last executing test programs:

1m1.075025486s ago: executing program 2 (id=274):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0xd, &(0x7f0000000500)=""/239, &(0x7f0000000340)=0xef)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)='gretap0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
bind$bt_l2cap(r2, &(0x7f0000000380)={0x1f, 0xbe4, @none, 0x200, 0x1}, 0xe)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000240)={0xe, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x2c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x4}]}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r2, &(0x7f00000007c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000600)={0x1b0, r7, 0x2, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IE={0x185, 0x2a, [@sec_chan_ofs={0x3e, 0x1, 0x3}, @chsw_timing={0x68, 0x4, {0x9d3e, 0x8e}}, @ssid={0x0, 0x6, @default_ap_ssid}, @mesh_chsw={0x76, 0x6, {0x2, 0xb, 0x1c}}, @fast_bss_trans={0x37, 0xbd, {0x0, 0x4, "2bf2003231679b910809653e0017188a", "75a4ec00c547cffbe62ef39c9d27cdd1ae81c36c0e50b3bfa70ce7042f379ffe", "92fd7eb828bd3432f8b7193a1e8c73be1ae893143f660fe928e076538d5cbdd7", [{0x2, 0x1d, "d09036f952466f1c13ba70c4ca2443c7b92b7095466078e7de115d0a28"}, {0x3, 0x21, "d15eb74e5f99f1448984a0ff8f531097a4ef634596f6bf7f21b413a23f2fe51bfe"}, {0x2, 0x15, "b4d83266d70bb6d3d008efed906f70e062f01a3e2f"}, {0x3, 0x10, "c90c6d45b8906f5240b649a705230f49"}]}}, @chsw_timing={0x68, 0x4, {0xfe, 0x46f}}, @channel_switch={0x25, 0x3, {0x1, 0xb8, 0x7f}}, @erp={0x2a, 0x1, {0x1}}, @measure_req={0x26, 0x83, {0x7, 0xa2, 0x7, "2da0c1cf1a5e916553f97641dd1ef95190725da07423d394051043d20971c45794576dca6c25ebae91ff983209830de36d8f27ead038e723041fab7633d2f1fad6f25d924db43c2914a0fa7cae82f7c0c4c7d3cd7a3707440a54655942bcbb00d013e8b2ef4809616120cf82b0b528ecf78a029061585149cdb00d6865a764e8"}}, @peer_mgmt={0x75, 0x14, {0x0, 0xf1, @void, @void, @val="1389560232762872e537b0c2abe42683"}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x400c000}, 0x4805)

51.870440744s ago: executing program 2 (id=274):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0xd, &(0x7f0000000500)=""/239, &(0x7f0000000340)=0xef)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)='gretap0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
bind$bt_l2cap(r2, &(0x7f0000000380)={0x1f, 0xbe4, @none, 0x200, 0x1}, 0xe)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000240)={0xe, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x2c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x4}]}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r2, &(0x7f00000007c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000600)={0x1b0, r7, 0x2, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IE={0x185, 0x2a, [@sec_chan_ofs={0x3e, 0x1, 0x3}, @chsw_timing={0x68, 0x4, {0x9d3e, 0x8e}}, @ssid={0x0, 0x6, @default_ap_ssid}, @mesh_chsw={0x76, 0x6, {0x2, 0xb, 0x1c}}, @fast_bss_trans={0x37, 0xbd, {0x0, 0x4, "2bf2003231679b910809653e0017188a", "75a4ec00c547cffbe62ef39c9d27cdd1ae81c36c0e50b3bfa70ce7042f379ffe", "92fd7eb828bd3432f8b7193a1e8c73be1ae893143f660fe928e076538d5cbdd7", [{0x2, 0x1d, "d09036f952466f1c13ba70c4ca2443c7b92b7095466078e7de115d0a28"}, {0x3, 0x21, "d15eb74e5f99f1448984a0ff8f531097a4ef634596f6bf7f21b413a23f2fe51bfe"}, {0x2, 0x15, "b4d83266d70bb6d3d008efed906f70e062f01a3e2f"}, {0x3, 0x10, "c90c6d45b8906f5240b649a705230f49"}]}}, @chsw_timing={0x68, 0x4, {0xfe, 0x46f}}, @channel_switch={0x25, 0x3, {0x1, 0xb8, 0x7f}}, @erp={0x2a, 0x1, {0x1}}, @measure_req={0x26, 0x83, {0x7, 0xa2, 0x7, "2da0c1cf1a5e916553f97641dd1ef95190725da07423d394051043d20971c45794576dca6c25ebae91ff983209830de36d8f27ead038e723041fab7633d2f1fad6f25d924db43c2914a0fa7cae82f7c0c4c7d3cd7a3707440a54655942bcbb00d013e8b2ef4809616120cf82b0b528ecf78a029061585149cdb00d6865a764e8"}}, @peer_mgmt={0x75, 0x14, {0x0, 0xf1, @void, @void, @val="1389560232762872e537b0c2abe42683"}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x400c000}, 0x4805)

40.311445194s ago: executing program 2 (id=274):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0xd, &(0x7f0000000500)=""/239, &(0x7f0000000340)=0xef)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)='gretap0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
bind$bt_l2cap(r2, &(0x7f0000000380)={0x1f, 0xbe4, @none, 0x200, 0x1}, 0xe)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000240)={0xe, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x2c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x4}]}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r2, &(0x7f00000007c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000600)={0x1b0, r7, 0x2, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IE={0x185, 0x2a, [@sec_chan_ofs={0x3e, 0x1, 0x3}, @chsw_timing={0x68, 0x4, {0x9d3e, 0x8e}}, @ssid={0x0, 0x6, @default_ap_ssid}, @mesh_chsw={0x76, 0x6, {0x2, 0xb, 0x1c}}, @fast_bss_trans={0x37, 0xbd, {0x0, 0x4, "2bf2003231679b910809653e0017188a", "75a4ec00c547cffbe62ef39c9d27cdd1ae81c36c0e50b3bfa70ce7042f379ffe", "92fd7eb828bd3432f8b7193a1e8c73be1ae893143f660fe928e076538d5cbdd7", [{0x2, 0x1d, "d09036f952466f1c13ba70c4ca2443c7b92b7095466078e7de115d0a28"}, {0x3, 0x21, "d15eb74e5f99f1448984a0ff8f531097a4ef634596f6bf7f21b413a23f2fe51bfe"}, {0x2, 0x15, "b4d83266d70bb6d3d008efed906f70e062f01a3e2f"}, {0x3, 0x10, "c90c6d45b8906f5240b649a705230f49"}]}}, @chsw_timing={0x68, 0x4, {0xfe, 0x46f}}, @channel_switch={0x25, 0x3, {0x1, 0xb8, 0x7f}}, @erp={0x2a, 0x1, {0x1}}, @measure_req={0x26, 0x83, {0x7, 0xa2, 0x7, "2da0c1cf1a5e916553f97641dd1ef95190725da07423d394051043d20971c45794576dca6c25ebae91ff983209830de36d8f27ead038e723041fab7633d2f1fad6f25d924db43c2914a0fa7cae82f7c0c4c7d3cd7a3707440a54655942bcbb00d013e8b2ef4809616120cf82b0b528ecf78a029061585149cdb00d6865a764e8"}}, @peer_mgmt={0x75, 0x14, {0x0, 0xf1, @void, @void, @val="1389560232762872e537b0c2abe42683"}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x400c000}, 0x4805)

30.563896754s ago: executing program 2 (id=274):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0xd, &(0x7f0000000500)=""/239, &(0x7f0000000340)=0xef)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)='gretap0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
bind$bt_l2cap(r2, &(0x7f0000000380)={0x1f, 0xbe4, @none, 0x200, 0x1}, 0xe)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000240)={0xe, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x2c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x4}]}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r2, &(0x7f00000007c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000600)={0x1b0, r7, 0x2, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IE={0x185, 0x2a, [@sec_chan_ofs={0x3e, 0x1, 0x3}, @chsw_timing={0x68, 0x4, {0x9d3e, 0x8e}}, @ssid={0x0, 0x6, @default_ap_ssid}, @mesh_chsw={0x76, 0x6, {0x2, 0xb, 0x1c}}, @fast_bss_trans={0x37, 0xbd, {0x0, 0x4, "2bf2003231679b910809653e0017188a", "75a4ec00c547cffbe62ef39c9d27cdd1ae81c36c0e50b3bfa70ce7042f379ffe", "92fd7eb828bd3432f8b7193a1e8c73be1ae893143f660fe928e076538d5cbdd7", [{0x2, 0x1d, "d09036f952466f1c13ba70c4ca2443c7b92b7095466078e7de115d0a28"}, {0x3, 0x21, "d15eb74e5f99f1448984a0ff8f531097a4ef634596f6bf7f21b413a23f2fe51bfe"}, {0x2, 0x15, "b4d83266d70bb6d3d008efed906f70e062f01a3e2f"}, {0x3, 0x10, "c90c6d45b8906f5240b649a705230f49"}]}}, @chsw_timing={0x68, 0x4, {0xfe, 0x46f}}, @channel_switch={0x25, 0x3, {0x1, 0xb8, 0x7f}}, @erp={0x2a, 0x1, {0x1}}, @measure_req={0x26, 0x83, {0x7, 0xa2, 0x7, "2da0c1cf1a5e916553f97641dd1ef95190725da07423d394051043d20971c45794576dca6c25ebae91ff983209830de36d8f27ead038e723041fab7633d2f1fad6f25d924db43c2914a0fa7cae82f7c0c4c7d3cd7a3707440a54655942bcbb00d013e8b2ef4809616120cf82b0b528ecf78a029061585149cdb00d6865a764e8"}}, @peer_mgmt={0x75, 0x14, {0x0, 0xf1, @void, @void, @val="1389560232762872e537b0c2abe42683"}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x400c000}, 0x4805)

19.733525981s ago: executing program 2 (id=274):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0xd, &(0x7f0000000500)=""/239, &(0x7f0000000340)=0xef)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)='gretap0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
bind$bt_l2cap(r2, &(0x7f0000000380)={0x1f, 0xbe4, @none, 0x200, 0x1}, 0xe)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000240)={0xe, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x2c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x4}]}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r2, &(0x7f00000007c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000600)={0x1b0, r7, 0x2, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IE={0x185, 0x2a, [@sec_chan_ofs={0x3e, 0x1, 0x3}, @chsw_timing={0x68, 0x4, {0x9d3e, 0x8e}}, @ssid={0x0, 0x6, @default_ap_ssid}, @mesh_chsw={0x76, 0x6, {0x2, 0xb, 0x1c}}, @fast_bss_trans={0x37, 0xbd, {0x0, 0x4, "2bf2003231679b910809653e0017188a", "75a4ec00c547cffbe62ef39c9d27cdd1ae81c36c0e50b3bfa70ce7042f379ffe", "92fd7eb828bd3432f8b7193a1e8c73be1ae893143f660fe928e076538d5cbdd7", [{0x2, 0x1d, "d09036f952466f1c13ba70c4ca2443c7b92b7095466078e7de115d0a28"}, {0x3, 0x21, "d15eb74e5f99f1448984a0ff8f531097a4ef634596f6bf7f21b413a23f2fe51bfe"}, {0x2, 0x15, "b4d83266d70bb6d3d008efed906f70e062f01a3e2f"}, {0x3, 0x10, "c90c6d45b8906f5240b649a705230f49"}]}}, @chsw_timing={0x68, 0x4, {0xfe, 0x46f}}, @channel_switch={0x25, 0x3, {0x1, 0xb8, 0x7f}}, @erp={0x2a, 0x1, {0x1}}, @measure_req={0x26, 0x83, {0x7, 0xa2, 0x7, "2da0c1cf1a5e916553f97641dd1ef95190725da07423d394051043d20971c45794576dca6c25ebae91ff983209830de36d8f27ead038e723041fab7633d2f1fad6f25d924db43c2914a0fa7cae82f7c0c4c7d3cd7a3707440a54655942bcbb00d013e8b2ef4809616120cf82b0b528ecf78a029061585149cdb00d6865a764e8"}}, @peer_mgmt={0x75, 0x14, {0x0, 0xf1, @void, @void, @val="1389560232762872e537b0c2abe42683"}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x400c000}, 0x4805)

16.494784472s ago: executing program 0 (id=529):
inotify_init1(0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x2c, 0x24, 0x20, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xa}}, [@TCA_RATE={0x6, 0x5, {0x8, 0xd}}]}, 0x2c}}, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x1ff003, 0x81, 0x7f, 0x1}, 0x48)

13.757922479s ago: executing program 0 (id=534):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0x21, &(0x7f0000000000)="61c6df58574f14245591457e5a426c1a4e10dc954446bc3ef0c4495186f99ed58c8d583150752748adf8d751817de2acb32d4dfd463bf27419e46d88f609a2b8344b63b1c41de6e03d60be0d2233186c02064d0c9df9b85046e1300818b0620404a8968b2ab2d031e417425aca37c8f9b2ec0b586f3b1008c3c9d4382fac", 0x7e)
setsockopt$sock_int(r0, 0x1, 0x24, &(0x7f0000000200)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r1)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
writev(0xffffffffffffffff, &(0x7f00000004c0)=[{&(0x7f00000002c0)="5a93fd526f08152ecece35faa3f183cde91319828f02ccf7093640fd4cdc4a9bf517416cca7d6a7e0c9dc4a47f771a2d65d812b9e4d5cd69c7d49f69cf30eb4a6355ec3b34d57167b8f1f7fc93d310566e94c169ce21d5e5a52db05dcfb4a679d013ba9fcc43edb8626f0f49ed68a7fb27b6ab48de85b89fdbc00d4884155bcdf154bf3c72b77d9f72f0f410da476f1b763c86eb9d336ecc5e413367c7ab29cc2adba37c4fe2631885a52e1a9cd88278e1a120a0b4164ff3342b6d9d0d2ade15b7f7dc8d426317862ddfb3efcf5542d12ab7ec3913708323f94e6d2907a8ae9626bea0ba44be5b733e5c34ff30", 0xed}, {&(0x7f00000003c0)="f4e882133cdbe362c77130a558c2fee2b24f23851004cf396998e58cb7f312ae2172ffff58bc15b227861f7cdcd3f99b7e4b171e2a268df6a9d967", 0x3b}, {&(0x7f0000000400)="3615d3be10f359d5d5d9ba1ca6886d53b049d95960c7d914c1363d0a6867e8e481a6fae0da4bd9ccf4fbdcec3a0f78846ca8147a653c470f04d496da19e086470e042f8df0df91be627723cfc2f5fcb1685c40043bdd27bdc26b26559f599e9073ec373cfe2523fc73c9077ce13ccc7c25a93fb53a5d34f5ee5589233cb913188d5214af385ceed2db4039ff87ac37", 0x8f}], 0x3)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_VALIDATION={0x5, 0xd, 0x3}]}}}]}, 0x3c}}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e1f1b"], 0x22)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r4 = io_uring_setup(0x4011, &(0x7f0000000180)={0x0, 0x6e42, 0x2000, 0x3, 0x3d7})
syz_io_uring_setup(0x8a5, &(0x7f0000000080)={0x0, 0xc524, 0x4, 0x0, 0x0, 0x0, r4}, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000280)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index})
r7 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001880), 0x400000, 0x0)
dup(r7)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r8, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r8, 0x6, 0x1f, &(0x7f00000001c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r8, 0x11a, 0x1, &(0x7f0000000140)=@gcm_256={{0x304}, "85406704bbcd6043", "898e9d750bfd000000000400", "92da3c45", "8ce3a39e3181899b"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r8, 0x11a, 0x2, &(0x7f0000000280)=@ccm_128={{0x304}, "3a997aae6644173f", "b9c0a8cd2707555d2fd4cc373ac51cf2", "1784fe44", "d3e60400722a0439"}, 0x28)
ioctl$IOCTL_VMCI_VERSION2(r7, 0x7a7, &(0x7f0000000240)=0x10000)
r9 = socket$rxrpc(0x21, 0x2, 0xa)
sendmmsg(r9, &(0x7f0000000900)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0x20}}], 0x1, 0x0)

8.610307474s ago: executing program 2 (id=274):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0xd, &(0x7f0000000500)=""/239, &(0x7f0000000340)=0xef)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)='gretap0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
bind$bt_l2cap(r2, &(0x7f0000000380)={0x1f, 0xbe4, @none, 0x200, 0x1}, 0xe)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000240)={0xe, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x2c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x4}]}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r2, &(0x7f00000007c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000600)={0x1b0, r7, 0x2, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IE={0x185, 0x2a, [@sec_chan_ofs={0x3e, 0x1, 0x3}, @chsw_timing={0x68, 0x4, {0x9d3e, 0x8e}}, @ssid={0x0, 0x6, @default_ap_ssid}, @mesh_chsw={0x76, 0x6, {0x2, 0xb, 0x1c}}, @fast_bss_trans={0x37, 0xbd, {0x0, 0x4, "2bf2003231679b910809653e0017188a", "75a4ec00c547cffbe62ef39c9d27cdd1ae81c36c0e50b3bfa70ce7042f379ffe", "92fd7eb828bd3432f8b7193a1e8c73be1ae893143f660fe928e076538d5cbdd7", [{0x2, 0x1d, "d09036f952466f1c13ba70c4ca2443c7b92b7095466078e7de115d0a28"}, {0x3, 0x21, "d15eb74e5f99f1448984a0ff8f531097a4ef634596f6bf7f21b413a23f2fe51bfe"}, {0x2, 0x15, "b4d83266d70bb6d3d008efed906f70e062f01a3e2f"}, {0x3, 0x10, "c90c6d45b8906f5240b649a705230f49"}]}}, @chsw_timing={0x68, 0x4, {0xfe, 0x46f}}, @channel_switch={0x25, 0x3, {0x1, 0xb8, 0x7f}}, @erp={0x2a, 0x1, {0x1}}, @measure_req={0x26, 0x83, {0x7, 0xa2, 0x7, "2da0c1cf1a5e916553f97641dd1ef95190725da07423d394051043d20971c45794576dca6c25ebae91ff983209830de36d8f27ead038e723041fab7633d2f1fad6f25d924db43c2914a0fa7cae82f7c0c4c7d3cd7a3707440a54655942bcbb00d013e8b2ef4809616120cf82b0b528ecf78a029061585149cdb00d6865a764e8"}}, @peer_mgmt={0x75, 0x14, {0x0, 0xf1, @void, @void, @val="1389560232762872e537b0c2abe42683"}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x400c000}, 0x4805)

4.821010992s ago: executing program 1 (id=557):
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r1}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000080)={0x1, 0x10, 0xfa00, {&(0x7f0000000000), r1}}, 0x18)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
socket$nl_xfrm(0x10, 0x3, 0x6)

