last executing test programs:

55.190233042s ago: executing program 1 (id=2828):
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000005000000fd090000840c000005"], 0x50) (async)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r0, &(0x7f0000004100)={0x2020}, 0x2020)

55.190052821s ago: executing program 1 (id=2830):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="34000800fdf55c3e9c020a4d7965f055c66db4e580ed97567edacc1b368abc13a51e02bae0488e"], 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000600)=@newsa={0xf0, 0x16, 0x633, 0x0, 0x80000000, {{@in=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {@in=@remote, 0x4d2, 0x32}, @in6=@loopback, {}, {0x5, 0x3, 0x0, 0x5}, {0x4}, 0x2, 0x2, 0x2, 0x4, 0x18}}, 0xf0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

54.741784272s ago: executing program 1 (id=2831):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x60, 0x0, 0xb, 0x201, 0x0, 0x0, {0x7}, [@NFTA_COMPAT_TYPE={0x8}, @NFTA_COMPAT_TYPE={0x8}, @NFTA_COMPAT_TYPE={0x8}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_COMPAT_NAME={0x5, 0x1, '\x00'}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_COMPAT_NAME={0xb, 0x1, '&,Y[[&\x00'}, @NFTA_COMPAT_TYPE={0x8}, @NFTA_COMPAT_NAME={0x5, 0x1, '\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x80}, 0x40)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r1, @ANYBLOB="0000400000000002280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r1, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x4048001)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000040)={'team_slave_1\x00', {0x2, 0x0, @multicast2}})
socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x40ead000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x66)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$dsp(r3, &(0x7f0000000040)=""/48, 0xff9a)
r4 = socket(0x10, 0x802, 0x0)
write(r4, &(0x7f0000000140)="fc00000018000703ab092500090007000a070000000000060000369321000700ff2500000005d00000000000000398996c92773411419da79bb94b46fe000000bc00020000036c6c256f1a272f2e117c22ebc205214000000000008934d07302ad031720d7d5bbc91a3e2e80772c05defd5a32e280fc83ab82f605f70c9ddefefe082038f4f8b29d3ef3d92c83170e5bba4a463ae4f5566f91cf190201ded815b2ccd243f295ed94e0ad91bd0734babc7c3f2eeb57d43dd16b17e583df150c3b880f411f46a6b567b4d5715587e658a1ad0a4f01731d05b0350b0041f0d48f6f0000080548deac270e33429fd3000175e63fb8d38a873cf1587c3b41", 0xfc)
ioctl$SNDCTL_DSP_GETISPACE(r3, 0x8010500d, &(0x7f0000000280))
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400212100000000000000000200"], 0x28}}, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r7}, [@IFA_LOCAL={0x8, 0x2, @dev}]}, 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r7}}, 0x18}}, 0x0)

54.659993288s ago: executing program 1 (id=2836):
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x10, 0xfa00, {0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x2}}, 0x20)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000180), r3)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, r4, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x21d}]}, 0x24}, 0x1, 0x0, 0x0, 0x40001}, 0x4048080)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f0000000180)={0x7, 0x8, 0xfa00, {r2, 0xfffffffe}}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
chroot(&(0x7f0000000040)='./file0\x00')
umount2(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'wg1\x00', <r5=>0x0})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
ioctl$TUNDETACHFILTER(r6, 0x5411, 0x1000000000000)
r7 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
ioctl$vim2m_VIDIOC_STREAMOFF(r7, 0x40045612, &(0x7f0000000000)=0x1)
ioctl$vim2m_VIDIOC_DQBUF(r7, 0xc0585611, &(0x7f0000000200)=@fd={0x7, 0x1, 0x4, 0x8, 0x6, {}, {0x1, 0x2, 0x9, 0x6, 0x9, 0xfd, 'yT=7'}, 0x0, 0x4, {}, 0x4})
r8 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r8, 0xc008561c, &(0x7f0000000040)={0xf0f046})
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r9)
ptrace$cont(0x20, r9, 0x3, 0x3)
ptrace$setregs(0xd, r9, 0x7fff, &(0x7f0000000280)="3f14cab321eb3f2dac4ff9cb757738c509fe27646d995f9ee9c664b7ae80e62558d06cd33ab7740b7beb3c788bdbbc3baca2cd0a2afa816765aacf3739683f71b409b82f5bf80e67efd36f950c1317d861dd31ea18da596bbd5c62221331ec98a499a7f0239e47d2b6e0c4d00465639a3fc73230d6511143e975de9a17bbc39938564e98132f36d68f")
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xfff3}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0xfffffff9}}, @TCA_RATE={0x6}]}, 0x40}}, 0x4000)

54.57068772s ago: executing program 1 (id=2838):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe, 0x20000000}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)

54.258637647s ago: executing program 1 (id=2847):
getpeername$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x15, 0x16, &(0x7f0000000d40)=ANY=[@ANYBLOB="61128c000000000061134c0000000000bf2000000000000007000000080000002d0301000000000095000000000000007126000000000000bf670000000000005601000000ff07ad6706000002000000070200000ee6000abf250000000000003d350000000000006507000002000000070700004c0000001f75000000000000bf54000000000000160400000400f9ffad3001000000000084000000000000004500000001f0ffff95000000000000006e8ad524a56600a5585b7351ca1136aef2e9407e5c2501d11900db85604036883647b1fb3f1403b816f511c8c56e56e40b01005505f8a89dae4293b10f3631b25fc9f189084c7fddccff01361d355f6cce8ec2abcdf1bc9040daef2cfa2046e2091e269f4734ffa55eb2d4e8de20b38c8808b365b46bd54c68cd30139a8c3827a7dd6d6e2b5fea3906f8456b0000000000ff07efffffff0047018ae79db613d2aec070f718ab629b4975320dd7a7da532281fd22c7b835005bf52715396669836db6000000005b4f0591ee7c8cd263dd172b28d01c4d8d4fee81e3cdd5daf2cdad3d1a74a2f078aa6402483856a6e494408d0b33047f06aec2cc590df28efc7dbec6857db922195a271af103f03e1155197e067b2ebf4e2dae060959c9639564f000fc3cdd05a1575c91cf5ba8b2db403681ee48f5287123a0d246c0c4c00fe979dbc09ed4db22d7172adc6ae8faa5f9ad188e07000000000000008d88a0b4684559d46cae41db1b914e93f1f8000000000000000000e33de432e488ad0e724c2d14a1e770e116984a5700afb8a1f3d47277ef0e33e7e00ec5f74e10937ba0e321346977b7d1b18013f509675b5b0f352e30dffda780e95c301f4fc7d5a76475ace6b128b02bfd71023daffdf748a6bd356fcbacec96373d1101000736ac0bbcb5f4836bddfe8bf46308000000ade9e59fcf271bb98bd0b8b5216b858b414c31682f9f3db2e4d8e5898e445fe55ac56c0d642986f8bbc7340bc8393f774318c9fc9b05788de2c6e601b50777e8dff581de1d5ae3d801ead7eba31126e2172fa1eadf5f3bec81004d00000000c8e4692e051c731f9ac766b7fd66278d40f0760f23e8c7d1f47cd8e02504e85e152955ad8acd989c0b2eea71414f533f5685c3904bfe1d0011ffc1ba5398f3d6812467c1a4186edd036f15bf847c50f79e1a0ad3d2b5080ecb0148e2b86177869884ae62420c9f1b534e969fce97ffff070000000000dbbfe0ed7c5853a665c0805752dca0e571d75cac5a5d8e4f6e05055b6dec5a9a5696f053a92d81fd9e5f2b9dbbe24f38e745b5a95d45003d0600e413dc623f3e6b096c8b0ad7438c6631388892c55b0671140afbfb83bba415f729fea4c8a8a86189dceedad84cdd17c46bdd847a1f4b0facd3744f5bbb06abb319204fca4bcd4297fe7b4cee75abf43e14fe861224799c0f12702964fc890a176fdafa2c9387280b5693c000c0304cece48642649375dae0b7979b229f708a97349e96e783af9a23cd3980a2c29d3d62875e5319cd51bdd224878a0b25edf0e83c930633bd9a0c3e28f359608ea326c77a1aa17318f392a0ec6c188916f452533d4327feccfd68ec8278a90252693fb133c4615801077e1d75420017c03990b855fe481a20b4919bb11c6d737b6545ef140a0fc339bb53953662f1454f9852e7c4e17eb8e68f076c659f56d6c7f97a94d6cdf45cfe88b30c170000000001000000effbf33bd1becb0de0a080931f137967de563c29d81aacb3d48226a4e4b6670900000000000000fa68bff3693afc44db223f2be09295e4a8da03d23b48bb38b31a14ffcddd92c38f6b6d86a0e5ed47a82bad5d2a6dce4c4d353261260c9d7a6bd9f2c872c4172a3d2ac80dfb718cc159e6423065624f130000000000000000000000000000000000000000002a37163e8d7ef2f3c58d045f0700000094029acbe333aebd10f2118fbfeda3fa5500d52cd5241588d2b68a332edfef6d701c8936a25d68b841f982511392cc0d3a78616f8ce0f2877d099258bf85866d0ee7f803fa50fd41ef62b028d12028a7b497d92f544523290f520b0d"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r0, @fallback=0x6, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="cc", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x390}], 0x1}}], 0x2, 0x4048884)
getsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000000)=""/51, &(0x7f0000000040)=0x33)

54.228078562s ago: executing program 32 (id=2847):
getpeername$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x15, 0x16, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r0, @fallback=0x6, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="cc", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x390}], 0x1}}], 0x2, 0x4048884)
getsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000000)=""/51, &(0x7f0000000040)=0x33)

21.167477663s ago: executing program 4 (id=3670):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="34000800fdf55c3e9c020a4d7965f055c66db4e580ed97567edacc1b368abc13a51e02bae0488e"], 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000600)=@newsa={0xf0, 0x16, 0x633, 0x0, 0x80000000, {{@in=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {@in=@remote, 0x4d2, 0x32}, @in6=@loopback, {}, {0x5, 0x3, 0x0, 0x5}, {0x4}, 0x2, 0x2, 0x2, 0x4, 0x18}}, 0xf0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r4, 0x4068aea3, &(0x7f0000000240)={0xbc, 0x0, 0x4})

20.737918987s ago: executing program 4 (id=3671):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), r0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001240)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fddbdf252000000008000300", @ANYRES32=r2, @ANYBLOB="1c002d8005000400010000000500010001000000080002"], 0x38}, 0x1, 0x0, 0x0, 0x8800}, 0x4040040)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000000)={0x7})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0)
write$binfmt_format(r6, &(0x7f0000000100)='-1\x00', 0x2)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80000, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@setlink={0x3c, 0x13, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xa, r9}, @IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}]}, 0x3c}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r10 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r10, 0x8922, &(0x7f0000000080)={'dummy0\x00'})
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x4, 0x0, 0x7fff0006}]})
close_range(r11, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, 0x0, 0x20000)

20.557074502s ago: executing program 4 (id=3677):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
connect$inet6(r2, &(0x7f0000000240)={0xa, 0x4e23, 0xa4e4, @remote, 0x3}, 0x1c)
r3 = fsopen(&(0x7f0000000000)='btrfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
recvfrom$inet_nvme(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x1, 0x2f1, &(0x7f0000000280)={{0x12, 0x1, 0x200, 0x1f, 0x96, 0x6c, 0x40, 0x1a72, 0x1002, 0x6189, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2df, 0x1, 0xd, 0x6, 0x10, 0x2, [{{0x9, 0x4, 0x2f, 0x5, 0xf, 0xa2, 0xd0, 0xe1, 0x0, [@uac_as={[@as_header={0x7, 0x24, 0x1, 0xc8, 0xf0, 0x1}, @format_type_i_discrete={0xb, 0x24, 0x2, 0x1, 0xc, 0x1, 0x87, 0x8, "7a9dbe"}, @format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0xf5, 0x3, 0x63, 0x2, "f2f4b22746"}, @format_type_i_discrete={0xf, 0x24, 0x2, 0x1, 0x7, 0x1, 0x7, 0x6, "873ead528fecd1"}, @format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0xf9, 0x4, 0xf9, 0x9}]}, @cdc_ecm={{0x5}, {0x5, 0x24, 0x0, 0x4b}, {0xd, 0x24, 0xf, 0x1, 0xffffff55, 0x7c7, 0x2, 0x2}, [@mdlm={0x15, 0x24, 0x12, 0x1}, @dmm={0x7, 0x24, 0x14, 0x7, 0xfff2}, @mdlm={0x15, 0x24, 0x12, 0x8}, @country_functional={0x8, 0x24, 0x7, 0x0, 0x7, [0x6]}, @obex={0x5, 0x24, 0x15, 0x7}]}], [{{0x9, 0x5, 0x2, 0x10, 0x200, 0x36, 0xd, 0xe, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x4, 0x401}]}}, {{0x9, 0x5, 0x4, 0x2, 0x400, 0x2, 0x5, 0x7}}, {{0x9, 0x5, 0x6, 0x10, 0x10, 0xf5, 0x4, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x7, 0xfffe}, @generic={0x86, 0x7, "17b97640188e95067636d5ed8d2417d0c583eb7220142f782d07483caf8c6af6f9ead8920a054a91a6cd93065506d77f3b02c7bf7b95d5aa3d1ddf1f65710839dc340eb41a624f8be5ee270620eba92fca91911af03761013d3538ea10d93bf3d99bc348a7a05d8a2bc3ca5847b269c38d317e76dc056d5dd3ba2f3fd0c7473493441fe2"}]}}, {{0x9, 0x5, 0xd, 0x2, 0x5f7, 0x9, 0xfe, 0x2}}, {{0x9, 0x5, 0xb, 0x4, 0x40, 0xd9, 0x2, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x2, 0x2}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0x7f}]}}, {{0x9, 0x5, 0xc, 0x2, 0x10, 0x3, 0x0, 0x5, [@generic={0x8d, 0x8, "8fb3a7eb74e1ae7a78348aa5b8b35688132905de405d88aa15ecda6ee4e93ee6d5c7a718eead8532814a0a329c8bdf22841b8fc137c618c79eef4525ea9faf784a75517229470d412366c30aa5360066ec6c19cfc842c74dd2f06ecdb7e4272a63ea61694ffca12680839fa7d6f9886b784378cf75d687415bdd8460a6dc549d5e6ecc73bab04a45f45a17"}]}}, {{0x9, 0x5, 0xb, 0x0, 0x8, 0x3, 0x9, 0xfe}}, {{0x9, 0x5, 0x6, 0x10, 0x248, 0x80, 0x9, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x2, 0xff}, @generic={0x62, 0x23, "74f69f9516d5dd5aac0c5c912d056988a7bd72408abee0d6124fc7e1dcf0e1c24470cefb53f1cacf532d1d6e1345c203483456df4351150534f0d9e6191fd45d2dcd23eeb74acf8d54cfa02977b89603ae96ed1023339a4904beeb6080cb4eae"}]}}, {{0x9, 0x5, 0x3, 0x10, 0x40, 0x0, 0x1, 0xb4, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x1, 0x804}]}}, {{0x9, 0x5, 0x7, 0x10, 0x40, 0x4, 0x0, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x7f, 0x401}]}}, {{0x9, 0x5, 0x8, 0x1, 0x40, 0x2, 0x5, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x8, 0x9}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x6, 0x9}]}}, {{0x9, 0x5, 0xd, 0x10, 0x3ff, 0x9, 0xa, 0x8f}}, {{0x9, 0x5, 0x2, 0xc, 0x400, 0x4, 0x8, 0x4}}, {{0x9, 0x5, 0x5, 0x0, 0x8, 0x0, 0x50, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x73, 0x9}]}}, {{0x9, 0x5, 0x6, 0x10, 0x3ff, 0x0, 0x9, 0x4}}]}}]}}]}}, &(0x7f0000000740)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x110, 0x2, 0x3, 0xb, 0xff, 0xa7}, 0x3a, &(0x7f0000000140)={0x5, 0xf, 0x3a, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0x9, 0x1, 0xe}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0xc, 0x6}, @ext_cap={0x7, 0x10, 0x2, 0x14, 0x5, 0x5, 0x4}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x1, 0x6, 0x8a}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x1, 0x3, 0x4}, @ssp_cap={0xc, 0x10, 0xa, 0x6, 0x0, 0x164, 0xf00f, 0x6}]}, 0x4, [{0xb9, &(0x7f0000000580)=@string={0xb9, 0x3, "4e0c354f8427798bb64daa63acb110e5859a205255253ca0c06a0b42880b4c2b3ffd10921d25da89c6057704f55132872b5de46de2bfcd66bd65eac5ff365cf3f742423cdbf45ea18e7d17ce07d2fcdd6c5f39c54de3ecba5a5a1ab0bddde1a7c180697fbf04020605f0422d484be66bed50c92dab1614b05b42c588e67154f74758215c8de00c7c68c256ea4856c476d312777287b9c2394b34015b1f217b3d8815a07d039757c515c2f07ffd42dc2c081824feedb2a8"}}, {0x67, &(0x7f0000000640)=@string={0x67, 0x3, "d4b8fca6eed699c5a7d61e3af71a53f48ca7db18f093eb4552b80fd2b2d76b3e4b4f703b9548f774fa4278d0a6c52bf041278b2468544750b8762d472d7909d7b6d952b6909aeb658cedd434d2d2b00db0cceeaf7019dc83faf60c277216f8aa92ed2a4dc8"}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x447}}, {0x65, &(0x7f00000006c0)=@string={0x65, 0x3, "500f9016209749b14312910852e7d34552b04723186c5ccf4c4b58fce5a5bfabc418417f03249068b6689af9bc7124a1d5cf4101302255ea0b4d0e40f0be8879f08b8bb2b2ea14e79cd68a7ebf290f810f0795665f7970448a43d826a95672a8b7bcfa"}}]})
r4 = add_key(&(0x7f00000001c0)='keyring\x00', &(0x7f0000001000), &(0x7f0000001000)="2e98", 0x2, 0x0)
request_key(&(0x7f0000000000)='trusted\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='.(#%t\x00', r4)

