last executing test programs:

5.676533504s ago: executing program 3 (id=1141):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@flushpolicy={0x10, 0x1d, 0x1}, 0x10}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

5.062386087s ago: executing program 3 (id=1150):
syz_open_dev$sndpcmp(0x0, 0x0, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$audion(0x0, 0x2, 0x200040) (async)
timer_create(0x3, 0x0, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, 0x0) (async)
connect$unix(0xffffffffffffffff, 0x0, 0x0) (async)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) (async)
syz_emit_vhci(&(0x7f0000002540)=ANY=[@ANYBLOB="040e050d3e20", @ANYRESOCT, @ANYRES8], 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) (async)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xb, 0x11, r1, 0x8000000) (async, rerun: 64)
syz_io_uring_setup(0x5301, &(0x7f0000000200)={0x0, 0x43a, 0x8, 0x3, 0xee}, &(0x7f0000000000), &(0x7f00000000c0)=<r3=>0x0) (rerun: 64)
syz_io_uring_submit(r2, r3, &(0x7f0000001400)=@IORING_OP_WRITEV={0x2, 0x42, 0x4007, @fd_index=0x8, 0x8, &(0x7f00000013c0)=[{&(0x7f00000002c0)="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", 0x1000}, {&(0x7f00000012c0)="1ede4762f3b7718e17f6c8e6fd3b5c0502b0e7817dd7622fcd23c2af24e04af054d7957f911749b2848fab7c4b82cb0f2098e8e0d6c48b720fed132daa16e856c2ebad67b0d1f3073e0427517c628048efdf6aa9695a386c8fee0d9b210c2628d494b926b040e2d3734597d883183647eab0c4c59c43ad6812d06af9343d27384cbd6483b0dfc747353f08a63d0eef24761cd49b120893356d369689368cc55331b892c38815728122f82d40b511ed6dfd45744110d64a5a496fb3a1af5cc5af91e22af333c5a1e2a4f4c3", 0xcb}], 0x2, 0x0, 0x0, {0x1}})
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) (async)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) (async)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r5 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r5, 0x400448c8, &(0x7f0000000100)={r4, r4, 0x0, 0xfffffec5, 0x0, 0xc2, 0xff, 0x15c2, 0x5886, 0x6, 0x3, 0x8, 'syz1\x00'})

4.866173465s ago: executing program 3 (id=1151):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100120008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)

4.672341978s ago: executing program 3 (id=1152):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x35, 0x1, 0x4, 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/udp6\x00')
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
setsockopt$sock_int(r1, 0x1, 0x7, &(0x7f0000000180)=0x7, 0x4)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x100, 0x36, &(0x7f0000000280)=0x1)
lseek(r0, 0x10000000005, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
arch_prctl$ARCH_SHSTK_DISABLE(0x5002, 0x3)
sendmsg$inet(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000180)="f054b79cb9c4c68ba2a290e222f7ba0ba522ad07684e97c59ea0e97c83ff28933579970b8d75dabcb911f25bd1f8a78581b990de5333fb6513a71200da6735c292fdcb5219823b03f12099459e90adda929dafdecb1b85f5cee039abe8a5574e2b7ecaca5242b5ccc8b42cbf8f9856d6d448c49c94afb2f18e7bc505c64d29f70108a88bd5294ee224e1ba1ae7f2c3371f702dde6a59a0038354fd48d48f747f2a43ef253561b45aec5a1dee1cceb607fa19e69cae2adb552b1a3860a40d08fa273eb3ec5ba36b926916837264ec2d49c3fe81515ce3ef7d14e45736fefd10242d4047a442d8708650b55e015d6462b614eeaeeff35c3c", 0xf7}, {&(0x7f0000000740)="99ee9740d0eb06c15dbc50cb8b69e5736f67755dd5bd7a5e29c37db41724d67ff45d6466efda7534e2a482247c9ea65a23ebd4d81d3d1fdada0c5fb79222f90355f955fbae63fd4961290a75d255213470ca05a04ec304f6bd67f75cf893275501810db12df83af4680b99", 0x6b}, {&(0x7f0000000300)="1bb3740455a5fa94a293e537a2533284e34c2793b0c7869d1333766bc5542771f9ee9b9bf682220bc683de98ab42d7589b44622147d1016770064d94cf7a707e9333bb0c33a2ea5aa012d79639bcc7989b61a0903bd561b917a1c1fba824a91968ac60372b0e81b4c81ef2f816f6b13c21350e2ebf4f62a801025535668c4c391ac87d9119f3d774cc6a3af6b5caff0136696b5adfee13af6507646e526309931513ce4a1d397a281c0d4476e4c945767d3fec79c3a33d690f8b1e314b955365f3462c41555a66010a1e96cf68e92f919ab7675291565976c6df4eef2bb01e7a0d9280145c318774535c3a69f025332e", 0xf0}, {&(0x7f0000000540)="52f5513d82ddbb0197584c14954deb1b8c23af4110", 0x15}, {&(0x7f0000000400)="6ea027a0b458694a3aa3f68f7617a2bb786c1beb3e125826e34cc2b9e16f0bdafbec7fe406c42ce900ae9e9422e62db9a12ba90e29721e7f6612676a460500b428266c294f4aafb9b0da14dc9642456a25c1b78792ebdd166c58f0022148aff897d0f1e946ae175f51c6a7d4877b1548e9f91e9f3c114a83f052a1097d8ff3c68d54d6ba2aa3746880156ef01f485bdfba20f8b92537971dc6463a0c01cc34bd6c686c49a5413fef24753771dacd29163e9e237c31d121ab7ee3d926b0cdfcb868f44916a5c1d735aa553ab19c00082ebbfca931d3d47327eda246b45ad32a420504195e0e6d6ace3c69c2cb750b942c2570b282ef", 0xf5}, {&(0x7f0000000500)="7e3868c1a4f73a91bf12b675d81201023f63a2a39e748121d0e4d50944367ce5e9e0fd197b4af0c0f998", 0x2a}, {&(0x7f00000007c0)="9dcaeb48dd5017b3366bb93df936e10e1039ff3f21e30e5f288695b1fd243d357e739f8d173f5fa58069fbb91bd35d4402beb30f56d4a97f29287d0c79f43c6ade1270c733de8d1554bf1abdecf863e23549b356d3e8b29a0b59aef42bd0773a8173", 0x62}, {&(0x7f00000005c0)="540979845d879507c5544d5e5f809c23ffc891311ff11877e8915586d727599ba7f323a38d2f66911285b152a2771a33f7eb3af9bf212c354f5f9e66e04f6ace468227b222311ef44182316d3f684f9d2dae7d073afee485fbab673c3fcd07dbb6f61962379994680dad73223bb4ec76e3ebe7834f0a11eeb528ff2f6ba8ee2275d1d02f166cdc54651c691e3f435899c9a4aebc0b508aba1366a4fc9dcf763f3973df5a99e0eba9b6c103f41ede477a65c46b0f71d4aa622c6544ae258cf4905f65", 0xc2}], 0x8, 0x0, 0x0, 0x1f00c00e}, 0x2000c854)
read$msr(r0, &(0x7f00000000c0)=""/159, 0x9f)

1.464094826s ago: executing program 2 (id=1192):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000640)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000600)={<r1=>0xffffffffffffffff}, 0x111, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000540)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000580)=[{0x10, 0x0, [0x401, 0xc4e1, 0x8, 0x9, 0xb, 0x6, 0xa, 0x883, 0xcc61, 0x3, 0x7, 0x7ff, 0xfffffc01, 0x1, 0x4, 0x80000001]}], r1, 0x1, 0x1, 0x48}}, 0x20)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r2, 0x90004)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r3, 0x90004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r4)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
lseek(0xffffffffffffffff, 0xfffffffffffffffa, 0x1)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x2000000)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f00000000c0)={r6, 0x1000, {0x2a00, 0x80010000, 0x0, 0x200, 0x200000000, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948d841d54afac11d09000000000000008dd4992861ac000000000000000000000000000000000000000000000000000000000000004000", "90be8b38559265406c09306003d80020000000ef00", [0x0, 0x2]}})
ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
accept4(r3, 0x0, 0x0, 0x0)

1.335320678s ago: executing program 3 (id=1194):
r0 = socket(0x0, 0x80805, 0xfffffcbd)
sendmmsg$inet(r0, &(0x7f0000002200)=[{{&(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x4, 0x0}}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000200)="9a", 0x1}], 0x1}}], 0x1, 0x4000000)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
ioctl$TUNSETLINK(r2, 0x400454cd, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000400)=0x8)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000080)=@assoc_value={r4, 0x2}, 0x8)
syz_clone(0x200, &(0x7f0000000080)="9f361c4db1798978ea3ba3e707367e05a7c9545a92938cd5ab3cb80c3ba3e28b9ae7b401fc9156ec6ef3dcbc713f35", 0x2f, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="9c8ea26ab8daafc800e6024fba21")
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
chown(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x1a3c82)

1.33443388s ago: executing program 1 (id=1195):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000080)="7800000018002507b9409b14ffff00000204be04020b06050e020909430009003f00064c0a0000000d0085a168d0bf46d32345653600648d0a000500eb16000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160004000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe28, 0xfffffffffffffff5, &(0x7f0000000980)="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", 0x0, 0x2f, 0xe8034000, 0xf000, 0xfffffffffffffe2a, &(0x7f0000000000), &(0x7f00000000c0)="c6769e45b7c61302926682c7f9e9bb5ba2b3cdf023e8da0392a4cd62e2370f25ae5ba0dab896bcf5b774cd28bebbde39f796ae27d04582bb7c03e9fe830ea22c9fd03f6d2779515fdad3f5d0de07b7b70996102fdb67b1e77a34a5b7136a212fa2c0ea502588309dc3e42c55a6f93e6ba5e1b492f9db48f0fdd2f9fb937b3e8a63dcf9dd855837433998ba579da27559", 0x5dc}, 0x28)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="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"], 0x3c}}, 0x0)
connect$rxrpc(r1, &(0x7f0000000180)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e24, 0x40, @rand_addr=' \x01\x00', 0x3}}, 0x24)

1.119531429s ago: executing program 1 (id=1196):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0xab, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
syz_io_uring_setup(0x70e4, &(0x7f0000000800)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000200), 0xa0201, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_FILES_UPDATE={0x14, 0x20, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x1})

1.00453447s ago: executing program 1 (id=1199):
setreuid(0xee01, 0xee01)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="b700000081000000bfa30000000200000703000007feffff720af0fff8ffffff71a4f0ff0000000061100000000000001d400500000000004704000001ed00000f030000000000001d440000000000006b0a00fe000000007303000000000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ad1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67"], &(0x7f00000001c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

918.550232ms ago: executing program 1 (id=1200):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfe, 0x2ffffffff}, 0xc) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
r2 = socket(0x400000000010, 0x3, 0x0)
io_setup(0x2, &(0x7f0000000040)=<r3=>0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r4, 0x20000004) (async)
io_submit(r3, 0x0, &(0x7f00000000c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}]) (async)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=@newqdisc={0x7c, 0x24, 0x10, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff2}, {0xffff, 0x4}, {0xffff, 0x10}}, [@TCA_STAB={0x58, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x3, 0xf, 0x5, 0x40, 0x0, 0x7f, 0x258f, 0x3}}, {0xa, 0x2, [0x5, 0x3, 0x7]}}, {{0x1c, 0x1, {0x4, 0x9, 0x6, 0x5, 0x1, 0x6, 0x4, 0x6}}, {0x10, 0x2, [0x9, 0xcf9, 0x4e18, 0xe000, 0x9, 0x1]}}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="120000001200000039c7f97292b425fdeda3ec740004de000d", @ANYRES8=r6, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYRES32=r5], 0x50) (async)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r7, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r8, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2}}, 0x2e)
r9 = inotify_init1(0x800)
r10 = fcntl$dupfd(r7, 0x406, r9)
sendmsg$IPVS_CMD_SET_DEST(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[], 0xc0}, 0x1, 0x0, 0x0, 0x10000000}, 0x4004001) (async)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00') (async)
r11 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r12 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x60, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x4c, 0x1, [@m_sample={0x48, 0x1, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x4}}}]}]}, 0x60}}, 0x0) (async)
ioctl$UI_END_FF_ERASE(r11, 0x400c55cb, &(0x7f0000000040)={0x4, 0x800, 0x435}) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000004180)={0x2020}, 0x2020) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x16157}, @TCA_FLOW_PERTURB={0x8, 0xc, 0x80000001}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x800) (async)
r13 = openat$vnet(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$int_in(r13, 0x40000000af01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(r13, 0x4008af03, &(0x7f0000000740)={0x6, 0x0, [{0xeeee0000, 0xf9, &(0x7f00000003c0)=""/249}, {0x2000, 0xe4, &(0x7f00000004c0)=""/228}, {0x8000000, 0x34, &(0x7f0000000200)=""/52}, {0x8000000, 0x68, &(0x7f0000000600)=""/104}, {0x5000, 0x9e, &(0x7f0000000680)=""/158}, {0x2000, 0x29, &(0x7f0000000280)=""/41}]})
eventfd2(0x6, 0x800)

800.427156ms ago: executing program 0 (id=1202):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0xd01)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) (async, rerun: 32)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000000c0)={0x323, @tick=0x1, 0x0, {}, 0x1, 0x1, 0x4}) (rerun: 32)

798.756875ms ago: executing program 3 (id=1203):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, 0x0, 0x809d)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@flushpolicy={0x10, 0x1d, 0x1}, 0x10}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

619.874525ms ago: executing program 1 (id=1204):
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000200)=@setneightbl={0x1c, 0x43, 0x1, 0x70bd2b, 0x25dfdbfd, {0x2}, [@NDTA_THRESH1={0x8, 0x2, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20050}, 0x40080) (async)
r1 = socket$alg(0x26, 0x5, 0x0) (async)
r2 = socket$inet6(0xa, 0x5, 0x0)
listen(r2, 0x50) (async)
listen(r2, 0x4)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm_base(ctr(aes-aesni),ghash-generic)\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)="ebe3a047e299f4e376fdba128280b37221", 0x11}], 0x1, &(0x7f0000000380)=[@assoc={0x18, 0x117, 0x4, 0x1}], 0x18}], 0x1, 0x40800)
r4 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000340)={0x18, 0x0, &(0x7f0000000300)=[@increfs_done={0x40106308, 0x1}, @register_looper], 0x68, 0x0, &(0x7f00000003c0)="3d6bb84ff3091eef48057690c0651c5aba420f89e4406d059794e0654c6893a3b4777a302473f648bd2bd895126357a75e08ca1d76db2fdd8e2590ea81289f60346561bc684d7aea9c5209cc663b910a8a9d40f3cab7839ddb1a773e6b205c983966f2a6eb4e2bd3"})
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) (async)
r5 = fsmount(r4, 0x1, 0x0) (async)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='task\x00')
getdents64(r6, &(0x7f0000000240)=""/44, 0x7a) (async)
getdents64(r6, 0x0, 0x0)
setsockopt$inet_int(r6, 0x0, 0xa44ac8ecf8763e39, &(0x7f0000000080)=0xddc49b5, 0x4) (async)
fchdir(r5) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r5, 0x402c5342, &(0x7f0000000140)={0x8, 0x4, 0x0, {0x5, 0xd66b}, 0x9, 0x7}) (async)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)

566.121161ms ago: executing program 1 (id=1205):
r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(cast5)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d4", 0x5)
r2 = accept4(r1, 0x0, 0x0, 0x80000)
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x8, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0xc000)
r3 = syz_usbip_server_init(0x3efd1327a1f49e5a)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
r5 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
write$binfmt_misc(r5, &(0x7f0000000180)="e502", 0x2)
clock_gettime(0x0, &(0x7f0000000b80)={<r6=>0x0, <r7=>0x0})
recvmmsg$unix(r4, &(0x7f0000000b00)=[{{&(0x7f00000000c0), 0x6e, &(0x7f0000000580)=[{&(0x7f00000001c0)=""/192, 0xc0}, {&(0x7f0000000340)=""/6, 0x6}, {&(0x7f0000000380)=""/224, 0xe0}, {&(0x7f0000000480)=""/207, 0xcf}], 0x4, &(0x7f00000005c0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000640)=""/153, 0x99}, {&(0x7f0000000700)=""/22, 0x16}, {&(0x7f0000000740)=""/188, 0xbc}, {&(0x7f0000000800)=""/27, 0x1b}, {&(0x7f0000000840)=""/112, 0x70}, {&(0x7f00000008c0)=""/114, 0x72}, {&(0x7f0000000940)=""/254, 0xfe}], 0x7, &(0x7f0000000ac0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}], 0x2, 0x10000, &(0x7f0000001140)={r6, r7+10000000})
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

399.940911ms ago: executing program 2 (id=1206):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x1c, 0x0, 0x305, 0x0, 0x0, {0x7}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x20000000)

326.790424ms ago: executing program 0 (id=1207):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0xcf)
ioctl$sock_ax25_SIOCDELRT(r0, 0x890c, &(0x7f0000000000)={@default, @default, 0x6, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @null, @default]})
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)={0x78, 0x7, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x6}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}, @NFTA_RULE_EXPRESSIONS={0x58, 0x4, 0x0, 0x1, [{0x54, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_META_SREG={0x8}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0x12}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x18}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1d}]}}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r1)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
r4 = socket(0x10, 0x3, 0x0)
r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x8)
getsockopt$ax25_int(r5, 0x101, 0x2, &(0x7f0000000040), &(0x7f0000000200)=0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'sit0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv6_newnexthop={0x38, 0x68, 0x1, 0x2, 0x25dfdbfd, {}, [@NHA_ENCAP={0x18, 0x8, 0x0, 0x1, @SEG6_LOCAL_NH6={0xffffffffffffff5c, 0x5, @mcast2}}, @NHA_OIF={0x8, 0x5, r6}]}, 0x38}}, 0x90)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r7, 0x6, 0x6, &(0x7f0000000040)=0x24, 0x4)
setsockopt$inet_int(r7, 0x0, 0x13, &(0x7f0000000000)=0x800, 0x4)