4.760397258s ago: executing program 1 (id=558):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='oom_adj\x00')
pread64(r0, 0x0, 0x0, 0x0)
ioctl$IOMMU_DESTROY$ioas(0xffffffffffffffff, 0x3b80, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000003380)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7}, 0x48)
r3 = socket$kcm(0x29, 0x5, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000bc0)=0x1, 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000001c0)={r4, r2})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

4.610288226s ago: executing program 1 (id=559):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0x21, &(0x7f0000000000)="61c6df58574f14245591457e5a426c1a4e10dc954446bc3ef0c4495186f99ed58c8d583150752748adf8d751817de2acb32d4dfd463bf27419e46d88f609a2b8344b63b1c41de6e03d60be0d2233186c02064d0c9df9b85046e1300818b0620404a8968b2ab2d031e417425aca37c8f9b2ec0b586f3b1008c3c9d4382fac", 0x7e)
setsockopt$sock_int(r0, 0x1, 0x24, &(0x7f0000000200)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r2)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
writev(0xffffffffffffffff, &(0x7f00000004c0)=[{&(0x7f00000002c0)="5a93fd526f08152ecece35faa3f183cde91319828f02ccf7093640fd4cdc4a9bf517416cca7d6a7e0c9dc4a47f771a2d65d812b9e4d5cd69c7d49f69cf30eb4a6355ec3b34d57167b8f1f7fc93d310566e94c169ce21d5e5a52db05dcfb4a679d013ba9fcc43edb8626f0f49ed68a7fb27b6ab48de85b89fdbc00d4884155bcdf154bf3c72b77d9f72f0f410da476f1b763c86eb9d336ecc5e413367c7ab29cc2adba37c4fe2631885a52e1a9cd88278e1a120a0b4164ff3342b6d9d0d2ade15b7f7dc8d426317862ddfb3efcf5542d12ab7ec3913708323f94e6d2907a8ae9626bea0ba44be5b733e5c34ff30", 0xed}, {&(0x7f00000003c0)="f4e882133cdbe362c77130a558c2fee2b24f23851004cf396998e58cb7f312ae2172ffff58bc15b227861f7cdcd3f99b7e4b171e2a268df6a9d967", 0x3b}, {&(0x7f0000000400)="3615d3be10f359d5d5d9ba1ca6886d53b049d95960c7d914c1363d0a6867e8e481a6fae0da4bd9ccf4fbdcec3a0f78846ca8147a653c470f04d496da19e086470e042f8df0df91be627723cfc2f5fcb1685c40043bdd27bdc26b26559f599e9073ec373cfe2523fc73c9077ce13ccc7c25a93fb53a5d34f5ee5589233cb913188d5214af385ceed2db4039ff87ac37", 0x8f}], 0x3)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_VALIDATION={0x5, 0xd, 0x3}]}}}]}, 0x3c}}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e1f1b"], 0x22)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r5 = io_uring_setup(0x4011, &(0x7f0000000180)={0x0, 0x6e42, 0x2000, 0x3, 0x3d7})
syz_io_uring_setup(0x8a5, &(0x7f0000000080)={0x0, 0xc524, 0x4, 0x0, 0x0, 0x0, r5}, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000280)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index})
r8 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001880), 0x400000, 0x0)
dup(r8)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r9, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r9, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r9, 0x6, 0x1f, &(0x7f00000001c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r9, 0x11a, 0x1, &(0x7f0000000140)=@gcm_256={{0x304}, "85406704bbcd6043", "898e9d750bfd000000000400", "92da3c45", "8ce3a39e3181899b"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r9, 0x11a, 0x2, &(0x7f0000000280)=@ccm_128={{0x304}, "3a997aae6644173f", "b9c0a8cd2707555d2fd4cc373ac51cf2", "1784fe44", "d3e60400722a0439"}, 0x28)
ioctl$IOCTL_VMCI_VERSION2(r8, 0x7a7, &(0x7f0000000240)=0x10000)
r10 = socket$rxrpc(0x21, 0x2, 0xa)
sendmmsg(r10, &(0x7f0000000900)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0x20}}], 0x1, 0x0)

4.010044227s ago: executing program 1 (id=560):
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r0, &(0x7f0000000180)=""/97, 0x61)
r1 = syz_io_uring_setup(0x110, &(0x7f0000000140), &(0x7f0000000000)=<r2=>0x0, &(0x7f0000001480)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x3f70, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
write$char_usb(r0, 0x0, 0x0)

1.715020738s ago: executing program 0 (id=535):
socket$nl_xfrm(0x10, 0x3, 0x6)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000003380)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7}, 0x48)
r2 = socket$kcm(0x29, 0x5, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
sendmmsg$inet(r2, &(0x7f0000008dc0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000540)="888303263a9e1cd1b50fc2efc626709c96bcab98beeaa9077149fd4ffeb7b7859b0a68c39e8881cab4fdf65d791358ed734acb07149c487b4f50c5f917139e9ddd44ad39181491d09461f20f51503283b41f6018eb59e878178075bbae9936080a53e68b3cabbb85ca082bf489fa6b1abd74c346ff049623fa21722d20463695f81a234de702e58d0b7a3fcd183be373c73e607e8cfe2b65abd2cc3b97daca65b674bbd651de2ace292d1db665ae1bd9575bfd33675399566e7c5c56d3d7232a307b496f311ca8d3d15ec4c824ed0f4a672c6855c86e0d8d2ec8291a82a3f15e2cce9e", 0xe3}, {&(0x7f0000000200)="c0ce26486d164b431db4444094be80f5dfee9ba9a65a4d50b8f83f2a9024e5586a614f02b063595a8172c55e67c5d085c9bf44d4ac2cb536f9dd56007c79", 0x3e}], 0x2}}, {{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000006c0)="9de6d3750349c2f3847fa4a05f94adb3d21fc68c161aea97b382463136de885846c0513c1d9af3f721cad5a7a753816b79e9af459a7719536932401f194b7c3cdd1b9f5b281e875b96304c31f9aa021642552f18aa7d269bceb614a8895c589cebc5deea722bc9efaf97ab2f098d99b96210c991e8496eae1a0558cc759f3886cc735c0cea5119c10be69068addbd4986f7a7b503ff93af91dd3d173d20ea095e56d3b9bf62b6d547efc4b5cf94bd633ef418ece871a5bdb42ffb27661c222754bbb333c1e65ec05855be1243417f27d30c5e7", 0xd3}, {&(0x7f00000002c0)="468acdb4e4cf0427161e4b334f4c94ebd825850e7c132a1217aa3b5547f1dcc73efdc575d16f90985e478231fe76ee24fcfe9799497db0cbe5954acded7a24622c2463bae7529c05a6c81e33ee93869fd7c57feff17c9cd809b1be241edcede17e4643efc8c2baed1e2442f3a236fe60e4685d2971077e625dce6f0b6c216ffcebecd763c39e87eb641e7046dd68949acc02", 0x92}, {&(0x7f0000000880)="52a67f4b2e3245fb", 0x8}, {&(0x7f00000008c0)="910173d811a77377207b361dd63bd456ea8e58a1e55699c4fd0206e27161045d62989959f8fa93a3437f4a33e558ce924e3be64fd73c92b733b2c178599b60cf9f37b97362210516665be1e110544d2a87c7750450a6a73dea6172b7d97667050fb8309ed2a18f0b5f4895684e", 0x6d}, {&(0x7f0000001500)="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", 0xb6a}], 0x5}}], 0x2, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000bc0)=0x1, 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f00000001c0)={0xffffffffffffffff, r1})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
syz_clone(0x20003000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.138060695s ago: executing program 0 (id=564):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040400000000"], 0x11)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="02c90010fb0b0033db03090800fcff010001000600"], 0x15)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x9000, @loopback}], 0x1c)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000880)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x4}}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000002b40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000002c40)={&(0x7f0000002b00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002c00)={0x0, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x810)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$int_in(0xffffffffffffffff, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000007c0))
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = dup(r5)
r7 = fcntl$dupfd(r4, 0x0, r5)
ioctl$VHOST_SET_VRING_ADDR(r7, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0})
ioctl$VHOST_NET_SET_BACKEND(r7, 0x4008af30, &(0x7f0000000080)={0x0, r6})
eventfd2(0x8001, 0x0)

969.699389ms ago: executing program 0 (id=565):
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r1}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000080)={0x1, 0x10, 0xfa00, {&(0x7f0000000000), r1}}, 0x18)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
socket$nl_xfrm(0x10, 0x3, 0x6)

969.270396ms ago: executing program 3 (id=566):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='oom_adj\x00')
pread64(r0, 0x0, 0x0, 0x0)
ioctl$IOMMU_DESTROY$ioas(0xffffffffffffffff, 0x3b80, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000003380)=ANY=[@ANYBLOB="180000000300000000000000a012544f95002b000000000093adffa82255f674412d020000000000005ab527ee3697f1ed4436dd1164b1b3f427f6ba6b34f98125f30e631d273683626e00dc254d570d4a6b78a5833488cfe410090000004aa900003d3cd62f00158e6eee8501000000520a0000151d010000000100bf000000003bbd424c6e6cafbe9309aba218812868a51d129e78f6ae170bf5a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b000024b9dd1145d03ff45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e460a000517ebc406e89dcbb7677e6528b0856e31eb9474c0106fc48e1f8c1a5f6945ac24cf609068f6ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bedf59ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e148bf56497e5d56d06c7551b870b2851c3f0a1aab71587a21c8f1b3369ebfcb4cb2946601b0f04edb256c604f068773f6db9d661bd7f0e2536f000000000000000055211c6f864f983d745f5865aad41d29158ae7602a2d6cd415e8351ebc283df54d6bec664709ff03f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121a96eb372713255012e028cb2654d493a0b4b35faae176f99b745eda2967199cc93685bb537e8e4871d4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d0007ae4e1e347c0cff28235a6bb7aa3804b907a8f2880c5cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec64fa6c718bbd1aa591140cff0be4c6f8df084c5e9734ae30aa9afdc7125f01ab03a9b1074407136b4506000f0916aada035df2e0452a9b39e73aeeb6eaf14652dda689e2051d9b7eb85f3f2d5ae2c51944da8d7391d5b6b97419a3b76600cd1aa0afe5f8f46df4c5124ca425d374b419a6248029d33d61dd5c844024ba757371867a79b31c6617fc3327191fbf514573f1e30d1fd2d763f3ee9218b15c1d60be2168fffcd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257bc97def5f07f2980005a4f81a9cf8110971b749ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c4407eca22debc99335583b00013c3130978fa069af8223b38ced735c2d90c6d84c30a0d87d42647489b39601be5c27696cf2f16625c0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c534187a6240412c8f283cc0c1eba2866dc9580000000000000007fffffffff554b82d9c162f3556076b80552d961ca74f1ffdaccf0ea5f02e03a9ccb9087e6c3b3917bb74fd3d560700a1fab44e77e312b3b129e000302d613916c9bcf9f0000fac73a5b6bfb01efada800e50000000000fdaf2f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6550d597300eb82a184c96ffde5a30e5433d866665b98ca2002c836e89feef904c22ff2634b7bfbf5c0d586cda5b45fd00dede1e88a4d41dee7cc8d0834fb8d124638fec58faeb4c16abb440df2a694f4cdcaa4f65c22f000000000000000000000000000d503d79906958102000000000000000000001ffff0ef89b2a68d2bb2dd163e863314e8449801b52bb93f6c9084659ce777dda8563c859656a357770289a61faa95a82bf1cfb7f2f97252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b00110635376413c29f7c6f7b7e29b9f4bddd5e328661f4615e627a6f608ad53a4168fe8e5d7d934aa289b4bd2b870000000000000000000000000000bc4b4ff50000009b777883a02ffd92dfc4cb4114b9f9cf4ad155110cd3ace2b322ae31bfa27847c799c8869a1ea5b98e525e6383ad7fd9795170e7b11e247603000000001459c7f606d721d3979676bffb3049166ab84ac1061991bd57c2566c10c296352a5105b6164e3f2491e4793e590dcc71f110da96366c40dd44a2c9882d3aa0f8a797b8fea6efcfb5276b7679f15559cdaabf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22adef9546abb7a2d9c085b189b5fd1f30e4e0c13f60870fde1f88d830b11002135e8e7262f29b6d7923bfbe0bd2a8be179e56b41ff3792cee2fc37eee739c3008ce740d8804f8e705f0dc59d000021363e8df94ff175b48dc8c12def681a11647946595445bf1cb7d2778cd27a6b3b2966b08be600000020a8a711d193bae0ab2db9ed9c6cb3c3de42ab89524414cae922141f7baf17ebb790ad60bd03870c39d1ad12c750837e63f9880fd70259e35590afb4843cd4e9989398eaa89cefb3aa13cab8d015cbaf1561d95362decd73b8f8cbf8269cac091cfaaa3c7e46d6e79145fc0f1d1b383752ccb40515a772356d746914540216adf4c0f44f1cff3760afa252720ec6dad3a98671ecdaff46cddffb1f05a0c0976070d603a442d014822369fa3eacbb69bd1b0a074357acd5d02161fed146ad3aa15d2b8101b7bd1e091ada78ecd50181f4b35cae1b29aff91494c916323b61f815c4e0701657087ad11eef97952921365bc898ba2c76a9b6e0052f43b1ad2dfdf3f958fc1d32e692bc8846c78a956ada453c67c1c2cdc4f8b1c94e9adc106e85b31e030d955c5578e107a6e8ca0d4dd05344c3e2af25d9a3b0f7805624016aeab271a75f0bacb101a103ef8948064569154a7de08f80e4df4c339b69431b0a5671097d89212b465b0b32275deae10a77e334c9fc074d181bdeb5be80a6249d472e78e6be57a5ccd354cf181e099605a644ecade221a2be926210b2690d09e4b7a3dea25403397439979c27d5613262de08bacecfff2d58437f422df4252c018795310c25e8fce18ed366ac2caade564ca869727a7d63c26271e17d7aba48971835530311545273d3caadeb5d2017dcddab8f38f2068f68a4111ddd587b5df4b5d8f1ce00231a2092eb2e797c491a1e66f73606fd95bbe0f10521862b6262f0259da51ff7517ace7361460a4669a97f7d0bf095c2787f00bdbfee19670d1e0ec5e6c3cb09972fa4d94993157b96d6695177c99d83716651129320924352cda7b8ead91c3301af620c1e8d703dd29ad77f54836779600bb0db3ecfbd36fa8164999898e4aaa56324e1c03a74daf593f92a8ecc03f8c8e3af9ae07dc03780cc0d69da9e3528c1693fb51998731992ceb27dcc0be5be4decefe41b78bc1847bf54b087e095172f06cfa6d4bf958b1d4544947ff1230655199db4f475006047fe83caca97758dffa53cee764f85932eb20d54241b2d515c0826dfe1f0f40ae920455a4548fb35e2a345c05b1c252b7877bb3d834b0b3579a36249146f832ef258df5127318c7017ac1a996c4f902f82deb60fd113ccf812d55ffd625057bd4ff3960992b85bc8d30edfca386be16b1c549aec52e31e1405f86c7760282901750b732ec06b0db735222a730000000000000000001ed58cd2c684667178576dbb57345b63c313e4a8fcfefe511e084c24b31a2e693946748bb73511695bc0eec1553b0f67d50678fb29ad13d2104fdd7a992574d475d3e51652fb3fda6a9fc0458f10b6d121bd48664858b51a9054d7c1d310af6a043e4b99472fbff86fea83924059419d54f07da0b6b7d6e6d61e680f151b0e"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7}, 0x48)
r3 = socket$kcm(0x29, 0x5, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000bc0)=0x1, 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000001c0)={r4, r2})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

964.80919ms ago: executing program 1 (id=567):
inotify_init1(0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x2c, 0x24, 0x20, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xa}}, [@TCA_RATE={0x6, 0x5, {0x8, 0xd}}]}, 0x2c}}, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x1ff003, 0x81, 0x7f, 0x1}, 0x48)

870.221914ms ago: executing program 0 (id=568):
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r0, &(0x7f0000000180)=""/97, 0x61)
r1 = syz_io_uring_setup(0x110, &(0x7f0000000140), &(0x7f0000000000)=<r2=>0x0, &(0x7f0000001480)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x3f70, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4}, 0x10)
write$char_usb(r0, 0x0, 0x0)

830.414728ms ago: executing program 3 (id=569):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x22}, 0x44)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xa, 0xc}, 0x48)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r1, 0xa79)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0xc008aec1, &(0x7f0000000640)=0xd000)
syz_clone3(&(0x7f00000004c0)={0x88048200, &(0x7f0000000000), &(0x7f0000000080), &(0x7f00000000c0)=<r5=>0x0, {0x38}, &(0x7f0000000140)=""/26, 0x1a, &(0x7f0000000f80)=""/4096, &(0x7f0000000180)=[0x0], 0x1}, 0x58)
syz_open_procfs(r5, &(0x7f00000001c0)='net/route\x00')
connect$x25(r1, &(0x7f0000000040)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x12)

478.198736ms ago: executing program 3 (id=570):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r0, 0x0)
connect$x25(r0, &(0x7f0000000040)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x12)

475.30204ms ago: executing program 3 (id=571):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1000, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x91905a, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004480)={0x2020}, 0x2020)