19.236878498s ago: executing program 0 (id=3711):
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = socket$isdn(0x22, 0x3, 0x23)
bind(r0, &(0x7f0000000240)=@llc={0x1a, 0x306, 0x0, 0x7, 0x2, 0x9, @random="c82626ef388b"}, 0x80)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0xee01, 0xee00}}, './bus\x00'})
recvfrom$inet_nvme(r1, &(0x7f0000000080)=""/12, 0xc, 0x1, &(0x7f00000000c0)=@hci={0x1f, 0x0, 0x4}, 0x80)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000180)='./bus\x00', &(0x7f0000000200), 0x800000, &(0x7f0000000480)={'trans=virtio,', {[{@dfltuid}, {@uname={'uname', 0x3d, 'sysfs\x00'}}]}})

19.106352505s ago: executing program 0 (id=3712):
r0 = open(&(0x7f00009e1000)='./file1\x00', 0x8160, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)
setxattr$system_posix_acl(&(0x7f0000000340)='./file1\x00', &(0x7f0000000380)='system.posix_acl_access\x00', 0x0, 0x0, 0x2)

18.966229328s ago: executing program 0 (id=3713):
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x8800)
ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0)
stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_virtio(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x4, &(0x7f0000000200)={'trans=virtio,', {[{@cache_readahead}, {@access_any}, {@nodevmap}, {@afid={'afid', 0x3d, 0x3}}, {@access_any}, {@noextend}, {@debug={'debug', 0x3d, 0xa337}}, {@fscache}], [{@obj_type={'obj_type', 0x3d, '/dev/input/mice\x00'}}, {@hash}, {@fsmagic={'fsmagic', 0x3d, 0x6a}}, {@fowner_lt={'fowner<', r2}}]}})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x13, &(0x7f0000000300)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x538c, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_val={0x18, 0xa}, @exit, @ldst={0x3, 0x1, 0x6, 0x1, 0x0, 0xfffffffffffffffc, 0x10}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000003c0)='GPL\x00', 0xf, 0x54, &(0x7f0000000400)=""/84, 0x41100, 0x8, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000480)={0x5, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0xe, 0x101, 0x9}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000500)=[{0x1, 0x5, 0x4, 0xa}], 0x10, 0x88, @void, @value}, 0x94)
r4 = syz_open_dev$hidraw(&(0x7f0000000600), 0x2, 0x8800)
r5 = getpgrp(0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000640)={0x2, 0x3, 0x9, 0x100000001, r5})
r6 = socket$kcm(0x29, 0xff056bb09a2d4d36, 0x0)
ioctl$VHOST_SET_VRING_NUM(r1, 0x4008af10, &(0x7f0000000680)={0x2, 0x9de})
ptrace(0x4208, r5)
mbind(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2, &(0x7f00000006c0), 0x1, 0x0)
chdir(&(0x7f0000000700)='./file0\x00')
chdir(&(0x7f0000000740)='./file0/file0\x00')
read$FUSE(r0, &(0x7f0000000780)={0x2020}, 0x2020)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000027c0), 0x240000, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04)
sendmsg(r6, &(0x7f0000003d00)={&(0x7f0000002800)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x42}, 0x2}, 0x80, &(0x7f0000003b40)=[{&(0x7f0000002880)="302e374a8af0aab499ed70eb30cbe52eb068cd9f4bd10bcf717f7d0a13f55d", 0x1f}, {&(0x7f00000028c0)="546097503c71836f1da1dd4569a6d381a1b7297411ebf998e1bd4063bf964f886a1ec9fecfdfa70e0f4ad2d83745758268b24c56b3346e7bf3ff67430e88b06c5567acb409ffb8d3eca71e5af84baf557f33b3082ff82e72c454f0fa1eeecd977368c1f92fea6492ec117c14a1e5387005caadebe614df1ea77a4083ddd433ec9f310f46454f1aaee63278e3642582e695c59341f706213b04369f3431ff84c8ea39aa169da1fad495436f74c4829ecea07e96ae3b91cda5a52804c4be2f811aeccbb60dad1b93d781552f5c3a9626eb39546a4a309a9041e2981afce995ecf32614a71f18747261cb753a007b4273236513cdb966", 0xf5}, {&(0x7f00000029c0)="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", 0x1000}, {&(0x7f00000039c0)="4a62b833daa54cd2c4d97679b7d9e6472e02131ab60a42cd832605115c116c4ecb1ca985d00104cdeb32910038f35f343b13f10ae404886559b900e68fdc50ec4c61bf2560cff6717a73af1f92e15ca2f4f3b8e212c29cc7053f65808c75890d290411dd25b20f9e59ba5bfba77c", 0x6e}, {&(0x7f0000003a40)="4454e0035c10c50da802f703764031e94dffc47b2cfa33abf776d658a13227423cee7e8e2fee4c335b9c9a9f2860f839714b5cc6ccf3cd86d9531bf78f928cdb79c110a6b204596371b97a787d8790b6bec5931b985d0b5af2d1a17427f76348e3f7a8c9ef427543c2a6e602d7f77ed85daf6e363ceffb02af33e8610ce91605394ed6ea881f8b7f4345099aac50147a48e9c74264fc6f19efffbb5b485c7a4273620de71f3346b20a12fa6d42028363be30676dc8d2f8f826c530de6c43579002b5562c43e9997bf42a730c994292cf07cc27e37aeabf283bb3b80c0f380861db638c4dc6e30371e5e22e599f746834715c1fd25d5c62f99d2177fa5b", 0xfd}], 0x5, &(0x7f0000003bc0)=[{0xb0, 0x0, 0x8, "e46df2baedae71a462c8f2576f37b7c46b84766107bb3b0195b47bfe277d1d4198ff00a06fc3877e1e324eaa61a14623f825c0703b5fc5435223d395e03c4e8cf4ab0eea6c78ddcd52b3f07a9915ebc1cb5860cd54d4de3d0140ecf212011ec431e180e61de6b292d74a2bafc7d63e7c12f223bd4a8f8b393ccf2402e35b3e5794be58d1dcb2397d1efcc60e87735211aab3b62167911532b49fad710192"}, {0x30, 0x1, 0x8d7, "6a8a3f3d7775585c34534ff06dd88d201e51e95dd325897610fa"}, {0x60, 0x118, 0x8, "ceed388e132595524c9385ff6ce7e2b83fb3da877e826b1a0e3e319998a7dde75e990840e7a26b488c1329142ae088ffae7d8966aa50336edff37164c64cc70511d7d7cc26f601a07b896651"}], 0x140}, 0x8050)
sendmsg$NFT_BATCH(r0, &(0x7f0000006040)={&(0x7f0000003d40)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000006000)={&(0x7f0000003d80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xb}}, [@NFT_MSG_DELSETELEM={0x2068, 0xe, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2018, 0x3, 0x0, 0x1, [{0x1420, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0x8d, 0x6, 0x1, 0x0, "77f51dd214a7285ad43120073877e22372d81b3b531bf7bbdae8ff09c3f189bdae594e2451e4ad55744924d0012072f92dcd89273a47d72657a94e4dfcb8cbf363d026ff0371691b50f9ebb56d8fae4de523794c50da0cb0fe5ea3147c1c21001d453431738d1633b9978a326c19c7344a56699988a38d6d7f1a8ff8826f85d7e2749afb3602c0f6ce"}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_EXPRESSIONS={0x14, 0xb, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @xfrm={{0x9}, @void}}]}, @NFTA_SET_ELEM_EXPRESSIONS={0x94, 0xb, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @lookup={{0xb}, @void}}, {0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x10}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x8}]}}}, {0x24, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_MASQ_REG_PROTO_MAX={0x8, 0x3, 0x1, 0x0, 0xd}]}}}, {0x1c, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}]}}}, {0xc, 0x1, 0x0, 0x1, @dup={{0x8}, @void}}, {0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}]}, @NFTA_SET_ELEM_DATA={0x19c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x29, 0x1, "e9f48f1cb56459ea3a400fb9eab894b2a7e521581bad284416653566ecc9f8169c0a9a6998"}, @NFTA_DATA_VALUE={0x64, 0x1, "785f58b1038d024f3f4fb1d8935040f38d1a45f4091fbbf035a3a033b93c698301b589b980a91c6e5b1117945210c9f0208829643928105e133bce753d1af94df680da72b803fac729fcf192119a7e4c028e0fdfb1ac833ff4494a614e5f6f39"}, @NFTA_DATA_VALUE={0x35, 0x1, "e20249de970b3947c0f08c46bd1764d75b90302093d3c550171eb90dfb400726b642f900d356526728b28ee9111054834c"}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x30, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFTA_DATA_VALUE={0x4c, 0x1, "f476c0cad3dc4e407e3bbd7bab30f0581d87255ade1931dfd567c74f0e7b2c4cce307c8e4758d8c4e53369b802554380ea45f1b9a11d26b9a7d65472b0a5b398d5a89471b3ecbae7"}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}]}, @NFTA_SET_ELEM_DATA={0x113c, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x1004, 0x1, "9a7289ba371a4e13c60fa32b9011fae2937bc57db446814de478793a5011ad7363d95ad0cef510d5adc68c0134a2f817058d6a9f270ba17b2889f36f9ba7f1cdd08daec15d3b26073d882ad4e4f194e2c4df8dae646af27f6230816ee3431f703d34e2e9e99ca5391587bf4a1a63d9d6d1002d18af82027c278f947615980ea7835656126393affc9eae02ca723c3832cc64ca9806288e7841d9a3415a5550c45bcfb77ef4b714e2d1a7b9df5ec99ed25aae53b388f89a6541d3f2da4bbabf531fb03de216a7709f43c2c1dff832bf54718cbce494e77967cabe04e412d03ac87a95eaf42fa710a6b30cb811d483487ae63729c1c5af1f2ff938579da573a136d54f19aff4066407fec13fbc246bb4f84dc83aa11aaf7aa6c5c99da67bcf60acbb27cc06714260c741ee98342b85b54ea71c16c354d0ab998f2e70a86f90b410ab579d338f4893cbe062b103cdaee2bf420da8a80e53bb007af68b259b0ded8675d6790cfa67f8025e13dc05aed78c69d28b945222ddd6d1cae0b9a24d634170e20a47ed083bc8c0938b66f00746b8a27a49a66e311da1ab3ca6d5b80c6c3c0b881eccf34a9512a088965df063fcc925a2f2a8d33650dcf13e9ce4582f6792f0d72aaf765887c39285ca23b3e132a2d9bcf4e3c14451c75f961c6e6a23c81d20bda3cc0173d3ac9be5df7786db81fb83bcf156b4c80bf65025efca34bd0474a1986d5d839fdfe1fe0461ffa6ac20a0ee0505cca7f64dde28ec322bf7be79af35e293baf34338d6334e9b1e0f562183f88264bc3eb95efd47965d3300c74111023d28d30cf9cb34314a47b28b2ef83cbf13f5173dabcc4e3f6d92ecb320dcc07d31ccc7dfc35c6781101e211c3696f081023a542e527cb4dd7ad84d2c165c4bef432c5c634733b3849756e2ed44457a47fd4caa6ff9aab7f04986fa0197f813882f290b03a95725de34677ab9aaa14e01ea15cc315e3c1474d00a044033826c075a84db9170db8af279fde7febb093e63f104435ef85b03ea221941394bf0da262f12074755f44d660e98e7e1a65cfae985883cd229014bee748820d1dc2b455753746f4a6cdcedc7f8dfce28fd5bd7cf4feb21e67b394422d1f73b4b616b74bf9e42e8e24f67ed22ebad11242a7dce20c29f774fdbbda0a0f1528031e091e9fe8d6c58ebe6ca05b1544f6f078410bcf83a67ea99bb18fb2e6aa1e557ffd02f110f2ca40c430fd34c00ad4e101fd5d50e456b6de28e3d032d4badc59deb9642aba8ce40c571b343f6cc130c78b2cbabf30c59f0b133f2cd42b207ff517ef856269f9a8039b78c759753fa8ac8b079b75596d8d119576458a0d5c08c16c79727c3d76421c798563e7387ad0fb318c0ec3e92efd6fe6f47ad54d2339f3462fd79216e39f24b9ac01b97758909487f0492556fd6803864f6a08a0ce351f44de3678208527b86673ba2d484d17983cda651e849fb48a69a48ce2b64dd37fe90904caff9ff617a6d3fccc9edf5aa1c7d034430b482042d3317c6843e5a1735ec489e8cc48ea0eb228758857f68d95bb2db15a6efe42121f6dc1a2ba01e832c0cf8b1556598eb8a789c160090694891789fbe3417dbd49b592237bf7f2ca50c8ace0ab8a1005fb11a647051c96abd1cbe6f8fc40f650dfa246efad9530013d4bac3cee91cdf65e97d6824178a64932d4abab8691bb7d82b0606cce32a3faeaaa470f7e9215db79576bee668bef7dcc3acb81829fe2c9374434d34b94bd5da251064af2f6bef521e3123cb44aab521e47adc45766e18a9ebf651b1641e708ba040928dc27e7ad929908ad5d4f2879dfb959ce45298d483dac37cb072df8912ad063aadac6c258db882243a48294cdbf307cef43db33c5e59d57129eee32e2ef60d58297442bbc95922817dd41c253bbe91e63224140160caec6e76cd0ea03ab587f733681a5f2e8dfee4a4130a6f468187e3c70140877e66c4bdbfe8f7cbb4a9fcec5f5d7600be23034744236d9050cf8a59efcc58194f3a6eba0562a4499b9dada86d1d316850f4c4291f4e28c20897e477bb09500678210178968eb86fbc92fd7accc796c0c31b3ada52cd91784fcd7f797e3d558f4046d279ec32168394c85aee64c1f83ff20427864301cc584e8cf1bb57bc895ba08511ff667e4ca9069fddd002e411ee5261786ce9055fa8383b1af8e7239a5094318ee92aaa947e9d6492bd5fbcb6b99c1c3002f03820ee3d2a6df379409b4324fdff2f790d7cc8813ef081ef6376a688f81af0089e78ed77aefa9fad994bc3f42e50c20c8ab86e1a89a2f9693a769087c8068f43fa9f8723075bd9df7d636305c9d5cd1009f0426dd712d392c101a201eca59087acdda1e832ac411c13df7b2df23ac9cb837d84c63c1728e5b45af90471c2c73f84cb7da54d79c34e5d01528a47d0df55c06dacef149096cc21a13b91f0be187826f801003432bcaee3a36a5c1d3e729ad1f93685da9c8a321f3db5405aab43cbb59cd3a05237e9b373260639167222609701e02c0950c0a5749bee441ded3516f0e2e0d7515a95391e9ce9195867444f13440d53ddac12e2098151e50bf07552e9a171424a1dabe65ee84a2edf6a65bb3c0efb144d8e1d22e42fee625520cb7423c29dadfb1b36f75d7c1f917e49cc55270f038eb74088612c1425ed84b82596fe125569af25864b010ff96a4a45b6022284b2352a4208864ca3f11b88ed10153955cc3575a5061146fe5ffcd75ecf7f6adb0c97f58ad6b65fcfa8d44f73b89ee8a9b94357224a4cfab5bbc3f1e038954e2505332d45ac2b69bd30e0882c75f25f2fb42d76f858980da920a255ad7e006ff2adaafd20911925e4618e5f648395076249050f338b578a398cf0af15b0a66fff37714dfba407e5dc77fafd409271885a097711800cc9f57b1410469684c3cf5f9e73d4cb265dcfdf5f055432ba11e18c94dbd3572a4f3798c197b884dca8686d36399c39816ddf9dda4e5566ad6688955c870509e6daab40d07374558649c1cdc93d8acc1e1b094cce800aeb33d1b4cf473ea8b028abfb7da8567c6ee3d02b7db0bafc6c854302bbab169b4d36ef2211c1dca31dbb482290c7ee1bb7661d9102d60a26f6956a88ec865717c7676df75752ba9294386f0123c3d6241180435656c342e5508c85c28b3d84ca80243335d5490d8e0624298fccc3f9b6553c7ee3a29d8b3f4a8b1999afaa0c48e5352ade11dadf573f3ca5f9a01153c9292f06138c28851d381940b1833dfeb276553571eca485ea104902093866bfcbdd9552de35491e07a84c2e6a310c05cf5