last executing test programs:

2.988731877s ago: executing program 2 (id=2124):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip6_mr_cache\x00')
mkdir(&(0x7f0000000100)='./file0\x00', 0x11c)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000040)='vxfs\x00', 0x11, 0x0)
preadv(r1, &(0x7f0000001200)=[{&(0x7f0000000080)=""/4097, 0x1001}], 0x1, 0x9, 0x6a76)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x3ca)
symlinkat(&(0x7f0000000000)='./file1\x00', r2, &(0x7f0000000080)='./file0/file1\x00')
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000001140)='\x00', &(0x7f0000001180)='./file1\x00', r1)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x80489439, &(0x7f00000010c0))
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x1ac}}, 0x0)

2.910105364s ago: executing program 2 (id=2125):
set_mempolicy(0x4005, &(0x7f0000000040)=0x1001, 0x4)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r4, {0xffff}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=@newqdisc={0x30, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x1000000)

2.809874156s ago: executing program 2 (id=2126):
setresuid(0xee01, 0xee01, 0x0) (async)
setresuid(0xee01, 0xee01, 0x0)
r0 = shmget$private(0x0, 0x2000, 0x40, &(0x7f0000508000/0x2000)=nil)
shmctl$IPC_SET(r0, 0x1, &(0x7f00000020c0)={{0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0xe}, 0x9, 0x5, 0x2, 0x1, 0x0, 0x0, 0x3ff})
r1 = shmget$private(0x0, 0x2000, 0x78000000, &(0x7f0000509000/0x2000)=nil)
shmctl$SHM_LOCK(r1, 0xb)
shmctl$SHM_UNLOCK(r0, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
set_mempolicy(0x1, &(0x7f00000003c0)=0x7ffffffffffffffd, 0xe0) (async)
set_mempolicy(0x1, &(0x7f00000003c0)=0x7ffffffffffffffd, 0xe0)
r2 = fsopen(&(0x7f0000000080)='fuseblk\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000000c0)='source', &(0x7f00000001c0)='source', 0x0) (async)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000000c0)='source', &(0x7f00000001c0)='source', 0x0)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) (async)
r3 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0)
socket(0x10, 0x2, 0x0) (async)
r4 = socket(0x10, 0x2, 0x0)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1a000, r4, &(0x7f0000000080)={0x10000000})
sendmsg$NFNL_MSG_CTHELPER_NEW(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="700000000009010100000000000000000a000007080005400000000c0900010073797a310000ff000c00048008090000000000063c0002000c00028005000100010000002c0001"], 0x70}, 0x1, 0x0, 0x0, 0x5}, 0x80)

2.809088343s ago: executing program 2 (id=2127):
r0 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000003f80), 0x0, 0x0)
readv(r0, &(0x7f0000000200)=[{&(0x7f0000000080)=""/95, 0x5f}], 0x1)
readv(r0, &(0x7f00000025c0)=[{&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/239, 0xef}, {0x0}, {0x0}, {0x0}, {&(0x7f0000000240)=""/56, 0x38}], 0x6)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3d0, 0x238, 0xc8, 0x8, 0x238, 0x5803, 0x300, 0x2e8, 0x2e8, 0x300, 0x2e8, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, [], [0x0, 0x0, 0xff000000], 'erspan0\x00', 'geneve1\x00', {}, {}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x210, 0x238, 0x0, {0x0, 0x2000000000000}, [@common=@ah={{0x30}, {[0x4d4, 0x4d2], 0x40, 0x3, 0x3}}, @common=@rt={{0x138}, {0xfffffffc, [0x5, 0x5], 0x400, 0x1, 0x1, [@private0={0xfc, 0x0, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x3a}, @private0={0xfc, 0x0, '\x00', 0x1}, @remote, @ipv4={'\x00', '\xff\xff', @empty}, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, @private0, @remote], 0x6}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x14, 0x7f, 0xfde3}}}, {{@ipv6={@remote, @mcast2, [0x0, 0x0, 0xff000000], [], 'macvtap0\x00', 'syzkaller1\x00'}, 0x0, 0xa8, 0xc8}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x430)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmmsg$sock(r2, &(0x7f0000002b00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x80)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000001714"], 0x38}}, 0x800)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2})

2.743456751s ago: executing program 2 (id=2129):
r0 = syz_open_dev$sg(&(0x7f0000000500), 0x0, 0x40001)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f0000000480)={[{0x7ff, 0x7fff, 0xe0, 0xfc, 0x3c, 0x7, 0x4, 0x21, 0x0, 0xfe, 0x7d, 0x5, 0x400001}, {0x7fffffff, 0x2, 0xff, 0xff, 0x4, 0x0, 0x1e, 0x0, 0x20, 0x2, 0x0, 0x4}, {0x6, 0x0, 0x0, 0x11, 0x1, 0x9, 0xf8, 0x2, 0xfd, 0x6, 0x0, 0x8, 0xe0ee}], 0x7c1d}) (async)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000480)=ANY=[@ANYBLOB="000000000000000085"]) (async)
r1 = landlock_create_ruleset(&(0x7f0000000180)={0x8611, 0x1, 0x1}, 0x18, 0x0)
landlock_restrict_self(r1, 0x1)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$FIGETBSZ(r2, 0x40049409, 0x0)

2.667563672s ago: executing program 2 (id=2132):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
clock_nanosleep(0x7, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) (async)
syz_usb_connect(0x5, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12070000fe761810041607014438c740dac45d0212000100000000090441ea1b215f4a67c15a0e3e75b835d7076e290d2467499ebfdb"], 0x0) (async)
r1 = syz_open_dev$sndctrl(&(0x7f0000000380), 0x3, 0xbc01)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, &(0x7f0000000180)=""/135)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="84010000100013070000000000000000fe88000000000000000000000000000120010000000000000000000000000000000046a200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000fe880000000000000000000000000001000000000000000000000000000000100000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffffffffffff00000000000000000000000000000000070000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004c00140073686131000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004201"], 0x184}}, 0x0)

1.179099185s ago: executing program 1 (id=2152):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1400000003010101"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)
recvmmsg(r0, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000000540)}, 0xff}], 0x1, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={<r2=>0xffffffffffffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000180)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r3 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
open_by_handle_at(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="17000000f8"], 0x830200)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x6c, 0x24, 0xd0f, 0x50bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0xc, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x40, 0x2, [@TCA_TBF_PRATE64={0xc, 0x5, 0x67eb6bf12151d48d}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x1, 0x957, 0x1, 0x40, 0x10001}, {0x8, 0x2, 0xd, 0x92b, 0x3, 0x2e}, 0x3, 0x9, 0x14c5}}, @TCA_TBF_PBURST={0x8, 0x7, 0x126e}]}}]}, 0x6c}}, 0x44080)

1.109643213s ago: executing program 1 (id=2153):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newsa={0x154, 0x10, 0x633, 0x0, 0x0, {{@in=@multicast1, @in=@broadcast, 0x0, 0x4000, 0x0, 0x8004}, {@in6=@ipv4={'\x00', '\xff\xff', @local}, 0x0, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0x1a}, {0x327, 0x8000000000000000, 0x0, 0xc, 0xfff, 0x0, 0x4}, {}, {0x8f, 0x4}, 0x70bd2d, 0x0, 0xa, 0x2}, [@encap={0x1c, 0x20, {0x0, 0x4e22, 0x0, @in=@remote}}, @algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x154}, 0x1, 0x0, 0x0, 0x24004010}, 0x0) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan3\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)={0x1dc, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_KEY={0x94, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0x20, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x9b}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x5}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f48817cef1ff3dc2f1e89cabf0dc5813"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "9061bd6df53de5ac4b750e35e8fc0309"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "39cb1bf2278a8b6b244cae838e844e3a"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "fb3424fe6e788dddcc1baab80cdd7bfb1b2ae6431dcbfa2fb3d1123abd66a7e2"}]}, @NL802154_ATTR_SEC_KEY={0x120, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0x4c, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xdf}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}]}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "c7d43d71f427b5e5a68c9fcc66152bc1"}, @NL802154_KEY_ATTR_ID={0xb4, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7fffffff}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x48, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0x300}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xeeb}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x9}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x20, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x55}]}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000c00)={0xa, &(0x7f0000000ac0)=[{0x92ba, 0x65, &(0x7f0000000580)="c39ba6a9d5ac79ab8f91c7474bd1b84e524a5d4394821e9a8d4b4ac182fb0f868d13e1c72f43437ebb24629f27afdfb036a9384fde0b16c8de0c21171d72ac2273628a69a5e1e865a7fe8c9adb3825ff47a65ecd4caff9182040a7897f7af6b1667518817e", 0x1, 0x1}, {0x3, 0x95, &(0x7f0000000600)="4c3ccb174935769dbf674cb2e69fc5ef52b09cf8c8f24be1cbe14008cd5eed20a0f0ff59491c3a679b0d786378362085d403ebafd820cc4b837db4039bc8518320df667c276a77cf0a50ce7e256b4648cacf37a2b2b02fe80ef1dc52ea352f1205b5ff97217978358a487403e9188e3d774342eb1df5156e256a608b775a118838ef50437264a02e13991e108080583723a94d0fbb", 0x1, 0x1}, {0xbf6, 0x27, &(0x7f0000000140)="f5dd1ee41131810576465072f1d6614f6225b14e18cecf305c1b1ae5d4c8857cca3449b34c7af5", 0x1}, {0x5, 0xc3, &(0x7f00000006c0)="19d56fe0c464899435c8703e4314a18f8908a2d4f4fc19471d1a7668d79a8cf0b63f733178c5f7a87684dd108ce6659dccf13675ff3d67bb18b765a34eed808685123dc944f30ce40c5ad3f0ac86764c739218e86077e2f4154b65c762320263822c76a164296b5680376cad0b19b345a4e6446a1b983a355734a13510ebf736dfd6fae2b9c90483b5ec2dffdef41f4ce34b94a63ab26d4efa91367349a2bd6d41cb5b2df2f86549f0ecb5560d5b70d01dfef5d38930789c7574c149c0ac509963a345", 0x0, 0x1}, {0xb, 0x4e, &(0x7f00000007c0)="8d06514dae44255828581487c3e8b9c6a37b99a9dfb1550ad462a19acf89d6d9a0ef0c59a8f53fb9a5e9a4471dc48ea9de2a263f0dab322fe0c2b9d8709281ff728babd465ed17c389a0583611a8", 0x0, 0x1}, {0x29, 0xbe, &(0x7f0000000840)="2f55db651f58563513b9c53544a9e3ba15822055842dc5d9d906d85625676d78e4c7d08ee71c325a1a970a54c3fc6cab38280800616e0bfdcb3c7ab380eba4f0bdbc3111dbe5c6f8fdececc9b0003933803632e26facf4f30982c2d296fbcf28aa7eb192f7ce96b80f3fe7c17d3904eb84a693fb8a89612d44ebad1af38ec7a05e19a2d185163b70320b10f73922a01ed43a0658e313457e11173fd2bbdfab6e1428f33a92a5be505438251d7cb68381ce4d2528cbc6e4cf6dcc2b422d16"}, {0x3, 0xfc, &(0x7f0000000900)="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"}, {0xffff, 0x30, &(0x7f00000001c0)="f6faa12b4bf6a380d8e5bb20c885274fcdc7e44638c0d964bc68d78cbd25c46029e2598032be3760d3d721b3f38ebc22"}, {0x3f, 0x57, &(0x7f0000000a00)="b9c36ab6c821844ce0dadc30696b4c5ceff416a40b725bf5ec84caebb8a3e00c037cd6c0c8f426cab0c750fa3e886fac866ecd61def3de924b1ceaf08dc7869f637e8e2b45e9d332dd96d68f49189633785c4d31531322", 0x1}, {0x2, 0x2c, &(0x7f0000000a80)="73b2d1acbc1e6fea7930a2bb8a1554fbe9f61dd3bb660a2a6efc4210c325359860de18b580d568156e57d453", 0x1, 0x1}]})

1.103959107s ago: executing program 0 (id=2154):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b04, &(0x7f0000000000)={'wlan1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})

1.049638501s ago: executing program 1 (id=2155):
r0 = fsopen(&(0x7f0000000300)='debugfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f00000001c0)='%(\x1f\xf3PI\x02n\x16u{4\x9e+\xfd\xd9\xb2\xae\x1d\xbb\x16\xca[', 0x0)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
setresuid(0x0, 0xee00, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
write$dsp(r1, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000001c0), 0x4000, 0x0)
ioctl$CDROM_GET_CAPABILITY(r2, 0x5331)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/tty/drivers\x00', 0x41, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r3, 0xc018643a, &(0x7f0000000580)={0x10000000, 0xe2, 0x3})
r4 = syz_open_dev$I2C(&(0x7f0000000ac0), 0x1, 0x0)
r5 = socket$inet6_sctp(0xa, 0xc5ac04a9549e1e5c, 0x84)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f0000000140)={<r6=>0x0, 0x8}, &(0x7f0000000180)=0x8)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r5, 0x84, 0x71, &(0x7f0000000380)={r6, 0x6}, &(0x7f00000003c0)=0x8)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000000b40)={0x5, 0x0, 0x1, 0x0})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000080)=0x7f)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$lock(r7, 0x6, &(0x7f0000002000)={0x1, 0x1})
fcntl$lock(r7, 0x7, &(0x7f0000000280)={0x1, 0x0, 0x10000000003})
ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
gettid()
r8 = socket(0x10, 0x3, 0x0)
write(r8, &(0x7f0000000040)="130000001a001f00030300f9002304000a04d6", 0x13)
timer_create(0x5, &(0x7f0000533fa0)={0x0, 0x40, 0x800000000004, @thr={&(0x7f0000000200)="76116387941bf88b323501dac1f2c63bc4f63c4e633c4c82b007054277513c3fdff8f6c5302052ceb7837531dcca099b3be5cc45b25cde2c6ee21f233990c18d28cf4ed5e5e950cfdd2a3465136d6f5bd2dc4ae0d1e9a6800b107902b992ed761eda62840e51d2d16a626f52e320de575ae8fd3d243a50d395f7b8753695f7f9cf942a926308ea8f2898133fc46579034eedbce019128a0bce6d452848c6dc90f94307c8d26cdf", &(0x7f00000002c0)="00e2edd2a3d517852a9cd8a746b04d3573228106e1b35d43cf942a01a6486196c2ee3a8ac270a4ede93647eed089dc420c8a120381f08e44ef98771d7d01323addd93ad87b16d07f5d4d57f885f59297e6cd9f0a122e27b05c29014e1c5c060da5a8fdee08b6547528b5ee8db21b032340070ba144a92ebd7478f884f40a0d48b177f3bb8aee8abc9d18b6397b8b5f0e4ab9f2b2956421c4d31c2a46e1693879bf48230a7ad0763f6ca7bdc647a574a5edfcc03b7a33"}}, &(0x7f00000000c0))
timer_settime(0x0, 0x1, &(0x7f0000000440)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0xf2ffffff)

1.04708902s ago: executing program 0 (id=2156):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@gettfilter={0x3c, 0x2e, 0x400, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r2, {0xb}, {0xfff1, 0x9}, {0x2, 0x3}}, [{0x8, 0xb, 0x2d}, {0x8}, {0x8, 0xb, 0x8}]}, 0x3c}}, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r4=>r3, 0xd, 0x3, 0x3})
ioctl$SNDRV_TIMER_IOCTL_CREATE(r4, 0xc02054a5, &(0x7f0000000140)={0x1, r3, 'id0\x00'})
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000ac0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x78}}, 0x10)

990.678596ms ago: executing program 0 (id=2158):
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0) (async, rerun: 64)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) (async, rerun: 64)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f00000002c0)='devices.list\x00', 0x0, 0x0)
preadv2(r2, &(0x7f0000000040)=[{&(0x7f0000000100)=""/65, 0x41}], 0x1, 0x1, 0x0, 0x0) (async)
ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f0000000180)={0x1}) (async)
r3 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000000), 0x82080, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r3, 0x4610, &(0x7f0000000040)={0xd, 0x2})

919.785285ms ago: executing program 0 (id=2159):
openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$int_in(r0, 0x5452, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000b40)=0xe)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x0, 0x0, 0x80, 'syz0\x00', 0x8}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x8, 'syz1\x00', 0x0})
ppoll(&(0x7f0000000000)=[{r0, 0x2620}], 0x1, &(0x7f0000000180), 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0xab, @loopback, 0x10001}, 0x1c)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @loopback, 0x23}, 0x1c)
r2 = dup(r1)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x4080}, 0x8080)
pipe2(&(0x7f0000000000)={0x0, <r3=>0x0}, 0x0)
r4 = socket(0x2c, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff}, 0x48)
syz_emit_ethernet(0x86, &(0x7f0000000140)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @multicast1}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x3, 0x0, "eea2ce15f073cfc7b867a8f1eae374992b05d96de4fee8723648ec884824c0fa", "dad132180b5c87e3c4ce5aace7bd878f", {"bfb382e7c4f35588608b6b77d4179781", "5c1ef82da223af7e119100d169d1153d"}}}}}}}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r6 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r7=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r7], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0), 0x0, 0x1})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r5, &(0x7f0000000140), &(0x7f0000000080)=@udp6=r4}, 0x20)
close_range(r3, 0xffffffffffffffff, 0x0)
socket(0xa, 0x3, 0xff)

858.623624ms ago: executing program 3 (id=2160):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x800, 0x0)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000200), 0xffffffffffffffff)
r2 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f00000000c0)={0x900, 0x0, 0xffffff95})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000000)={[{0x80000000, 0x4, 0xc2, 0x4f, 0x40, 0x5d, 0x80, 0x1, 0x3, 0x44, 0x8, 0x0, 0x100000000009}, {0xb, 0xa6f2, 0x6, 0x8, 0x9, 0xff, 0x4, 0x1, 0xa, 0x13, 0x7, 0x6, 0x1}, {0x1ff, 0x7, 0xd, 0x10, 0x25, 0x9, 0x0, 0x6, 0x4, 0x15, 0x0, 0x2, 0x4}], 0x409})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[0x7fffffff, 0x6, 0xf3b8, 0x0, 0x1000, 0x400, 0x4002004c4, 0x1000, 0x0, 0x97, 0x10, 0x2, 0x3, 0x4, 0x0, 0xdbd], 0xeeee8000, 0x400})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

