'}, {0x20, '/dev/zero\x00'}], 0xa, "76fdad38a7bb8fbda0156719ab5d787cc49eb5ed611a2a8abb70d88e24fea601ca86ad7843cade265a9b3a8874458356f1a695"}, 0x7a)
waitid$P_PIDFD(0x3, r2, &(0x7f0000000380), 0x8, &(0x7f0000000400))
rt_sigprocmask(0x1, &(0x7f00000004c0)={[0x7]}, &(0x7f0000000500), 0x8)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000800)={r0, 0xe0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000540)=[0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x2, 0x3, &(0x7f0000000580)=[0x0, 0x0], &(0x7f00000005c0)=[0x0, 0x0, 0x0], 0x0, 0xf4, &(0x7f0000000600)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000640), &(0x7f0000000680), 0x8, 0xb6, 0x8, 0x8, &(0x7f00000006c0)}}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000840)={r2, r7, 0x25, 0xc, @void}, 0x10)
read$FUSE(r2, &(0x7f0000000880)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_OPEN(r0, &(0x7f00000028c0)={0x20, 0x0, r8, {0x0, 0x3}}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
mount$fuse(0x0, &(0x7f0000002900)='./file0\x00', &(0x7f0000002940), 0x11000, &(0x7f0000002a00)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, r4}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x2}}], [{@appraise}]}})

0s ago: executing program 1 (id=1274):
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ibss_ssid, 0xb, 0x3f00000000000000)

kernel console output (not intermixed with test programs):

M_F_CREATE should be set when creating new route
[   64.155455][ T6682] hub 6-0:1.0: USB hub found
[   64.157968][ T6682] hub 6-0:1.0: 1 port detected
[   64.230214][ T6689] FAULT_INJECTION: forcing a failure.
[   64.230214][ T6689] name failslab, interval 1, probability 0, space 0, times 0
[   64.234156][ T6689] CPU: 2 UID: 0 PID: 6689 Comm: syz.1.257 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   64.236942][ T6689] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.239750][ T6689] Call Trace:
[   64.240645][ T6689]  <TASK>
[   64.241422][ T6689]  dump_stack_lvl+0x16c/0x1f0
[   64.242653][ T6689]  should_fail_ex+0x497/0x5b0
[   64.243973][ T6689]  ? fs_reclaim_acquire+0xae/0x150
[   64.245306][ T6689]  should_failslab+0xc2/0x120
[   64.246567][ T6689]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   64.248242][ T6689]  ? find_held_lock+0x2d/0x110
[   64.249769][ T6689]  ? __alloc_skb+0x2b1/0x380
[   64.251098][ T6689]  __alloc_skb+0x2b1/0x380
[   64.252233][ T6689]  ? __pfx___alloc_skb+0x10/0x10
[   64.253630][ T6689]  ? dccp_feat_finalise_settings+0x21b/0x340
[   64.255482][ T6689]  ? dccp_feat_register_sp+0xc0/0x1a0
[   64.257380][ T6689]  dccp_connect+0x220/0x6c0
[   64.258960][ T6689]  dccp_v6_connect+0xab7/0x1560
[   64.260671][ T6689]  ? __pfx_dccp_v6_connect+0x10/0x10
[   64.262304][ T6689]  ? __pfx_mark_lock+0x10/0x10
[   64.263552][ T6689]  __inet_stream_connect+0x3c7/0x1020
[   64.264933][ T6689]  ? find_held_lock+0x2d/0x110
[   64.266163][ T6689]  ? __pfx___inet_stream_connect+0x10/0x10
[   64.267711][ T6689]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   64.269476][ T6689]  ? __pfx_inet_stream_connect+0x10/0x10
[   64.270828][ T6689]  ? mark_held_locks+0x9f/0xe0
[   64.272005][ T6689]  ? __local_bh_enable_ip+0xa4/0x120
[   64.273380][ T6689]  ? __pfx_inet_stream_connect+0x10/0x10
[   64.274798][ T6689]  inet_stream_connect+0x57/0xa0
[   64.276061][ T6689]  __sys_connect_file+0x13e/0x1a0
[   64.277311][ T6689]  __sys_connect+0x14f/0x170
[   64.278523][ T6689]  ? __pfx___sys_connect+0x10/0x10
[   64.279911][ T6689]  ? __pfx_ksys_write+0x10/0x10
[   64.281184][ T6689]  __x64_sys_connect+0x72/0xb0
[   64.282407][ T6689]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.283768][ T6689]  do_syscall_64+0xcd/0x250
[   64.285138][ T6689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.286678][ T6689] RIP: 0033:0x7f53b797fed9
[   64.287795][ T6689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.292911][ T6689] RSP: 002b:00007f53b8726058 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   64.295344][ T6689] RAX: ffffffffffffffda RBX: 00007f53b7b45fa0 RCX: 00007f53b797fed9
[   64.298243][ T6689] RDX: 000000000000001c RSI: 0000000020000040 RDI: 0000000000000006
[   64.301092][ T6689] RBP: 00007f53b87260a0 R08: 0000000000000000 R09: 0000000000000000
[   64.303853][ T6689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.306559][ T6689] R13: 0000000000000000 R14: 00007f53b7b45fa0 R15: 00007fff5c915f08
[   64.309322][ T6689]  </TASK>
[   64.390422][ T6665] dccp_close: ABORT with 56 bytes unread
[   64.860684][ T6736] NILFS (loop1): device size too small
[   65.397322][ T6743] FAULT_INJECTION: forcing a failure.
[   65.397322][ T6743] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.400985][ T6743] CPU: 3 UID: 0 PID: 6743 Comm: syz.1.274 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   65.403649][ T6743] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.406315][ T6743] Call Trace:
[   65.407154][ T6743]  <TASK>
[   65.407897][ T6743]  dump_stack_lvl+0x16c/0x1f0
[   65.409059][ T6743]  should_fail_ex+0x497/0x5b0
[   65.410444][ T6743]  _copy_from_user+0x2e/0xd0
[   65.412074][ T6743]  kstrtouint_from_user+0xd7/0x1c0
[   65.413712][ T6743]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   65.415097][ T6743]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   65.416489][ T6743]  proc_fail_nth_write+0x84/0x250
[   65.417728][ T6743]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   65.419094][ T6743]  ? ksys_write+0x12b/0x250
[   65.420271][ T6743]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   65.421644][ T6743]  vfs_write+0x24c/0x1150
[   65.422710][ T6743]  ? __fget_files+0x1fc/0x3a0
[   65.423882][ T6743]  ? __pfx___mutex_lock+0x10/0x10
[   65.425162][ T6743]  ? __pfx_vfs_write+0x10/0x10
[   65.426382][ T6743]  ? __fget_files+0x206/0x3a0
[   65.427549][ T6743]  ksys_write+0x12b/0x250
[   65.428954][ T6743]  ? __pfx_ksys_write+0x10/0x10
[   65.430585][ T6743]  do_syscall_64+0xcd/0x250
[   65.432209][ T6743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.434237][ T6743] RIP: 0033:0x7f53b797e98f
[   65.435747][ T6743] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   65.442085][ T6743] RSP: 002b:00007f53b8726050 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   65.444822][ T6743] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f53b797e98f
[   65.447538][ T6743] RDX: 0000000000000001 RSI: 00007f53b87260b0 RDI: 0000000000000004
[   65.450304][ T6743] RBP: 00007f53b87260a0 R08: 0000000000000000 R09: 0000000000000000
[   65.453103][ T6743] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   65.455867][ T6743] R13: 0000000000000000 R14: 00007f53b7b45fa0 R15: 00007fff5c915f08
[   65.458668][ T6743]  </TASK>
[   65.939027][ T6784] Process accounting resumed
[   66.211090][ T6800] __nla_validate_parse: 3 callbacks suppressed
[   66.211106][ T6800] netlink: 4 bytes leftover after parsing attributes in process `syz.0.295'.
[   66.218218][   T40] kauditd_printk_skb: 22 callbacks suppressed
[   66.218232][   T40] audit: type=1400 audit(1733494784.059:350): avc:  denied  { nlmsg_read } for  pid=6799 comm="syz.0.295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   66.241274][   T40] audit: type=1400 audit(1733494784.089:351): avc:  denied  { read } for  pid=6803 comm="syz.0.296" name="cec0" dev="devtmpfs" ino=973 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   66.249518][   T40] audit: type=1400 audit(1733494784.089:352): avc:  denied  { open } for  pid=6803 comm="syz.0.296" path="/dev/cec0" dev="devtmpfs" ino=973 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   66.257477][   T40] audit: type=1400 audit(1733494784.089:353): avc:  denied  { ioctl } for  pid=6803 comm="syz.0.296" path="/dev/cec0" dev="devtmpfs" ino=973 ioctlcmd=0x6104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   66.382815][ T6812] netlink: 4 bytes leftover after parsing attributes in process `syz.0.298'.
[   66.426041][ T6816] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[   66.430231][ T6816] qnx6: wrong signature (magic) in superblock #1.
[   66.432901][ T6816] qnx6: unable to read the first superblock
[   66.437245][ T6817] xt_l2tp: v2 sid > 0xffff: 150994944
[   66.711379][   T40] audit: type=1400 audit(1733494784.559:354): avc:  denied  { ioctl } for  pid=6830 comm="syz.3.306" path="/dev/cachefiles" dev="devtmpfs" ino=4 ioctlcmd=0x5519 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   66.961056][   T40] audit: type=1400 audit(1733494784.809:355): avc:  denied  { unmount } for  pid=5948 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   67.002354][   T40] audit: type=1400 audit(1733494784.849:356): avc:  denied  { write } for  pid=6854 comm="syz.1.315" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   67.116837][ T6859] FAULT_INJECTION: forcing a failure.
[   67.116837][ T6859] name failslab, interval 1, probability 0, space 0, times 0
[   67.121441][ T6859] CPU: 3 UID: 0 PID: 6859 Comm: syz.3.316 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   67.124964][ T6859] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.128597][ T6859] Call Trace:
[   67.129724][ T6859]  <TASK>
[   67.130736][ T6859]  dump_stack_lvl+0x16c/0x1f0
[   67.132347][ T6859]  should_fail_ex+0x497/0x5b0
[   67.133926][ T6859]  ? fs_reclaim_acquire+0xae/0x150
[   67.135658][ T6859]  should_failslab+0xc2/0x120
[   67.137350][ T6859]  __kmalloc_cache_noprof+0x68/0x410
[   67.139140][ T6859]  ? ww_mutex_lock_interruptible+0x37/0x160
[   67.141123][ T6859]  ? ww_mutex_lock_interruptible+0x37/0x160
[   67.143118][ T6859]  vkms_plane_duplicate_state+0x45/0x130
[   67.145002][ T6859]  drm_atomic_get_plane_state+0x20b/0x590
[   67.146930][ T6859]  drm_atomic_set_property+0xa05/0x3350
[   67.148798][ T6859]  ? __pfx_drm_atomic_set_property+0x10/0x10
[   67.150862][ T6859]  ? lock_acquire+0x2f/0xb0
[   67.152437][ T6859]  ? __might_fault+0xe3/0x190
[   67.154068][ T6859]  ? __might_fault+0xe3/0x190
[   67.155713][ T6859]  drm_mode_atomic_ioctl+0x691/0x25d0
[   67.157604][ T6859]  ? __pfx___lock_acquire+0x10/0x10
[   67.159365][ T6859]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   67.161336][ T6859]  ? do_raw_spin_unlock+0x172/0x230
[   67.163065][ T6859]  drm_ioctl_kernel+0x1e6/0x3d0
[   67.164683][ T6859]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   67.166631][ T6859]  ? __might_fault+0x41/0x190
[   67.168202][ T6859]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   67.169964][ T6859]  ? __might_fault+0xe3/0x190
[   67.171510][ T6859]  drm_ioctl+0x5d6/0xc00
[   67.172926][ T6859]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   67.174869][ T6859]  ? __pfx_drm_ioctl+0x10/0x10
[   67.176458][ T6859]  ? __pfx_lock_release+0x10/0x10
[   67.178124][ T6859]  ? selinux_file_ioctl+0x180/0x270
[   67.179858][ T6859]  ? selinux_file_ioctl+0xb4/0x270
[   67.181549][ T6859]  ? __pfx_drm_ioctl+0x10/0x10
[   67.183185][ T6859]  __x64_sys_ioctl+0x190/0x200
[   67.184766][ T6859]  do_syscall_64+0xcd/0x250
[   67.186296][ T6859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.188278][ T6859] RIP: 0033:0x7fdaa677fed9
[   67.189736][ T6859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.195963][ T6859] RSP: 002b:00007fdaa45f6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   67.198919][ T6859] RAX: ffffffffffffffda RBX: 00007fdaa6945fa0 RCX: 00007fdaa677fed9
[   67.201571][ T6859] RDX: 0000000020000180 RSI: 00000000c03864bc RDI: 000000000000000d
[   67.204244][ T6859] RBP: 00007fdaa45f60a0 R08: 0000000000000000 R09: 0000000000000000
[   67.206930][ T6859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.209631][ T6859] R13: 0000000000000000 R14: 00007fdaa6945fa0 R15: 00007ffdfe44e258
[   67.212310][ T6859]  </TASK>
[   67.217641][ T6861] FAULT_INJECTION: forcing a failure.