340.627541ms ago: executing program 3 (id=572):
socket$nl_xfrm(0x10, 0x3, 0x6)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000003380)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7}, 0x48)
r2 = socket$kcm(0x29, 0x5, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
sendmmsg$inet(r2, &(0x7f0000008dc0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000540)="888303263a9e1cd1b50fc2efc626709c96bcab98beeaa9077149fd4ffeb7b7859b0a68c39e8881cab4fdf65d791358ed734acb07149c487b4f50c5f917139e9ddd44ad39181491d09461f20f51503283b41f6018eb59e878178075bbae9936080a53e68b3cabbb85ca082bf489fa6b1abd74c346ff049623fa21722d20463695f81a234de702e58d0b7a3fcd183be373c73e607e8cfe2b65abd2cc3b97daca65b674bbd651de2ace292d1db665ae1bd9575bfd33675399566e7c5c56d3d7232a307b496f311ca8d3d15ec4c824ed0f4a672c6855c86e0d8d2ec8291a82a3f15e2cce9e", 0xe3}, {&(0x7f0000000200)="c0ce26486d164b431db4444094be80f5dfee9ba9a65a4d50b8f83f2a9024e5586a614f02b063595a8172c55e67c5d085c9bf44d4ac2cb536f9dd56007c79", 0x3e}], 0x2}}, {{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000006c0)="9de6d3750349c2f3847fa4a05f94adb3d21fc68c161aea97b382463136de885846c0513c1d9af3f721cad5a7a753816b79e9af459a7719536932401f194b7c3cdd1b9f5b281e875b96304c31f9aa021642552f18aa7d269bceb614a8895c589cebc5deea722bc9efaf97ab2f098d99b96210c991e8496eae1a0558cc759f3886cc735c0cea5119c10be69068addbd4986f7a7b503ff93af91dd3d173d20ea095e56d3b9bf62b6d547efc4b5cf94bd633ef418ece871a5bdb42ffb27661c222754bbb333c1e65ec05855be1243417f27d30c5e7", 0xd3}, {&(0x7f00000002c0)="468acdb4e4cf0427161e4b334f4c94ebd825850e7c132a1217aa3b5547f1dcc73efdc575d16f90985e478231fe76ee24fcfe9799497db0cbe5954acded7a24622c2463bae7529c05a6c81e33ee93869fd7c57feff17c9cd809b1be241edcede17e4643efc8c2baed1e2442f3a236fe60e4685d2971077e625dce6f0b6c216ffcebecd763c39e87eb641e7046dd68949acc02", 0x92}, {&(0x7f0000000880)="52a67f4b2e3245fb", 0x8}, {&(0x7f00000008c0)="910173d811a77377207b361dd63bd456ea8e58a1e55699c4fd0206e27161045d62989959f8fa93a3437f4a33e558ce924e3be64fd73c92b733b2c178599b60cf9f37b97362210516665be1e110544d2a87c7750450a6a73dea6172b7d97667050fb8309ed2a18f0b5f4895684e", 0x6d}, {&(0x7f0000001500)="cd07e85142f8ead499f3ef72f2227c53dd9255de4766b5f33ef218a7c39a97bbd4f8385f1852a08a0e900c7f9183f6c74e7e3407bac0d64f2fe763278fbc7ea1e7111be746ae2748fc96288a8b288a6d1baf35514905bee7b70175dd6a5b1b43735e06d236ee53c79aa6f817e833618ba7321afdf30656589fb5d92a67f70e2cb1dd98e48ff65bb2569a258f78bca3682750e0584ea00629c67c6411cd532d62be01f143fe9ce39012147357e8abe37baa6cfad28b949c343c17567015b2811ea8dfd577749855bcc1cbdae064318ac83c505129a407543c355a4e902e6d43e92cf7d4a538400b7741304b9179bc8357b82081d7141a388f8659108dbd3142dca4483efd112eae795c780aa14fde5d3ad8a29f57cbbe4929ced3ec0c45c4964e627d283b4c8302ab1eac4796a40ff79106ab2b28a1a72028a56a6b4e7e44f9578970f37fc3edfdf4b51bece98270e1b3b8da8f4bad2d38d0d04220f53e70f88f9431cd8184995253d38f27fbece66f45558a0941277de0308ed8a3bd8cbaa2f12406458086f37d447d9cb471c3b075bef79673e3b27d707f1483be8949600e9259a4edb962ff5e2a47a369468814971d2a81bbdf6222dfd7334912d33b51080cecb1eb5ca9ee573abc277b75e15b8fe9b242abd74ea74a4f83bd96e3b1ae924d927bb45a7b4b879f6a689f4977d0dbd4eaa0cfe64dacb82cf3784e21cd4e136ee610c2672eaedf35918d3c82eec28ea5753ea137f8a5d2f2f8a7aceffa1d71ac75bef177945d757ddc904c46a8a69336861cf08a5c51996807008e58ebf23a7e597bb07cce48e40b8a172144c4e649090fba0ec62152f85c3c4b843bde0f6eafbaa12bd1449801d2c4bfb51317bbc4d521ea1015e73a8c9146eb37eb9583a2443d8eea2293c808efc19a5735408281f16f590e00415c43ac2ce1c3432d41525dd0137eb991d9c56c163c0d4ab2d4ce2a418ff537bf20e6152bbd81d4a2a3570a7c3053f2ceb5e9797d2c60fb069cdcb03e06aedf63ff47f7ef9551e26cf08740c74b273bcda959a1e9a84c0fa05416b99d73d402fb81754e1ccf796d9da53399d6dce3ce83303ccb4166cf36ccb0c9bddbe0e34dfbcae31b4ce8fe513570e036844ab516cf4d6293bdd388112084e6aefcc6e7967fe99aabd72a207bb4ec8fc02d5bc229ca68c9db99529208146f49f29fda53c49707d76a649aa5df7607c3ee514eb820f4d0cc55d547ecd3193c4946525af9f68f8ec2d0a6b0ccfbd8ae0a265249255c98e9e6ab3d8d82dbfb8c15a8ef69b78cc9b4f0ad5a2ce9d6793ada0b6163d9d1ed3e50f9c819ca46b40ff40b375f5e2ce6caa996af36324cbbaa63635b0e107ad01174baa553b86dba12e8ad9586727a70aee6785121e9edb5a98e01b7848734d3e044c494a4061493e1ae7fd73a2ed9b83d286e24a732966faee7705d8a2d360159acbdf18616028134c25d1a92bb45f06207701454390b87d5bcb66ec73d8c3c53049f42c85de0acc45a9379302203be199ce55154b739bfb3d27929b12163e2078905137774974b90c07960fd410fd58394bc53e7745f5627de2f0361418173763c69f8a11d93a104ad382cf385b0c6c7c3c5fc8236e6f18ae9be0543d28d54050b9e60f2f774a16be4904243d482ad3252edaccce56dcd350b6e249fe686d5adc07bc57c71aebdc243eac56f29fa24e69b8d444c54a95522beafac6230a3c4e89c6d55654a4a077f7f854d6b24f8b45da2baa5dc3e4df15c56263c7fa80642789ea712a9562a70379afe5ac584c891178d71a558e73456e53e7f9256f4c0b27daa3eab32f1e56b3dd9280053c1ec57e86fd87a725ab9a5d93e3f8e6e848afbdadb859c744f40a86486fbbd1da6a18c834bf43594aac9d0340521dea06befad18bb868e9e63578ed66c70ecfeb31ce55755a5d48de4113c7e29975643cbc53f114ed522231e410f1fe4b910e6af3d4b56918952f7f25204813b3283e20a54fd285a80988494576bd738e685edda5177eeb0e2c9816dac60302b12ec046c9feb770dec403fd4fadd1628aa4978647e8dac1825166a5be8b580b195387d901ecbf03b70d4301f6de69f691009a659c03186b8431e226022f811a6d2ce73c8bce19b09e04728b739da06054690f30c71bb3326f8d4fc80cf654a42fc6134967206e110558a6f9e9c434bf175def183da8a5c135975dd7eac8fcea1343710cd92fdcba2152b32e014cb8e87d3c500e8f439e1522da6866105e937663d8044527982d147df983ca83eaa7fb4dd5c0c79232dd687e02dc135d3067547cafb1934b5769114472beb906646ffdc44291289bc27478262295c2fa517ccd553804e73eb9150f5d451afd79f175e14b563a5e6c86e9a0eacd450be530a3e506297a751bc5800f3c45a3e18b93c21aa8c0f2d144122803361d4b59e2a21bb462c0b8bf9d8f4c91610c633fefced62b8de88bd2e56e58eb538f30b1710f8cf5e6e54db33adc53d2519351696028edda2e915a3f575ee3488b6ac2d96856fe5742ae57679e11e7baeeb7446aa3d92a834086b8b2eba58a16e54a2df19f4be02fb9ed80f9547c327ca69bfc027852c0f54eea05b0982f0a08548f16a80d17121b5c3536d072b6dd78965d7fcb1d13d8435c003050de3900f43ec378070ff24e9fe463451cd2ca1d81532121fa6a010df9e471dbd068c9de5698eb986a43640843e6ab2ae9c849603cc1ed6799cd80a9dc8937127ef006edd442b68fc79a7d31d80f255ce9593e12a219d4a38a84c2a77ae3c604ac33614aea6c8523e4f553866b801cfdbf3545370555685f2f6ae4a05745713bac8452e86536807b986037d28953cc093122c7e400f4ebd876282e831b5e45c2e2dab9c7620ef9aa3c3f733baef8eee8242e0edfc20c9f58127739c978fbda24af4068e36a0c556cf2e60be433e6c86fcaafaab94124385c14dff932713044432cfc6ce7c6ae88c1fe32097d2e223616818eb1df981cd70a9a35ad7776745b660dec25e93cf5d6157cc161b808097f49a7713c5a164cd5cd61cb44b155edd38b72c5788b5328a1090cc366fb114d658eb4f045740fa95c19a9b6fc4c758036b9ba3d566e93073a5387f850f70db48d7c4a071d2b6bcdc67113b242688fbddffcff2c369680a4f5e7f0bafc27241a95695ff39c828f5d2b4e2a5955414aae21358971a9bd5d27fb3b4980d7a2058f5a686a65a95245aa418df589d6191ddf8e2a75b80c78dece49e7cdb6dc038944c8badeb86ab903a7a2db35cff18dd46ffbc02c36461205df47e93ab492ee2c49b489c22e9d0a44766f855cc1bc37622c72ab452908860cc054e9cd245cef29667e078e09403f395a0ff222272fd39bcf8c657de071fa6b02efb062e133f4ca14dbc3041fc3d0d7f44a30c955fbe5088ec222355d0b533f506ac75cadbb646b437eccdffef7f521ff14b3716f945c3a0b532616e3fa4dd88ecff416b0c91798aac7072c610adef4e076f5609bc0a4431de4de4a7318115a3f45dd7105f0d25cf2f2eccfb949b7e9b1c6f051f1c8f61b95f665c219d1f32b7af585818e51a937f5d90b0dd2d1e68f4a9f94f8da2ab42b3c91c95871537d94fc2a191862cbbe28433c7773a3dabe82a371c47c905e46f74f4964fe4ff3551588cb97d089465d1df16daaf5617d5b677e2e77541f64ea33ad75611e1516f230d4f207f58494458b3e25a3ce1d1d098ae8a8db11fbb7783d6f3960e237c0a24e33043c21a552cedc8aa7a0838cb034070a5af237acaaacf0a4398b036cf32ddd2d614d26c53a3fdbd0fe8cd1e0064c8777ac8f9755e02ca4bf869bc94cd6bea3bab112f57aecc27e6011d4b4c8c3926abf995a39b4384f9bf410c4e3525a47d4db05f3c6c253c8adb2678c5f86dd2e5e3ffca798b5b756c0207e65a248449cd09abad3b3b8fcda337124bb66079dd1ac77949f3c8ddac7396eaf8348544164edb99e178d59c13878b8b8dbd0759cbf4b6b6d3dcb5adb4b6bf8402b93aa4a6b53789b627f68b772618cb8a9689ad282a230d6e5e125da910b4f26f72caf1eca8362b977f83bc16a798e05dfc6c7675cac8262e781db9db2250958ab6bda85ebd7c4d06681ee0f30bd062a08294ce0d459e10e3a0", 0xb6a}], 0x5}}], 0x2, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000bc0)=0x1, 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f00000001c0)={0xffffffffffffffff, r1})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
syz_clone(0x20003000, 0x0, 0x0, 0x0, 0x0, 0x0)

219.434915ms ago: executing program 1 (id=573):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040400000000"], 0x11)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="02c90010fb0b0033db03090800fcff010001000600"], 0x15)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x9000, @loopback}], 0x1c)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000880)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x4}}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000002b40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000002c40)={&(0x7f0000002b00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002c00)={0x0, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x810)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$int_in(0xffffffffffffffff, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000007c0))
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = dup(r5)
r7 = fcntl$dupfd(r4, 0x0, r5)
ioctl$VHOST_SET_VRING_ADDR(r7, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0})
ioctl$VHOST_NET_SET_BACKEND(r7, 0x4008af30, &(0x7f0000000080)={0x0, r6})
eventfd2(0x8001, 0x0)

0s ago: executing program 3 (id=574):
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x24, 0x1, 0x1, 0x101, 0x0, 0x0, {}, [@CTA_MARK_MASK={0x8}, @CTA_MARK={0x8}]}, 0x24}}, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket(0x0, 0x0, 0x0)
connect$netrom(0xffffffffffffffff, &(0x7f0000000000)={{0xa, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
getsockname$ax25(0xffffffffffffffff, 0x0, &(0x7f0000000100))
socket(0x2, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)={0x1c, r0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x451, &(0x7f00000001c0)={@dev, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb653e", 0x41b, 0x3a, 0x0, @dev, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xe, "7db4265c9f6aa3b46521199ea778d105c24ab977edb940e63f49a7129f45462e5eecc39f468544e3c13aa9017ccd638e784912ef2c2589d0d45cf0ed4bbe909218459bcbeaf63697aef1702b895af582b2e3b5cd435f497d415f29c5d941df10c1ca58197441e0e9b3400d983b10420fa979"}, {0x0, 0x4, "1598a4a8a719ffe0621615f6d04dcae3360546cf06f2665bae2296931fd1d71c1f7e8f22"}, {0x0, 0x6e, "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"}]}}}}}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r2, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r3, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

kernel console output (not intermixed with test programs):