729.904627ms ago: executing program 3 (id=2161):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f00000003c0)={0x1, @pix={0x9, 0x6, 0x34343452, 0x5, 0xe, 0x2, 0x4, 0x6, 0x0, 0x0, 0x1, 0x2}})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00'})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@mpls_newroute={0x34, 0x18, 0x200, 0x70bd2d, 0x25dfdbfd, {0x1c, 0x80, 0x80, 0x80, 0xff, 0x0, 0xfe, 0x8, 0x200}, [@RTA_DST={0x8, 0x1, {0x0, 0x0, 0x1}}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0xe6}, @RTA_DST={0x8, 0x1, {0x5, 0x0, 0x1}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x40084c0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r4, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
close(r4)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000200)={@rand_addr=0x64010102, 0x1, 0x0, 0x70, 0x0, [{@dev}, {@dev}, {@remote}, {@broadcast}, {@remote}, {@initdev}, {@private}]}})
recvmmsg(r5, &(0x7f0000006b80)=[{{0x0, 0x0, 0x0, 0xfffffffffffffcf8}, 0x6}], 0x1, 0x40002001, 0x0)
ioctl$SIOCGSTAMPNS(r5, 0x8907, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000180)={[&(0x7f0000000300)=' wO\xd5\xce\x82\x89r\xa0\r\xc4Z\x15\xfds\x17g\n\xee\x9f\a0\xc3\x80\xbf\x80j$\xe6Z\xde\xf1pc\x96\x8f\xb5\x9d\xe3\x11m\x88~\xe3\xc7\xe3\t\xab\xbb@\xd9\xf8\xa2N\x03\xcf\xe4\xd6\x0ew\x10\xc2\xaa\x84bC\xc8\xd0\xe07\xa1\rIa\xb1^\xc5WG\xccV\xd3\x91\x84x\x9d\x8eg\x84\xeb\x9e;\x8f\xa1\xa3\xcf]@\x82\xcf\x01$;\xd5\xc0\xa8\xc8r\x0e_\xac\xef\xf5\r\xd5Q\v\b#E\xcf@a\xa2\xaa#\x13S\x04\x12$\xcb\xbeV!\x1d\xc7\x84_\\ \xc7oh$\xc9\x06m']})
sendto$inet6(r5, 0x0, 0x0, 0x20000001, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @mcast1}, 0x1c)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)

649.936168ms ago: executing program 3 (id=2162):
keyctl$set_reqkey_keyring(0xe, 0x1) (async)
keyctl$set_reqkey_keyring(0xe, 0x1) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r3, &(0x7f0000000540), 0x2, 0x2000c0d4) (async)
shutdown(r3, 0x1) (async)
getsockopt$bt_hci(r3, 0x84, 0x80, &(0x7f0000002100)=""/4127, &(0x7f0000000000)=0x101f)
keyctl$set_reqkey_keyring(0xe, 0x7) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000004000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000140)="440f20c0350e000000440f22c066ba4100ec3e410f2174660f38812e66450f38814520f20fd031450f01c3420f01ca64f20f5da18d260000f3430f1ac3", 0x3d}], 0x1, 0x63, 0x0, 0x0)
socket(0x10, 0x803, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) (async)
setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, &(0x7f0000003c40)=ANY=[@ANYBLOB="fcd8a408c8e30560321305fddfcd063e393ef76aee70fea4852eef79b6f9b7eed6b07e30a872d5da6bf797ddcd239ec85594faa1ccacf3b6f07005cb26b39c3dae03db35b14a467bd82857c1e6c8161a355b116ea62af879e5306b744e247f3f8e8ac4c0b1c521495c265c92", @ANYRES16=r0, @ANYRES32=r5, @ANYBLOB="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"], 0x1b0)
setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0) (async)
r7 = socket$kcm(0xa, 0x2, 0x88)
sendmsg$inet(r7, &(0x7f0000000000)={&(0x7f0000001340)={0x2, 0x2, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000001580)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x25}, @private=0xa010102}}}], 0x20}, 0x8000)
sendmsg$inet(r7, &(0x7f0000000880)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000002c0)="528f5ec0962ee7dea0bc21288efc71466ca6594b3f736df1b73b9633853986a8c7561b4b5360887def32bcaa21493a736e4926f60be66607c3cd50c62e926bfc2b57d649f3d86696a899c912ef2444bfcb0e81598056eb7c3a4ae66d135e4e2d6e9536f3fcf7ac992573792272434a190bfd951ab8acc28ed90c314efe3abc633f27d04eea09a64f975dccd09c2f8e02627f06e2f63957dc20a685cfacf21f9e304efb3587cf0edd07041f008190951c5e6c8cd3741e5420b157d73b4062bd489a619891da5d710ce8fbe47a6a9612f0ce6c3faf35a7f536c45924459ed6db1b7e1101304270bee3870b7d8666", 0xed}, {&(0x7f00000003c0)="867a96375a757a44adaa09281c58ca7118052308a89c028c01659e8567aebc09d0f08ee17f2e8d34bbd7cb6f0702578a11e0d65a3468ab9856a540ee925b8b6275c93f0022e7b9fbb3379bca332708fdb89e6a5634d91e1fbbc0bf1ab984395498f63245719d3963ce8f3d7481b31d4c74e9d3e36218ed7569a443765472f31a01c5705ed763f0f8ad62dc11c6bd9ab482c68a5ca23c6a460a276ee430bc86a5695cec4ac2fc9da7c08aec472561fdc89e781244991c3a489add3affef9d5576000000004d86e77012a741cc40c89715fc5ac8340ca54e9f14da", 0xda}, {&(0x7f00000004c0)="b671ce1013faa15d91d72536163a71a4b3225bc740dbf1fc2e946b0c623e7e2ed10d72e51f591035c5e2433e50c75712e5960e4f622e16a9e56204bb7e302197ef9b90797a83f4e0f666d1ffabb42c76d78d8992249a0a2aa76a78b131b0152efc02082f97ea8d386d1a89046844d29ed363023080c606835b8c824046a890d16630e00f65752f4b06197012c5718c63f6b6c974587cda20f0b7cc71f3fa8af3cd351257cf09a4b100d7c9afdb1bba711c11c4bf5fe1e02b6a0dfd5a013009fda8bc964308442e145aee9c779cb8b1fd3fa5e02228924540899cdb6b6920c9d71fd1939a", 0xe4}, {&(0x7f00000001c0)="92804a4d4bf24776952591516d89aa7a91c7a95ab35cc14dcad6e34fc2bfe9a1413ef44cd9d13edd02b4045bd8b76391ff2a617455c4199cf0aa9519951f1cfb9882fd405e2c016ecd29079441f3fc601455c563d3d46c25c39eb90b2ca483df6d8020a36778c7cb832f8076edeb866bf0c470d167", 0x75}, {&(0x7f0000000700)="98b587c230875a5e644eec094f8c4c2f262f2d4478ed7a7298b5f3814c2346cb4c350abe77aac574b18c83a9da0ab7c096f46fd97c12f27695e98c811fcfce427cf2d836f7018c37b2eb5fbecec87d0c6ac928697a0268604af2ee6a243b3d9083b01d33ab795b9418c634412563fee9a767fff16f6227ffefd374a821b07051a830", 0x82}], 0x5}, 0x48800) (async)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYRES64=r1, @ANYRES32=0x0, @ANYBLOB="8401000000000000280012800900010076657468000000001800028014000100001f0000fbd10900ad449059dc2e590c", @ANYRES32=0x0, @ANYBLOB="80040000000000000a000100aaaaaaaaaa150000080004"], 0x318}}, 0x20040800)

499.727515ms ago: executing program 3 (id=2163):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$FUSE_DIRENT(r1, &(0x7f0000000540)=ANY=[], 0x10)
sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb8295", 0x54}, {&(0x7f0000000900)="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", 0x3e6}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5", 0x17}], 0x3}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000680)=0x1, 0x4)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
setsockopt$IP_VS_SO_SET_DELDEST(r2, 0x0, 0x488, &(0x7f0000000080)={{0x2b, @loopback, 0x4e21, 0x4, 'lblcr\x00', 0x12, 0x9, 0x23}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x8, 0x3, 0x7, 0x3, 0x4}}, 0x44)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000014c0)="26410f21660f07410f225736470f00dcc4626d0d3500600000400fc7ae0d3cb2f2660f383424360f01dfc48178102a66f3470faec0", 0x7}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x14)
ioctl$KVM_SET_GSI_ROUTING(r6, 0x4008ae6a, &(0x7f00000004c0)={0x4, 0x0, [{0x1810, 0x1, 0x0, 0x0, @sint={0xfffffffc, 0x39e}}, {0x6fb, 0x5, 0x1, 0x0, @sint={0xde79, 0x1}}, {0xa, 0x2, 0x1, 0x0, @irqchip={0x800, 0x6}}, {0x1, 0x2, 0x1, 0x0, @adapter={0x5, 0x40, 0xffffffffffffffff, 0x300000, 0x7}}]})
r7 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x8ad01, 0x0)
write(r7, 0x0, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001500)=ANY=[@ANYRESDEC=r5, @ANYRES8=r3, @ANYRES8=r2, @ANYBLOB="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", @ANYRES32=r7, @ANYRESDEC=r7, @ANYRES64=r0, @ANYRES64=r5, @ANYRESOCT=0x0], 0x30}}, 0x40)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
r8 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
close(r8)

349.858796ms ago: executing program 3 (id=2164):
r0 = socket$inet(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x106, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r2, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r3, 0x2000000a}}, 0x10)
close_range(r1, r2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x48, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r4, {}, {0xffff, 0xc}, {0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x5, '\x00', 0xfffffff2, 0x8001, 0x9, 0xf70f}}}}]}, 0x48}}, 0x1)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000500)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000"], 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x6, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000010020000000000000000001800000004000000000000000700000085100000fbffffff186400000300000000000000020000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x3, 0x27, &(0x7f0000000000)=""/114}, 0xa8)
syz_io_uring_setup(0x7408, &(0x7f0000000140)={0x0, 0x497f, 0x1, 0x1, 0x25f}, &(0x7f00000000c0)=<r6=>0x0, &(0x7f00000001c0))
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000000, 0x12, 0xffffffffffffffff, 0x10000000)
r8 = socket(0x10, 0x80002, 0x0)
r9 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r10=>0x0})
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r12=>0x0})
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005400e50026bd7000ffffffff07000000", @ANYRES32=r10, @ANYBLOB="20000100", @ANYRES32=r12, @ANYBLOB="00030300ff"], 0x38}}, 0x0)
r13 = io_uring_setup(0x669, &(0x7f00000002c0))
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r13, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r13, 0xa, 0x0, r14)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_FILES_UPDATE={0x14, 0x4d, 0x0, 0x0, 0x7, &(0x7f0000000200)=[r8, r1, r1, r1], 0x4, 0x0, 0x0, {0x0, r14}})
prlimit64(0x0, 0x8, &(0x7f0000002000)={0x7, 0x9}, 0x0)
r15 = shmget$private(0x0, 0x4000, 0x1000, &(0x7f0000ffc000/0x4000)=nil)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x96)
shmctl$SHM_LOCK(r15, 0xb)

348.11006ms ago: executing program 3 (id=2165):
mkdir(&(0x7f0000000300)='./bus\x00', 0x40)
mount$tmpfs(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x2004001, &(0x7f0000000240)={[{@mpol={'mpol', 0x3d, {'local', '=relative', @val={0x3a, [0x38, 0x2c, 0x38]}}}}]})
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002"], 0x20}}, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1f, &(0x7f0000000040)=0x1, 0x4)
r2 = signalfd4(r0, &(0x7f0000000280)={[0x7f]}, 0x8, 0x80000)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f00000002c0)={0x7, 0x7, 0x5, 0x45}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r1, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, r3, 0x100, 0x70bd29, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)
recvfrom(r0, &(0x7f0000000180)=""/173, 0xad, 0x10000, &(0x7f0000000080)=@in={0x2, 0x4e23, @multicast1}, 0x80)
lremovexattr(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)=@random={'osx.', 'mpol'})

179.640672ms ago: executing program 1 (id=2166):
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x381102, 0x180}, 0x18)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e20, @multicast2}}, 0x80}, 0x90)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r3 = socket(0xa, 0x80805, 0x0)
sendmsg$inet_sctp(r3, &(0x7f0000000500)={&(0x7f0000000100)=@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000140)='B', 0x1}], 0x0, &(0x7f0000000340)=[@prinfo={0x18, 0x84, 0x5, {0x20, 0x8}}], 0x18, 0x8c0}, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})

59.002341ms ago: executing program 1 (id=2167):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r1, 0x400, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x9}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x40010}, 0x40045)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000040}, 0x800)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f00000002c0)={0x4, 0x437, {<r2=>0x0}, {<r3=>0xee01}, 0x3058, 0x5})
stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
sendmsg$nl_generic(r0, &(0x7f0000000940)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000900)={&(0x7f00000003c0)={0x51c, 0x2e, 0x200, 0x70bd27, 0x25dfdbff, {0xb}, [@typed={0x8, 0x9, 0x0, 0x0, @uid=r3}, @nested={0x1c9, 0x105, 0x0, 0x1, [@typed={0xc, 0xd2, 0x0, 0x0, @u64=0xc}, @typed={0xa5, 0xfb, 0x0, 0x0, @binary="0a814591fabc4f47804eaaaacba688690fe662589dd8c837d5a3103d6be305ebcb3ee7ea44ec4008ecb33b180be19a0e76f4f9dfea3b00e443a48ad80ccc923d155af085edd73635e1f625530b8188653d739108858096da938472a5ceb88fb7b45a873108eedaf763c9ea059c6f71c7d1dbaa94d853391393f4b203c03d917986500776350f606c66d6195d8bd37fa08906a14e67621718b8bfdad3376d859735"}, @typed={0x8, 0xf9, 0x0, 0x0, @u32=0x594}, @generic="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", @typed={0x8, 0x9b, 0x0, 0x0, @fd=r0}, @nested={0x4, 0x22}]}, @generic="dec91c8c29e9b7bf6e1afdf5111ca4684c2820522d1f09d688838b1d7a7df7b471d11253bbc2d7752395316ade832b0c1aa361d1bb507ae87f84a0db0fc54627d12bbd52a5f9629d1c0d9619ab9a1cff6d9d2f6074d26198ffe7671e46a7fc44ca948d90dd72d75ba8cf7447a59d71338d2a77c6c06df57ede1520d6a4dd87ba44d55f841d06aa41eea67c85015eaa7c77c4e556d98fd58a79c1606732454e423a80672b960fe1e89f4bdd77e0591807", @typed={0xbb, 0x50, 0x0, 0x0, @binary="94f5c277d8df47f6711756cdade23fd1cc159977331c20e9829b5c810130fb20ef61ae85296fd055731a64242a35c520e2b76c4e242abfd5ce50d50f28d6a98ec3dd69a5bd20be8eb427efba1bbec43d1cc70ef5835e69a692cb381f228533b6b4ecefdbd6d1c056daadcdd00e2218367519bb3477ecba070d500d8f7fdbaf26d70a8a2873cb1b874c929f44db35de49da57daf37cb92268712e36db6ece63fe0cbd96ba6f023fcf8ab158039a6375b3fb710920f42fd4"}, @generic="90d6e568393229429e8194400573aef707719455479921f77d32f25e7b", @nested={0x8, 0xa4, 0x0, 0x1, [@nested={0x4, 0x37}]}, @generic="e2199f13bcc3f5329081a0804805ea2f6818fde8f5f2e931c7642b606334527b0810b949ad02b295f3d17de6d4f479104d666f3c54ab92bf2f31c6b828018ac7f94d17cd6ff8b562e420dd859c31222fe683ddf8bf639cc614792ee9b5ae9e38e55f94fd9bc30a94b3838879a2b02f6d73f98f4cd23fb0f122bf6c5ecff577ea5388f6e9289fcb", @nested={0x2c, 0x12f, 0x0, 0x1, [@nested={0x4, 0xbb}, @nested={0x4, 0x14f}, @nested={0x4, 0x73}, @nested={0x4, 0x2a}, @typed={0x8, 0x127, 0x0, 0x0, @uid=r4}, @typed={0x4, 0xbf}, @typed={0x6, 0x27, 0x0, 0x0, @str='\'\x00'}, @typed={0x4, 0x66}]}, @generic="92feb418cea7f9e36555f1fabc8c373dd82ef2d30d737cb1efd50d7cc70a12bfd6a5ebe6a43993d6980fbbfb38547e3897517bf95d98d9d0eadc3bf9b5150cf9f1758008f3a969b55e092eff6dbad52d423d39e435662295280712d7dcaa9b545b0a3ca5c295f595a9fcb662aa7d03dc60c91c00adbfd118f00e55104d023bd0e1846df2883ec5cd5d6eed1a135e65ec1c9b0a75f29feb50adb11d544e80cf096db7f561473a2b09e464f18bb9bc60ef975508398a17263fd8178948102a29227861098cfdb4a3e62f1abc6496039f5cf709ec289e67ac0f91e0f932e2478575d2bff3bcb918e82bbdce85ffca2910"]}, 0x51c}, 0x1, 0x0, 0x0, 0x51}, 0x4000)
r5 = accept(r0, &(0x7f0000000980)=@nfc_llcp, &(0x7f0000000a00)=0x80)
ioctl$EXT4_IOC_SWAP_BOOT(r5, 0x6611)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000a40)='./file0\x00', &(0x7f0000000a80), &(0x7f0000000ac0)='./file0\x00', 0x8, 0x1)
r6 = open$dir(&(0x7f0000000b00)='./file0\x00', 0x82, 0x108)
clock_gettime(0x0, &(0x7f0000000b80)={<r7=>0x0, <r8=>0x0})
utimensat(r6, &(0x7f0000000b40)='./file0\x00', &(0x7f0000000bc0)={{0x77359400}, {r7, r8/1000+60000}}, 0x100)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000c40)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r6, &(0x7f0000000d00)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x1c, r1, 0x1, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0x8, 0x3, r9}, @void}}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000}, 0x408c0)
r10 = syz_open_dev$sndpcmp(&(0x7f0000000d40), 0xfffffffffffffffb, 0x2000)
read$snddsp(r10, &(0x7f0000000d80)=""/37, 0x25)
r11 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e00), r5)
sendmsg$TIPC_NL_MON_PEER_GET(r5, &(0x7f0000000f00)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e40)={0x60, r11, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10}]}, @TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x498}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x14}, 0x4c800)
r12 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000f40), 0x20100, 0x0)
ioctl$FS_IOC_RESVSP(r12, 0x40305828, &(0x7f0000000f80)={0x0, 0x1, 0xfff, 0x9ed5})
ioctl$BLKROGET(r12, 0x125e, &(0x7f0000000fc0))
r13 = syz_genetlink_get_family_id$devlink(&(0x7f0000001040), r5)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r12, 0xc0502100, &(0x7f0000001080)={0x0, <r14=>0x0})
sendmsg$DEVLINK_CMD_RELOAD(r12, &(0x7f0000001300)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000012c0)={&(0x7f0000001100)={0x18c, r13, 0x20, 0x70bd2b, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r12}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r14}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r12}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}]}, 0x18c}, 0x1, 0x0, 0x0, 0x20004819}, 0x4c090)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000001340), 0x26a02, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r5, 0x400442c8, &(0x7f0000001380)={r12, 0x968, 0x2, "49565cbdab31"})
ioctl$BLKPBSZGET(r12, 0x127b, &(0x7f00000013c0))
sendmsg$IPVS_CMD_DEL_DAEMON(r5, &(0x7f0000001540)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001500)={&(0x7f0000001440)={0xb4, 0x0, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wrr\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0xe}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0xc}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x3}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3fe}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2b}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x77}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}, @IPVS_SVC_ATTR_PROTOCOL={0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x48}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x4}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wrr\x00'}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x4040040}, 0x20040004)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001580))