[   67.217641][ T6861] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.221939][ T6861] CPU: 1 UID: 0 PID: 6861 Comm: syz.2.317 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   67.225182][ T6861] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.228451][ T6861] Call Trace:
[   67.229507][ T6861]  <TASK>
[   67.230451][ T6861]  dump_stack_lvl+0x16c/0x1f0
[   67.231935][ T6861]  should_fail_ex+0x497/0x5b0
[   67.233353][ T6861]  strncpy_from_user+0x3b/0x2d0
[   67.234658][ T6861]  strncpy_from_user_nofault+0x7f/0x180
[   67.236152][ T6861]  bpf_probe_read_compat_str+0xf1/0x170
[   67.237550][ T6861]  bpf_prog_e42f6260c1b72fb3+0x3e/0x40
[   67.239000][ T6861]  bpf_trace_run4+0x245/0x5a0
[   67.240190][ T6861]  ? __pfx_bpf_trace_run4+0x10/0x10
[   67.241540][ T6861]  ? trace_lock_acquire+0x14e/0x1f0
[   67.243260][ T6861]  ? hlock_class+0x4e/0x130
[   67.244839][ T6861]  ? __lock_acquire+0xcc5/0x3c40
[   67.246497][ T6861]  __bpf_trace_fib_table_lookup+0x12f/0x170
[   67.248502][ T6861]  ? __pfx___bpf_trace_fib_table_lookup+0x10/0x10
[   67.250650][ T6861]  ? __pfx_lock_release+0x10/0x10
[   67.252321][ T6861]  ? trace_lock_acquire+0x14e/0x1f0
[   67.254266][ T6861]  ? __pfx___lock_acquire+0x10/0x10
[   67.256196][ T6861]  trace_fib_table_lookup+0x16c/0x230
[   67.258040][ T6861]  fib_table_lookup+0x1085/0x2300
[   67.259781][ T6861]  fib_lookup.constprop.0+0x13e/0x530
[   67.261653][ T6861]  ip_route_output_key_hash_rcu+0xe21/0x2770
[   67.263669][ T6861]  ? lock_acquire+0x2f/0xb0
[   67.265191][ T6861]  ? ip_route_output_key_hash+0x101/0x2e0
[   67.267117][ T6861]  ip_route_output_key_hash+0x138/0x2e0
[   67.267294][  T832] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[   67.268971][ T6861]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[   67.268999][ T6861]  ? __pfx_lock_release+0x10/0x10
[   67.269018][ T6861]  ? trace_lock_acquire+0x14e/0x1f0
[   67.269048][ T6861]  ip_route_output_flow+0x27/0x150
[   67.277730][ T6861]  raw_sendmsg+0xac0/0x3840
[   67.279222][ T6861]  ? __pfx_raw_sendmsg+0x10/0x10
[   67.280849][ T6861]  ? avc_has_perm_noaudit+0x143/0x3a0
[   67.282559][ T6861]  ? __pfx_avc_has_perm+0x10/0x10
[   67.284228][ T6861]  ? __pfx___lock_acquire+0x10/0x10
[   67.285963][ T6861]  ? sock_has_perm+0x25a/0x2f0
[   67.287624][ T6861]  ? __pfx_raw_sendmsg+0x10/0x10
[   67.289359][ T6861]  inet_sendmsg+0x119/0x140
[   67.290845][ T6861]  ____sys_sendmsg+0x98c/0xc90
[   67.292491][ T6861]  ? copy_msghdr_from_user+0x10b/0x160
[   67.293938][ T6861]  ? __pfx_____sys_sendmsg+0x10/0x10
[   67.295332][ T6861]  ? __lock_acquire+0xcc5/0x3c40
[   67.296895][ T6861]  ? hlock_class+0x4e/0x130
[   67.298410][ T6861]  ? __lock_acquire+0x15a9/0x3c40
[   67.300052][ T6861]  ___sys_sendmsg+0x135/0x1e0
[   67.301601][ T6861]  ? __pfx____sys_sendmsg+0x10/0x10
[   67.302734][ T6863] infiniband syz0: set active
[   67.303316][ T6861]  ? __pfx___lock_acquire+0x10/0x10
[   67.305475][ T6863] infiniband syz0: added syz_tun
[   67.306541][ T6861]  ? __pfx___might_resched+0x10/0x10
[   67.309605][ T6861]  ? __might_fault+0xe3/0x190
[   67.311266][ T6861]  __sys_sendmmsg+0x201/0x420
[   67.312615][ T6861]  ? __pfx___sys_sendmmsg+0x10/0x10
[   67.314256][ T6861]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   67.316153][ T6861]  ? fput+0x67/0x440
[   67.317152][ T6861]  ? ksys_write+0x1ba/0x250
[   67.318261][ T6861]  ? __pfx_ksys_write+0x10/0x10
[   67.318298][   T40] audit: type=1400 audit(1733494785.169:357): avc:  denied  { mount } for  pid=6862 comm="syz.3.318" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[   67.319473][ T6861]  __x64_sys_sendmmsg+0x9c/0x100
[   67.319488][ T6861]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.319502][ T6861]  do_syscall_64+0xcd/0x250
[   67.319517][ T6861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.325350][ T6864] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   67.326012][ T6861] RIP: 0033:0x7f7149d7fed9
[   67.326025][ T6861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.326035][ T6861] RSP: 002b:00007f714abe8058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   67.327449][ T6864] overlayfs: missing 'lowerdir'
[   67.328830][ T6861] RAX: ffffffffffffffda RBX: 00007f7149f45fa0 RCX: 00007f7149d7fed9
[   67.328844][ T6861] RDX: 0000000004000095 RSI: 0000000020005240 RDI: 0000000000000005
[   67.328855][ T6861] RBP: 00007f714abe80a0 R08: 0000000000000000 R09: 0000000000000000
[   67.350731][ T6861] R10: 000000000401eb94 R11: 0000000000000246 R12: 0000000000000002
[   67.352973][ T6861] R13: 0000000000000000 R14: 00007f7149f45fa0 R15: 00007ffe3cb2f938
[   67.354958][ T6861]  </TASK>
[   67.355872][    C1] vkms_vblank_simulate: vblank timer overrun
[   67.360742][ T6863] RDS/IB: syz0: added
[   67.362056][ T6863] smc: adding ib device syz0 with port count 1
[   67.363714][ T6863] smc:    ib device syz0 port 1 has pnetid 
[   67.395206][   T40] audit: type=1400 audit(1733494785.239:358): avc:  denied  { create } for  pid=6866 comm="syz.0.319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   67.402794][   T40] audit: type=1400 audit(1733494785.239:359): avc:  denied  { getopt } for  pid=6866 comm="syz.0.319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   67.448656][  T832] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[   67.451437][  T832] usb 6-1: config 0 has no interface number 0
[   67.453531][  T832] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   67.456765][  T832] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[   67.459692][  T832] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64
[   67.462413][  T832] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[   67.465743][  T832] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[   67.468176][  T832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   67.471841][  T832] usb 6-1: config 0 descriptor??
[   67.474579][ T6855] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   67.480254][  T832] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[   67.966816][ T6878] netlink: 12 bytes leftover after parsing attributes in process `syz.0.323'.
[   68.058927][ T6883] netlink: 8 bytes leftover after parsing attributes in process `syz.2.326'.
[   68.227279][ T3233] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   68.357723][ T3233] usb 5-1: device descriptor read/64, error -71
[   68.454892][ T6903] netlink: 24 bytes leftover after parsing attributes in process `syz.2.330'.
[   68.565022][ T6909] fuse: Unknown parameter 'group'
[   68.597383][ T3233] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   68.685419][ T6920] netlink: 4 bytes leftover after parsing attributes in process `syz.2.333'.
[   68.733500][ T6932] netlink: 20 bytes leftover after parsing attributes in process `syz.2.335'.
[   68.738243][ T3233] usb 5-1: device descriptor read/64, error -71
[   68.851009][ T3233] usb usb5-port1: attempt power cycle
[   69.029206][ T6954] netfs: Couldn't get user pages (rc=-14)
[   69.219544][ T3233] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   69.237748][ T3233] usb 5-1: device descriptor read/8, error -71
[   69.477335][ T3233] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   69.497751][ T3233] usb 5-1: device descriptor read/8, error -71
[   69.607499][ T3233] usb usb5-port1: unable to enumerate USB device
[   69.991409][ T5938] usb 6-1: USB disconnect, device number 3
[   69.995073][ T5938] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[   70.029273][ T6973] FAULT_INJECTION: forcing a failure.
[   70.029273][ T6973] name failslab, interval 1, probability 0, space 0, times 0
[   70.034507][ T6973] CPU: 1 UID: 0 PID: 6973 Comm: syz.1.349 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   70.038173][ T6973] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   70.041886][ T6973] Call Trace:
[   70.043069][ T6973]  <TASK>
[   70.044070][ T6973]  dump_stack_lvl+0x16c/0x1f0
[   70.045672][ T6973]  should_fail_ex+0x497/0x5b0
[   70.047319][ T6973]  ? fs_reclaim_acquire+0xae/0x150
[   70.049118][ T6973]  should_failslab+0xc2/0x120
[   70.050710][ T6973]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   70.052514][ T6973]  ? dccp_feat_finalise_settings+0x21b/0x340
[   70.054073][ T6973]  ? skb_clone+0x190/0x3f0
[   70.055256][ T6973]  skb_clone+0x190/0x3f0
[   70.056393][ T6973]  dccp_connect+0x30c/0x6c0
[   70.057591][ T6973]  dccp_v6_connect+0xab7/0x1560
[   70.058871][ T6973]  ? __pfx_dccp_v6_connect+0x10/0x10
[   70.060267][ T6973]  ? __pfx_mark_lock+0x10/0x10
[   70.061504][ T6973]  __inet_stream_connect+0x3c7/0x1020
[   70.062809][ T6973]  ? find_held_lock+0x2d/0x110
[   70.064072][ T6973]  ? __pfx___inet_stream_connect+0x10/0x10
[   70.065598][ T6973]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   70.067006][ T6973]  ? __pfx_inet_stream_connect+0x10/0x10
[   70.068480][ T6973]  ? mark_held_locks+0x9f/0xe0
[   70.069717][ T6973]  ? __local_bh_enable_ip+0xa4/0x120
[   70.071090][ T6973]  ? __pfx_inet_stream_connect+0x10/0x10
[   70.072556][ T6973]  inet_stream_connect+0x57/0xa0
[   70.073754][ T6973]  __sys_connect_file+0x13e/0x1a0
[   70.075000][ T6973]  __sys_connect+0x14f/0x170
[   70.076173][ T6973]  ? __pfx___sys_connect+0x10/0x10
[   70.077428][ T6973]  ? __pfx_ksys_write+0x10/0x10
[   70.078590][ T6973]  __x64_sys_connect+0x72/0xb0
[   70.079745][ T6973]  ? lockdep_hardirqs_on+0x7c/0x110
[   70.081042][ T6973]  do_syscall_64+0xcd/0x250
[   70.082449][ T6973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.084318][ T6973] RIP: 0033:0x7f53b797fed9
[   70.085743][ T6973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.091906][ T6973] RSP: 002b:00007f53b8726058 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   70.094713][ T6973] RAX: ffffffffffffffda RBX: 00007f53b7b45fa0 RCX: 00007f53b797fed9
[   70.097380][ T6973] RDX: 000000000000001c RSI: 0000000020000040 RDI: 0000000000000006
[   70.100049][ T6973] RBP: 00007f53b87260a0 R08: 0000000000000000 R09: 0000000000000000
[   70.102702][ T6973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.105354][ T6973] R13: 0000000000000000 R14: 00007f53b7b45fa0 R15: 00007fff5c915f08
[   70.108047][ T6973]  </TASK>
[   70.109182][    C1] vkms_vblank_simulate: vblank timer overrun
[   70.113993][ T6975] FAULT_INJECTION: forcing a failure.
[   70.113993][ T6975] name failslab, interval 1, probability 0, space 0, times 0
[   70.118335][ T6975] CPU: 2 UID: 0 PID: 6975 Comm: syz.2.350 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   70.121109][ T6975] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   70.124431][ T6975] Call Trace:
[   70.125310][ T6975]  <TASK>
[   70.126089][ T6975]  dump_stack_lvl+0x16c/0x1f0
[   70.127329][ T6975]  should_fail_ex+0x497/0x5b0
[   70.128572][ T6975]  ? fs_reclaim_acquire+0xae/0x150
[   70.129899][ T6975]  should_failslab+0xc2/0x120
[   70.131119][ T6975]  __kmalloc_cache_noprof+0x68/0x410
[   70.132506][ T6975]  vkms_plane_duplicate_state+0x87/0x130
[   70.133956][ T6975]  drm_atomic_get_plane_state+0x20b/0x590
[   70.135418][ T6975]  drm_atomic_set_property+0xa05/0x3350
[   70.136873][ T6975]  ? __pfx_drm_atomic_set_property+0x10/0x10
[   70.138440][ T6975]  ? lock_acquire+0x2f/0xb0
[   70.139633][ T6975]  ? __might_fault+0xe3/0x190
[   70.140881][ T6975]  ? __might_fault+0xe3/0x190
[   70.142119][ T6975]  drm_mode_atomic_ioctl+0x691/0x25d0
[   70.143518][ T6975]  ? __pfx___lock_acquire+0x10/0x10
[   70.144891][ T6975]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   70.146428][ T6975]  ? do_raw_spin_unlock+0x172/0x230
[   70.147800][ T6975]  drm_ioctl_kernel+0x1e6/0x3d0
[   70.149062][ T6975]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   70.150578][ T6975]  ? __might_fault+0x41/0x190
[   70.151818][ T6975]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   70.153225][ T6975]  ? __might_fault+0xe3/0x190
[   70.154460][ T6975]  drm_ioctl+0x5d6/0xc00
[   70.155560][ T6975]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   70.157082][ T6975]  ? __pfx_drm_ioctl+0x10/0x10
[   70.158337][ T6975]  ? __pfx_lock_release+0x10/0x10
[   70.159652][ T6975]  ? selinux_file_ioctl+0x180/0x270
[   70.161009][ T6975]  ? selinux_file_ioctl+0xb4/0x270
[   70.162342][ T6975]  ? __pfx_drm_ioctl+0x10/0x10
[   70.163596][ T6975]  __x64_sys_ioctl+0x190/0x200
[   70.164856][ T6975]  do_syscall_64+0xcd/0x250
[   70.166045][ T6975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.167723][ T6975] RIP: 0033:0x7f7149d7fed9
[   70.168888][ T6975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.173739][ T6975] RSP: 002b:00007f714abe8058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   70.175874][ T6975] RAX: ffffffffffffffda RBX: 00007f7149f45fa0 RCX: 00007f7149d7fed9
[   70.177912][ T6975] RDX: 0000000020000180 RSI: 00000000c03864bc RDI: 000000000000000d
[   70.180030][ T6975] RBP: 00007f714abe80a0 R08: 0000000000000000 R09: 0000000000000000
[   70.182079][ T6975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.184586][ T6975] R13: 0000000000000000 R14: 00007f7149f45fa0 R15: 00007ffe3cb2f938
[   70.186663][ T6975]  </TASK>
[   71.327800][  T832] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   71.451519][   T40] kauditd_printk_skb: 39 callbacks suppressed
[   71.451533][   T40] audit: type=1400 audit(1733494789.299:399): avc:  denied  { watch watch_reads } for  pid=7001 comm="syz.3.358" path=2F6D656D66643A2D42D54E49C56A9A707070F00884A26D202864656C6574656429 dev="tmpfs" ino=1026 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   71.487435][  T832] usb 5-1: Using ep0 maxpacket: 8
[   71.491365][  T832] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   71.493337][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   71.496336][  T832] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   71.499609][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   71.502432][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   71.506560][  T832] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   71.508679][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   71.511510][  T832] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   71.514514][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   71.517426][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   71.521044][  T832] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   71.522944][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   71.525952][  T832] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   71.529694][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   71.532497][  T832] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   71.537312][  T832] usb 5-1: string descriptor 0 read error: -22
[   71.538886][  T832] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   71.541190][  T832] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.547027][  T832] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   71.577646][ T7009] netlink: 4 bytes leftover after parsing attributes in process `syz.3.360'.
[   71.623088][ T7013] IPv6: sit1: Disabled Multicast RS
[   71.650310][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.652604][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.799310][ T7018] netlink: 4 bytes leftover after parsing attributes in process `syz.3.363'.
[   71.855806][   T57] usb 5-1: USB disconnect, device number 7
[   71.861410][ T7021] usb 5-1: Couldn't submit interrupt_out_urb -19
[   72.132114][ T7021] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   72.407497][   T25] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   72.557295][   T25] usb 5-1: Using ep0 maxpacket: 32
[   72.562036][   T25] usb 5-1: config 1 interface 0 altsetting 128 bulk endpoint 0x82 has invalid maxpacket 64
[   72.565472][   T25] usb 5-1: config 1 interface 0 altsetting 128 bulk endpoint 0x3 has invalid maxpacket 8
[   72.568887][   T25] usb 5-1: config 1 interface 0 has no altsetting 0
[   72.572855][   T25] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   72.575868][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.578627][   T25] usb 5-1: Product: А
[   72.580010][   T25] usb 5-1: Manufacturer: 捞鍭࿧ꤪ앸攛ໟ₧죠捓鳠⟌䝽䰆㚘兟虰ૂￏガᣌ㟣貺ᤛ즻ࡰ㈠鏷媸四᧤妣ﳫ㙲䁫灂뛽덜憎姤ᵙ掻ꄇ꽎澶ᬖ྅莜࢝䏻烕烨湆﶐⯔ﯮ
[   72.586495][   T25] usb 5-1: SerialNumber: ဌ
[   72.591899][ T7021] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   72.594534][ T7021] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   72.806548][   T40] audit: type=1400 audit(1733494790.649:400): avc:  denied  { create } for  pid=7034 comm="syz.3.367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   72.813103][   T40] audit: type=1400 audit(1733494790.649:401): avc:  denied  { getopt } for  pid=7034 comm="syz.3.367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   73.001160][   T25] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71
[   73.011625][   T25] usb 5-1: USB disconnect, device number 8
[   73.814897][ T7060] xt_CT: You must specify a L4 protocol and not use inversions on it
[   73.905222][   T40] audit: type=1400 audit(1733494791.749:402): avc:  denied  { connect } for  pid=7065 comm="syz.3.380" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   73.911777][   T39] tipc: Subscription rejected, illegal request
[   74.356279][   T40] audit: type=1400 audit(1733494792.199:403): avc:  denied  { bind } for  pid=7098 comm="syz.2.392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   74.461595][ T7106] FAULT_INJECTION: forcing a failure.