_1
[   75.485585][ T1090] veth1_macvtap: left promiscuous mode
[   75.488435][ T1090] veth0_macvtap: left promiscuous mode
[   75.490994][ T1090] veth1_vlan: left promiscuous mode
[   75.493951][ T1090] veth0_vlan: left promiscuous mode
[   75.623721][ T5175] Bluetooth: hci0: command tx timeout
[   76.604806][ T1090] team0 (unregistering): Port device team_slave_1 removed
[   76.662297][ T5754] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   76.712114][ T1090] team0 (unregistering): Port device team_slave_0 removed
[   76.787250][ T5756] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   77.314913][ T1357] ieee802154 phy0 wpan0: encryption failed: -22
[   77.318103][ T1357] ieee802154 phy1 wpan1: encryption failed: -22
[   77.701450][ T5175] Bluetooth: hci0: command tx timeout
[   78.271405][   T39] kauditd_printk_skb: 17 callbacks suppressed
[   78.271419][   T39] audit: type=1400 audit(1719963645.791:265): avc:  denied  { mount } for  pid=5788 comm="syz.2.153" name="/" dev="ramfs" ino=10532 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   78.272970][ T5789] FAULT_INJECTION: forcing a failure.
[   78.272970][ T5789] name failslab, interval 1, probability 0, space 0, times 0
[   78.300522][ T5789] CPU: 0 PID: 5789 Comm: syz.2.153 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[   78.304973][ T5789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.309656][ T5789] Call Trace:
[   78.311154][ T5789]  <TASK>
[   78.312487][ T5789]  dump_stack_lvl+0x16c/0x1f0
[   78.314649][ T5789]  should_fail_ex+0x497/0x5b0
[   78.316771][ T5789]  should_failslab+0x9/0x20
[   78.318785][ T5789]  __kmalloc_node_noprof+0xd5/0x440
[   78.321903][ T5789]  ? kvmalloc_node_noprof+0x9d/0x1a0
[   78.324265][ T5789]  kvmalloc_node_noprof+0x9d/0x1a0
[   78.326684][ T5789]  seq_read_iter+0x830/0x12c0
[   78.328796][ T5789]  ? rw_verify_area+0xd0/0x6c0
[   78.330894][ T5789]  vfs_read+0x869/0xbd0
[   78.332741][ T5789]  ? __pfx_vfs_read+0x10/0x10
[   78.334765][ T5789]  ? __pfx___mutex_lock+0x10/0x10
[   78.336988][ T5789]  ? __fget_files+0x256/0x400
[   78.339088][ T5789]  ksys_read+0x12f/0x260
[   78.340940][ T5789]  ? __pfx_ksys_read+0x10/0x10
[   78.343088][ T5789]  do_syscall_64+0xcd/0x250
[   78.345034][ T5789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.347571][ T5789] RIP: 0033:0x7fe7b4b75b99
[   78.349557][ T5789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.358008][ T5789] RSP: 002b:00007fe7b58e2048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   78.361708][ T5789] RAX: ffffffffffffffda RBX: 00007fe7b4d03f60 RCX: 00007fe7b4b75b99
[   78.365443][ T5789] RDX: 00000000ffffffb5 RSI: 0000000020000600 RDI: 0000000000000003
[   78.368936][ T5789] RBP: 00007fe7b58e20a0 R08: 0000000000000000 R09: 0000000000000000
[   78.372353][ T5789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.375646][ T5789] R13: 000000000000000b R14: 00007fe7b4d03f60 R15: 00007ffdb81c61c8
[   78.379103][ T5789]  </TASK>
[   78.380705][    C0] vkms_vblank_simulate: vblank timer overrun
[   78.397506][ T5625] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   78.405373][ T5625] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   78.412191][ T5625] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   78.428820][ T5625] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   78.437277][   T39] audit: type=1400 audit(1719963645.961:266): avc:  denied  { unmount } for  pid=5174 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   78.524925][ T5625] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.539519][ T5625] 8021q: adding VLAN 0 to HW filter on device team0
[   78.567930][  T826] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.570971][  T826] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.577528][  T826] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.580973][  T826] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.676898][ T5795] KVM: debugfs: duplicate directory 5795-5
[   78.858066][   T39] audit: type=1400 audit(1719963646.381:267): avc:  denied  { sys_module } for  pid=5625 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   79.075384][ T5625] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.131529][ T5175] Bluetooth: hci2: unexpected event 0x07 length: 9 < 255
[   79.200175][ T5625] veth0_vlan: entered promiscuous mode
[   79.209471][   T39] audit: type=1400 audit(1719963646.731:268): avc:  denied  { create } for  pid=5836 comm="syz.1.160" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   79.228211][ T5625] veth1_vlan: entered promiscuous mode
[   79.255009][   T39] audit: type=1400 audit(1719963646.761:269): avc:  denied  { read } for  pid=5836 comm="syz.1.160" name="usbmon0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   79.289350][   T39] audit: type=1400 audit(1719963646.761:270): avc:  denied  { open } for  pid=5836 comm="syz.1.160" path="/dev/usbmon0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   79.318010][ T5625] veth0_macvtap: entered promiscuous mode
[   79.335626][ T5625] veth1_macvtap: entered promiscuous mode
[   79.393033][ T5625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.398067][ T5625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.416006][   T39] audit: type=1400 audit(1719963646.941:271): avc:  denied  { mount } for  pid=5836 comm="syz.1.160" name="/" dev="rpc_pipefs" ino=9118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[   79.416016][ T5625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.416033][ T5625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.416043][ T5625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.442123][ T5625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.453325][ T5625] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.499621][ T5625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.506001][ T5625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.510719][ T5625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.516652][ T5625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.546017][ T5625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.550548][ T5625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.556214][ T5625] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.585087][ T5625] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.589510][ T5625] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.593352][ T5625] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.597347][ T5625] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.752834][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.756213][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.782024][ T5175] Bluetooth: hci0: command tx timeout
[   79.791891][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.795364][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.883727][   T39] audit: type=1400 audit(1719963647.411:272): avc:  denied  { mount } for  pid=5625 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   80.045227][ T5859] fuse: Unknown parameter 'group_id00000000000000000000'
[   80.399848][ T5880] FAULT_INJECTION: forcing a failure.
[   80.399848][ T5880] name failslab, interval 1, probability 0, space 0, times 0
[   80.407665][ T5880] CPU: 3 PID: 5880 Comm: syz.1.173 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[   80.415592][ T5880] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.420705][ T5880] Call Trace:
[   80.422140][ T5880]  <TASK>
[   80.423426][ T5880]  dump_stack_lvl+0x16c/0x1f0
[   80.425990][ T5880]  should_fail_ex+0x497/0x5b0
[   80.428472][ T5880]  should_failslab+0x9/0x20
[   80.430206][ T5880]  kmalloc_trace_noprof+0x6b/0x300
[   80.432257][ T5880]  ? refill_pi_state_cache+0x89/0x250
[   80.435001][ T5880]  refill_pi_state_cache+0x89/0x250
[   80.437503][ T5880]  futex_lock_pi+0x201/0x710
[   80.439910][ T5880]  ? __pfx_futex_lock_pi+0x10/0x10
[   80.442306][ T5880]  ? find_held_lock+0x2d/0x110
[   80.444324][ T5880]  ? __pfx_futex_wake_mark+0x10/0x10
[   80.446498][ T5880]  ? vfs_write+0x14d/0x1140
[   80.448285][ T5880]  do_futex+0x11b/0x350
[   80.450126][ T5880]  ? __pfx_do_futex+0x10/0x10
[   80.451886][ T5880]  __x64_sys_futex+0x1e1/0x4c0
[   80.453567][ T5880]  ? fput+0x32/0x390
[   80.454967][ T5880]  ? __pfx___x64_sys_futex+0x10/0x10
[   80.456969][ T5880]  ? ksys_write+0x1ab/0x260
[   80.459194][ T5880]  ? __pfx_ksys_write+0x10/0x10
[   80.461235][ T5880]  do_syscall_64+0xcd/0x250
[   80.463341][ T5880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.465809][ T5880] RIP: 0033:0x7f6813d75b99
[   80.467621][ T5880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.476884][ T5880] RSP: 002b:00007f68137ff048 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   80.480933][ T5880] RAX: ffffffffffffffda RBX: 00007f6813f03f60 RCX: 00007f6813d75b99
[   80.484227][ T5880] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 000000002000cffc
[   80.487667][ T5880] RBP: 00007f68137ff0a0 R08: 0000000000000000 R09: 0000000000000000
[   80.491343][ T5880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.495117][ T5880] R13: 000000000000000b R14: 00007f6813f03f60 R15: 00007fff427ea298
[   80.499115][ T5880]  </TASK>
[   80.535809][ T5175] Bluetooth: hci2: Malformed LE Event: 0x1b
[   81.106839][   T39] audit: type=1400 audit(1719963648.631:273): avc:  denied  { read } for  pid=5909 comm="syz.2.185" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   81.118409][ T5911] binder: 5909:5911 ioctl 89f8 20000480 returned -22
[   81.120799][   T39] audit: type=1400 audit(1719963648.631:274): avc:  denied  { open } for  pid=5909 comm="syz.2.185" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   82.017623][ T5975] FAULT_INJECTION: forcing a failure.
[   82.017623][ T5975] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.023671][ T5975] CPU: 3 PID: 5975 Comm: syz.3.205 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[   82.028154][ T5975] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.033067][ T5975] Call Trace:
[   82.034601][ T5975]  <TASK>
[   82.035942][ T5975]  dump_stack_lvl+0x16c/0x1f0
[   82.038092][ T5975]  should_fail_ex+0x497/0x5b0
[   82.040185][ T5975]  _copy_from_user+0x30/0xf0
[   82.042715][ T5975]  copy_msghdr_from_user+0x99/0x160
[   82.045314][ T5975]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   82.048750][ T5975]  ? find_held_lock+0x2d/0x110
[   82.050829][ T5975]  ___sys_recvmsg+0xdc/0x1a0
[   82.053409][ T5975]  ? __pfx____sys_recvmsg+0x10/0x10
[   82.056077][ T5975]  ? __fget_light+0x173/0x210
[   82.058619][ T5975]  __sys_recvmsg+0x114/0x1e0
[   82.061191][ T5975]  ? __pfx___sys_recvmsg+0x10/0x10
[   82.063693][ T5975]  do_syscall_64+0xcd/0x250
[   82.065613][ T5975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.068183][ T5975] RIP: 0033:0x7f064b575b99
[   82.070216][ T5975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.078492][ T5975] RSP: 002b:00007f064c2de048 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   82.081941][ T5975] RAX: ffffffffffffffda RBX: 00007f064b703f60 RCX: 00007f064b575b99
[   82.085935][ T5975] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[   82.090302][ T5975] RBP: 00007f064c2de0a0 R08: 0000000000000000 R09: 0000000000000000
[   82.094165][ T5975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.098807][ T5975] R13: 000000000000000b R14: 00007f064b703f60 R15: 00007ffede78ba88
[   82.102897][ T5975]  </TASK>
[   82.213908][ T5986] fuse: Bad value for 'user_id'
[   82.257749][ T5990] netlink: 'syz.1.213': attribute type 29 has an invalid length.
[   82.260964][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.1.213'.
[   82.265652][ T5990] netlink: 'syz.1.213': attribute type 29 has an invalid length.
[   82.274925][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.1.213'.
[   82.307710][ T5995] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   82.322204][ T5175] Bluetooth: hci1: Malformed LE Event: 0x1b
[   82.401140][ T6004] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   82.448205][ T6006] openvswitch: netlink: Flow actions attr not present in new flow.
[   82.598967][ T6018] fuse: Bad value for 'user_id'
[   82.720733][ T5175] Bluetooth: hci2: Malformed LE Event: 0x1b
[   83.061875][ T5175] Bluetooth: hci2: unexpected event 0x07 length: 9 < 255
[   84.635501][ T5175] Bluetooth: hci2: Malformed LE Event: 0x1b
[   84.686476][ T5175] Bluetooth: hci0: Malformed LE Event: 0x1b
[   85.007911][ T6065] fuse: Bad value for 'fd'
[   85.058321][   T39] kauditd_printk_skb: 16 callbacks suppressed
[   85.058335][   T39] audit: type=1400 audit(1719963652.581:291): avc:  denied  { create } for  pid=6066 comm="syz.0.239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   85.074745][   T39] audit: type=1400 audit(1719963652.591:292): avc:  denied  { bind } for  pid=6066 comm="syz.0.239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   85.084468][   T39] audit: type=1400 audit(1719963652.591:293): avc:  denied  { name_bind } for  pid=6066 comm="syz.0.239" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   85.093892][   T39] audit: type=1400 audit(1719963652.591:294): avc:  denied  { node_bind } for  pid=6066 comm="syz.0.239" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[   85.103682][   T39] audit: type=1400 audit(1719963652.591:295): avc:  denied  { listen } for  pid=6066 comm="syz.0.239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   85.110733][   T39] audit: type=1400 audit(1719963652.601:296): avc:  denied  { connect } for  pid=6066 comm="syz.0.239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   85.129007][   T39] audit: type=1400 audit(1719963652.601:297): avc:  denied  { name_connect } for  pid=6066 comm="syz.0.239" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   85.376521][ T6073] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[   85.380243][ T6073] PKCS7: Only support pkcs7_signedData type
[   85.511340][   T39] audit: type=1400 audit(1719963653.031:298): avc:  denied  { write } for  pid=6072 comm="syz.3.241" path="socket:[9957]" dev="sockfs" ino=9957 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   86.027136][   T39] audit: type=1400 audit(1719963653.551:299): avc:  denied  { create } for  pid=6079 comm="syz.0.243" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   86.052279][   T39] audit: type=1400 audit(1719963653.551:300): avc:  denied  { write } for  pid=6079 comm="syz.0.243" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   86.073425][ T6084] input: syz1 as /devices/virtual/input/input5
[   86.099608][ T6085] FAULT_INJECTION: forcing a failure.
[   86.099608][ T6085] name failslab, interval 1, probability 0, space 0, times 0
[   86.106551][ T6085] CPU: 1 PID: 6085 Comm: syz.2.244 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[   86.111418][ T6085] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.115986][ T6085] Call Trace:
[   86.117716][ T6085]  <TASK>
[   86.119040][ T6085]  dump_stack_lvl+0x16c/0x1f0
[   86.121050][ T6085]  should_fail_ex+0x497/0x5b0
[   86.123038][ T6085]  should_failslab+0x9/0x20
[   86.125057][ T6085]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   86.128202][ T6085]  ? getname_flags.part.0+0x50/0x4f0
[   86.130445][ T6085]  getname_flags.part.0+0x50/0x4f0
[   86.132584][ T6085]  getname+0x8f/0xe0
[   86.134132][ T6085]  do_sys_openat2+0x104/0x1e0
[   86.136075][ T6085]  ? __pfx_do_sys_openat2+0x10/0x10
[   86.138352][ T6085]  __x64_sys_openat+0x175/0x210
[   86.140528][ T6085]  ? __pfx___x64_sys_openat+0x10/0x10
[   86.143187][ T6085]  ? ksys_write+0x1ab/0x260
[   86.145220][ T6085]  do_syscall_64+0xcd/0x250
[   86.147253][ T6085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.149998][ T6085] RIP: 0033:0x7fe7b4b75b99
[   86.152004][ T6085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.160567][ T6085] RSP: 002b:00007fe7b58c1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   86.163973][ T6085] RAX: ffffffffffffffda RBX: 00007fe7b4d04038 RCX: 00007fe7b4b75b99
[   86.167091][ T6085] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffff9c
[   86.170352][ T6085] RBP: 00007fe7b58c10a0 R08: 0000000000000000 R09: 0000000000000000
[   86.173765][ T6085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.176577][ T6085] R13: 000000000000006e R14: 00007fe7b4d04038 R15: 00007ffdb81c61c8
[   86.179715][ T6085]  </TASK>
[   86.316216][ T6089] fuse: Bad value for 'fd'
[   86.539184][ T5175] Bluetooth: hci0: unexpected event 0x07 length: 9 < 255
[   87.158811][ T6110] FAULT_INJECTION: forcing a failure.
[   87.158811][ T6110] name failslab, interval 1, probability 0, space 0, times 0
[   87.167247][ T6110] CPU: 2 PID: 6110 Comm: syz.2.255 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[   87.171766][ T6110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.176406][ T6110] Call Trace:
[   87.177945][ T6110]  <TASK>
[   87.180093][ T6110]  dump_stack_lvl+0x16c/0x1f0
[   87.182873][ T6110]  should_fail_ex+0x497/0x5b0
[   87.185393][ T6110]  should_failslab+0x9/0x20
[   87.187457][ T6110]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   87.190031][ T6110]  ? getname_flags.part.0+0x50/0x4f0
[   87.192216][ T6110]  getname_flags.part.0+0x50/0x4f0
[   87.194176][ T6110]  getname+0x8f/0xe0
[   87.195889][ T6110]  quotactl_block+0x73/0x680
[   87.197883][ T6110]  ? __pfx_quotactl_block+0x10/0x10
[   87.199918][ T6110]  __x64_sys_quotactl+0x173/0x440
[   87.202092][ T6110]  ? __pfx___x64_sys_quotactl+0x10/0x10
[   87.204513][ T6110]  ? ksys_write+0x1ab/0x260
[   87.206582][ T6110]  ? __pfx_ksys_write+0x10/0x10
[   87.208852][ T6110]  do_syscall_64+0xcd/0x250
[   87.210836][ T6110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.213378][ T6110] RIP: 0033:0x7fe7b4b75b99
[   87.215574][ T6110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.223590][ T6110] RSP: 002b:00007fe7b58e2048 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[   87.227145][ T6110] RAX: ffffffffffffffda RBX: 00007fe7b4d03f60 RCX: 00007fe7b4b75b99
[   87.230504][ T6110] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000
[   87.233960][ T6110] RBP: 00007fe7b58e20a0 R08: 0000000000000000 R09: 0000000000000000
[   87.237047][ T6110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.240352][ T6110] R13: 000000000000000b R14: 00007fe7b4d03f60 R15: 00007ffdb81c61c8
[   87.243779][ T6110]  </TASK>
[   87.424182][ T6119] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   87.555063][   T10] cfg80211: failed to load regulatory.db
[   87.886874][ T6137] fuse: Bad value for 'fd'
[   87.917056][ T6140] netlink: 16 bytes leftover after parsing attributes in process `syz.1.263'.
[   88.175035][ T6162] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   88.257680][ T6166] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   88.550034][   T45] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.657206][   T45] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.760016][   T45] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.780997][ T5176] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   88.786429][ T5176] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   88.790815][ T5176] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   88.796122][ T5176] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   88.799969][ T5176] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   88.803436][ T5176] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   88.944616][   T45] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.048101][ T6174] chnl_net:caif_netlink_parms(): no params data found
[   89.178531][   T45] bridge_slave_1: left allmulticast mode
[   89.180502][   T45] bridge_slave_1: left promiscuous mode
[   89.183600][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.188879][   T45] bridge_slave_0: left allmulticast mode
[   89.191054][   T45] bridge_slave_0: left promiscuous mode
[   89.193803][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.494393][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   89.500805][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   89.510779][   T45] bond0 (unregistering): Released all slaves
[   89.747376][ T6174] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.750187][ T6174] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.753389][ T6174] bridge_slave_0: entered allmulticast mode
[   89.756971][ T6174] bridge_slave_0: entered promiscuous mode
[   89.764669][ T6174] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.767478][ T6174] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.770354][ T6174] bridge_slave_1: entered allmulticast mode
[   89.774885][ T6174] bridge_slave_1: entered promiscuous mode
[   89.952354][ T6174] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.964153][ T6174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.115563][   T45] hsr_slave_0: left promiscuous mode
[   90.118372][   T45] hsr_slave_1: left promiscuous mode
[   90.136602][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   90.139417][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[   90.143135][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   90.145888][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[   90.185535][   T45] veth1_macvtap: left promiscuous mode
[   90.188055][   T45] veth0_macvtap: left promiscuous mode
[   90.192304][   T45] veth1_vlan: left promiscuous mode
[   90.201462][   T45] veth0_vlan: left promiscuous mode
[   90.211823][ T6228] FAULT_INJECTION: forcing a failure.
[   90.211823][ T6228] name failslab, interval 1, probability 0, space 0, times 0
[   90.217500][ T6228] CPU: 3 PID: 6228 Comm: syz.0.288 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[   90.222045][ T6228] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.226936][ T6228] Call Trace:
[   90.228508][ T6228]  <TASK>
[   90.229886][ T6228]  dump_stack_lvl+0x16c/0x1f0
[   90.232058][ T6228]  should_fail_ex+0x497/0x5b0
[   90.234250][ T6228]  should_failslab+0x9/0x20
[   90.236451][ T6228]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   90.238929][ T6228]  ? getname_flags.part.0+0x50/0x4f0
[   90.241342][ T6228]  getname_flags.part.0+0x50/0x4f0
[   90.243493][ T6228]  getname+0x8f/0xe0
[   90.245159][ T6228]  __x64_sys_acct+0x73/0x220
[   90.247089][ T6228]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.249441][ T6228]  do_syscall_64+0xcd/0x250
[   90.251533][ T6228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.254264][ T6228] RIP: 0033:0x7f50e9f75b99
[   90.256351][ T6228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.265134][ T6228] RSP: 002b:00007f50eac98048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[   90.269001][ T6228] RAX: ffffffffffffffda RBX: 00007f50ea103f60 RCX: 00007f50e9f75b99
[   90.272664][ T6228] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000140
[   90.276186][ T6228] RBP: 00007f50eac980a0 R08: 0000000000000000 R09: 0000000000000000
[   90.279386][ T6228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.283005][ T6228] R13: 000000000000000b R14: 00007f50ea103f60 R15: 00007ffc84b87df8
[   90.286615][ T6228]  </TASK>
[   90.333097][   T39] kauditd_printk_skb: 20 callbacks suppressed
[   90.333113][   T39] audit: type=1400 audit(1719963657.861:321): avc:  denied  { ioctl } for  pid=6230 comm="syz.0.289" path="socket:[12896]" dev="sockfs" ino=12896 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   90.833126][ T5176] Bluetooth: hci2: command tx timeout
[   91.015120][   T45] team0 (unregistering): Port device team_slave_1 removed
[   91.085474][   T45] team0 (unregistering): Port device team_slave_0 removed
[   91.704667][ T6174] team0: Port device team_slave_0 added
[   91.731243][ T6174] team0: Port device team_slave_1 added
[   91.800179][ T5176] Bluetooth: hci3: unexpected event 0x04 length: 14 > 10
[   91.854621][ T6174] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.863116][ T6174] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.878016][ T6174] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.929143][ T6174] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.002097][ T6174] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.024839][ T6174] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.138319][   T39] audit: type=1400 audit(1719963659.481:322): avc:  denied  { ioctl } for  pid=6247 comm="syz.0.294" path="/dev/vhost-net" dev="devtmpfs" ino=1115 ioctlcmd=0xaf03 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   92.766176][ T6174] hsr_slave_0: entered promiscuous mode