53.548211ms ago: executing program 0 (id=2168):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x18, 0x1411, 0x1, 0x8070bd25, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8, 0x4b, 0x28}]}, 0x18}, 0x1, 0x0, 0x0, 0x4040084}, 0x40)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000001000)={'batadv_slave_0\x00', <r3=>0x0})
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000000)={0x9, 0x2}, 0x10)
write(r4, &(0x7f00000000c0)="1b0000001e005f025145e9676a2cbf0dffffffff01000000000000", 0x1b)
setsockopt$inet6_int(r4, 0x29, 0x35, &(0x7f0000000000)=0x5, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="540000001400090525bd70000003000002180d00", @ANYRES32=r3, @ANYBLOB="08000b000300000008000200ac"], 0x54}}, 0x0)

53.065627ms ago: executing program 1 (id=2169):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {&(0x7f00000005c0)="f2b314c96d500b66f7fd46", 0xb}], 0x2}}], 0x1, 0x0) (async)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0) (async)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0x100, 0x29, 0x4, {0x4, 0x1c, '\x00', [@calipso={0x7, 0x10, {0x3, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x64, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989"}, @calipso={0x7, 0x40, {0x1, 0xe, 0x7a, 0x8001, [0x5, 0x9, 0x4, 0x6, 0x4, 0x400, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @hao={0xc9, 0x10, @empty}, @generic={0x93, 0x9, "e80ee304ecb784ec46"}]}}}, @hoplimit={{0x14}}, @hopopts={{0x68, 0x29, 0x36, {0x5e, 0x9, '\x00', [@pad1, @pad1, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x8, {0x3, 0x0, 0x0, 0xfff}}, @calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x6, [0x7fff]}}, @jumbo, @calipso={0x7, 0x18, {0x3, 0x4, 0x3, 0x7, [0x0, 0x8000]}}, @generic={0x1}]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x18}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x8, 0x0, [@empty, @mcast2]}}}], 0x238}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40042)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socket$kcm(0x29, 0x5, 0x0) (async)
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) (async)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) (async)
sendmsg$IPCTNL_MSG_CT_DELETE(r4, &(0x7f0000000500)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x20, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5}, [@CTA_SYNPROXY={0xc, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x58a6}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000091}, 0x20000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8, 0x5}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x8}, 0x90) (async)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

0s ago: executing program 0 (id=2170):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000000)="7800000018002507b9409b14ffff00000204be04020506050e0204094300080004000000040010000d0068d0bf46d32345653600648d0a0012000200000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f25232500000", 0x78, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x8c}]}, &(0x7f0000000080)='syzkaller\x00'}, 0x80)
recvfrom$inet6(r0, &(0x7f0000000080)=""/236, 0xec, 0x40000022, 0x0, 0x0)

0s ago: executing program 0 (id=2171):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
connect$packet(r0, &(0x7f00000000c0)={0x11, 0x520f4bf7905905d6, r2, 0x1, 0xed, 0x6, @random="187d25da0b28"}, 0x14)
r3 = socket(0x2, 0x3, 0xff)
getsockopt$ARPT_SO_GET_ENTRIES(r3, 0x0, 0x61, &(0x7f0000000000)={'filter\x00', 0x5, "9e03765345"}, &(0x7f0000000140)=0x2d) (async)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@ipv4_delroute={0x24, 0x19, 0x901, 0x0, 0x0, {0x2, 0x18, 0x20, 0x0, 0x0, 0x0, 0xfd, 0x1}, [@RTA_DST={0x8, 0x1, @multicast1}]}, 0x24}}, 0x0) (async)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xf)
r6 = fcntl$dupfd(r5, 0x0, r4)
ioctl$TCFLSH(r6, 0x400455c8, 0x2) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000040)=0xfc) (async)
write(r0, &(0x7f0000000080)="240000004e0025000307f4f9002304000a04f55f08000100020100020800038005000000", 0x24)

kernel console output (not intermixed with test programs):