182.74081ms ago: executing program 2 (id=1208):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_emit_ethernet(0x63e, &(0x7f0000001200)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa0086dd60cb653e06083afffe800000000000000000000000000000ff02000000000000000060000000000186009078000002000000000000000000050e7db4000005d4a3b4364be7baa2d73b4ac24ab977edb940e63f49a7129f45462e5eecc39f468544e3c13aa9017ccd638e784912ef2c2589d0d45cf0ed4bbe909218459bcbeaf63697aef1702b895af582b2e3b5cd435f497d415f29c5d941df10c1ca58197441e0e9b3400d980110420fa979a300091598a4a8a719ffe0621615f6d04dcae3360546cf06f2665bae2296931fd1d71c1f7e8f222b9ddc4e0bfb5e5c9a484353b785e79b4d8181cf146261723484c54803466e8bedb8ecd21f04d429145c793e823829b4376332b2c98aee2dae3e1cb11adb2b381eb30650ac6c45f900a2130c3818a2eaac43f1a6efc4f7772852ea05bff405aa28758ba53e0f2060e4e027f24bb723a5571d0da2ebeb3fe47f34e606cb3987e3681841f511126b773758e143f6be25d6965fcca35155fec3f970e2067f5db8a5de787eaf96b5957e6b988c02ae9fe26ec3118d9fdcca129d1269b290f687cde5b4eaba737c806335ca0d1e43697d144c6df4dc0d31e84004bc22e87b6e2daab5674479c76a1be360d309e7e7e5fa089032b331a3ceea18d92124681c0b78a0f1665ffcba0bee11950f6b4912bb302b3e648fad7ff4862ccc823e720fdb20af8ab0a6a09dfcdacf69923d60a0efeacf81e1e7e17db9547a4962bdec794c013af7210e54d43f3fe7da2f88c674f4cfd818f6a7461368bf62f1d5f98fd9394eb74bf0559f1c6b1ebec57dba007f143108ca4be3fa330cc21a411b0b7af23ebd9282be17fb702a5ca61650b283eec78e0280e4f2713b42bd4e3615c48c55c1abe5827601038109736f9c6b7242e7c9c917309397b864eedf5ca71db1debb609b6381b54955706017731319e0cc41083f99bd11da748b47d8715080899eb15caf19df36632b73bb22596b8e16186a2e51e277f8c78df609ca44a83914e8f7a8b053210573941b560ff8b114326678c6851c74596300b1c2a1ddc0af5b4cb5f15fa61e42214341368152275070973f3063f35fded9eeb535a0837783921dc2b705e0a0ceacca1882ff23813b"], 0x0)

181.805192ms ago: executing program 0 (id=1209):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x378, 0xc8040)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x4, 0x0, 0x1, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x6, 0x7]})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_OFFSET={0x8}, @NFTA_PAYLOAD_BASE={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_PAYLOAD_DREG={0x8}, @NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0)

181.465819ms ago: executing program 2 (id=1210):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000440)={0x86, 0x14, &(0x7f0000000040)})
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000480), 0x400082, 0x0)
ioctl$TIOCCONS(r1, 0x541d)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000500)=<r3=>0x0, &(0x7f0000000540)=0x4)
sendmsg$nl_route(r2, &(0x7f00000008c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000880)={&(0x7f0000000580)=@newlink={0x2f4, 0x10, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, 0x2, 0x69249}, [@IFLA_VF_PORTS={0x254, 0x18, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "db56d64e206e7a772bdf87a7e32f4568"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "20dfc05f2f29b390f543c4ddd9eb602c"}, @IFLA_PORT_VF={0x8, 0x1, 0x10}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "1bd9a7310b0c0a31d8b072e27f9cb29e"}]}, {0x58, 0x1, 0x0, 0x1, [@IFLA_PORT_PROFILE={0xf, 0x2, '/dev/ttyS3\x00'}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x2}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "a5c83ed8dc4def19670744c6e9986bcc"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "e489532ea356c0f060bb6f8b8aaf25ef"}, @IFLA_PORT_PROFILE={0x12, 0x2, '{.!,\\:(){\xcb@@!\x00'}]}, {0x2c, 0x1, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "564d766480138c76bee78035853d75a3"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "617ba1dfbc5795e9f6cbbb1b364e6822"}]}, {0x44, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0x6, 0x1}, @IFLA_PORT_PROFILE={0xf, 0x2, '/dev/ttyS3\x00'}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "a678ce4e564a0cd0369a8836be19fe5f"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "3c3eda2928fa593a50b2e0a2d59a7642"}]}, {0x14, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0x6, 0x8}, @IFLA_PORT_PROFILE={0x7, 0x2, '\xca*\x00'}]}, {0x1c, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0x6, 0x8}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x6}, @IFLA_PORT_VF={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@IFLA_PORT_VF={0x8, 0x1, 0x5}]}, {0x44, 0x1, 0x0, 0x1, [@IFLA_PORT_PROFILE={0xf, 0x2, '/dev/ttyS3\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0xc705}, @IFLA_PORT_PROFILE={0x11, 0x2, '/dev/ttynull\x00'}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "35a9a355733f0c1d2bf65b40569392ff"}]}, {0x4c, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0x6, 0x60}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x1}, @IFLA_PORT_VF={0x8, 0x1, 0x3}, @IFLA_PORT_PROFILE={0x11, 0x2, '/dev/ttynull\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0x7}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "e943429ee5529c0fe1e43badbca64526"}]}, {0x74, 0x1, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "c46905ccac4cc4422cf5414a6916069d"}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x5}, @IFLA_PORT_PROFILE={0x11, 0x2, '/dev/ttynull\x00'}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "326306a1ba5d05fb833d28130bd05212"}, @IFLA_PORT_PROFILE={0xf, 0x2, '/dev/ttyS3\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0x2}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "f3dd81fffd932ef46732c69f7b5badc5"}]}]}, @IFLA_NUM_TX_QUEUES={0x8}, @IFLA_IFALIAS={0x14, 0x14, 'vlan1\x00'}, @IFLA_IFNAME={0x14, 0x3, 'erspan0\x00'}, @IFLA_VFINFO_LIST={0x30, 0x16, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@IFLA_VF_TX_RATE={0xc, 0x3, {0x2a8e, 0x6}}, @IFLA_VF_LINK_STATE={0xc, 0x5, {0x5, 0x1}}, @IFLA_VF_VLAN={0x10, 0x2, {0x3, 0x5bd, 0x7}}]}]}, @IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x2}, @IFLA_MASTER={0x8}, @IFLA_PHYS_SWITCH_ID={0xe, 0x24, "d8493022542d907e44e7"}]}, 0x2f4}}, 0x804)
r4 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000900)={0xa, 0x0, 0x0, @local}, &(0x7f0000000940)=0x1c, 0xc0800)
r5 = accept$inet6(r4, 0x0, &(0x7f0000000980))
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f00000009c0))
r6 = open(&(0x7f0000000a00)='./file0\x00', 0x181000, 0x0)
read$rfkill(r6, &(0x7f0000000a40), 0x8)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$inet6_mreq(r7, 0x29, 0x14, &(0x7f0000000a80)={@private0, <r8=>0x0}, &(0x7f0000000ac0)=0x14)
fcntl$addseals(r4, 0x409, 0x4)
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0)
setsockopt$inet6_udp_int(r5, 0x11, 0xb, &(0x7f0000000b00)=0x401, 0x4)
r9 = syz_open_dev$hidraw(&(0x7f0000000b40), 0x2, 0x400000)
close_range(r2, r9, 0x0)
mlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
ioctl$CDROM_CHANGER_NSLOTS(r0, 0x5328)
connect$pppl2tp(r6, &(0x7f0000000b80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x3, 0x0, 0x0, {0xa, 0x4e23, 0x6, @private0, 0x10001}}}, 0x32)
r10 = shmget(0x2, 0x2000, 0x40, &(0x7f0000ffe000/0x2000)=nil)
shmat(r10, &(0x7f0000ffe000/0x2000)=nil, 0x0)
r11 = signalfd(r2, &(0x7f0000000bc0)={[0x2]}, 0x8)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x100000b, 0x10010, r11, 0x2a74d000)
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8)
r12 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000c00), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000f00)={0x16, 0x13, &(0x7f0000000c40)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xe23}, {{0x18, 0x1, 0x1, 0x0, r12}}, {}, [@alu={0x4, 0x1, 0xa, 0x6, 0x8, 0x0, 0xfffffffffffffff1}, @call={0x85, 0x0, 0x0, 0x4d}, @call={0x85, 0x0, 0x0, 0x57}, @jmp={0x5, 0x1, 0x6, 0x7, 0x0, 0x1, 0xfffffffffffffffc}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000d00)='GPL\x00', 0x2, 0x7b, &(0x7f0000000d40)=""/123, 0x41000, 0x45, '\x00', r8, @fallback=0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000dc0)={0x4, 0x2, 0x1, 0x8}, 0x10, 0x0, r11, 0x0, &(0x7f0000000ec0)=[0xffffffffffffffff], 0x0, 0x10, 0x5, @void, @value}, 0x94)

64.461119ms ago: executing program 0 (id=1211):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x37, 0x0, &(0x7f0000000080))
r2 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x42f})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

64.147814ms ago: executing program 2 (id=1212):
setreuid(0xee01, 0xee01)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

313.252µs ago: executing program 0 (id=1213):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100d40008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)

161.503µs ago: executing program 2 (id=1214):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000640)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000600)={<r1=>0xffffffffffffffff}, 0x111, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000540)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000580)=[{0x10, 0x0, [0x401, 0xc4e1, 0x8, 0x9, 0xb, 0x6, 0xa, 0x883, 0xcc61, 0x3, 0x7, 0x7ff, 0xfffffc01, 0x1, 0x4, 0x80000001]}], r1, 0x1, 0x1, 0x48}}, 0x20)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r2, 0x90004)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r3, 0x90004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_INTERFACE(r4, 0x0, 0x0)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
lseek(0xffffffffffffffff, 0xfffffffffffffffa, 0x1)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x2000000)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f00000000c0)={r6, 0x1000, {0x2a00, 0x80010000, 0x0, 0x200, 0x200000000, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948d841d54afac11d09000000000000008dd4992861ac000000000000000000000000000000000000000000000000000000000000004000", "90be8b38559265406c09306003d80020000000ef00", [0x0, 0x2]}})
ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
accept4(r3, 0x0, 0x0, 0x0)

0s ago: executing program 0 (id=1215):
creat(&(0x7f0000000240)='./file0\x00', 0x148)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15) (async)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) (async)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000004c0), 0x10400, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chmod(&(0x7f0000000340)='./file0\x00', 0x0)
r3 = open$dir(&(0x7f0000000180)='./file0\x00', 0x1, 0x0) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r4, 0x57) (async)
sendmsg$nl_generic(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f0000000740)={0x29c, 0x13, 0x300, 0x70bd2a, 0x25dfdbfb, {0x10}, [@nested={0xfa, 0x89, 0x0, 0x1, [@nested={0x4, 0x10d}, @typed={0x8, 0x51, 0x0, 0x0, @fd=r0}, @generic="a6b4", @generic="b0aba784b0e5b8c0408be78a875d53541cb6219829df3fff1ffa8b97c37772f8821a3029f06dd7f7d41269026346be3993f35b0e23e7619d1e01a76abd65c38f79cefd3ecdf3e22416644543bc1386b8222d5e98bc1f2935870b765e99f1c3dd695641605bbfbdabf5a390bdc77cf0129c86f3c9e825c321725bc7960f5dea414af3f39cfded9f23ba377b8928d973419a8da2853f832e923eb2abae3dba668e47744bf5a6d480fff9c5b317561dbbcfd0dcdcbd8cee2873c03da65887ae1364343ff2b2767bfeea38036bac26c0f0e1fc64cd1e692b98bb855bf43c841a196a45bff4f59ab8238a"]}, @generic="05e12a8e6ca4153ae236d091800a47198e434ee609386f6090ebcdf55d914c2957b5a59960a41b60c4d85c01e58e698fa51b4ff2fafca8535ace2d1c337556fd1d0ffc5919e4b67de222b9efebeac9d21bf278bc230315408ed0080252b6dbbb7bd208b605ab60d057390b9f4d5fa8cc5facadf8bf5dcf00ffa5a199734185619d8350cdcb119d2f493436a48c3e3941e327658171f8ac026af379679b8e6b253f83f556a86c3b3ef18418a79da4e59c8be855fbd0ff6a6959e0cb5dd01d585f401cfcaf30c0e8419dd25c2c24254495dd", @generic="68ac5a3d1ffde8145561ede9506de2efe815edc3319e663f", @typed={0x9e, 0x13, 0x0, 0x0, @binary="da5ea1bc873b71f777f930e36a5b1979783c5fcf1449dfd8fa9a477add8e75bcc1684b12d2d87d3d5795b37faca0e88e92b4b5f8cdfdee3e1321ad95457ff137536f85daa629b0735ca6e61343227592cd7680ae18fcf18b654fe20846f596b2dd67ca1893d91d9f09c9ec0aa698e990d8725a2c300aa807bac3a32c7daf3bb691199098c5f22ad5bdfc217b62cf90e93d0f001fa02d3136b8f7"}]}, 0x29c}, 0x1, 0x0, 0x0, 0x4000000}, 0x2)
sendfile(r3, r4, 0x0, 0x7ffff000)

kernel console output (not intermixed with test programs):