[   92.806804][ T6277] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   92.841969][ T6174] hsr_slave_1: entered promiscuous mode
[   92.902414][ T5176] Bluetooth: hci2: command tx timeout
[   92.923838][   T39] audit: type=1400 audit(1719963660.441:323): avc:  denied  { write } for  pid=6278 comm="syz.3.300" name="001" dev="devtmpfs" ino=748 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   92.950455][ T6283] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   92.962308][ T6282] syz.3.300: attempt to access beyond end of device
[   92.962308][ T6282] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[   92.988857][   T39] audit: type=1400 audit(1719963660.511:324): avc:  denied  { write } for  pid=6278 comm="syz.3.300" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[   92.997159][ T6282] usb usb8: selecting invalid altsetting 65537
[   93.719896][   T39] audit: type=1400 audit(1719963661.241:325): avc:  denied  { unmount } for  pid=5625 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   93.806289][ T6174] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   93.814367][ T6174] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   93.829136][ T6174] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   93.849224][ T6174] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   93.861737][ T5176] Bluetooth: hci3: command tx timeout
[   94.048890][ T6174] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.069556][ T6174] 8021q: adding VLAN 0 to HW filter on device team0
[   94.079031][   T10] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.082415][   T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.093650][   T10] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.096863][   T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.139634][ T6174] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   94.309586][ T6174] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.357686][ T6174] veth0_vlan: entered promiscuous mode
[   94.368802][ T6174] veth1_vlan: entered promiscuous mode
[   94.404002][ T6174] veth0_macvtap: entered promiscuous mode
[   94.413350][ T6174] veth1_macvtap: entered promiscuous mode
[   94.430253][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.438598][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.444788][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.449460][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.454123][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.458286][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.466438][   T39] audit: type=1400 audit(1719963661.991:326): avc:  denied  { write } for  pid=4673 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   94.468768][ T6174] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.484103][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.488326][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.501847][   T39] audit: type=1400 audit(1719963661.991:327): avc:  denied  { remove_name } for  pid=4673 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   94.503183][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.515976][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.520233][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.522446][   T39] audit: type=1400 audit(1719963661.991:328): avc:  denied  { rename } for  pid=4673 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   94.531345][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.533180][   T39] audit: type=1400 audit(1719963661.991:329): avc:  denied  { add_name } for  pid=4673 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   94.543460][ T6174] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.551023][   T39] audit: type=1400 audit(1719963661.991:330): avc:  denied  { unlink } for  pid=4673 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   94.568407][ T6174] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.575248][ T6174] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.578768][ T6174] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.583526][ T6174] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.617198][ T6330] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   94.658806][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.667477][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.683144][ T6333] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   94.695591][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.700672][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.041705][ T5176] Bluetooth: hci0: unexpected event 0x04 length: 14 > 10
[   95.042614][ T5176] Bluetooth: Frame is too long (len 16, expected len 15)
[   96.340503][ T6352] fuse: Bad value for 'rootmode'
[   96.488775][   T39] kauditd_printk_skb: 1 callbacks suppressed
[   96.488790][   T39] audit: type=1400 audit(1719963664.011:332): avc:  denied  { write } for  pid=6353 comm="syz.1.311" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   96.501430][   T39] audit: type=1400 audit(1719963664.011:333): avc:  denied  { open } for  pid=6353 comm="syz.1.311" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   96.516213][   T39] audit: type=1400 audit(1719963664.041:334): avc:  denied  { read } for  pid=6353 comm="syz.1.311" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   97.072073][ T5176] Bluetooth: hci0: command tx timeout
[   97.468432][ T5176] Bluetooth: hci0: unexpected event 0x07 length: 9 < 255
[   97.822344][ T1092] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.179439][ T5175] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   98.185247][ T5175] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   98.188819][ T5175] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   98.202201][ T5175] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   98.206006][ T5175] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   98.210314][ T5175] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   98.443719][ T6404] chnl_net:caif_netlink_parms(): no params data found
[   98.481112][ T6418] netlink: 'syz.3.325': attribute type 3 has an invalid length.
[   98.646239][ T6404] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.653366][ T6404] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.656587][ T6404] bridge_slave_0: entered allmulticast mode
[   98.662462][ T6404] bridge_slave_0: entered promiscuous mode
[   98.675738][ T6404] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.681747][ T6404] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.687108][ T6404] bridge_slave_1: entered allmulticast mode
[   98.693884][ T6404] bridge_slave_1: entered promiscuous mode
[   98.791221][ T5176] Bluetooth: hci3: unexpected event 0x04 length: 14 > 10
[   98.792652][ T5176] Bluetooth: Frame is too long (len 16, expected len 15)
[   98.816642][ T6404] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   98.829417][ T6404] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.978508][ T6440] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   99.106201][ T6443] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   99.576571][ T6404] team0: Port device team_slave_0 added
[   99.584962][ T6404] team0: Port device team_slave_1 added
[   99.685791][ T6404] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.696290][ T6404] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.708541][ T6404] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.737696][ T6404] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.740718][ T6404] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.754963][ T6404] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.841360][ T6452] fuse: Unknown parameter 'use00000000000000000000'
[   99.876332][ T6404] hsr_slave_0: entered promiscuous mode
[   99.886319][ T6404] hsr_slave_1: entered promiscuous mode
[   99.890254][ T6404] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   99.895577][ T6404] Cannot create hsr debugfs directory
[   99.945951][ T6459] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.007894][ T6458] Zero length message leads to an empty skb
[  100.015368][ T6460] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.261860][ T5176] Bluetooth: hci2: command tx timeout
[  100.279031][ T5176] Bluetooth: hci0: unexpected event 0x04 length: 14 > 10
[  100.280936][ T5176] Bluetooth: Frame is too long (len 16, expected len 15)
[  100.394595][ T1092] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.422801][ T5176] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  100.427385][ T5176] Bluetooth: hci1: Injecting HCI hardware error event
[  100.458153][ T5175] Bluetooth: hci1: hardware error 0x00
[  100.640553][ T1092] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.962357][ T1092] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.161670][ T1092] bridge_slave_1: left allmulticast mode
[  101.164938][ T1092] bridge_slave_1: left promiscuous mode
[  101.167917][ T1092] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.176773][ T1092] bridge_slave_0: left allmulticast mode
[  101.179178][ T1092] bridge_slave_0: left promiscuous mode
[  101.184112][ T1092] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.571887][ T1092] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  101.594618][ T1092] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  101.606567][ T1092] bond0 (unregistering): Released all slaves
[  102.243210][ T1092] hsr_slave_0: left promiscuous mode
[  102.266779][ T1092] hsr_slave_1: left promiscuous mode
[  102.309290][ T1092] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.312765][ T1092] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.320527][ T1092] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.324824][ T1092] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.341846][ T5176] Bluetooth: hci2: command tx timeout
[  102.386228][ T1092] veth1_macvtap: left promiscuous mode
[  102.388798][ T1092] veth0_macvtap: left promiscuous mode
[  102.391726][ T1092] veth1_vlan: left promiscuous mode
[  102.394141][ T1092] veth0_vlan: left promiscuous mode
[  102.581652][ T5175] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  102.734315][ T6533] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  102.860536][ T6539] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  103.642168][ T1092] team0 (unregistering): Port device team_slave_1 removed
[  103.729598][ T1092] team0 (unregistering): Port device team_slave_0 removed
[  103.795252][ T5175] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  103.799533][ T5175] Bluetooth: hci3: Injecting HCI hardware error event
[  103.803813][ T5175] Bluetooth: hci3: hardware error 0x00
[  104.205903][ T6561] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  104.326884][ T6563] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  104.421425][ T5176] Bluetooth: hci2: command tx timeout
[  104.598038][ T6404] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  104.609338][ T6404] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  104.624567][ T6404] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  104.645228][ T6404] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  104.775784][ T6404] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.805540][ T6404] 8021q: adding VLAN 0 to HW filter on device team0
[  104.823530][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.825757][ T5176] Bluetooth: hci0: unexpected event 0x04 length: 14 > 10
[  104.826697][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.827025][ T5176] Bluetooth: Frame is too long (len 16, expected len 15)
[  104.839280][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.842646][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.322266][ T5176] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  105.325728][ T6404] 8021q: adding VLAN 0 to HW filter on device batadv0
[  105.325980][ T5176] Bluetooth: hci0: Injecting HCI hardware error event
[  105.334858][ T5176] Bluetooth: hci0: hardware error 0x00
[  105.451480][ T6404] veth0_vlan: entered promiscuous mode
[  105.462174][ T6404] veth1_vlan: entered promiscuous mode
[  105.487431][ T6404] veth0_macvtap: entered promiscuous mode
[  105.501726][ T6404] veth1_macvtap: entered promiscuous mode
[  105.518503][ T6404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.523641][ T6404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.527878][ T6404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.532402][ T6404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.536210][ T6404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.541127][ T6404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.554339][ T6404] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.560805][ T6404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.565394][ T6404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.570868][ T6404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.576511][ T6404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.580654][ T6404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.586323][ T6404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.592539][ T6404] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.607827][ T6404] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.622316][ T6404] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.626472][ T6404] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.630340][ T6404] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.750111][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.765927][   T39] audit: type=1400 audit(1719963673.271:335): avc:  denied  { listen } for  pid=6594 comm="syz.3.367" lport=36932 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  105.776149][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.802455][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.804985][   T39] audit: type=1400 audit(1719963673.331:336): avc:  denied  { accept } for  pid=6594 comm="syz.3.367" lport=36932 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  105.805992][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.812525][ T6593] netlink: 16 bytes leftover after parsing attributes in process `syz.0.366'.
[  105.832833][   T39] audit: type=1400 audit(1719963673.361:337): avc:  denied  { write } for  pid=6594 comm="syz.3.367" lport=36932 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  105.843648][   T39] audit: type=1400 audit(1719963673.361:338): avc:  denied  { setopt } for  pid=6594 comm="syz.3.367" lport=36932 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  105.904801][ T6604] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  105.941656][ T5175] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  105.970091][ T6610] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  106.028227][   T39] audit: type=1400 audit(1719963673.551:339): avc:  denied  { getopt } for  pid=6616 comm="syz.3.372" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  106.139127][ T6619] FAULT_INJECTION: forcing a failure.
[  106.139127][ T6619] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.146125][ T6619] CPU: 2 PID: 6619 Comm: syz.1.373 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[  106.150474][ T6619] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.169368][ T6619] Call Trace:
[  106.170594][ T6619]  <TASK>
[  106.171708][ T6619]  dump_stack_lvl+0x16c/0x1f0
[  106.173498][ T6619]  should_fail_ex+0x497/0x5b0
[  106.175371][ T6619]  _copy_from_user+0x30/0xf0
[  106.177306][ T6619]  copy_msghdr_from_user+0x99/0x160
[  106.179334][ T6619]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  106.181971][ T6619]  ? __pfx___lock_acquire+0x10/0x10
[  106.184043][ T6619]  ___sys_sendmsg+0xff/0x1e0
[  106.185889][ T6619]  ? __pfx____sys_sendmsg+0x10/0x10
[  106.187942][ T6619]  ? __pfx_lock_release+0x10/0x10
[  106.189967][ T6619]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  106.192244][ T6619]  ? __fget_light+0x173/0x210
[  106.194089][ T6619]  __sys_sendmmsg+0x1a1/0x450
[  106.195936][ T6619]  ? __pfx___sys_sendmmsg+0x10/0x10
[  106.197996][ T6619]  ? vfs_write+0x14d/0x1140
[  106.199821][ T6619]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  106.202213][ T6619]  ? fput+0x32/0x390
[  106.203746][ T6619]  ? ksys_write+0x1ab/0x260
[  106.205561][ T6619]  ? __pfx_ksys_write+0x10/0x10
[  106.207487][ T6619]  __x64_sys_sendmmsg+0x9c/0x100
[  106.209447][ T6619]  ? lockdep_hardirqs_on+0x7c/0x110
[  106.211426][ T6619]  do_syscall_64+0xcd/0x250
[  106.213237][ T6619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.215550][ T6619] RIP: 0033:0x7f6813d75b99
[  106.217306][ T6619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.224792][ T6619] RSP: 002b:00007f68137ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  106.228010][ T6619] RAX: ffffffffffffffda RBX: 00007f6813f03f60 RCX: 00007f6813d75b99
[  106.231016][ T6619] RDX: 0000000000000001 RSI: 0000000020000b00 RDI: 0000000000000004
[  106.234141][ T6619] RBP: 00007f68137ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  106.237270][ T6619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.240387][ T6619] R13: 000000000000000b R14: 00007f6813f03f60 R15: 00007fff427ea298
[  106.243385][ T6619]  </TASK>
[  106.363356][   T39] audit: type=1400 audit(1719963673.891:340): avc:  denied  { read } for  pid=6627 comm="syz.1.375" name="nvram" dev="devtmpfs" ino=633 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  106.372441][   T39] audit: type=1400 audit(1719963673.891:341): avc:  denied  { open } for  pid=6627 comm="syz.1.375" path="/dev/nvram" dev="devtmpfs" ino=633 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  106.408851][ T6631] netlink: 16 bytes leftover after parsing attributes in process `syz.1.376'.
[  107.383186][ T5176] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  107.389998][ T6656] Bluetooth: MGMT ver 1.22
[  107.398103][ T6656] netlink: 'syz.0.382': attribute type 4 has an invalid length.
[  107.402591][   T39] audit: type=1400 audit(1719963674.931:342): avc:  denied  { ioctl } for  pid=6649 comm="syz.0.382" path="socket:[15643]" dev="sockfs" ino=15643 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  107.412856][ T6656] bond0: (slave caif0): Error: Device type is different from other slaves
[  107.438783][ T6658] FAULT_INJECTION: forcing a failure.
[  107.438783][ T6658] name failslab, interval 1, probability 0, space 0, times 0
[  107.446843][ T6658] CPU: 2 PID: 6658 Comm: syz.1.384 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[  107.451695][ T6658] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.456681][ T6658] Call Trace:
[  107.458342][ T6658]  <TASK>
[  107.459660][ T6658]  dump_stack_lvl+0x16c/0x1f0
[  107.461828][ T6658]  should_fail_ex+0x497/0x5b0
[  107.464244][ T6658]  should_failslab+0x9/0x20
[  107.466347][ T6658]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  107.468738][ T6658]  ? unwind_next_frame+0x51/0x23a0
[  107.471000][ T6658]  ? vm_area_dup+0x21/0x2f0
[  107.473019][ T6658]  vm_area_dup+0x21/0x2f0
[  107.474904][ T6658]  __split_vma+0x181/0x11c0
[  107.476876][ T6658]  ? hlock_class+0x4e/0x130
[  107.478885][ T6658]  ? __pfx_mark_lock+0x10/0x10
[  107.480992][ T6658]  ? __pfx___split_vma+0x10/0x10
[  107.483563][ T6658]  ? hlock_class+0x4e/0x130
[  107.485750][ T6658]  ? mark_lock+0xb5/0xc60
[  107.487310][ T6658]  do_vmi_align_munmap+0x2bf/0x19c0
[  107.489138][ T6658]  ? mtree_range_walk+0x715/0xbe0
[  107.490953][ T6658]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  107.493030][ T6658]  do_vmi_munmap+0x231/0x410
[  107.494889][ T6658]  do_munmap+0xb0/0xf0
[  107.496392][ T6658]  ? __pfx_do_munmap+0x10/0x10
[  107.498309][ T6658]  __do_sys_mremap+0x1373/0x1610
[  107.500105][ T6658]  ? __pfx___do_sys_mremap+0x10/0x10
[  107.501947][ T6658]  ? fput+0x32/0x390
[  107.503327][ T6658]  ? ksys_write+0x1ab/0x260
[  107.504945][ T6658]  ? __secure_computing+0x273/0x3f0
[  107.506801][ T6658]  do_syscall_64+0xcd/0x250
[  107.508713][ T6658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.511071][ T6658] RIP: 0033:0x7f6813d75b99
[  107.512890][ T6658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.520970][ T6658] RSP: 002b:00007f68137ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  107.523986][ T6658] RAX: ffffffffffffffda RBX: 00007f6813f03f60 RCX: 00007f6813d75b99
[  107.527057][ T6658] RDX: 0000000000004000 RSI: 0000000000003000 RDI: 0000000020001000
[  107.530000][ T6658] RBP: 00007f68137ff0a0 R08: 0000000020005000 R09: 0000000000000000
[  107.532953][ T6658] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  107.535820][ T6658] R13: 000000000000000b R14: 00007f6813f03f60 R15: 00007fff427ea298
[  107.538542][ T6658]  </TASK>
[  107.578696][ T6660] fuse: Unknown parameter 'user_id00000000000000000000'
[  107.798626][ T6670] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  107.880049][ T6672] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  108.596642][ T6675] fuse: Bad value for 'fd'
[  109.316666][   T63] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.736422][ T5175] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  109.740768][ T5175] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  109.746204][ T5175] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  109.756887][ T5175] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  109.761952][ T5175] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  109.765767][ T5175] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  109.992524][ T6692] chnl_net:caif_netlink_parms(): no params data found
[  110.132898][ T6692] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.141453][ T6692] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.145275][ T6692] bridge_slave_0: entered allmulticast mode
[  110.152598][ T6692] bridge_slave_0: entered promiscuous mode
[  110.162263][ T6692] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.165389][ T6692] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.167927][ T6692] bridge_slave_1: entered allmulticast mode
[  110.176768][ T6692] bridge_slave_1: entered promiscuous mode
[  110.200394][ T6704] netlink: 'syz.1.396': attribute type 4 has an invalid length.
[  110.229481][ T6704] bond0: (slave caif0): Error: Device type is different from other slaves
[  110.242865][ T6692] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.252696][ T6692] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.327610][ T6692] team0: Port device team_slave_0 added
[  110.338655][ T6692] team0: Port device team_slave_1 added
[  110.429324][ T6692] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.432647][ T6692] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.445269][ T6692] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.461844][ T6692] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.464521][ T6692] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.474658][ T6692] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.612358][ T6713] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.689301][ T6692] hsr_slave_0: entered promiscuous mode
[  110.695602][ T6692] hsr_slave_1: entered promiscuous mode
[  110.705319][ T6719] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  111.700377][   T63] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.756964][   T63] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.794568][ T5175] Bluetooth: hci2: command tx timeout
[  111.836301][   T63] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.991378][   T63] bridge_slave_1: left allmulticast mode
[  111.993956][   T63] bridge_slave_1: left promiscuous mode
[  111.996536][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.008144][   T63] bridge_slave_0: left allmulticast mode
[  112.012060][   T63] bridge_slave_0: left promiscuous mode
[  112.014746][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.377470][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  112.386081][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  112.393749][   T63] bond0 (unregistering): Released all slaves
[  112.973228][   T63] hsr_slave_0: left promiscuous mode
[  112.977634][   T63] hsr_slave_1: left promiscuous mode
[  112.981597][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.987514][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  113.005297][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  113.008677][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  113.029606][ T6794] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.082768][   T63] veth1_macvtap: left promiscuous mode