e0fabbbd060d3a5917a0a013a3b7c43c7cc8c0b17116e775d894a8cedd81c42fb4f92443c0d897086ecf594e5d6f1c177c6456868c165d8c5ae5a759a85ed61aa6b762ca1a41a9720053cb7f26626e74f3b4616c22324eabb93312d4d63b346f2c0cc729cbffad7a853e42b4ce98b80010873fd1d250e6bc140a07810f31d0ee72c8adf2fafd2255ceef3e6a77e05a1e31d8e7dfae60afb1af664832611488f4aa87e55acc073686c9b8d94bcf588ca818247b7e70b734f978d71cc81e84be6c66b75d4b0d71231465bd118f8ab826a17659f06eaa9cf6a2df59c74a27560c781c718b0cccf80a8688413f56d472edeeb0ca35a771fd1ca973cb3bf3918eeeb40cff5829362c01660405ad78ad361b34d5f7f9d687a5df337aba0ee63c89be0c65dd3ee541d20a102b4138418dd8832f3a2bf917cad5b84158dd1d10be0d43153e94fa071e0d3e6e48ea4d589aacb84e56d3ad5cb1579e6be7ed51c16f8ba58a2611cd2aa9df67b150acac9eee41b38239a293aa8d55c3359153281069a3ef12e68910859a52a18519bece0488367729430ed57a86d3a9e4478f740b42889f1d5b5d15dc4398fbb23c6f1e12c7c8db6721ad3fb0567bddfeeaf9e4840d391d50070a55878c4ae910be0af02946f04024de3fd78aabafe09c7b0e3be9f50c249d1855cf758a53c64a39cf6bf37789a7247c51e6f730fb5d034ed479e33f111ae021e4179a384aed8efc1cc7f8232ce4427bfb3971f1ea20ba179d90982971b47e8783d907748d29c30dda44100b692c410cd705f16da3a58ba436697c11690fe872813ac3502976cce17970a38cbabb1c7a6c784ea8fe87b3312f9d5e28f792a9390290b359ebb0a60c87f1057933b82252e6c33e4181454046097b8a20b271788b5df65473145e2204ea91858f75cb6b774d0facabf7df0c6ab10866536e411dd0b5c8ffcc3045ba4802feaa6db10d82c1bcb9481e9244a4e55f33f45e0c380773f8c6fbb003f6532d2dbea32cb5492dd736dc27d872f6fd2ab58bff5b17deb2fd8c32c287de05bf7bb978b3ca4f2a6675f0257dd63a0575a08201dd07f07e41ac61acb2fe778216cc2810494bbbb923149d6298417d44565618d4d68cd1995af9d93636e3150e9667391d2b5040133ac877e273a47b3ff92cc5146b6617e148c297d3d2f9783a2ddce38d4dff0f57b0b2b828bcc07cc2fa981d7d02227b6eb81bc285be7aaa648bb8dea84a84442c78a122e92869391f2b600b7e2d9f27302dff81cc15004ba170918e4af952a3d1ab947465b13a2b55b70f220b5f82c29b09f061442da9da5617f6a819a3130baca7f18e027a475aac2d97a9c45e26134b23948ee763178643a54191ee2246019e61aa17934441733987b6553e28471bc82fa6f7bc768a89f800abe8ba1435c23121c1c306c99621b24d3effb4bb4c596c75c38bdc6906c1ec41d4be94c995e367afeedc12032edc666d10a0bc2d72690bc03d6a14eed33a8df26146322bd6cd06779ac153e1e6d3b179a4a313023784ed3b8097fd7cd76ab569c888b89bf50d3c6d9ab98f14ce467b890256c6cc5f19ff89a4ca4250f7adfbcf075015a02f16bdeaa3453487989b547c295966c1bc48b2a3fc7a2a6db5830c1cf5a42b7996bb784cf5058339b8b5d745a70b0a6c62529c442cdf37c5dab0e847207fc5981a4ddf056678bfed1c319d974783f6429ab5b4e5ba92316c560800a8b598af4d81ee359e0a67cd28e46cc699aebd1c1ed4b78a19bf907c0668afa54e7257eabdae12774f7cb694586e598662c1b44f0d8286d011e78ac2c309ebdbfa502d9a127c49ec2e328cd3fafb5b66c19118a2f2d5ddeaeb98b5d7c217152f939adf53d8d2bb96e2f70991fd61ca27a8a7fd458d33a58ff3f3cd93dbbffc832d231d66dd5151fb533ba605c3a6dce055ebca65c09c734ee8cf476c8d8c406d47a112901278183d0427076293ce3c0441d7dc369281b861b7c3e98c27aca731cba54674b711df738b1beefdded8f57c28e21a1f818187f43ae4c8d87ca1f2e3b4293448f96bca134f0c558bf832adab8054ad81e80378f5fad7fc272a9780cd4665efce8a86c72e560893ca9aa5752360b423c63e74c20c351fd67cdd7495dd6827f9b66ec2b6631e9e2551a631ce56a4607da77d80391c77b0c0d44e32c4718d0aeb6762192f2ed19ffa050a1da6197394248bc025b77d80bd29efeb714ef0b8538f3ae8f4643f84f33bfa2945509ce5f8d8f7aae4aaeb4ddab3801c7759dad38152017b5f74d741c6fa973a0d6249c21cd7d8a336cdd7beef181f1c95932eb5148093fba3f4133db4d15a9b59f2bd8df85d40127b73d87a7e4bf635ce5c2e65981a080d6f88200c7917cb630b5e20d67eb858ac4bff0b0413195bc5499e5f34b19aa6149ecde58ef463eda6c32d7be61afff0a8035b43b8194eb683a63e7ca2d06a4da10eb163a9300c73cfb5fbfce6afdcb18"}, @NFTA_DATA_VALUE={0x7, 0x1, "2f1701"}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x64, 0x1, "5b1bb6f4e82f060adf07fc06bb911012e0217ce14d963d1566b021e4ecf1c43720dae6b4577e87a42d45847e89f657f9e1fa07e8dff256f4262c8ea9f0f3dd396a5bd6bfa67f46f0bee760dcc9c97d05f84022f86bedc89bd9115e96ca9ffb6f"}, @NFTA_DATA_VALUE={0xa8, 0x1, "bb3031a680c54bfddc77369d98eefbbe39ca361a07986485d4c2612de1256df840039680ff604d652dd973bb2ef8c23da1cf38b5f9e7b43f3d595ba0e375246aa18dd02a229e44aff175b3287eda6b4d650e169e730652d08ab1268b0405f6acf8bd284cfba80548f170ccf6970692792cc341076f7b7a23d2493c35a46c48709ce01da6589ca743324612ee4ee27f3ca131fb228771004b8bc2bb1e2d4ae06e589de3de"}]}]}, {0x33c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @last={{0x9}, @void}}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x8}, @NFTA_SET_ELEM_DATA={0x1a4, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VALUE={0xeb, 0x1, "b772ffc6aa399242bae746958b4b84f18b077ce0913d2e7edb5e8b24d6f8f1154e71acdc9503183042cb0c1dac996286458e6b09a31531e6146f0fda950982bcc88dc77d5e6315ec9357295c0ef08db83130f36ab1b6b9620ec3b5ca4be6d7a48cd9dec98cacda6c5b1a0d0ee10186e87146c57897ce24f5e2f3f7e97ce366a85c0dfc2554ad79055834b68c4ce8c0ee938ffecda7d1c67a7b9d2dfa46d2b04a9543f0d369cc745ac0d746c56a58ac472572ccaae5a9a22f2f741316e23b6ae5a6a6efe2460f4406eae89ad626e83e2904f6bd3febbdb085e9aeb1345aa1332ef44afcfc0a39af"}, @NFTA_DATA_VALUE={0x6f, 0x1, "6c33592a70c762d4cd41bc6c92d0f1e90abd8b6015a36c80a64f80f3ca5f985fe69444089258b41d28c13770ff6bc41f82a27ed2860f65c0839322a408ec3515c9d62b7fa9476b82144a09ef292be8e77516677f86b1637490decdc026cda5a43404f261175ff63e021f45"}]}, @NFTA_SET_ELEM_KEY_END={0x130, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VERDICT={0x50, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x27dd16f4c7cd1d75}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x68, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}]}, @NFTA_SET_ELEM_DATA={0x48, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}, @NFTA_DATA_VERDICT={0x30, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}]}]}, {0x8b8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_DATA={0x318, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VERDICT={0x50, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x6c, 0x1, "1f6172f7ae6ac11f01a009a4bc045ada1d8d1f3e58af143ac1ec7284a3d97fad067cf5e6f0c23adae6e21351d351244b9f404d3456dc0807680187a76bef2f84da88dcc8e93f5e368ff114f25e621edb88f49fc7b818b221b479c06af8f8c4651bfd68f95709aa60"}, @NFTA_DATA_VALUE={0xca, 0x1, "3a44ca87525967c29c04506ab2e7f10d68adcc41af53eb552032773968c66012c16a0cf9aa0af5244ebd15fb32f108b5d99928eee5ddabcfde1cd16fddb2b693d3cf59626b1d4b66b2521d18645258a359d5f7e13b1e264dfba02baaa9b13a7aaa31e216b6ec12daffadc1b952f4a4c91c36ee89701263a4d92f778c2f7e75ef6f6396122dd4bec2a2f5532258918386fc65fe77fc20b1f7e7d897cf75115482504647bd1d93b7b267b1914b5f59ab9387b12fee89f875fb6c2212f9e1aa5934f390e2539352"}, @NFTA_DATA_VALUE={0xb4, 0x1, "f8d884565ef73a69f397506af811dba5605c0ddc2513136b8ee97c0c1aa992baa8bf1882f35f12065fbb4cf40cf7c273a11e4b7805fa8851a394ef411c23a7b96b1433a9a0103a539609eea180b7e254a672a162d00e4e2b45480a3202cb372591e0fca1c390219588bec65999dcbfd06d4108bc9c7c5fed17f93e10aec56508f1a8b6317aeeb57e70034988534837c34c0527357eb17a8d413028b557b462a18ac7a946ee44f459c7d2a8763cddb7f1"}, @NFTA_DATA_VERDICT={0x54, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0x53, 0x1, "3b82b0cf5773557cf9d0e779ac2bbb8e51b3448cb27d06b5146745447486633c533d2b1c499b5e65c3725c11ed3145b86b612ecde434f844f7cb260c767e3793572a1b0305bb0b3f6657f53f518788"}, @NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x6}, @NFTA_SET_ELEM_KEY_END={0x44, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x3e, 0x1, "cd21b879c7e66e03e8708bb7e8ee966ff176457507d7d8c5e58ca3b2eaaa3e1390e34bf329e02d8549e7ceeeca67eada6bb0fa3d9e63bdf6f634"}]}, @NFTA_SET_ELEM_EXPRESSIONS={0xb0, 0xb, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0x4}]}}}, {0x44, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_DREG={0x8}, @NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0x7f}, @NFTA_PAYLOAD_BASE={0x8}, @NFTA_PAYLOAD_CSUM_FLAGS={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_PAYLOAD_SREG={0x8, 0x5, 0x1, 0x0, 0x12}, @NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0xa}]}}}, {0xc, 0x1, 0x0, 0x1, @rt={{0x7}, @void}}, {0x10, 0x1, 0x0, 0x1, @socket={{0xb}, @void}}, {0xc, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @void}}, {0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_FLAGS={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0xc2}]}}}]}, @NFTA_SET_ELEM_KEY={0x100, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0xe, 0x1, "ee87e4fa1625156f3ba2"}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x5}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}, @NFTA_SET_ELEM_EXPRESSIONS={0x104, 0xb, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x3c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x6}, @NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x8}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0xa0}]}}}, {0x54, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_LAST_MSECS={0xc, 0x2, 0x1, 0x0, 0xf1}, @NFTA_LAST_SET={0x8}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x8001}, @NFTA_LAST_MSECS={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_LAST_MSECS={0xc, 0x2, 0x1, 0x0, 0x57b}, @NFTA_LAST_MSECS={0xc, 0x2, 0x1, 0x0, 0x7fffffffffffffff}]}}}, {0x10, 0x1, 0x0, 0x1, @hash={{0x9}, @void}}, {0x1c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x11}]}}}, {0x10, 0x1, 0x0, 0x1, @inner={{0xa}, @void}}, {0x10, 0x1, 0x0, 0x1, @lookup={{0xb}, @void}}]}, @NFTA_SET_ELEM_KEY_END={0x28c, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0xb1, 0x1, "d35efbe617df84e2a83eccea9baa3e1c1968650c2c6de10726c3c910818a754e2c1d18640e0366fd9a01f4d7cf9911d3ab39437f5f8a89550da3c48aff960ba34b8978031526309907ab62d60c6beb7aa9fbb364e37d8297632ea3a8d157aa1878c5e391ef08401fc0cdea9a9450249c2425058cb5c41bc85b49dee9534fbf90a5771a510db681ac0dab49f9bfa6efadb8d70f68e0f926c864f89857f952d3c7a7bd709eff58460183a55c72da"}, @NFTA_DATA_VALUE={0x3b, 0x1, "763de126fb973d6311973d1814cea12111e28aa6821bacbaee00109b3afbbcebd6fabf8ef32f088df489e381c7036be39c4d7da50414f1"}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFTA_DATA_VALUE={0x8d, 0x1, "7138e9c9a76bcf624ef4f7c891850cf10236085e702ae9156ef95054168bde9b0096c05c3bb6030068957bac132fb5bcc28c4936babdca50ce045d979317eb922af7892a192151ab43f41382a205c24cf9b118e289f5407664c4c05d6ac886ef3d83a9514079718c115a041fbedb870b5ac259110346e0af6f6456d5fff9a3a2c969405d5da7338ff1"}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x85, 0x1, "3f2307d8d2c5acd41391102d07b7b6027d23e7ba7ac593e8c76e4b265d95147996c787d79e7b10a456387b5936eba0b071e2d4460e186e2a3c237df48a38f05faaacb85c3931ae5af6028c54d2459c93f11a667b0be7ea876b53ecbbce5dcf34d0e087f0b10a8cc0e2643cc4290b6b9b148ade0cf13c31c361d5a1002cc71eae24"}]}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_NEWSETELEM={0x34, 0xc, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x20, 0x14, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x801, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELOBJ={0x154, 0x14, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_USERDATA={0x40, 0x8, "98e01bfc213a56834dbf5f794a2309664323c9229ea16ba478027593887a5738357f7764e161671314f22389726184f85864ce0a086d1b173db6ff92"}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_OBJ_USERDATA={0xd2, 0x8, "7bba757d0e23be689bbc1d7f8e294f35db08dd310dceedb4f3acc7445dfe7216d3145016bc8266b7b493c8c87d16f80fa1a0deaab8e96f9bfff373fe53d6a7af1ce6d12ae67ef30c5d7335285fa2f244492226c88b58ce69cbc3af79b682a2921830ad694fd65715e1e32bd16b9db2bbbf6cd5b01fad436f5d8c61ac78e42c2dbdc40118334a87a9c8fb9158bfd0f3d033b3c68df956c1be0f09658935b63e5db39d38c0d90fdf4e71f2ab16b535bb933c7ffeda5fb97ac95aa6ac285e4d89067bf31134ac25832822ac3f16b7d1"}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x2264}, 0x1, 0x0, 0x0, 0x40810}, 0x880)
ptrace$ARCH_SET_GS(0x1e, r5, &(0x7f0000006080), 0x1001)