[   74.461595][ T7106] name failslab, interval 1, probability 0, space 0, times 0
[   74.466170][ T7106] CPU: 2 UID: 0 PID: 7106 Comm: syz.2.396 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   74.469931][ T7106] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.473518][ T7106] Call Trace:
[   74.474666][ T7106]  <TASK>
[   74.475669][ T7106]  dump_stack_lvl+0x16c/0x1f0
[   74.477270][ T7106]  should_fail_ex+0x497/0x5b0
[   74.478853][ T7106]  ? fs_reclaim_acquire+0xae/0x150
[   74.480585][ T7106]  should_failslab+0xc2/0x120
[   74.482191][ T7106]  __kmalloc_cache_noprof+0x68/0x410
[   74.483985][ T7106]  ? ww_mutex_lock_interruptible+0x37/0x160
[   74.485962][ T7106]  vkms_atomic_crtc_duplicate_state+0x78/0x1d0
[   74.488057][ T7106]  drm_atomic_get_crtc_state+0x162/0x440
[   74.489950][ T7106]  drm_atomic_get_plane_state+0x436/0x590
[   74.491871][ T7106]  drm_atomic_set_property+0xa05/0x3350
[   74.493727][ T7106]  ? __pfx_drm_atomic_set_property+0x10/0x10
[   74.495725][ T7106]  ? lock_acquire+0x2f/0xb0
[   74.497279][ T7106]  ? __might_fault+0xe3/0x190
[   74.498875][ T7106]  ? __might_fault+0xe3/0x190
[   74.500524][ T7106]  drm_mode_atomic_ioctl+0x691/0x25d0
[   74.502376][ T7106]  ? __pfx___lock_acquire+0x10/0x10
[   74.504177][ T7106]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   74.506207][ T7106]  ? do_raw_spin_unlock+0x172/0x230
[   74.508152][ T7106]  drm_ioctl_kernel+0x1e6/0x3d0
[   74.509881][ T7106]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   74.511873][ T7106]  ? __might_fault+0x41/0x190
[   74.513511][ T7106]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   74.515340][ T7106]  ? __might_fault+0xe3/0x190
[   74.516961][ T7106]  drm_ioctl+0x5d6/0xc00
[   74.518429][ T7106]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   74.520413][ T7106]  ? __pfx_drm_ioctl+0x10/0x10
[   74.522053][ T7106]  ? __pfx_lock_release+0x10/0x10
[   74.523788][ T7106]  ? selinux_file_ioctl+0x180/0x270
[   74.525563][ T7106]  ? selinux_file_ioctl+0xb4/0x270
[   74.527308][ T7106]  ? __pfx_drm_ioctl+0x10/0x10
[   74.528959][ T7106]  __x64_sys_ioctl+0x190/0x200
[   74.530601][ T7106]  do_syscall_64+0xcd/0x250
[   74.532201][ T7106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.534207][ T7106] RIP: 0033:0x7f7149d7fed9
[   74.535759][ T7106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.542075][ T7106] RSP: 002b:00007f714abe8058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.544846][ T7106] RAX: ffffffffffffffda RBX: 00007f7149f45fa0 RCX: 00007f7149d7fed9
[   74.547456][ T7106] RDX: 0000000020000180 RSI: 00000000c03864bc RDI: 000000000000000d
[   74.550100][ T7106] RBP: 00007f714abe80a0 R08: 0000000000000000 R09: 0000000000000000
[   74.552741][ T7106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.555400][ T7106] R13: 0000000000000000 R14: 00007f7149f45fa0 R15: 00007ffe3cb2f938
[   74.558198][ T7106]  </TASK>
[   74.693120][ T7118] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   74.695684][ T7118] IPv6: NLM_F_CREATE should be set when creating new route
[   74.748615][   T40] audit: type=1400 audit(1733494792.589:404): avc:  denied  { bind } for  pid=7119 comm="syz.1.400" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   75.137300][   T25] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   75.266583][   T40] audit: type=1400 audit(1733494793.109:405): avc:  denied  { getopt } for  pid=7133 comm="syz.3.407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   75.312028][   T25] usb 6-1: Using ep0 maxpacket: 8
[   75.314599][   T25] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   75.317223][   T25] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   75.319691][   T25] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   75.322175][   T25] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   75.325427][   T25] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   75.328031][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.371783][   T40] audit: type=1400 audit(1733494793.219:406): avc:  denied  { create } for  pid=7135 comm="syz.3.408" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   75.376732][   T40] audit: type=1400 audit(1733494793.219:407): avc:  denied  { bind } for  pid=7135 comm="syz.3.408" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   75.381718][   T40] audit: type=1400 audit(1733494793.219:408): avc:  denied  { listen } for  pid=7135 comm="syz.3.408" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   75.496321][ T7145] netlink: 4 bytes leftover after parsing attributes in process `syz.3.411'.
[   75.535998][   T25] usb 6-1: usb_control_msg returned -32
[   75.536558][ T7155] netlink: 20 bytes leftover after parsing attributes in process `syz.3.415'.
[   75.538444][   T25] usbtmc 6-1:16.0: can't read capabilities
[   76.386989][ T7179] netlink: 'syz.2.424': attribute type 29 has an invalid length.
[   76.390211][ T7179] netlink: 'syz.2.424': attribute type 29 has an invalid length.
[   76.395751][ T7179] netlink: 'syz.2.424': attribute type 29 has an invalid length.
[   76.402621][ T7179] netlink: 'syz.2.424': attribute type 29 has an invalid length.
[   76.773550][   T40] kauditd_printk_skb: 1 callbacks suppressed
[   76.773565][   T40] audit: type=1400 audit(1733494794.619:410): avc:  denied  { accept } for  pid=7214 comm="syz.3.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[   76.776864][ T7215] netlink: 16 bytes leftover after parsing attributes in process `syz.3.441'.
[   76.991282][ T7225] warning: `syz.3.445' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   77.086446][ T7229] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   77.089154][ T7229] IPv6: NLM_F_CREATE should be set when creating new route
[   77.271504][ T7239] netlink: 4 bytes leftover after parsing attributes in process `syz.3.452'.
[   77.339738][   T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.341969][   T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.458096][ T7250] netlink: 4 bytes leftover after parsing attributes in process `syz.0.457'.
[   77.501322][ T7255] netlink: 44 bytes leftover after parsing attributes in process `syz.0.459'.
[   77.505503][ T7255] netlink: 43 bytes leftover after parsing attributes in process `syz.0.459'.
[   77.509017][ T7255] netlink: 'syz.0.459': attribute type 6 has an invalid length.
[   77.512465][ T7255] netlink: 'syz.0.459': attribute type 5 has an invalid length.
[   77.516129][ T7255] netlink: 43 bytes leftover after parsing attributes in process `syz.0.459'.
[   77.658235][ T7259] netlink: 4 bytes leftover after parsing attributes in process `syz.0.461'.
[   77.904544][   T63] usb 6-1: USB disconnect, device number 4
[   77.934917][ T7272] netlink: 8 bytes leftover after parsing attributes in process `syz.3.466'.
[   77.938925][ T7272] netlink: 4 bytes leftover after parsing attributes in process `syz.3.466'.
[   78.149929][   T40] audit: type=1400 audit(1733494795.999:411): avc:  denied  { read } for  pid=7284 comm="syz.1.470" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   78.157272][   T40] audit: type=1400 audit(1733494795.999:412): avc:  denied  { open } for  pid=7284 comm="syz.1.470" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   78.164934][   T40] audit: type=1400 audit(1733494795.999:413): avc:  denied  { ioctl } for  pid=7284 comm="syz.1.470" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   78.649894][ T7318] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   78.651850][ T7318] IPv6: NLM_F_CREATE should be set when creating new route
[   78.680339][ T7321] binder: BINDER_SET_CONTEXT_MGR already set
[   78.681945][   T40] audit: type=1400 audit(1733494796.529:414): avc:  denied  { create } for  pid=7320 comm="syz.3.484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[   78.682239][ T7321] binder: 7319:7321 ioctl 4018620d 20000100 returned -16
[   78.746333][   T40] audit: type=1400 audit(1733494796.589:415): avc:  denied  { ioctl } for  pid=7333 comm="syz.0.488" path="/dev/input/event0" dev="devtmpfs" ino=941 ioctlcmd=0x4502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   79.385233][ T7345] netlink: 'syz.1.491': attribute type 1 has an invalid length.
[   79.388054][ T7345] netlink: 224 bytes leftover after parsing attributes in process `syz.1.491'.
[   79.439015][ T7345] binder: 7344:7345 ioctl c0306201 20000080 returned -22
[   79.441798][ T7346] binder: 7344:7346 ioctl 4020ae46 20000180 returned -22
[   79.649162][   T40] audit: type=1400 audit(1733494797.499:416): avc:  denied  { mount } for  pid=7365 comm="syz.0.499" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   79.679255][ T7361] FAULT_INJECTION: forcing a failure.
[   79.679255][ T7361] name failslab, interval 1, probability 0, space 0, times 0
[   79.683530][ T7361] CPU: 2 UID: 0 PID: 7361 Comm: syz.1.496 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   79.686714][ T7361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.689946][ T7361] Call Trace:
[   79.690792][ T7361]  <TASK>
[   79.691544][ T7361]  dump_stack_lvl+0x16c/0x1f0
[   79.692783][ T7361]  should_fail_ex+0x497/0x5b0
[   79.693988][ T7361]  ? fs_reclaim_acquire+0xae/0x150
[   79.695142][ T7361]  should_failslab+0xc2/0x120
[   79.696679][ T7361]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   79.698304][ T7361]  ? __alloc_skb+0x2b1/0x380
[   79.699549][ T7361]  __alloc_skb+0x2b1/0x380
[   79.700749][ T7361]  ? __pfx___alloc_skb+0x10/0x10
[   79.702042][ T7361]  ? __mutex_trylock_common+0x50/0x250
[   79.703458][ T7361]  ? __pfx___mutex_trylock_common+0x10/0x10
[   79.704991][ T7361]  ? __netlink_dump_start+0x154/0x970
[   79.706400][ T7361]  netlink_dump+0x699/0xd00
[   79.707588][ T7361]  ? __mutex_lock+0x1cc/0xa60
[   79.708856][ T7361]  ? __pfx_netlink_dump+0x10/0x10
[   79.710470][ T7361]  ? __netlink_dump_start+0x154/0x970
[   79.712247][ T7361]  ? netlink_lookup+0x259/0x520
[   79.713700][ T7361]  ? __pfx_netlink_lookup+0x10/0x10
[   79.715194][ T7361]  __netlink_dump_start+0x6ca/0x970
[   79.716735][ T7361]  xsk_diag_handler_dump+0x1ab/0x250
[   79.718491][ T7361]  ? __pfx_xsk_diag_handler_dump+0x10/0x10
[   79.720304][ T7361]  ? __pfx_lock_release+0x10/0x10
[   79.721844][ T7361]  ? __pfx_xsk_diag_dump+0x10/0x10
[   79.723325][ T7361]  sock_diag_rcv_msg+0x437/0x790
[   79.724591][ T7361]  netlink_rcv_skb+0x16b/0x440
[   79.725836][ T7361]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[   79.727262][ T7361]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   79.728809][ T7361]  ? netlink_deliver_tap+0x1ae/0xd30
[   79.730178][ T7361]  netlink_unicast+0x53c/0x7f0
[   79.731420][ T7361]  ? __pfx_netlink_unicast+0x10/0x10
[   79.732783][ T7361]  netlink_sendmsg+0x8b8/0xd70
[   79.734011][ T7361]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.735374][ T7361]  ? avc_has_perm_noaudit+0x143/0x3a0
[   79.736755][ T7361]  sock_write_iter+0x4fe/0x5b0
[   79.737972][ T7361]  ? __pfx_sock_write_iter+0x10/0x10
[   79.739321][ T7361]  ? __pfx_file_has_perm+0x10/0x10
[   79.740646][ T7361]  do_iter_readv_writev+0x532/0x7f0
[   79.741976][ T7361]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   79.743441][ T7361]  ? bpf_lsm_file_permission+0x9/0x10
[   79.744723][ T7361]  ? security_file_permission+0x71/0x210
[   79.746186][ T7361]  vfs_writev+0x363/0xdd0
[   79.747274][ T7361]  ? find_held_lock+0x2d/0x110
[   79.748451][ T7361]  ? __pfx_vfs_writev+0x10/0x10
[   79.749670][ T7361]  ? find_held_lock+0x2d/0x110
[   79.750855][ T7361]  ? __pfx_lock_release+0x10/0x10
[   79.752110][ T7361]  ? trace_lock_acquire+0x14e/0x1f0
[   79.753374][ T7361]  ? __fget_files+0x206/0x3a0
[   79.754552][ T7361]  ? do_writev+0x297/0x340
[   79.755701][ T7361]  do_writev+0x297/0x340
[   79.756795][ T7361]  ? __pfx_do_writev+0x10/0x10
[   79.758027][ T7361]  do_syscall_64+0xcd/0x250
[   79.759213][ T7361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.760751][ T7361] RIP: 0033:0x7f53b797fed9
[   79.761910][ T7361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.766850][ T7361] RSP: 002b:00007f53b8726058 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   79.769008][ T7361] RAX: ffffffffffffffda RBX: 00007f53b7b45fa0 RCX: 00007f53b797fed9
[   79.771008][ T7361] RDX: 0000000000000001 RSI: 0000000020019440 RDI: 0000000000000007
[   79.772921][ T7361] RBP: 00007f53b87260a0 R08: 0000000000000000 R09: 0000000000000000
[   79.774923][ T7361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.776959][ T7361] R13: 0000000000000000 R14: 00007f53b7b45fa0 R15: 00007fff5c915f08
[   79.779278][ T7361]  </TASK>
[   79.814334][   T40] audit: type=1400 audit(1733494797.659:417): avc:  denied  { bind } for  pid=7376 comm="syz.1.503" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   79.927066][   T40] audit: type=1400 audit(1733494797.769:418): avc:  denied  { ioctl } for  pid=7389 comm="syz.3.507" path="socket:[16887]" dev="sockfs" ino=16887 ioctlcmd=0x89f2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   80.039790][ T7398] xt_ipvs: protocol family 7 not supported
[   80.097249][   T40] audit: type=1400 audit(1733494797.939:419): avc:  denied  { execute } for  pid=7400 comm="syz-executor" name="syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   80.116067][ T7402] dvmrp4: entered allmulticast mode
[   80.189635][ T5953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   80.193446][ T5953] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   80.195934][ T5953] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   80.201704][ T5953] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   80.204591][ T5953] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   80.209074][ T5953] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   80.352412][ T7410] chnl_net:caif_netlink_parms(): no params data found
[   80.396106][ T7410] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.398880][ T7410] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.400781][ T7410] bridge_slave_0: entered allmulticast mode
[   80.402767][ T7410] bridge_slave_0: entered promiscuous mode
[   80.405238][ T7410] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.407085][ T7410] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.408957][ T7410] bridge_slave_1: entered allmulticast mode
[   80.410875][ T7410] bridge_slave_1: entered promiscuous mode
[   80.432046][ T7410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.435480][ T7410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.456101][ T7410] team0: Port device team_slave_0 added
[   80.458842][ T7410] team0: Port device team_slave_1 added
[   80.476330][ T7410] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.479421][ T7410] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.485904][ T7410] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.490179][ T7410] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.491953][ T7410] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.498449][ T7410] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.522963][ T7410] hsr_slave_0: entered promiscuous mode
[   80.524944][ T7410] hsr_slave_1: entered promiscuous mode
[   80.526671][ T7410] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   80.528886][ T7410] Cannot create hsr debugfs directory
[   80.611374][ T7410] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   80.615802][ T7410] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   80.620419][ T7410] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   80.624744][ T7410] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   80.649427][ T7410] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.651924][ T7410] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.654849][ T7410] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.656951][ T7410] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.670443][ T7423] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   80.673057][ T7423] IPv6: NLM_F_CREATE should be set when creating new route
[   80.692726][ T7410] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.702364][ T7410] 8021q: adding VLAN 0 to HW filter on device team0
[   80.709590][ T1146] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.713730][ T1146] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.735994][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.737950][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.742018][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.743940][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.778717][ T7427] tmpfs: Bad value for 'mpol'
[   80.868102][ T7410] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.983885][ T7410] veth0_vlan: entered promiscuous mode
[   80.990028][ T7410] veth1_vlan: entered promiscuous mode
[   81.004030][ T7410] veth0_macvtap: entered promiscuous mode
[   81.008961][ T7410] veth1_macvtap: entered promiscuous mode
[   81.017978][ T7410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.021520][ T7410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.025013][ T7410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.030561][ T7410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.034055][ T7410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.038125][ T7410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.041537][ T7410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.044483][ T7410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.048087][ T7410] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.052899][ T7410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.055770][ T7410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.060602][ T7410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.063569][ T7410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.068000][ T7410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.071519][ T7410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.074957][ T7410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.078615][ T7410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.082811][ T7410] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.089326][ T7410] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.093582][ T7410] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.097334][ T7410] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.100599][ T7410] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.111452][ T5947] Bluetooth: hci3: unexpected event 0x09 length: 4 > 3
[   81.152705][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.155620][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.168580][   T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.170803][   T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.327369][   T25] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   81.402216][ T1327] cfg80211: failed to load regulatory.db
[   81.434546][ T7471] bond0: (slave bond_slave_0): Releasing backup interface
[   81.480094][   T25] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   81.483825][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[   81.487655][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   81.491315][   T25] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   81.495416][   T25] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   81.498408][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.502170][   T25] usb 6-1: config 0 descriptor??