ut/input5
[   60.802508][ T6241] capability: warning: `syz.2.82' uses deprecated v2 capabilities in a way that may be insecure
[   61.761952][   T40] kauditd_printk_skb: 1125 callbacks suppressed
[   61.761968][   T40] audit: type=1400 audit(1748197362.694:1547): avc:  denied  { create } for  pid=6296 comm="syz.2.99" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   61.790612][   T40] audit: type=1400 audit(1748197362.694:1548): avc:  denied  { getopt } for  pid=6296 comm="syz.2.99" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   61.805073][   T40] audit: type=1400 audit(1748197362.704:1549): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   61.816275][   T40] audit: type=1400 audit(1748197362.704:1550): avc:  denied  { read write open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   61.827223][   T40] audit: type=1400 audit(1748197362.704:1551): avc:  denied  { ioctl } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   61.841687][   T40] audit: type=1400 audit(1748197362.714:1552): avc:  denied  { mounton } for  pid=6296 comm="syz.2.99" path="/27/file0" dev="tmpfs" ino=169 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   61.853111][   T40] audit: type=1400 audit(1748197362.744:1553): avc:  denied  { create } for  pid=6300 comm="syz.1.100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   61.859384][   T40] audit: type=1400 audit(1748197362.754:1554): avc:  denied  { create } for  pid=6296 comm="syz.2.99" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   61.866556][   T40] audit: type=1400 audit(1748197362.754:1555): avc:  denied  { write } for  pid=6296 comm="syz.2.99" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   61.874408][   T40] audit: type=1400 audit(1748197362.754:1556): avc:  denied  { read } for  pid=6296 comm="syz.2.99" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   62.006403][ T6306] sp0: Synchronizing with TNC
[   62.028674][ T6306] [U] è
[   62.303063][ T6322] netlink: 'syz.0.110': attribute type 23 has an invalid length.
[   62.327947][ T6322] __nla_validate_parse: 3 callbacks suppressed
[   62.327962][ T6322] netlink: 28 bytes leftover after parsing attributes in process `syz.0.110'.
[   62.340691][ T6322] netlink: 'syz.0.110': attribute type 7 has an invalid length.
[   62.343405][ T6322] netlink: 'syz.0.110': attribute type 8 has an invalid length.
[   62.345815][ T6322] netlink: 4 bytes leftover after parsing attributes in process `syz.0.110'.
[   62.351476][ T6322] bond0: entered promiscuous mode
[   62.353378][ T6322] bond_slave_0: entered promiscuous mode
[   62.355289][ T6322] bond_slave_1: entered promiscuous mode
[   62.358282][ T6322] bond0: left promiscuous mode
[   62.359901][ T6322] bond_slave_0: left promiscuous mode
[   62.361777][ T6322] bond_slave_1: left promiscuous mode
[   62.864590][ T6357] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[   62.904759][ T6353] xt_l2tp: unknown flags: 17
[   63.035378][ T6365] batadv1: entered promiscuous mode
[   63.092171][ T1022] usb 6-1: new low-speed USB device number 2 using dummy_hcd
[   63.262119][ T1022] usb 6-1: Invalid ep0 maxpacket: 32
[   63.406897][ T6383] IPv6: syztnl0: Disabled Multicast RS
[   63.413200][ T1022] usb 6-1: new low-speed USB device number 3 using dummy_hcd
[   63.435348][ T6387] netlink: 20 bytes leftover after parsing attributes in process `syz.0.130'.
[   63.562281][ T1022] usb 6-1: Invalid ep0 maxpacket: 32
[   63.564217][ T1022] usb usb6-port1: attempt power cycle
[   63.630703][ T6393] team_slave_0: entered allmulticast mode
[   63.660533][ T6396] xt_TCPMSS: Only works on TCP SYN packets
[   63.728622][ T6398] fuse: Bad value for 'rootmode'
[   63.736874][ T6398] netlink: 'syz.0.134': attribute type 2 has an invalid length.
[   63.739791][ T6398] netlink: 32 bytes leftover after parsing attributes in process `syz.0.134'.
[   63.913280][ T1022] usb 6-1: new low-speed USB device number 4 using dummy_hcd
[   63.944488][ T1022] usb 6-1: Invalid ep0 maxpacket: 32
[   64.007143][ T6402] netlink: 36 bytes leftover after parsing attributes in process `syz.2.135'.
[   64.083748][ T1022] usb 6-1: new low-speed USB device number 5 using dummy_hcd
[   64.120992][ T1022] usb 6-1: Invalid ep0 maxpacket: 32
[   64.127597][ T1022] usb usb6-port1: unable to enumerate USB device
[   64.145266][   T34] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   64.272092][   T34] usb 5-1: device descriptor read/64, error -71
[   64.336948][ T6418] IPv6: NLM_F_CREATE should be specified when creating new route
[   64.355198][ T6418] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1040 sclass=netlink_route_socket pid=6418 comm=syz.2.138
[   64.522200][   T34] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   64.662168][   T34] usb 5-1: device descriptor read/64, error -71
[   64.793748][   T34] usb usb5-port1: attempt power cycle
[   65.057238][ T6427] Bluetooth: (null): Invalid header checksum
[   65.094000][   T13] Bluetooth: (null): Invalid header checksum
[   65.096325][   T13] Bluetooth: (null): Invalid header checksum
[   65.143355][ T6430] netlink: 'syz.2.140': attribute type 13 has an invalid length.
[   65.152485][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   65.172607][ T6430] gretap0: refused to change device tx_queue_len
[   65.175203][ T6430] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   65.182132][   T34] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   65.213237][   T13] Bluetooth: (null): Invalid header checksum
[   65.214848][   T34] usb 5-1: device descriptor read/8, error -71
[   65.493029][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   65.654362][   T84] Bluetooth: (null): Invalid header checksum
[   65.657002][   T84] Bluetooth: (null): Invalid header checksum
[   65.659542][   T84] Bluetooth: (null): Invalid header checksum
[   65.863053][ T6425] syz.3.139 (6425): drop_caches: 2
[   65.902267][   T34] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   65.934075][   T34] usb 5-1: device descriptor read/8, error -71
[   66.012982][ T6441] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2073 sclass=netlink_route_socket pid=6441 comm=syz.2.142
[   66.042213][   T34] usb usb5-port1: unable to enumerate USB device
[   66.342203][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   66.383583][ T6455] FAULT_INJECTION: forcing a failure.
[   66.383583][ T6455] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   66.387984][ T6455] CPU: 3 UID: 0 PID: 6455 Comm: syz.3.147 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   66.387999][ T6455] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.388005][ T6455] Call Trace:
[   66.388009][ T6455]  <TASK>
[   66.388013][ T6455]  dump_stack_lvl+0x16c/0x1f0
[   66.388047][ T6455]  should_fail_ex+0x512/0x640
[   66.388068][ T6455]  _copy_from_user+0x2e/0xd0
[   66.388085][ T6455]  copy_msghdr_from_user+0x98/0x160
[   66.388099][ T6455]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   66.388118][ T6455]  ___sys_sendmsg+0xfe/0x1d0
[   66.388137][ T6455]  ? __pfx____sys_sendmsg+0x10/0x10
[   66.388169][ T6455]  __sys_sendmsg+0x16d/0x220
[   66.388182][ T6455]  ? __pfx___sys_sendmsg+0x10/0x10
[   66.388200][ T6455]  ? rcu_is_watching+0x12/0xc0
[   66.388223][ T6455]  do_syscall_64+0xcd/0x260
[   66.388247][ T6455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.388258][ T6455] RIP: 0033:0x7ff52b58e969
[   66.388267][ T6455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.388277][ T6455] RSP: 002b:00007ff52c37b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.388288][ T6455] RAX: ffffffffffffffda RBX: 00007ff52b7b5fa0 RCX: 00007ff52b58e969
[   66.388294][ T6455] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[   66.388301][ T6455] RBP: 00007ff52c37b090 R08: 0000000000000000 R09: 0000000000000000
[   66.388307][ T6455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.388313][ T6455] R13: 0000000000000000 R14: 00007ff52b7b5fa0 R15: 00007ffd06ee9938
[   66.388325][ T6455]  </TASK>
[   66.776172][   T40] kauditd_printk_skb: 946 callbacks suppressed
[   66.776182][   T40] audit: type=1400 audit(1748197367.714:2503): avc:  denied  { unmount } for  pid=5930 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   66.927308][   T40] audit: type=1400 audit(1748197367.864:2504): avc:  denied  { read write } for  pid=5929 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   66.944935][   T40] audit: type=1400 audit(1748197367.864:2505): avc:  denied  { read write open } for  pid=5929 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   66.972110][   T40] audit: type=1400 audit(1748197367.864:2506): avc:  denied  { ioctl } for  pid=5929 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   67.001780][ T6462] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.003005][   T40] audit: type=1400 audit(1748197367.904:2507): avc:  denied  { read write } for  pid=5930 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   67.004688][ T6462] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.029845][   T40] audit: type=1400 audit(1748197367.904:2508): avc:  denied  { read write open } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   67.058329][   T40] audit: type=1400 audit(1748197367.904:2509): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   67.093190][   T40] audit: type=1400 audit(1748197368.034:2510): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   67.106224][   T40] audit: type=1400 audit(1748197368.034:2511): avc:  denied  { read write open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   67.130259][   T40] audit: type=1400 audit(1748197368.034:2512): avc:  denied  { ioctl } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   67.144011][ T6471] netlink: 'syz.1.152': attribute type 23 has an invalid length.
[   67.156178][ T6470] Bluetooth: MGMT ver 1.23
[   67.229635][ T6474] netlink: 'syz.1.153': attribute type 4 has an invalid length.
[   67.258634][ T6462] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.270140][ T6462] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.283572][ T6474] netlink: 152 bytes leftover after parsing attributes in process `syz.1.153'.
[   67.330262][ T6462] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.335182][ T6462] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.338112][ T6462] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.340929][ T6462] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.607772][ T6474] : renamed from bond0 (while UP)
[   67.692149][ T6480] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   69.248597][ T6538] openvswitch: netlink: ct_state flags 0000ee01 unsupported
[   69.474070][ T6553] FAULT_INJECTION: forcing a failure.
[   69.474070][ T6553] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.478261][ T6553] CPU: 1 UID: 0 PID: 6553 Comm: syz.2.179 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   69.478276][ T6553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.478283][ T6553] Call Trace:
[   69.478287][ T6553]  <TASK>
[   69.478291][ T6553]  dump_stack_lvl+0x16c/0x1f0
[   69.478326][ T6553]  should_fail_ex+0x512/0x640
[   69.478348][ T6553]  _copy_from_user+0x2e/0xd0
[   69.478366][ T6553]  copy_msghdr_from_user+0x98/0x160
[   69.478379][ T6553]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   69.478397][ T6553]  ___sys_sendmsg+0xfe/0x1d0
[   69.478410][ T6553]  ? __pfx____sys_sendmsg+0x10/0x10
[   69.478437][ T6553]  __sys_sendmsg+0x16d/0x220
[   69.478450][ T6553]  ? __pfx___sys_sendmsg+0x10/0x10
[   69.478466][ T6553]  ? rcu_is_watching+0x12/0xc0
[   69.478483][ T6553]  do_syscall_64+0xcd/0x260
[   69.478500][ T6553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.478511][ T6553] RIP: 0033:0x7fdd1918e969
[   69.478520][ T6553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.478530][ T6553] RSP: 002b:00007fdd19f26038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   69.478540][ T6553] RAX: ffffffffffffffda RBX: 00007fdd193b5fa0 RCX: 00007fdd1918e969
[   69.478547][ T6553] RDX: 0000000004048000 RSI: 0000200000000040 RDI: 0000000000000003
[   69.478553][ T6553] RBP: 00007fdd19f26090 R08: 0000000000000000 R09: 0000000000000000
[   69.478560][ T6553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.478566][ T6553] R13: 0000000000000000 R14: 00007fdd193b5fa0 R15: 00007ffded958d48
[   69.478578][ T6553]  </TASK>
[   69.613923][ T6558] netlink: 20 bytes leftover after parsing attributes in process `syz.2.180'.
[   70.042142][   T34] usb 8-1: new low-speed USB device number 2 using dummy_hcd
[   70.242588][   T34] usb 8-1: Invalid ep0 maxpacket: 32
[   70.392110][   T34] usb 8-1: new low-speed USB device number 3 using dummy_hcd
[   70.552292][   T34] usb 8-1: Invalid ep0 maxpacket: 32
[   70.554347][   T34] usb usb8-port1: attempt power cycle
[   70.912316][   T34] usb 8-1: new low-speed USB device number 4 using dummy_hcd
[   70.942852][   T34] usb 8-1: Invalid ep0 maxpacket: 32
[   71.082790][   T34] usb 8-1: new low-speed USB device number 5 using dummy_hcd
[   71.104604][   T34] usb 8-1: Invalid ep0 maxpacket: 32
[   71.107021][   T34] usb usb8-port1: unable to enumerate USB device
[   71.243051][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[   71.245265][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[   71.817224][   T40] kauditd_printk_skb: 544 callbacks suppressed
[   71.817238][   T40] audit: type=1400 audit(1748197372.754:3055): avc:  denied  { read write } for  pid=5930 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   71.829483][   T40] audit: type=1400 audit(1748197372.754:3056): avc:  denied  { read write open } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   71.838381][   T40] audit: type=1400 audit(1748197372.754:3057): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   71.860727][   T40] audit: type=1400 audit(1748197372.794:3058): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   71.868146][   T40] audit: type=1400 audit(1748197372.804:3059): avc:  denied  { read write open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   71.876981][   T40] audit: type=1400 audit(1748197372.804:3060): avc:  denied  { ioctl } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   71.888001][   T40] audit: type=1400 audit(1748197372.804:3061): avc:  denied  { create } for  pid=6639 comm="syz.2.205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   71.895199][   T40] audit: type=1400 audit(1748197372.804:3062): avc:  denied  { write } for  pid=6639 comm="syz.2.205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   71.906375][   T40] audit: type=1400 audit(1748197372.844:3063): avc:  denied  { create } for  pid=6641 comm="syz.1.206" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   71.922771][   T40] audit: type=1400 audit(1748197372.854:3064): avc:  denied  { create } for  pid=6641 comm="syz.1.206" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   72.041611][ T6648] =======================================================
[   72.041611][ T6648] WARNING: The mand mount option has been deprecated and
[   72.041611][ T6648]          and is ignored by this kernel. Remove the mand
[   72.041611][ T6648]          option from the mount to silence this warning.
[   72.041611][ T6648] =======================================================
[   72.052335][ T6648] hugetlbfs: Bad value 'e' for mount option 'size'
[   72.052335][ T6648] 
[   72.375988][ T5946] Bluetooth: hci2: unknown advertising packet type: 0x20
[   72.799252][ T6680] netlink: 76 bytes leftover after parsing attributes in process `syz.0.217'.
[   72.980037][ T6688] team_slave_0: left allmulticast mode
[   73.270292][ T6706] netlink: 'syz.2.229': attribute type 1 has an invalid length.
[   73.311158][ T6706] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   73.317819][ T6706] bond1: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[   73.334049][ T6706] bond1: (slave wireguard0): making interface the new active one
[   73.337992][ T6706] bond1: (slave wireguard0): Enslaving as an active interface with an up link
[   73.514922][ T5946] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[   73.517951][ T5946] CPU: 0 UID: 0 PID: 5946 Comm: kworker/u33:8 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   73.517968][ T5946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.517975][ T5946] Workqueue: hci1 hci_rx_work
[   73.518006][ T5946] Call Trace:
[   73.518014][ T5946]  <TASK>
[   73.518018][ T5946]  dump_stack_lvl+0x16c/0x1f0
[   73.518037][ T5946]  sysfs_warn_dup+0x7f/0xa0
[   73.518050][ T5946]  sysfs_create_dir_ns+0x24b/0x2b0
[   73.518061][ T5946]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   73.518071][ T5946]  ? find_held_lock+0x2b/0x80
[   73.518089][ T5946]  ? do_raw_spin_unlock+0x172/0x230
[   73.518103][ T5946]  kobject_add_internal+0x2c4/0x9b0
[   73.518123][ T5946]  kobject_add+0x16e/0x240
[   73.518133][ T5946]  ? __pfx_kobject_add+0x10/0x10
[   73.518144][ T5946]  ? do_raw_spin_unlock+0x172/0x230
[   73.518156][ T5946]  ? kobject_put+0xab/0x5a0
[   73.518178][ T5946]  device_add+0x288/0x1a70
[   73.518210][ T5946]  ? __pfx_dev_set_name+0x10/0x10
[   73.518226][ T5946]  ? __pfx_device_add+0x10/0x10
[   73.518241][ T5946]  ? mgmt_send_event_skb+0x2fb/0x460
[   73.518263][ T5946]  hci_conn_add_sysfs+0x17e/0x230
[   73.518277][ T5946]  le_conn_complete_evt+0x1075/0x1d70
[   73.518299][ T5946]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   73.518317][ T5946]  ? hci_event_packet+0x43c/0x1190
[   73.518339][ T5946]  hci_le_conn_complete_evt+0x23c/0x370
[   73.518360][ T5946]  hci_le_meta_evt+0x2f6/0x5e0
[   73.518370][ T5946]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   73.518390][ T5946]  hci_event_packet+0x669/0x1190
[   73.518407][ T5946]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   73.518418][ T5946]  ? __pfx_hci_event_packet+0x10/0x10
[   73.518437][ T5946]  ? kcov_remote_start+0x3c9/0x6d0
[   73.518448][ T5946]  ? lockdep_hardirqs_on+0x7c/0x110
[   73.518466][ T5946]  hci_rx_work+0x2c5/0x16b0
[   73.518478][ T5946]  ? rcu_is_watching+0x12/0xc0
[   73.518493][ T5946]  process_one_work+0x9cf/0x1b70
[   73.518511][ T5946]  ? __pfx_process_one_work+0x10/0x10
[   73.518527][ T5946]  ? assign_work+0x1a0/0x250
[   73.518540][ T5946]  worker_thread+0x6c8/0xf10
[   73.518556][ T5946]  ? __kthread_parkme+0x19e/0x250
[   73.518572][ T5946]  ? __pfx_worker_thread+0x10/0x10
[   73.518584][ T5946]  kthread+0x3c2/0x780
[   73.518595][ T5946]  ? __pfx_kthread+0x10/0x10
[   73.518604][ T5946]  ? __pfx_kthread+0x10/0x10
[   73.518614][ T5946]  ? __pfx_kthread+0x10/0x10
[   73.518623][ T5946]  ? __pfx_kthread+0x10/0x10
[   73.518633][ T5946]  ? rcu_is_watching+0x12/0xc0
[   73.518659][ T5946]  ? __pfx_kthread+0x10/0x10
[   73.518670][ T5946]  ret_from_fork+0x45/0x80
[   73.518680][ T5946]  ? __pfx_kthread+0x10/0x10
[   73.518691][ T5946]  ret_from_fork_asm+0x1a/0x30
[   73.518714][ T5946]  </TASK>
[   73.518836][ T5946] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   73.607721][ T5946] Bluetooth: hci1: failed to register connection device
[   73.760811][ T6720] netlink: 14548 bytes leftover after parsing attributes in process `syz.3.234'.
[   73.841902][ T6724] netlink: 68 bytes leftover after parsing attributes in process `syz.0.235'.
[   74.229064][ T6737] Cannot find add_set index 4 as target
[   74.468905][ T6745] netlink: 'syz.3.243': attribute type 1 has an invalid length.
[   74.471325][ T6745] netlink: 'syz.3.243': attribute type 2 has an invalid length.
[   74.619112][ T6751] netlink: 12 bytes leftover after parsing attributes in process `syz.0.246'.
[   74.687161][ T5943] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[   74.690221][ T5943] CPU: 0 UID: 0 PID: 5943 Comm: kworker/u33:5 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   74.690237][ T5943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.690245][ T5943] Workqueue: hci3 hci_rx_work
[   74.690275][ T5943] Call Trace:
[   74.690283][ T5943]  <TASK>
[   74.690287][ T5943]  dump_stack_lvl+0x16c/0x1f0
[   74.690306][ T5943]  sysfs_warn_dup+0x7f/0xa0
[   74.690319][ T5943]  sysfs_create_dir_ns+0x24b/0x2b0
[   74.690331][ T5943]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   74.690341][ T5943]  ? find_held_lock+0x2b/0x80
[   74.690359][ T5943]  ? do_raw_spin_unlock+0x172/0x230
[   74.690372][ T5943]  kobject_add_internal+0x2c4/0x9b0
[   74.690393][ T5943]  kobject_add+0x16e/0x240
[   74.690403][ T5943]  ? __pfx_kobject_add+0x10/0x10
[   74.690415][ T5943]  ? do_raw_spin_unlock+0x172/0x230
[   74.690428][ T5943]  ? kobject_put+0xab/0x5a0
[   74.690449][ T5943]  device_add+0x288/0x1a70
[   74.690469][ T5943]  ? __pfx_dev_set_name+0x10/0x10
[   74.690485][ T5943]  ? __pfx_device_add+0x10/0x10
[   74.690499][ T5943]  ? mgmt_send_event_skb+0x2fb/0x460
[   74.690520][ T5943]  hci_conn_add_sysfs+0x17e/0x230
[   74.690532][ T5943]  le_conn_complete_evt+0x1075/0x1d70
[   74.690554][ T5943]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   74.690572][ T5943]  ? hci_event_packet+0x43c/0x1190
[   74.690593][ T5943]  hci_le_conn_complete_evt+0x23c/0x370
[   74.690613][ T5943]  hci_le_meta_evt+0x2f6/0x5e0
[   74.690624][ T5943]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   74.690643][ T5943]  hci_event_packet+0x669/0x1190
[   74.690660][ T5943]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   74.690671][ T5943]  ? __pfx_hci_event_packet+0x10/0x10
[   74.690689][ T5943]  ? kcov_remote_start+0x3c9/0x6d0
[   74.690700][ T5943]  ? lockdep_hardirqs_on+0x7c/0x110
[   74.690719][ T5943]  hci_rx_work+0x2c5/0x16b0
[   74.690730][ T5943]  ? rcu_is_watching+0x12/0xc0
[   74.690745][ T5943]  process_one_work+0x9cf/0x1b70
[   74.690763][ T5943]  ? __pfx_process_one_work+0x10/0x10
[   74.690779][ T5943]  ? assign_work+0x1a0/0x250
[   74.690792][ T5943]  worker_thread+0x6c8/0xf10
[   74.690809][ T5943]  ? __pfx_worker_thread+0x10/0x10
[   74.690825][ T5943]  kthread+0x3c2/0x780
[   74.690836][ T5943]  ? __pfx_kthread+0x10/0x10
[   74.690846][ T5943]  ? __pfx_kthread+0x10/0x10
[   74.690855][ T5943]  ? __pfx_kthread+0x10/0x10
[   74.690865][ T5943]  ? __pfx_kthread+0x10/0x10
[   74.690874][ T5943]  ? rcu_is_watching+0x12/0xc0
[   74.690887][ T5943]  ? __pfx_kthread+0x10/0x10
[   74.690899][ T5943]  ret_from_fork+0x45/0x80
[   74.690911][ T5943]  ? __pfx_kthread+0x10/0x10
[   74.690922][ T5943]  ret_from_fork_asm+0x1a/0x30
[   74.690946][ T5943]  </TASK>
[   74.690959][ T5943] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   74.776005][ T5943] Bluetooth: hci3: failed to register connection device
[   75.197810][ T6772] mkiss: ax0: crc mode is auto.
[   75.324417][ T6777] netlink: 12 bytes leftover after parsing attributes in process `syz.0.255'.
[   76.861985][   T40] kauditd_printk_skb: 14138 callbacks suppressed