syz_usb_connect(0x1, 0xaff, &(0x7f00000060c0)={{0x12, 0x1, 0x250, 0x9a, 0xde, 0x42, 0x40, 0x5c6, 0x9062, 0xd79a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xaed, 0x3, 0x63, 0x5, 0x10, 0x9, [{{0x9, 0x4, 0x4, 0x0, 0x6, 0xb0, 0xf1, 0x3e, 0x2, [@uac_control={{0xa, 0x24, 0x1, 0x8, 0x59}, [@output_terminal={0x9, 0x24, 0x3, 0x6, 0x306, 0x5, 0x3, 0x5}, @input_terminal={0xc, 0x24, 0x2, 0x3, 0x101, 0x6, 0xff, 0x4, 0x5, 0x6}]}], [{{0x9, 0x5, 0x80, 0x0, 0x10, 0x5, 0x4, 0x5}}, {{0x9, 0x5, 0xa, 0x4, 0x10, 0x9, 0x44, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x87, 0x5}]}}, {{0x9, 0x5, 0x5, 0xb, 0x3ff, 0x0, 0x3, 0x6, [@generic={0xa0, 0xd, "99adb3fd87e89e8fe3ddfac351933f51f52cb07533e964ee6ea887bf23e8a05c6f279bee60843ef62fe6de7929f32c7a3a4f5d3069334a89a09e24da0e6187d0be0994316f15d625b94b24bbb056a41f0e9cffbd1723169a7e08bcf8bcba771d7db5639bfd028c5ff9b89db50c6c8814b155bb7fa5841d14160a4aba271e52d49dd1ed078ad7c33de8746e696c7f585d9b864561d087471d63fa17318492"}]}}, {{0x9, 0x5, 0x1, 0x2, 0x40, 0x8, 0x5, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x9}, @generic={0x26, 0x22, "743b5bd90d68f13b8559837f4ce871365414630a619b6c2aa434d72107e80f1f0c9bdd3f"}]}}, {{0x9, 0x5, 0x1, 0x8, 0x20, 0xa, 0x3, 0x5}}, {{0x9, 0x5, 0x2, 0x4, 0x200, 0x2, 0x9, 0x6}}]}}, {{0x9, 0x4, 0x2a, 0x7f, 0x7, 0xff, 0x1, 0x12, 0x0, [@cdc_ecm={{0x7, 0x24, 0x6, 0x0, 0x0, 'H@'}, {0x5, 0x24, 0x0, 0xc}, {0xd, 0x24, 0xf, 0x1, 0x10000, 0x8, 0x2, 0x5}, [@network_terminal={0x7, 0x24, 0xa, 0x5, 0x4, 0x3, 0xa}, @acm={0x4, 0x24, 0x2, 0xe}, @network_terminal={0x7, 0x24, 0xa, 0x81, 0x0, 0xd, 0x2}, @call_mgmt={0x5, 0x24, 0x1, 0x0, 0x40}]}], [{{0x9, 0x5, 0x3, 0x0, 0x40, 0x8, 0x0, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x6, 0xffff}]}}, {{0x9, 0x5, 0x3, 0x8, 0x8, 0x0, 0x3, 0x2}}, {{0x9, 0x5, 0xc, 0xc, 0x238, 0xdd, 0xa, 0xa4, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x33, 0x3}, @generic={0xdb, 0x6, "425e5d8f0c621221c1db3466ce28f715ce9596db73884622d93fcd4163289a6d511d50aaceaecafb0a657b582fbbc9e631996d2cd16285d42fd0050994f20af64de20316f3eba370cf7fa7b0765dc54855164d714d57eb704684f4a335c7259a1ec318fe331e7141273aacae5cf6b56ae360c6c4dc618fb0f013f9449ad22431290add298a27f83e062b050598c28c2f342cb645cdee3e94e2debb55ae4398e0cdb1e04250995d44211902cf72adcca1480b82cfd1d74672c89cca3e6748b7c851f42a934f339a6f25f56a948560a882a7ff402fc8248d9915"}]}}, {{0x9, 0x5, 0x7, 0x1, 0x40, 0x2, 0xb9, 0x0, [@generic={0x4e, 0x8, "82465c85e0c979d1f9a09afba77c1dc78b7a8290f63c5ccbd36ba3aa9e060c7b2913a0b96269215988faf2ebdbbf687ed3ab82c2bd61b7c740030334e391fe747d3b3874297956f6f1a9680d"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x9, 0x3}]}}, {{0x9, 0x5, 0x3, 0x10, 0x200, 0x6, 0xc, 0x3b}}, {{0x9, 0x5, 0xa, 0x0, 0x3ff, 0xc, 0x4, 0x9}}, {{0x9, 0x5, 0x5, 0x10, 0x400, 0x6, 0x81, 0x1, [@generic={0xf9, 0xe, "cd65bf6d0aa93e6ae0d50c990df53ddb377d46cfa670180aaa4a1a12ce7a5ad08c1864ca933b5f830ef4de814a11eebf8cf6f1d6f31e183629e87a323a13e33eea1fc6241da314038c9ab5302c2019acddc3be12eb952099a3499e33d0b0fe9749f9c97ef95a42f99819ce9d4845f9fd88e7a11469f92006b8099f12eb1b6df932c7ac66baad5f91ffe1c5a18095c3563e1f6fe567d60b25c7bc933dc5e708ac03f3077e81318acaf0cc4976e893056065e4556c84e0adb5f4336f9de8e021249cff83c604ef3536d281d2292252632d605f25425980fde8299f8e6f0f62c438361c68c72433ce35ef8a48dfbbb640955da4e8150f1474"}]}}]}}, {{0x9, 0x4, 0x9c, 0x0, 0x10, 0x7d, 0xd3, 0x47, 0x81, [], [{{0x9, 0x5, 0xd, 0x0, 0x10, 0x3, 0x98, 0x9, [@generic={0xa7, 0x21, "c81348490e20fb4286e9eaa31befc18f628c61881cd1170bd8c391c503cb3185b40ae5bb855ce763ef5c0b5dba55eca95abf6f4c464de9b47d7f1a804226f19d7400792324e30e19d8cdfcd890a6a1e74f461313372c93959d367cd7a7ed079a5e93a553bb5c5a11d759c8c19381282226605e3d2738bf09e00f5229ed533715cdbc236577d65fab292037974619e0ea304afc27b9edde47575f9f1633c8dff160a642d8ec"}]}}, {{0x9, 0x5, 0x3, 0x4, 0x10, 0x9, 0x80, 0x6}}, {{0x9, 0x5, 0x0, 0x10, 0x200, 0x6, 0x3, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x1, 0x1}]}}, {{0x9, 0x5, 0xe, 0x0, 0x40, 0x4, 0xbc, 0x6, [@generic={0xda, 0x23, "3b6c81e4ace8e1bb3836d041325749f7abc46b37c96699387783f57bebb22044caf10c2dc6eb32c7eefa9e989aa7c98d1c9025958ac5ca5c38bf18ced1053c88aea25537500acc6e27ebf83d059f09290287b4b56da5c0211f41ae42d29073828078b5ec5d555c48b255423f0c3c01e54aaa9e00a8f6738b8707c6cc546d5e405558056c1ad0b114b6292f2a48850e5b02484177665720d3daca0dcd9f74a09943bd345a797f1670f13d9f62a20ad9933670645beb20d8cb44ccce7406568b8558eb640e901c52fa47c59477f33be667f7df680d51636eb3"}]}}, {{0x9, 0x5, 0x8, 0x10, 0x400, 0xe0, 0x7f, 0x8}}, {{0x9, 0x5, 0xe, 0x10, 0x200, 0x5, 0x3, 0xb2, [@generic={0xa9, 0xb, "9aaa443e4a8e310c321f278e84a650cde99b42a45c30761731404f3d56fe31dd65311efd6e1c4dfff13d2e70219f49a401d26018e02637cb358c3fdb6cfa8efe89785ac522702134db4a457a7071f1a6d44b94fd57ed5ae570d4c04918aa48f20d14b28c5389ea9ac82ab980eb1d6429fb0840ef78506d5a2d250144aa7652fb066f423d7fb2a1f19f7fbd4f0d45276e385eb3215bd0faab1b17fd1c0c013e92179efe9fc94299"}, @generic={0xd1, 0x8, "e11289f1da7e2dea30810b9ca5d63632e4780f919eac28c5af4f3f0823842b4da566c0b5b0e9c079803bacef85e28695d31363fc4590a23ed374f2a5557da093c7f98801437bdab09b66dd671c9496b217b2974f7dad6e7b5b15e6ef2f4dfcb1d0d572f0bcb4c44eb02834837e85d09a2ef4288c19c23e0342538eaf3c8f721d7cc52afb49fd8b0f54c99f13793e82e80dde0858dd038061a34c193827bc2833c5cfcbaab20f191be69f1313ab14a8e8759b4f37471e9cb84cf29d9bac7bdf994291a5af5956e0a67bc05eb57e4b47"}]}}, {{0x9, 0x5, 0x2, 0x2, 0x200, 0x6, 0x7, 0x8, [@generic={0x70, 0xf, "304494de5172600774527855b493d557ab3aa0af8d443a1728aef864fb17a8dedd5f39be824335ed256c56eaec5b13a25716ac082b0df0c6a66043580517b2345f2950820336b495256f9b5378d2737605061f23d8af38d0ddc52e48e45f956d8e58ce01329b00756e846e8ede77"}]}}, {{0x9, 0x5, 0xf, 0x4, 0x8, 0x7, 0x6, 0xfd, [@generic={0xd2, 0x1, "47c870ff4b2b7127fc8f656e268f6082d94e55c2ed8758a33cfed636ab244123cca8fa47cd6f130af54140264e05c6a198526476d210def4937795b3e98d41dbf1abadbcfe74afa31e76a3e097b8eeced61e94eb58f7a2e2b96c63cd349cef41e3069f1827b54e09965268dc9172ebcf5cd401d538b4b1788831efc3c14721518dfdc048c1a887e3fec38b49556ff49813cc5d8df61fe8ce55b0a719b0683632d0e3a9e6f2cb55e0d7c94df9ca8dad16b3a56bc63e766556bbf94a2e1f4eb1b23270dae590717115ce49b8bfef2fef55"}]}}, {{0x9, 0x5, 0xd, 0x4, 0x40, 0x8, 0x9, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x5, 0x1}, @generic={0xa9, 0xd, "dad72134e24fe75b37f8d32cb5a3d64000d504f67d1770006d7485d7d651ab79324b92137170c95aca1c405fd0beb98ff14e8289452668ec936afa9cf7b6d27bd806783c7e6b64c829812870f8a0a986f8a936cc670c5807a1ca604f7fe639cd06194dd517fd0b3965e7f2600119af6e4e7ca48596e305bd767188ecf89724e93bb65ee3cdcd6c9603d96757e13adf69060ab32473e45b2281cec1f82ef957afb7c916df4243e9"}]}}, {{0x9, 0x5, 0x0, 0x10, 0x400, 0x0, 0xcd, 0x5}}, {{0x9, 0x5, 0xa, 0x10, 0x3ff, 0x8, 0x9, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0xb1, 0x6}]}}, {{0x9, 0x5, 0xc, 0x4, 0x400, 0x96, 0x1, 0x4}}, {{0x9, 0x5, 0x9, 0x4, 0x3ff, 0x7f, 0x10, 0x0, [@generic={0x7c, 0x10, "4a8446db641454f3506c880517ac870ab9a5b6611af52923048c7dbc6f792b5b70a2bff75207d4fbfc554259d5bd5443451de9487b8f864f7c7f702cd8d3c8f73ad5787a299577890b7658ddbf01bef881fb9278477a7870a3b29a5d24e354b857c249e302a89c2940d68a905c0fe889eed6e526b7438894322f"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0xd, 0x5}]}}, {{0x9, 0x5, 0x88, 0x0, 0x60, 0xfd, 0xfa, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x40}]}}, {{0x9, 0x5, 0x7, 0x0, 0x40, 0x3, 0x6, 0xfa, [@generic={0xe6, 0xe, "621fc73d86879608b24daeb3fbd7970dcc9c759a6ba1135ce881a8f443c806ecb17e87d016b6ce8f7a00f95537f7efbb0b3ecce16b1ac26f4734cbbb0fd24b243fde886b86d5dbe68a23473352eb04de4c0576a53941a4abbee782ab1fded668378b608e549a1a11dbc8f089eb67643e3129d055cd8248e99bfd2a5986f9dfd8b46e20d1dba29d29cb758dc954c515136ae87d46bd97eea94e6e2406fad949d1df906284c68c2c76ec6dea9d7346e0aecf44e117876d01f0d0081301359c38d8c73d73b8d7ddc9be7b2068de4067b598ddf497b29f13e443324bb39c6682990251c5a04b"}]}}, {{0x9, 0x5, 0x0, 0x10, 0x10, 0x4, 0x3, 0x2}}]}}]}}]}}, &(0x7f0000007000)={0xa, &(0x7f0000006bc0)={0xa, 0x6, 0x110, 0x1, 0x2, 0x8, 0x10, 0x8}, 0x180, &(0x7f0000006c00)={0x5, 0xf, 0x180, 0x3, [@generic={0xcc, 0x10, 0xe, "f767ce28cc755cec2e2323e03574cdd0189e8ff187966c729789bc809d55f99e0e540ab1378a5e73f13116f06f8f4334e0556d465be18f99a2cb904d20891de498536cb35bb6331bf98c091a5731237848f5fdf52c99de0ba4bdf6c0e62c663359e57ce3b9da08ca618bf4fd0d07a5e78f1f84fb982a346727062afa89169e1a11de9d9191ac2162b51358df8f215252ad5043b89e73ba485545989d6ffafb87ff6623de2eae05f1f2300af6779317523c85d25920cc9fdc33ec93f1fd7753797b93c79cc29e5f40d5"}, @ssp_cap={0x14, 0x10, 0xa, 0x3, 0x2, 0x1, 0x0, 0x4, [0xcf, 0xffc0cf]}, @generic={0x9b, 0x10, 0xa, "8e0d2d3e91d47996e50f3ca9de5c89d7686cf3d75f002c7ec3cad77bb46ca9aa773d261b7fcc996689956209e731f55e93fa3d7b470298d3b7243cdcfac247cdbffe0a442d368c653517edce668336aa0f90d152af54623fff80f612a36512dff53dbb46bf7c47e8fa0be5e48149f6386491ea4eb505055bba2212932af0df8e181fe36ed7190bec5fd65c5d377dd4ac4372b19b446a6497"}]}, 0x8, [{0x4, &(0x7f0000006d80)=@lang_id={0x4, 0x3, 0x41d}}, {0x4, &(0x7f0000006dc0)=@lang_id={0x4, 0x3, 0x41d}}, {0x4, &(0x7f0000006e00)=@lang_id={0x4, 0x3, 0x1809}}, {0x4, &(0x7f0000006e40)=@lang_id={0x4, 0x3, 0x459}}, {0x2a, &(0x7f0000006e80)=@string={0x2a, 0x3, "60fd28008e955476f79723ed7f853cdaf91939ce9be3be4b7300f3ed475b8c7dc964d49b659cb38e"}}, {0x9c, &(0x7f0000006ec0)=@string={0x9c, 0x3, "9895a486af8086efb9a80dfe9dbeadbec0e85a1cdfc806ef484cfe5233778d946a71a2f524a4ae69764b73c20d8c2bae0ae96b5c6e31c352ec9b1df7f1d5d73e910232e48811409d1e17174ceaefa416f3cb12c8ee7b334a2fa06d652ebb74bd8881749ce478be5b5fd66e38adfca72a95a760f1d5311b41c37342d66eebdfc9c9b97e7d2fb45b6c2435c7464853c30dd4e44e6dcf7e667d7c6e"}}, {0x4, &(0x7f0000006f80)=@lang_id={0x4, 0x3, 0x459}}, {0x3, &(0x7f0000006fc0)=@string={0x3, 0x3, "e6"}}]})
r8 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000007080), 0x200480, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r8, 0x3ba0, &(0x7f00000070c0)={0x48, 0x7, r0, 0x0, 0x1, 0x0, 0x0, 0xe569})
syz_usb_connect$uac1(0x3, 0xb6, &(0x7f0000007140)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xa4, 0x3, 0x1, 0x40, 0x40, 0xff, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0x4}, [@extension_unit={0xd, 0x24, 0x8, 0x3, 0x0, 0x9, "0c394a8dcdf8"}, @output_terminal={0x9, 0x24, 0x3, 0x2, 0x3fd, 0x5, 0x5, 0x2}, @feature_unit={0xf, 0x24, 0x6, 0x4, 0x4, 0x4, [0xa, 0x2, 0x2, 0xa], 0x5c}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x3ff, 0x4, 0x8, 0x9, {0x7, 0x25, 0x1, 0x2, 0x65, 0x5}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0x80, 0x2, 0xfb, 0xa, "d5825f73d98508b206"}, @format_type_i_discrete={0xf, 0x24, 0x2, 0x1, 0x80, 0x1, 0x0, 0x2, "cd57f5c17b4641"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x6, 0x9, 0x7, {0x7, 0x25, 0x1, 0x0, 0x3}}}}}}}]}}, &(0x7f00000073c0)={0xa, &(0x7f0000007200)={0xa, 0x6, 0x300, 0x8, 0x3, 0x8, 0x8, 0xd6}, 0x10, &(0x7f0000007240)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0x4, 0x80, 0x7, 0x9, 0x8, 0x2}]}, 0x3, [{0x62, &(0x7f0000007280)=@string={0x62, 0x3, "dcba722db7b50d044fa1bfe59aa95df97c58898efa057b40ae633324c02ec50709d17d462cfc039fb9eabe261cd137b883ba5715af6cfd14fbf26834cf28c68f289a375b603d16edef171970b95aae6e0e8096aaef37ddc962629c6eaa9f696d"}}, {0x30, &(0x7f0000007300)=@string={0x30, 0x3, "d2149158d34c535aec98200c2dbc82cbfefeb90b4677be48e1eb25dbb1bf7e301858cd5eb84fd16c841b7fa478ad"}}, {0x64, &(0x7f0000007340)=@string={0x64, 0x3, "c15a91bdcb3e1fd245ce5805fe7d97eb831fab3fe4c25e9169bbd1ed8737c04ff6e87846fbf189167b23d69ff4350bb4cbeac5131bfee1600e254bcca00f44e6348af3e7d344355c85d794853d533deace29d4847408aba0e091160c8495cd768ee0"}}]})
syz_clone(0x1a000, &(0x7f0000007400)="765bb6c326d2b88edec42318c89f2811cd7306821cb728ce8d3cafe9d86897f14bcd681095", 0x25, &(0x7f0000007440), &(0x7f0000007480), &(0x7f00000074c0)="f1cd6548ca901661ce4da8c646f4778ed1bd99da9792d38030e59cb99e5fecc18f83083b1c1d4803578109e3d28f289128933ec63a7017d3e034fb2f09acc27c1471bb147e7b95eecaa40eab90b4bdd36dc474342c342769d9c20a4a76e09e2d3198a73d6f779b52815b793050cef9cc63c5fd3b391f5e4af31636263ebdb3621af57a")
r9 = syz_clone(0x8800, &(0x7f0000007580)="9c1e88f9404b9b1f9536e0ac2153a8e439d39dcbb16beeffa152dd758cce7cdb6a1d71e399d70a9c380e68d3529449fe65156ad72cc98c4eddca540ced856d5a9b1118387e688bb7e1416f8790cfc6b740c01701e9151c368997573a317ecc", 0x5f, &(0x7f0000007600), &(0x7f0000007640), &(0x7f0000007680)="d95a5630591e95bdaf8eaee671ba8c77b3d2d6c95bb13a16b830720984ab5ce73cffbf043135ed90dc4c6e2a6a6516c8393b960ca00fe65615fac6df24c721b6c7a6fcd4da9372cc94a4d1d6f772ebfb9fdddaea06787535a9c51bcd5b7a3b9a4dcda64e5f66c03f20bae768b7dd69fc5ceef9015c42a5d71db41b21afc0ae29d24ac18fdc10db3f06d696c52799aae4")
socket(0x25, 0x5, 0xe)
ptrace$getsig(0x4202, r9, 0xb, &(0x7f0000007740))
fchdir(r3)