[  113.086589][   T63] veth0_macvtap: left promiscuous mode
[  113.090510][   T63] veth1_vlan: left promiscuous mode
[  113.093629][   T63] veth0_vlan: left promiscuous mode
[  113.181584][ T6801] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.457557][ T6808] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.571158][ T6810] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.864996][ T5175] Bluetooth: hci2: command tx timeout
[  114.047356][   T63] team0 (unregistering): Port device team_slave_1 removed
[  114.126962][   T63] team0 (unregistering): Port device team_slave_0 removed
[  114.882104][ T6817] fuse: Bad value for 'fd'
[  114.965072][ T6692] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  114.973633][ T6692] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  114.980232][ T6692] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  114.996448][ T6692] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  115.125698][ T6692] 8021q: adding VLAN 0 to HW filter on device bond0
[  115.147525][ T6692] 8021q: adding VLAN 0 to HW filter on device team0
[  115.157485][ T6597] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.160914][ T6597] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.172468][ T6597] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.175666][ T6597] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.262714][   T39] audit: type=1400 audit(1719963682.791:343): avc:  denied  { getopt } for  pid=6830 comm="syz.1.426" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  115.396080][ T6692] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.454455][ T6692] veth0_vlan: entered promiscuous mode
[  115.465140][ T6692] veth1_vlan: entered promiscuous mode
[  115.493099][ T6692] veth0_macvtap: entered promiscuous mode
[  115.499321][ T6692] veth1_macvtap: entered promiscuous mode
[  115.515723][ T6692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.520428][ T6692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.524731][ T6692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.529227][ T6692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.534084][ T6692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.537958][ T6692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.545319][ T6692] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.559470][ T6692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.565560][ T6692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.571020][ T6692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.579073][ T6692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.583883][ T6692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.588567][ T6692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.596064][ T6692] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.606419][ T6692] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.610231][ T6692] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.614689][ T6692] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.618293][ T6692] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.761221][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.771633][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.796140][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.799946][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.813740][ T6866] netlink: 'syz.0.435': attribute type 4 has an invalid length.
[  116.825527][ T6866] netlink: 'syz.0.435': attribute type 4 has an invalid length.
[  117.537565][   T39] audit: type=1400 audit(1719963685.051:344): avc:  denied  { getopt } for  pid=6873 comm="syz.1.438" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  117.593505][ T6866] syz.0.435 (6866) used greatest stack depth: 21056 bytes left
[  118.536536][ T6887] FAULT_INJECTION: forcing a failure.
[  118.536536][ T6887] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  118.542154][ T6887] CPU: 2 PID: 6887 Comm: syz.0.443 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[  118.545992][ T6887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.550953][ T6887] Call Trace:
[  118.552611][ T6887]  <TASK>
[  118.554336][ T6887]  dump_stack_lvl+0x16c/0x1f0
[  118.556621][ T6887]  should_fail_ex+0x497/0x5b0
[  118.558552][ T6887]  ? fs_reclaim_acquire+0xae/0x160
[  118.560802][ T6887]  __should_fail_alloc_page+0xe7/0x130
[  118.563431][ T6887]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  118.566027][ T6887]  ? __pfx_mark_lock+0x10/0x10
[  118.568061][ T6887]  __alloc_pages_noprof+0x194/0x2460
[  118.570549][ T6887]  ? hlock_class+0x4e/0x130
[  118.572754][ T6887]  ? __lock_acquire+0xc5d/0x3b30
[  118.574981][ T6887]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  118.577583][ T6887]  ? __pfx___lock_acquire+0x10/0x10
[  118.579687][ T6887]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  118.582167][ T6887]  ? policy_nodemask+0xea/0x4e0
[  118.584548][ T6887]  alloc_pages_mpol_noprof+0x275/0x610
[  118.587080][ T6887]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  118.589581][ T6887]  ? find_held_lock+0x2d/0x110
[  118.591523][ T6887]  vma_alloc_folio_noprof+0xad/0x1f0
[  118.593637][ T6887]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  118.595745][ T6887]  ? reacquire_held_locks+0x20b/0x4c0
[  118.597656][ T6887]  ? lock_vma_under_rcu+0x1e2/0x8f0
[  118.599543][ T6887]  __handle_mm_fault+0x2cc7/0x5430
[  118.602114][ T6887]  ? down_read_trylock+0x1ed/0x3f0
[  118.604433][ T6887]  ? lock_vma_under_rcu+0x1e2/0x8f0
[  118.606783][ T6887]  ? __pfx___handle_mm_fault+0x10/0x10
[  118.609375][ T6887]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  118.612345][ T6887]  ? sched_clock+0x38/0x60
[  118.614400][ T6887]  handle_mm_fault+0x476/0xa00
[  118.616633][ T6887]  do_user_addr_fault+0x426/0xe50
[  118.618940][ T6887]  ? trace_irq_disable.constprop.0+0xe4/0x130
[  118.621684][ T6887]  exc_page_fault+0x5c/0xc0
[  118.623738][ T6887]  asm_exc_page_fault+0x26/0x30
[  118.626052][ T6887] RIP: 0033:0x7f50e9e3f86a
[  118.628039][ T6887] Code: ff 48 8d 3d 50 3e 19 00 e8 13 9e ff ff 0f 1f 00 41 57 41 bf 00 00 c0 fe 41 56 41 55 41 54 45 31 e4 55 53 48 81 ec 08 1b 00 00 <48> 89 7c 24 78 48 8d 9c 24 f0 06 00 00 48 89 74 24 70 48 89 54 24
[  118.636856][ T6887] RSP: 002b:00007f50eac96500 EFLAGS: 00010206
[  118.639537][ T6887] RAX: 00007f50e9e3f850 RBX: 00007f50ea103f60 RCX: 0000000020000180
[  118.643097][ T6887] RDX: 0000000020000000 RSI: 0000000000000005 RDI: ffffffffffffffff
[  118.646565][ T6887] RBP: 00007f50eac980a0 R08: 0000000000000001 R09: 0000000000000000
[  118.650023][ T6887] R10: ffffffffffffffff R11: 0000000020000000 R12: 0000000000000000
[  118.653444][ T6887] R13: 000000000000000b R14: 00007f50ea103f60 R15: 00000000fec00000
[  118.656857][ T6887]  </TASK>
[  118.664305][ T6887] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  119.068198][   T39] audit: type=1400 audit(1719963686.591:345): avc:  denied  { bind } for  pid=6905 comm="syz.1.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  119.081334][   T39] audit: type=1400 audit(1719963686.601:346): avc:  denied  { write } for  pid=6905 comm="syz.1.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  119.113444][ T1090] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.726445][ T5176] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  119.731611][ T5176] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  119.742714][ T5176] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  119.748143][ T5176] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  119.753379][ T5176] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  119.757663][ T5176] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  119.970290][ T6914] chnl_net:caif_netlink_parms(): no params data found
[  120.053514][ T6922] netlink: 16 bytes leftover after parsing attributes in process `syz.1.454'.
[  120.153612][ T6914] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.158934][ T6914] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.169918][ T6914] bridge_slave_0: entered allmulticast mode
[  120.177176][ T6914] bridge_slave_0: entered promiscuous mode
[  120.181442][ T6936] fuse: Unknown parameter '0x0000000000000004'
[  120.190303][ T6914] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.194897][ T6914] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.195089][ T6938] fuse: Unknown parameter '0x0000000000000004'
[  120.199478][ T6914] bridge_slave_1: entered allmulticast mode
[  120.207149][ T6914] bridge_slave_1: entered promiscuous mode
[  120.268823][   T39] audit: type=1400 audit(1719963687.791:347): avc:  denied  { map } for  pid=6946 comm="syz.1.461" path="/dev/nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  120.305971][ T6914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  120.310892][   T39] audit: type=1400 audit(1719963687.791:348): avc:  denied  { execute } for  pid=6946 comm="syz.1.461" path="/dev/nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  120.318582][ T6914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  120.377478][ T6952] netlink: 16 bytes leftover after parsing attributes in process `syz.3.464'.
[  120.406143][ T6914] team0: Port device team_slave_0 added
[  120.413711][ T6914] team0: Port device team_slave_1 added
[  120.484098][ T6914] batman_adv: batadv0: Adding interface: batadv_slave_0
[  120.487128][ T6914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  120.502149][ T6914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  120.507478][ T6914] batman_adv: batadv0: Adding interface: batadv_slave_1
[  120.510205][ T6914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  120.531088][ T6914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  120.665088][ T6914] hsr_slave_0: entered promiscuous mode
[  120.671770][ T6914] hsr_slave_1: entered promiscuous mode
[  120.675558][ T6914] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  120.693629][ T6914] Cannot create hsr debugfs directory
[  120.951651][ T6967] syz.1.467 uses obsolete (PF_INET,SOCK_PACKET)
[  120.955828][ T6967] syzkaller1: entered promiscuous mode
[  120.958229][ T6967] syzkaller1: entered allmulticast mode
[  121.471444][ T5295] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  121.691358][ T5295] usb 5-1: Using ep0 maxpacket: 8
[  121.709930][ T5295] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  121.713459][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  121.724633][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  121.730204][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  121.761872][ T5295] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  121.765111][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  121.769895][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  121.770522][ T1090] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.777652][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  121.792317][ T5295] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  121.794670][ T5175] Bluetooth: hci2: command tx timeout
[  121.796596][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  121.825192][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  121.832956][ T5295] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  121.855437][ T5295] usb 5-1: string descriptor 0 read error: -22
[  121.859100][ T5295] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  121.864784][ T5295] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.898772][ T5295] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  121.933658][ T1090] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.031203][ T1090] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.189935][ T1090] bridge_slave_1: left allmulticast mode
[  122.196621][ T1090] bridge_slave_1: left promiscuous mode
[  122.199289][ T1090] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.229382][ T1090] bridge_slave_0: left allmulticast mode
[  122.234401][ T1090] bridge_slave_0: left promiscuous mode
[  122.238139][ T1090] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.700508][ T1090] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  122.708156][ T1090] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  122.715918][ T1090] bond0 (unregistering): Released all slaves
[  123.212311][ T1090] hsr_slave_0: left promiscuous mode
[  123.223151][ T1090] hsr_slave_1: left promiscuous mode
[  123.233857][ T1090] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  123.240368][ T1090] batman_adv: batadv0: Removing interface: batadv_slave_0
[  123.272162][ T1090] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  123.280547][ T1090] batman_adv: batadv0: Removing interface: batadv_slave_1
[  123.428434][ T1090] veth1_macvtap: left promiscuous mode
[  123.434845][ T1090] veth0_macvtap: left promiscuous mode
[  123.441585][ T1090] veth1_vlan: left promiscuous mode
[  123.446497][ T1090] veth0_vlan: left promiscuous mode
[  123.879388][ T5175] Bluetooth: hci2: command tx timeout
[  124.256383][  T825] usb 5-1: USB disconnect, device number 2
[  125.053138][ T1090] team0 (unregistering): Port device team_slave_1 removed
[  125.131558][ T1090] team0 (unregistering): Port device team_slave_0 removed
[  125.708822][ T7077] FAULT_INJECTION: forcing a failure.
[  125.708822][ T7077] name failslab, interval 1, probability 0, space 0, times 0
[  125.716836][ T7077] CPU: 1 PID: 7077 Comm: syz.0.495 Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[  125.722020][ T7077] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.726745][ T7077] Call Trace:
[  125.728134][ T7077]  <TASK>
[  125.729368][ T7077]  dump_stack_lvl+0x16c/0x1f0
[  125.731374][ T7077]  should_fail_ex+0x497/0x5b0
[  125.733385][ T7077]  should_failslab+0x9/0x20
[  125.735250][ T7077]  __kmalloc_noprof+0xcf/0x410
[  125.737341][ T7077]  ? __pfx_lock_acquire+0x10/0x10
[  125.739534][ T7077]  tomoyo_realpath_from_path+0xb9/0x720
[  125.741983][ T7077]  ? tomoyo_profile+0x47/0x60
[  125.743961][ T7077]  tomoyo_path_number_perm+0x245/0x590
[  125.746215][ T7077]  ? tomoyo_path_number_perm+0x232/0x590
[  125.748525][ T7077]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  125.750996][ T7077]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  125.753427][ T7077]  ? __fget_files+0x256/0x400
[  125.755265][ T7077]  security_file_ioctl+0x75/0xc0
[  125.757369][ T7077]  __x64_sys_ioctl+0xbb/0x220
[  125.759286][ T7077]  do_syscall_64+0xcd/0x250
[  125.761144][ T7077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.764520][ T7077] RIP: 0033:0x7f50e9f75b99
[  125.766473][ T7077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.774474][ T7077] RSP: 002b:00007f50eac98048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  125.777895][ T7077] RAX: ffffffffffffffda RBX: 00007f50ea103f60 RCX: 00007f50e9f75b99
[  125.781264][ T7077] RDX: 0000000020000040 RSI: 00000000c4c85512 RDI: 0000000000000003
[  125.784638][ T7077] RBP: 00007f50eac980a0 R08: 0000000000000000 R09: 0000000000000000
[  125.787739][ T7077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.791130][ T7077] R13: 000000000000000b R14: 00007f50ea103f60 R15: 00007ffc84b87df8
[  125.794594][ T7077]  </TASK>
[  125.812380][ T7077] ERROR: Out of memory at tomoyo_realpath_from_path.
[  125.813613][ T6914] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  125.825177][ T6914] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  125.835033][ T6914] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  125.848762][ T6914] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  125.903108][ T7086] =======================================================
[  125.903108][ T7086] WARNING: The mand mount option has been deprecated and
[  125.903108][ T7086]          and is ignored by this kernel. Remove the mand
[  125.903108][ T7086]          option from the mount to silence this warning.
[  125.903108][ T7086] =======================================================
[  125.952160][ T5175] Bluetooth: hci2: command tx timeout
[  125.970012][ T6914] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.021141][ T6914] 8021q: adding VLAN 0 to HW filter on device team0
[  126.062110][ T1404] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.065439][ T1404] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.081834][ T1404] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.084899][ T1404] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.260924][   T63] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.288811][ T6914] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.345939][   T63] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.362593][ T6914] veth0_vlan: entered promiscuous mode
[  126.370727][ T6914] veth1_vlan: entered promiscuous mode
[  126.418911][   T63] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.448476][ T6914] veth0_macvtap: entered promiscuous mode
[  126.458046][ T6914] veth1_macvtap: entered promiscuous mode
[  126.474849][ T6914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.479374][ T6914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.484617][ T6914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.488896][ T6914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.494098][ T6914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.498828][ T6914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.505314][ T6914] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.550913][   T63] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.567839][ T6914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.573077][ T6914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.577352][ T6914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.585425][ T6914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.585873][ T5176] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  126.590861][ T6914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.590881][ T6914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.594819][ T6914] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.603783][ T5176] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  126.604843][ T5176] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  126.613963][ T6914] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.618269][ T6914] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.623385][ T6914] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.624637][ T5176] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  126.627353][ T6914] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.646880][ T5176] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  126.652495][ T5176] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  126.744455][   T63] bridge_slave_1: left allmulticast mode
[  126.747757][   T63] bridge_slave_1: left promiscuous mode
[  126.750463][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.756969][   T63] bridge_slave_0: left allmulticast mode
[  126.761660][   T63] bridge_slave_0: left promiscuous mode
[  126.764597][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.076907][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  127.084310][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  127.089044][   T63] bond0 (unregistering): Released all slaves
[  127.153762][ T1137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.157721][ T1137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.226650][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.229405][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.398291][ T7114] chnl_net:caif_netlink_parms(): no params data found
[  127.722815][ T7114] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.726056][ T7114] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.729063][ T7114] bridge_slave_0: entered allmulticast mode
[  127.733653][ T7114] bridge_slave_0: entered promiscuous mode
[  127.738075][ T7114] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.740676][ T7114] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.744212][ T7114] bridge_slave_1: entered allmulticast mode
[  127.748234][ T7114] bridge_slave_1: entered promiscuous mode
[  127.794935][   T63] hsr_slave_0: left promiscuous mode
[  127.802820][   T63] hsr_slave_1: left promiscuous mode
[  127.805603][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  127.808315][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  127.813047][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  127.815806][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  127.845030][   T63] veth1_macvtap: left promiscuous mode
[  127.847012][   T63] veth0_macvtap: left promiscuous mode
[  127.849446][   T63] veth1_vlan: left promiscuous mode
[  127.852047][   T63] veth0_vlan: left promiscuous mode
[  127.883991][   T39] audit: type=1400 audit(1719963695.411:349): avc:  denied  { create } for  pid=7141 comm="syz.1.508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  128.683255][   T63] team0 (unregistering): Port device team_slave_1 removed
[  128.743138][ T5175] Bluetooth: hci3: command tx timeout
[  128.761970][   T63] team0 (unregistering): Port device team_slave_0 removed
[  129.430294][ T7114] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  129.444561][ T7114] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  129.527503][ T7114] team0: Port device team_slave_0 added
[  129.539443][ T7114] team0: Port device team_slave_1 added
[  129.640795][ T7114] batman_adv: batadv0: Adding interface: batadv_slave_0
[  129.649580][ T7114] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  129.660981][ T7114] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  129.671999][ T7114] batman_adv: batadv0: Adding interface: batadv_slave_1
[  129.675041][ T7114] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  129.688709][ T7114] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  129.810321][ T7114] hsr_slave_0: entered promiscuous mode
[  129.826882][ T7114] hsr_slave_1: entered promiscuous mode
[  130.100854][   T63] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.414309][   T39] audit: type=1400 audit(1719963697.941:350): avc:  denied  { setrlimit } for  pid=7175 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1
[  130.640997][ T7114] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  130.650642][ T7114] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  130.660349][ T7114] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  130.675930][ T7114] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  130.712802][ T5176] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  130.726336][ T5176] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  130.731908][ T5176] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  130.741959][ T5176] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  130.747602][ T5176] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  130.750685][ T5176] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  130.821651][ T5176] Bluetooth: hci3: command tx timeout
[  130.896739][ T7114] 8021q: adding VLAN 0 to HW filter on device bond0
[  130.981966][ T7114] 8021q: adding VLAN 0 to HW filter on device team0
[  131.005391][ T5171] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.008097][ T5171] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.017824][  T825] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.021075][  T825] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.041195][ T7193] chnl_net:caif_netlink_parms(): no params data found
[  131.299306][ T7193] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.303596][ T7193] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.306931][ T7193] bridge_slave_0: entered allmulticast mode
[  131.312958][ T7193] bridge_slave_0: entered promiscuous mode
[  131.323411][ T7193] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.326822][ T7193] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.330113][ T7193] bridge_slave_1: entered allmulticast mode
[  131.334496][ T7193] bridge_slave_1: entered promiscuous mode
[  131.383879][ T7224] netlink: 16 bytes leftover after parsing attributes in process `syz.1.517'.
[  131.405291][ T7193] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.413596][ T7193] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.502769][ T7193] team0: Port device team_slave_0 added