[   76.861995][   T40] audit: type=1400 audit(1748197377.794:17167): avc:  denied  { prog_load } for  pid=6814 comm="syz.2.267" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   76.895329][   T40] audit: type=1400 audit(1748197377.834:17168): avc:  denied  { bpf } for  pid=6814 comm="syz.2.267" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   76.903279][   T40] audit: type=1400 audit(1748197377.834:17169): avc:  denied  { perfmon } for  pid=6814 comm="syz.2.267" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   76.912114][   T40] audit: type=1400 audit(1748197377.834:17170): avc:  denied  { perfmon } for  pid=6814 comm="syz.2.267" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   76.918530][   T40] audit: type=1400 audit(1748197377.834:17171): avc:  denied  { perfmon } for  pid=6814 comm="syz.2.267" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   76.939749][   T40] audit: type=1400 audit(1748197377.834:17172): avc:  denied  { perfmon } for  pid=6814 comm="syz.2.267" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   76.959645][   T40] audit: type=1400 audit(1748197377.834:17173): avc:  denied  { perfmon } for  pid=6814 comm="syz.2.267" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   76.992136][   T40] audit: type=1400 audit(1748197377.834:17174): avc:  denied  { bpf } for  pid=6814 comm="syz.2.267" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   77.016849][   T40] audit: type=1400 audit(1748197377.954:17175): avc:  denied  { read write } for  pid=6818 comm="syz.0.269" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   77.034520][   T40] audit: type=1400 audit(1748197377.954:17176): avc:  denied  { read write open } for  pid=6818 comm="syz.0.269" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   77.285203][ T5946] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   77.860278][ T6848] syzkaller1: entered promiscuous mode
[   77.862127][ T6848] syzkaller1: entered allmulticast mode
[   77.876207][ T6848] tmpfs: Bad value for 'mpol'
[   78.286127][ T6865] openvswitch: netlink: Geneve option length err (len 256, max 255).
[   79.114470][ T5991] IPVS: starting estimator thread 0...
[   79.202161][ T6885] IPVS: using max 45 ests per chain, 108000 per kthread
[   79.304457][ T6896] netlink: 'syz.2.295': attribute type 4 has an invalid length.
[   79.320451][ T6896] netlink: 'syz.2.295': attribute type 4 has an invalid length.
[   79.722197][ T5946] Bluetooth: hci1: command 0x0406 tx timeout
[   80.280060][ T6923] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   80.295852][ T6923] lo: entered promiscuous mode
[   81.232642][ T6954] netlink: 'syz.2.317': attribute type 178 has an invalid length.
[   81.296865][ T6957] NILFS (nbd1): device size too small
[   81.480006][   T58] cfg80211: failed to load regulatory.db
[   81.561311][ T6975] xt_CT: You must specify a L4 protocol and not use inversions on it
[   81.876992][   T40] kauditd_printk_skb: 737 callbacks suppressed
[   81.877008][   T40] audit: type=1400 audit(1748197382.814:17914): avc:  denied  { read } for  pid=6987 comm="syz.2.329" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.890075][   T40] audit: type=1400 audit(1748197382.814:17915): avc:  denied  { read open } for  pid=6987 comm="syz.2.329" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.897154][ T6989] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[   81.899299][   T40] audit: type=1400 audit(1748197382.814:17916): avc:  denied  { ioctl } for  pid=6987 comm="syz.2.329" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.908677][   T40] audit: type=1400 audit(1748197382.834:17917): avc:  denied  { read } for  pid=6988 comm="syz.1.328" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.916101][   T40] audit: type=1400 audit(1748197382.844:17918): avc:  denied  { read open } for  pid=6988 comm="syz.1.328" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.925845][   T40] audit: type=1400 audit(1748197382.844:17919): avc:  denied  { ioctl } for  pid=6988 comm="syz.1.328" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.935429][   T40] audit: type=1400 audit(1748197382.874:17920): avc:  denied  { read write } for  pid=6988 comm="syz.1.328" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.948286][   T40] audit: type=1400 audit(1748197382.874:17921): avc:  denied  { read write open } for  pid=6988 comm="syz.1.328" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.957214][   T40] audit: type=1400 audit(1748197382.874:17922): avc:  denied  { ioctl } for  pid=6988 comm="syz.1.328" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   81.967167][   T40] audit: type=1400 audit(1748197382.884:17923): avc:  denied  { read write } for  pid=5939 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   82.542226][ T5935] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   82.712651][ T5935] usb 6-1: Using ep0 maxpacket: 8
[   82.743567][ T5935] usb 6-1: config 1 interface 0 altsetting 143 endpoint 0x2 has an invalid bInterval 189, changing to 11
[   82.752387][ T5935] usb 6-1: config 1 interface 0 has no altsetting 0
[   82.778465][ T5935] usb 6-1: New USB device found, idVendor=056a, idProduct=0042, bcdDevice= 0.40
[   82.781289][ T5935] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.793795][ T5935] usb 6-1: Product: syz
[   82.795140][ T5935] usb 6-1: Manufacturer: 予䑕䱷㮌꽹⳶嶫徳↵ﮔ㉟�∇茤䮀�ﮰ娆쟸췈摟뗿�뢛排ࡆﹼ᨟燐ꮜ㱂塀媒᭤隸�漪궺⯛�맔๑ཎܚꅶ耗�⦶⡓��⠯攋�ᒘ೻䅧濞ꔤꚨ쥴양⭔矡⧵փ౵ᵜର㥼쎫㭯⡻ꂈ鬆ꌌतᰄ㙒㋷ᗟȃ᪰᪗陯�ީ쳧㜢ࢯ�
[   82.806238][ T5935] usb 6-1: SerialNumber: syz
[   82.930523][ T5946] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   82.956565][ T7035] hugetlbfs: Unknown parameter ' '
[   83.163678][   T58] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   83.267062][ T5935] usbhid 6-1:1.0: can't add hid device: -71
[   83.269179][ T5935] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[   83.276488][ T5935] usb 6-1: USB disconnect, device number 6
[   83.322380][   T58] usb 7-1: Using ep0 maxpacket: 8
[   83.334223][   T58] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[   83.336582][   T58] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   83.339989][   T58] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   83.345482][   T58] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   83.348291][   T58] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   83.353952][   T58] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   83.356529][   T58] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.759254][   T58] usb 7-1: usb_control_msg returned -32
[   83.761120][   T58] usbtmc 7-1:16.0: can't read capabilities
[   83.779373][ T7058] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.782102][ T7058] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.937364][ T7058] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.967720][ T7058] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   84.110420][ T7058] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   84.118350][ T7058] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   84.130016][ T7058] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   84.141996][ T7058] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   84.145121][ T7067] overlayfs: overlapping lowerdir path
[   84.166866][ T7066] Illegal XDP return value 1106723118 on prog  (id 38) dev N/A, expect packet loss!
[   84.265920][ T7062] bridge0: port 3(gretap0) entered blocking state
[   84.275850][ T7062] bridge0: port 3(gretap0) entered disabled state
[   84.280452][ T7062] gretap0: entered allmulticast mode
[   84.305352][ T7062] gretap0: entered promiscuous mode
[   84.310991][ T7062] bridge0: port 3(gretap0) entered blocking state
[   84.313432][ T7062] bridge0: port 3(gretap0) entered forwarding state
[   84.790794][ T7076] kvm: kvm [7075]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x0
[   84.794420][ T7076] kvm: kvm [7075]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x0
[   84.849534][ T7076] kvm: kvm [7075]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x0
[   84.852464][ T7076] kvm: kvm [7075]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x0
[   84.873225][ T7076] kvm: kvm [7075]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x60
[   84.875986][ T7076] kvm: kvm [7075]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x60
[   85.140328][ T7094] netlink: 132 bytes leftover after parsing attributes in process `syz.0.362'.
[   85.143583][ T7095] netlink: 132 bytes leftover after parsing attributes in process `syz.0.362'.
[   85.168850][ T7094] netlink: 12 bytes leftover after parsing attributes in process `syz.0.362'.
[   85.172880][ T7095] netlink: 12 bytes leftover after parsing attributes in process `syz.0.362'.
[   85.544729][ T7107] kvm: kvm [7106]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x0
[   85.553198][ T7107] kvm: kvm [7106]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x0
[   85.666634][ T7107] kvm: kvm [7106]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x0
[   85.669541][ T7107] kvm: kvm [7106]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x0
[   85.926046][ T5991] usb 7-1: USB disconnect, device number 2
[   86.404004][ T7142] netlink: 32 bytes leftover after parsing attributes in process `syz.2.373'.
[   86.407546][ T7142] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.412644][ T7142] batadv_slave_0: entered promiscuous mode
[   86.654076][ T7160] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   86.656507][ T7160] IPv6: NLM_F_CREATE should be set when creating new route
[   86.665417][ T7161] syz.3.378: attempt to access beyond end of device
[   86.665417][ T7161] nbd3: rw=0, sector=2, nr_sectors = 2 limit=0
[   86.669287][ T7160] netlink: 88 bytes leftover after parsing attributes in process `syz.2.377'.
[   86.669666][ T7161] MINIX-fs: unable to read superblock
[   86.896236][   T40] kauditd_printk_skb: 1206 callbacks suppressed
[   86.896253][   T40] audit: type=1400 audit(1748197387.834:19130): avc:  denied  { read write } for  pid=5930 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   86.922290][   T40] audit: type=1400 audit(1748197387.834:19131): avc:  denied  { read write open } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   86.942106][   T40] audit: type=1400 audit(1748197387.834:19132): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   86.952199][   T40] audit: type=1400 audit(1748197387.834:19133): avc:  denied  { read write } for  pid=7169 comm="syz.3.382" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   86.959396][   T40] audit: type=1400 audit(1748197387.834:19134): avc:  denied  { read write open } for  pid=7169 comm="syz.3.382" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   86.975637][   T40] audit: type=1400 audit(1748197387.834:19135): avc:  denied  { ioctl } for  pid=7169 comm="syz.3.382" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   86.993214][   T40] audit: type=1400 audit(1748197387.864:19136): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   87.005967][   T40] audit: type=1400 audit(1748197387.864:19137): avc:  denied  { read write open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   87.013761][   T40] audit: type=1400 audit(1748197387.864:19138): avc:  denied  { ioctl } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   87.021564][   T40] audit: type=1400 audit(1748197387.894:19139): avc:  denied  { read write } for  pid=5929 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   88.151114][ T7219] random: crng reseeded on system resumption
[   88.242511][ T7224] tmpfs: Bad value for 'mpol'
[   88.324297][ T7219] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   88.327385][ T7219] overlayfs: missing 'lowerdir'
[   88.501865][ T5946] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[   88.505210][ T5946] CPU: 0 UID: 0 PID: 5946 Comm: kworker/u33:8 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   88.505227][ T5946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.505234][ T5946] Workqueue: hci3 hci_rx_work
[   88.505261][ T5946] Call Trace:
[   88.505272][ T5946]  <TASK>
[   88.505277][ T5946]  dump_stack_lvl+0x16c/0x1f0
[   88.505296][ T5946]  sysfs_warn_dup+0x7f/0xa0
[   88.505310][ T5946]  sysfs_create_dir_ns+0x24b/0x2b0
[   88.505321][ T5946]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   88.505332][ T5946]  ? find_held_lock+0x2b/0x80
[   88.505349][ T5946]  ? do_raw_spin_unlock+0x172/0x230
[   88.505363][ T5946]  kobject_add_internal+0x2c4/0x9b0
[   88.505384][ T5946]  kobject_add+0x16e/0x240
[   88.505394][ T5946]  ? __pfx_kobject_add+0x10/0x10
[   88.505405][ T5946]  ? do_raw_spin_unlock+0x172/0x230
[   88.505417][ T5946]  ? kobject_put+0xab/0x5a0
[   88.505439][ T5946]  device_add+0x288/0x1a70
[   88.505457][ T5946]  ? __pfx_dev_set_name+0x10/0x10
[   88.505473][ T5946]  ? __pfx_device_add+0x10/0x10
[   88.505488][ T5946]  ? mgmt_send_event_skb+0x2fb/0x460
[   88.505509][ T5946]  hci_conn_add_sysfs+0x17e/0x230
[   88.505522][ T5946]  le_conn_complete_evt+0x1075/0x1d70
[   88.505544][ T5946]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   88.505561][ T5946]  ? hci_event_packet+0x43c/0x1190
[   88.505584][ T5946]  hci_le_conn_complete_evt+0x23c/0x370
[   88.505609][ T5946]  hci_le_meta_evt+0x2f6/0x5e0
[   88.505620][ T5946]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   88.505642][ T5946]  hci_event_packet+0x669/0x1190
[   88.505659][ T5946]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   88.505671][ T5946]  ? __pfx_hci_event_packet+0x10/0x10
[   88.505690][ T5946]  ? kcov_remote_start+0x3c9/0x6d0
[   88.505702][ T5946]  ? lockdep_hardirqs_on+0x7c/0x110
[   88.505723][ T5946]  hci_rx_work+0x2c5/0x16b0
[   88.505734][ T5946]  ? rcu_is_watching+0x12/0xc0
[   88.505749][ T5946]  process_one_work+0x9cf/0x1b70
[   88.505768][ T5946]  ? __pfx_process_one_work+0x10/0x10
[   88.505784][ T5946]  ? assign_work+0x1a0/0x250
[   88.505797][ T5946]  worker_thread+0x6c8/0xf10
[   88.505813][ T5946]  ? __kthread_parkme+0x19e/0x250
[   88.505829][ T5946]  ? __pfx_worker_thread+0x10/0x10
[   88.505842][ T5946]  kthread+0x3c2/0x780
[   88.505852][ T5946]  ? __pfx_kthread+0x10/0x10
[   88.505862][ T5946]  ? __pfx_kthread+0x10/0x10
[   88.505871][ T5946]  ? __pfx_kthread+0x10/0x10
[   88.505881][ T5946]  ? __pfx_kthread+0x10/0x10
[   88.505891][ T5946]  ? rcu_is_watching+0x12/0xc0
[   88.505904][ T5946]  ? __pfx_kthread+0x10/0x10
[   88.505914][ T5946]  ret_from_fork+0x45/0x80
[   88.505926][ T5946]  ? __pfx_kthread+0x10/0x10
[   88.505936][ T5946]  ret_from_fork_asm+0x1a/0x30
[   88.505958][ T5946]  </TASK>
[   88.505977][ T5946] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   88.596602][ T5946] Bluetooth: hci3: failed to register connection device
[   88.687337][ T7238] ipvlan0: entered promiscuous mode
[   88.690231][ T7238] ipvlan0: left promiscuous mode
[   89.079229][ T5946] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[   89.391578][ T7277] netlink: 48 bytes leftover after parsing attributes in process `syz.3.416'.
[   89.427233][ T7277] batadv_slave_0: entered promiscuous mode
[   89.490242][ T7281] ipvlan0: entered promiscuous mode
[   89.496223][ T7281] ipvlan0: left promiscuous mode
[   89.520161][ T7283] /dev/nullb0: Can't open blockdev
[   90.449120][ T7313] xt_CT: You must specify a L4 protocol and not use inversions on it
[   90.545148][ T7318] FAULT_INJECTION: forcing a failure.
[   90.545148][ T7318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.550661][ T7318] CPU: 3 UID: 0 PID: 7318 Comm: syz.3.430 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   90.550684][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.550694][ T7318] Call Trace:
[   90.550700][ T7318]  <TASK>
[   90.550707][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   90.550761][ T7318]  should_fail_ex+0x512/0x640
[   90.550796][ T7318]  _copy_from_user+0x2e/0xd0
[   90.550823][ T7318]  copy_msghdr_from_user+0x98/0x160
[   90.550846][ T7318]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   90.550870][ T7318]  ? __pfx__kstrtoull+0x10/0x10
[   90.550895][ T7318]  ___sys_sendmsg+0xfe/0x1d0
[   90.550916][ T7318]  ? __pfx____sys_sendmsg+0x10/0x10
[   90.550947][ T7318]  ? find_held_lock+0x2b/0x80
[   90.550986][ T7318]  __sys_sendmmsg+0x200/0x420
[   90.551010][ T7318]  ? __pfx___sys_sendmmsg+0x10/0x10
[   90.551038][ T7318]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   90.551075][ T7318]  ? fput+0x70/0xf0
[   90.551095][ T7318]  ? ksys_write+0x1b9/0x240
[   90.551121][ T7318]  ? __pfx_ksys_write+0x10/0x10
[   90.551145][ T7318]  ? rcu_is_watching+0x12/0xc0
[   90.551170][ T7318]  __x64_sys_sendmmsg+0x9c/0x100
[   90.551190][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.551215][ T7318]  do_syscall_64+0xcd/0x260
[   90.551243][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.551261][ T7318] RIP: 0033:0x7ff52b58e969
[   90.551274][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.551291][ T7318] RSP: 002b:00007ff52c37b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   90.551307][ T7318] RAX: ffffffffffffffda RBX: 00007ff52b7b5fa0 RCX: 00007ff52b58e969
[   90.551318][ T7318] RDX: 0000000000000001 RSI: 0000200000002340 RDI: 0000000000000004
[   90.551329][ T7318] RBP: 00007ff52c37b090 R08: 0000000000000000 R09: 0000000000000000
[   90.551339][ T7318] R10: 0000000020044000 R11: 0000000000000246 R12: 0000000000000001
[   90.551349][ T7318] R13: 0000000000000000 R14: 00007ff52b7b5fa0 R15: 00007ffd06ee9938
[   90.551373][ T7318]  </TASK>
[   90.717191][ T7321] gfs2: gfs2 mount does not exist
[   90.736425][ T7321] netlink: 92 bytes leftover after parsing attributes in process `syz.3.431'.
[   90.751288][ T7321] syz.3.431: attempt to access beyond end of device
[   90.751288][ T7321] sr0: rw=0, sector=0, nr_sectors = 4 limit=0
[   90.755840][ T7321] (syz.3.431,7321,2):ocfs2_get_sector:1714 ERROR: status = -5
[   90.758264][ T7321] (syz.3.431,7321,2):ocfs2_sb_probe:753 ERROR: status = -5
[   90.760713][ T7321] (syz.3.431,7321,2):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   90.763460][ T7321] (syz.3.431,7321,2):ocfs2_fill_super:1177 ERROR: status = -5
[   90.947648][ T7327] syz.3.433: attempt to access beyond end of device
[   90.947648][ T7327] sr0: rw=0, sector=0, nr_sectors = 8 limit=0
[   90.951922][ T7327] hpfs: hpfs_map_sector(): read error
[   91.292343][ T7337] netlink: 4 bytes leftover after parsing attributes in process `syz.3.435'.
[   92.193065][ T5943] Bluetooth: hci1: command 0x0406 tx timeout
[   92.193146][ T7302] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[   93.094017][ T7302] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   93.104454][ T7302] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   93.111923][ T7302] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   93.116149][ T7302] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   93.118069][ T7302] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   93.121587][ T7302] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   93.128826][ T7302] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   93.131224][ T7302] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   93.136322][ T7302] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   93.139572][ T7302] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   93.144600][ T7302] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   93.171351][   T40] kauditd_printk_skb: 774 callbacks suppressed
[   93.171367][   T40] audit: type=1400 audit(1748197394.104:19914): avc:  denied  { read write } for  pid=5939 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.202195][   T40] audit: type=1400 audit(1748197394.104:19915): avc:  denied  { read write open } for  pid=5939 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.224130][   T40] audit: type=1400 audit(1748197394.114:19916): avc:  denied  { ioctl } for  pid=5939 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.234420][   T40] audit: type=1400 audit(1748197394.124:19917): avc:  denied  { read write } for  pid=5930 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.243506][   T40] audit: type=1400 audit(1748197394.124:19918): avc:  denied  { read write open } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.252840][   T40] audit: type=1400 audit(1748197394.134:19919): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.272117][   T40] audit: type=1400 audit(1748197394.134:19920): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.282283][   T40] audit: type=1400 audit(1748197394.134:19921): avc:  denied  { read write open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.301608][   T40] audit: type=1400 audit(1748197394.144:19922): avc:  denied  { ioctl } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.317430][   T40] audit: type=1400 audit(1748197394.154:19923): avc:  denied  { read write } for  pid=5929 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   93.448134][ T7356] netlink: 'syz.2.443': attribute type 1 has an invalid length.
[   93.456811][ T7350] netlink: 24 bytes leftover after parsing attributes in process `syz.1.441'.
[   93.500463][ T7356] bond2: (slave wireguard1): The slave device specified does not support setting the MAC address
[   93.500509][ T7356] bond2: (slave wireguard1): Setting fail_over_mac to active for active-backup mode
[   93.506562][ T7356] bond2: (slave wireguard1): making interface the new active one
[   93.536153][ T7356] bond2: (slave wireguard1): Enslaving as an active interface with an up link
[   93.575238][ T7355] netlink: 'syz.3.440': attribute type 16 has an invalid length.
[   93.577710][ T7355] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.440'.
[   93.584908][ T7355] netlink: 12 bytes leftover after parsing attributes in process `syz.3.440'.
[   93.687915][ T7371] netlink: 24 bytes leftover after parsing attributes in process `syz.3.447'.
[   93.698463][ T7371] netlink: 264 bytes leftover after parsing attributes in process `syz.3.447'.
[   93.701569][ T7371] netlink: 56 bytes leftover after parsing attributes in process `syz.3.447'.
[   93.705656][ T7371] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[   93.872099][ T7388] netlink: 'syz.2.453': attribute type 1 has an invalid length.
[   93.904650][ T7388] bond3: (slave wireguard2): The slave device specified does not support setting the MAC address
[   93.908975][ T7388] bond3: (slave wireguard2): Setting fail_over_mac to active for active-backup mode
[   93.917449][ T7388] wireguard: wireguard2: Could not create IPv4 socket
[   93.920950][ T7388] bond3: (slave wireguard2): Opening slave failed
[   93.958469][ T7395] netlink: 8 bytes leftover after parsing attributes in process `syz.0.455'.
[   94.016895][ T7404] ip6erspan0: entered promiscuous mode
[   94.275523][ T5946] Bluetooth: hci1: command 0x0406 tx timeout
[   94.279642][ T7429] warning: `syz.2.466' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   94.351163][ T7435] netlink: 4 bytes leftover after parsing attributes in process `syz.2.468'.