18.475586803s ago: executing program 0 (id=3719):
r0 = fsopen(&(0x7f00000003c0)='udf\x00', 0x0)
fsmount(r0, 0x0, 0x0)
write$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000040)={'some', 0x20, 0x17e, 0x20, 0x100002}, 0x2f)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, 0x0, &(0x7f0000000080))
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000280)={0x3})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, &(0x7f0000000000)={{0xffffffffffffffff, 0x2, 0x9}, 0x3, 0x1ffc})
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, 0x0}], 0x1, 0xe, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000500)="b8010000000f01c10f22a10f20e035800000000f22e066ba610066b80a0066ef66b832000f00d0b8010000000f01c166ba4300b0beee0f793c1e2e643e2e3e650f79288fc878c15b0e3f", 0x4a}], 0x1, 0x21, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)

18.416886552s ago: executing program 0 (id=3720):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x50000}]})
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r2, 0x0)
accept(r2, 0x0, 0x0)
shutdown(r2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0xd)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000000c0)=0xfd)
ioctl$FIONREAD(r4, 0x541b, &(0x7f0000000100))
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x2a}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c)
sendmsg$kcm(r1, &(0x7f0000000980)={&(0x7f0000000140)=@generic={0x1d48ccbffe0aa7e3, "d3880fd7652f127c51cb75e784428034f7fdce2b25d6fe2e55f69871f5ee9d6f8b284969693312c9027966af03678c7891783c23c58cea025e0cbf430e5ae751637ffe1f05bdf2014ccc281bcf2c70894792281e1758e58e0d64fe1aa05bcc55580108ad58f48aba1e233f80c68933a13cc5162bc541df85ebd25078da6e"}, 0x80, &(0x7f0000000380)=[{&(0x7f00000001c0)="fd09681c45b254bcc02a4943de38a9bb0def757a0da6402db21becb28968f3c5981a42a6ed943fd931fbc431c03b098fd304a1c81e3b0f28d021b18d395116ed7b64ff62043ea11ce108bbdfdd11095644bdcfe72203d6ece27d980f82c4e5206b55fb1bc1f4080bd5daf852266fae8daa71c95279fbb0e50cc4379f51a7f75b9d365ea37ee2ad3eee37e316958517394e44f96c48f419b295bd3f6c842b46bfd14dcee9e630c0afb8dc30d5f8e65b189ed13c7be2570b76112d03", 0xbb}, {&(0x7f0000000040)="00cac1c4f2187dc9", 0x8}, {&(0x7f0000000280)="d1d38de1079fff6a6dad393062f240b24dfbea613168deacede9fb307c2ac330fa3c01a9d39e64d86e88de17", 0x2c}, {&(0x7f00000002c0)="12155781765ccaf94fe194738f097c99014bd568e73b064f4ff5ed9a2213189bb03e6c98f00cb086c7200877c0f4abf9615e2ca7c01d21b351ef2afbaacc25e03dddcbccb83e71a9fefb99845d968ffb8a4124334b7b4c1117e8013a70c2f2140eb581b51ec21233813a8f668650536f87c4fc35bc74bd9258e03e49bc4f3ccb456a", 0x82}], 0x4, &(0x7f00000003c0)=[{0xb8, 0x112, 0x0, "20ca343b74282475464ca754d7afe15ff2d8352e757c63dc79af5bb2dacf217110073496475e87387d886162bd78e3d89c0ce5199b8d3236933b85c82a0ee6484606e8e845f65f6974f823cf590f36c7c40899616a1677659a7f298bfcd8d9c5f4cd30e15f00940383ec175127159cb91e98ab8cd11d07cd0c8151e1904efe857aa2cf12ee98edbfdbcb97d29cc9c0a85c3327cc673925550ce7eee6ef3c346bddaff5df"}, {0x108, 0x113, 0x7, "c699bd2b81ffc226cf0b467ae519ce0ba5a7c7106c097e549c6f40da1f7030e607d5f92c976c5c36491a800547ecc47eb23f57f85fedc87d2022f6b49d0dc77d068a7377869eaf3a55ac9b862bddfb296ec60a9bb43091588830c55a426e79289bd255ad03865162a48875a850e6f6f390e91ad1b64737ccc120ab61d15e89c6b19e091f8af97c68c9dc33994a556ac84ebdd1ee3254c72837a400e5b48079101aab80e5588fe0a09395c71877067c97fe6eaada9d1f78a365bc5e07c81ea5ae6d970460515b271fd2e1d26cd24711d6cd78eaf49092e8eabbd9098764a9ec065f2b8934d3d813b95ab2b1f34960bd1ff591"}, {0xd0, 0x8d, 0xc, "871b3614afe823c1d6bfd4559e26ff3e942591cd68501ebbfe4886c9d377a37d03b46928edc9e853ab6214d373ab863e071a285a04602ff1acf0e86b9e4e44402b6d7591b8c0df65b71b38a4bf638b44d79630f802dc664b92d654f3a13b5783c94ab8d8fd75b2dcf688f97ed263798c8aaf1813d80a02456ad0ef785a6a4dfbb012e821b1f84e759b3fdcfeb60ec0a91a7c559a92360eb8b1c676fb0af34bc9c7334fb54b2ab53b75b421ccb80416d9e26e6d4eb55ef6f046e009139b"}, {0xd0, 0x115, 0x4, "ae57506a34cf90c0f5af6a84cf0d2b1f1b204e148f508fb7d34fa632721c18ce7222ceaad5c3a270f4e6b99a154b7e44e3cc3e122cd21429b2f5e24e97a87128dc6465a99f6d5d294ba24259824ca673a5f30bbfe606211c67d6985dcd5a7461c1377f499b8606f1ae714486d22e7b0d98009326f600179639cc0ca0a1d06aa16ded6446c2f39a847f599c90391afacb8f6fd2bfbcb0fe03a7832d5cffe0d2473dab975ee9bae8bf054bab088ef555b51c7dfa92d29cdd918b49"}, {0x30, 0xff, 0xffffffff, "af9fb883c1ed22dd8c380bba5c2f465a51c300fd195465f608539323112409"}, {0xa0, 0x116, 0x3e27, "8133556342454711c1fd2741df5cfc2b3f3c1843699f652a9d2a337301838b8be9b5893a590eb38158b724d45357bf2034c910c9a0d27fcf8c8a01fcb96108e9e721db403a6e6291943834c322aa9f2b45da4a77c3974afa42a0f3d090fbbe37d27ce77f34f7c48c36ea1434902e7efd92248ff3287c9260cd30a56e2ebb73e97392fb4425e640ed2e9b009b"}, {0x48, 0x10e, 0x800, "d3b1c918cb842a75807dd7a282a740305b658eb820cacd04f75089194f22628175e3c8b34aebbbaf4bc811a8b2a759f60d1c61"}, {0x90, 0x0, 0xda, "f54a25355c063bbbb9b125ded86f7e1d3add25c79df0c45091f3603e5c2d294c8ff0a8589744ab17ed5bdde29f3e90c3f293e1f70ed6a8e9183c9a462d6d448ab2e1b17581ac2d57ac3e285eca3bb715016a7a28e981c22da6083f4f1b7068c76447cfb22ec89f218653847e5bf4550df484ad57ba01cf3aeb58546f"}, {0x98, 0x0, 0x4251, "0be6ff7d383de315ea333a39ad7ee84b286ba20ca774e461495c43163450b07d938de3b347c77822c5d2e94973e1508a1ebe37356b390ca0da027a1a457eb0ef3e2fac52718c3d6709ca7c23f2f42fead414eedb00ee25e99ab2a70b025e14d58deafe72a68025bac04fd0582a75816b054ad2ce025623ece0c93c986f0101cf817b15d2c4da0acd"}], 0x5a0}, 0x1)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_FLOWINFO={0x8, 0x7, 0x4}]}}}]}, 0x3c}}, 0x4008080)