31515][   T40] audit: type=1400 audit(1762476897.507:518): avc:  denied  { read } for  pid=8871 comm="syz.3.1067" name="usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  129.639137][   T40] audit: type=1400 audit(1762476897.507:519): avc:  denied  { open } for  pid=8871 comm="syz.3.1067" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  129.646790][   T40] audit: type=1400 audit(1762476897.517:520): avc:  denied  { map } for  pid=8871 comm="syz.3.1067" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  129.965967][ T8879] No source specified
[  130.037263][ T8881] netlink: 'syz.0.1071': attribute type 10 has an invalid length.
[  130.039701][ T8881] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1071'.
[  130.043078][ T8881] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[  130.045147][ T8881] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  130.048109][ T8881] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check.
[  130.100942][ T8883] netlink: 'syz.0.1072': attribute type 1 has an invalid length.
[  130.237694][ T8898] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  130.240214][ T8898] IPv6: NLM_F_CREATE should be set when creating new route
[  130.242634][ T8898] IPv6: NLM_F_CREATE should be set when creating new route
[  130.246062][ T8898] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  130.276518][ T8902] loop4: detected capacity change from 0 to 2560
[  130.282959][ T8763] Buffer I/O error on dev loop4, logical block 0, async page read
[  130.286696][ T8763] Buffer I/O error on dev loop4, logical block 0, async page read
[  130.290293][ T8763] Buffer I/O error on dev loop4, logical block 0, async page read
[  130.293961][ T8763] Buffer I/O error on dev loop4, logical block 0, async page read
[  130.296922][ T8763] Buffer I/O error on dev loop4, logical block 0, async page read
[  130.359033][ T8905] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1079'.
[  130.485515][ T8913] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1082'.
[  130.515625][ T8913] team0: Port device team_slave_1 removed
[  131.323024][  T840] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  131.484687][  T840] usb 6-1: unable to get BOS descriptor or descriptor too short
[  131.489038][  T840] usb 6-1: config 6 has an invalid interface number: 200 but max is 0
[  131.492572][  T840] usb 6-1: config 6 has no interface number 0
[  131.495280][  T840] usb 6-1: config 6 interface 200 altsetting 8 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  131.499893][  T840] usb 6-1: config 6 interface 200 has no altsetting 0
[  131.505466][  T840] usb 6-1: string descriptor 0 read error: -22
[  131.508188][  T840] usb 6-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f
[  131.511934][  T840] usb 6-1: New USB device strings: Mfr=9, Product=2, SerialNumber=3
[  131.521599][  T840] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state.
[  131.726659][  T840] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  131.731307][  T840] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T)
[  131.734734][  T840] usb 6-1: media controller created
[  131.752773][  T840] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  131.929697][  T840] dvb-usb: bulk message failed: -71 (6/0)
[  131.933061][  T840] dvb-usb: bulk message failed: -71 (6/0)
[  131.935529][  T840] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T'
[  131.941509][  T840] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input9
[  131.952609][  T840] dvb-usb: schedule remote query interval to 150 msecs.
[  131.956129][  T840] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected.
[  131.961059][  T840] usb 6-1: USB disconnect, device number 11
[  131.993297][  T840] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected.
[  132.261357][ T8944] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1094'.
[  132.686205][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  132.688938][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  132.728347][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  132.728363][   T40] audit: type=1400 audit(1762476900.607:523): avc:  denied  { add_name } for  pid=8954 comm="syz.3.1098" name="cpuacct.usage_percpu" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  132.741660][   T40] audit: type=1400 audit(1762476900.607:524): avc:  denied  { create } for  pid=8954 comm="syz.3.1098" name="cpuacct.usage_percpu" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  132.748663][   T40] audit: type=1400 audit(1762476900.607:525): avc:  denied  { associate } for  pid=8954 comm="syz.3.1098" name="cpuacct.usage_percpu" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  132.757325][   T40] audit: type=1400 audit(1762476900.617:526): avc:  denied  { read append open } for  pid=8954 comm="syz.3.1098" path="/182/file0/cpuacct.usage_percpu" dev="9p" ino=71827921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  132.798003][   T40] audit: type=1400 audit(1762476900.677:527): avc:  denied  { map } for  pid=8954 comm="syz.3.1098" path="/182/file0/cpuacct.usage_percpu" dev="9p" ino=71827921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  132.808550][   T40] audit: type=1400 audit(1762476900.677:528): avc:  denied  { write execute } for  pid=8954 comm="syz.3.1098" path="/182/file0/cpuacct.usage_percpu" dev="9p" ino=71827921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  133.673574][ T8975] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1104'.
[  133.676383][ T8975] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1104'.
[  133.744136][ T8982] loop4: detected capacity change from 0 to 2560
[  133.753283][ T8763] Buffer I/O error on dev loop4, logical block 0, async page read
[  133.755491][   T40] audit: type=1400 audit(1762476901.627:529): avc:  denied  { map } for  pid=8980 comm="syz.0.1107" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  133.757035][ T8763] Buffer I/O error on dev loop4, logical block 0, async page read
[  133.763975][   T40] audit: type=1400 audit(1762476901.627:530): avc:  denied  { execute } for  pid=8980 comm="syz.0.1107" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  133.767266][ T8763] Buffer I/O error on dev loop4, logical block 0, async page read
[  133.780249][ T8982] Buffer I/O error on dev loop4, logical block 0, async page read
[  133.784980][ T8982] Buffer I/O error on dev loop4, logical block 0, async page read
[  133.809207][   T40] audit: type=1400 audit(1762476901.687:531): avc:  denied  { unmount } for  pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  133.911000][ T9005] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1114'.
[  133.916238][ T9005] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  133.937118][   T40] audit: type=1400 audit(1762476901.817:532): avc:  denied  { create } for  pid=9008 comm="syz.0.1115" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  133.995033][ T9015] netlink: 'syz.2.1116': attribute type 64 has an invalid length.
[  133.998314][ T9015] netlink: 'syz.2.1116': attribute type 4 has an invalid length.
[  134.001561][ T9015] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1116'.
[  134.121355][ T9030] usb usb8: usbfs: process 9030 (syz.2.1119) did not claim interface 0 before use
[  134.125458][ T9030] netlink: 'syz.2.1119': attribute type 1 has an invalid length.
[  134.276183][ T9041] 8021q: VLANs not supported on ip6gre0
[  134.767000][ T9066] netlink: 'syz.1.1132': attribute type 1 has an invalid length.
[  134.780982][ T9066] 8021q: adding VLAN 0 to HW filter on device bond1
[  134.793853][ T9066] vlan0: entered promiscuous mode
[  134.796247][ T9066] bond1: entered promiscuous mode
[  134.810120][ T9066] gretap1: entered promiscuous mode
[  134.817856][ T9071] fuse: Unknown parameter 'grd'
[  134.818792][ T9066] bond1: (slave gretap1): making interface the new active one
[  134.824760][ T9066] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  134.902542][ T9075] Dead loop on virtual device ip6_vti0, fix it urgently!
[  135.832771][ T5994] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  135.993720][ T5994] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  135.998003][ T5994] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  136.000955][ T5994] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  136.004415][ T5994] usb 7-1: config 0 interface 0 has no altsetting 0
[  136.008204][ T5994] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  136.011090][ T5994] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  136.014496][ T5994] usb 7-1: config 0 interface 0 has no altsetting 0
[  136.017376][ T5994] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  136.020252][ T5994] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  136.023693][ T5994] usb 7-1: config 0 interface 0 has no altsetting 0
[  136.026538][ T5994] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  136.029326][ T5994] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  136.032914][ T5994] usb 7-1: config 0 interface 0 has no altsetting 0
[  136.035818][ T5994] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  136.038698][ T5994] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  136.042173][ T5994] usb 7-1: config 0 interface 0 has no altsetting 0
[  136.045038][ T5994] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  136.048103][ T5994] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  136.051566][ T5994] usb 7-1: config 0 interface 0 has no altsetting 0
[  136.054518][ T5994] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  136.057375][ T5994] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  136.060885][ T5994] usb 7-1: config 0 interface 0 has no altsetting 0
[  136.063844][ T5994] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  136.066662][ T5994] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  136.070114][ T5994] usb 7-1: config 0 interface 0 has no altsetting 0
[  136.074452][ T5994] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  136.077282][ T5994] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  136.079962][ T5994] usb 7-1: Product: syz
[  136.081290][ T5994] usb 7-1: Manufacturer: syz
[  136.083046][ T5994] usb 7-1: SerialNumber: syz
[  136.085873][ T5994] usb 7-1: config 0 descriptor??
[  136.090788][ T5994] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[  136.293115][ T3246] usb 7-1: USB disconnect, device number 10
[  136.297784][ T3246] yurex 7-1:0.0: USB YUREX #0 now disconnected
[  136.767559][ T9106] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  136.770160][ T9106] syzkaller0: entered promiscuous mode
[  136.771934][ T9106] syzkaller0: entered allmulticast mode
[  136.782641][ T9106] tipc: Resetting bearer <eth:syzkaller0>
[  136.939290][ T5930] Bluetooth: hci3: unexpected event 0x01 length: 4 > 1
[  137.364856][ T9103] tipc: Resetting bearer <eth:syzkaller0>
[  137.379596][ T9103] tipc: Disabling bearer <eth:syzkaller0>
[  137.594739][ T9119] Dead loop on virtual device ip6_vti0, fix it urgently!
[  138.594355][ T9134] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  138.604300][ T9134] netfs: Couldn't get user pages (rc=-14)
[  138.606059][ T9134] netfs: Zero-sized read [R=1]
[  138.667800][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  138.667816][   T40] audit: type=1400 audit(1762476906.547:537): avc:  denied  { bind } for  pid=9135 comm="syz.2.1158" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  138.788858][ T9145] fuse: Bad value for 'user_id'
[  138.790882][ T9145] fuse: Bad value for 'user_id'
[  139.259479][ T9167] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  139.266262][   T40] audit: type=1400 audit(1762476907.147:538): avc:  denied  { connect } for  pid=9166 comm="syz.1.1167" lport=48905 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  139.275004][   T40] audit: type=1400 audit(1762476907.147:539): avc:  denied  { read } for  pid=9166 comm="syz.1.1167" lport=48905 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  139.308350][   T40] audit: type=1400 audit(1762476907.187:540): avc:  denied  { write } for  pid=9168 comm="syz.1.1168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  139.325358][   T40] audit: type=1400 audit(1762476907.207:541): avc:  denied  { bind } for  pid=9168 comm="syz.1.1168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  139.369651][ T9169] kvm: MONITOR instruction emulated as NOP!
[  139.798156][ T9187] Dead loop on virtual device ip6_vti0, fix it urgently!
[  139.804547][   T40] audit: type=1400 audit(1762476907.687:542): avc:  denied  { write } for  pid=9188 comm="syz.2.1174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  139.881243][ T9195] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1176'.
[  139.896208][ T9195] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  139.901872][ T9195] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  139.906595][ T9195] bond0 (unregistering): Released all slaves
[  140.143191][ T9211] 9pnet_virtio: no channels available for device syz
[  140.143322][   T40] audit: type=1400 audit(1762476908.027:543): avc:  denied  { mounton } for  pid=9210 comm="syz.2.1179" path="/367/file0" dev="9p" ino=71827717 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  140.376213][ T9219] batadv_slave_0: entered promiscuous mode
[  140.378071][ T9219] batadv_slave_0: entered allmulticast mode
[  140.554638][ T9230] Dead loop on virtual device ip6_vti0, fix it urgently!
[  140.706422][ T9242] sch_tbf: burst 32852 is lower than device lo mtu (65550) !
[  140.714990][ T9242] netem: change failed
[  141.327355][   T40] audit: type=1326 audit(1762476909.207:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9248 comm="syz.2.1190" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5abb98f6c9 code=0x0
[  141.380833][ T9249] netlink: 200 bytes leftover after parsing attributes in process `syz.2.1190'.
[  141.528178][ T9256] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  141.530843][ T9256] syzkaller0: entered promiscuous mode
[  141.532594][ T9256] syzkaller0: entered allmulticast mode
[  141.540319][ T9256] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  141.553518][ T9256] tipc: Resetting bearer <eth:syzkaller0>
[  141.555442][ T9256] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  141.623920][ T9261] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  141.642450][ T5930] Bluetooth: hci3: unexpected event for opcode 0x0c1a
[  141.648063][ T9254] kvm: pic: single mode not supported
[  141.648504][ T9254] kvm: pic: non byte read
[  141.649764][ T9254] kvm: pic: non byte read
[  141.650744][ T9254] kvm: pic: single mode not supported
[  141.656346][ T9254] kvm: pic: level sensitive irq not supported
[  141.659452][ T9254] kvm: pic: non byte read
[  141.665120][ T9254] kvm: pic: level sensitive irq not supported
[  141.665473][ T9254] kvm: pic: non byte read
[  141.670407][   T40] audit: type=1400 audit(1762476909.547:545): avc:  denied  { bind } for  pid=9263 comm="syz.3.1194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  141.671038][ T9254] kvm: pic: single mode not supported
[  141.679523][ T9254] kvm: pic: non byte read
[  141.685484][ T9254] kvm: pic: non byte read
[  141.688581][ T9254] kvm: pic: level sensitive irq not supported
[  141.688902][ T9254] kvm: pic: non byte read
[  141.694479][ T9254] kvm: pic: single mode not supported
[  141.694490][ T9254] kvm: pic: level sensitive irq not supported
[  141.697055][ T9254] kvm: pic: non byte read
[  141.701375][ T9254] kvm: pic: level sensitive irq not supported
[  141.701602][ T9254] kvm: pic: non byte read
[  141.713010][ T9266] Dead loop on virtual device ip6_vti0, fix it urgently!
[  141.732945][ T9258] tipc: Resetting bearer <eth:syzkaller0>
[  141.745622][ T9258] tipc: Disabling bearer <eth:syzkaller0>
[  141.763357][ T9270] sp0: Synchronizing with TNC
[  141.889033][   T40] audit: type=1400 audit(1762476909.767:546): avc:  denied  { getopt } for  pid=9269 comm="syz.1.1197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  142.465151][ T9278] usb usb8: usbfs: process 9278 (syz.2.1198) did not claim interface 0 before use
[  142.687972][ T9274] [U] �
[  143.412227][ T9294] binder: 9293:9294 ioctl c0306201 200000000080 returned -14
[  143.456231][ T9296] syzkaller1: entered promiscuous mode
[  143.458576][ T9296] syzkaller1: entered allmulticast mode
[  143.466852][ T9296] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1203'.
[  143.530445][ T9298] netlink: 'syz.3.1204': attribute type 4 has an invalid length.
[  143.560380][ T9302] tmpfs: Bad value for 'mpol'
[  143.568924][ T9298] netlink: 'syz.3.1204': attribute type 4 has an invalid length.
[  143.730599][ T9320] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  143.783665][ T9326] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  143.789261][ T9326] 8021q: VLANs not supported on tunl0
[  144.000278][ T9340] gfs2: path_lookup on �6~�x]E�pkJAK0�d��5����_���zJPQ�nB�!eU��V�!�`:� 8�6��E��|YT���%�-��
����	 returned error -2
[  144.413458][ T9368] syz_tun: entered allmulticast mode
[  144.420732][ T9368] dvmrp8: entered allmulticast mode
[  144.429097][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  144.429109][   T40] audit: type=1326 audit(1762476912.307:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9367 comm="syz.0.1226" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f85bd18f6c9 code=0x0
[  144.567545][   T40] audit: type=1400 audit(1762476912.447:550): avc:  denied  { mount } for  pid=9377 comm="syz.1.1229" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  144.585063][   T53] libceph: connect (1)[b::]:6789 error -101
[  144.592834][   T53] libceph: mon0 (1)[b::]:6789 connect error
[  144.603246][   T53] libceph: connect (1)[b::]:6789 error -101
[  144.605881][   T53] libceph: mon0 (1)[b::]:6789 connect error
[  144.613101][ T9383] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1231'.
[  144.621541][ T9386] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1229'.
[  144.630747][   T40] audit: type=1400 audit(1762476912.507:551): avc:  denied  { load_policy } for  pid=9382 comm="syz.2.1231" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  144.636631][ T9385] netlink: 248 bytes leftover after parsing attributes in process `syz.3.1232'.
[  144.639980][ T9383] SELinux: failed to load policy
[  144.660686][ T9383] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1231'.
[  144.814081][ T9399] nbd: must specify a device to reconfigure
[  144.829832][ T5930] Bluetooth: Wrong link type (-57)
[  144.864789][  T839] libceph: connect (1)[b::]:6789 error -101
[  144.867487][  T839] libceph: mon0 (1)[b::]:6789 connect error
[  145.023760][   T40] audit: type=1400 audit(1762476912.907:552): avc:  denied  { bind } for  pid=9407 comm="syz.3.1235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  145.030765][   T40] audit: type=1400 audit(1762476912.907:553): avc:  denied  { name_bind } for  pid=9407 comm="syz.3.1235" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  145.043227][   T40] audit: type=1400 audit(1762476912.907:554): avc:  denied  { node_bind } for  pid=9407 comm="syz.3.1235" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  145.050628][   T40] audit: type=1400 audit(1762476912.907:555): avc:  denied  { connect } for  pid=9407 comm="syz.3.1235" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  145.067782][ T9413] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1236'.
[  145.243674][ T9367] syz_tun: left allmulticast mode
[  145.383229][  T839] libceph: connect (1)[b::]:6789 error -101
[  145.385870][  T839] libceph: mon0 (1)[b::]:6789 connect error
[  145.394721][ T9379] ceph: No mds server is up or the cluster is laggy
[  145.490399][   T40] audit: type=1400 audit(1762476913.367:556): avc:  denied  { execmem } for  pid=9428 comm="syz.1.1242" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  145.564154][ T9440] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1244'.
[  145.569567][   T40] audit: type=1400 audit(1762476913.447:557): avc:  denied  { ioctl } for  pid=9439 comm="syz.2.1244" path="/dev/cachefiles" dev="devtmpfs" ino=4 ioctlcmd=0xae46 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  145.573974][ T9440] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1244'.
[  145.580208][   T40] audit: type=1400 audit(1762476913.447:558): avc:  denied  { bind } for  pid=9439 comm="syz.2.1244" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  145.661069][ T9446] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1246'.
[  145.689634][ T9448] random: crng reseeded on system resumption
[  145.696714][ T9448] random: crng reseeded on system resumption
[  146.064260][ T9468] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  146.417490][ T9489] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  146.420207][ T9489] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  146.424620][ T9489] vhci_hcd vhci_hcd.0: Device attached
[  146.434375][ T9490] usbip_core: unknown command
[  146.435911][ T9490] vhci_hcd: unknown pdu 808464432
[  146.437572][ T9490] usbip_core: unknown command
[  146.440374][ T1147] vhci_hcd: stop threads
[  146.441723][ T1147] vhci_hcd: release socket
[  146.443396][ T1147] vhci_hcd: disconnect device
[  146.490648][ T9494] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1260'.
[  146.494254][ T9494] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1260'.
[  146.875061][ T9497] netlink: 'syz.2.1261': attribute type 12 has an invalid length.
[  146.877642][ T9497] netlink: 248 bytes leftover after parsing attributes in process `syz.2.1261'.
[  146.923422][ T9501] QAT: Stopping all acceleration devices.
[  147.032114][ T9512] IPVS: set_ctl: invalid protocol: 232 255.255.255.255:20004
[  147.069887][ T9515] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1268'.
[  147.126924][ T9520] netlink: 'syz.0.1270': attribute type 9 has an invalid length.
[  147.352794][ T3246] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  147.482323][ T9544] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1277'.
[  147.518973][ T9547] i2c i2c-1: Invalid block write size 34
[  147.525498][ T3246] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  147.529136][ T3246] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  147.533610][ T3246] usb 6-1: config 0 interface 0 has no altsetting 0
[  147.538440][ T3246] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  147.542377][ T3246] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  147.546087][ T3246] usb 6-1: Product: syz
[  147.548091][ T3246] usb 6-1: Manufacturer: syz
[  147.550186][ T3246] usb 6-1: SerialNumber: syz
[  147.555589][ T3246] usb 6-1: config 0 descriptor??
[  147.559840][ T3246] hub 6-1:0.0: bad descriptor, ignoring hub
[  147.562411][ T3246] hub 6-1:0.0: probe with driver hub failed with error -5
[  147.568257][ T3246] usb 6-1: selecting invalid altsetting 0
[  147.783394][ T9559] xt_TCPMSS: Only works on TCP SYN packets
[  147.828286][ T9561] bridge1: entered promiscuous mode
[  147.830501][ T9561] bridge1: entered allmulticast mode
[  147.872112][ T9567] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1282'.
[  148.184041][ T9517] usb 6-1: reset high-speed USB device number 12 using dummy_hcd
[  148.203493][ T9577] tmpfs: Bad value for 'huge'
[  148.343252][ T9517] usb 6-1: device firmware changed
[  148.346758][ T3246] usb 6-1: USB disconnect, device number 12
[  148.492790][ T3246] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  148.529528][ T9585] 9p: Unknown uid 00000000004294967295
[  148.655432][ T3246] usb 6-1: config 1 interface 0 has no altsetting 0
[  148.671881][ T3246] usb 6-1: string descriptor 0 read error: -22
[  148.675340][ T3246] usb 6-1: New USB device found, idVendor=0eef, idProduct=720c, bcdDevice= 0.40
[  148.679093][ T3246] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.686509][ T9590] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[  148.727682][ T9592] netlink: 'syz.2.1293': attribute type 10 has an invalid length.
[  148.900239][ T3246] usbhid 6-1:1.0: can't add hid device: -71
[  148.903661][ T3246] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  148.903787][ T9604] xt_connbytes: Forcing CT accounting to be enabled
[  148.911253][ T3246] usb 6-1: USB disconnect, device number 13
[  149.520389][ T9640] Invalid source name
[  149.522091][ T9640] UBIFS error (pid: 9640): cannot open "/dev/sg0", error -22
[  149.574029][   T40] kauditd_printk_skb: 36 callbacks suppressed
[  149.574046][   T40] audit: type=1400 audit(1762476917.457:595): avc:  denied  { listen } for  pid=9643 comm="syz.3.1307" lport=52768 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  149.782885][  T839] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  149.856288][   T40] audit: type=1400 audit(1762476917.737:596): avc:  denied  { write } for  pid=9652 comm="syz.3.1310" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  149.949926][  T839] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.954308][  T839] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.960307][  T839] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  149.967421][  T839] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  149.972437][  T839] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.977732][  T839] usb 5-1: config 0 descriptor??
[  150.204072][  T839] usbhid 5-1:0.0: can't add hid device: -71
[  150.206306][  T839] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  150.210049][  T839] usb 5-1: USB disconnect, device number 7
[  150.251667][ T9684] __nla_validate_parse: 3 callbacks suppressed
[  150.251678][ T9684] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1320'.
[  150.290407][ T9688] netlink: 620 bytes leftover after parsing attributes in process `syz.0.1321'.
[  150.768480][   T40] audit: type=1400 audit(1762476918.647:597): avc:  denied  { append } for  pid=9696 comm="syz.1.1325" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  150.930979][   T40] audit: type=1400 audit(1762476918.807:598): avc:  denied  { read } for  pid=9703 comm="syz.2.1327" lport=3488 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  150.935665][ T5930] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  150.942481][ T5930] CPU: 1 UID: 0 PID: 5930 Comm: kworker/u33:2 Not tainted syzkaller #0 PREEMPT(full) 
[  150.942506][ T5930] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.942520][ T5930] Workqueue: hci1 hci_rx_work
[  150.942580][ T5930] Call Trace:
[  150.942587][ T5930]  <TASK>
[  150.942595][ T5930]  dump_stack_lvl+0x16c/0x1f0
[  150.942627][ T5930]  sysfs_warn_dup+0x7f/0xa0
[  150.942654][ T5930]  sysfs_create_dir_ns+0x24b/0x2b0
[  150.942694][ T5930]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  150.942718][ T5930]  ? find_held_lock+0x2b/0x80
[  150.942748][ T5930]  ? do_raw_spin_unlock+0x172/0x230
[  150.942772][ T5930]  kobject_add_internal+0x2c4/0x9b0
[  150.942800][ T5930]  kobject_add+0x16e/0x240
[  150.942819][ T5930]  ? __pfx_kobject_add+0x10/0x10
[  150.942841][ T5930]  ? do_raw_spin_unlock+0x172/0x230
[  150.942863][ T5930]  ? kobject_put+0xab/0x5a0
[  150.942889][ T5930]  device_add+0x288/0x1aa0
[  150.942922][ T5930]  ? __pfx_dev_set_name+0x10/0x10
[  150.942947][ T5930]  ? __pfx_device_add+0x10/0x10
[  150.942971][ T5930]  ? mgmt_send_event_skb+0x2fb/0x460
[  150.943006][ T5930]  hci_conn_add_sysfs+0x17e/0x230
[  150.943025][ T5930]  le_conn_complete_evt+0x1260/0x2150
[  150.943059][ T5930]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  150.943085][ T5930]  ? hci_event_packet+0x459/0x11c0
[  150.943119][ T5930]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  150.943153][ T5930]  ? skb_pull_data+0x166/0x210
[  150.943179][ T5930]  hci_le_meta_evt+0x357/0x5e0
[  150.943208][ T5930]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  150.943241][ T5930]  hci_event_packet+0x685/0x11c0
[  150.943270][ T5930]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  150.943300][ T5930]  ? __pfx_hci_event_packet+0x10/0x10
[  150.943329][ T5930]  ? kcov_remote_start+0x3c9/0x6d0
[  150.943353][ T5930]  ? lockdep_hardirqs_on+0x7c/0x110
[  150.943389][ T5930]  hci_rx_work+0x2c5/0x16b0
[  150.943414][ T5930]  ? rcu_is_watching+0x12/0xc0
[  150.943442][ T5930]  process_one_work+0x9cf/0x1b70
[  150.943473][ T5930]  ? __pfx_process_one_work+0x10/0x10
[  150.943502][ T5930]  ? assign_work+0x1a0/0x250
[  150.943523][ T5930]  worker_thread+0x6c8/0xf10
[  150.943555][ T5930]  ? __pfx_worker_thread+0x10/0x10
[  150.943575][ T5930]  kthread+0x3c5/0x780
[  150.943594][ T5930]  ? __pfx_kthread+0x10/0x10
[  150.943613][ T5930]  ? rcu_is_watching+0x12/0xc0
[  150.943636][ T5930]  ? __pfx_kthread+0x10/0x10
[  150.943656][ T5930]  ret_from_fork+0x675/0x7d0
[  150.943672][ T5930]  ? __pfx_kthread+0x10/0x10
[  150.943690][ T5930]  ret_from_fork_asm+0x1a/0x30
[  150.943731][ T5930]  </TASK>
[  151.030192][ T5930] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  151.034971][ T5930] Bluetooth: hci1: failed to register connection device
[  151.214243][   T40] audit: type=1400 audit(1762476919.087:599): avc:  denied  { connect } for  pid=9720 comm="syz.0.1330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  151.808003][ T9761] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1340'.