[   81.504237][ T7451] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   81.917109][   T25] plantronics 0003:047F:FFFF.0002: unknown main item tag 0xd
[   81.920988][   T25] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   81.929643][   T25] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   82.182030][ T6051] usb 6-1: USB disconnect, device number 5
[   82.257399][ T5947] Bluetooth: hci0: command tx timeout
[   82.687945][   T40] kauditd_printk_skb: 6 callbacks suppressed
[   82.687961][   T40] audit: type=1400 audit(1733494800.539:426): avc:  denied  { read append } for  pid=7483 comm="syz.2.536" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   82.696800][   T40] audit: type=1400 audit(1733494800.539:427): avc:  denied  { open } for  pid=7483 comm="syz.2.536" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   82.722876][ T7484] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   82.725911][   T40] audit: type=1400 audit(1733494800.569:428): avc:  denied  { ioctl } for  pid=7483 comm="syz.2.536" path="/dev/fb0" dev="devtmpfs" ino=637 ioctlcmd=0x5409 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   82.743331][ T7489] 8021q: adding VLAN 0 to HW filter on device batadv1
[   82.762250][   T40] audit: type=1400 audit(1733494800.609:429): avc:  denied  { getopt } for  pid=7492 comm="syz.2.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   82.799713][ T7496] netlink: 'syz.2.541': attribute type 13 has an invalid length.
[   82.805648][ T7496] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   82.810509][ T7496] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[   82.813196][ T7496] gretap1: entered promiscuous mode
[   82.815049][ T7496] gretap1: entered allmulticast mode
[   82.903152][ T7502] netlink: 'syz.3.543': attribute type 10 has an invalid length.
[   82.915957][ T7502] geneve0: entered promiscuous mode
[   82.921744][ T7502] bond0: (slave geneve0): Enslaving as an active interface with an up link
[   82.961392][ T7512] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   82.963308][ T7512] IPv6: NLM_F_CREATE should be set when creating new route
[   83.086280][   T40] audit: type=1400 audit(1733494800.929:430): avc:  denied  { ioctl } for  pid=7523 comm="syz.3.551" path="socket:[19081]" dev="sockfs" ino=19081 ioctlcmd=0x7201 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   83.168724][ T7531] __nla_validate_parse: 6 callbacks suppressed
[   83.168734][ T7531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.553'.
[   83.172379][ T7531] bond0: option ad_select: unable to set because the bond device is up
[   83.176037][ T7531] batadv_slave_1: entered promiscuous mode
[   83.180536][ T7530] batadv_slave_1: left promiscuous mode
[   83.268909][ T7538] netlink: 'syz.2.554': attribute type 21 has an invalid length.
[   83.851355][ T7544] netlink: 4 bytes leftover after parsing attributes in process `syz.1.558'.
[   84.232295][   T40] audit: type=1400 audit(1733494802.079:431): avc:  denied  { remount } for  pid=7547 comm="syz.1.559" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   84.330380][ T5947] Bluetooth: hci0: command tx timeout
[   84.550855][   T40] audit: type=1400 audit(1733494802.399:432): avc:  denied  { map } for  pid=7586 comm="syz.3.572" path="socket:[16144]" dev="sockfs" ino=16144 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   84.734891][ T7601] netlink: 4 bytes leftover after parsing attributes in process `syz.4.578'.
[   84.875755][ T1327] IPVS: starting estimator thread 0...
[   84.987386][ T7612] IPVS: using max 36 ests per chain, 86400 per kthread
[   85.112774][   T40] audit: type=1400 audit(1733494802.959:433): avc:  denied  { read } for  pid=7619 comm="syz.4.584" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   85.119001][   T40] audit: type=1400 audit(1733494802.959:434): avc:  denied  { open } for  pid=7619 comm="syz.4.584" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   85.127284][   T40] audit: type=1400 audit(1733494802.959:435): avc:  denied  { ioctl } for  pid=7619 comm="syz.4.584" path="/dev/sg0" dev="devtmpfs" ino=721 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   85.371147][ T7639] FAULT_INJECTION: forcing a failure.
[   85.371147][ T7639] name failslab, interval 1, probability 0, space 0, times 0
[   85.374586][ T7639] CPU: 0 UID: 0 PID: 7639 Comm: syz.1.591 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   85.377371][ T7639] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.380293][ T7639] Call Trace:
[   85.381200][ T7639]  <TASK>
[   85.381992][ T7639]  dump_stack_lvl+0x16c/0x1f0
[   85.383294][ T7639]  should_fail_ex+0x497/0x5b0
[   85.384600][ T7639]  ? fs_reclaim_acquire+0xae/0x150
[   85.385959][ T7639]  should_failslab+0xc2/0x120
[   85.387307][ T7639]  __kmalloc_noprof+0xcb/0x510
[   85.388647][ T7639]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   85.390051][ T7639]  tomoyo_realpath_from_path+0xb9/0x720
[   85.391504][ T7639]  ? tomoyo_path_number_perm+0x235/0x590
[   85.392969][ T7639]  ? tomoyo_path_number_perm+0x235/0x590
[   85.394465][ T7639]  tomoyo_path_number_perm+0x248/0x590
[   85.395895][ T7639]  ? tomoyo_path_number_perm+0x235/0x590
[   85.397349][ T7639]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   85.399175][ T7639]  ? __pfx_lock_release+0x10/0x10
[   85.400548][ T7639]  ? trace_lock_acquire+0x14e/0x1f0
[   85.401902][ T7639]  ? lock_acquire+0x2f/0xb0
[   85.403084][ T7639]  ? __fget_files+0x40/0x3a0
[   85.404308][ T7639]  ? __fget_files+0x206/0x3a0
[   85.405572][ T7639]  security_file_ioctl+0x9b/0x240
[   85.406898][ T7639]  __x64_sys_ioctl+0xb7/0x200
[   85.408171][ T7639]  do_syscall_64+0xcd/0x250
[   85.409354][ T7639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.410933][ T7639] RIP: 0033:0x7f53b797fed9
[   85.412077][ T7639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.416861][ T7639] RSP: 002b:00007f53b8726058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.419245][ T7639] RAX: ffffffffffffffda RBX: 00007f53b7b45fa0 RCX: 00007f53b797fed9
[   85.421355][ T7639] RDX: 0000000020000180 RSI: 00000000c03864bc RDI: 000000000000000f
[   85.423445][ T7639] RBP: 00007f53b87260a0 R08: 0000000000000000 R09: 0000000000000000
[   85.425621][ T7639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.427780][ T7639] R13: 0000000000000000 R14: 00007f53b7b45fa0 R15: 00007fff5c915f08
[   85.429935][ T7639]  </TASK>
[   85.432320][ T7639] ERROR: Out of memory at tomoyo_realpath_from_path.
[   85.727350][   T74] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   85.877310][   T74] usb 9-1: Using ep0 maxpacket: 8
[   85.881538][   T74] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   85.884890][   T74] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   85.888867][   T74] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   85.891982][   T74] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   85.896546][   T74] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   85.899901][   T74] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.108266][   T74] usb 9-1: GET_CAPABILITIES returned 0
[   86.110225][   T74] usbtmc 9-1:16.0: can't read capabilities
[   86.310213][ T7646] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=34832 sclass=netlink_route_socket pid=7646 comm=syz.4.593
[   86.317065][   T57] usb 9-1: USB disconnect, device number 2
[   86.408937][ T5947] Bluetooth: hci0: command tx timeout
[   86.558031][ T7692] MPI: mpi too large (16392 bits)
[   86.693568][ T7696] kvm: kvm [7695]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[   86.900140][ T7724] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   86.901996][ T7724] IPv6: NLM_F_CREATE should be set when creating new route
[   86.903750][ T7724] IPv6: NLM_F_CREATE should be set when creating new route
[   87.320088][ T7743] netlink: 4 bytes leftover after parsing attributes in process `syz.4.631'.
[   87.801026][   T40] kauditd_printk_skb: 14 callbacks suppressed
[   87.801038][   T40] audit: type=1400 audit(1733494805.649:450): avc:  denied  { write } for  pid=7766 comm="syz.4.640" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   87.845694][ T7770] netlink: 'syz.4.641': attribute type 4 has an invalid length.
[   87.851011][   T40] audit: type=1326 audit(1733494805.699:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   87.858620][   T40] audit: type=1326 audit(1733494805.699:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   87.861272][ T7770] netlink: 'syz.4.641': attribute type 3 has an invalid length.
[   87.865902][   T40] audit: type=1326 audit(1733494805.699:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   87.869275][ T7770] netlink: 'syz.4.641': attribute type 2 has an invalid length.
[   87.875842][   T40] audit: type=1326 audit(1733494805.699:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   87.885467][   T40] audit: type=1326 audit(1733494805.699:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   87.893140][   T40] audit: type=1326 audit(1733494805.699:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   87.899823][   T40] audit: type=1326 audit(1733494805.699:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   87.905423][   T40] audit: type=1326 audit(1733494805.699:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   87.907319][ T1327] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   87.911148][   T40] audit: type=1326 audit(1733494805.699:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7769 comm="syz.4.641" exe="/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7f294c57fed9 code=0x7ffc0000
[   88.057296][ T1327] usb 6-1: Using ep0 maxpacket: 8
[   88.060395][ T1327] usb 6-1: config 0 has no interfaces?
[   88.062313][ T1327] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   88.065465][ T1327] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.071475][ T1327] usb 6-1: config 0 descriptor??
[   88.275987][    T9] usb 6-1: USB disconnect, device number 6
[   88.487352][ T5947] Bluetooth: hci0: command tx timeout
[   89.050290][ T7796] netlink: 20 bytes leftover after parsing attributes in process `syz.4.650'.
[   89.052797][ T7796] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[   89.234537][ T7804] netlink: 4 bytes leftover after parsing attributes in process `syz.1.654'.
[   89.496066][ T7829] netlink: 4 bytes leftover after parsing attributes in process `syz.1.660'.
[   89.649409][ T7838] netlink: 'syz.4.665': attribute type 5 has an invalid length.
[   89.705404][ T7844] futex_wake_op: syz.4.667 tries to shift op by -1; fix this program
[   89.714193][ T7844] overlayfs: missing 'lowerdir'
[   89.755136][ T7848] ipt_ECN: cannot use operation on non-tcp rule
[   90.007697][ T5938] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   90.167365][ T5938] usb 9-1: Using ep0 maxpacket: 8
[   90.170947][ T5938] usb 9-1: config 0 has no interfaces?
[   90.172542][ T5938] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   90.174902][ T5938] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.178684][ T5938] usb 9-1: config 0 descriptor??
[   90.384639][ T5938] usb 9-1: USB disconnect, device number 3
[   90.576536][ T7891] netlink: 4 bytes leftover after parsing attributes in process `syz.1.684'.