[  131.508352][ T7193] team0: Port device team_slave_1 added
[  131.513670][ T7114] 8021q: adding VLAN 0 to HW filter on device batadv0
[  131.585042][ T7193] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.588219][ T7193] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.600577][ T7193] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.607280][ T7193] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.609831][ T7193] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.620738][ T7193] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.685420][ T7193] hsr_slave_0: entered promiscuous mode
[  131.688954][ T7193] hsr_slave_1: entered promiscuous mode
[  131.695155][ T7193] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  131.698196][ T7193] Cannot create hsr debugfs directory
[  131.827545][ T7114] veth0_vlan: entered promiscuous mode
[  131.944058][ T7114] veth1_vlan: entered promiscuous mode
[  131.987890][ T7114] veth0_macvtap: entered promiscuous mode
[  131.993743][ T7114] veth1_macvtap: entered promiscuous mode
[  132.005792][ T7114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.009977][ T7114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.013748][ T7114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.017313][ T7114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.021212][ T7114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.026093][ T7114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.031008][ T7114] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.038166][ T7114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  132.043066][ T7114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.047057][ T7114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  132.050911][ T7114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.054593][ T7114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  132.058565][ T7114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.064470][ T7114] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.074264][ T7114] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.077970][ T7114] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.082075][ T7114] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.085735][ T7114] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.160551][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.165164][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.194774][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.198255][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.265245][ T5176] Bluetooth: hci3: Malformed LE Event: 0x1b
[  132.289510][   T63] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.310851][ T7259] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[  132.377422][   T63] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.470926][   T63] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.616956][   T63] bridge_slave_1: left allmulticast mode
[  132.619384][   T63] bridge_slave_1: left promiscuous mode
[  132.621390][  T825] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  132.621871][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.632264][   T63] bridge_slave_0: left allmulticast mode
[  132.634814][   T63] bridge_slave_0: left promiscuous mode
[  132.637463][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.801503][  T825] usb 6-1: Using ep0 maxpacket: 8
[  132.811185][  T825] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  132.814642][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  132.818738][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  132.823106][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  132.828898][  T825] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  132.831475][ T5176] Bluetooth: hci2: command tx timeout
[  132.839303][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  132.849054][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  132.853743][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  132.861084][  T825] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  132.865747][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  132.871480][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  132.876433][  T825] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  132.889352][  T825] usb 6-1: string descriptor 0 read error: -22
[  132.892734][  T825] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  132.896749][  T825] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.901658][ T5176] Bluetooth: hci3: command tx timeout
[  132.929361][  T825] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  133.032118][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  133.040003][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  133.046948][   T63] bond0 (unregistering): Released all slaves
[  133.477634][   T63] hsr_slave_0: left promiscuous mode
[  133.481023][   T63] hsr_slave_1: left promiscuous mode
[  133.486355][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  133.489742][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  133.493837][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  133.497175][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  133.535185][   T63] veth1_macvtap: left promiscuous mode
[  133.537799][   T63] veth0_macvtap: left promiscuous mode
[  133.540445][   T63] veth1_vlan: left promiscuous mode
[  133.544188][   T63] veth0_vlan: left promiscuous mode
[  134.315867][   T63] team0 (unregistering): Port device team_slave_1 removed
[  134.383582][   T63] team0 (unregistering): Port device team_slave_0 removed
[  134.911710][ T5176] Bluetooth: hci2: command tx timeout
[  135.024387][ T7193] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  135.034142][ T7193] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  135.041127][ T7193] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  135.049306][ T7193] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  135.169472][ T7193] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.187887][ T7193] 8021q: adding VLAN 0 to HW filter on device team0
[  135.199642][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.202943][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.217919][ T5223] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.221000][ T5223] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.278106][ T7193] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  135.357973][  T825] usb 6-1: USB disconnect, device number 2
[  135.372235][ T5175] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  135.378921][ T5175] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  135.391893][ T5175] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  135.397061][ T5175] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  135.401028][ T5175] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  135.405309][ T5175] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  135.458050][ T7193] 8021q: adding VLAN 0 to HW filter on device batadv0
[  135.628464][ T7193] veth0_vlan: entered promiscuous mode
[  135.656236][ T7193] veth1_vlan: entered promiscuous mode
[  135.710303][   T63] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.752323][ T7295] chnl_net:caif_netlink_parms(): no params data found
[  135.810577][ T7193] veth0_macvtap: entered promiscuous mode
[  135.871068][   T63] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.936628][ T7193] veth1_macvtap: entered promiscuous mode
[  135.972428][ T7295] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.975934][ T7295] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.978813][ T7295] bridge_slave_0: entered allmulticast mode
[  135.982916][ T7295] bridge_slave_0: entered promiscuous mode
[  135.988631][ T7295] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.992911][ T7295] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.996037][ T7295] bridge_slave_1: entered allmulticast mode
[  135.999109][ T7295] bridge_slave_1: entered promiscuous mode
[  136.021115][   T63] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.083129][ T5176] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  136.090204][ T5176] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  136.094978][ T5176] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  136.097517][ T7295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  136.099411][ T5176] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  136.108524][ T5176] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  136.113491][ T5176] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  136.123517][   T63] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.137052][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.142515][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.146888][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.151712][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.155880][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.160395][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.169308][ T7193] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.176239][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.180722][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.186406][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.190993][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.201769][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.206385][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.213019][ T7193] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.218774][ T7295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  136.266375][ T7193] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.272688][ T7193] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.276695][ T7193] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.280677][ T7193] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.318932][ T7295] team0: Port device team_slave_0 added
[  136.339482][ T7295] team0: Port device team_slave_1 added
[  136.458658][ T7295] batman_adv: batadv0: Adding interface: batadv_slave_0
[  136.463096][ T7295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.478305][ T7295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  136.493333][ T7295] batman_adv: batadv0: Adding interface: batadv_slave_1
[  136.496618][ T7295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.509073][ T7295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  136.643571][ T7295] hsr_slave_0: entered promiscuous mode
[  136.646626][ T7295] hsr_slave_1: entered promiscuous mode
[  136.651783][ T7295] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  136.655713][ T7295] Cannot create hsr debugfs directory
[  136.691338][   T63] bridge_slave_1: left allmulticast mode
[  136.693683][   T63] bridge_slave_1: left promiscuous mode
[  136.696336][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.702864][   T63] bridge_slave_0: left allmulticast mode
[  136.705420][   T63] bridge_slave_0: left promiscuous mode
[  136.708155][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.991517][ T5176] Bluetooth: hci2: command tx timeout
[  137.078445][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  137.087633][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  137.096183][   T63] bond0 (unregistering): Released all slaves
[  137.229346][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.232749][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.443802][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.448948][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.461776][ T5176] Bluetooth: hci0: command tx timeout
[  137.478387][ T7309] chnl_net:caif_netlink_parms(): no params data found
[  137.569972][   T63] hsr_slave_0: left promiscuous mode
[  137.577259][   T63] hsr_slave_1: left promiscuous mode
[  137.586778][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.590847][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  137.611931][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  137.615898][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  137.660540][   T63] veth1_macvtap: left promiscuous mode
[  137.663842][   T63] veth0_macvtap: left promiscuous mode
[  137.666583][   T63] veth1_vlan: left promiscuous mode
[  137.669288][   T63] veth0_vlan: left promiscuous mode
[  138.181784][ T5176] Bluetooth: hci3: command tx timeout
[  138.517654][   T63] team0 (unregistering): Port device team_slave_1 removed
[  138.612139][   T63] team0 (unregistering): Port device team_slave_0 removed
[  138.749457][ T1357] ieee802154 phy0 wpan0: encryption failed: -22
[  138.756006][ T1357] ieee802154 phy1 wpan1: encryption failed: -22
[  139.551665][ T5176] Bluetooth: hci0: command tx timeout
[  139.577624][ T7309] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.580777][ T7309] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.585632][ T7309] bridge_slave_0: entered allmulticast mode
[  139.588652][ T7309] bridge_slave_0: entered promiscuous mode
[  139.605340][ T7309] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.609558][ T7309] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.614326][ T7309] bridge_slave_1: entered allmulticast mode
[  139.617621][ T7309] bridge_slave_1: entered promiscuous mode
[  139.689887][ T7309] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  139.716762][ T7309] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  139.786467][ T7309] team0: Port device team_slave_0 added
[  139.800976][ T7309] team0: Port device team_slave_1 added
[  139.929274][ T7309] batman_adv: batadv0: Adding interface: batadv_slave_0
[  139.935600][ T7309] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  139.962645][ T7309] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  140.000562][ T7309] batman_adv: batadv0: Adding interface: batadv_slave_1
[  140.013490][ T7309] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  140.024977][ T7309] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  140.036269][ T7295] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  140.042446][ T7295] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  140.057976][ T7295] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  140.065038][ T7295] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  140.132693][ T7309] hsr_slave_0: entered promiscuous mode
[  140.156321][ T7309] hsr_slave_1: entered promiscuous mode
[  140.159732][ T7309] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  140.165288][ T7309] Cannot create hsr debugfs directory
[  140.275923][ T5176] Bluetooth: hci3: command tx timeout
[  140.415450][ T7309] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.507993][ T7295] 8021q: adding VLAN 0 to HW filter on device bond0
[  140.529113][ T7295] 8021q: adding VLAN 0 to HW filter on device team0
[  140.537136][  T826] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.539863][  T826] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.563929][ T7309] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.575626][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.578152][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.649032][ T7309] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.735068][ T7309] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.805967][ T7295] 8021q: adding VLAN 0 to HW filter on device batadv0
[  140.834530][   T63] bridge_slave_1: left allmulticast mode
[  140.836969][   T63] bridge_slave_1: left promiscuous mode
[  140.839875][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.845472][   T63] bridge_slave_0: left allmulticast mode
[  140.848054][   T63] bridge_slave_0: left promiscuous mode
[  140.850596][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.200897][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  141.210061][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  141.217657][   T63] bond0 (unregistering): Released all slaves
[  141.316229][ T7295] veth0_vlan: entered promiscuous mode
[  141.322287][ T7309] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  141.328876][ T7309] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  141.334736][ T7309] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  141.341014][ T7309] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  141.379916][ T7295] veth1_vlan: entered promiscuous mode
[  141.475948][ T7295] veth0_macvtap: entered promiscuous mode
[  141.544874][ T7295] veth1_macvtap: entered promiscuous mode
[  141.580326][ T7295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.585393][ T7295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.589781][ T7295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.595449][ T7295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.599748][ T7295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.605270][ T7295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.612515][ T7295] batman_adv: batadv0: Interface activated: batadv_slave_0
[  141.636716][ T7295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.641967][ T7295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.644935][ T5176] Bluetooth: hci0: command tx timeout
[  141.646269][ T7295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.655074][ T7295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.658875][ T7295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.663514][ T7295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.669733][ T7295] batman_adv: batadv0: Interface activated: batadv_slave_1
[  141.678803][ T7309] 8021q: adding VLAN 0 to HW filter on device bond0
[  141.693993][ T7295] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.698359][ T7295] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.703059][ T7295] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.707057][ T7295] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.734940][   T63] hsr_slave_0: left promiscuous mode
[  141.740263][   T63] hsr_slave_1: left promiscuous mode
[  141.745000][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.748344][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.753545][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.757543][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.808354][   T63] veth1_macvtap: left promiscuous mode
[  141.811118][   T63] veth0_macvtap: left promiscuous mode
[  141.814330][   T63] veth1_vlan: left promiscuous mode
[  141.816794][   T63] veth0_vlan: left promiscuous mode
[  141.887247][ T5175] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  141.904051][ T5175] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  141.908625][ T5175] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  141.913457][ T5175] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  141.918478][ T5175] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  141.924518][ T5175] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  142.341656][ T5175] Bluetooth: hci3: command tx timeout
[  142.880592][   T63] team0 (unregistering): Port device team_slave_1 removed
[  143.003334][   T63] team0 (unregistering): Port device team_slave_0 removed
[  143.631055][ T7309] 8021q: adding VLAN 0 to HW filter on device team0
[  143.650629][ T5242] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.654091][ T5242] bridge0: port 1(bridge_slave_0) entered forwarding state
[  143.682319][ T5223] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.685659][ T5223] bridge0: port 2(bridge_slave_1) entered forwarding state
[  143.701883][ T5175] Bluetooth: hci0: command tx timeout
[  143.792624][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.796135][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.847583][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.852059][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.942421][ T5175] Bluetooth: hci2: command tx timeout
[  143.982973][ T7402] chnl_net:caif_netlink_parms(): no params data found
[  144.105911][ T7402] bridge0: port 1(bridge_slave_0) entered blocking state
[  144.108962][ T7402] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.112213][ T7402] bridge_slave_0: entered allmulticast mode
[  144.115908][ T7402] bridge_slave_0: entered promiscuous mode
[  144.121044][ T7402] bridge0: port 2(bridge_slave_1) entered blocking state
[  144.124392][ T7402] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.127425][ T7402] bridge_slave_1: entered allmulticast mode
[  144.131109][ T7402] bridge_slave_1: entered promiscuous mode
[  144.195786][ T7402] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  144.204826][ T7309] 8021q: adding VLAN 0 to HW filter on device batadv0
[  144.214109][ T7402] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  144.279222][ T7402] team0: Port device team_slave_0 added
[  144.288032][ T7402] team0: Port device team_slave_1 added
[  144.339968][   T63] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.380167][ T7402] batman_adv: batadv0: Adding interface: batadv_slave_0
[  144.383601][ T7402] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.395980][ T7402] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  144.421474][ T5175] Bluetooth: hci3: command tx timeout
[  144.421655][   T63] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.430143][ T7402] batman_adv: batadv0: Adding interface: batadv_slave_1
[  144.433996][ T7402] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.444834][ T7402] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  144.547322][   T63] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.563781][ T7402] hsr_slave_0: entered promiscuous mode
[  144.568210][ T7402] hsr_slave_1: entered promiscuous mode
[  144.586172][ T7309] veth0_vlan: entered promiscuous mode
[  144.647263][   T63] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.699214][ T7309] veth1_vlan: entered promiscuous mode
[  144.865787][   T63] bridge_slave_1: left allmulticast mode
[  144.868347][   T63] bridge_slave_1: left promiscuous mode
[  144.870992][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.878027][   T63] bridge_slave_0: left allmulticast mode
[  144.880058][   T63] bridge_slave_0: left promiscuous mode
[  144.885438][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.364623][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  145.370884][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.377418][   T63] bond0 (unregistering): Released all slaves
[  145.392123][ T7309] veth0_macvtap: entered promiscuous mode
[  145.399222][ T7309] veth1_macvtap: entered promiscuous mode
[  145.454622][ T7309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.459279][ T7309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.463963][ T7309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.468414][ T7309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.473911][ T7309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.478489][ T7309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.490573][ T7309] batman_adv: batadv0: Interface activated: batadv_slave_0
[  145.514452][ T7309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.518955][ T7309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.524313][ T7309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.528746][ T7309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.533274][ T7309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.537744][ T7309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.544387][ T7309] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.562187][ T7309] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.565780][ T7309] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.569537][ T7309] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.574313][ T7309] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.733932][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.736940][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.775225][   T63] hsr_slave_0: left promiscuous mode
[  145.780290][   T63] hsr_slave_1: left promiscuous mode
[  145.786242][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  145.789653][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  145.800374][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  145.803910][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  145.822122][ T5295] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  145.842996][   T63] veth1_macvtap: left promiscuous mode