[  152.005341][ T9767] netlink: 'syz.2.1343': attribute type 322 has an invalid length.
[  152.009518][ T9768] netlink: 'syz.2.1343': attribute type 322 has an invalid length.
[  152.085826][ T9772] overlayfs: workdir and upperdir must be separate subtrees
[  152.362960][ T3246] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  152.434934][   T40] audit: type=1400 audit(1762476920.317:600): avc:  denied  { append } for  pid=9797 comm="syz.3.1353" name="usbmon7" dev="devtmpfs" ino=759 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  152.438949][ T9800] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1352'.
[  152.447948][   T40] audit: type=1400 audit(1762476920.317:601): avc:  denied  { write } for  pid=9797 comm="syz.3.1353" name="usbmon4" dev="devtmpfs" ino=749 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  152.448304][ T9800] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1352'.
[  152.525470][ T3246] usb 7-1: config 1 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  152.531406][ T3246] usb 7-1: config 1 interface 0 has no altsetting 0
[  152.540410][ T3246] usb 7-1: New USB device found, idVendor=1e71, idProduct=2019, bcdDevice= 0.40
[  152.544563][ T3246] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.547885][ T3246] usb 7-1: Product: syz
[  152.549695][ T3246] usb 7-1: Manufacturer: syz
[  152.551737][ T3246] usb 7-1: SerialNumber: syz
[  152.561056][   T40] audit: type=1400 audit(1762476920.437:602): avc:  denied  { mount } for  pid=9804 comm="syz.3.1354" name="/" dev="ramfs" ino=39325 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  152.771296][ T3246] usbhid 7-1:1.0: can't add hid device: -71
[  152.773360][ T3246] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[  152.779960][ T3246] usb 7-1: USB disconnect, device number 11
[  153.044344][ T9813] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow
[  153.466953][ T9822] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  153.564060][ T9829] trusted_key: encrypted_key: master key parameter '' is invalid
[  153.672952][ T9836] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1360'.
[  153.748461][ T9837] ISOFS: Unable to identify CD-ROM format.
[  153.975746][ T9840] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'.
[  153.979483][ T9840] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1363'.
[  153.983497][ T9840] netlink: 'syz.1.1363': attribute type 19 has an invalid length.
[  154.060239][ T9850] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[  154.066123][ T9852] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1366'.
[  154.068231][   T40] audit: type=1400 audit(1762476921.947:603): avc:  denied  { relabelto } for  pid=9849 comm="syz.3.1365" name="251" dev="tmpfs" ino=1324 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  154.070418][ T9852] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1366'.
[  154.084736][   T40] audit: type=1400 audit(1762476921.947:604): avc:  denied  { associate } for  pid=9849 comm="syz.3.1365" name="251" dev="tmpfs" ino=1324 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:crond_var_run_t:s0"
[  154.091541][ T9852] overlay: filesystem on ./bus is read-only
[  154.407458][ T9865] bond0: entered allmulticast mode
[  154.409652][ T9865] bond_slave_0: entered allmulticast mode
[  154.412190][ T9865] bond_slave_1: entered allmulticast mode
[  154.456893][ T9867] xt_connbytes: Forcing CT accounting to be enabled
[  154.504903][ T9869] tracefs: Unknown parameter ''
[  154.945401][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  154.945418][   T40] audit: type=1400 audit(1762476922.827:613): avc:  denied  { mount } for  pid=9878 comm="syz.3.1375" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  155.492828][ T3246] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  155.630806][ T9903] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  155.642853][ T3246] usb 5-1: Using ep0 maxpacket: 16
[  155.646873][ T3246] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  155.654006][ T3246] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  155.657677][ T3246] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.660837][ T3246] usb 5-1: Product: syz
[  155.662617][ T3246] usb 5-1: Manufacturer: syz
[  155.664999][ T3246] usb 5-1: SerialNumber: syz
[  155.669978][ T3246] usb 5-1: config 0 descriptor??
[  155.674338][ T3246] hub 5-1:0.0: bad descriptor, ignoring hub
[  155.676847][ T3246] hub 5-1:0.0: probe with driver hub failed with error -5
[  155.695155][ T3246] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input12
[  155.725793][   T40] audit: type=1400 audit(1762476923.607:614): avc:  denied  { read append open } for  pid=9910 comm="syz.2.1384" path="/426/file0/cpuset.effective_cpus" dev="9p" ino=71827937 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  155.737160][   T40] audit: type=1400 audit(1762476923.607:615): avc:  denied  { ioctl } for  pid=9910 comm="syz.2.1384" path="/426/file0/cpuset.effective_cpus" dev="9p" ino=71827937 ioctlcmd=0x4b6c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  155.737207][   T40] audit: type=1400 audit(1762476923.607:616): avc:  denied  { create } for  pid=9910 comm="syz.2.1384" name=E91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[  155.737247][   T40] audit: type=1400 audit(1762476923.607:617): avc:  denied  { write } for  pid=9910 comm="syz.2.1384" name=E91F7189591E9233614B dev="9p" ino=71827953 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sock_file permissive=1
[  155.879410][ T9888] __nla_validate_parse: 1 callbacks suppressed
[  155.879420][ T9888] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1378'.
[  155.885097][ T9888] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1378'.
[  155.888104][ T9888] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1378'.
[  156.173820][ T3246] usb 5-1: USB disconnect, device number 8
[  156.768538][   T40] audit: type=1400 audit(1762476924.647:618): avc:  denied  { mount } for  pid=9944 comm="syz.3.1388" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  156.797002][   T40] audit: type=1400 audit(1762476924.677:619): avc:  denied  { unmount } for  pid=5937 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  156.853323][ T9950] netlink: 'syz.2.1390': attribute type 142 has an invalid length.
[  156.858236][   T40] audit: type=1400 audit(1762476924.737:620): avc:  denied  { shutdown } for  pid=9949 comm="syz.2.1390" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  156.866988][   T40] audit: type=1400 audit(1762476924.737:621): avc:  denied  { shutdown } for  pid=9949 comm="syz.2.1390" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  157.421040][   T40] audit: type=1400 audit(1762476925.297:622): avc:  denied  { read } for  pid=9975 comm="syz.1.1398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  157.517609][ T9982] program syz.1.1400 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  157.531798][ T9982] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  157.537085][ T9982] UDF-fs: Scanning with blocksize 2048 failed
[  157.541398][ T9982] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  157.544893][ T9982] UDF-fs: Scanning with blocksize 4096 failed
[  157.552659][ T9985] syzkaller0: entered promiscuous mode
[  157.555117][ T9985] syzkaller0: entered allmulticast mode
[  157.559371][ T9985] 0: reclassify loop, rule prio 0, protocol 800
[  157.563533][ T9985] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  157.573508][ T9985] CIFS mount error: No usable UNC path provided in device string!
[  157.573508][ T9985] 
[  157.577714][ T9985] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  157.674203][ T9993] IPVS: set_ctl: invalid protocol: 47 172.30.1.1:20000
[  157.678162][ T9993] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1404'.
[  157.690604][ T9990] netlink: 14560 bytes leftover after parsing attributes in process `syz.1.1403'.
[  157.794387][T10006] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1408'.
[  157.797941][T10006] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1408'.
[  158.093454][   T54] usb 6-1: new full-speed USB device number 14 using dummy_hcd
[  158.192850][   T34] usb 7-1: new full-speed USB device number 12 using dummy_hcd
[  158.245412][   T54] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  158.249486][   T54] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  158.255169][   T54] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  158.258959][   T54] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.356444][   T34] usb 7-1: too many configurations: 43, using maximum allowed: 8
[  158.359538][   T34] usb 7-1: unable to read config index 0 descriptor/start: -71
[  158.361941][   T34] usb 7-1: can't read configurations, error -71
[  158.468412][   T54] usb 6-1: usb_control_msg returned -32
[  158.471538][   T54] usbtmc 6-1:16.0: can't read capabilities
[  158.740858][T10049] xt_hashlimit: invalid interval
[  158.821444][T10057] usb 6-1: usbtmc_ioctl_clear_in_halt returned -32
[  158.928795][T10065] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1426'.
[  159.873637][T10095] binder: 10093:10095 unknown command 0
[  159.875877][T10095] binder: 10093:10095 ioctl c0306201 200000000080 returned -22
[  159.887220][T10095] bond0: (slave ipvlan0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  159.891915][T10095] bond0: (slave ipvlan0): The slave device specified does not support setting the MAC address
[  159.897470][T10095] bond0: (slave ipvlan0): Error -95 calling set_mac_address
[  160.145850][T10109] input: syz1 as /devices/virtual/input/input13
[  160.300457][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  160.300475][   T40] audit: type=1400 audit(1762476928.177:633): avc:  denied  { mount } for  pid=10122 comm="syz.0.1444" name="/" dev="hugetlbfs" ino=42212 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  160.318774][   T40] audit: type=1400 audit(1762476928.197:634): avc:  denied  { unmount } for  pid=5928 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  160.454485][T10136] dvmrp1: entered allmulticast mode
[  160.457478][T10136] binder: 10131:10136 ioctl 4018620d 0 returned -22
[  160.460057][T10136] binder: 10131:10136 ioctl c0306201 200000000080 returned -14
[  160.463076][T10136] binder: 10131:10136 ioctl c0306201 2000000001c0 returned -11
[  160.654964][   T40] audit: type=1326 audit(1762476928.537:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10150 comm="syz.0.1450" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bd18f6c9 code=0x7ffc0000
[  160.662432][   T40] audit: type=1326 audit(1762476928.537:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10150 comm="syz.0.1450" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bd18f6c9 code=0x7ffc0000
[  160.670214][   T40] audit: type=1326 audit(1762476928.537:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10150 comm="syz.0.1450" exe="/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f85bd18f6c9 code=0x7ffc0000
[  160.678215][   T40] audit: type=1326 audit(1762476928.537:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10150 comm="syz.0.1450" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bd18f6c9 code=0x7ffc0000
[  160.685593][   T40] audit: type=1326 audit(1762476928.537:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10150 comm="syz.0.1450" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bd18f6c9 code=0x7ffc0000
[  160.692806][   T40] audit: type=1326 audit(1762476928.537:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10150 comm="syz.0.1450" exe="/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f85bd18f6c9 code=0x7ffc0000
[  160.701205][   T40] audit: type=1326 audit(1762476928.537:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10150 comm="syz.0.1450" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bd18f6c9 code=0x7ffc0000
[  160.708647][   T40] audit: type=1326 audit(1762476928.537:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10150 comm="syz.0.1450" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85bd18f6c9 code=0x7ffc0000
[  160.873040][    T9] usb 6-1: USB disconnect, device number 14
[  160.974119][T10170] usb usb8: usbfs: process 10170 (syz.3.1456) did not claim interface 0 before use
[  161.118128][T10194] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1461'.
[  161.287226][T10218] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048)
[  162.045304][T10233] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1470'.
[  162.049564][T10233] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1470'.
[  162.053179][T10233] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1470'.
[  162.309586][T10248] vlan2: entered promiscuous mode
[  162.311359][T10248] vlan2: entered allmulticast mode
[  162.313086][T10248] hsr_slave_1: entered allmulticast mode
[  163.283622][T10270] tmpfs: Unknown parameter 'usrquote_hardlimit'
[  163.863605][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  163.972381][T10301] overlay: Unknown parameter 'fsmagic'
[  163.991126][T10305] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  163.995624][T10305] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1496'.
[  164.053104][T10315] binder: 10314:10315 ioctl c0306201 2000000004c0 returned -22
[  164.056938][T10315] binder: 10314:10315 unknown command 0
[  164.059415][T10315] binder: 10314:10315 ioctl c0306201 200000004a40 returned -22
[  164.076071][T10315] syz.0.1498 (10315) used obsolete PPPIOCDETACH ioctl
[  164.148468][T10321] CIFS mount error: No usable UNC path provided in device string!
[  164.148468][T10321] 
[  164.153582][T10321] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  164.390656][T10343] netlink: 'syz.3.1507': attribute type 15 has an invalid length.
[  164.393612][T10343] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1507'.
[  164.405716][T10343] netlink: 'syz.3.1507': attribute type 15 has an invalid length.
[  164.405716][   T61] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 2816 - 0
[  164.405754][   T61] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 2816 - 0
[  164.409228][T10343] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1507'.
[  164.412756][   T61] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 2816 - 0
[  164.422190][   T61] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 2816 - 0
[  164.520344][T10354] kvm: user requested TSC rate below hardware speed
[  165.109949][T10359] 9pnet_fd: Insufficient options for proto=fd
[  165.272521][T10370] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1513'.
[  165.276334][T10370] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1513'.
[  165.542853][T10387] netlink: 'syz.3.1518': attribute type 1 has an invalid length.
[  165.554704][   T40] kauditd_printk_skb: 64 callbacks suppressed
[  165.554715][   T40] audit: type=1326 audit(1762476933.437:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.564789][   T40] audit: type=1326 audit(1762476933.437:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.572176][   T40] audit: type=1326 audit(1762476933.437:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.579807][   T40] audit: type=1326 audit(1762476933.437:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.587618][   T40] audit: type=1326 audit(1762476933.437:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.595109][   T40] audit: type=1326 audit(1762476933.437:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.602517][   T40] audit: type=1326 audit(1762476933.437:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.610219][   T40] audit: type=1326 audit(1762476933.437:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.617908][   T40] audit: type=1326 audit(1762476933.437:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  165.625468][   T40] audit: type=1326 audit(1762476933.437:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10386 comm="syz.3.1518" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb87d8f6c9 code=0x7ffc0000
[  166.162907][ T5930] Bluetooth: hci3: unexpected event for opcode 0x2028
[  166.165987][ T5930] Bluetooth: hci3: unexpected event for opcode 0x2028
[  166.544970][T10408] veth0: entered promiscuous mode
[  166.546939][T10408] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1526'.
[  166.615123][    T9] usb 7-1: new full-speed USB device number 14 using dummy_hcd
[  166.627647][T10411] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1523'.
[  166.773975][    T9] usb 7-1: config 0 has no interfaces?
[  166.775758][    T9] usb 7-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  166.778636][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.782294][    T9] usb 7-1: config 0 descriptor??
[  166.840151][T10426] binder: 10425:10426 ioctl c0306201 2000000001c0 returned -14
[  166.847822][T10426] binder: 10425:10426 ioctl c0306201 200000000040 returned -14
[  166.851302][T10426] binder: 10425:10426 ioctl c0306201 200000000540 returned -22
[  166.998500][ T5930] Bluetooth: hci3: unexpected event for opcode 0x0402
[  167.046452][ T3246] usb 7-1: USB disconnect, device number 14
[  167.873444][T10436] hid-generic 0003:0627:0001.0001: pid 10436 passed too short report
[  168.833199][T10488] FAULT_INJECTION: forcing a failure.
[  168.833199][T10488] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.838548][T10488] CPU: 2 UID: 0 PID: 10488 Comm: syz.3.1549 Not tainted syzkaller #0 PREEMPT(full) 
[  168.838571][T10488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.838581][T10488] Call Trace:
[  168.838622][T10488]  <TASK>
[  168.838629][T10488]  dump_stack_lvl+0x16c/0x1f0
[  168.838679][T10488]  should_fail_ex+0x512/0x640
[  168.838711][T10488]  _copy_to_user+0x32/0xd0
[  168.838734][T10488]  simple_read_from_buffer+0xcb/0x170
[  168.838767][T10488]  proc_fail_nth_read+0x197/0x240
[  168.838788][T10488]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.838809][T10488]  ? rw_verify_area+0xcf/0x6c0
[  168.838833][T10488]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.838853][T10488]  vfs_read+0x1e4/0xcf0
[  168.838869][T10488]  ? __pfx___sys_sendto+0x10/0x10
[  168.838894][T10488]  ? __pfx_vfs_read+0x10/0x10
[  168.838914][T10488]  ? ksys_unshare+0x687/0xa40
[  168.838945][T10488]  ksys_read+0x12a/0x250
[  168.838960][T10488]  ? __pfx_ksys_read+0x10/0x10
[  168.838981][T10488]  do_syscall_64+0xcd/0xfa0
[  168.838999][T10488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.839015][T10488] RIP: 0033:0x7ffb87d8e0dc
[  168.839029][T10488] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  168.839045][T10488] RSP: 002b:00007ffb88bc1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  168.839061][T10488] RAX: ffffffffffffffda RBX: 00007ffb87fe5fa0 RCX: 00007ffb87d8e0dc
[  168.839072][T10488] RDX: 000000000000000f RSI: 00007ffb88bc10a0 RDI: 0000000000000006
[  168.839083][T10488] RBP: 00007ffb88bc1090 R08: 0000000000000000 R09: 0000000000000000
[  168.839093][T10488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.839102][T10488] R13: 00007ffb87fe6038 R14: 00007ffb87fe5fa0 R15: 00007fff538da908
[  168.839126][T10488]  </TASK>
[  168.916492][    C2] vkms_vblank_simulate: vblank timer overrun
[  169.006013][T10499] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  169.046846][T10504] delete_channel: no stack
[  169.082333][T10509] netlink: 'syz.3.1556': attribute type 2 has an invalid length.
[  169.086676][T10509] netlink: 'syz.3.1556': attribute type 1 has an invalid length.
[  169.098417][T10507] can: request_module (can-proto-0) failed.
[  169.220327][T10521] netlink: 344 bytes leftover after parsing attributes in process `syz.3.1559'.
[  169.382945][T10540] fuseblk: Bad value for 'fd'
[  169.388601][T10540] sg_read: process 1179 (syz.2.1563) changed security contexts after opening file descriptor, this is not allowed.
[  170.391805][T10584] F2FS-fs: Conflicting test_dummy_encryption options
[  170.396975][T10585] gfs2: error -5 reading superblock
[  170.760241][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  170.760252][   T40] audit: type=1800 audit(1762476938.637:739): pid=10567 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.1571" name="/" dev="fuse" ino=9 res=0 errno=0
[  170.966400][  T839] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  171.072784][ T3246] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  171.142959][  T839] usb 7-1: Using ep0 maxpacket: 8
[  171.145915][  T839] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  171.148589][  T839] usb 7-1: config 0 has no interface number 0
[  171.150499][  T839] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  171.154060][  T839] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  171.157602][  T839] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  171.161204][  T839] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  171.165148][  T839] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  171.168260][  T839] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.172080][  T839] usb 7-1: config 0 descriptor??
[  171.176973][  T839] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  171.222793][ T3246] usb 6-1: Using ep0 maxpacket: 16
[  171.227657][ T3246] usb 6-1: New USB device found, idVendor=1199, idProduct=b000, bcdDevice=a8.98
[  171.230525][ T3246] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=24
[  171.233401][ T3246] usb 6-1: Product: syz
[  171.234720][ T3246] usb 6-1: Manufacturer: syz
[  171.236199][ T3246] usb 6-1: SerialNumber: syz
[  171.239099][ T3246] usb 6-1: config 0 descriptor??
[  171.455296][ T5930] Bluetooth: hci1: Unknown advertising packet type: 0x7e
[  171.455314][ T5930] Bluetooth: hci1: Malformed LE Event: 0x0d
[  171.462445][ T5992] usb 6-1: USB disconnect, device number 15
[  171.911627][T10635] netlink: 'syz.0.1590': attribute type 1 has an invalid length.
[  171.914266][T10635] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1590'.
[  172.441034][T10641] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1592'.
[  172.449150][ T5930] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  172.453443][ T5930] CPU: 0 UID: 0 PID: 5930 Comm: kworker/u33:2 Not tainted syzkaller #0 PREEMPT(full) 
[  172.453468][ T5930] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.453481][ T5930] Workqueue: hci2 hci_rx_work
[  172.453512][ T5930] Call Trace:
[  172.453519][ T5930]  <TASK>
[  172.453527][ T5930]  dump_stack_lvl+0x16c/0x1f0
[  172.453558][ T5930]  sysfs_warn_dup+0x7f/0xa0
[  172.453584][ T5930]  sysfs_create_dir_ns+0x24b/0x2b0
[  172.453608][ T5930]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  172.453629][ T5930]  ? find_held_lock+0x2b/0x80
[  172.453657][ T5930]  ? do_raw_spin_unlock+0x172/0x230
[  172.453680][ T5930]  kobject_add_internal+0x2c4/0x9b0
[  172.453703][ T5930]  kobject_add+0x16e/0x240
[  172.453727][ T5930]  ? __pfx_kobject_add+0x10/0x10
[  172.453748][ T5930]  ? do_raw_spin_unlock+0x172/0x230
[  172.453768][ T5930]  ? kobject_put+0xab/0x5a0
[  172.453812][ T5930]  device_add+0x288/0x1aa0
[  172.453832][ T5930]  ? __pfx_dev_set_name+0x10/0x10
[  172.453852][ T5930]  ? __pfx_device_add+0x10/0x10
[  172.453870][ T5930]  ? mgmt_send_event_skb+0x2fb/0x460
[  172.453901][ T5930]  hci_conn_add_sysfs+0x17e/0x230
[  172.453920][ T5930]  le_conn_complete_evt+0x1260/0x2150
[  172.453951][ T5930]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  172.453975][ T5930]  ? hci_event_packet+0x459/0x11c0
[  172.454005][ T5930]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  172.454032][ T5930]  ? skb_pull_data+0x166/0x210
[  172.454057][ T5930]  hci_le_meta_evt+0x357/0x5e0
[  172.454083][ T5930]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  172.454112][ T5930]  hci_event_packet+0x685/0x11c0
[  172.454138][ T5930]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  172.454166][ T5930]  ? __pfx_hci_event_packet+0x10/0x10
[  172.454195][ T5930]  ? kcov_remote_start+0x3c9/0x6d0
[  172.454216][ T5930]  ? lockdep_hardirqs_on+0x7c/0x110
[  172.454248][ T5930]  hci_rx_work+0x2c5/0x16b0
[  172.454273][ T5930]  ? rcu_is_watching+0x12/0xc0
[  172.454298][ T5930]  process_one_work+0x9cf/0x1b70
[  172.454327][ T5930]  ? __pfx_process_one_work+0x10/0x10
[  172.454353][ T5930]  ? assign_work+0x1a0/0x250
[  172.454372][ T5930]  worker_thread+0x6c8/0xf10
[  172.454405][ T5930]  ? __pfx_worker_thread+0x10/0x10
[  172.454423][ T5930]  kthread+0x3c5/0x780
[  172.454439][ T5930]  ? __pfx_kthread+0x10/0x10
[  172.454455][ T5930]  ? rcu_is_watching+0x12/0xc0
[  172.454475][ T5930]  ? __pfx_kthread+0x10/0x10
[  172.454492][ T5930]  ret_from_fork+0x675/0x7d0
[  172.454507][ T5930]  ? __pfx_kthread+0x10/0x10
[  172.454540][ T5930]  ret_from_fork_asm+0x1a/0x30
[  172.454574][ T5930]  </TASK>
[  172.454633][ T5930] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  172.461870][   T40] audit: type=1400 audit(1762476940.337:740): avc:  denied  { create } for  pid=10640 comm="syz.3.1592" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  172.462926][ T5930] Bluetooth: hci2: failed to register connection device
[  172.898177][T10646] veth1_to_bond: entered allmulticast mode
[  172.916505][T10646] veth1_to_bond: left allmulticast mode
[  172.945363][T10651] 9pnet_fd: Insufficient options for proto=fd
[  173.009414][T10655] openvswitch: netlink: nsh attr 0 has unexpected len 16 expected 0
[  173.013491][   T40] audit: type=1400 audit(1762476943.887:741): avc:  denied  { bind } for  pid=10653 comm="syz.1.1598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  173.024224][T10655] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  173.142648][T10669] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1601'.
[  173.694394][ T8315] usb 7-1: USB disconnect, device number 15
[  173.702925][ T8315] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  173.770745][   T40] audit: type=1400 audit(1762476944.647:742): avc:  denied  { map } for  pid=10684 comm="syz.2.1606" path="socket:[44393]" dev="sockfs" ino=44393 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  173.778766][   T40] audit: type=1400 audit(1762476944.647:743): avc:  denied  { read accept } for  pid=10684 comm="syz.2.1606" path="socket:[44393]" dev="sockfs" ino=44393 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  173.832489][T10686] syzkaller0: entered promiscuous mode
[  173.834998][T10686] syzkaller0: entered allmulticast mode
[  173.946394][T10692] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048)
[  174.055956][   T40] audit: type=1800 audit(1762476944.937:744): pid=10678 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.3.1603" name="/" dev="fuse" ino=9 res=0 errno=0
[  174.136719][   T40] audit: type=1400 audit(1762476945.017:745): avc:  denied  { unmount } for  pid=5928 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  174.189857][T10704] netlink: 64535 bytes leftover after parsing attributes in process `syz.1.1612'.
[  174.449619][T10713] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1609'.
[  174.586338][T10731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1618'.
[  174.794013][   T40] audit: type=1400 audit(1762476945.677:746): avc:  denied  { remount } for  pid=10743 comm="syz.0.1621" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  174.959780][T10756] cgroup: name respecified
[  175.079960][T10762] 9pnet_fd: Insufficient options for proto=fd
[  175.110481][T10764] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1629'.
[  175.113592][T10764] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1629'.
[  175.120759][T10536] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  175.120798][T10764] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1629'.
[  175.123671][T10536] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  175.126318][T10764] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1629'.
[  175.133831][T10536] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  175.138555][T10536] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  175.139100][   T40] audit: type=1400 audit(1762476946.017:747): avc:  denied  { create } for  pid=10766 comm="syz.1.1630" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  175.148732][   T40] audit: type=1400 audit(1762476946.017:748): avc:  denied  { write } for  pid=10766 comm="syz.1.1630" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  175.168407][T10769] binder: 10768:10769 ioctl 800454d3 200000000140 returned -22
[  175.215848][T10775] netlink: 'syz.0.1633': attribute type 1 has an invalid length.
[  175.351367][T10790] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3942 sclass=netlink_route_socket pid=10790 comm=syz.1.1636
[  175.713345][T10798] Bluetooth: hci0: command 0x0406 tx timeout
[  175.717352][T10798] Bluetooth: hci3: command 0x0405 tx timeout
[  175.720207][T10798] Bluetooth: hci1: command 0x0406 tx timeout
[  175.722993][T10798] Bluetooth: hci2: command 0x0406 tx timeout
[  176.434580][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  176.434591][   T40] audit: type=1400 audit(1762476947.317:750): avc:  denied  { bind } for  pid=10821 comm="syz.1.1646" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  176.467165][T10822] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  176.802574][T10833] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=10833 comm=syz.1.1649