[   94.652677][ T7453] netlink: 'syz.2.472': attribute type 1 has an invalid length.
[   94.678742][ T7456] lo: left promiscuous mode
[   94.696421][ T7456] bridge0: port 3(gretap0) entered disabled state
[   94.721845][ T7456] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.724955][ T7456] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.774662][ T7456] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   94.781148][ T7456] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   94.829392][ T7456] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.832331][ T7456] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.835196][ T7456] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.838002][ T7456] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.894155][ T7453] bond4: (slave wireguard2): The slave device specified does not support setting the MAC address
[   94.897945][ T7453] bond4: (slave wireguard2): Setting fail_over_mac to active for active-backup mode
[   94.913120][ T7453] wireguard: wireguard2: Could not create IPv4 socket
[   94.915761][ T7453] bond4: (slave wireguard2): Opening slave failed
[   95.048752][ T7468] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[   95.096414][ T7475] netlink: 'syz.2.480': attribute type 4 has an invalid length.
[   95.152164][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[   95.162876][ T5946] Bluetooth: hci3: command 0x0406 tx timeout
[   95.167229][ T7482] FAULT_INJECTION: forcing a failure.
[   95.167229][ T7482] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.171325][ T7482] CPU: 2 UID: 0 PID: 7482 Comm: syz.2.483 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   95.171339][ T7482] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.171346][ T7482] Call Trace:
[   95.171350][ T7482]  <TASK>
[   95.171354][ T7482]  dump_stack_lvl+0x16c/0x1f0
[   95.171389][ T7482]  should_fail_ex+0x512/0x640
[   95.171411][ T7482]  _copy_from_user+0x2e/0xd0
[   95.171450][ T7482]  copy_msghdr_from_user+0x98/0x160
[   95.171463][ T7482]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   95.171482][ T7482]  ___sys_sendmsg+0xfe/0x1d0
[   95.171495][ T7482]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.171524][ T7482]  __sys_sendmsg+0x16d/0x220
[   95.171537][ T7482]  ? __pfx___sys_sendmsg+0x10/0x10
[   95.171553][ T7482]  ? rcu_is_watching+0x12/0xc0
[   95.171571][ T7482]  do_syscall_64+0xcd/0x260
[   95.171588][ T7482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.171599][ T7482] RIP: 0033:0x7fdd1918e969
[   95.171609][ T7482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.171619][ T7482] RSP: 002b:00007fdd19f26038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   95.171629][ T7482] RAX: ffffffffffffffda RBX: 00007fdd193b5fa0 RCX: 00007fdd1918e969
[   95.171639][ T7482] RDX: 0000000000040000 RSI: 0000200000000040 RDI: 0000000000000003
[   95.171646][ T7482] RBP: 00007fdd19f26090 R08: 0000000000000000 R09: 0000000000000000
[   95.171652][ T7482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.171658][ T7482] R13: 0000000000000000 R14: 00007fdd193b5fa0 R15: 00007ffded958d48
[   95.171671][ T7482]  </TASK>
[   95.292946][ T7492] FAULT_INJECTION: forcing a failure.
[   95.292946][ T7492] name failslab, interval 1, probability 0, space 0, times 0
[   95.298151][ T7492] CPU: 2 UID: 0 PID: 7492 Comm: syz.2.486 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   95.298167][ T7492] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.298173][ T7492] Call Trace:
[   95.298177][ T7492]  <TASK>
[   95.298181][ T7492]  dump_stack_lvl+0x16c/0x1f0
[   95.298215][ T7492]  should_fail_ex+0x512/0x640
[   95.298236][ T7492]  should_failslab+0xc2/0x120
[   95.298248][ T7492]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[   95.298261][ T7492]  ? sidtab_sid2str_get+0x17a/0x680
[   95.298281][ T7492]  kmemdup_noprof+0x29/0x60
[   95.298293][ T7492]  sidtab_sid2str_get+0x17a/0x680
[   95.298312][ T7492]  sidtab_entry_to_string+0x33/0x110
[   95.298329][ T7492]  security_sid_to_context_core+0x35c/0x640
[   95.298347][ T7492]  avc_audit_post_callback+0x109/0x8f0
[   95.298358][ T7492]  ? __pfx_audit_log_lsm_data+0x10/0x10
[   95.298374][ T7492]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   95.298391][ T7492]  ? skb_put+0x138/0x1b0
[   95.298407][ T7492]  ? audit_log_n_string+0x253/0x540
[   95.298429][ T7492]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   95.298446][ T7492]  common_lsm_audit+0x24e/0x300
[   95.298462][ T7492]  ? __pfx_common_lsm_audit+0x10/0x10
[   95.298478][ T7492]  ? avc_denied+0x14a/0x190
[   95.298491][ T7492]  slow_avc_audit+0x186/0x210
[   95.298503][ T7492]  ? __pfx_slow_avc_audit+0x10/0x10
[   95.298514][ T7492]  ? find_held_lock+0x2b/0x80
[   95.298534][ T7492]  avc_has_perm+0x18b/0x1c0
[   95.298546][ T7492]  ? __pfx_avc_has_perm+0x10/0x10
[   95.298557][ T7492]  ? __lock_acquire+0xaa4/0x1ba0
[   95.298578][ T7492]  sock_has_perm+0x252/0x2f0
[   95.298591][ T7492]  ? __pfx_sock_has_perm+0x10/0x10
[   95.298605][ T7492]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   95.298622][ T7492]  ? __might_fault+0xe3/0x190
[   95.298635][ T7492]  ? __import_iovec+0x1c8/0x660
[   95.298655][ T7492]  security_socket_sendmsg+0x9b/0x240
[   95.298669][ T7492]  ____sys_sendmsg+0x2f2/0xc70
[   95.298689][ T7492]  ? copy_msghdr_from_user+0x10a/0x160
[   95.298702][ T7492]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.298719][ T7492]  ? __pfx__kstrtoull+0x10/0x10
[   95.298734][ T7492]  ___sys_sendmsg+0x134/0x1d0
[   95.298747][ T7492]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.298766][ T7492]  ? find_held_lock+0x2b/0x80
[   95.298788][ T7492]  __sys_sendmmsg+0x200/0x420
[   95.298802][ T7492]  ? __pfx___sys_sendmmsg+0x10/0x10
[   95.298819][ T7492]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   95.298842][ T7492]  ? fput+0x70/0xf0
[   95.298853][ T7492]  ? ksys_write+0x1b9/0x240
[   95.298869][ T7492]  ? __pfx_ksys_write+0x10/0x10
[   95.298885][ T7492]  ? rcu_is_watching+0x12/0xc0
[   95.298900][ T7492]  __x64_sys_sendmmsg+0x9c/0x100
[   95.298912][ T7492]  ? lockdep_hardirqs_on+0x7c/0x110
[   95.298927][ T7492]  do_syscall_64+0xcd/0x260
[   95.298943][ T7492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.298955][ T7492] RIP: 0033:0x7fdd1918e969
[   95.298963][ T7492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.298973][ T7492] RSP: 002b:00007fdd19f26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   95.298984][ T7492] RAX: ffffffffffffffda RBX: 00007fdd193b5fa0 RCX: 00007fdd1918e969
[   95.298990][ T7492] RDX: 0000000000000001 RSI: 0000200000002340 RDI: 0000000000000004
[   95.298997][ T7492] RBP: 00007fdd19f26090 R08: 0000000000000000 R09: 0000000000000000
[   95.299003][ T7492] R10: 0000000020044000 R11: 0000000000000246 R12: 0000000000000001
[   95.299009][ T7492] R13: 0000000000000000 R14: 00007fdd193b5fa0 R15: 00007ffded958d48
[   95.299022][ T7492]  </TASK>
[   95.461581][ T7496] ksmbd: Unknown IPC event: 0, ignore.
[   95.470815][ T7496] dlm: no local IP address has been set
[   95.473102][ T7496] dlm: cannot start dlm midcomms -107
[   95.610716][ T7510] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7510 comm=syz.1.490
[   95.892846][ T7524] netlink: 'syz.0.497': attribute type 27 has an invalid length.
[   95.925100][ T7524] bridge0: port 3(gretap0) entered blocking state
[   95.927195][ T7524] bridge0: port 3(gretap0) entered forwarding state
[   95.931226][ T7524] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.936765][ T7524] 8021q: adding VLAN 0 to HW filter on device team0
[   95.941574][ T7524] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   96.034864][ T7536] wg2: left promiscuous mode
[   96.036553][ T7536] wg2: left allmulticast mode
[   96.062433][ T7536] ip6erspan0: left promiscuous mode
[   96.094794][ T7540] SELinux: syz.2.501 (7540) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   96.341510][ T7558] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1012 sclass=netlink_route_socket pid=7558 comm=syz.0.507
[   96.352318][ T5946] Bluetooth: hci1: command 0x0406 tx timeout
[   96.372145][ T5935] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[   96.565493][ T5935] usb 7-1: config index 0 descriptor too short (expected 48016, got 2448)
[   96.573084][ T5935] usb 7-1: config 187 has too many interfaces: 187, using maximum allowed: 32
[   96.578508][ T5935] usb 7-1: config 187 has an invalid descriptor of length 0, skipping remainder of the config
[   96.588169][ T5935] usb 7-1: config 187 has 0 interfaces, different from the descriptor's value: 187
[   96.596068][ T5935] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[   96.603587][ T5935] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.837860][ T7534] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   96.840741][ T7534] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.852398][   T58] usb 7-1: USB disconnect, device number 3
[   96.902511][ T7592] netlink: 'syz.3.519': attribute type 16 has an invalid length.
[   96.905045][ T7592] netlink: 'syz.3.519': attribute type 3 has an invalid length.
[   96.907511][ T7592] netlink: 'syz.3.519': attribute type 1 has an invalid length.
[   96.909921][ T7592] netlink: 'syz.3.519': attribute type 2 has an invalid length.
[   96.912654][ T7592] __nla_validate_parse: 3 callbacks suppressed
[   96.912662][ T7592] netlink: 64022 bytes leftover after parsing attributes in process `syz.3.519'.
[   96.974040][ T7591] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   96.977353][ T7591] bond1: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[   96.980811][ T7591] wireguard: wireguard0: Could not create IPv4 socket
[   96.983350][ T7591] bond1: (slave wireguard0): Opening slave failed
[   97.086102][ T7602] bond0: (slave wireguard0): The slave device specified does not support setting the MAC address
[   97.089441][ T7602] bond0: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[   97.095521][ T7602] wireguard: wireguard0: Could not create IPv4 socket
[   97.097755][ T7602] bond0: (slave wireguard0): Opening slave failed
[   97.242249][ T5943] Bluetooth: hci3: command 0x0406 tx timeout
[   97.242292][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[   97.747749][ T7639] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   97.751084][ T7639] bond1: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[   97.755072][ T7639] wireguard: wireguard0: Could not create IPv4 socket
[   97.757234][ T7639] bond1: (slave wireguard0): Opening slave failed
[   97.885453][ T7652] bond2: (slave wireguard0): The slave device specified does not support setting the MAC address
[   97.888735][ T7652] bond2: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[   97.905463][ T7652] wireguard: wireguard0: Could not create IPv4 socket
[   97.907616][ T7652] bond2: (slave wireguard0): Opening slave failed
[   98.118751][ T7674] netlink: 72 bytes leftover after parsing attributes in process `syz.1.543'.
[   98.174337][   T40] kauditd_printk_skb: 1752 callbacks suppressed
[   98.174349][   T40] audit: type=1400 audit(1748197399.114:21673): avc:  denied  { search } for  pid=7673 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   98.199209][   T40] audit: type=1400 audit(1748197399.114:21674): avc:  denied  { search } for  pid=7673 comm="dhcpcd-run-hook" name="dhcpcd" dev="tmpfs" ino=1898 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   98.207584][   T40] audit: type=1400 audit(1748197399.104:21672): avc:  denied  { bpf } for  pid=7675 comm="syz.0.544" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   98.215797][   T40] audit: type=1400 audit(1748197399.114:21675): avc:  denied  { search } for  pid=7673 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1902 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   98.226629][ T7673] audit: audit_backlog=65 > audit_backlog_limit=64
[   98.228696][ T7673] audit: audit_lost=16 audit_rate_limit=0 audit_backlog_limit=64
[   98.231125][ T7673] audit: backlog limit exceeded
[   98.231799][ T5929] audit: audit_backlog=65 > audit_backlog_limit=64
[   98.235276][ T5929] audit: audit_lost=17 audit_rate_limit=0 audit_backlog_limit=64
[   98.236898][   T40] audit: type=1400 audit(1748197399.114:21676): avc:  denied  { perfmon } for  pid=7675 comm="syz.0.544" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   98.268384][ T7685] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[   98.360213][ T7690] Failed to initialize the IGMP autojoin socket (err -2)
[   98.433987][ T5946] Bluetooth: hci1: command 0x0406 tx timeout
[   98.460234][ T7698] validate_nla: 4 callbacks suppressed
[   98.460246][ T7698] netlink: 'syz.3.552': attribute type 1 has an invalid length.
[   98.748214][ T7707] netlink: 8 bytes leftover after parsing attributes in process `syz.2.554'.
[   98.865511][ T7707] serio: Serial port ptm0
[   99.049014][ T7707] mmap: syz.2.554 (7707) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   99.129576][ T7739] FAULT_INJECTION: forcing a failure.
[   99.129576][ T7739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   99.133718][ T7739] CPU: 0 UID: 0 PID: 7739 Comm: syz.1.562 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[   99.133734][ T7739] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   99.133741][ T7739] Call Trace:
[   99.133745][ T7739]  <TASK>
[   99.133750][ T7739]  dump_stack_lvl+0x16c/0x1f0
[   99.133770][ T7739]  should_fail_ex+0x512/0x640
[   99.133787][ T7739]  _copy_from_iter+0x2a4/0x15b0
[   99.133805][ T7739]  ? __alloc_skb+0x200/0x380
[   99.133818][ T7739]  ? __pfx__copy_from_iter+0x10/0x10
[   99.133835][ T7739]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   99.133854][ T7739]  netlink_sendmsg+0x829/0xdd0
[   99.133871][ T7739]  ? __pfx_netlink_sendmsg+0x10/0x10
[   99.133890][ T7739]  ____sys_sendmsg+0xa95/0xc70
[   99.133907][ T7739]  ? copy_msghdr_from_user+0x10a/0x160
[   99.133919][ T7739]  ? __pfx_____sys_sendmsg+0x10/0x10
[   99.133941][ T7739]  ___sys_sendmsg+0x134/0x1d0
[   99.133954][ T7739]  ? __pfx____sys_sendmsg+0x10/0x10
[   99.133983][ T7739]  __sys_sendmsg+0x16d/0x220
[   99.133996][ T7739]  ? __pfx___sys_sendmsg+0x10/0x10
[   99.134012][ T7739]  ? rcu_is_watching+0x12/0xc0
[   99.134030][ T7739]  do_syscall_64+0xcd/0x260
[   99.134047][ T7739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.134059][ T7739] RIP: 0033:0x7f785c98e969
[   99.134068][ T7739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.134078][ T7739] RSP: 002b:00007f785d790038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   99.134089][ T7739] RAX: ffffffffffffffda RBX: 00007f785cbb5fa0 RCX: 00007f785c98e969
[   99.134096][ T7739] RDX: 0000000000040000 RSI: 0000200000000040 RDI: 0000000000000003
[   99.134102][ T7739] RBP: 00007f785d790090 R08: 0000000000000000 R09: 0000000000000000
[   99.134109][ T7739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.134115][ T7739] R13: 0000000000000000 R14: 00007f785cbb5fa0 R15: 00007ffe86e93508
[   99.134128][ T7739]  </TASK>
[   99.376002][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[   99.378166][ T5943] Bluetooth: hci3: command 0x0406 tx timeout
[   99.379616][ T7751] kernel read not supported for file /policy (pid: 7751 comm: syz.2.566)
[   99.629853][ T7765] netlink: 4 bytes leftover after parsing attributes in process `syz.0.569'.
[   99.639031][ T7765] netlink: 4 bytes leftover after parsing attributes in process `syz.0.569'.
[   99.681753][ T7765] can0: slcan on ptm0.
[   99.792838][ T7762] can0 (unregistered): slcan off ptm0.
[  100.070816][ T7786] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  100.091986][ T7788] netlink: 24 bytes leftover after parsing attributes in process `syz.1.576'.
[  100.126078][ T7788] netlink: 264 bytes leftover after parsing attributes in process `syz.1.576'.
[  100.129016][ T7788] netlink: 56 bytes leftover after parsing attributes in process `syz.1.576'.
[  100.187055][  T835] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  100.358223][  T835] usb 7-1: Using ep0 maxpacket: 16
[  100.379209][  T835] usb 7-1: config 0 has an invalid interface number: 8 but max is 0
[  100.389186][  T835] usb 7-1: config 0 has no interface number 0
[  100.398962][  T835] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  100.408473][  T835] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  100.426604][  T835] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  100.432173][  T835] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  100.440228][  T835] usb 7-1: Product: syz
[  100.442249][  T835] usb 7-1: SerialNumber: syz
[  100.454930][  T835] usb 7-1: config 0 descriptor??
[  100.473051][  T835] cm109 7-1:0.8: invalid payload size 0, expected 4
[  100.478874][  T835] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.8/input/input9
[  100.675889][ T7796] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2878)
[  100.680552][ T7796] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[  100.863587][ T7801] netlink: 72 bytes leftover after parsing attributes in process `syz.3.581'.
[  101.181484][    C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[  101.182217][ T5991] usb 7-1: USB disconnect, device number 4
[  101.183885][    C1] cm109 7-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  101.248341][ T5991] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  101.584204][ T7822] bridge0: port 3(gretap0) entered disabled state
[  101.598142][ T5943] Bluetooth: hci3: command 0x0406 tx timeout
[  101.623235][ T7823] input: syz0 as /devices/virtual/input/input10
[  101.679847][ T7826] QAT: Stopping all acceleration devices.
[  101.699744][ T7823] netlink: 16 bytes leftover after parsing attributes in process `syz.3.587'.
[  101.898461][ T7827] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  101.905893][ T7827] ip6erspan0: entered promiscuous mode
[  102.232779][ T7838] netlink: 20 bytes leftover after parsing attributes in process `syz.0.592'.
[  103.023676][ T7870] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.182375][ T7860] Falling back ldisc for ttyS3.
[  103.508483][ T7880] program syz.2.603 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  103.511904][   T40] kauditd_printk_skb: 1578 callbacks suppressed
[  103.511913][   T40] audit: type=1400 audit(1748197404.124:23203): avc:  denied  { getattr } for  pid=7856 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.wlan0.link" dev="tmpfs" ino=3494 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  103.522034][   T40] audit: type=1400 audit(1748197404.124:23204): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  103.565203][   T40] audit: type=1400 audit(1748197404.124:23205): avc:  denied  { read write open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  103.572644][   T40] audit: type=1400 audit(1748197404.124:23206): avc:  denied  { ioctl } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  103.616396][   T40] audit: type=1400 audit(1748197404.124:23207): avc:  denied  { read write } for  pid=5929 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  103.640098][   T40] audit: type=1400 audit(1748197404.124:23208): avc:  denied  { read write open } for  pid=5929 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  103.647749][   T40] audit: type=1400 audit(1748197404.124:23209): avc:  denied  { ioctl } for  pid=5929 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  103.659031][   T40] audit: type=1400 audit(1748197404.143:23210): avc:  denied  { prog_load } for  pid=7886 comm="syz.0.609" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  103.682909][   T40] audit: type=1400 audit(1748197404.180:23211): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  103.690754][   T40] audit: type=1400 audit(1748197404.180:23212): avc:  denied  { read write open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  103.822220][ T5946] Bluetooth: hci3: command 0x0406 tx timeout
[  103.907743][ T6408] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  103.908757][ T5946] Bluetooth: hci1: command 0x0406 tx timeout
[  103.911044][ T6408] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  104.859068][ T7921] FAULT_INJECTION: forcing a failure.
[  104.859068][ T7921] name failslab, interval 1, probability 0, space 0, times 0
[  104.869481][ T7921] CPU: 3 UID: 0 PID: 7921 Comm: syz.2.619 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  104.869497][ T7921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.869504][ T7921] Call Trace:
[  104.869513][ T7921]  <TASK>
[  104.869518][ T7921]  dump_stack_lvl+0x16c/0x1f0
[  104.869549][ T7921]  should_fail_ex+0x512/0x640
[  104.869569][ T7921]  ? fs_reclaim_acquire+0xae/0x150
[  104.869585][ T7921]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  104.869602][ T7921]  should_failslab+0xc2/0x120
[  104.869615][ T7921]  __kmalloc_noprof+0xd2/0x510
[  104.869629][ T7921]  tomoyo_realpath_from_path+0xc2/0x6e0
[  104.869647][ T7921]  ? tomoyo_profile+0x47/0x60
[  104.869660][ T7921]  tomoyo_path_number_perm+0x245/0x580
[  104.869674][ T7921]  ? tomoyo_path_number_perm+0x237/0x580
[  104.869689][ T7921]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  104.869705][ T7921]  ? find_held_lock+0x2b/0x80
[  104.869731][ T7921]  ? find_held_lock+0x2b/0x80
[  104.869744][ T7921]  ? hook_file_ioctl_common+0x145/0x410
[  104.869759][ T7921]  ? __fget_files+0x20e/0x3c0
[  104.869776][ T7921]  security_file_ioctl+0x9b/0x240
[  104.869794][ T7921]  __x64_sys_ioctl+0xb7/0x200
[  104.869810][ T7921]  do_syscall_64+0xcd/0x260
[  104.869827][ T7921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.869838][ T7921] RIP: 0033:0x7fdd1918e969
[  104.869848][ T7921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.869859][ T7921] RSP: 002b:00007fdd19f26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  104.869870][ T7921] RAX: ffffffffffffffda RBX: 00007fdd193b5fa0 RCX: 00007fdd1918e969
[  104.869889][ T7921] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  104.869896][ T7921] RBP: 00007fdd19f26090 R08: 0000000000000000 R09: 0000000000000000
[  104.869902][ T7921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.869908][ T7921] R13: 0000000000000000 R14: 00007fdd193b5fa0 R15: 00007ffded958d48
[  104.869923][ T7921]  </TASK>
[  104.869980][ T7921] ERROR: Out of memory at tomoyo_realpath_from_path.
[  105.032009][ T7908] Bluetooth: hci3: Opcode 0x0401 failed: -4
[  105.341866][ T7939] block nbd2: shutting down sockets
[  106.058436][ T5946] Bluetooth: hci3: command 0x0406 tx timeout
[  106.131302][ T6408] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  106.136917][ T6408] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  106.141689][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  106.325460][ T7974] FAULT_INJECTION: forcing a failure.