[   90.933781][ T7914] overlayfs: failed to resolve './file0': -2
[   90.936607][ T7913] XFS (nullb0): Invalid superblock magic number
[   90.966433][ T7913] overlayfs: missing 'lowerdir'
[   90.972240][ T7913] overlayfs: missing 'lowerdir'
[   90.976961][ T7913] overlayfs: missing 'lowerdir'
[   90.981819][ T7913] overlayfs: missing 'lowerdir'
[   90.984122][ T7913] overlayfs: missing 'lowerdir'
[   90.987365][ T7913] overlayfs: missing 'lowerdir'
[   90.993038][ T7913] overlayfs: missing 'lowerdir'
[   90.996251][ T7913] overlayfs: missing 'lowerdir'
[   90.999462][ T7913] overlayfs: missing 'lowerdir'
[   91.002239][ T7913] overlayfs: missing 'lowerdir'
[   91.009459][ T7913] overlayfs: missing 'lowerdir'
[   91.011412][ T7913] overlayfs: missing 'lowerdir'
[   91.016545][ T7913] overlayfs: missing 'lowerdir'
[   91.019923][ T7913] overlayfs: missing 'lowerdir'
[   91.025656][ T7913] overlayfs: missing 'lowerdir'
[   91.029313][ T7913] overlayfs: missing 'lowerdir'
[   91.032089][ T7913] overlayfs: missing 'lowerdir'
[   91.034893][ T7913] overlayfs: missing 'lowerdir'
[   91.037487][ T7913] overlayfs: missing 'lowerdir'
[   91.039817][ T7913] overlayfs: missing 'lowerdir'
[   91.042005][ T7913] overlayfs: missing 'lowerdir'
[   91.044642][ T7913] overlayfs: missing 'lowerdir'
[   91.046706][ T7913] overlayfs: missing 'lowerdir'
[   91.051942][ T7913] overlayfs: missing 'lowerdir'
[   91.055551][ T7913] overlayfs: missing 'lowerdir'
[   91.059214][ T7913] overlayfs: missing 'lowerdir'
[   91.064222][ T7913] overlayfs: missing 'lowerdir'
[   91.065860][ T7913] overlayfs: missing 'lowerdir'
[   91.068635][ T7913] overlayfs: missing 'lowerdir'
[   91.070914][ T7913] overlayfs: missing 'lowerdir'
[   91.073100][ T7913] overlayfs: missing 'lowerdir'
[   91.075173][ T7913] overlayfs: missing 'lowerdir'
[   91.077661][ T7913] overlayfs: missing 'lowerdir'
[   91.079796][ T7913] overlayfs: missing 'lowerdir'
[   91.081872][ T7913] overlayfs: missing 'lowerdir'
[   91.086138][ T7913] overlayfs: missing 'lowerdir'
[   91.086531][ T7928] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   91.090482][ T7913] overlayfs: missing 'lowerdir'
[   91.092233][ T7913] overlayfs: missing 'lowerdir'
[   91.094211][ T7913] overlayfs: missing 'lowerdir'
[   91.096812][ T7913] overlayfs: missing 'lowerdir'
[   91.099472][ T7913] overlayfs: missing 'lowerdir'
[   91.101750][ T7913] overlayfs: missing 'lowerdir'
[   91.104043][ T7913] overlayfs: missing 'lowerdir'
[   91.105720][ T7913] overlayfs: missing 'lowerdir'
[   91.108348][ T7913] overlayfs: missing 'lowerdir'
[   91.110009][ T7913] overlayfs: missing 'lowerdir'
[   91.111639][ T7913] overlayfs: missing 'lowerdir'
[   91.113307][ T7913] overlayfs: missing 'lowerdir'
[   91.114908][ T7913] overlayfs: missing 'lowerdir'
[   91.116473][ T7913] overlayfs: missing 'lowerdir'
[   91.122239][ T7913] overlayfs: missing 'lowerdir'
[   91.125577][ T7913] overlayfs: missing 'lowerdir'
[   91.128823][ T7913] overlayfs: missing 'lowerdir'
[   91.132140][ T7913] overlayfs: missing 'lowerdir'
[   91.135445][ T7913] overlayfs: missing 'lowerdir'
[   91.138842][ T7913] overlayfs: missing 'lowerdir'
[   91.142638][ T7913] overlayfs: missing 'lowerdir'
[   91.144252][ T7913] overlayfs: missing 'lowerdir'
[   91.145857][ T7913] overlayfs: missing 'lowerdir'
[   91.148609][ T7913] overlayfs: missing 'lowerdir'
[   91.150218][ T7913] overlayfs: missing 'lowerdir'
[   91.151710][ T7913] overlayfs: missing 'lowerdir'
[   91.154326][ T7913] overlayfs: missing 'lowerdir'
[   91.155963][ T7913] overlayfs: missing 'lowerdir'
[   91.249821][ T7937] netlink: 12 bytes leftover after parsing attributes in process `syz.4.699'.
[   91.778355][ T7967] serio: Serial port ptm1
[   91.925260][ T7975] xt_l2tp: v2 doesn't support IP mode
[   91.964420][ T7979] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   91.966876][ T7979] IPv6: NLM_F_CREATE should be set when creating new route
[   92.607012][ T8013] netlink: 56 bytes leftover after parsing attributes in process `syz.4.720'.
[   92.879408][ T8021] netlink: 4 bytes leftover after parsing attributes in process `syz.4.723'.
[   93.135863][ T8043] netlink: 576 bytes leftover after parsing attributes in process `syz.3.728'.
[   93.137357][ T8042] netlink: 576 bytes leftover after parsing attributes in process `syz.3.728'.
[   93.514974][ T8059] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   93.516873][ T8059] IPv6: NLM_F_CREATE should be set when creating new route
[   94.213141][   T40] kauditd_printk_skb: 86 callbacks suppressed
[   94.213153][   T40] audit: type=1400 audit(1733494812.059:546): avc:  denied  { getopt } for  pid=8068 comm="syz.4.737" laddr=::ffff:172.20.20.0 lport=20000 faddr=::ffff:172.20.20.10 fport=50248 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   94.430370][ T8073] netlink: 'syz.1.738': attribute type 5 has an invalid length.
[   94.485999][   T40] audit: type=1400 audit(1733494812.329:547): avc:  denied  { read } for  pid=8072 comm="syz.1.738" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   94.894305][ T8088] netlink: 4 bytes leftover after parsing attributes in process `syz.2.739'.
[   94.900102][   T40] audit: type=1400 audit(1733494812.749:548): avc:  denied  { read write } for  pid=8087 comm="syz.2.739" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   94.908389][   T40] audit: type=1400 audit(1733494812.749:549): avc:  denied  { open } for  pid=8087 comm="syz.2.739" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   94.933625][ T8068] dccp_close: ABORT with 56 bytes unread
[   94.934875][   T40] audit: type=1400 audit(1733494812.779:550): avc:  denied  { mount } for  pid=8094 comm="syz.2.740" name="/" dev="configfs" ino=1090 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   94.944979][   T40] audit: type=1400 audit(1733494812.799:551): avc:  denied  { mounton } for  pid=8094 comm="syz.2.740" path="/110/file0" dev="configfs" ino=1090 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   94.951441][   T40] audit: type=1400 audit(1733494812.799:552): avc:  denied  { read } for  pid=8094 comm="syz.2.740" name="/" dev="configfs" ino=1090 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   94.961688][   T40] audit: type=1400 audit(1733494812.799:553): avc:  denied  { open } for  pid=8094 comm="syz.2.740" path="/110/file0" dev="overlay" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   95.202528][   T40] audit: type=1400 audit(1733494813.049:554): avc:  denied  { unmount } for  pid=5945 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   95.230298][ T8108] xt_l2tp: unknown flags: 17
[   95.266976][   T40] audit: type=1400 audit(1733494813.109:555): avc:  denied  { ioctl } for  pid=8107 comm="syz.2.745" path="/dev/vhost-net" dev="devtmpfs" ino=1300 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   95.568821][ T8134] netlink: 4 bytes leftover after parsing attributes in process `syz.2.754'.
[   95.572041][ T8134] netlink: 24 bytes leftover after parsing attributes in process `syz.2.754'.
[   95.579506][ T5983] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   95.585130][ T8131] xt_ecn: cannot match TCP bits for non-tcp packets
[   95.683644][ T8133] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2758444543 (5516889086 ns) > initial count (4205064 ns). Using initial count to start timer.
[   95.727375][ T5983] usb 6-1: Using ep0 maxpacket: 8
[   95.731131][ T5983] usb 6-1: config 167 has too many interfaces: 202, using maximum allowed: 32
[   95.733882][ T5983] usb 6-1: config 167 has 1 interface, different from the descriptor's value: 202
[   95.739068][ T5983] usb 6-1: New USB device found, idVendor=1025, idProduct=005f, bcdDevice=fe.29
[   95.741782][ T5983] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.744053][ T5983] usb 6-1: Product: syz
[   95.745261][ T5983] usb 6-1: Manufacturer: syz
[   95.746650][ T5983] usb 6-1: SerialNumber: syz
[   95.751152][ T5983] dvb-usb: found a 'Unknown USB1.1 DVB-T device ???? please report the name to the author' in warm state.
[   95.754719][ T5983] dvb-usb: bulk message failed: -22 (3/0)
[   95.771289][ T5983] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   95.774310][ T5983] dvbdev: DVB: registering new adapter (Unknown USB1.1 DVB-T device ???? please report the name to the author)
[   95.778816][ T5983] usb 6-1: media controller created
[   95.786816][ T5983] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   95.799965][ T5983] dvb-usb: bulk message failed: -22 (6/0)
[   95.801637][ T5983] dvb-usb: no frontend was attached by 'Unknown USB1.1 DVB-T device ???? please report the name to the author'
[   95.806198][ T5983] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input6
[   95.816451][ T5983] dvb-usb: schedule remote query interval to 150 msecs.
[   95.818391][ T5983] dvb-usb: bulk message failed: -22 (3/0)
[   95.837623][ T5983] dvb-usb: Unknown USB1.1 DVB-T device ???? please report the name to the author successfully initialized and connected.
[   95.870334][ T8144] netlink: 512 bytes leftover after parsing attributes in process `syz.2.757'.
[   95.953789][ T8116] xt_ipcomp: unknown flags 12
[   95.964706][ T8116] netlink: 'syz.1.747': attribute type 1 has an invalid length.
[   95.966765][ T8116] netlink: 16 bytes leftover after parsing attributes in process `syz.1.747'.
[   95.971630][   T57] usb 6-1: USB disconnect, device number 7
[   95.990227][   T57] dvb-usb: Unknown USB1.1 DVB-T device ???? please successfully deinitialized and disconnected.
[   96.512367][ T8149] overlayfs: conflicting options: metacopy=on,redirect_dir=follow
[   96.564114][ T8153] FAULT_INJECTION: forcing a failure.
[   96.564114][ T8153] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.566405][ T8152] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[   96.568451][ T8153] CPU: 0 UID: 0 PID: 8153 Comm: syz.4.761 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[   96.573396][ T8153] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.576386][ T8153] Call Trace:
[   96.577276][ T8153]  <TASK>
[   96.578101][ T8153]  dump_stack_lvl+0x16c/0x1f0
[   96.579413][ T8153]  should_fail_ex+0x497/0x5b0
[   96.580705][ T8153]  _copy_to_user+0x32/0xd0
[   96.581907][ T8153]  simple_read_from_buffer+0xd0/0x160
[   96.583388][ T8153]  proc_fail_nth_read+0x198/0x270
[   96.584743][ T8153]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   96.586284][ T8153]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   96.587761][ T8153]  vfs_read+0x1df/0xbe0
[   96.588897][ T8153]  ? __fget_files+0x1fc/0x3a0
[   96.590162][ T8153]  ? __pfx___mutex_lock+0x10/0x10
[   96.591495][ T8153]  ? __pfx_vfs_read+0x10/0x10
[   96.592761][ T8153]  ? __fget_files+0x206/0x3a0
[   96.594066][ T8153]  ksys_read+0x12b/0x250
[   96.595191][ T8153]  ? __pfx_ksys_read+0x10/0x10
[   96.596504][ T8153]  do_syscall_64+0xcd/0x250
[   96.597709][ T8153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.599259][ T8153] RIP: 0033:0x7f294c57e8ec
[   96.600538][ T8153] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   96.607425][ T8153] RSP: 002b:00007f294d3fa050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   96.610482][ T8153] RAX: ffffffffffffffda RBX: 00007f294c745fa0 RCX: 00007f294c57e8ec
[   96.613370][ T8153] RDX: 000000000000000f RSI: 00007f294d3fa0b0 RDI: 0000000000000004
[   96.616261][ T8153] RBP: 00007f294d3fa0a0 R08: 0000000000000000 R09: 0000000000000000
[   96.619140][ T8153] R10: 000000000000006e R11: 0000000000000246 R12: 0000000000000001
[   96.621971][ T8153] R13: 0000000000000000 R14: 00007f294c745fa0 R15: 00007ffdda1165d8
[   96.624274][ T8153]  </TASK>
[   96.737726][ T8164] batadv1: entered promiscuous mode
[   96.739204][ T8164] batadv1: entered allmulticast mode
[   96.989320][ T8181] netlink: 28 bytes leftover after parsing attributes in process `syz.1.773'.
[   97.630952][ T8201] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   97.633368][ T8201] IPv6: NLM_F_CREATE should be set when creating new route
[   97.815514][ T8181] Bluetooth: hci0: Opcode 0x080f failed: -4
[   98.277324][ T8212] nbd4: detected capacity change from 0 to 32
[   98.281338][ T8216] block nbd4: shutting down sockets
[   98.282367][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.286322][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.307412][   T55] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.310718][   T55] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.313946][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.317008][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.319331][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.322060][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.325722][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.328602][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.330790][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.333220][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.335345][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.337957][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.340135][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.342552][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.344638][ T5942] ldm_validate_partition_table(): Disk read failed.
[   98.346630][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.349229][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.351345][ T5942] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.353746][ T5942] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.355884][ T5942] Dev nbd4: unable to read RDB block 0
[   98.357726][ T5942]  nbd4: unable to read partition table
[   98.363147][ T5942] ldm_validate_partition_table(): Disk read failed.
[   98.365104][ T5942] Dev nbd4: unable to read RDB block 0
[   98.366744][ T5942]  nbd4: unable to read partition table
[   98.487793][ T8223] nfs4: Unknown parameter 'rdma�'
[   99.057304][ T5947] Bluetooth: hci0: command 0x080f tx timeout
[   99.277502][ T8259] batadv1: entered allmulticast mode
[   99.701454][   T40] kauditd_printk_skb: 7 callbacks suppressed
[   99.701465][   T40] audit: type=1400 audit(1733494817.549:563): avc:  denied  { bind } for  pid=8264 comm="syz.3.803" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   99.708222][   T40] audit: type=1400 audit(1733494817.549:564): avc:  denied  { name_bind } for  pid=8264 comm="syz.3.803" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   99.714100][   T40] audit: type=1400 audit(1733494817.549:565): avc:  denied  { node_bind } for  pid=8264 comm="syz.3.803" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  100.032459][   T40] audit: type=1400 audit(1733494817.879:566): avc:  granted  { setsecparam } for  pid=8289 comm="syz.2.812" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  100.381413][ T8301] pim6reg: entered allmulticast mode
[  100.425429][ T8305] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  100.428004][ T8305] IPv6: NLM_F_CREATE should be set when creating new route
[  100.439814][   T40] audit: type=1400 audit(1733494818.289:567): avc:  denied  { read } for  pid=8299 comm="syz.2.814" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  100.447290][   T40] audit: type=1400 audit(1733494818.289:568): avc:  denied  { open } for  pid=8299 comm="syz.2.814" path="/123/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  100.449937][ T8306] block device autoloading is deprecated and will be removed.
[  100.457760][   T40] audit: type=1400 audit(1733494818.309:569): avc:  denied  { ioctl } for  pid=8299 comm="syz.2.814" path="/123/file0/file0" dev="fuse" ino=0 ioctlcmd=0x921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  100.480358][ T8308] tmpfs: Bad value for 'mode'
[  100.509483][ T8306] netlink: 'syz.2.814': attribute type 1 has an invalid length.
[  100.511557][ T8306] netlink: 'syz.2.814': attribute type 4 has an invalid length.
[  100.513443][ T8306] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.814'.
[  100.521651][   T40] audit: type=1400 audit(1733494818.369:570): avc:  denied  { associate } for  pid=8310 comm="syz.4.817" name="cpuset.effective_cpus" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  100.595243][ T8318] tap0: tun_chr_ioctl cmd 1074025678
[  100.596736][ T8318] tap0: group set to 0
[  100.634506][ T8319] overlayfs: failed to clone upperpath
[  100.687649][ T8321] netlink: 20 bytes leftover after parsing attributes in process `syz.2.821'.
[  100.781175][ T8324] batadv1: entered promiscuous mode
[  100.783100][ T8324] batadv1: entered allmulticast mode
[  100.827302][ T6051] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  100.987264][ T6051] usb 9-1: Using ep0 maxpacket: 8
[  100.991595][ T6051] usb 9-1: config 0 has no interfaces?
[  100.993498][ T6051] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  100.996612][ T6051] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.001479][ T6051] usb 9-1: config 0 descriptor??
[  101.212466][   T40] audit: type=1400 audit(1733494819.059:571): avc:  denied  { setattr } for  pid=8310 comm="syz.4.817" name="file0" dev="9p" ino=39059517 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  101.217334][ T5983] usb 9-1: USB disconnect, device number 4
[  101.441547][ T8334] tmpfs: Bad value for 'mpol'
[  101.571300][ T8342] binder_alloc: 8341: pid 8341 spamming oneway? 1 buffers allocated for a total size of 4096
[  101.671625][ T5947] Bluetooth: hci3: unexpected cc 0x1002 length: 9 < 65
[  101.704639][ T8365] netlink: 28 bytes leftover after parsing attributes in process `syz.3.840'.