[  176.916896][T10833] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10833 comm=syz.1.1649
[  177.079539][T10840] overlayfs: failed to resolve './file1/file0': -2
[  177.176781][T10845] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57104 sclass=netlink_route_socket pid=10845 comm=syz.0.1653
[  177.183561][T10846] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57104 sclass=netlink_route_socket pid=10846 comm=syz.0.1653
[  177.231196][T10848] sit0: entered promiscuous mode
[  177.236921][T10848] netlink: 'syz.0.1654': attribute type 1 has an invalid length.
[  177.240191][T10848] __nla_validate_parse: 3 callbacks suppressed
[  177.240203][T10848] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1654'.
[  177.249535][T10848] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1654'.
[  177.379714][   T40] audit: type=1400 audit(1762476948.257:751): avc:  denied  { read } for  pid=10852 comm="syz.0.1655" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  177.388784][   T40] audit: type=1400 audit(1762476948.257:752): avc:  denied  { open } for  pid=10852 comm="syz.0.1655" path="/429/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  177.397430][T10855] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  177.401048][T10855] block device autoloading is deprecated and will be removed.
[  177.404561][T10854] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1655'.
[  177.405775][   T40] audit: type=1400 audit(1762476948.287:753): avc:  denied  { ioctl } for  pid=10852 comm="syz.0.1655" path="/429/file0/file0" dev="fuse" ino=64 ioctlcmd=0x921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  177.496812][T10853] md: could not open device unknown-block(0,0).
[  177.499968][T10853] md: md_import_device returned -6
[  177.552889][   T64] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  177.812373][T10883] overlayfs: failed to resolve './file1': -2
[  177.867034][T10892] can0: slcan on ttyS3.
[  177.880616][   T40] audit: type=1400 audit(1762476948.757:754): avc:  denied  { mount } for  pid=10884 comm="syz.1.1665" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  177.931702][   T40] audit: type=1400 audit(1762476948.807:755): avc:  denied  { listen } for  pid=10896 comm="syz.0.1667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  177.954768][T10891] can0 (unregistered): slcan off ttyS3.
[  177.984931][   T40] audit: type=1400 audit(1762476948.867:756): avc:  denied  { accept } for  pid=10896 comm="syz.0.1667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  178.000958][T10886] xt_hashlimit: max too large, truncated to 1048576
[  178.057619][T10913] netlink: 'syz.1.1670': attribute type 1 has an invalid length.
[  178.060213][T10913] netlink: 'syz.1.1670': attribute type 3 has an invalid length.
[  178.064279][T10913] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1670'.
[  178.532418][T10925] vlan2: entered promiscuous mode
[  178.534503][T10925] bridge0: entered promiscuous mode
[  178.682565][T10938] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=37904 sclass=netlink_route_socket pid=10938 comm=syz.1.1679
[  178.912746][    T9] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  178.932457][T10947] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  178.936864][T10944] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  179.064784][    T9] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  179.068537][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  179.072155][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  179.078949][    T9] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  179.088618][    T9] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  179.091611][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.097877][    T9] usb 8-1: config 0 descriptor??
[  179.100380][T10936] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  179.117122][   T40] audit: type=1400 audit(1762476949.997:757): avc:  denied  { listen } for  pid=10953 comm="syz.0.1684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  179.123366][   T40] audit: type=1400 audit(1762476949.997:758): avc:  denied  { connect } for  pid=10953 comm="syz.0.1684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  179.194415][   T40] audit: type=1400 audit(1762476950.077:759): avc:  denied  { getopt } for  pid=10964 comm="syz.0.1688" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  179.472910][ T5994] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  179.622763][ T5994] usb 5-1: Using ep0 maxpacket: 8
[  179.626585][ T5994] usb 5-1: config 0 interface 0 has no altsetting 0
[  179.629475][ T5994] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  179.633409][ T5994] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.639923][ T5994] usb 5-1: config 0 descriptor??
[  179.809934][    T9] usbhid 8-1:0.0: can't add hid device: -71
[  179.811894][    T9] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  179.815305][    T9] usb 8-1: USB disconnect, device number 7
[  180.050881][ T5994] mcp2221 0003:04D8:00DD.0006: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  180.247539][T10970] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.251244][T10970] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  180.445006][T11027] gtp0: entered promiscuous mode
[  180.456366][T11028] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1694'.
[  180.460268][T11027] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1694'.
[  180.486929][T11027] 9p: Unknown Cache mode or invalid value fs
[  180.740155][T11034] misc userio: Can't change port type on an already running userio instance
[  180.867755][T11042] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.1698'.
[  180.922395][T11044] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1699'.
[  180.925355][T11044] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1699'.
[  180.956287][T11048] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1701'.
[  180.959896][T11048] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  180.959908][ T1461] usb 5-1: USB disconnect, device number 9
[  180.983104][T11052] netlink: 'syz.2.1702': attribute type 1 has an invalid length.
[  180.985593][T11052] netlink: 'syz.2.1702': attribute type 3 has an invalid length.
[  180.996256][T11055] random: crng reseeded on system resumption
[  181.277610][T11076] comedi: No check for data length of config insn id 2102157 is implemented
[  181.277629][T11076] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  181.277637][T11076] comedi: Assuming n=15 is correct
[  181.314381][ T1461] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  181.386604][T11080] syz.3.1712 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  181.432803][ T3246] usb 7-1: new full-speed USB device number 16 using dummy_hcd
[  181.465282][ T1461] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  181.469370][ T1461] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  181.473514][ T1461] usb 5-1: New USB device found, idVendor=046d, idProduct=c513, bcdDevice= 0.00
[  181.476594][ T1461] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.486217][ T1461] usb 5-1: config 0 descriptor??
[  181.488454][T11055] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  181.584590][ T3246] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  181.588380][ T3246] usb 7-1: config 1 has no interface number 1
[  181.591031][ T3246] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  181.596771][ T3246] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 1023
[  181.604105][ T3246] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  181.607923][ T3246] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.611235][ T3246] usb 7-1: Product: syz
[  181.613083][ T3246] usb 7-1: Manufacturer: syz
[  181.615038][ T3246] usb 7-1: SerialNumber: syz
[  181.698820][ T1461] usbhid 5-1:0.0: can't add hid device: -71
[  181.701108][ T1461] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  181.708891][ T1461] usb 5-1: USB disconnect, device number 10
[  181.823261][T11071] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  181.828020][T11071] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.854106][ T3246] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  181.867915][ T3246] usb 7-1: USB disconnect, device number 16
[  182.145245][T11095] vlan4: entered allmulticast mode
[  182.250537][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  182.250553][   T40] audit: type=1400 audit(1762476953.127:766): avc:  denied  { map } for  pid=11109 comm="syz.1.1721" path="/438/file0/cgroup.controllers" dev="9p" ino=71827959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  182.256779][T11113] trusted_key: encrypted_key: master key parameter 'use}:syz' is invalid
[  182.261382][T11108] __nla_validate_parse: 1 callbacks suppressed
[  182.261397][T11108] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1720'.
[  182.263635][   T40] audit: type=1400 audit(1762476953.127:767): avc:  denied  { write } for  pid=11109 comm="syz.1.1721" path="/438/file0/cgroup.controllers" dev="9p" ino=71827959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  182.268817][T11113] trusted_key: encrypted_key: keylen parameter is missing
[  182.395716][   T40] audit: type=1400 audit(1762476953.277:768): avc:  denied  { create } for  pid=11117 comm="syz.2.1725" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=iucv_socket permissive=1
[  182.408033][T11118] netlink: 'syz.2.1725': attribute type 1 has an invalid length.
[  182.463764][T11125] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1725'.
[  182.476175][   T40] audit: type=1400 audit(1762476953.357:769): avc:  denied  { write } for  pid=11126 comm="syz.3.1727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  182.478254][T11127] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1727'.
[  182.713874][T11147] netlink: 50020 bytes leftover after parsing attributes in process `syz.3.1732'.
[  182.911116][T11160] netlink: 'syz.3.1734': attribute type 29 has an invalid length.
[  182.915083][T11160] netlink: 'syz.3.1734': attribute type 29 has an invalid length.
[  183.172116][T11160] hid-generic 0003:0627:0001.0001: pid 11160 passed too short report
[  183.182132][T11160] netlink: 500 bytes leftover after parsing attributes in process `syz.3.1734'.
[  183.272609][   T40] audit: type=1400 audit(1762476954.147:770): avc:  denied  { ioctl } for  pid=11173 comm="syz.2.1738" path="socket:[46396]" dev="sockfs" ino=46396 ioctlcmd=0x89ec scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  183.314924][   T40] audit: type=1400 audit(1762476954.197:771): avc:  denied  { setopt } for  pid=11180 comm="syz.1.1740" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  183.336739][T11188] xt_hashlimit: size too large, truncated to 1048576
[  183.379581][   T40] audit: type=1400 audit(1762476954.257:772): avc:  denied  { mount } for  pid=11195 comm="syz.1.1743" name="/" dev="rpc_pipefs" ino=45788 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  183.387780][T11199] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay'
[  183.393468][   T40] audit: type=1400 audit(1762476954.277:773): avc:  denied  { getopt } for  pid=11187 comm="syz.2.1741" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  183.401172][T11197] tmpfs: Invalid gid '0x00000000ffffffff'
[  183.409576][T11197] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1741'.
[  183.414798][T11197] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1741'.
[  183.418635][T11197] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  183.431296][   T64] Bluetooth: hci0: unexpected event for opcode 0x2039
[  183.455391][T11209] loop4: detected capacity change from 0 to 2560
[  183.457852][T11209] buffer_io_error: 170 callbacks suppressed
[  183.457859][T11209] Buffer I/O error on dev loop4, logical block 0, lost async page write
[  183.463609][T11209] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  183.465777][T11209] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  183.468966][T11209] vhci_hcd vhci_hcd.0: Device attached
[  183.478565][T11211] usbip_core: unknown command
[  183.480435][T11211] vhci_hcd: unknown pdu 1196444672
[  183.482328][T11211] usbip_core: unknown command
[  183.486701][T10536] vhci_hcd: stop threads
[  183.488997][T10536] vhci_hcd: release socket
[  183.491240][T10536] vhci_hcd: disconnect device
[  183.774621][T11224] fuse: Bad value for 'group_id'
[  183.776302][T11224] fuse: Bad value for 'group_id'
[  183.780880][T11224] fuse: Bad value for 'group_id'
[  183.782550][T11224] fuse: Bad value for 'group_id'
[  184.031854][T11235] input input14: cannot allocate more than FF_MAX_EFFECTS effects
[  184.626402][T11258] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1763'.
[  184.633055][T11259] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1763'.
[  184.636129][T11259] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1763'.
[  184.958069][T11278] netlink: 'syz.3.1769': attribute type 4 has an invalid length.
[  185.027224][   T40] audit: type=1326 audit(1762476955.907:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11280 comm="syz.2.1770" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5abb98f6c9 code=0x7ffc0000
[  185.037302][   T40] audit: type=1326 audit(1762476955.907:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11280 comm="syz.2.1770" exe="/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f5abb98f6c9 code=0x7ffc0000
[  185.053911][T11283] netlink: 'syz.2.1770': attribute type 14 has an invalid length.
[  185.058129][T11283] netlink: 'syz.2.1770': attribute type 14 has an invalid length.
[  185.352892][T11303] bridge1: entered promiscuous mode
[  185.358643][T11303] 9pnet: Unknown protocol version 9p2000.uk$ېu)#���iI_wM�Ux墴q+U�/#��sӵ����ΘV���#�X���]�=jr����"�"��c��#D T0]��m�P��j@lY�2t�¢��On�s�
[  185.648069][T11312] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  185.883868][T11352] syzkaller0: entered promiscuous mode
[  185.885637][T11352] syzkaller0: entered allmulticast mode
[  185.943362][T11354] JFS: discard option not supported on device
[  185.946174][T11354] Mount JFS Failure: -5
[  185.996270][T11360] fuse: Bad value for 'fd'
[  186.007836][T11362] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  186.010608][T11362] IPv6: NLM_F_CREATE should be set when creating new route
[  186.012923][T11362] IPv6: NLM_F_CREATE should be set when creating new route
[  186.016264][T11362] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  186.218252][T11375] ALSA: seq fatal error: cannot create timer (-19)
[  186.223929][T11369] MTD: Couldn't look up '/dev/sg0': -15
[  186.226340][T11369] /dev/sg0: Can't lookup blockdev
[  186.354709][T11381] sg_write: data in/out 10438218/1 bytes for SCSI command 0x6b-- guessing data in;
[  186.354709][T11381]    program syz.3.1802 not setting count and/or reply_len properly
[  186.750505][T11388] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2571 sclass=netlink_route_socket pid=11388 comm=syz.0.1804
[  186.757320][T11386] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  186.761401][T11386] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  186.767287][T11386] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  186.770232][T11386] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  186.772165][T11386] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  186.775774][T11386] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  186.779911][T11386] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  186.782866][T11386] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  186.785394][T11386] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  186.787679][T11386] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  186.789632][T11386] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  187.414430][T11423] misc userio: Can't change port type on an already running userio instance
[  187.859799][T11434] __nla_validate_parse: 6 callbacks suppressed
[  187.859821][T11434] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1815'.
[  187.867403][T11434] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  187.943742][T11406] delete_channel: no stack
[  187.987674][   T40] kauditd_printk_skb: 60 callbacks suppressed
[  187.987691][   T40] audit: type=1400 audit(1762476958.867:836): avc:  denied  { create } for  pid=11439 comm="syz.1.1817" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  188.006238][   T40] audit: type=1400 audit(1762476958.887:837): avc:  denied  { listen } for  pid=11439 comm="syz.1.1817" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  188.062105][T11445] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  188.065515][T11445] batman_adv: batadv0: Removing interface: batadv_slave_0
[  188.069771][T11445] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  188.072808][T11445] batman_adv: batadv0: Removing interface: batadv_slave_1
[  188.118369][T11447] mkiss: ax0: crc mode is auto.
[  188.194145][   T40] audit: type=1400 audit(1762476959.077:838): avc:  denied  { name_connect } for  pid=11456 comm="syz.3.1821" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  188.201884][   T40] audit: type=1400 audit(1762476959.077:839): avc:  denied  { accept } for  pid=11456 comm="syz.3.1821" lport=38222 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  188.210574][T11457] xt_ipcomp: unknown flags 1D
[  188.211971][T11439] Process accounting resumed
[  188.212935][   T40] audit: type=1400 audit(1762476959.077:840): avc:  denied  { getopt } for  pid=11456 comm="syz.3.1821" lport=38222 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  188.224315][   T40] audit: type=1400 audit(1762476959.097:841): avc:  denied  { ioctl } for  pid=11460 comm="syz.2.1822" path="socket:[47627]" dev="sockfs" ino=47627 ioctlcmd=0x89e5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  188.293860][T11471] xt_nat: multiple ranges no longer supported
[  188.304466][T11475] use of bytesused == 0 is deprecated and will be removed in the future,
[  188.307308][T11475] use the actual size instead.
[  188.382799][T11488] dlm: non-version read from control device 8224
[  188.385712][T11488] dlm: non-version read from control device 8224
[  188.388534][T11488] dlm: non-version read from control device 8224
[  188.391189][T11488] dlm: non-version read from control device 8224
[  188.401606][T11488] dlm: non-version read from control device 8224
[  188.405761][T11488] dlm: non-version read from control device 8224
[  188.408765][T11488] dlm: non-version read from control device 8224
[  188.411634][T11488] dlm: non-version read from control device 8224
[  188.414876][T11488] dlm: non-version read from control device 8224
[  188.417712][T11488] dlm: non-version read from control device 8224
[  188.420213][T11488] dlm: non-version read from control device 8224
[  188.422247][T11488] dlm: non-version read from control device 8224
[  188.424658][T11488] dlm: non-version read from control device 8224
[  188.426856][T11488] dlm: non-version read from control device 8224
[  188.428889][T11488] dlm: non-version read from control device 8224
[  188.430974][T11488] dlm: non-version read from control device 8224
[  188.433118][T11488] dlm: non-version read from control device 8224
[  188.435324][T11488] dlm: non-version read from control device 8224
[  188.437755][T11488] dlm: non-version read from control device 8224
[  188.440298][T11488] dlm: non-version read from control device 8224
[  188.442456][T11488] dlm: non-version read from control device 8224
[  188.445036][T11488] dlm: non-version read from control device 8224
[  188.447432][T11488] dlm: non-version read from control device 8224
[  188.449508][T11488] dlm: non-version read from control device 8224
[  188.451605][T11488] dlm: non-version read from control device 8224
[  188.453959][T11488] dlm: non-version read from control device 8224
[  188.456389][T11488] dlm: non-version read from control device 8224
[  188.459224][T11488] dlm: non-version read from control device 8224
[  188.491852][T11498] netlink: 'syz.0.1832': attribute type 1 has an invalid length.
[  188.501932][T11501] input: syz1 as /devices/virtual/input/input16
[  188.505136][T11498] 8021q: adding VLAN 0 to HW filter on device bond3
[  188.577859][T11498] bond3: (slave veth1): Enslaving as an active interface with a down link
[  188.594045][T11498] 8021q: adding VLAN 0 to HW filter on device batadv0
[  188.597396][T11498] bond3: (slave batadv0): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  188.632462][T11506] comedi: No check for data length of config insn id 2102157 is implemented
[  188.635987][T11506] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  188.639042][T11506] comedi: Assuming n=15 is correct
[  188.672070][T11509] PKCS8: Unsupported PKCS#8 version
[  188.715115][   T40] audit: type=1400 audit(1762476959.597:842): avc:  denied  { write } for  pid=11512 comm="syz.3.1837" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  188.752877][   T64] Bluetooth: hci0: command 0x0406 tx timeout
[  188.833074][   T64] Bluetooth: hci3: command 0x0405 tx timeout
[  188.833224][ T5939] Bluetooth: hci2: command 0x0406 tx timeout
[  188.833540][ T5935] Bluetooth: hci1: command 0x0406 tx timeout
[  188.979448][T11518] syz.0.1838 (11518): drop_caches: 2
[  189.161030][T11529] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1842'.
[  189.165860][T11529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1842'.
[  189.181086][T11533] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1844'.
[  189.236663][T11531] program syz.1.1843 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  189.246951][T11529] team0 (unregistering): Port device team_slave_0 removed
[  189.251197][   T40] audit: type=1400 audit(1762476960.127:843): avc:  denied  { getopt } for  pid=11528 comm="syz.0.1842" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  189.255618][T11529] team0 (unregistering): Port device team_slave_1 removed
[  189.351918][T11540] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1845'.
[  189.355670][T11540] 8021q: VLANs not supported on ip6tnl0
[  189.390904][T11543] Bluetooth: MGMT ver 1.23
[  189.739313][T11567] vivid-002: =================  START STATUS  =================
[  189.742512][T11567] vivid-002: Radio HW Seek Mode: Bounded
[  189.748493][T11567] vivid-002: Radio Programmable HW Seek: false
[  189.750560][T11567] vivid-002: RDS Rx I/O Mode: Block I/O
[  189.752831][T11567] vivid-002: Generate RBDS Instead of RDS: false
[  189.755637][T11567] vivid-002: RDS Reception: true
[  189.757832][T11567] vivid-002: RDS Program Type: 0 inactive
[  189.763048][T11567] vivid-002: RDS PS Name:  inactive
[  189.764787][T11567] vivid-002: RDS Radio Text:  inactive
[  189.766697][T11567] vivid-002: RDS Traffic Announcement: false inactive
[  189.770140][T11567] vivid-002: RDS Traffic Program: false inactive
[  189.773250][T11567] vivid-002: RDS Music: false inactive
[  189.775627][T11567] vivid-002: ==================  END STATUS  ==================
[  189.836833][   T40] audit: type=1400 audit(1762476960.717:844): avc:  denied  { ioctl } for  pid=11570 comm="syz.2.1854" path="socket:[47759]" dev="sockfs" ino=47759 ioctlcmd=0x941f scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  190.141729][T11596] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  190.554920][   T40] audit: type=1400 audit(1762476961.437:845): avc:  denied  { getopt } for  pid=11621 comm="syz.1.1869" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  190.664111][T11625] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1870'.
[  190.728662][T11629] input: syz1 as /devices/virtual/input/input17
[  190.802171][T11635] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1874'.
[  190.842772][ T5939] Bluetooth: hci0: command 0x0406 tx timeout
[  190.912862][ T5939] Bluetooth: hci1: command 0x0406 tx timeout
[  190.912880][   T64] Bluetooth: hci3: command 0x0405 tx timeout
[  190.912889][ T5935] Bluetooth: hci2: command 0x0406 tx timeout
[  191.003799][T11652] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1879'.
[  191.008034][T11652] netlink: 'syz.0.1879': attribute type 1 has an invalid length.
[  191.011498][T11652] nbd: error processing sock list
[  191.032866][ T5994] usb 6-1: new full-speed USB device number 16 using dummy_hcd
[  191.219812][T11669] binder: 11668:11669 ioctl 80081270 200000000000 returned -22
[  191.298630][T11666] bond0 (unregistering): Released all slaves
[  191.391425][T11676] x_tables: duplicate underflow at hook 1
[  191.403521][ T5994] usb 6-1: device not accepting address 16, error -71
[  191.483663][T11676] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  191.486163][T11676] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  191.488610][T11676] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  191.491115][T11676] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  191.550378][T11685] bond4 (unregistering): Released all slaves
[  191.702613][T11696] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1891'.
[  191.745381][T11701] usb usb8: usbfs: process 11701 (syz.1.1892) did not claim interface 0 before use
[  191.793110][    T9] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  191.944670][T11728] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1901'.
[  191.964296][    T9] usb 7-1: config 0 has no interfaces?
[  191.966482][    T9] usb 7-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[  191.974354][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.978984][    T9] usb 7-1: config 0 descriptor??
[  192.351637][T11756] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.357097][T11756] bond0: (slave rose0): Enslaving as an active interface with an up link
[  193.148752][   T40] kauditd_printk_skb: 137 callbacks suppressed
[  193.148770][   T40] audit: type=1400 audit(1762476964.027:983): avc:  denied  { create } for  pid=11788 comm="syz.1.1913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  193.160492][   T40] audit: type=1400 audit(1762476964.027:984): avc:  denied  { create } for  pid=11788 comm="syz.1.1913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  193.168153][   T40] audit: type=1400 audit(1762476964.027:985): avc:  denied  { read } for  pid=11788 comm="syz.1.1913" name="cec1" dev="devtmpfs" ino=975 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  193.176323][   T40] audit: type=1400 audit(1762476964.027:986): avc:  denied  { open } for  pid=11788 comm="syz.1.1913" path="/dev/cec1" dev="devtmpfs" ino=975 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  193.185856][   T40] audit: type=1400 audit(1762476964.027:987): avc:  denied  { ioctl } for  pid=11788 comm="syz.1.1913" path="/dev/cec1" dev="devtmpfs" ino=975 ioctlcmd=0x6101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  193.193719][   T40] audit: type=1400 audit(1762476964.027:988): avc:  denied  { create } for  pid=11788 comm="syz.1.1913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  193.199849][   T40] audit: type=1400 audit(1762476964.037:989): avc:  denied  { ioctl } for  pid=11788 comm="syz.1.1913" path="socket:[48797]" dev="sockfs" ino=48797 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  193.208525][   T40] audit: type=1400 audit(1762476964.037:990): avc:  denied  { setopt } for  pid=11788 comm="syz.1.1913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  193.214765][   T40] audit: type=1400 audit(1762476964.037:991): avc:  denied  { write } for  pid=11788 comm="syz.1.1913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  193.221721][   T40] audit: type=1400 audit(1762476964.037:992): avc:  denied  { prog_run } for  pid=11788 comm="syz.1.1913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  193.226339][T11789] kvm: kvm [11788]: vcpu2, guest rIP: 0x9133 Unhandled WRMSR(0x11e) = 0xbe702111
[  193.552922][ T5935] Bluetooth: hci3: command 0x0405 tx timeout
[  193.552946][ T5939] Bluetooth: hci2: command 0x0406 tx timeout
[  193.553040][   T64] Bluetooth: hci1: command 0x0406 tx timeout
[  193.553085][   T64] Bluetooth: hci0: command 0x0406 tx timeout
[  193.758748][T11800] ocfs2: Unknown parameter 'u�_��QL�磒�K���juok'
[  193.919882][T11808] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  193.922069][T11808] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  193.925698][T11808] vhci_hcd vhci_hcd.0: Device attached
[  193.928620][T11809] vhci_hcd: unknown pdu 2
[  193.930958][T10529] vhci_hcd: stop threads
[  193.932368][T10529] vhci_hcd: release socket
[  193.934082][T10529] vhci_hcd: disconnect device
[  194.117788][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  194.120362][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  194.465225][ T5994] usb 7-1: USB disconnect, device number 17
[  195.362890][  T839] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  195.514568][  T839] usb 7-1: config index 0 descriptor too short (expected 39, got 27)
[  195.518072][  T839] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  195.522132][  T839] usb 7-1: config 0 interface 0 has no altsetting 0
[  195.527359][  T839] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  195.530980][  T839] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  195.534407][  T839] usb 7-1: Product: syz