[  145.845572][   T63] veth0_macvtap: left promiscuous mode
[  145.847723][   T63] veth1_vlan: left promiscuous mode
[  145.849744][   T63] veth0_vlan: left promiscuous mode
[  146.015341][ T5295] usb 6-1: Using ep0 maxpacket: 8
[  146.022334][ T5175] Bluetooth: hci2: command tx timeout
[  146.028931][ T5295] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  146.032540][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  146.037414][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  146.042838][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  146.052549][ T5295] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  146.055886][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  146.060883][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  146.066010][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  146.082742][ T5295] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  146.085431][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  146.089272][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  146.093103][ T5295] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  146.101058][ T5295] usb 6-1: string descriptor 0 read error: -22
[  146.103481][ T5295] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  146.107125][ T5295] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.133736][ T5295] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  146.768986][   T63] team0 (unregistering): Port device team_slave_1 removed
[  146.859450][   T63] team0 (unregistering): Port device team_slave_0 removed
[  147.768247][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.783798][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.009404][ T7402] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  148.023828][ T7402] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  148.032262][ T7402] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  148.049343][ T7402] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  148.104314][ T5175] Bluetooth: hci2: command tx timeout
[  148.196674][ T7402] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.225156][ T7402] 8021q: adding VLAN 0 to HW filter on device team0
[  148.394096][ T5242] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.397331][ T5242] bridge0: port 1(bridge_slave_0) entered forwarding state
[  148.403666][ T5242] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.406858][ T5242] bridge0: port 2(bridge_slave_1) entered forwarding state
[  148.469716][ T5175] Bluetooth: hci3: unexpected event 0x04 length: 14 > 10
[  148.470746][ T5175] Bluetooth: Frame is too long (len 16, expected len 15)
[  148.626903][   T10] usb 6-1: USB disconnect, device number 3
[  148.784959][ T7402] 8021q: adding VLAN 0 to HW filter on device batadv0
[  148.813900][   T39] audit: type=1400 audit(1719963716.341:351): avc:  denied  { create } for  pid=7497 comm="syz.3.569" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  148.825193][   T39] audit: type=1400 audit(1719963716.351:352): avc:  denied  { listen } for  pid=7497 comm="syz.3.569" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  148.855993][ T7402] veth0_vlan: entered promiscuous mode
[  148.870733][ T7402] veth1_vlan: entered promiscuous mode
[  148.918066][ T7402] veth0_macvtap: entered promiscuous mode
[  148.921144][   T39] audit: type=1400 audit(1719963716.441:353): avc:  denied  { connect } for  pid=7497 comm="syz.3.569" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  148.945335][ T7402] veth1_macvtap: entered promiscuous mode
[  148.965582][ T7402] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.972833][ T7402] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.978481][ T7402] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.987929][ T7402] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.994635][ T7402] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.000520][ T7402] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.001460][ T5260] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  149.007434][ T7402] batman_adv: batadv0: Interface activated: batadv_slave_0
[  149.018069][ T7402] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.022878][ T7402] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.027335][ T7402] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.050493][ T7402] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.054662][ T7402] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.058621][ T7402] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.065590][ T7402] batman_adv: batadv0: Interface activated: batadv_slave_1
[  149.076769][ T7402] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.080430][ T7402] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.084185][ T7402] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.087931][ T7402] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.180425][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.187108][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.212455][ T5260] usb 5-1: Using ep0 maxpacket: 8
[  149.217100][ T1137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.220032][ T1137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.238236][ T5260] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  149.241389][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.263865][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  149.268194][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  149.278839][ T5260] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  149.285415][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.290555][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  149.295623][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  149.300367][ T5260] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  149.303581][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  149.307856][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  149.311990][ T5260] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  149.326854][ T5260] usb 5-1: string descriptor 0 read error: -22
[  149.329768][ T5260] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  149.336875][ T5260] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.350819][ T5260] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  149.593340][   T63] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.702956][   T63] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.793412][   T63] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.833750][ T5176] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  149.848156][ T5176] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  149.856207][ T5176] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  149.870784][ T5176] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  149.876207][ T5176] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  149.880429][ T5176] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  149.906140][ T7514] ==================================================================
[  149.922859][ T7514] BUG: KASAN: slab-use-after-free in kfree_skb_reason+0x36/0x210
[  149.926193][ T7514] Read of size 4 at addr ffff8880239e3624 by task syz-executor/7514
[  149.954929][ T7514] 
[  149.955969][ T7514] CPU: 1 PID: 7514 Comm: syz-executor Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[  149.960020][ T7514] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.963748][ T7514] Call Trace:
[  149.965276][ T7514]  <TASK>
[  149.966577][ T7514]  dump_stack_lvl+0x116/0x1f0
[  149.968614][ T7514]  print_report+0xc3/0x620
[  149.970369][ T7514]  ? __virt_addr_valid+0x5e/0x580
[  149.972127][ T7514]  ? __phys_addr+0xc6/0x150
[  149.973635][ T7514]  kasan_report+0xd9/0x110
[  149.975273][ T7514]  ? kfree_skb_reason+0x36/0x210
[  149.977085][ T7514]  ? kfree_skb_reason+0x36/0x210
[  149.979228][ T7514]  kasan_check_range+0xef/0x1a0
[  149.981343][ T7514]  kfree_skb_reason+0x36/0x210
[  149.983011][ T7514]  __hci_req_sync+0x61d/0x980
[  149.984625][ T7514]  ? __pfx___hci_req_sync+0x10/0x10
[  149.986380][ T7514]  ? __mutex_lock+0x1a6/0x9c0
[  149.988240][ T7514]  ? __pfx_autoremove_wake_function+0x10/0x10
[  149.990455][ T7514]  ? hci_req_sync+0x3f/0xd0
[  149.992438][ T7514]  ? __pfx___might_resched+0x10/0x10
[  149.994573][ T7514]  hci_req_sync+0x97/0xd0
[  149.996304][ T7514]  ? __pfx_hci_scan_req+0x10/0x10
[  149.998434][ T7514]  hci_dev_cmd+0x634/0x960
[  150.000236][ T7514]  ? cap_capable+0x1cf/0x240
[  150.002078][ T7514]  ? __pfx_hci_dev_cmd+0x10/0x10
[  150.003932][ T7514]  ? security_capable+0x98/0xd0
[  150.005757][ T7514]  hci_sock_ioctl+0x4f3/0x880
[  150.007245][ T7514]  ? __pfx_hci_sock_ioctl+0x10/0x10
[  150.009337][ T7514]  sock_do_ioctl+0x116/0x280
[  150.011367][ T7514]  ? __pfx_sock_do_ioctl+0x10/0x10
[  150.013629][ T7514]  ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470
[  150.016261][ T7514]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  150.018812][ T7514]  sock_ioctl+0x22e/0x6c0
[  150.020667][ T7514]  ? __pfx_sock_ioctl+0x10/0x10
[  150.022760][ T7514]  ? selinux_file_ioctl+0x180/0x270
[  150.025078][ T7514]  ? selinux_file_ioctl+0xb4/0x270
[  150.027129][ T7514]  ? __pfx_sock_ioctl+0x10/0x10
[  150.029259][ T7514]  __x64_sys_ioctl+0x193/0x220
[  150.031253][ T7514]  do_syscall_64+0xcd/0x250
[  150.033110][ T7514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.035346][ T7514] RIP: 0033:0x7fbe9d57579b
[  150.036893][ T7514] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  150.044830][ T7514] RSP: 002b:00007ffffa094520 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  150.048051][ T7514] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbe9d57579b
[  150.051099][ T7514] RDX: 00007ffffa094598 RSI: 00000000400448dd RDI: 0000000000000003
[  150.054591][ T7514] RBP: 0000555561fbb4a8 R08: 0000000000000000 R09: 0000000000000000
[  150.058069][ T7514] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  150.061512][ T7514] R13: 0000000000000000 R14: 0000000000000009 R15: 0000000000000009
[  150.065061][ T7514]  </TASK>
[  150.066428][ T7514] 
[  150.067465][ T7514] Allocated by task 5175:
[  150.069337][ T7514]  kasan_save_stack+0x33/0x60
[  150.071387][ T7514]  kasan_save_track+0x14/0x30
[  150.073334][ T7514]  __kasan_slab_alloc+0x89/0x90
[  150.075261][ T7514]  kmem_cache_alloc_noprof+0x121/0x2f0
[  150.077587][ T7514]  skb_clone+0x190/0x3f0
[  150.079402][ T7514]  hci_cmd_work+0x66a/0x710
[  150.081371][ T7514]  process_one_work+0x9c5/0x1b40
[  150.083412][ T7514]  worker_thread+0x6c8/0xf30
[  150.085057][ T7514]  kthread+0x2c1/0x3a0
[  150.086469][ T7514]  ret_from_fork+0x45/0x80
[  150.088024][ T7514]  ret_from_fork_asm+0x1a/0x30
[  150.089688][ T7514] 
[  150.090576][ T7514] Freed by task 5175:
[  150.092195][ T7514]  kasan_save_stack+0x33/0x60
[  150.094107][ T7514]  kasan_save_track+0x14/0x30
[  150.095790][ T7514]  kasan_save_free_info+0x3b/0x60
[  150.097677][ T7514]  poison_slab_object+0xf7/0x160
[  150.099520][ T7514]  __kasan_slab_free+0x32/0x50
[  150.101370][ T7514]  kmem_cache_free+0x12f/0x3a0
[  150.103194][ T7514]  kfree_skbmem+0x10e/0x200
[  150.105123][ T7514]  kfree_skb_reason+0x138/0x210
[  150.107158][ T7514]  hci_req_sync_complete+0x16c/0x270
[  150.109199][ T7514]  hci_event_packet+0x963/0x1170
[  150.111308][ T7514]  hci_rx_work+0x2c4/0x1610
[  150.113113][ T7514]  process_one_work+0x9c5/0x1b40
[  150.115044][ T7514]  worker_thread+0x6c8/0xf30
[  150.116785][ T7514]  kthread+0x2c1/0x3a0
[  150.118525][ T7514]  ret_from_fork+0x45/0x80
[  150.120090][ T7514]  ret_from_fork_asm+0x1a/0x30
[  150.121997][ T7514] 
[  150.122738][ T7514] The buggy address belongs to the object at ffff8880239e3540
[  150.122738][ T7514]  which belongs to the cache skbuff_head_cache of size 240
[  150.128635][ T7514] The buggy address is located 228 bytes inside of
[  150.128635][ T7514]  freed 240-byte region [ffff8880239e3540, ffff8880239e3630)
[  150.134323][ T7514] 
[  150.135330][ T7514] The buggy address belongs to the physical page:
[  150.138131][ T7514] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x239e2
[  150.141836][ T7514] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  150.145483][ T7514] memcg:ffff88803f3d2001
[  150.147351][ T7514] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  150.150722][ T7514] page_type: 0xffffefff(slab)
[  150.152817][ T7514] raw: 00fff00000000040 ffff8880192d4780 dead000000000100 dead000000000122
[  150.156682][ T7514] raw: 0000000000000000 0000000000190019 00000001ffffefff ffff88803f3d2001
[  150.160920][ T7514] head: 00fff00000000040 ffff8880192d4780 dead000000000100 dead000000000122
[  150.164859][ T7514] head: 0000000000000000 0000000000190019 00000001ffffefff ffff88803f3d2001
[  150.168620][ T7514] head: 00fff00000000001 ffffea00008e7881 ffffffffffffffff 0000000000000000
[  150.172323][ T7514] head: ffff888000000002 0000000000000000 00000000ffffffff 0000000000000000
[  150.176079][ T7514] page dumped because: kasan: bad access detected
[  150.178916][ T7514] page_owner tracks the page as allocated
[  150.181572][ T7514] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5183, tgid 5183 (syz-executor), ts 54043315725, free_ts 53834533283
[  150.189060][ T7514]  post_alloc_hook+0x2d1/0x350
[  150.190710][ T7514]  get_page_from_freelist+0x1353/0x2e50
[  150.192716][ T7514]  __alloc_pages_noprof+0x22b/0x2460
[  150.194820][ T7514]  alloc_slab_page+0x56/0x110
[  150.196907][ T7514]  new_slab+0x84/0x260
[  150.198721][ T7514]  ___slab_alloc+0xdac/0x1870
[  150.200822][ T7514]  kmem_cache_alloc_bulk_noprof+0x257/0x930
[  150.203392][ T7514]  napi_skb_cache_get+0x154/0x210
[  150.205488][ T7514]  __napi_build_skb+0x14/0x50
[  150.207100][ T7514]  napi_alloc_skb+0x2b8/0x5a0
[  150.209141][ T7514]  napi_get_frags+0x61/0x140
[  150.211208][ T7514]  napi_get_frags_check+0x2e/0xa0
[  150.213501][ T7514]  netif_napi_add_weight+0x538/0xab0
[  150.215891][ T7514]  gro_cells_init+0x193/0x2f0
[  150.218033][ T7514]  macsec_dev_init+0x4e/0x6e0
[  150.220455][ T7514]  register_netdevice+0x59f/0x1cb0
[  150.222717][ T7514] page last free pid 5174 tgid 5174 stack trace:
[  150.225610][ T7514]  free_unref_page+0x64a/0xe40
[  150.228066][ T7514]  qlist_free_all+0x4e/0x140
[  150.230546][ T7514]  kasan_quarantine_reduce+0x192/0x1e0
[  150.232975][ T7514]  __kasan_slab_alloc+0x69/0x90
[  150.235298][ T7514]  kmalloc_trace_noprof+0x11e/0x300
[  150.237602][ T7514]  kobject_uevent_env+0x265/0x1810
[  150.239857][ T7514]  __kobject_del+0x168/0x1f0
[  150.241642][ T7514]  kobject_put+0x31c/0x5b0
[  150.243510][ T7514]  netdev_queue_update_kobjects+0x4a2/0x640
[  150.246040][ T7514]  netif_set_real_num_tx_queues+0x168/0x880
[  150.248603][ T7514]  veth_init_queues+0xe1/0x190
[  150.250677][ T7514]  veth_newlink+0x546/0xa10
[  150.252401][ T7514]  __rtnl_newlink+0x1197/0x1960
[  150.254681][ T7514]  rtnl_newlink+0x67/0xa0
[  150.256555][ T7514]  rtnetlink_rcv_msg+0x3c7/0xea0
[  150.258674][ T7514]  netlink_rcv_skb+0x16b/0x440
[  150.260723][ T7514] 
[  150.261769][ T7514] Memory state around the buggy address:
[  150.264005][ T7514]  ffff8880239e3500: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[  150.267379][ T7514]  ffff8880239e3580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  150.270739][ T7514] >ffff8880239e3600: fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc
[  150.274265][ T7514]                                ^
[  150.276407][ T7514]  ffff8880239e3680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  150.280339][ T7514]  ffff8880239e3700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc
[  150.283801][ T7514] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 sent=0 n=0 (errno 9: Bad file descriptor)
[  150.293890][   T63] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.362372][ T7514] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  150.365822][ T7514] CPU: 0 PID: 7514 Comm: syz-executor Not tainted 6.10.0-rc6-syzkaller-00055-g734610514cb0 #0
[  150.370492][ T7514] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.374990][ T7514] Call Trace:
[  150.376422][ T7514]  <TASK>
[  150.377672][ T7514]  dump_stack_lvl+0x3d/0x1f0
[  150.379689][ T7514]  panic+0x6f5/0x7a0
[  150.381400][ T7514]  ? __pfx_panic+0x10/0x10
[  150.383341][ T7514]  ? irqentry_exit+0x3b/0x90
[  150.385307][ T7514]  ? lockdep_hardirqs_on+0x7c/0x110
[  150.387492][ T7514]  ? preempt_schedule_thunk+0x1a/0x30
[  150.389853][ T7514]  ? preempt_schedule_common+0x44/0xc0
[  150.392237][ T7514]  ? check_panic_on_warn+0x1f/0xb0
[  150.394865][ T7514]  check_panic_on_warn+0xab/0xb0
[  150.397074][ T7514]  end_report+0x117/0x180
[  150.398968][ T7514]  kasan_report+0xe9/0x110
[  150.400911][ T7514]  ? kfree_skb_reason+0x36/0x210
[  150.403109][ T7514]  ? kfree_skb_reason+0x36/0x210
[  150.405352][ T7514]  kasan_check_range+0xef/0x1a0
[  150.407519][ T7514]  kfree_skb_reason+0x36/0x210
[  150.410033][ T7514]  __hci_req_sync+0x61d/0x980
[  150.412478][ T7514]  ? __pfx___hci_req_sync+0x10/0x10
[  150.414858][ T7514]  ? __mutex_lock+0x1a6/0x9c0
[  150.416898][ T7514]  ? __pfx_autoremove_wake_function+0x10/0x10
[  150.419266][ T7514]  ? hci_req_sync+0x3f/0xd0
[  150.421515][ T7514]  ? __pfx___might_resched+0x10/0x10
[  150.424107][ T7514]  hci_req_sync+0x97/0xd0
[  150.425914][ T7514]  ? __pfx_hci_scan_req+0x10/0x10
[  150.428135][ T7514]  hci_dev_cmd+0x634/0x960
[  150.430230][ T7514]  ? cap_capable+0x1cf/0x240
[  150.432508][ T7514]  ? __pfx_hci_dev_cmd+0x10/0x10
[  150.434701][ T7514]  ? security_capable+0x98/0xd0
[  150.436909][ T7514]  hci_sock_ioctl+0x4f3/0x880
[  150.439307][ T7514]  ? __pfx_hci_sock_ioctl+0x10/0x10
[  150.441850][ T7514]  sock_do_ioctl+0x116/0x280
[  150.444048][ T7514]  ? __pfx_sock_do_ioctl+0x10/0x10
[  150.446464][ T7514]  ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470
[  150.449236][ T7514]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  150.452635][ T7514]  sock_ioctl+0x22e/0x6c0
[  150.454533][ T7514]  ? __pfx_sock_ioctl+0x10/0x10
[  150.456678][ T7514]  ? selinux_file_ioctl+0x180/0x270
[  150.458985][ T7514]  ? selinux_file_ioctl+0xb4/0x270
[  150.461303][ T7514]  ? __pfx_sock_ioctl+0x10/0x10
[  150.463491][ T7514]  __x64_sys_ioctl+0x193/0x220
[  150.465299][ T7514]  do_syscall_64+0xcd/0x250
[  150.466826][ T7514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.468824][ T7514] RIP: 0033:0x7fbe9d57579b
[  150.470322][ T7514] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  150.477308][ T7514] RSP: 002b:00007ffffa094520 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  150.481091][ T7514] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbe9d57579b
[  150.485278][ T7514] RDX: 00007ffffa094598 RSI: 00000000400448dd RDI: 0000000000000003
[  150.489998][ T7514] RBP: 0000555561fbb4a8 R08: 0000000000000000 R09: 0000000000000000
[  150.493109][ T7514] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  150.497127][ T7514] R13: 0000000000000000 R14: 0000000000000009 R15: 0000000000000009
[  150.500654][ T7514]  </TASK>
[  150.503076][ T7514] Kernel Offset: disabled
[  150.504875][ T7514] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:41:57  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000002 RBX=ffff88806b03fd00 RCX=ffffffff8181c8e8 RDX=ffff888017eb0000
RSI=0000000000000000 RDI=0000000000000005 RBP=ffffc90000167d60 RSP=ffffc90000167c38
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=ffffffff8dbbc6f0
R12=1ffff9200002cf8c R13=0000000000000001 R14=0000000000000003 R15=ffffed100d607fa1
RIP=ffffffff818de428 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fbe9bdffd00 CR3=000000003b2fe000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6813de42fe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6813de430b
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6813de4305
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6813de4319
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6813de439f
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6813de447d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6813ed4488 00007f6813ed4480 00007f6813ed4478 00007f6813ed4450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6814a3d100 00007f6813ed4440 00007f6813ed0004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6813ed4498 00007f6813ed4490 00007f6813ed4488 00007f6813ed4480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fd2975 RDI=ffffffff94dd91a0 RBP=ffffffff94dd9160 RSP=ffffc90003367440
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3332303838386652
R12=0000000000000000 R13=0000000000000066 R14=ffffffff84fd2910 R15=0000000000000000
RIP=ffffffff84fd299f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000555561fbb500 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fbe9d5a9b50 CR3=000000003bec6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fd8181c8 Opmask01=00000000003fffff Opmask02=000000001bbfffff Opmask03=0000000000000000
Opmask04=00000000ffffffdf Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd6817da60 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 00000000ff000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007465003078 30004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007465003078 303d4e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004958000d45 0d004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000037346c6c 696b66722f306963 682f68746f6f7465 756c622f6c617574
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001d1 0000000030787574 7564612f6373696d 6273752f302e3836
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 59647a305f474f5b 647c79303a243a78 68303e3b3a38253b 3a253e3a6e68303b
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382432273f397b27 697a787c69303b7e 69305f474f5b647c 6930382432273f39
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=ffff888023508b30 RCX=ffffc90004637a90 RDX=1ffff110046a1166
RSI=ffff8880407d0bd8 RDI=ffff888023508b52 RBP=1ffff920008c6f4a RSP=ffffc90004637a40
R8 =0000000000000000 R9 =fffffbfff1fc8822 R10=ffffffff8fe44117 R11=0000000000000002
R12=0000000000000002 R13=0000000000000003 R14=ffff888023508ad8 R15=ffff888023508000
RIP=ffffffff816bcf7e RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fbe9d5c0b70 CR3=0000000040358000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000081838188 Opmask01=00000000003fffff Opmask02=000000003bbfffff Opmask03=0000000000000000
Opmask04=00000000ffffffdf Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd6817d020 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff00000000ff00
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056295f003078 30004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056295f003078 303d4e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056145f000d45 0d004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000091 0000000000000040 0000000037346c6c 696b66722f306963
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6cbd06b9bb2853d6 0000562c3de4aad7 0000000000000091 00000000302e3836
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 59647a305f474f5b 647c79303a243a78 68303e3b3a38253b 3a253e3a6e68303b
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382432273f397b27 697a787c69303b7e 69305f474f5b647c 6930382432273f39
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88806b146580 RCX=ffffffff8181abeb RDX=ffff888023440000
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90004627900
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000006
R12=ffffed100d628cb1 R13=0000000000000001 R14=ffff88806b146588 R15=ffff88806b33fd80
RIP=ffffffff818de410 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fbe9d5f77fc CR3=000000000d97a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a13e42fe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a13e430b
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a13e4305
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a13e4319
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a13e439f
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a13e447d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a14d4488 00007fd7a14d4480 00007fd7a14d4478 00007fd7a14d4450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a203d100 00007fd7a14d4440 00007fd7a14d0004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd7a14d4498 00007fd7a14d4490 00007fd7a14d4488 00007fd7a14d4480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 000000000000004c
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000