[  101.707024][ T8365] netlink: 28 bytes leftover after parsing attributes in process `syz.3.840'.
[  101.768780][ T8365] netlink: 28 bytes leftover after parsing attributes in process `syz.3.840'.
[  101.771176][ T8365] netlink: 28 bytes leftover after parsing attributes in process `syz.3.840'.
[  101.975057][ T8386] 9pnet_fd: Insufficient options for proto=fd
[  101.978155][ T8386] netlink: 28 bytes leftover after parsing attributes in process `syz.4.850'.
[  101.982933][ T8386] netlink: 16 bytes leftover after parsing attributes in process `syz.4.850'.
[  102.019961][   T40] audit: type=1400 audit(1733494819.869:572): avc:  denied  { create } for  pid=8377 comm="syz.3.846" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  102.021499][ T8378] overlay: ./file0 is not a directory
[  102.040705][ T8393] netlink: 8 bytes leftover after parsing attributes in process `syz.1.853'.
[  102.044407][ T8393] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8393 comm=syz.1.853
[  102.101348][ T8395] netlink: 'syz.1.853': attribute type 1 has an invalid length.
[  102.103207][ T8394] netlink: 'syz.1.853': attribute type 1 has an invalid length.
[  102.110177][ T8395] 8021q: adding VLAN 0 to HW filter on device bond1
[  102.119673][ T8394] bond1: (slave bridge1): making interface the new active one
[  102.122167][ T8394] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  102.139088][ T8395] bond1: (slave bridge2): Enslaving as an active interface with a down link
[  102.144577][ T8394] bond1: (slave bridge3): Enslaving as an active interface with a down link
[  102.145913][ T8391] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  102.151517][ T8393] DRBG: could not allocate digest TFM handle: hmac(sha512)
[  102.162428][ T8391] UDF-fs: Scanning with blocksize 2048 failed
[  102.179102][ T8391] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  102.181055][ T8391] UDF-fs: Scanning with blocksize 4096 failed
[  102.262666][ T8433] netlink: 4 bytes leftover after parsing attributes in process `syz.2.857'.
[  102.293195][ T8438] 9pnet_virtio: no channels available for device syz
[  102.516063][ T8462] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -107 0
[  102.954416][   T75] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.015086][   T75] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.093002][   T75] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.143354][ T5292] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  103.148685][ T5292] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  103.154002][ T5292] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  103.161281][ T5292] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  103.163798][ T5292] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  103.166535][ T5292] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  103.172041][   T75] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.286389][   T75] bridge_slave_1: left allmulticast mode
[  103.297256][   T75] bridge_slave_1: left promiscuous mode
[  103.300144][   T75] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.305843][   T75] bridge_slave_0: left allmulticast mode
[  103.317218][   T75] bridge_slave_0: left promiscuous mode
[  103.318755][   T75] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.412535][ T8500] overlayfs: failed to clone upperpath
[  103.613300][   T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  103.616484][   T75] bond_slave_0: left promiscuous mode
[  103.618397][   T75] bond_slave_0: left allmulticast mode
[  103.621144][   T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  103.623648][   T75] bond_slave_1: left promiscuous mode
[  103.625128][   T75] bond_slave_1: left allmulticast mode
[  103.627110][   T75] bond0 (unregistering): Released all slaves
[  103.631249][   T75] bond1 (unregistering): Released all slaves
[  103.703391][ T8484] chnl_net:caif_netlink_parms(): no params data found
[  103.777878][ T8484] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.780954][ T8484] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.783211][ T8484] bridge_slave_0: entered allmulticast mode
[  103.786456][ T8484] bridge_slave_0: entered promiscuous mode
[  103.828923][ T8484] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.830833][ T8484] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.834441][ T8484] bridge_slave_1: entered allmulticast mode
[  103.836550][ T8484] bridge_slave_1: entered promiscuous mode
[  103.865184][ T8484] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.875706][ T8484] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.933536][ T8484] team0: Port device team_slave_0 added
[  103.939585][ T8484] team0: Port device team_slave_1 added
[  104.003607][ T8526] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  104.005652][ T8526] IPv6: NLM_F_CREATE should be set when creating new route
[  104.022018][ T8484] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.024179][ T8484] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.031805][ T8484] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.038759][ T8484] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.040566][ T8484] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.047780][ T8484] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.128580][   T75] hsr_slave_0: left promiscuous mode
[  104.130555][   T75] hsr_slave_1: left promiscuous mode
[  104.134096][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.136226][   T75] batman_adv: batadv0: Removing interface: batadv_slave_0
[  104.139531][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.141472][   T75] batman_adv: batadv0: Removing interface: batadv_slave_1
[  104.151411][ T8536] kAFS: No cell specified
[  104.152996][ T8536] 9pnet_fd: Insufficient options for proto=fd
[  104.166292][   T75] veth1_macvtap: left promiscuous mode
[  104.173035][   T75] veth0_macvtap: left promiscuous mode
[  104.175030][   T75] veth1_vlan: left promiscuous mode
[  104.177375][   T75] veth0_vlan: left promiscuous mode
[  104.178858][ T8536] kvm: pic: non byte write
[  104.182398][ T8536] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2758444543 (5516889086 ns) > initial count (4205064 ns). Using initial count to start timer.
[  104.231399][   T75] pim6reg (unregistering): left allmulticast mode
[  104.884910][   T75] team0 (unregistering): Port device team_slave_1 removed
[  104.973417][   T75] team0 (unregistering): Port device team_slave_0 removed
[  105.224290][ T5292] Bluetooth: hci2: command tx timeout
[  105.607374][ T8546] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.625352][ T8484] hsr_slave_0: entered promiscuous mode
[  105.628747][ T8484] hsr_slave_1: entered promiscuous mode
[  105.703388][ T8546] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.801572][ T8546] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.913507][ T8546] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.928999][ T8484] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  105.932614][ T8484] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  105.936345][ T8484] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  105.941907][ T8484] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  105.996611][ T8484] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.004221][ T8484] 8021q: adding VLAN 0 to HW filter on device team0
[  106.010595][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.012449][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.016616][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.019020][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.065176][ T8546] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.071774][ T8546] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.076501][ T8546] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.083652][ T8546] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.127863][ T8484] 8021q: adding VLAN 0 to HW filter on device batadv0
[  106.130750][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  106.130759][   T40] audit: type=1400 audit(1733494823.979:579): avc:  denied  { sys_chroot } for  pid=8579 comm="dhcpcd" capability=18  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  106.141143][   T40] audit: type=1400 audit(1733494823.989:580): avc:  denied  { setgid } for  pid=8579 comm="dhcpcd" capability=6  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  106.148918][   T40] audit: type=1400 audit(1733494823.989:581): avc:  denied  { setrlimit } for  pid=8579 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1
[  106.258195][ T8484] veth0_vlan: entered promiscuous mode
[  106.262513][ T8484] veth1_vlan: entered promiscuous mode
[  106.273227][ T8484] veth0_macvtap: entered promiscuous mode
[  106.276113][ T8484] veth1_macvtap: entered promiscuous mode
[  106.284493][ T8484] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.287234][ T8484] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.289782][ T8484] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.292906][ T8484] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.295397][ T8484] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.301350][ T8484] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.304607][ T8484] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.307991][ T8484] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.311146][ T8484] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.316567][ T8484] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.321269][ T8484] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.324734][ T8484] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.333762][ T8484] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.336149][ T8484] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.344661][ T8484] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.347764][ T8484] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.350411][ T8484] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.353587][ T8484] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.359474][ T8484] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.361760][ T8484] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.364410][ T8484] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.371219][ T8484] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.433924][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.436769][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.459383][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.471620][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.562901][ T8628] syz.5.916: attempt to access beyond end of device
[  106.562901][ T8628] nbd5: rw=0, sector=0, nr_sectors = 1 limit=0
[  106.566795][ T8628] FAT-fs (nbd5): unable to read boot sector
[  106.729573][ T8642] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  106.732069][ T8642] IPv6: NLM_F_CREATE should be set when creating new route
[  106.734533][ T8642] IPv6: NLM_F_CREATE should be set when creating new route
[  106.844836][   T40] audit: type=1400 audit(1733494824.689:582): avc:  denied  { ioctl } for  pid=8650 comm="syz.5.921" path="/dev/ptyqf" dev="devtmpfs" ino=142 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  106.852674][ T8651] __nla_validate_parse: 1 callbacks suppressed
[  106.852690][ T8651] netlink: 8 bytes leftover after parsing attributes in process `syz.5.921'.
[  106.859199][ T8651] netlink: 12 bytes leftover after parsing attributes in process `syz.5.921'.
[  106.862770][ T8651] netlink: 'syz.5.921': attribute type 20 has an invalid length.
[  106.882376][ T8656] netlink: 'syz.1.924': attribute type 3 has an invalid length.
[  106.884991][ T8656] netlink: 124 bytes leftover after parsing attributes in process `syz.1.924'.
[  106.959511][   T40] audit: type=1400 audit(1733494824.799:583): avc:  denied  { write } for  pid=8663 comm="syz.5.927" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  106.973032][ T8660] batadv1: entered promiscuous mode
[  106.974975][ T8660] batadv1: entered allmulticast mode
[  107.140246][   T40] audit: type=1400 audit(1733494824.989:584): avc:  denied  { write } for  pid=8693 comm="syz.3.935" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  107.150162][ T8692] netlink: 4 bytes leftover after parsing attributes in process `syz.5.934'.
[  107.287338][ T5292] Bluetooth: hci2: command tx timeout
[  107.642600][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.3.949'.
[  107.647076][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.3.949'.
[  107.755082][ T8736] netlink: 12 bytes leftover after parsing attributes in process `syz.3.952'.
[  108.088296][   T40] audit: type=1400 audit(1733494825.939:585): avc:  denied  { read } for  pid=8751 comm="syz.1.959" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  108.137624][   T40] audit: type=1400 audit(1733494825.979:586): avc:  denied  { append } for  pid=8753 comm="syz.1.960" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  108.236508][ T8764] program syz.1.964 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  108.286207][ T8764] netlink: 4 bytes leftover after parsing attributes in process `syz.1.964'.
[  108.307213][   T40] audit: type=1400 audit(1733494826.149:587): avc:  denied  { write } for  pid=5336 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  108.313071][   T40] audit: type=1400 audit(1733494826.149:588): avc:  denied  { remove_name } for  pid=5336 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  108.510758][ T8794] syz.5.976[8794] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.510814][ T8794] syz.5.976[8794] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.513784][ T8794] syz.5.976[8794] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.571367][ T5292] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  108.577797][ T5292] CPU: 2 UID: 0 PID: 5292 Comm: kworker/u33:1 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[  108.580876][ T5292] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.584099][ T5292] Workqueue: hci2 hci_rx_work
[  108.585324][ T5292] Call Trace:
[  108.586160][ T5292]  <TASK>
[  108.586925][ T5292]  dump_stack_lvl+0x16c/0x1f0
[  108.588338][ T5292]  sysfs_warn_dup+0x7f/0xa0
[  108.589659][ T5292]  sysfs_create_dir_ns+0x24d/0x2b0
[  108.590977][ T5292]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  108.592544][ T5292]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  108.593953][ T5292]  ? kobject_add_internal+0x12d/0x990
[  108.595412][ T5292]  ? do_raw_spin_unlock+0x172/0x230
[  108.596842][ T5292]  kobject_add_internal+0x2c8/0x990
[  108.598343][ T5292]  kobject_add+0x16f/0x240
[  108.599607][ T5292]  ? __pfx_kobject_add+0x10/0x10
[  108.600953][ T5292]  ? class_to_subsys+0x3e/0x160
[  108.602347][ T5292]  ? do_raw_spin_unlock+0x172/0x230
[  108.603812][ T5292]  ? kobject_put+0xab/0x5a0
[  108.605115][ T5292]  device_add+0x289/0x1a70
[  108.606330][ T5292]  ? __pfx_dev_set_name+0x10/0x10
[  108.607781][ T5292]  ? __pfx_device_add+0x10/0x10
[  108.609121][ T5292]  ? mgmt_send_event_skb+0x2f2/0x460
[  108.610570][ T5292]  hci_conn_add_sysfs+0x17e/0x230
[  108.612772][ T5292]  le_conn_complete_evt+0x1077/0x1d60
[  108.614874][ T5292]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  108.616433][ T5292]  ? __mutex_lock+0x1cc/0xa60
[  108.617854][ T5292]  hci_le_conn_complete_evt+0x23c/0x370
[  108.619391][ T5292]  hci_le_meta_evt+0x2e2/0x5d0
[  108.620713][ T5292]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  108.622280][ T5292]  hci_event_packet+0x666/0x1180
[  108.623542][ T5292]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  108.624974][ T5292]  ? __pfx_hci_event_packet+0x10/0x10
[  108.626496][ T5292]  ? mark_held_locks+0x9f/0xe0
[  108.627797][ T5292]  ? kcov_remote_start+0x3cf/0x6e0
[  108.629331][ T5292]  ? lockdep_hardirqs_on+0x7c/0x110
[  108.631269][ T5292]  hci_rx_work+0x2c5/0x16b0
[  108.632987][ T5292]  ? process_one_work+0x921/0x1ba0
[  108.634980][ T5292]  process_one_work+0x9c5/0x1ba0
[  108.636401][ T5292]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  108.638308][ T5292]  ? __pfx_process_one_work+0x10/0x10
[  108.640491][ T5292]  ? rcu_is_watching+0x12/0xc0
[  108.641811][ T5292]  ? assign_work+0x1a0/0x250
[  108.642976][ T5292]  worker_thread+0x6c8/0xf00
[  108.644456][ T5292]  ? __pfx_worker_thread+0x10/0x10
[  108.645812][ T5292]  kthread+0x2c1/0x3a0
[  108.646933][ T5292]  ? _raw_spin_unlock_irq+0x23/0x50
[  108.648616][ T5292]  ? __pfx_kthread+0x10/0x10
[  108.649787][ T5292]  ret_from_fork+0x45/0x80
[  108.650925][ T5292]  ? __pfx_kthread+0x10/0x10
[  108.652086][ T5292]  ret_from_fork_asm+0x1a/0x30
[  108.653655][ T5292]  </TASK>
[  108.656463][ T5292] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  108.663655][ T5292] Bluetooth: hci2: failed to register connection device
[  108.801089][ T8814] netlink: 4 bytes leftover after parsing attributes in process `syz.1.982'.
[  109.005378][ T8821] netlink: 40 bytes leftover after parsing attributes in process `syz.5.984'.