[  106.325460][ T7974] name failslab, interval 1, probability 0, space 0, times 0
[  106.334244][ T7974] CPU: 2 UID: 0 PID: 7974 Comm: syz.3.633 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  106.334261][ T7974] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.334268][ T7974] Call Trace:
[  106.334278][ T7974]  <TASK>
[  106.334282][ T7974]  dump_stack_lvl+0x16c/0x1f0
[  106.334314][ T7974]  should_fail_ex+0x512/0x640
[  106.334334][ T7974]  ? fs_reclaim_acquire+0xae/0x150
[  106.334351][ T7974]  ? tomoyo_encode2+0x100/0x3e0
[  106.334368][ T7974]  should_failslab+0xc2/0x120
[  106.334380][ T7974]  __kmalloc_noprof+0xd2/0x510
[  106.334394][ T7974]  tomoyo_encode2+0x100/0x3e0
[  106.334412][ T7974]  tomoyo_encode+0x29/0x50
[  106.334428][ T7974]  tomoyo_realpath_from_path+0x18f/0x6e0
[  106.334447][ T7974]  ? tomoyo_profile+0x47/0x60
[  106.334459][ T7974]  tomoyo_path_number_perm+0x245/0x580
[  106.334473][ T7974]  ? tomoyo_path_number_perm+0x237/0x580
[  106.334488][ T7974]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  106.334504][ T7974]  ? find_held_lock+0x2b/0x80
[  106.334533][ T7974]  ? find_held_lock+0x2b/0x80
[  106.334546][ T7974]  ? hook_file_ioctl_common+0x145/0x410
[  106.334565][ T7974]  ? __fget_files+0x20e/0x3c0
[  106.334578][ T7974]  security_file_ioctl+0x9b/0x240
[  106.334596][ T7974]  __x64_sys_ioctl+0xb7/0x200
[  106.334612][ T7974]  do_syscall_64+0xcd/0x260
[  106.334630][ T7974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.334642][ T7974] RIP: 0033:0x7ff52b58e969
[  106.334651][ T7974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.334662][ T7974] RSP: 002b:00007ff52c37b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  106.334673][ T7974] RAX: ffffffffffffffda RBX: 00007ff52b7b5fa0 RCX: 00007ff52b58e969
[  106.334680][ T7974] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  106.334686][ T7974] RBP: 00007ff52c37b090 R08: 0000000000000000 R09: 0000000000000000
[  106.334693][ T7974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.334699][ T7974] R13: 0000000000000000 R14: 00007ff52b7b5fa0 R15: 00007ffd06ee9938
[  106.334713][ T7974]  </TASK>
[  106.334724][ T7974] ERROR: Out of memory at tomoyo_realpath_from_path.
[  106.866790][ T8002] hub 9-0:1.0: USB hub found
[  106.868719][ T8002] hub 9-0:1.0: 1 port detected
[  106.883280][ T8002] openvswitch: netlink: VXLAN extension message has 9 unknown bytes.
[  106.995488][ T8008] netlink: 256 bytes leftover after parsing attributes in process `syz.2.646'.
[  107.005712][ T8008] ksmbd: Unknown IPC event: 0, ignore.
[  107.019745][ T8008] dlm: no local IP address has been set
[  107.025757][ T8008] dlm: cannot start dlm midcomms -107
[  107.147926][ T8017] netlink: 4 bytes leftover after parsing attributes in process `syz.2.649'.
[  107.294058][ T8024] syz.2.653 (8024): /proc/8023/oom_adj is deprecated, please use /proc/8023/oom_score_adj instead.
[  107.420441][ T8031] netlink: 24 bytes leftover after parsing attributes in process `syz.0.652'.
[  107.664230][ T8039] netlink: 256 bytes leftover after parsing attributes in process `syz.1.657'.
[  107.667034][ T8039] ksmbd: Unknown IPC event: 0, ignore.
[  107.673077][ T8039] dlm: no local IP address has been set
[  107.674829][ T8039] dlm: cannot start dlm midcomms -107
[  107.893659][ T8051] tun0: tun_chr_ioctl cmd 1074025675
[  107.895500][ T8051] tun0: persist enabled
[  107.897248][ T8051] tun0: tun_chr_ioctl cmd 1074025675
[  107.899141][ T8051] tun0: persist enabled
[  107.908885][ T8051] tun0: tun_chr_ioctl cmd 1074025676
[  107.910587][ T8051] tun0: owner set to 0
[  107.935893][ T8051] netlink: 8 bytes leftover after parsing attributes in process `syz.1.662'.
[  108.183075][ T8061] FAULT_INJECTION: forcing a failure.
[  108.183075][ T8061] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.194209][ T8061] CPU: 0 UID: 0 PID: 8061 Comm: syz.3.667 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  108.194226][ T8061] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.194234][ T8061] Call Trace:
[  108.194238][ T8061]  <TASK>
[  108.194242][ T8061]  dump_stack_lvl+0x16c/0x1f0
[  108.194277][ T8061]  should_fail_ex+0x512/0x640
[  108.194299][ T8061]  _copy_to_user+0x32/0xd0
[  108.194317][ T8061]  copy_siginfo_to_user+0x27/0xc0
[  108.194334][ T8061]  x64_setup_rt_frame+0x811/0xcf0
[  108.194354][ T8061]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  108.194369][ T8061]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  108.194393][ T8061]  arch_do_signal_or_restart+0x5e6/0x7d0
[  108.194408][ T8061]  ? hook_file_ioctl_common+0x145/0x410
[  108.194420][ T8061]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  108.194444][ T8061]  ? selinux_file_ioctl+0xb4/0x270
[  108.194472][ T8061]  syscall_exit_to_user_mode+0x150/0x2a0
[  108.194489][ T8061]  do_syscall_64+0xda/0x260
[  108.194506][ T8061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.194518][ T8061] RIP: 0033:0x7ff52b58e969
[  108.194539][ T8061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.194556][ T8061] RSP: 002b:00007ff52c37b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  108.194569][ T8061] RAX: fffffffffffffff2 RBX: 00007ff52b7b5fa0 RCX: 00007ff52b58e969
[  108.194576][ T8061] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  108.194583][ T8061] RBP: 00007ff52c37b090 R08: 0000000000000000 R09: 0000000000000000
[  108.194589][ T8061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.194595][ T8061] R13: 0000000000000000 R14: 00007ff52b7b5fa0 R15: 00007ffd06ee9938
[  108.194609][ T8061]  </TASK>
[  108.262316][    C0] vkms_vblank_simulate: vblank timer overrun
[  108.269953][ T5946] Bluetooth: hci3: command 0x0406 tx timeout
[  108.282781][ T8073] netlink: 256 bytes leftover after parsing attributes in process `syz.1.670'.
[  108.285596][ T8073] ksmbd: Unknown IPC event: 0, ignore.
[  108.287390][ T6408] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  108.289545][ T6408] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  108.311277][ T8070] dlm: no local IP address has been set
[  108.331336][ T8070] dlm: cannot start dlm midcomms -107
[  108.877942][   T40] kauditd_printk_skb: 1210 callbacks suppressed
[  108.877953][   T40] audit: type=1400 audit(1748197409.129:24423): avc:  denied  { create } for  pid=8094 comm="syz.0.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  108.887969][   T40] audit: type=1400 audit(1748197409.147:24424): avc:  denied  { write } for  pid=8094 comm="syz.0.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  108.899818][   T40] audit: type=1400 audit(1748197409.147:24425): avc:  denied  { create } for  pid=8094 comm="syz.0.679" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  108.906495][ T8095] netlink: 'syz.0.679': attribute type 29 has an invalid length.
[  108.909868][ T8095] netlink: 'syz.0.679': attribute type 29 has an invalid length.
[  108.915517][   T40] audit: type=1400 audit(1748197409.147:24426): avc:  denied  { ioctl } for  pid=8094 comm="syz.0.679" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=23416 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  108.925174][   T40] audit: type=1400 audit(1748197409.147:24427): avc:  denied  { ioctl } for  pid=8094 comm="syz.0.679" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=23416 ioctlcmd=0xaa00 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  108.935516][   T40] audit: type=1400 audit(1748197409.147:24428): avc:  denied  { ioctl } for  pid=8094 comm="syz.0.679" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=23416 ioctlcmd=0xaa05 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  108.945254][   T40] audit: type=1400 audit(1748197409.147:24429): avc:  denied  { ioctl } for  pid=8094 comm="syz.0.679" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=23416 ioctlcmd=0xaa00 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  108.959123][   T40] audit: type=1400 audit(1748197409.147:24430): avc:  denied  { create } for  pid=8094 comm="syz.0.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  108.976236][   T40] audit: type=1400 audit(1748197409.147:24431): avc:  denied  { create } for  pid=8094 comm="syz.0.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  108.988921][   T40] audit: type=1400 audit(1748197409.147:24432): avc:  denied  { create } for  pid=8094 comm="syz.0.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  109.461136][ T8113] netlink: 256 bytes leftover after parsing attributes in process `syz.0.684'.
[  109.463963][ T8113] ksmbd: Unknown IPC event: 0, ignore.
[  109.484707][ T8117] netlink: 20 bytes leftover after parsing attributes in process `syz.2.686'.
[  109.490695][ T8117] netlink: 20 bytes leftover after parsing attributes in process `syz.2.686'.
[  109.953691][ T8145] 9p: Unknown access argument 18446744073709551615: -34
[  110.249503][ T8152] : renamed from vlan0 (while UP)
[  110.383515][ T8159] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  110.448546][ T8163] Bluetooth: hci4: Frame reassembly failed (-84)
[  110.452467][   T84] Bluetooth: hci4: Frame reassembly failed (-84)
[  110.513046][ T8166] netlink: 14212 bytes leftover after parsing attributes in process `syz.1.701'.
[  111.136685][ T8187] netlink: 'syz.3.710': attribute type 10 has an invalid length.
[  111.219744][ T5991] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  111.361082][ T8192] netlink: 256 bytes leftover after parsing attributes in process `syz.3.712'.
[  111.364035][ T8192] ksmbd: Unknown IPC event: 0, ignore.
[  111.400643][ T5991] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  111.404207][ T5991] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  111.407020][ T5991] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.425413][ T5991] usb 5-1: config 0 descriptor??
[  111.653787][ T5991] usbhid 5-1:0.0: can't add hid device: -71
[  111.656028][ T5991] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  111.660783][ T5991] usb 5-1: USB disconnect, device number 7
[  112.000459][ T5991] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  112.172398][ T5991] usb 5-1: Using ep0 maxpacket: 32
[  112.179584][ T5991] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.183951][ T5991] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  112.186767][ T5991] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.195908][ T5991] usb 5-1: config 0 descriptor??
[  112.205963][ T5991] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  112.212151][ T5991] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  112.423745][ T8185] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.426626][ T8185] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.440829][   T24] usb 5-1: USB disconnect, device number 8
[  112.445605][   T24] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  112.582335][ T8216] use of bytesused == 0 is deprecated and will be removed in the future,
[  112.586194][ T8216] use the actual size instead.
[  112.631049][ T5946] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  112.631333][ T5943] Bluetooth: hci4: command 0xfc11 tx timeout
[  112.888527][ T8226] netlink: 256 bytes leftover after parsing attributes in process `syz.0.722'.
[  112.891293][ T8226] ksmbd: Unknown IPC event: 0, ignore.
[  113.495059][ T8266] netlink: 'syz.0.735': attribute type 29 has an invalid length.
[  113.525618][ T8268] netlink: 12 bytes leftover after parsing attributes in process `syz.3.737'.
[  113.530794][ T8268] netlink: 12 bytes leftover after parsing attributes in process `syz.3.737'.
[  113.594376][ T8269] netlink: 844 bytes leftover after parsing attributes in process `syz.1.736'.
[  113.984218][ T8287] ªªªªªª: renamed from lo
[  114.226226][   T40] kauditd_printk_skb: 902 callbacks suppressed
[  114.226238][   T40] audit: type=1400 audit(1748197414.142:25335): avc:  denied  { perfmon } for  pid=8299 comm="syz.3.748" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.247017][   T40] audit: type=1400 audit(1748197414.142:25336): avc:  denied  { perfmon } for  pid=8299 comm="syz.3.748" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.253400][   T40] audit: type=1400 audit(1748197414.142:25337): avc:  denied  { bpf } for  pid=8299 comm="syz.3.748" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.270556][   T40] audit: type=1400 audit(1748197414.142:25338): avc:  denied  { bpf } for  pid=8299 comm="syz.3.748" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.276905][   T40] audit: type=1400 audit(1748197414.142:25339): avc:  denied  { bpf } for  pid=8299 comm="syz.3.748" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.291182][   T40] audit: type=1400 audit(1748197414.142:25340): avc:  denied  { bpf } for  pid=8299 comm="syz.3.748" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.297725][   T40] audit: type=1400 audit(1748197414.142:25341): avc:  denied  { bpf } for  pid=8299 comm="syz.3.748" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.305933][   T40] audit: type=1400 audit(1748197414.142:25342): avc:  denied  { bpf } for  pid=8299 comm="syz.3.748" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.314527][   T40] audit: type=1400 audit(1748197414.152:25343): avc:  denied  { bpf } for  pid=8299 comm="syz.3.748" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.322099][   T40] audit: type=1400 audit(1748197414.152:25344): avc:  denied  { bpf } for  pid=8299 comm="syz.3.748" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  114.491336][ T8320] dlm: no local IP address has been set
[  114.493150][ T8320] dlm: cannot start dlm midcomms -107
[  114.786815][ T8345] netlink: 8 bytes leftover after parsing attributes in process `syz.0.766'.
[  114.789623][ T8345] netlink: 24 bytes leftover after parsing attributes in process `syz.0.766'.
[  114.860344][ T8353] netlink: 'syz.0.768': attribute type 1 has an invalid length.
[  114.862843][ T8353] netlink: 224 bytes leftover after parsing attributes in process `syz.0.768'.
[  114.929344][ T5935] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  115.100340][ T5935] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  115.105887][ T5935] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  115.116167][ T5935] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  115.119997][ T5935] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.367893][ T5935] usb 6-1: usb_control_msg returned -32
[  115.370338][ T5935] usbtmc 6-1:16.0: can't read capabilities
[  115.373131][ T8369] input: syz0 as /devices/virtual/input/input12
[  115.384691][ T8369] QAT: Stopping all acceleration devices.
[  115.396641][ T8369] netlink: 16 bytes leftover after parsing attributes in process `syz.0.776'.
[  115.690630][ T8371] tipc: Started in network mode
[  115.692738][ T8371] tipc: Node identity 7f000001, cluster identity 4711
[  115.695795][ T8371] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  115.704572][ T8371] futex_wake_op: syz.0.777 tries to shift op by -1; fix this program
[  115.927092][ T8393] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  115.999948][ T8395] dlm: no local IP address has been set
[  116.001869][ T8395] dlm: cannot start dlm midcomms -107
[  117.519195][ T8426] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.524348][ T8426] bond0: (slave rose0): Enslaving as an active interface with an up link
[  117.652488][ T8440] binder: 8439:8440 ioctl c018620c 200000000380 returned -22
[  117.888975][ T5935] usb 6-1: USB disconnect, device number 7
[  118.003103][ T8464] ptrace attach of "/syz-executor exec"[5929] was attempted by "нˆ "[8464]
[  118.106849][ T8471] vlan2: entered allmulticast mode
[  118.108541][ T8471] bond0: entered allmulticast mode
[  118.269514][ T8501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.818'.
[  118.307165][ T8501] netlink: 4 bytes leftover after parsing attributes in process `syz.3.818'.
[  118.310922][ T8498] netlink: 8 bytes leftover after parsing attributes in process `syz.1.816'.
[  118.313758][ T8498] netlink: 'syz.1.816': attribute type 12 has an invalid length.
[  118.876064][ T8536] netlink: 'syz.3.827': attribute type 10 has an invalid length.
[  118.880394][ T8536] __nla_validate_parse: 1 callbacks suppressed
[  118.880404][ T8536] netlink: 40 bytes leftover after parsing attributes in process `syz.3.827'.
[  118.892523][ T8536] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  119.064151][ T8545] netlink: 256 bytes leftover after parsing attributes in process `syz.3.830'.
[  119.067551][ T8545] ksmbd: Unknown IPC event: 0, ignore.
[  119.072153][ T8545] dlm: no local IP address has been set
[  119.073998][ T8545] dlm: cannot start dlm midcomms -107
[  119.584720][   T40] kauditd_printk_skb: 898 callbacks suppressed
[  119.584732][   T40] audit: type=1400 audit(1748197419.156:26243): avc:  denied  { read } for  pid=8588 comm="syz.0.846" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  119.602151][   T40] audit: type=1400 audit(1748197419.156:26244): avc:  denied  { read open } for  pid=8588 comm="syz.0.846" path="/dev/dri/card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  119.622585][   T40] audit: type=1400 audit(1748197419.156:26245): avc:  denied  { read append } for  pid=8588 comm="syz.0.846" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  119.628381][ T8589] netlink: 256 bytes leftover after parsing attributes in process `syz.1.845'.
[  119.629754][   T40] audit: type=1400 audit(1748197419.156:26246): avc:  denied  { read open } for  pid=8588 comm="syz.0.846" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  119.632552][ T8589] ksmbd: Unknown IPC event: 0, ignore.
[  119.639732][   T40] audit: type=1400 audit(1748197419.156:26247): avc:  denied  { prog_load } for  pid=8588 comm="syz.0.846" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  119.646330][ T8589] dlm: no local IP address has been set
[  119.647350][   T40] audit: type=1400 audit(1748197419.156:26248): avc:  denied  { bpf } for  pid=8588 comm="syz.0.846" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  119.649035][ T8589] dlm: cannot start dlm midcomms -107
[  119.655340][   T40] audit: type=1400 audit(1748197419.156:26249): avc:  denied  { create } for  pid=8588 comm="syz.0.846" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  119.662994][   T40] audit: type=1400 audit(1748197419.156:26250): avc:  denied  { ioctl } for  pid=8588 comm="syz.0.846" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  119.670513][   T40] audit: type=1400 audit(1748197419.193:26251): avc:  denied  { read } for  pid=8587 comm="syz.1.845" dev="nsfs" ino=4026532882 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  119.677150][   T40] audit: type=1400 audit(1748197419.193:26252): avc:  denied  { read open } for  pid=8587 comm="syz.1.845" path="net:[4026532882]" dev="nsfs" ino=4026532882 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  120.076182][ T8619] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.856'.
[  120.091397][ T8619] syz.2.856: attempt to access beyond end of device
[  120.091397][ T8619] loop2: rw=0, sector=0, nr_sectors = 1 limit=0
[  120.093808][ T8618] netlink: 256 bytes leftover after parsing attributes in process `syz.0.855'.
[  120.096944][ T8619] (syz.2.856,8619,3):ocfs2_get_sector:1714 ERROR: status = -5
[  120.099118][ T8618] ksmbd: Unknown IPC event: 0, ignore.
[  120.102217][ T8618] dlm: no local IP address has been set
[  120.104577][ T8619] (syz.2.856,8619,3):ocfs2_sb_probe:753 ERROR: status = -5
[  120.108506][ T8618] dlm: cannot start dlm midcomms -107
[  120.109330][ T8619] (syz.2.856,8619,3):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  120.114812][ T8619] (syz.2.856,8619,3):ocfs2_fill_super:1177 ERROR: status = -5
[  120.194478][ T8624] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  120.196697][ T8624] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  120.200986][ T8624] vhci_hcd vhci_hcd.0: Device attached
[  120.207666][ T8624] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(8)
[  120.209904][ T8624] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  120.213273][ T8624] vhci_hcd vhci_hcd.0: Device attached
[  120.321013][ T8627] vhci_hcd: connection closed
[  120.321071][ T8625] vhci_hcd: connection closed
[  120.324898][ T1143] vhci_hcd: stop threads
[  120.329342][ T1143] vhci_hcd: release socket
[  120.333154][ T1143] vhci_hcd: disconnect device
[  120.335783][ T1143] vhci_hcd: stop threads
[  120.338207][ T1143] vhci_hcd: release socket
[  120.344483][ T1143] vhci_hcd: disconnect device
[  120.392632][   T24] vhci_hcd: vhci_device speed not set
[  120.400359][ T8639] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  120.869824][ T8654] nvme_fabrics: missing parameter 'transport=%s'
[  120.872017][ T8654] nvme_fabrics: missing parameter 'nqn=%s'
[  121.065270][ T8666] netlink: 'syz.2.872': attribute type 1 has an invalid length.
[  121.070063][ T8666] netlink: 8 bytes leftover after parsing attributes in process `syz.2.872'.
[  121.073232][ T8666] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  121.075711][ T8666] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  121.227562][ T8669] Failed to initialize the IGMP autojoin socket (err -2)
[  121.600971][ T8682] tmpfs: Unknown parameter 'usrquota'
[  121.826848][ T8698] fuse: Invalid rootmode
[  121.833595][ T8696] syz.1.882: attempt to access beyond end of device
[  121.833595][ T8696] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  121.838525][ T8696] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  121.956020][ T8699] kvm_pr_unimpl_wrmsr: 12 callbacks suppressed
[  121.956034][ T8699] kvm: kvm [8695]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x80
[  121.960949][ T8699] kvm: kvm [8695]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc2) = 0x80
[  122.236172][ T8712] program syz.1.887 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  122.934203][ T8727] openvswitch: netlink: IP tunnel dst address not specified
[  123.029862][ T8728] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.222572][ T8728] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  123.411274][ T8728] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  123.414207][ T8728] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  123.422059][ T8728] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  123.425719][ T8728] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  123.866721][  T833] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  124.037875][  T833] usb 5-1: Using ep0 maxpacket: 32
[  124.057359][  T833] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  124.070158][  T833] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  124.078081][  T833] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  124.087081][ T8748] kvm: kvm [8747]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x80