[  195.536181][  T839] usb 7-1: Manufacturer: syz
[  195.538138][  T839] usb 7-1: SerialNumber: syz
[  195.543131][  T839] usb 7-1: config 0 descriptor??
[  195.547144][  T839] hub 7-1:0.0: bad descriptor, ignoring hub
[  195.549591][  T839] hub 7-1:0.0: probe with driver hub failed with error -5
[  195.554844][  T839] usb 7-1: selecting invalid altsetting 0
[  195.834395][ T5994] usb 7-1: USB disconnect, device number 18
[  195.906226][T11842] openvswitch: netlink: IP tunnel dst address not specified
[  196.846353][ T5935] Bluetooth: unknown link type 128
[  197.075550][T11887] bond2: ARP target 4.0.0.0 is already present
[  197.078207][T11887] bond2: option arp_ip_target: invalid value (4)
[  197.082499][T11887] bond2 (unregistering): Released all slaves
[  197.201803][T11899] netlink: 'syz.1.1943': attribute type 29 has an invalid length.
[  197.420707][T11908] gfs2: gfs2 mount does not exist
[  197.424868][T11908] xt_SECMARK: invalid mode: 2
[  198.042667][T11913] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2050 sclass=netlink_route_socket pid=11913 comm=syz.0.1947
[  198.196705][T11900] netlink: 'syz.1.1943': attribute type 29 has an invalid length.
[  198.315737][   T40] kauditd_printk_skb: 96 callbacks suppressed
[  198.315748][   T40] audit: type=1400 audit(1762476969.197:1089): avc:  denied  { name_bind } for  pid=11924 comm="syz.3.1950" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  198.329313][   T40] audit: type=1400 audit(1762476969.207:1090): avc:  denied  { create } for  pid=11926 comm="syz.2.1951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  198.336715][   T40] audit: type=1400 audit(1762476969.207:1091): avc:  denied  { write } for  pid=11926 comm="syz.2.1951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  198.344268][   T40] audit: type=1400 audit(1762476969.217:1092): avc:  denied  { write } for  pid=11926 comm="syz.2.1951" name="icmp6" dev="proc" ino=4026533403 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  198.351579][   T40] audit: type=1400 audit(1762476969.217:1093): avc:  denied  { read } for  pid=11926 comm="syz.2.1951" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  198.358831][   T40] audit: type=1400 audit(1762476969.217:1094): avc:  denied  { open } for  pid=11926 comm="syz.2.1951" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  198.366123][   T40] audit: type=1400 audit(1762476969.217:1095): avc:  denied  { ioctl } for  pid=11926 comm="syz.2.1951" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  198.419079][   T40] audit: type=1400 audit(1762476969.297:1096): avc:  denied  { connect } for  pid=11924 comm="syz.3.1950" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  198.444350][ T5939] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  198.498709][T11931] "syz.2.1952" (11931) uses obsolete ecb(arc4) skcipher
[  198.564396][   T40] audit: type=1400 audit(1762476969.447:1097): avc:  denied  { read write } for  pid=11938 comm="syz.2.1953" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  198.572769][    T9] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  198.577552][   T40] audit: type=1400 audit(1762476969.447:1098): avc:  denied  { open } for  pid=11938 comm="syz.2.1953" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  198.615160][T11940] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  198.725992][    T9] usb 6-1: config index 0 descriptor too short (expected 28277, got 36)
[  198.728766][    T9] usb 6-1: config 206 has an invalid descriptor of length 0, skipping remainder of the config
[  198.732103][    T9] usb 6-1: config 206 has no interfaces?
[  198.734222][    T9] usb 6-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[  198.737188][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.965564][    T9] usb 6-1: string descriptor 0 read error: -71
[  198.968238][    T9] usb 6-1: USB disconnect, device number 18
[  199.392339][T11939] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  199.396193][T11939] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  199.398183][T11939] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  199.400109][T11939] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  199.402500][T11939] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  199.418224][T11942] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  199.522071][T11953] netlink: 'syz.2.1956': attribute type 29 has an invalid length.
[  199.560433][T11957] input: syz1 as /devices/virtual/input/input18
[  199.892625][T11991] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1969'.
[  199.896255][T11993] netlink: 'syz.0.1970': attribute type 2 has an invalid length.
[  199.900974][T11991] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1969'.
[  199.975263][T12004] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1975'.
[  199.978135][T12004] netlink: 'syz.2.1975': attribute type 11 has an invalid length.
[  199.980795][T12004] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1975'.
[  199.984740][T12004] netlink: 'syz.2.1975': attribute type 11 has an invalid length.
[  200.016970][T12010] FAULT_INJECTION: forcing a failure.
[  200.016970][T12010] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.022385][T12010] CPU: 0 UID: 0 PID: 12010 Comm: syz.2.1976 Not tainted syzkaller #0 PREEMPT(full) 
[  200.022407][T12010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.022417][T12010] Call Trace:
[  200.022434][T12010]  <TASK>
[  200.022441][T12010]  dump_stack_lvl+0x16c/0x1f0
[  200.022486][T12010]  should_fail_ex+0x512/0x640
[  200.022517][T12010]  _copy_to_user+0x32/0xd0
[  200.022539][T12010]  simple_read_from_buffer+0xcb/0x170
[  200.022566][T12010]  proc_fail_nth_read+0x197/0x240
[  200.022586][T12010]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.022606][T12010]  ? rw_verify_area+0xcf/0x6c0
[  200.022627][T12010]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.022646][T12010]  vfs_read+0x1e4/0xcf0
[  200.022664][T12010]  ? __pfx___mutex_lock+0x10/0x10
[  200.022697][T12010]  ? __pfx_vfs_read+0x10/0x10
[  200.022723][T12010]  ? __fget_files+0x20e/0x3c0
[  200.022747][T12010]  ksys_read+0x12a/0x250
[  200.022761][T12010]  ? __pfx_ksys_read+0x10/0x10
[  200.022783][T12010]  do_syscall_64+0xcd/0xfa0
[  200.022800][T12010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.022816][T12010] RIP: 0033:0x7f5abb98e0dc
[  200.022830][T12010] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  200.022845][T12010] RSP: 002b:00007f5abc7b3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  200.022861][T12010] RAX: ffffffffffffffda RBX: 00007f5abbbe5fa0 RCX: 00007f5abb98e0dc
[  200.022871][T12010] RDX: 000000000000000f RSI: 00007f5abc7b30a0 RDI: 0000000000000006
[  200.022881][T12010] RBP: 00007f5abc7b3090 R08: 0000000000000000 R09: 0000000000000000
[  200.022890][T12010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.022899][T12010] R13: 00007f5abbbe6038 R14: 00007f5abbbe5fa0 R15: 00007fff59b5c698
[  200.022924][T12010]  </TASK>
[  200.094023][    C0] vkms_vblank_simulate: vblank timer overrun
[  200.211794][T12025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1977'.
[  200.216620][T12025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1977'.
[  200.227266][T12027] IPv6: NLM_F_CREATE should be specified when creating new route
[  200.542833][    T9] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  200.672822][ T5939] Bluetooth: hci0: command 0x0406 tx timeout
[  200.714742][    T9] usb 6-1: config 0 has no interfaces?
[  200.717109][    T9] usb 6-1: New USB device found, idVendor=1b96, idProduct=0009, bcdDevice= 0.00
[  200.721002][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.727532][    T9] usb 6-1: config 0 descriptor??
[  200.894903][T12044] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1987'.
[  200.932519][  T839] usb 6-1: USB disconnect, device number 19
[  200.948103][T12048] netlink: 'syz.0.1989': attribute type 2 has an invalid length.
[  200.984193][T12051] IPv6: NLM_F_CREATE should be specified when creating new route
[  201.001331][T12053] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1988'.
[  201.007865][T12053] loop4: detected capacity change from 0 to 2560
[  201.046748][T12058] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12058 comm=syz.0.1993
[  201.093924][T12054] binder: 12052:12054 ioctl c0306201 0 returned -14
[  201.099710][T12054] comedi comedi3: comedi_config --init_data is deprecated
[  201.103211][T12054] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1990'.
[  201.107453][T12054] sch_fq: defrate 4294967295 ignored.
[  201.150154][T12062] ipvlan2: entered allmulticast mode
[  201.152155][T12062] team0: entered allmulticast mode
[  201.154620][T12062] team_slave_0: entered allmulticast mode
[  201.157113][T12062] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  201.169913][T12062] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  201.483144][ T5939] Bluetooth: hci3: command 0x0405 tx timeout
[  201.483201][ T5935] Bluetooth: hci2: command 0x0406 tx timeout
[  201.483743][ T5930] Bluetooth: hci1: command 0x0406 tx timeout
[  201.894751][T12074] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1997'.
[  201.945740][T12079] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  201.949528][T12079] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  201.953336][T12079] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  201.956555][T12079] UDF-fs: Scanning with blocksize 512 failed
[  201.959437][T12079] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  201.962577][T12079] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  201.966126][T12079] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  201.969078][T12079] UDF-fs: Scanning with blocksize 1024 failed
[  201.972211][T12079] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  201.978828][T12079] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  201.983821][T12079] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  201.986310][T12079] UDF-fs: Scanning with blocksize 2048 failed
[  201.988609][T12079] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  201.992571][T12079] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  201.996347][T12079] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  201.999304][T12079] UDF-fs: Scanning with blocksize 4096 failed
[  202.001912][T12079] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  202.454180][T12112] netlink: 'syz.2.2007': attribute type 5 has an invalid length.
[  202.543990][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  202.595626][T12118] (syz.0.2010,12118,0):ocfs2_get_sector:1714 ERROR: status = -5
[  202.599277][T12118] (syz.0.2010,12118,0):ocfs2_sb_probe:753 ERROR: status = -5
[  202.602477][T12118] (syz.0.2010,12118,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  202.606706][T12118] (syz.0.2010,12118,0):ocfs2_fill_super:1177 ERROR: status = -5
[  202.861576][T12128] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  203.413870][   T40] kauditd_printk_skb: 165 callbacks suppressed
[  203.413880][   T40] audit: type=1400 audit(1762476974.297:1264): avc:  denied  { create } for  pid=12134 comm="syz.0.2016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  203.421922][   T40] audit: type=1400 audit(1762476974.297:1265): avc:  denied  { bind } for  pid=12134 comm="syz.0.2016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  203.428763][   T40] audit: type=1400 audit(1762476974.297:1266): avc:  denied  { getopt } for  pid=12134 comm="syz.0.2016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  203.456869][   T40] audit: type=1400 audit(1762476974.337:1267): avc:  denied  { write } for  pid=12138 comm="syz.2.2019" name="001" dev="devtmpfs" ino=764 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  203.464794][T12141] team0: Device ipvlan1 failed to register rx_handler
[  203.465986][   T40] audit: type=1400 audit(1762476974.337:1268): avc:  denied  { create } for  pid=12140 comm="syz.1.2018" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  203.468145][T12139] usb usb8: usbfs: process 12139 (syz.2.2019) did not claim interface 0 before use
[  203.475143][   T40] audit: type=1400 audit(1762476974.337:1269): avc:  denied  { getopt } for  pid=12140 comm="syz.1.2018" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  203.487030][   T40] audit: type=1400 audit(1762476974.347:1270): avc:  denied  { read } for  pid=12140 comm="syz.1.2018" name="iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  203.497971][   T40] audit: type=1400 audit(1762476974.347:1271): avc:  denied  { open } for  pid=12140 comm="syz.1.2018" path="/dev/iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  203.509428][   T40] audit: type=1400 audit(1762476974.347:1272): avc:  denied  { ioctl } for  pid=12140 comm="syz.1.2018" path="/dev/iommu" dev="devtmpfs" ino=632 ioctlcmd=0x3b86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  203.519037][   T40] audit: type=1400 audit(1762476974.347:1273): avc:  denied  { read } for  pid=12140 comm="syz.1.2018" name="hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  203.530463][T12152] netlink: 'syz.2.2021': attribute type 3 has an invalid length.
[  203.562896][ T5935] Bluetooth: hci2: command 0x0406 tx timeout
[  203.800026][T12206] ip6gretap0: default FDB implementation only supports local addresses
[  203.815729][T12208] comedi comedi3: board detection failed
[  203.850638][T12211] erspan1: entered promiscuous mode
[  204.211685][T12234] netlink: 'syz.1.2048': attribute type 4 has an invalid length.
[  204.215930][T12234] netlink: 'syz.1.2048': attribute type 4 has an invalid length.
[  204.333674][T12241] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12241 comm=syz.1.2048
[  204.585441][T12256] ip6erspan0: entered promiscuous mode
[  204.650057][T12258] XFS (nullb0): Invalid superblock magic number
[  204.722081][T12266] i2c i2c-1: Invalid block write size 34
[  204.788320][T12272] netlink: 'syz.3.2058': attribute type 1 has an invalid length.
[  204.806627][T12272] 8021q: adding VLAN 0 to HW filter on device bond2
[  204.810795][T12272] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65381 sclass=netlink_route_socket pid=12272 comm=syz.3.2058
[  204.821377][T12272] gretap1: entered promiscuous mode
[  204.826194][T12274] netlink: 'syz.3.2058': attribute type 1 has an invalid length.
[  204.830098][T12274] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  204.982398][T12292] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  205.279638][T12317] CIFS mount error: No usable UNC path provided in device string!
[  205.279638][T12317] 
[  205.287663][T12317] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  205.451392][T12328] sctp: [Deprecated]: syz.2.2071 (pid 12328) Use of int in max_burst socket option.
[  205.451392][T12328] Use struct sctp_assoc_value instead
[  205.559679][T12332] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[  205.564347][T12331] fuse: Bad value for 'fd'
[  205.615788][T12334] (syz.2.2074,12334,0):ocfs2_get_sector:1714 ERROR: status = -5
[  205.618215][T12334] (syz.2.2074,12334,0):ocfs2_sb_probe:753 ERROR: status = -5
[  205.620576][T12334] (syz.2.2074,12334,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  205.623559][T12334] (syz.2.2074,12334,0):ocfs2_fill_super:1177 ERROR: status = -5
[  205.911303][T12348] __nla_validate_parse: 10 callbacks suppressed
[  205.911315][T12348] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2079'.
[  206.087557][T12357] Can't find a SQUASHFS superblock on nullb0
[  206.161886][T12323] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  206.200281][T12361] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  206.202283][T12361] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  206.206404][T12361] vhci_hcd vhci_hcd.0: Device attached
[  206.243015][ T5994] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  206.255526][T12369] ufs: You didn't specify the type of your ufs filesystem
[  206.255526][T12369] 
[  206.255526][T12369] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  206.255526][T12369] 
[  206.255526][T12369] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  206.268572][T12369] ufs: failed to set blocksize
[  206.274151][T12368] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2085'.
[  206.347107][T12373] netlink: 'syz.1.2086': attribute type 10 has an invalid length.
[  206.350963][T12373] bond0: (slave bond_slave_0): Releasing backup interface
[  206.396147][ T5994] usb 7-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  206.400149][ T5994] usb 7-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  206.405748][ T5994] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  206.409504][T12376] ptm ptm5: ldisc open failed (-12), clearing slot 5
[  206.411952][ T5994] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  206.416427][ T5994] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.420040][ T5994] usb 7-1: Product: 㐤ꤣ⌑꾻ᆎᲦᶦ﮴ἧ䧉콹韯ꤖ骟铳ｑ
[  206.424140][ T5994] usb 7-1: Manufacturer: 탙쁼ḝ礨⿫ﯰ乊Ǜ坈醤䌄臍绑쉘쮠㱖먢봐亽려앞첶᤺舫੊ሠ큛朢䊂쓪ၓ찾䃥඿䶝莾뿥ᒋ矎⑉代㍂汕ᚅ窚쀳뭺렙㌘狫ጅꝖ䯼켞ꍨ偆禔굈쳿ਕ金挛ዴ餘⻏凉⊙͒钪ᕝ᦬瑇ꚹ矯쥭᷉㏔໠뷯ヘ邎脾뎬깁ෛጺᰒ뀵ꑚ邱齂놵̭
[  206.437738][ T5994] usb 7-1: SerialNumber: 鄽煥痕氾⌸﷤⤧奅⤪셔἞랩锹䁙໚뫚䮇쭓궎哧ꖺ➑埫㤤ꄧ╃媠䃤鞆⧟䶺輞ꨆᒫ팳ꂣ춑᠃稫୉楧
[  206.444994][   T54] usb 37-1: new high-speed USB device number 2 using vhci_hcd
[  206.515298][T12381] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes
[  206.520138][T12381] syzkaller0: entered promiscuous mode
[  206.521986][T12381] syzkaller0: entered allmulticast mode
[  206.548176][T12386] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  206.558615][T12386] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  206.665858][ T5994] usb 7-1: 0:2 : does not exist
[  206.678325][ T5994] usb 7-1: USB disconnect, device number 19
[  206.955564][T12364] vhci_hcd: connection reset by peer
[  206.958757][T10536] vhci_hcd: stop threads
[  206.960306][T10536] vhci_hcd: release socket
[  206.963307][T10536] vhci_hcd: disconnect device
[  207.253037][T12421] tap0: tun_chr_ioctl cmd 1074025675
[  207.255302][T12421] tap0: persist enabled
[  207.257147][T12418] tap0: tun_chr_ioctl cmd 1074025675
[  207.259428][T12418] tap0: persist enabled
[  207.261400][T12421] tap0: tun_chr_ioctl cmd 1074025675
[  207.264223][T12421] tap0: persist disabled
[  207.490900][T12486] Bluetooth: hci4: Frame reassembly failed (-90)
[  207.496710][T12466] Bluetooth: hci4: Frame reassembly failed (-84)
[  207.519942][T12489] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  207.523143][T12489] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  207.526118][T12489] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  207.528533][T12489] UDF-fs: Scanning with blocksize 512 failed
[  207.530949][T12489] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  207.534518][T12489] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  207.537427][T12489] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  207.541531][T12489] UDF-fs: Scanning with blocksize 1024 failed
[  207.544883][T12489] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  207.548797][T12489] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  207.553569][T12489] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  207.556696][T12489] UDF-fs: Scanning with blocksize 2048 failed
[  207.559824][T12489] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  207.564045][T12489] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  207.568020][T12489] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  207.571161][T12489] UDF-fs: Scanning with blocksize 4096 failed
[  207.574229][T12489] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  207.642937][T12501] CIFS: iocharset name too long
[  207.675601][T12501] 8021q: adding VLAN 0 to HW filter on device bond3
[  207.825489][ T5930] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  207.825818][T12519] program syz.3.2115 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  208.225398][T12547] vxfs: WRONG superblock magic 00000000 at 1
[  208.229151][T12547] vxfs: WRONG superblock magic 00000000 at 8
[  208.231185][T12547] vxfs: can't find superblock.
[  208.235311][T12547] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2124'.
[  208.397208][T12554] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2127'.
[  208.439362][T12557] program syz.2.2129 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  208.440529][   T40] kauditd_printk_skb: 291 callbacks suppressed
[  208.440541][   T40] audit: type=1400 audit(1762476979.317:1565): avc:  denied  { read write } for  pid=12555 comm="syz.2.2129" name="vhost-net" dev="devtmpfs" ino=1300 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  208.456547][   T40] audit: type=1400 audit(1762476979.317:1566): avc:  denied  { open } for  pid=12555 comm="syz.2.2129" path="/dev/vhost-net" dev="devtmpfs" ino=1300 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  208.464675][   T40] audit: type=1400 audit(1762476979.317:1567): avc:  denied  { ioctl } for  pid=12555 comm="syz.2.2129" path="/dev/vhost-net" dev="devtmpfs" ino=1300 ioctlcmd=0x9409 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  208.475321][   T40] audit: type=1400 audit(1762476979.357:1568): avc:  denied  { create } for  pid=12559 comm="syz.0.2130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  208.485461][   T40] audit: type=1400 audit(1762476979.357:1569): avc:  denied  { ioctl } for  pid=12559 comm="syz.0.2130" path="socket:[52141]" dev="sockfs" ino=52141 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  208.497467][   T40] audit: type=1400 audit(1762476979.357:1570): avc:  denied  { open } for  pid=12559 comm="syz.0.2130" path="/dev/ptyq4" dev="devtmpfs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  208.509731][   T40] audit: type=1400 audit(1762476979.357:1571): avc:  denied  { ioctl } for  pid=12559 comm="syz.0.2130" path="/dev/ptyq4" dev="devtmpfs" ino=131 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  208.520256][   T40] audit: type=1400 audit(1762476979.357:1572): avc:  denied  { bind } for  pid=12559 comm="syz.0.2130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  208.534164][   T40] audit: type=1400 audit(1762476979.417:1573): avc:  denied  { connect } for  pid=12561 comm="syz.0.2131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  208.538246][T12562] xt_TCPMSS: Only works on TCP SYN packets
[  208.545819][   T40] audit: type=1400 audit(1762476979.427:1574): avc:  denied  { write } for  pid=12561 comm="syz.0.2131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  208.791414][T12577] afs: Unknown parameter 'dynv/adsp1'
[  208.813153][  T839] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  208.874636][T12582] vlan5: entered promiscuous mode
[  208.876514][T12582] syz_tun: entered promiscuous mode
[  209.073069][T12586] Possible attack attempt. Unexpected rseq signature 0xa1b970e8, expecting 0x0 (pid=12586, addr=00002000000001bc).
[  209.078205][T12586] Possible attack attempt. Unexpected rseq signature 0xa1b970e8, expecting 0x0 (pid=12586, addr=00002000000001bc).
[  209.083728][T12586] Possible attack attempt. Unexpected rseq signature 0xa1b970e8, expecting 0x0 (pid=12586, addr=00002000000001bc).
[  209.552845][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[  209.552917][ T5935] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  209.560898][T12594] netlink: 'syz.0.2139': attribute type 10 has an invalid length.
[  209.564694][T12594] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  209.601452][T12598] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2140'.
[  209.605250][T12598] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2140'.
[  209.642040][T12601] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2142'.
[  209.647095][T12601] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2142'.
[  209.650822][T12601] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2142'.
[  209.654782][T12601] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2142'.
[  210.036899][T12636] overlayfs: failed to decode file handle (len=5, type=248, flags=0, err=-22)
[  210.040212][T12636] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) !
[  210.091066][T12641] netlink: 'syz.1.2153': attribute type 32 has an invalid length.
[  210.330926][T12664] program syz.3.2160 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  210.334059][T12664] ata1.00: non-matching transfer count (0/2304)
[  210.875299][T12683] tmpfs: Bad value for 'mpol'
[  211.007390][    C2] ata1: illegal qc_active transition (00000000->00000080)
[  211.142822][T12691] netlink: 'syz.0.2168': attribute type 11 has an invalid length.
[  211.145401][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2168'.
[  211.190841][T12696] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2170'.
[  211.256969][T12701] Oops: general protection fault, probably for non-canonical address 0xdffffc000000005f: 0000 [#1] SMP KASAN NOPTI
[  211.257014][T12702] netlink: 'syz.0.2171': attribute type 3 has an invalid length.
[  211.260833][T12701] KASAN: null-ptr-deref in range [0x00000000000002f8-0x00000000000002ff]
[  211.268591][T12701] CPU: 1 UID: 0 PID: 12701 Comm: syz.0.2171 Not tainted syzkaller #0 PREEMPT(full) 
[  211.271535][T12701] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  211.274919][T12701] RIP: 0010:h5_recv+0x104/0x950
[  211.276529][T12701] Code: c1 e8 03 4c 01 f0 48 89 44 24 08 48 8d 83 08 03 00 00 48 89 44 24 30 48 c1 e8 03 48 89 44 24 10 e8 61 a4 7b f9 48 8b 44 24 08 <80> 38 00 0f 85 ae 01 00 00 48 89 ea 48 89 e9 4c 8b bb f8 02 00 00
[  211.282615][T12701] RSP: 0018:ffffc90004877bf0 EFLAGS: 00010293
[  211.284549][T12701] RAX: dffffc000000005f RBX: 0000000000000000 RCX: ffffffff884168fa
[  211.287084][T12701] RDX: ffff888032fac900 RSI: ffffffff8841693f RDI: 0000000000000005
[  211.289585][T12701] RBP: ffffc90004877d78 R08: 0000000000000005 R09: 0000000000000000
[  211.292087][T12701] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  211.294592][T12701] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffffff8c907a80
[  211.297099][T12701] FS:  00007f85bb3d56c0(0000) GS:ffff8880d6b08000(0000) knlGS:0000000000000000
[  211.299891][T12701] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  211.301999][T12701] CR2: 00007f85bb3d4f98 CR3: 0000000039aa7000 CR4: 0000000000352ef0
[  211.304578][T12701] Call Trace:
[  211.305667][T12701]  <TASK>
[  211.306644][T12701]  ? __pfx_h5_recv+0x10/0x10
[  211.308135][T12701]  hci_uart_tty_receive+0x254/0x7e0
[  211.309801][T12701]  ? __pfx_hci_uart_tty_receive+0x10/0x10
[  211.311608][T12701]  tty_ioctl+0x583/0x1680
[  211.313016][T12701]  ? __pfx_tty_ioctl+0x10/0x10
[  211.314623][T12701]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  211.316802][T12701]  ? hook_file_ioctl_common+0x145/0x410
[  211.318588][T12701]  ? selinux_file_ioctl+0x180/0x270
[  211.320238][T12701]  ? selinux_file_ioctl+0xb4/0x270
[  211.321877][T12701]  ? __pfx_tty_ioctl+0x10/0x10
[  211.323412][T12701]  __x64_sys_ioctl+0x18e/0x210
[  211.324950][T12701]  do_syscall_64+0xcd/0xfa0
[  211.326440][T12701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.328320][T12701] RIP: 0033:0x7f85bd18f6c9
[  211.329766][T12701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.335649][T12701] RSP: 002b:00007f85bb3d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  211.338207][T12701] RAX: ffffffffffffffda RBX: 00007f85bd3e6090 RCX: 00007f85bd18f6c9
[  211.340656][T12701] RDX: 0000200000000040 RSI: 0000000000005412 RDI: 0000000000000008
[  211.343104][T12701] RBP: 00007f85bd211f91 R08: 0000000000000000 R09: 0000000000000000
[  211.345595][T12701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  211.348065][T12701] R13: 00007f85bd3e6128 R14: 00007f85bd3e6090 R15: 00007ffdafddd958
[  211.350541][T12701]  </TASK>
[  211.351502][T12701] Modules linked in:
[  211.353147][T12701] ---[ end trace 0000000000000000 ]---
[  211.353516][ T1114] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300)
[  211.355332][T12701] RIP: 0010:h5_recv+0x104/0x950
[  211.360090][T12701] Code: c1 e8 03 4c 01 f0 48 89 44 24 08 48 8d 83 08 03 00 00 48 89 44 24 30 48 c1 e8 03 48 89 44 24 10 e8 61 a4 7b f9 48 8b 44 24 08 <80> 38 00 0f 85 ae 01 00 00 48 89 ea 48 89 e9 4c 8b bb f8 02 00 00
[  211.368261][ T1114] ata1.00: configured for UDMA/100
[  211.372832][T12701] RSP: 0018:ffffc90004877bf0 EFLAGS: 00010293
[  211.375445][T12701] RAX: dffffc000000005f RBX: 0000000000000000 RCX: ffffffff884168fa
[  211.378855][T12701] RDX: ffff888032fac900 RSI: ffffffff8841693f RDI: 0000000000000005
[  211.382134][T12701] RBP: ffffc90004877d78 R08: 0000000000000005 R09: 0000000000000000
[  211.385634][T12701] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  211.388703][T12701] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffffff8c907a80
[  211.392081][T12701] FS:  00007f85bb3d56c0(0000) GS:ffff8880d6c08000(0000) knlGS:0000000000000000
[  211.395945][T12701] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  211.398757][T12701] CR2: 0000000000000000 CR3: 0000000039aa7000 CR4: 0000000000352ef0
[  211.402035][T12701] Kernel panic - not syncing: Fatal exception
[  211.405379][T12701] Kernel Offset: disabled
[  211.407206][T12701] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:52:03  Registers:
info registers vcpu 0