17.505925068s ago: executing program 4 (id=3732):
r0 = socket$inet_sctp(0x2, 0x800000000000001, 0x84)
sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) (async)
sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
sendto$inet(r0, &(0x7f0000000100)="f9", 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x1, @private=0xa010101}, 0x10) (async)
sendto$inet(r0, &(0x7f0000000100)="f9", 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x1, @private=0xa010101}, 0x10)
shutdown(r0, 0x1)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000004c0)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x34, 0xfffffffe}, 0x9c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x9c)

16.588210809s ago: executing program 4 (id=3746):
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0xffffffffffffffff, 0x0, &(0x7f0000002780)=""/4096, 0xc26bfe8e8f6baca8}, 0x20)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
shutdown(r0, 0x1)
sendto$inet6(r0, &(0x7f00000002c0)="41d8", 0x2, 0x800, &(0x7f0000000000)={0xa, 0x4e24, 0x7fffffff, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0x6}, 0x1c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r2, 0x34}, 0x10)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000003980)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_ATTR(r3, &(0x7f0000000240)={0x78, 0x0, r4, {0x2000000007, 0x0, 0x0, {0x0, 0x0, 0x55, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x1ff, 0xa000}}}, 0x78)
r5 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$FUSE_NOTIFY_STORE(r5, &(0x7f0000000240)={0x28, 0x4, 0x0, {0x2, 0x1}}, 0x28)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=<r6=>0x0)
prlimit64(r6, 0xb, &(0x7f0000000180)={0x4, 0x2}, 0x0)

16.575057862s ago: executing program 4 (id=3750):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0xfffffffffbfffffe)
connect$vsock_stream(r1, &(0x7f0000000040), 0x10)
connect(r1, &(0x7f00000000c0)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e21, @rand_addr=0x64010101}}, 0x80)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
syz_open_procfs$namespace(r0, &(0x7f0000000140)='ns/uts\x00')

16.284048802s ago: executing program 2 (id=3755):
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2, 0x1}, 0x6)
r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=0xe, 0x80000)
flock(r0, 0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r1=>0x0, <r2=>0x0})
timer_settime(0x0, 0x1, &(0x7f0000000100)={{0x0, 0x3938700}, {r1, r2+60000000}}, &(0x7f0000000140))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x3938700}, {0x0, 0x989680}}, &(0x7f00000001c0))
r3 = syz_io_uring_complete(0x0)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f0000000200)={0x1})
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f0000000240)={0x5, 0xfffffffffffffffe})
rt_sigaction(0xf, &(0x7f0000000300)={&(0x7f0000000280)="66400f7d5b0b362e66440ff97f078f09709105ffefffffc4c1f8514a8e642e0fae31450f0f2f1cc4424d9cdc64660f6979d86543df6d05c441a9f377af", 0x0, &(0x7f00000002c0)="8fe99801b47ad1000000410f2a5202400f01c08f09a896ddc4c355400a0066f30f1ef640dccdf20f517b00c4435d49ebfec4223d96b4b7af000000", {[0x7b7]}}, &(0x7f00000003c0)={&(0x7f0000000340)="42d9e140dbebc4614d699600000000660f38dff3f2440f5ff08f89d801ef360f381c01f2a5c4c1f97eb501000000c40305692c9883", 0x0, &(0x7f0000000380)="c46148161def68000066450f2e5d60c4414955ff66420f696e002e0fea7eb8f20f5e910f000000f3420fa7c8c4e18b590ac4017de601f20f59470b"}, 0x8, &(0x7f0000000400))
r4 = userfaultfd(0x80800)
write(r4, &(0x7f0000000440)="682d195164895fcbd31ee7923f5eab5e00f46deecb5d01486b69cdda1c1869517eb590e15a26d1afa1b8", 0x2a)
unshare(0x40c00)
execve(&(0x7f0000000480)='./file0\x00', &(0x7f0000000500)={[&(0x7f00000004c0)='\x00']}, &(0x7f00000006c0)={[&(0x7f0000000540)='$%\':\\!\x98}\\{(\x00', &(0x7f0000000580)='.\',-[\x00', &(0x7f00000005c0)='\'\x00', &(0x7f0000000600)=']}\\@:\xc9\x00', &(0x7f0000000640)='*]],-$@\'--\x00', &(0x7f0000000680)='$]$}!}c\'\'@\x00']})
timer_create(0x7, &(0x7f0000000700)={0x0, 0xe, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000740)=<r5=>0x0)
timer_delete(r5)
timer_gettime(r5, &(0x7f0000000780))
r6 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x7)
ioctl$TCFLSH(r6, 0x540b, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000007c0)={'wlan1\x00'})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000840)={0x1, &(0x7f0000000800)=[{0x800, 0x0, 0x6, 0x20d1}]})
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000008c0)=@raw={'raw\x00', 0x9, 0x3, 0x2b0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1e0, 0xffffffff, 0xffffffff, 0x1e0, 0xffffffff, 0x3, &(0x7f0000000880), {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast2}, @loopback, [0xffffffff, 0x1353e84c84136002, 0xff0000ff], [0xffffff00, 0xffffff00, 0xff000000, 0xff], 'netdevsim0\x00', 'syzkaller0\x00', {}, {}, 0x84, 0x5, 0x6}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x18, 0x1000, 0x9, 0x3, 'snmp_trap\x00', 'syz0\x00', {0x6}}}}, {{@ipv6={@loopback, @empty, [0xffffff00, 0xffffff00, 0xff000000, 0xffffff00], [0xffffffff, 0xff, 0xff000000, 0xffffff00], 'veth0_to_bridge\x00', 'tunl0\x00', {}, {}, 0x2, 0xfc, 0x0, 0xc}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000c00), 0x20200, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000c40)={{0x1, 0x1, 0x18, <r7=>r0, {0x101}}, './file0\x00'})
setsockopt$inet_tcp_TLS_TX(r7, 0x6, 0x1, &(0x7f0000000c80)=@ccm_128={{0x303}, "fd0ab0a4e5fcdb65", "f6d6d061f446d0ffccba0a5ee6074fa4", "d9556ac3", "d828a30ed42b9730"}, 0x28)
timer_getoverrun(r5)
timer_create(0x6, &(0x7f0000000e80)={0x0, 0x3f, 0x0, @thr={&(0x7f0000000cc0)="a8881205b79dfd0f2323ef35c1d4feb2752a45c6fde3ad4d886ee813bf4fe92073948404eb04455065dcf7edbccb014bb9830022c151dbcd15660c896a99019b38e999ecd5ec97bb4dba4db7a4b6b9a831970dba25d0ea67b0671021e9e722a2545ce4491a7a577ae78386a410c6d3d8b3b7453d632a42e44baf303b01392176da6bd1b57f268856be01ba68fb45d1fd2f8fd4959979e7d9e8af49c68a3f1cbcb49718d75fe80695f2329cb762e5510f7f40619c16d74f3d90322b5815c648f50745e4a92478149b0677d84705134d06bbf88cce5cc4146f8a14b37b8df94dcc598aba0f68adaab1167ad6f7ab1fc8aa9886d0e0", &(0x7f0000000dc0)="0f5cbf05fab6701218398bc863f21c982697c25ff354550520d8e92ac9c9a1ae38765be10301273e69ea92e5db364f5a9b96f0843ffbea956c50c902311098cd431fee393de101f5141faf1100ed3ab14b99a2c11a51d43ebf16f5f1c497ff22e5e3b9dc577239185adab5ae7bca937db92c6e9205f2a7476c968babe8bb7da2feabe97669c2ea2b4f0fb8ac900abda20e5a19c2"}}, &(0x7f0000000ec0))
r8 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$F2FS_IOC_SEC_TRIM_FILE(r8, 0x4018f514, &(0x7f0000000f00)={0x9, 0x8, 0x2})

16.283767155s ago: executing program 2 (id=3756):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) (async)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0) (async)
recvmsg(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='devpts\x00', 0x0, 0x0) (async)
mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x28, &(0x7f0000000240)) (async, rerun: 64)
r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0xe, 0x141341) (rerun: 64)
ioctl$USBDEVFS_GET_CAPABILITIES(r2, 0x8004551a, &(0x7f00000002c0))
open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1800)

16.283112688s ago: executing program 3 (id=3757):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[@ANYBLOB="54010000100033060000000000000000ffffffff000000000000000000000000e000000200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="040000000000000000000000000000000000000032000000ac1e000100000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a002300000000000000000048000200656362286369706865725f6e756c6c2900000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c00040007"], 0x154}}, 0x0)

16.205007644s ago: executing program 3 (id=3758):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0xf0f027, 0x1})
getresuid(&(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0), &(0x7f0000020180))
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000880), r3)
sendmsg$IEEE802154_ASSOCIATE_RESP(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000008c0)={0x1c, r4, 0x101, 0x70bd2b, 0x25dfdbfb, {}, [@IEEE802154_ATTR_STATUS={0x5, 0x3, 0x3}]}, 0x1c}}, 0x20004000)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000480)={0x0, ""/256, <r6=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000680)={r6, 0x2})
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r5, 0x84, 0x4, &(0x7f0000000000), &(0x7f0000000100)=0x4)
ioctl$SOUND_MIXER_WRITE_VOLUME(0xffffffffffffffff, 0xc0044d19, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r7, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r8, &(0x7f0000006300)={0x2020, 0x0, <r9=>0x0, <r10=>0x0, <r11=>0x0}, 0x2020)
write$FUSE_INIT(r8, &(0x7f0000000040)={0x50, 0x0, r9, {0x7, 0x1f, 0x0, 0x10408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r8, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r8, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb1000008747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb80035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22383e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485a4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2245eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e4c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad64c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc590800", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0xfeffffffffffffff, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3966, 0x1, 0x8000, 0x0, r10, r11, 0x3, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setresuid(r2, r2, r10)
syz_emit_ethernet(0x13e, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x0)

16.204748086s ago: executing program 2 (id=3759):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x106f)
sendfile(r1, r0, &(0x7f0000000180)=0x1189, 0x8000000000000001)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)={0x34, r5, 0x1, 0x0, 0x0, {0x2c}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x4004)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x200, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@TCA_RATE={0x6, 0x5, {0x1, 0x9}}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0x0, 0x3}, {}, {0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x40, 0x6, 0x2, 0xea, 0x100004}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x34, r9, 0x1, 0x0, 0x0, {0x10}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x6837}]}, 0x34}}, 0x4044890)
r10 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000040)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={@fallback=r2, r1, 0x0, 0x10, 0x0, @void, @value=r10}, 0x20)