[  124.089588][  T833] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  124.090032][ T8748] kvm: kvm [8747]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc2) = 0x80
[  124.099520][  T833] usb 5-1: config 0 interface 0 has no altsetting 0
[  124.127527][  T833] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  124.136991][  T833] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  124.146448][  T833] usb 5-1: Product: syz
[  124.149209][  T833] usb 5-1: Manufacturer: syz
[  124.155233][  T833] usb 5-1: SerialNumber: syz
[  124.171025][  T833] usb 5-1: config 0 descriptor??
[  124.191751][  T833] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  124.210675][  T833] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  124.431333][  T833] usb 5-1: USB disconnect, device number 9
[  124.465150][  T833] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  124.556212][ T8752] netlink: 8 bytes leftover after parsing attributes in process `syz.3.901'.
[  124.944320][   T40] kauditd_printk_skb: 722 callbacks suppressed
[  124.944332][   T40] audit: type=1400 audit(1748197424.160:26975): avc:  denied  { read } for  pid=8767 comm="syz.2.906" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  124.954235][   T40] audit: type=1400 audit(1748197424.160:26976): avc:  denied  { read open } for  pid=8767 comm="syz.2.906" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  124.979334][   T40] audit: type=1400 audit(1748197424.170:26977): avc:  denied  { ioctl } for  pid=8767 comm="syz.2.906" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  124.998988][   T40] audit: type=1400 audit(1748197424.217:26978): avc:  denied  { read } for  pid=8767 comm="syz.2.906" dev="nsfs" ino=4026533031 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  125.011000][   T40] audit: type=1400 audit(1748197424.217:26979): avc:  denied  { read open } for  pid=8767 comm="syz.2.906" path="net:[4026533031]" dev="nsfs" ino=4026533031 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  125.019541][   T40] audit: type=1400 audit(1748197424.235:26980): avc:  denied  { create } for  pid=8767 comm="syz.2.906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  125.023321][ T8768] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0
[  125.177729][ T8774] trusted_key: encrypted_key: keyword 'new0default' not recognized
[  125.197266][ T8776] audit: audit_backlog=65 > audit_backlog_limit=64
[  125.197294][ T8774] audit: audit_backlog=65 > audit_backlog_limit=64
[  125.199446][ T8776] audit: audit_lost=35 audit_rate_limit=0 audit_backlog_limit=64
[  125.201398][ T8774] audit: audit_lost=36 audit_rate_limit=0 audit_backlog_limit=64
[  125.213143][ T8776] netlink: 'syz.1.908': attribute type 5 has an invalid length.
[  125.764230][ T8794] capability: warning: `syz.0.913' uses 32-bit capabilities (legacy support in use)
[  126.358031][ T8802] can: request_module (can-proto-0) failed.
[  126.552007][ T8817] netlink: 8 bytes leftover after parsing attributes in process `syz.3.920'.
[  126.600702][ T8817] openvswitch: netlink: Key 6 has unexpected len 0 expected 2
[  127.110823][ T8841] delete_channel: no stack
[  127.117030][   T66] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  128.670665][ T8891] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  128.827092][ T8905] dlm: plock device version mismatch: kernel (1.2.0), user (4207687471.1574799195.3139252685)
[  128.926721][ T8910] netlink: 'syz.0.953': attribute type 10 has an invalid length.
[  128.929619][ T8910] macvlan0: entered promiscuous mode
[  128.931432][ T8910] macvlan0: entered allmulticast mode
[  128.934787][ T8910] veth1_vlan: entered allmulticast mode
[  128.939113][ T8910] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  129.134818][ T8918] netlink: 256 bytes leftover after parsing attributes in process `syz.0.955'.
[  129.138661][ T8918] ksmbd: Unknown IPC event: 0, ignore.
[  129.143382][ T8918] dlm: no local IP address has been set
[  129.145313][ T8918] dlm: cannot start dlm midcomms -107
[  129.830275][ T8949] netlink: 256 bytes leftover after parsing attributes in process `syz.2.965'.
[  129.833636][ T8949] ksmbd: Unknown IPC event: 0, ignore.
[  129.838769][ T8949] dlm: no local IP address has been set
[  129.840906][ T8949] dlm: cannot start dlm midcomms -107
[  130.058651][ T8960] ALSA: mixer_oss: invalid OSS volume 'SPEAKE'
[  130.060657][ T8960] ALSA: mixer_oss: invalid index 40000
[  130.063611][ T8960] netlink: 8 bytes leftover after parsing attributes in process `syz.0.969'.
[  130.216660][ T8971] netlink: 8 bytes leftover after parsing attributes in process `syz.0.974'.
[  130.308308][   T40] kauditd_printk_skb: 1375 callbacks suppressed
[  130.308319][   T40] audit: type=1400 audit(1748197429.184:28249): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  130.319903][   T40] audit: type=1400 audit(1748197429.184:28250): avc:  denied  { read write open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  130.330712][   T40] audit: type=1400 audit(1748197429.184:28251): avc:  denied  { ioctl } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  130.340562][   T40] audit: type=1400 audit(1748197429.221:28252): avc:  denied  { read } for  pid=8976 comm="syz.1.975" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  130.358038][   T40] audit: type=1400 audit(1748197429.221:28253): avc:  denied  { read open } for  pid=8976 comm="syz.1.975" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  130.366377][   T40] audit: type=1400 audit(1748197429.221:28254): avc:  denied  { ioctl } for  pid=8976 comm="syz.1.975" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  130.377468][   T40] audit: type=1400 audit(1748197429.230:28255): avc:  denied  { read } for  pid=8976 comm="syz.1.975" dev="nsfs" ino=4026532882 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  130.383804][   T40] audit: type=1400 audit(1748197429.230:28256): avc:  denied  { read open } for  pid=8976 comm="syz.1.975" path="net:[4026532882]" dev="nsfs" ino=4026532882 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  130.392724][   T40] audit: type=1400 audit(1748197429.249:28257): avc:  denied  { create } for  pid=8976 comm="syz.1.975" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  130.400349][   T40] audit: type=1400 audit(1748197429.249:28258): avc:  denied  { ioctl } for  pid=8976 comm="syz.1.975" path="socket:[30688]" dev="sockfs" ino=30688 ioctlcmd=0x89e8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  130.411530][ T8977] netlink: 256 bytes leftover after parsing attributes in process `syz.1.975'.
[  130.414315][ T8977] ksmbd: Unknown IPC event: 0, ignore.
[  130.431259][ T8977] dlm: no local IP address has been set
[  130.433060][ T8977] dlm: cannot start dlm midcomms -107
[  131.663887][ T9015] netlink: 256 bytes leftover after parsing attributes in process `syz.2.988'.
[  131.666715][ T9015] ksmbd: Unknown IPC event: 0, ignore.
[  131.672787][ T9015] dlm: no local IP address has been set
[  131.674610][ T9015] dlm: cannot start dlm midcomms -107
[  132.003122][ T9026] netlink: 24 bytes leftover after parsing attributes in process `syz.1.992'.
[  132.121529][ T9042] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  132.526816][  T833] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  132.565643][ T9058] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1003'.
[  132.697206][  T833] usb 5-1: Using ep0 maxpacket: 32
[  132.722791][  T833] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  132.726646][  T833] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  132.733974][  T833] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  132.736854][  T833] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.764418][  T833] usb 5-1: config 0 descriptor??
[  132.993422][  T833] usb 5-1: USB disconnect, device number 10
[  133.102216][ T5343] udevd[5343]: worker [6007] terminated by signal 33 (Unknown signal 33)
[  133.108769][ T9069] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1007'.
[  133.111607][ T5343] udevd[5343]: worker [6007] failed while handling '/devices/virtual/misc/kvm'
[  133.112374][ T9069] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1007'.
[  133.299297][ T5343] udevd[5343]: worker [6433] terminated by signal 33 (Unknown signal 33)
[  133.306947][ T5343] udevd[5343]: worker [6433] failed while handling '/devices/virtual/block/loop2'
[  133.334098][ T9056] syz.3.1003 (9056): drop_caches: 1
[  133.360159][ T9056] syz.3.1003 (9056): drop_caches: 1
[  133.594390][ T9101] team_slave_0: entered allmulticast mode
[  133.646450][ T9104] fuseblk: Unknown parameter 'rootoode'
[  133.666968][ T9104] overlay: ./bus is not a directory
[  133.727376][ T9113] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  133.964395][ T9128] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=30930 sclass=netlink_xfrm_socket pid=9128 comm=syz.1.1028
[  134.922193][ T9151] block nbd0: server does not support multiple connections per device.
[  134.927410][ T9151] block nbd0: shutting down sockets
[  135.044392][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  135.047124][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  135.089987][ T9169] batadv_slave_0: left promiscuous mode
[  135.109327][ T9170] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1041'.
[  135.113185][ T9170] ksmbd: Unknown IPC event: 0, ignore.
[  135.121174][ T9170] dlm: no local IP address has been set
[  135.127566][ T9170] dlm: cannot start dlm midcomms -107
[  135.346686][ T9186] trusted_key: syz.2.1049 sent an empty control message without MSG_MORE.
[  135.611734][ T9197] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1053'.
[  135.615818][ T9197] ksmbd: Unknown IPC event: 0, ignore.
[  135.621075][ T9197] dlm: no local IP address has been set
[  135.622827][ T9197] dlm: cannot start dlm midcomms -107
[  135.667997][   T40] kauditd_printk_skb: 1011 callbacks suppressed
[  135.668008][   T40] audit: type=1400 audit(1748197434.197:29270): avc:  denied  { read write } for  pid=5939 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.678720][   T40] audit: type=1400 audit(1748197434.207:29271): avc:  denied  { read write open } for  pid=5939 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.702295][   T40] audit: type=1400 audit(1748197434.207:29272): avc:  denied  { ioctl } for  pid=5939 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.719319][   T40] audit: type=1400 audit(1748197434.235:29273): avc:  denied  { read write } for  pid=5929 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.728270][   T40] audit: type=1400 audit(1748197434.244:29274): avc:  denied  { read write open } for  pid=5929 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.738646][   T40] audit: type=1400 audit(1748197434.244:29275): avc:  denied  { ioctl } for  pid=5929 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.748273][   T40] audit: type=1400 audit(1748197434.253:29276): avc:  denied  { create } for  pid=9201 comm="syz.3.1055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  135.755288][   T40] audit: type=1400 audit(1748197434.253:29277): avc:  denied  { read write } for  pid=5930 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.762814][   T40] audit: type=1400 audit(1748197434.253:29278): avc:  denied  { read write open } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.778329][   T40] audit: type=1400 audit(1748197434.253:29279): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  135.866634][ T9214] /dev/nullb0: Can't open blockdev
[  135.911557][ T9216] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1061'.
[  136.939099][ T9286] veth1_vlan: left allmulticast mode
[  136.944853][ T9286] macvlan0: left promiscuous mode
[  136.948718][ T9286] macvlan0: left allmulticast mode
[  136.952336][ T9286] ip6erspan0: left promiscuous mode
[  137.121073][ T9298] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  137.123135][ T9298] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  137.128439][ T9298] vhci_hcd vhci_hcd.0: Device attached
[  137.139217][ T9301] vhci_hcd: connection closed
[  137.140094][ T1143] vhci_hcd: stop threads
[  137.143066][ T1143] vhci_hcd: release socket
[  137.145043][ T1143] vhci_hcd: disconnect device
[  137.193926][ T9309] vivid-004: =================  START STATUS  =================
[  137.196418][ T9309] vivid-004: Radio HW Seek Mode: Bounded
[  137.200698][ T9309] vivid-004: Radio Programmable HW Seek: false
[  137.203781][ T9309] vivid-004: RDS Rx I/O Mode: Block I/O
[  137.205590][ T9309] vivid-004: Generate RBDS Instead of RDS: false
[  137.207631][ T9309] vivid-004: RDS Reception: true
[  137.209353][ T9309] vivid-004: RDS Program Type: 0 inactive
[  137.211198][ T9309] vivid-004: RDS PS Name:  inactive
[  137.212951][ T9309] vivid-004: RDS Radio Text:  inactive
[  137.214727][ T9309] vivid-004: RDS Traffic Announcement: false inactive
[  137.216896][ T9309] vivid-004: RDS Traffic Program: false inactive
[  137.218924][ T9309] vivid-004: RDS Music: false inactive
[  137.220912][ T9309] vivid-004: ==================  END STATUS  ==================
[  137.380926][ T9317] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1098'.
[  137.383768][ T9317] ksmbd: Unknown IPC event: 0, ignore.
[  137.390486][ T9317] dlm: no local IP address has been set
[  137.392300][ T9317] dlm: cannot start dlm midcomms -107
[  137.523745][ T9319] netlink: 'syz.2.1099': attribute type 1 has an invalid length.
[  137.906967][ T9348] kvm: kvm [9347]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001b)
[  138.007974][ T9354] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1112'.
[  138.766723][ T9383] cdrom: dropping to single frame dma
[  139.459076][ T9424] input: syz0 as /devices/virtual/input/input17
[  139.521536][ T9424] input: syz0 as /devices/virtual/input/input18
[  141.029535][   T40] kauditd_printk_skb: 1444 callbacks suppressed
[  141.029547][   T40] audit: type=1400 audit(1748197695.214:30724): avc:  denied  { create } for  pid=9498 comm="syz.2.1157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  141.049398][   T40] audit: type=1400 audit(1748197695.223:30725): avc:  denied  { recv } for  pid=33 comm="ksoftirqd/3" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=60366 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  141.064687][   T40] audit: type=1400 audit(1748197695.223:30726): avc:  denied  { recv } for  pid=33 comm="ksoftirqd/3" saddr=127.0.0.1 src=60366 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  141.083499][   T40] audit: type=1400 audit(1748197695.223:30727): avc:  denied  { recv } for  pid=5914 comm="sshd-session" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=60366 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  141.097609][   T40] audit: type=1400 audit(1748197695.233:30728): avc:  denied  { recv } for  pid=9487 comm="syz.3.1152" saddr=10.0.2.2 src=39210 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  141.112988][   T40] audit: type=1400 audit(1748197695.233:30729): avc:  denied  { recv } for  pid=9487 comm="syz.3.1152" saddr=10.0.2.2 src=39210 daddr=10.0.2.15 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  141.148069][   T40] audit: type=1400 audit(1748197695.233:30730): avc:  denied  { recv } for  pid=5914 comm="sshd-session" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=60366 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  141.172912][   T40] audit: type=1400 audit(1748197695.242:30731): avc:  denied  { bind } for  pid=9498 comm="syz.2.1157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  141.189293][   T40] audit: type=1400 audit(1748197695.242:30732): avc:  denied  { module_request } for  pid=9498 comm="syz.2.1157" kmod="crypto-cts(cbc(blowfish))" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  141.201888][   T40] audit: type=1400 audit(1748197695.279:30733): avc:  denied  { mounton } for  pid=9499 comm="syz.1.1158" path="/251/file0" dev="tmpfs" ino=1358 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  141.775026][ T9527] netlink: 'syz.0.1163': attribute type 16 has an invalid length.
[  141.777834][ T9527] netlink: 'syz.0.1163': attribute type 17 has an invalid length.
[  141.868924][ T9527] bridge0: port 3(gretap0) entered blocking state
[  141.871390][ T9527] bridge0: port 3(gretap0) entered forwarding state
[  141.909671][ T9527] 8021q: adding VLAN 0 to HW filter on device bond0
[  141.913887][ T9527] 8021q: adding VLAN 0 to HW filter on device team0
[  141.918017][ T9527] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  141.953377][ T9525] (unnamed net_device) (uninitialized): down delay (4) is not a multiple of miimon (8), value rounded to 0 ms
[  142.652165][ T9558] geneve2: entered promiscuous mode
[  142.653871][ T9558] geneve2: entered allmulticast mode
[  142.950974][ T9578] dummy0: entered promiscuous mode
[  143.115276][ T9584] netlink: 'syz.0.1182': attribute type 1 has an invalid length.
[  143.156518][ T9584] bond3: (slave wireguard0): The slave device specified does not support setting the MAC address
[  143.159899][ T9584] bond3: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[  143.167356][ T9584] wireguard: wireguard0: Could not create IPv4 socket
[  143.170086][ T9584] bond3: (slave wireguard0): Opening slave failed
[  143.489794][ T9600] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1187'.
[  143.588246][ T9604] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.1189'.
[  143.593391][ T9604] netlink: zone id is out of range
[  143.595389][ T9604] netlink: zone id is out of range
[  143.597527][ T9604] netlink: zone id is out of range
[  143.599600][ T9604] netlink: zone id is out of range
[  143.601260][ T9604] netlink: zone id is out of range
[  143.608001][ T9604] netlink: get zone limit has 8 unknown bytes
[  143.920414][ T9492] syz.3.1152 (9492) used greatest stack depth: 20264 bytes left
[  144.107901][ T9620] netlink: 'syz.1.1195': attribute type 4 has an invalid length.
[  144.359701][ T9630] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1198'.
[  144.365389][ T9630] ksmbd: Unknown IPC event: 0, ignore.
[  144.370075][ T9630] dlm: no local IP address has been set
[  144.372429][ T9630] dlm: cannot start dlm midcomms -107
[  145.424823][ T9678] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] SMP KASAN NOPTI
[  145.428571][ T9678] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[  145.431714][ T9678] CPU: 1 UID: 0 PID: 9678 Comm: syz.0.1215 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  145.436398][ T9678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.439679][ T9678] RIP: 0010:iter_file_splice_write+0xa4e/0x1150
[  145.441711][ T9678] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83
[  145.447712][ T9678] RSP: 0018:ffffc900249c7918 EFLAGS: 00010202
[  145.449615][ T9678] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffffff824343c5
[  145.452097][ T9678] RDX: 0000000000000001 RSI: ffffffff82434266 RDI: 0000000000000008
[  145.454545][ T9678] RBP: 0000000000000001 R08: 0000000000000006 R09: 0000000000000000
[  145.456988][ T9678] R10: 7fffffffffffffa8 R11: 0000000000000000 R12: 0000000000000000
[  145.459382][ T9678] R13: ffff88805602b828 R14: ffff888042441c00 R15: 7fffffffffffffa8
[  145.461824][ T9678] FS:  00007ff0ad8456c0(0000) GS:ffff8880d6ada000(0000) knlGS:0000000000000000
[  145.461848][ T9678] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  145.461857][ T9678] CR2: 00007ff0ad802f98 CR3: 0000000033653000 CR4: 0000000000352ef0
[  145.461864][ T9678] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  145.471889][ T9678] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  145.474381][ T9678] Call Trace:
[  145.475451][ T9678]  <TASK>
[  145.476472][ T9678]  ? __pfx_iter_file_splice_write+0x10/0x10
[  145.478459][ T9678]  ? __pfx_iter_file_splice_write+0x10/0x10
[  145.480331][ T9678]  direct_splice_actor+0x192/0x6c0
[  145.481928][ T9678]  splice_direct_to_actor+0x345/0xa30
[  145.483590][ T9678]  ? __pfx_direct_splice_actor+0x10/0x10
[  145.485313][ T9678]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  145.487123][ T9678]  ? __pfx___might_resched+0x10/0x10
[  145.488741][ T9678]  do_splice_direct+0x174/0x240
[  145.490275][ T9678]  ? __pfx_do_splice_direct+0x10/0x10
[  145.491960][ T9678]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  145.493847][ T9678]  ? rw_verify_area+0xcf/0x680
[  145.495365][ T9678]  do_sendfile+0xafd/0xe50
[  145.496784][ T9678]  ? __pfx_do_sendfile+0x10/0x10
[  145.498347][ T9678]  ? __x64_sys_futex+0x1e0/0x4c0
[  145.499934][ T9678]  ? __x64_sys_futex+0x1e9/0x4c0
[  145.501523][ T9678]  __x64_sys_sendfile64+0x1d8/0x220
[  145.503203][ T9678]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  145.504983][ T9678]  ? rcu_is_watching+0x12/0xc0
[  145.506496][ T9678]  do_syscall_64+0xcd/0x260
[  145.507954][ T9678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.509824][ T9678] RIP: 0033:0x7ff0ac98e969
[  145.511243][ T9678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.517105][ T9678] RSP: 002b:00007ff0ad845038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  145.519667][ T9678] RAX: ffffffffffffffda RBX: 00007ff0acbb5fa0 RCX: 00007ff0ac98e969
[  145.522180][ T9678] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  145.524740][ T9678] RBP: 00007ff0aca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  145.527197][ T9678] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000
[  145.529655][ T9678] R13: 0000000000000000 R14: 00007ff0acbb5fa0 R15: 00007ffea6e33368
[  145.532122][ T9678]  </TASK>
[  145.533136][ T9678] Modules linked in:
[  145.534731][ T9678] ---[ end trace 0000000000000000 ]---
[  145.539267][ T9678] RIP: 0010:iter_file_splice_write+0xa4e/0x1150
[  145.541534][ T9678] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83
[  145.547818][ T9678] RSP: 0018:ffffc900249c7918 EFLAGS: 00010202
[  145.549965][ T9678] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffffff824343c5
[  145.552698][ T9678] RDX: 0000000000000001 RSI: ffffffff82434266 RDI: 0000000000000008
[  145.555430][ T9678] RBP: 0000000000000001 R08: 0000000000000006 R09: 0000000000000000
[  145.558221][ T9678] R10: 7fffffffffffffa8 R11: 0000000000000000 R12: 0000000000000000
[  145.560953][ T9678] R13: ffff88805602b828 R14: ffff888042441c00 R15: 7fffffffffffffa8
[  145.563689][ T9678] FS:  00007ff0ad8456c0(0000) GS:ffff8880d6ada000(0000) knlGS:0000000000000000
[  145.566688][ T9678] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  145.569124][ T9678] CR2: 00007ff0ad802f98 CR3: 0000000033653000 CR4: 0000000000352ef0
[  145.571832][ T9678] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  145.574652][ T9678] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  145.577313][ T9678] Kernel panic - not syncing: Fatal exception
[  145.579871][ T9678] Kernel Offset: disabled
[  145.581194][ T9678] Rebooting in 86400 seconds..