[  109.126459][ T8844] team0: Port device vlan2 added
[  109.377379][ T5947] Bluetooth: hci2: command tx timeout
[  109.425213][ T8870] fuse: Unknown parameter ''
[  109.632149][ T8902] batadv1: entered allmulticast mode
[  109.847904][ T8937] overlayfs: failed to clone upperpath
[  110.342752][ T5947] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  110.346829][ T5947] CPU: 1 UID: 0 PID: 5947 Comm: kworker/u33:4 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[  110.349562][ T5947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.352294][ T5947] Workqueue: hci2 hci_rx_work
[  110.353511][ T5947] Call Trace:
[  110.354377][ T5947]  <TASK>
[  110.355154][ T5947]  dump_stack_lvl+0x16c/0x1f0
[  110.356379][ T5947]  sysfs_warn_dup+0x7f/0xa0
[  110.357558][ T5947]  sysfs_create_dir_ns+0x24d/0x2b0
[  110.358872][ T5947]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  110.360122][ T9008] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  110.360315][ T5947]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  110.360351][ T5947]  ? kobject_add_internal+0x12d/0x990
[  110.362229][ T9008] IPv6: NLM_F_CREATE should be set when creating new route
[  110.363588][ T5947]  ? do_raw_spin_unlock+0x172/0x230
[  110.363610][ T5947]  kobject_add_internal+0x2c8/0x990
[  110.363630][ T5947]  kobject_add+0x16f/0x240
[  110.371266][ T5947]  ? __pfx_kobject_add+0x10/0x10
[  110.372585][ T5947]  ? class_to_subsys+0x3e/0x160
[  110.373877][ T5947]  ? do_raw_spin_unlock+0x172/0x230
[  110.375250][ T5947]  ? kobject_put+0xab/0x5a0
[  110.376462][ T5947]  device_add+0x289/0x1a70
[  110.377644][ T5947]  ? __pfx_dev_set_name+0x10/0x10
[  110.379032][ T5947]  ? __pfx_device_add+0x10/0x10
[  110.380326][ T5947]  ? mgmt_send_event_skb+0x2f2/0x460
[  110.381717][ T5947]  hci_conn_add_sysfs+0x17e/0x230
[  110.383043][ T5947]  le_conn_complete_evt+0x1077/0x1d60
[  110.384481][ T5947]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  110.385987][ T5947]  ? __mutex_lock+0x1cc/0xa60
[  110.387226][ T5947]  hci_le_conn_complete_evt+0x23c/0x370
[  110.388659][ T5947]  hci_le_meta_evt+0x2e2/0x5d0
[  110.389904][ T5947]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  110.391495][ T5947]  hci_event_packet+0x666/0x1180
[  110.392783][ T5947]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  110.394144][ T5947]  ? __pfx_hci_event_packet+0x10/0x10
[  110.395567][ T5947]  ? mark_held_locks+0x9f/0xe0
[  110.396809][ T5947]  ? kcov_remote_start+0x3cf/0x6e0
[  110.398115][ T5947]  ? lockdep_hardirqs_on+0x7c/0x110
[  110.399469][ T5947]  hci_rx_work+0x2c5/0x16b0
[  110.400599][ T5947]  ? process_one_work+0x921/0x1ba0
[  110.401911][ T5947]  process_one_work+0x9c5/0x1ba0
[  110.403164][ T5947]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  110.404591][ T5947]  ? __pfx_process_one_work+0x10/0x10
[  110.405948][ T5947]  ? rcu_is_watching+0x12/0xc0
[  110.407182][ T5947]  ? assign_work+0x1a0/0x250
[  110.408346][ T5947]  worker_thread+0x6c8/0xf00
[  110.409488][ T5947]  ? __pfx_worker_thread+0x10/0x10
[  110.410790][ T5947]  kthread+0x2c1/0x3a0
[  110.411846][ T5947]  ? _raw_spin_unlock_irq+0x23/0x50
[  110.413157][ T5947]  ? __pfx_kthread+0x10/0x10
[  110.414359][ T5947]  ret_from_fork+0x45/0x80
[  110.415508][ T5947]  ? __pfx_kthread+0x10/0x10
[  110.416681][ T5947]  ret_from_fork_asm+0x1a/0x30
[  110.417924][ T5947]  </TASK>
[  110.419587][ T5947] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  110.425052][ T5947] Bluetooth: hci2: failed to register connection device
[  110.430176][ T9014] netlink: 'syz.3.1060': attribute type 3 has an invalid length.
[  110.583820][ T5947] Bluetooth: hci3: Malformed HCI Event: 0x22
[  110.586970][ T9024] netlink: 'syz.3.1064': attribute type 6 has an invalid length.
[  110.673851][ T9032] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  110.675803][ T9032] IPv6: NLM_F_CREATE should be set when creating new route
[  110.862769][ T9045] tmpfs: Unknown parameter ''
[  111.450823][ T5947] Bluetooth: hci2: command tx timeout
[  111.495738][ T9095] 8021q: adding VLAN 0 to HW filter on device batadv1
[  111.906168][ T9116] netlink: 'syz.1.1095': attribute type 10 has an invalid length.
[  111.906188][ T9115] netlink: 'syz.1.1095': attribute type 10 has an invalid length.
[  111.926662][ T9116] 8021q: adding VLAN 0 to HW filter on device team0
[  111.930396][ T9116] bond0: (slave team0): Enslaving as an active interface with an up link
[  111.936017][ T9115] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:6418:38ff:fe05:3956 error=-28
[  112.011980][ T9115] infiniband syz1: set active
[  112.013395][ T9115] infiniband syz1: added team_slave_0
[  112.029175][ T9115] RDS/IB: syz1: added
[  112.030290][ T9115] smc: adding ib device syz1 with port count 1
[  112.031811][ T9115] smc:    ib device syz1 port 1 has pnetid 
[  112.200953][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  112.200972][   T40] audit: type=1400 audit(1733494830.049:605): avc:  denied  { read write } for  pid=9123 comm="syz.5.1097" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  112.211343][   T40] audit: type=1400 audit(1733494830.049:606): avc:  denied  { open } for  pid=9123 comm="syz.5.1097" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  112.246522][ T9130] batadv1: entered allmulticast mode
[  112.249412][ T9130] 8021q: adding VLAN 0 to HW filter on device batadv1
[  112.380635][ T9116] syz.1.1095 (9116) used greatest stack depth: 20848 bytes left
[  112.448790][   T40] audit: type=1400 audit(1733494830.299:607): avc:  denied  { create } for  pid=9140 comm="syz.1.1102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  112.451765][ T9141] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[  112.453963][   T40] audit: type=1400 audit(1733494830.299:608): avc:  denied  { bind } for  pid=9140 comm="syz.1.1102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  112.453984][   T40] audit: type=1400 audit(1733494830.299:609): avc:  denied  { write } for  pid=9140 comm="syz.1.1102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  112.484634][ T1247] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.487782][ T1247] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.709946][ T9166] batadv1: entered promiscuous mode
[  112.711355][ T9166] batadv1: entered allmulticast mode
[  112.722441][ T9169] netlink: 'syz.5.1109': attribute type 12 has an invalid length.
[  112.724830][ T9169] __nla_validate_parse: 8 callbacks suppressed
[  112.724838][ T9169] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1109'.
[  112.855228][ T9174] overlayfs: conflicting options: metacopy=on,redirect_dir=follow
[  113.021666][ T9192] batadv1: entered promiscuous mode
[  113.023185][ T9192] batadv1: entered allmulticast mode
[  113.025629][ T9192] 8021q: adding VLAN 0 to HW filter on device batadv1
[  113.338526][ T9219] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1128'.
[  113.416157][ T9227] batadv1: entered promiscuous mode
[  113.417738][ T9227] batadv1: entered allmulticast mode
[  113.419668][ T9227] 8021q: adding VLAN 0 to HW filter on device batadv1
[  113.507275][  T832] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  113.522615][ T9233] xt_socket: unknown flags 0xc
[  113.525075][ T9233] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2878)
[  113.528590][ T9233] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[  113.657328][  T832] usb 6-1: Using ep0 maxpacket: 32
[  113.660705][  T832] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  113.664705][  T832] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  113.668929][  T832] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  113.673099][  T832] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  113.676214][  T832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.683029][ T9239] rdma_rxe: rxe_newlink: failed to add vcan0
[  113.685676][ T9239] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1135'.
[  113.695730][  T832] usb 6-1: config 0 descriptor??
[  113.762129][   T40] audit: type=1400 audit(1733494831.609:610): avc:  denied  { setopt } for  pid=9250 comm="syz.3.1139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  113.909070][  T832] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5011.0003/input/input7
[  113.973289][  T832] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5011.0003/input/input8
[  113.982006][  T832] kye 0003:0458:5011.0003: input,hiddev0,hidraw1: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.1-1/input0
[  114.027290][ T8611] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[  114.055066][ T9262] batadv1: entered promiscuous mode
[  114.056847][ T9262] batadv1: entered allmulticast mode
[  114.187224][ T9258] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  114.191995][ T9258] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  114.250459][   T40] audit: type=1400 audit(1733494832.099:611): avc:  denied  { getopt } for  pid=9267 comm="syz.3.1144" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  114.250734][ T9269] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1144'.
[  114.256395][ T9268] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1144'.
[  114.515654][   T40] audit: type=1400 audit(1733494832.359:612): avc:  denied  { wake_alarm } for  pid=9257 comm="syz.5.1140" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.524471][ T9271] netdevsim netdevsim5: Direct firmware load for ./file0 failed with error -2
[  114.528374][ T9271] netdevsim netdevsim5: Falling back to sysfs fallback for: ./file0
[  114.622486][ T9281] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1146'.
[  114.666141][   T40] audit: type=1400 audit(1733494832.509:613): avc:  denied  { execute } for  pid=9282 comm="syz.3.1147" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=27841 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  114.717946][   T40] audit: type=1400 audit(1733494832.569:614): avc:  denied  { mount } for  pid=9284 comm="syz.3.1148" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  114.726071][ T9285] overlayfs: failed to clone upperpath
[  114.799352][   T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.801495][   T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.846435][ T9291] netlink: 'syz.3.1151': attribute type 2 has an invalid length.
[  114.849977][ T9291] netlink: 'syz.3.1151': attribute type 1 has an invalid length.
[  114.852300][ T9291] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1151'.
[  114.855014][ T9291] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1151'.
[  114.952807][    C0] kye 0003:0458:5011.0003: usb_submit_urb(ctrl) failed: -1
[  114.992429][ T9295] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  114.994418][ T9295] IPv6: NLM_F_CREATE should be set when creating new route
[  115.349599][ T9310] Bluetooth: MGMT ver 1.23
[  115.380532][ T9310] tipc: Started in network mode
[  115.382393][ T9310] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[  115.389335][ T9310] tipc: Enabled bearer <udp:s>, priority 10
[  115.734936][ T5938] usb 6-1: USB disconnect, device number 8
[  116.509901][ T5938] tipc: Node number set to 4269801488
[  116.542677][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.545685][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.567660][ T5947] Bluetooth: hci2: command 0x0406 tx timeout
[  116.609291][ T9350] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1165'.
[  116.611706][ T9350] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1165'.
[  116.639085][ T9356] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  116.668865][ T1247] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.671143][ T1247] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.785265][ T9370] overlayfs: failed to resolve './file0': -2
[  116.830647][ T9373] netlink: 'syz.4.1174': attribute type 1 has an invalid length.
[  116.833315][ T9373] netlink: 'syz.4.1174': attribute type 4 has an invalid length.
[  116.835876][ T9373] NCSI netlink: No device for ifindex 458760
[  116.913009][ T8611] usb 10-1: unable to get BOS descriptor or descriptor too short
[  116.916633][ T8611] usb 10-1: unable to read config index 0 descriptor/start: -71
[  116.919063][ T8611] usb 10-1: can't read configurations, error -71
[  117.128052][ T9389] xt_hashlimit: size too large, truncated to 1048576
[  117.186160][ T9393] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc.
[  117.398912][ T1247] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.401628][ T1247] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.405786][ T9407] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  117.407811][ T9407] IPv6: NLM_F_CREATE should be set when creating new route
[  117.818098][ T9440] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  118.011181][ T9454] netlink: 'syz.1.1195': attribute type 3 has an invalid length.
[  118.013274][ T9454] netlink: 'syz.1.1195': attribute type 3 has an invalid length.
[  118.015780][ T9454] netlink: 'syz.1.1195': attribute type 3 has an invalid length.
[  118.017260][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  118.017275][   T40] audit: type=1400 audit(1733494835.859:619): avc:  denied  { ioctl } for  pid=9453 comm="syz.1.1195" path="socket:[27394]" dev="sockfs" ino=27394 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  118.239601][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.242320][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.279471][   T40] audit: type=1400 audit(1733494836.129:620): avc:  denied  { map } for  pid=9474 comm="syz.1.1203" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  118.684474][ T9503] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  118.687649][ T9503] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  118.756065][   T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.759138][   T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.296569][   T40] audit: type=1400 audit(1733494837.139:621): avc:  denied  { bind } for  pid=9530 comm="syz.1.1225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  119.335666][ T9539] autofs: Unknown parameter '
[  119.335666][ T9539] j#jV�.��N��iCn���AԖ���R�A�|q�E��~���7VQ!'��N�d����ݼ��P*��b� ��􆻦�_�
�u����'
[  119.338058][ T9540] autofs: Unknown parameter '
[  119.338058][ T9540] j#jV�.��N��iCn���AԖ���R�A�|q�E��~���7VQ!'��N�d����ݼ��P*��b� ��􆻦�_�
�u����'
[  119.370966][ T9544] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  119.426220][ T9548] __nla_validate_parse: 1 callbacks suppressed
[  119.426235][ T9548] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1231'.
[  119.478626][   T40] audit: type=1400 audit(1733494837.329:622): avc:  denied  { setopt } for  pid=9547 comm="syz.3.1231" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  119.549694][ T9561] netlink: 'syz.5.1234': attribute type 10 has an invalid length.
[  119.601200][ T9562] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  119.610018][ T9561] 8021q: adding VLAN 0 to HW filter on device team0
[  119.613981][ T9561] bond0: (slave team0): Enslaving as an active interface with an up link
[  119.674874][ T9567] binder: 9566:9567 ioctl c028aa03 20000000 returned -22
[  119.679316][ T9567] binder: 9566:9567 ioctl c020aa04 20000140 returned -22
[  119.715429][ T9571] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  119.717444][ T9571] IPv6: NLM_F_CREATE should be set when creating new route
[  119.755073][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.757403][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.872183][ T9587] block nbd1: Unsupported socket: shutdown callout must be supported.
[  119.875541][ T9587] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1244'.
[  119.953552][   T40] audit: type=1400 audit(1733494837.799:623): avc:  denied  { ioctl } for  pid=9592 comm="syz.3.1246" path="socket:[28260]" dev="sockfs" ino=28260 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  120.043462][ T9601] netlink: 1256 bytes leftover after parsing attributes in process `syz.3.1248'.
[  120.045906][ T9601] openvswitch: netlink: Unknown key attributes 20
[  120.081591][ T9603] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  120.083582][ T9603] IPv6: NLM_F_CREATE should be set when creating new route
[  120.164573][ T9605] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1250'.
[  120.168455][ T5938] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  120.329700][ T5938] usb 10-1: too many configurations: 9, using maximum allowed: 8
[  120.333261][ T5938] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  120.336359][ T5938] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  120.340399][ T5938] usb 10-1: config 0 interface 0 has no altsetting 0
[  120.346316][ T5938] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  120.349707][ T5938] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  120.353557][ T5938] usb 10-1: config 0 interface 0 has no altsetting 0
[  120.356931][ T5938] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  120.360208][ T5938] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  120.364039][ T5938] usb 10-1: config 0 interface 0 has no altsetting 0
[  120.367451][ T5938] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  120.373311][ T5938] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  120.376901][ T5938] usb 10-1: config 0 interface 0 has no altsetting 0
[  120.379536][ T5938] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  120.381856][ T5938] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  120.384642][ T5938] usb 10-1: config 0 interface 0 has no altsetting 0
[  120.387057][ T5938] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  120.389575][ T5938] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  120.392352][ T5938] usb 10-1: config 0 interface 0 has no altsetting 0
[  120.394746][ T5938] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  120.398026][ T5938] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  120.400872][ T5938] usb 10-1: config 0 interface 0 has no altsetting 0
[  120.403283][ T5938] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[  120.405596][ T5938] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  120.408743][ T5938] usb 10-1: config 0 interface 0 has no altsetting 0
[  120.415618][ T5938] usb 10-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  120.418050][ T5938] usb 10-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  120.420253][ T5938] usb 10-1: Product: syz
[  120.421349][ T5938] usb 10-1: Manufacturer: syz
[  120.422546][ T5938] usb 10-1: SerialNumber: syz
[  120.424740][ T5938] usb 10-1: config 0 descriptor??