CPU#0
RAX=000000000015c58c RBX=0000000000000000 RCX=ffffffff8b60a2a9 RDX=ffffed100d486656
RSI=ffffffff8bf06fc0 RDI=ffffffff8192579d RBP=fffffbfff1c12f40 RSP=ffffffff8e007df8
R8 =0000000000000000 R9 =ffffed100d486655 R10=ffff88806a4332ab R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097a00 R14=ffffffff90820cd0 R15=0000000000000000
RIP=ffffffff8b608d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005555763af808 CR3=000000004e6ae000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000004e03 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdafdddce0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd213050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd21305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd213057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd21306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd2130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd2131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000046 RCX=ffffffff819bf1c1 RDX=ffff888032fac900
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc90004877900
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=6567203a73706f4f
R12=1ffff9200090ef23 R13=0000000000000000 R14=ffff888053900000 R15=ffffc900048779d0
RIP=ffffffff81bd0888 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f85bb3d56c0 ffffffff 00c00000
GS =0000 ffff8880d6b08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f85bb3d4f98 CR3=0000000039aa7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd213050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd21305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd213057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd21306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd2130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd2131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd3b74a8 00007f85bd3b74a0 00007f85bd3b7498 00007f85bd3b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bdf1d100 00007f85bd3b7460 00007f85bd3b7478 00007f85bd3b74c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd3b74b8 00007f85bd3b74b0 00007f85bd3b74a8 00007f85bd3b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000166674 RBX=0000000000000002 RCX=ffffffff8b60a2a9 RDX=ffffed100d4c6656
RSI=ffffffff8bf06fc0 RDI=ffffffff8192579d RBP=ffffed1003bd4920 RSP=ffffc90000187de8
R8 =0000000000000000 R9 =ffffed100d4c6655 R10=ffff88806a6332ab R11=0000000000000000
R12=0000000000000002 R13=ffff88801dea4900 R14=ffffffff90820cd0 R15=0000000000000000
RIP=ffffffff8b608d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6c08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f85bb3b4d58 CR3=0000000035fca000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb87e13050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb87e1305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb87e13057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb87e1306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb87e130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb87e131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb87fb74a8 00007ffb87fb74a0 00007ffb87fb7498 00007ffb87fb7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb88b1d100 00007ffb87fb7460 00007ffb87fb0004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffb87fb74b8 00007ffb87fb74b0 00007ffb87fb74a8 00007ffb87fb74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 000000000000004c
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000067 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85296435 RDI=ffffffff9add8780 RBP=ffffffff9add8740 RSP=ffffc90004447038
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3a6b6e696c74656e
R12=0000000000000000 R13=0000000000000067 R14=ffffffff9add8740 R15=ffffffff852963d0
RIP=ffffffff8529645f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f85bb3b46c0 ffffffff 00c00000
GS =0000 ffff8880d6d08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f85bb3b3f98 CR3=0000000039aa7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd213050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd21305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd213057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd21306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd2130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd2131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd3b74a8 00007f85bd3b74a0 00007f85bd3b7498 00007f85bd3b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bdf1d100 00007f85bd3b7460 00007f85bd3b7478 00007f85bd3b74c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f85bd3b74b8 00007f85bd3b74b0 00007f85bd3b74a8 00007f85bd3b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000