16.202946389s ago: executing program 2 (id=3760):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
write$P9_RLERRORu(r1, 0x0, 0xd)
r2 = fsopen(&(0x7f00000003c0)='udf\x00', 0x0)
r3 = fsmount(r2, 0x0, 0x0)
write$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000040)={'some', 0x20, 0x17e, 0x20, 0x100002}, 0x2f)
r4 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
ioctl$BLKPG(r4, 0x1269, &(0x7f0000000040)={0x3, 0x0, 0x98, &(0x7f00000000c0)={0x800, 0x1000, 0x11}})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
move_pages(0x0, 0x1, &(0x7f0000000140)=[&(0x7f0000000000/0x1000)=nil], &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR_vm(r3, 0x4018aee3, &(0x7f00000002c0)=@attr_other={0x0, 0x7, 0xd, &(0x7f0000000240)=0x8})
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xeeed8001, 0x2000, &(0x7f0000000000/0x2000)=nil})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x34, r8, 0x1, 0x0, 0x0, {0x10}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000041}, 0x4044)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000200)={0x6})
ioctl$KVM_CREATE_PIT2(r6, 0x4040ae77, &(0x7f0000000280)={0x3})
r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r11=>0x0})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000000bc0)=ANY=[], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r11, @sched_cls=0x2f, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x4}, 0x8, 0x10, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x80}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r3, 0xc0505405, &(0x7f0000000000)={{0xffffffffffffffff, 0x2, 0x29}, 0x6, 0x1fec})
syz_kvm_setup_cpu$x86(r6, r9, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, 0x0}], 0x1, 0xe, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000500)="b8010000000f01c10f22a10f20e035800000000f22e066ba610066b80a0066ef66b832000f00d0b8010000000f01c166ba4300b0beee0f793c1e2e643e2e3e650f79288fc878c15b0e3f", 0x4a}], 0x1, 0x21, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)

16.202739569s ago: executing program 3 (id=3761):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0x6000000}}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)

16.135680576s ago: executing program 3 (id=3762):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000040), 0x2, 0x2)
ioctl$VIDIOC_G_SLICED_VBI_CAP(r1, 0xc0745645, &(0x7f0000000100)={0x8, [0x103, 0x8, 0x8, 0x7fef, 0x5, 0x8800, 0x2, 0xfffa, 0xfc01, 0xd, 0x2, 0x18, 0x401, 0xa, 0x8, 0x2, 0x7, 0x8, 0x7f, 0x0, 0x4, 0x3, 0x97, 0x2, 0x2, 0x9, 0x81, 0x1, 0x3, 0x8544, 0xa, 0x15a, 0x6, 0x7685, 0x98bd, 0x7, 0x8000, 0x8, 0x5, 0x12, 0x0, 0x5, 0xe9da, 0x12, 0x9, 0x6, 0x400, 0xfff8], 0x4})
r2 = socket$caif_seqpacket(0x25, 0x5, 0x4)
setsockopt$SO_BINDTODEVICE_wg(r2, 0x1, 0x19, &(0x7f0000000040)='wg1\x00', 0x4)
connect$caif(r2, &(0x7f0000000940)=@dgm={0x25, 0xa}, 0x18)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x2)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x10003, 0x5, 0x2000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
ioctl$TIOCVHANGUP(r3, 0x5437, 0x200000000000000)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x1ac}}, 0x0)

16.085664085s ago: executing program 2 (id=3763):
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f00000003c0)={r0})
r1 = socket$key(0xf, 0x3, 0x2)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000200)={r1})
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="34000800fdf55c3e9c020a4d7965f055c66db4e580ed97567edacc1b368abc13a51e02bae0488e"], 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
write$cgroup_int(r4, &(0x7f0000000280)=0x65b, 0x12)
syz_emit_ethernet(0x12, &(0x7f0000000080)={@random="659b3dfadf01", @link_local, @void, {@llc={0x4, {@llc={0x0, 0x0, "e3", "dd"}}}}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000600)=@newsa={0xf0, 0x16, 0x633, 0x0, 0x80000000, {{@in=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {@in=@remote, 0x4d2, 0x32}, @in6=@loopback, {}, {0x5, 0x3, 0x0, 0x5}, {0x4, 0x5}, 0x2, 0x2, 0x2, 0x4, 0x18}}, 0xf0}}, 0x0)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0xc020f509, &(0x7f0000000240)={r2, 0x86, 0x0, 0x4})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

15.964638496s ago: executing program 2 (id=3764):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = socket$inet6(0xa, 0x80001, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$nl_route(r7, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002980)=@dellink={0x34, 0x11, 0x1, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0xc0, 0x1400}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wg2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000100}, 0x40004)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r5, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x803, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r10)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@delchain={0x30, 0x2c, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xfff2, 0xffff}, {0xfff3}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4008844}, 0x4010)
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, 0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
r13 = socket(0x8, 0x5, 0xcd)
getsockopt$sock_cred(r13, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r14=>0x0}, &(0x7f0000cab000)=0xc)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
setresuid(0x0, r14, 0x0)
fstat(r12, &(0x7f0000000340))
setsockopt$inet6_group_source_req(r2, 0x29, 0x2f, &(0x7f0000000240)={0x0, {{0xa, 0x0, 0xfffffffd, @mcast1, 0x37}}, {{0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, '\x00', 0x2e}, 0x8}}}, 0x108)

15.395397083s ago: executing program 0 (id=3765):
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000081000000080003"], 0x50}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@sndrcv={0x30, 0x84, 0x1, {0x0, 0x0, 0xc, 0x4}}], 0x30}], 0x1, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r4=>0x0})
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000200)={r4, 0x1, 0x6, @random="61bddbecbb65"}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5c00000000010104000000000000000002000000240002801400018008000100e000000108000200e00000010c00028005000100000000000800084000000008140005800800"], 0x5c}}, 0x0)

13.093795148s ago: executing program 3 (id=3766):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[@ANYBLOB="54010000100033060000000000000000ffffffff000000000000000000000000e000000200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="040000000000000000000000000000000000000032000000ac1e000100000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a002300000000000000000048000200656362286369706865725f6e756c6c2900000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c00040007"], 0x154}}, 0x0)

13.092291996s ago: executing program 3 (id=3767):
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000200)={0x1, {{0xa, 0x4e20, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x4e20, 0xa4fffffb, @loopback}}}, 0x108)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000001fc0)=""/184, 0x20002078)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, &(0x7f0000000040)={0xc, <r3=>0x0})
ioctl$IOMMU_IOAS_COPY(r1, 0x3b83, &(0x7f0000000080)={0x28, 0x3, r2, r3, 0x2, 0x401, 0x401})

1.050034436s ago: executing program 33 (id=3750):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0xfffffffffbfffffe)
connect$vsock_stream(r1, &(0x7f0000000040), 0x10)
connect(r1, &(0x7f00000000c0)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e21, @rand_addr=0x64010101}}, 0x80)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
syz_open_procfs$namespace(r0, &(0x7f0000000140)='ns/uts\x00')

27.477795ms ago: executing program 34 (id=3765):
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000081000000080003"], 0x50}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@sndrcv={0x30, 0x84, 0x1, {0x0, 0x0, 0xc, 0x4}}], 0x30}], 0x1, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r4=>0x0})
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000200)={r4, 0x1, 0x6, @random="61bddbecbb65"}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5c00000000010104000000000000000002000000240002801400018008000100e000000108000200e00000010c00028005000100000000000800084000000008140005800800"], 0x5c}}, 0x0)

0s ago: executing program 35 (id=3764):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = socket$inet6(0xa, 0x80001, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$nl_route(r7, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002980)=@dellink={0x34, 0x11, 0x1, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0xc0, 0x1400}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wg2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000100}, 0x40004)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r5, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x803, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r10)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@delchain={0x30, 0x2c, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xfff2, 0xffff}, {0xfff3}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4008844}, 0x4010)
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, 0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
r13 = socket(0x8, 0x5, 0xcd)
getsockopt$sock_cred(r13, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r14=>0x0}, &(0x7f0000cab000)=0xc)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
setresuid(0x0, r14, 0x0)
fstat(r12, &(0x7f0000000340))
setsockopt$inet6_group_source_req(r2, 0x29, 0x2f, &(0x7f0000000240)={0x0, {{0xa, 0x0, 0xfffffffd, @mcast1, 0x37}}, {{0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, '\x00', 0x2e}, 0x8}}}, 0x108)

kernel console output (not intermixed with test programs):