[  120.428599][ T5938] yurex 10-1:0.0: USB YUREX device now attached to Yurex #0
[  120.629633][ T9625] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  120.631117][ T8611] usb 10-1: USB disconnect, device number 4
[  120.636442][ T8611] yurex 10-1:0.0: USB YUREX #0 now disconnected
[  120.639393][ T9627] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  120.669181][ T9630] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  120.671121][ T9630] IPv6: NLM_F_CREATE should be set when creating new route
[  120.791548][ T9650] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1265'.
[  120.838684][ T9657] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1268'.
[  120.870600][ T9667] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  120.872652][ T9667] IPv6: NLM_F_CREATE should be set when creating new route
[  120.894432][   T40] audit: type=1400 audit(1733494838.739:624): avc:  granted  { setsecparam } for  pid=9668 comm="syz.1.1272" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  120.926299][ T9673] ------------[ cut here ]------------
[  120.928251][ T9673] WARNING: CPU: 1 PID: 9673 at drivers/net/wireless/virtual/mac80211_hwsim.c:1445 mac80211_hwsim_config_mac_nl.isra.0+0xe0/0x330
[  120.931680][ T9673] Modules linked in:
[  120.933154][ T9673] CPU: 1 UID: 0 PID: 9673 Comm: syz.1.1274 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[  120.938054][ T9673] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.940866][ T9673] RIP: 0010:mac80211_hwsim_config_mac_nl.isra.0+0xe0/0x330
[  120.943180][ T9673] Code: 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 3f 02 00 00 0f b7 6b 04 31 ff 44 09 fd 89 ee e8 ca a4 d9 fa 85 ed 75 09 e8 81 a2 d9 fa 90 <0f> 0b 90 e8 78 a2 d9 fa 31 ff 44 89 f6 e8 ae a4 d9 fa 45 85 f6 75
[  120.948419][ T9673] RSP: 0018:ffffc90021767768 EFLAGS: 00010283
[  120.950134][ T9673] RAX: 000000000000b80b RBX: ffff88803229ee32 RCX: ffffc90007784000
[  120.952313][ T9673] RDX: 0000000000080000 RSI: ffffffff86c063bf RDI: 0000000000000005
[  120.954386][ T9673] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  120.956481][ T9673] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88804e67b0a0
[  120.958928][ T9673] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000
[  120.961446][ T9673] FS:  00007f53b87266c0(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[  120.964201][ T9673] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.966007][ T9673] CR2: 00007f53b7965c80 CR3: 00000000465b4000 CR4: 0000000000352ef0
[  120.968239][ T9673] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  120.970308][ T9673] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  120.972390][ T9673] Call Trace:
[  120.973274][ T9673]  <TASK>
[  120.974067][ T9673]  ? __warn+0xea/0x3c0
[  120.975149][ T9673]  ? mac80211_hwsim_config_mac_nl.isra.0+0xe0/0x330
[  120.977429][ T9673]  ? report_bug+0x3c0/0x580
[  120.978971][ T9673]  ? handle_bug+0x54/0xa0
[  120.980496][ T9673]  ? exc_invalid_op+0x17/0x50
[  120.982131][ T9673]  ? asm_exc_invalid_op+0x1a/0x20
[  120.983945][ T9673]  ? mac80211_hwsim_config_mac_nl.isra.0+0xdf/0x330
[  120.985851][ T9673]  ? mac80211_hwsim_config_mac_nl.isra.0+0xe0/0x330
[  120.987703][ T9673]  ? mac80211_hwsim_config_mac_nl.isra.0+0xdf/0x330
[  120.989653][ T9673]  mac80211_hwsim_add_interface+0x2d6/0x370
[  120.991661][ T9673]  drv_add_interface+0x1b4/0x970
[  120.993428][ T9673]  ? ieee80211_set_sdata_offload_flags+0x213/0x480
[  120.995302][ T9673]  ieee80211_do_open+0x127f/0x1e80
[  120.996672][ T9673]  ieee80211_open+0x18a/0x260
[  120.998121][ T9673]  ? __pfx_ieee80211_open+0x10/0x10
[  120.999531][ T9673]  __dev_open+0x2d4/0x4e0
[  121.000690][ T9673]  ? __pfx___dev_open+0x10/0x10
[  121.001972][ T9673]  ? __local_bh_enable_ip+0xa4/0x120
[  121.003340][ T9673]  __dev_change_flags+0x561/0x720
[  121.004708][ T9673]  ? __pfx___dev_change_flags+0x10/0x10
[  121.006216][ T9673]  dev_change_flags+0x8f/0x160
[  121.007640][ T9673]  devinet_ioctl+0x11d9/0x1f50
[  121.008929][ T9673]  ? __pfx_devinet_ioctl+0x10/0x10
[  121.010295][ T9673]  ? _copy_from_user+0x59/0xd0
[  121.011577][ T9673]  inet_ioctl+0x3aa/0x3f0
[  121.012734][ T9673]  ? __pfx_inet_ioctl+0x10/0x10
[  121.014010][ T9673]  ? __pfx_lock_release+0x10/0x10
[  121.015370][ T9673]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.016924][ T9673]  sock_do_ioctl+0x116/0x280
[  121.018232][ T9673]  ? __pfx_sock_do_ioctl+0x10/0x10
[  121.019604][ T9673]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  121.021323][ T9673]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  121.023058][ T9673]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  121.024869][ T9673]  sock_ioctl+0x228/0x6c0
[  121.026026][ T9673]  ? __pfx_sock_ioctl+0x10/0x10
[  121.027390][ T9673]  ? selinux_file_ioctl+0x180/0x270
[  121.028995][ T9673]  ? selinux_file_ioctl+0xb4/0x270
[  121.030359][ T9673]  ? __pfx_sock_ioctl+0x10/0x10
[  121.031638][ T9673]  __x64_sys_ioctl+0x190/0x200
[  121.032911][ T9673]  do_syscall_64+0xcd/0x250
[  121.034109][ T9673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.035690][ T9673] RIP: 0033:0x7f53b797fadb
[  121.036881][ T9673] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  121.042221][ T9673] RSP: 002b:00007f53b8724e80 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  121.044455][ T9673] RAX: ffffffffffffffda RBX: 00007f53b8724fa0 RCX: 00007f53b797fadb
[  121.046651][ T9673] RDX: 00007f53b8724f00 RSI: 0000000000008914 RDI: 0000000000000004
[  121.049339][ T9673] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  121.051556][ T9673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000024
[  121.053617][ T9673] R13: 0000000000000048 R14: 00007f53b8724fc0 R15: 00007f53b8724f00
[  121.055704][ T9673]  </TASK>
[  121.056540][ T9673] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  121.058453][ T9673] CPU: 1 UID: 0 PID: 9673 Comm: syz.1.1274 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0
[  121.061268][ T9673] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  121.064031][ T9673] Call Trace:
[  121.064913][ T9673]  <TASK>
[  121.065761][ T9673]  dump_stack_lvl+0x3d/0x1f0
[  121.067059][ T9673]  panic+0x71d/0x800
[  121.068208][ T9673]  ? __pfx_panic+0x10/0x10
[  121.069535][ T9673]  ? show_trace_log_lvl+0x29d/0x3d0
[  121.071094][ T9673]  ? mac80211_hwsim_config_mac_nl.isra.0+0xe0/0x330
[  121.072861][ T9673]  check_panic_on_warn+0xab/0xb0
[  121.074201][ T9673]  __warn+0xf6/0x3c0
[  121.075253][ T9673]  ? mac80211_hwsim_config_mac_nl.isra.0+0xe0/0x330
[  121.076988][ T9673]  report_bug+0x3c0/0x580
[  121.078132][ T9673]  handle_bug+0x54/0xa0
[  121.079245][ T9673]  exc_invalid_op+0x17/0x50
[  121.080476][ T9673]  asm_exc_invalid_op+0x1a/0x20
[  121.081780][ T9673] RIP: 0010:mac80211_hwsim_config_mac_nl.isra.0+0xe0/0x330
[  121.083662][ T9673] Code: 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 3f 02 00 00 0f b7 6b 04 31 ff 44 09 fd 89 ee e8 ca a4 d9 fa 85 ed 75 09 e8 81 a2 d9 fa 90 <0f> 0b 90 e8 78 a2 d9 fa 31 ff 44 89 f6 e8 ae a4 d9 fa 45 85 f6 75
[  121.088765][ T9673] RSP: 0018:ffffc90021767768 EFLAGS: 00010283
[  121.090410][ T9673] RAX: 000000000000b80b RBX: ffff88803229ee32 RCX: ffffc90007784000
[  121.092448][ T9673] RDX: 0000000000080000 RSI: ffffffff86c063bf RDI: 0000000000000005
[  121.094509][ T9673] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  121.096554][ T9673] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88804e67b0a0
[  121.098616][ T9673] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000
[  121.100848][ T9673]  ? mac80211_hwsim_config_mac_nl.isra.0+0xdf/0x330
[  121.102744][ T9673]  ? mac80211_hwsim_config_mac_nl.isra.0+0xdf/0x330
[  121.104645][ T9673]  mac80211_hwsim_add_interface+0x2d6/0x370
[  121.106407][ T9673]  drv_add_interface+0x1b4/0x970
[  121.107863][ T9673]  ? ieee80211_set_sdata_offload_flags+0x213/0x480
[  121.109551][ T9673]  ieee80211_do_open+0x127f/0x1e80
[  121.110898][ T9673]  ieee80211_open+0x18a/0x260
[  121.112151][ T9673]  ? __pfx_ieee80211_open+0x10/0x10
[  121.113489][ T9673]  __dev_open+0x2d4/0x4e0
[  121.114636][ T9673]  ? __pfx___dev_open+0x10/0x10
[  121.115939][ T9673]  ? __local_bh_enable_ip+0xa4/0x120
[  121.117334][ T9673]  __dev_change_flags+0x561/0x720
[  121.118669][ T9673]  ? __pfx___dev_change_flags+0x10/0x10
[  121.120153][ T9673]  dev_change_flags+0x8f/0x160
[  121.121415][ T9673]  devinet_ioctl+0x11d9/0x1f50
[  121.122685][ T9673]  ? __pfx_devinet_ioctl+0x10/0x10
[  121.124048][ T9673]  ? _copy_from_user+0x59/0xd0
[  121.125324][ T9673]  inet_ioctl+0x3aa/0x3f0
[  121.126489][ T9673]  ? __pfx_inet_ioctl+0x10/0x10
[  121.127802][ T9673]  ? __pfx_lock_release+0x10/0x10
[  121.129229][ T9673]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.130971][ T9673]  sock_do_ioctl+0x116/0x280
[  121.132433][ T9673]  ? __pfx_sock_do_ioctl+0x10/0x10
[  121.133983][ T9673]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  121.135891][ T9673]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  121.137640][ T9673]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  121.139436][ T9673]  sock_ioctl+0x228/0x6c0
[  121.140592][ T9673]  ? __pfx_sock_ioctl+0x10/0x10
[  121.141874][ T9673]  ? selinux_file_ioctl+0x180/0x270
[  121.143222][ T9673]  ? selinux_file_ioctl+0xb4/0x270
[  121.144568][ T9673]  ? __pfx_sock_ioctl+0x10/0x10
[  121.145860][ T9673]  __x64_sys_ioctl+0x190/0x200
[  121.147125][ T9673]  do_syscall_64+0xcd/0x250
[  121.148343][ T9673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.150012][ T9673] RIP: 0033:0x7f53b797fadb
[  121.151369][ T9673] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  121.157283][ T9673] RSP: 002b:00007f53b8724e80 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  121.159679][ T9673] RAX: ffffffffffffffda RBX: 00007f53b8724fa0 RCX: 00007f53b797fadb
[  121.161725][ T9673] RDX: 00007f53b8724f00 RSI: 0000000000008914 RDI: 0000000000000004
[  121.163776][ T9673] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  121.165840][ T9673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000024
[  121.167837][ T9673] R13: 0000000000000048 R14: 00007f53b8724fc0 R15: 00007f53b8724f00
[  121.169904][ T9673]  </TASK>
[  121.171180][ T9673] Kernel Offset: disabled
[  121.172365][ T9673] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:20:38  Registers:
info registers vcpu 0

CPU#0
RAX=00000000001addfb RBX=0000000000000000 RCX=ffffffff8b29e759 RDX=0000000000000000
RSI=ffffffff8b6cd840 RDI=ffffffff8bd1b4a0 RBP=fffffbfff1bd2ef8 RSP=ffffffff8de07e20
R8 =0000000000000001 R9 =ffffed100d4c6fed R10=ffff88806a637f6b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8de977c0 R14=ffffffff905f0310 R15=0000000000000000
RIP=ffffffff8b29fb3f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c33fdc5 CR3=0000000029d70000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdfe44e5e0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdaa67f4c42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdaa67f4c4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdaa67f4c49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdaa67f4c5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdaa67f4ce3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdaa67f4dc1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851c99d5 RDI=ffffffff9ab10be0 RBP=ffffffff9ab10ba0 RSP=ffffc900217670c8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000006
R12=0000000000000000 R13=000000000000006e R14=ffffffff851c9970 R15=0000000000000000
RIP=ffffffff851c99ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f53b87266c0 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f53b7965c80 CR3=00000000465b4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffffffe0 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f53b79f4c42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f53b79f4c4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f53b79f4c49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f53b79f4c5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f53b79f4ce3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f53b79f4dc1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f53b7b10488 00007f53b7b10480 00007f53b7b10478 00007f53b7b10450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000316e616c77
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080000001 RBX=0000000000000001 RCX=1ffffffff3509b14 RDX=0000000000000000
RSI=ffffffff8185c5f5 RDI=0000000000000001 RBP=ffffc900205476f0 RSP=ffffc90020547620
R8 =ffffc900205476dc R9 =ffffffff90f0626e R10=ffffc900205476a8 R11=000000000000406f
R12=ffffffff8185c340 R13=ffffc900205476a8 R14=0000000000000000 R15=ffff888030868000
RIP=ffffffff8168702e RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f294d3fa6c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c33fe2a CR3=000000005a980000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294c5f4c42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294c5f4c4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294c5f4c49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294c5f4c5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294c5f4ce3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294c5f4dc1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294c710488 00007f294c710480 00007f294c710478 00007f294c710450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294d27d100 00007f294c710440 00007f294c710458 00007f294c7104a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f294c710498 00007f294c710490 00007f294c710488 00007f294c710480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000124ced RBX=0000000000000003 RCX=ffffffff8b29e759 RDX=0000000000000000
RSI=ffffffff8b6cd840 RDI=ffffffff8bd1b4a0 RBP=ffffed1003ad4488 RSP=ffffc900001a7e08
R8 =0000000000000001 R9 =ffffed100d526fed R10=ffff88806a937f6b R11=0000000000000000
R12=0000000000000003 R13=ffff88801d6a2440 R14=ffffffff905f0310 R15=0000000000000000
RIP=ffffffff8b29fb3f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f53b7b47bac CR3=0000000032e76000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffa1081ab0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcfce7f4c42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcfce7f4c4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcfce7f4c49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcfce7f4c5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcfce7f4ce3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcfce7f4dc1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000000a 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000254
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000000a 0000000000000000 0000000000000000 0000000000000254
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000