VM DIAGNOSIS:
18:24:06  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=ffff888032f14b78 RCX=ffffffff8236a0cf RDX=1ffff110065e2974
RSI=ffffffff823573f3 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc9000350fb40
R8 =0000000000000005 R9 =0000000000100000 R10=0000000000100000 R11=0000000000000001
R12=ffffffff8e5e56c0 R13=0000000000000001 R14=ffff888032f14ba0 R15=ffff888028648000
RIP=ffffffff82357417 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f8d69581880 ffffffff 00c00000
GS =0000 ffff8880d69da000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555561448808 CR3=0000000026b45000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0f40000 Opmask01=0000000000000411 Opmask02=000000003f0bffff Opmask03=0000000001041000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 372f6b636f6c622f 7665642f7379732f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 323a372f6b636f6c 622f7665642f7379
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005557a2408f20
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe7194e770
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8d68ff1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 95e28d6bd680ab94 7373262184485f03
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373a2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9a87d6f000005557 9a87d6e800000000 3000323a372f6b63 6f6c622f7665642f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a565c560a000a56 50470a565c560a00 0a484051565c5647 50560a565c560a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 38656565692f6d69 7377685f34353132 303863616d2f6d72 6f6674616c702f73
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000041 726f6d656d2d3037 00005557a2406900 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854faab5 RDI=ffffffff9adfe5a0 RBP=ffffffff9adfe560 RSP=ffffc900249c7280
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552031203a555043
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9adfe560 R15=ffffffff854faa50
RIP=ffffffff854faadf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007ff0ad8456c0 ffffffff 00c00000
GS =0000 ffff8880d6ada000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ff0ad802f98 CR3=0000000033653000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001030001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0aca11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0aca11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0aca11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0aca11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0aca11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0aca11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0acb83488 00007ff0acb83480 00007ff0acb83478 00007ff0acb83450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0ad6ed100 00007ff0acb83440 00007ff0acb83458 00007ff0acb834a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff0acb83498 00007ff0acb83490 00007ff0acb83488 00007ff0acb83480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f7b836312da01f00 0f3de990cf627b21 fcbdd52af2c59890 1991b63baf7d2ca3
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c3ba07a80a302c5a 72d890e998a60aec c9099f1dd99318ca 67ddb296f54608e2
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f658bf1fc18ae80 76cd9275224313e6 a65c73b029a6da85 6f5337f17f4595ad
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 21133eeefdcdf8b5 b4928ee8a0ac7fb3 95573d7dd8d2124b 68c1bc758edd7a47
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000001000090 RBX=0000000000000000 RCX=00000000000000b4 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffc900244ef988
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b6ce880 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 00007ff52c37b6c0 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0000 ffff8880d6bda000 ffffffff 00c09300 DPL=0 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000ffff
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000031f1c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff88806a732de8 RCX=1ffffffff35676bc RDX=0000000000000000
RSI=ffffffff8bf4a460 RDI=ffffffff8dcf0d38 RBP=0000000000000003 RSP=ffffc900240c6cc8
R8 =0000000000000001 R9 =0000000000000000 R10=ffffffff90853117 R11=000000000001548a
R12=ffffffff82289d19 R13=0000000000000c00 R14=0000000000000003 R15=ffff88806a734c01
RIP=ffffffff81a0f079 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007ff52c35a6c0 ffffffff 00c00000
GS =0000 ffff8880d6cda000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fdd193b7bac CR3=000000001eee2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000002fefce0 Opmask02=0000000002fefcfe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19211a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19211a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19211a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19211aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19211b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19211c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19383488 00007fdd19383480 00007fdd19383478 00007fdd19383450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19eed100 00007fdd19383440 00007fdd19383458 00007fdd193834a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdd19383498 00007fdd19383490 00007fdd19383488 00007fdd19383480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000