xpected cc 0x1001 length: 249 > 9
[  200.967185][ T5944] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  200.972647][ T5944] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  201.056951][ T1144] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  201.060284][ T1144] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.073351][T14260] lo: entered promiscuous mode
[  201.079079][T14260] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  201.169102][ T1144] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  201.173202][ T1144] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.260238][ T1144] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  201.263849][ T1144] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.272472][T14247] chnl_net:caif_netlink_parms(): no params data found
[  201.306197][T14278] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  201.367789][ T1144] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  201.371889][ T1144] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.381390][T14247] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.389209][T14247] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.391559][ T5999] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  201.392301][T14247] bridge_slave_0: entered allmulticast mode
[  201.397288][T14247] bridge_slave_0: entered promiscuous mode
[  201.404076][T14305] batadv1: entered promiscuous mode
[  201.408564][T14247] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.410927][T14247] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.413507][T14247] bridge_slave_1: entered allmulticast mode
[  201.416199][T14247] bridge_slave_1: entered promiscuous mode
[  201.458663][T14247] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.463137][T14247] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.504750][T14247] team0: Port device team_slave_0 added
[  201.524955][T14247] team0: Port device team_slave_1 added
[  201.563880][ T5999] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  201.567620][ T5999] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid maxpacket 65535, setting to 64
[  201.572228][ T5999] usb 5-1: config 0 interface 0 has no altsetting 0
[  201.578081][ T5999] usb 5-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  201.585028][ T5999] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.588091][ T5999] usb 5-1: Product: syz
[  201.591976][ T5999] usb 5-1: Manufacturer: syz
[  201.593805][ T5999] usb 5-1: SerialNumber: syz
[  201.606242][T14247] batman_adv: batadv0: Adding interface: batadv_slave_0
[  201.606561][ T5999] usb 5-1: config 0 descriptor??
[  201.608456][T14247] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.611961][T14266] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  201.618443][T14247] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  201.625652][T14247] batman_adv: batadv0: Adding interface: batadv_slave_1
[  201.627805][T14247] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.636069][T14247] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  201.695289][T14247] hsr_slave_0: entered promiscuous mode
[  201.697482][T14247] hsr_slave_1: entered promiscuous mode
[  201.699581][T14247] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  201.701878][T14247] Cannot create hsr debugfs directory
[  201.828016][ T1144] bond2 (unregistering): (slave ip6gretap1): Removing an active aggregator
[  201.830230][T14266] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  201.832476][ T1144] bond2 (unregistering): (slave ip6gretap1): Releasing backup interface
[  201.839700][ T5999] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input27
[  202.365176][ T1144]  (unregistering): (slave bond_slave_0): Releasing backup interface
[  202.369258][ T1144]  (unregistering): (slave bond_slave_1): Releasing backup interface
[  202.373190][ T1144]  (unregistering): (slave bridge_slave_1): Releasing backup interface
[  202.376111][ T1144]  (unregistering): Released all slaves
[  202.451217][ T1144] bond0 (unregistering): Released all slaves
[  202.464026][ T1144] bond1 (unregistering): Released all slaves
[  202.561510][ T1144] bond2 (unregistering): Released all slaves
[  202.643451][ T1144] bond3 (unregistering): (slave veth0_to_bond): Releasing backup interface
[  202.649413][ T1144] bond3 (unregistering): Released all slaves
[  202.662863][T14316] IPVS: Unknown mcast interface: wlan1
[  202.672723][T14321] bridge0: entered promiscuous mode
[  202.675532][T14321] macvlan2: entered promiscuous mode
[  202.715777][ T6666] usb 5-1: USB disconnect, device number 10
[  202.773043][T14328] 9p: Unknown access argument 18446744073709551615: -34
[  202.872922][T14326] kvm: kvm [14325]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x32
[  202.876148][T14326] kvm: kvm [14325]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0x6445
[  203.047814][   T63] Bluetooth: hci1: command tx timeout
[  203.152580][T14356] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  203.162121][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  203.162130][   T40] audit: type=1400 audit(1750919612.349:819): avc:  denied  { append } for  pid=14354 comm="syz.3.2631" name="001" dev="devtmpfs" ino=743 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  203.278732][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  203.281953][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_0
[  203.293435][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  203.307943][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_1
[  203.325987][ T1144] veth1_macvtap: left promiscuous mode
[  203.327897][ T1144] veth0_macvtap: left promiscuous mode
[  203.330150][ T1144] veth1_vlan: left promiscuous mode
[  203.331818][ T1144] veth0_vlan: left promiscuous mode
[  203.972958][   T40] audit: type=1400 audit(1750919613.158:820): avc:  denied  { write } for  pid=14382 comm="syz.2.2638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  203.985643][T14383] validate_nla: 9 callbacks suppressed
[  203.985654][T14383] netlink: 'syz.2.2638': attribute type 1 has an invalid length.
[  203.989783][T14383] __nla_validate_parse: 5 callbacks suppressed
[  203.989791][T14383] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2638'.
[  204.173559][ T1144] team0 (unregistering): Port device team_slave_1 removed
[  204.242549][ T1144] team0 (unregistering): Port device team_slave_0 removed
[  204.879014][T14247] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  204.888347][T14247] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  204.902295][T14247] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  204.920449][T14247] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  205.034642][T14247] 8021q: adding VLAN 0 to HW filter on device bond0
[  205.048176][T14404] team_slave_0: entered promiscuous mode
[  205.049935][T14404] team_slave_1: entered promiscuous mode
[  205.060470][T14404] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  205.065625][T14404] team0: Device macvtap1 is already an upper device of the team interface
[  205.079503][T14404] team_slave_0: left promiscuous mode
[  205.081443][T14404] team_slave_1: left promiscuous mode
[  205.110001][T14247] 8021q: adding VLAN 0 to HW filter on device team0
[  205.119613][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state
[  205.122005][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state
[  205.125273][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state
[  205.127416][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state
[  205.136838][   T63] Bluetooth: hci1: command tx timeout
[  205.254086][T14247] 8021q: adding VLAN 0 to HW filter on device batadv0
[  205.281288][T14247] veth0_vlan: entered promiscuous mode
[  205.287938][T14247] veth1_vlan: entered promiscuous mode
[  205.303495][T14247] veth0_macvtap: entered promiscuous mode
[  205.308486][T14247] veth1_macvtap: entered promiscuous mode
[  205.310493][T14412] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  205.313852][T14412] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  205.317200][T14412] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  205.317762][T14247] batman_adv: batadv0: Interface activated: batadv_slave_0
[  205.326207][T14247] batman_adv: batadv0: Interface activated: batadv_slave_1
[  205.333631][T14247] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.337139][T14247] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.340433][T14247] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.343138][T14247] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.380837][ T7151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  205.383873][ T7151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  205.410947][ T1144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  205.413488][ T1144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  205.471283][T14415] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.2598'.
[  205.485081][   T40] audit: type=1804 audit(1750919614.666:821): pid=14415 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2598" name="/newroot/0/file0" dev="tmpfs" ino=18 res=1 errno=0
[  205.618068][T14417] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2643'.
[  205.622723][T14417] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2643'.
[  205.780813][T14429] xt_hashlimit: size too large, truncated to 1048576
[  205.837747][T14430] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2647'.
[  205.840479][T14430] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2647'.
[  205.900661][T14438] SELinux:  Context system_u:object_r:udev_rules_t:s0 is not valid (left unmapped).
[  205.901029][   T40] audit: type=1400 audit(1750919615.085:822): avc:  denied  { relabelfrom } for  pid=14437 comm="syz.3.2649" name="NETLINK" dev="sockfs" ino=59914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  205.911713][   T40] audit: type=1400 audit(1750919615.085:823): avc:  denied  { relabelto } for  pid=14437 comm="syz.3.2649" name="NETLINK" dev="sockfs" ino=59914 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=netlink_generic_socket permissive=1 trawcon="system_u:object_r:udev_rules_t:s0"
[  205.916589][T14432] kvm: kvm [14431]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x32
[  205.923462][T14432] kvm: kvm [14431]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0x6445
[  205.931543][T14441] netlink: 'syz.3.2650': attribute type 3 has an invalid length.
[  206.114142][T14450] netlink: 'syz.3.2653': attribute type 21 has an invalid length.
[  206.208269][T14452] wireguard0: entered promiscuous mode
[  206.210794][T14452] wireguard0: entered allmulticast mode
[  206.762604][T14470] netlink: 'syz.0.2659': attribute type 3 has an invalid length.
[  206.965084][T14477] loop2: detected capacity change from 0 to 14
[  206.973553][T14477] Dev loop2: unable to read RDB block 14
[  206.975503][T14477]  loop2: AHDI p1 p2 p3
[  206.977024][T14477] loop2: partition table partially beyond EOD, truncated
[  206.979685][T14477] loop2: p1 start 209 is beyond EOD, truncated
[  206.981752][T14477] loop2: p3 start 335544320 is beyond EOD, truncated
[  207.029959][T14483] netlink: 'syz.0.2663': attribute type 3 has an invalid length.
[  207.032721][T14483] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2663'.
[  207.209500][   T63] Bluetooth: hci1: command tx timeout
[  207.512020][T14493] kvm: kvm [14492]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xff31
[  207.515099][T14493] kvm: kvm [14492]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  207.522208][T14495] kvm: kvm [14494]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x32
[  207.525536][T14495] kvm: kvm [14494]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0x6445
[  207.609041][T14502] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2668'.
[  207.613357][T14502] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2668'.
[  207.616394][T14502] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2668'.
[  207.667534][   T40] audit: type=1400 audit(1750919616.843:824): avc:  denied  { bind } for  pid=14504 comm="syz.2.2669" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  207.706834][T14507] netlink: 'syz.2.2670': attribute type 3 has an invalid length.
[  207.870974][   T29] usb 6-1: new low-speed USB device number 17 using dummy_hcd
[  207.933410][   T40] audit: type=1400 audit(1750919617.113:825): avc:  denied  { map } for  pid=14515 comm="syz.2.2673" path="socket:[62065]" dev="sockfs" ino=62065 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  208.022176][   T29] usb 6-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[  208.025605][   T29] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  208.028565][   T29] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  208.031587][   T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.035514][   T29] usb 6-1: config 0 descriptor??
[  208.281932][ T6666] usb 6-1: USB disconnect, device number 17
[  208.369466][T14529] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  208.629486][T14534] kvm: kvm [14533]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xff31
[  208.633148][T14534] kvm: kvm [14533]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  208.822177][T14543] loop9: detected capacity change from 0 to 524288000
[  208.826056][T14544] netlink: 'syz.1.2680': attribute type 3 has an invalid length.
[  208.882952][T14548] rtc_cmos 00:05: Alarms can be up to one day in the future
[  209.064482][   T29] rtc_cmos 00:05: Alarms can be up to one day in the future
[  209.067990][   T29] rtc_cmos 00:05: Alarms can be up to one day in the future
[  209.070989][   T29] rtc_cmos 00:05: Alarms can be up to one day in the future
[  209.074962][   T29] rtc_cmos 00:05: Alarms can be up to one day in the future
[  209.077300][   T29] rtc rtc0: __rtc_set_alarm: err=-22
[  209.089745][T14571] netlink: 'syz.3.2689': attribute type 3 has an invalid length.
[  209.186776][T14569] kvm: kvm [14568]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xff31
[  209.189876][T14569] kvm: kvm [14568]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  209.302009][   T63] Bluetooth: hci1: command tx timeout
[  209.357524][T14593] __nla_validate_parse: 31 callbacks suppressed
[  209.357544][T14593] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2695'.
[  209.362997][T14593] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2695'.
[  209.454268][T14600] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2698'.
[  209.458192][T14600] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2698'.
[  209.462234][T14600] netlink: 43 bytes leftover after parsing attributes in process `syz.3.2698'.
[  209.465264][T14600] netlink: 'syz.3.2698': attribute type 5 has an invalid length.
[  209.467851][T14600] netlink: 43 bytes leftover after parsing attributes in process `syz.3.2698'.
[  209.474679][   T40] audit: type=1400 audit(1750919618.651:826): avc:  denied  { ioctl } for  pid=14596 comm="syz.2.2696" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1295 ioctlcmd=0x563c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  209.485290][T14597] ptrace attach of "/syz-executor exec"[13679] was attempted by "/syz-executor exec"[14597]
[  209.488807][T14597] Cannot find add_set index 1 as target
[  209.634300][   T40] audit: type=1326 audit(1750919618.811:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14622 comm="syz.3.2705" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff28918e929 code=0x0
[  209.665644][T14626] netfs: Couldn't get user pages (rc=-14)
[  209.771200][T14631] netlink: 'syz.1.2706': attribute type 3 has an invalid length.
[  209.986293][T14636] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2708'.
[  210.139972][T14638] kvm: kvm [14637]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x32
[  210.143072][T14638] kvm: kvm [14637]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0x6445
[  210.272910][   T29] usb 6-1: new low-speed USB device number 18 using dummy_hcd
[  210.424972][   T29] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  210.428195][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  210.432625][   T29] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  210.437876][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  210.442460][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  210.448674][   T29] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  210.451823][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  210.456576][   T29] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  210.461328][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  210.466148][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  210.484343][   T29] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  210.487430][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  210.491725][   T29] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  210.499416][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  210.505207][   T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  210.512351][   T29] usb 6-1: string descriptor 0 read error: -22
[  210.515484][   T29] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  210.519154][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.533650][   T29] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  210.786671][T14655] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2714'.
[  210.850494][T14662] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2714'.
[  210.898977][T14664] netlink: 'syz.3.2715': attribute type 10 has an invalid length.
[  210.901457][T14664] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[  210.904756][T14664] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  210.981994][T14668] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2718'.
[  211.104940][T14670] kvm: kvm [14669]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x5
[  211.108267][T14670] kvm: kvm [14669]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0xf8
[  211.139423][T14670] kvm: kvm [14669]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x5
[  211.142360][T14670] kvm: kvm [14669]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xc876
[  211.163050][T14670] kvm_intel: kvm [14669]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x31
[  211.178352][T14670] kvm_intel: kvm [14669]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xff63
[  211.335286][T14686] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  211.912382][   T40] audit: type=1400 audit(1750919621.089:828): avc:  denied  { ioctl } for  pid=14693 comm="syz.2.2724" path="socket:[63555]" dev="sockfs" ino=63555 ioctlcmd=0x891b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  211.922184][T14694] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  211.934637][   T40] audit: type=1400 audit(1750919621.109:829): avc:  denied  { map } for  pid=14693 comm="syz.2.2724" path="socket:[63556]" dev="sockfs" ino=63556 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  212.283164][T14702] netlink: 'syz.0.2727': attribute type 3 has an invalid length.
[  212.335619][T14708] binder: BINDER_SET_CONTEXT_MGR already set
[  212.337622][T14708] binder: 14703:14708 ioctl 4018620d 200000000080 returned -16
[  212.468385][T14706] kvm_intel: kvm [14705]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x31
[  212.470552][   T40] audit: type=1400 audit(1750919621.648:830): avc:  denied  { remount } for  pid=14713 comm="syz.3.2730" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  212.481408][T14706] kvm_intel: kvm [14705]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xff63
[  212.622590][   T40] audit: type=1400 audit(1750919621.798:831): avc:  denied  { lock } for  pid=14715 comm="syz.0.2732" path="socket:[63563]" dev="sockfs" ino=63563 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  212.707100][T14724] binder: 14723:14724 ioctl c0306201 200000000640 returned -22
[  212.710330][T14724] netlink: 'syz.3.2734': attribute type 1 has an invalid length.
[  212.777147][T14718] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  212.847212][T14731] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.930408][T14735] mac80211_hwsim hwsim21 wlan0: vlans aren't supported yet for dev_uc|mc_add()
[  212.976206][    T9] usb 6-1: USB disconnect, device number 18
[  213.005007][T14731] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.082532][T14731] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.104966][T14745] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  213.107877][   T40] audit: type=1400 audit(1750919622.277:832): avc:  denied  { mounton } for  pid=14742 comm="syz.2.2740" path="/bus" dev="ramfs" ino=63581 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  213.115997][T14745] overlayfs: failed to set xattr on upper
[  213.117889][T14745] overlayfs: ...falling back to redirect_dir=nofollow.
[  213.119970][T14745] overlayfs: ...falling back to index=off.
[  213.121787][T14745] overlayfs: ...falling back to uuid=null.
[  213.123555][T14745] overlayfs: ...falling back to xino=off.
[  213.125324][T14745] overlayfs: conflicting lowerdir path
[  213.176812][T14731] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.323764][T14731] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.332974][T14731] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.356314][T14731] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.369307][T14731] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  213.391511][T14764] netlink: 'syz.1.2747': attribute type 3 has an invalid length.
[  213.433737][T14771] xt_hashlimit: size too large, truncated to 1048576
[  213.440581][T14772] overlayfs: failed to resolve 'verity=require': -2
[  213.486200][   T40] audit: type=1400 audit(1750919622.657:833): avc:  denied  { getopt } for  pid=14769 comm="syz.1.2749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  213.596276][   T29] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  213.756525][   T29] usb 7-1: Using ep0 maxpacket: 8
[  213.760770][   T29] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  213.763335][   T29] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  213.766834][   T29] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  213.769967][   T29] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  213.773120][   T29] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  213.782012][   T29] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  213.789725][   T29] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.798104][T14790] netlink: 'syz.3.2757': attribute type 3 has an invalid length.
[  213.840764][T14800] tmpfs: Bad value for 'mpol'
[  213.995784][   T29] usb 7-1: usb_control_msg returned -32
[  213.997696][   T29] usbtmc 7-1:16.0: can't read capabilities
[  214.110341][T14827] Cannot find map_set index 0 as target
[  214.358005][ T6666] usb 7-1: USB disconnect, device number 16
[  214.424013][T14857] __nla_validate_parse: 9 callbacks suppressed
[  214.424029][T14857] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2780'.
[  214.431347][T14857] openvswitch: netlink: Flow key attr not present in new flow.
[  214.457695][T14867] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2782'.
[  214.514838][T14880] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  214.516964][T14880] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  214.527281][T14880] vhci_hcd vhci_hcd.0: Device attached
[  214.602810][T14886] FAULT_INJECTION: forcing a failure.
[  214.602810][T14886] name failslab, interval 1, probability 0, space 0, times 0
[  214.606694][T14886] CPU: 1 UID: 0 PID: 14886 Comm: syz.2.2788 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  214.606710][T14886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.606717][T14886] Call Trace:
[  214.606727][T14886]  <TASK>
[  214.606732][T14886]  dump_stack_lvl+0x16c/0x1f0
[  214.606764][T14886]  should_fail_ex+0x512/0x640
[  214.606784][T14886]  ? fs_reclaim_acquire+0xae/0x150
[  214.606796][T14886]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  214.606812][T14886]  should_failslab+0xc2/0x120
[  214.606828][T14886]  __kmalloc_noprof+0xd2/0x510
[  214.606845][T14886]  tomoyo_realpath_from_path+0xc2/0x6e0
[  214.606862][T14886]  ? tomoyo_profile+0x47/0x60
[  214.606881][T14886]  tomoyo_path_number_perm+0x245/0x580
[  214.606897][T14886]  ? tomoyo_path_number_perm+0x237/0x580
[  214.606911][T14886]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  214.606925][T14886]  ? find_held_lock+0x2b/0x80
[  214.606951][T14886]  ? find_held_lock+0x2b/0x80
[  214.606963][T14886]  ? hook_file_ioctl_common+0x145/0x410
[  214.606981][T14886]  ? __fget_files+0x20e/0x3c0
[  214.606998][T14886]  security_file_ioctl+0x9b/0x240
[  214.607015][T14886]  __x64_sys_ioctl+0xb7/0x210
[  214.607028][T14886]  do_syscall_64+0xcd/0x4c0
[  214.607046][T14886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.607057][T14886] RIP: 0033:0x7f860298e929
[  214.607067][T14886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.607077][T14886] RSP: 002b:00007f86038a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  214.607088][T14886] RAX: ffffffffffffffda RBX: 00007f8602bb5fa0 RCX: 00007f860298e929
[  214.607094][T14886] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  214.607100][T14886] RBP: 00007f86038a3090 R08: 0000000000000000 R09: 0000000000000000
[  214.607106][T14886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.607113][T14886] R13: 0000000000000000 R14: 00007f8602bb5fa0 R15: 00007ffed4810208
[  214.607142][T14886]  </TASK>
[  214.647904][T14884] kvm_pr_unimpl_wrmsr: 10 callbacks suppressed
[  214.647918][T14884] kvm: kvm [14882]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xff01
[  214.649315][    C1] vkms_vblank_simulate: vblank timer overrun
[  214.656110][T14884] kvm: kvm [14882]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0xfeb3
[  214.659048][T14886] ERROR: Out of memory at tomoyo_realpath_from_path.
[  214.673594][T14884] kvm: kvm [14882]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x1
[  214.689469][T14880] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  214.692483][T14881] vhci_hcd: connection closed
[  214.692856][T14884] kvm: kvm [14882]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x8483
[  214.697953][ T1144] vhci_hcd: stop threads
[  214.697989][T14886] kvm: kvm [14885]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xff01
[  214.699323][ T1144] vhci_hcd: release socket
[  214.702242][T14886] kvm: kvm [14885]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0xfeb3
[  214.712055][ T1144] vhci_hcd: disconnect device
[  214.712191][T14884] kvm_intel: kvm [14882]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1
[  214.716091][T14886] kvm: kvm [14885]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x1
[  214.716801][T14884] kvm_intel: kvm [14882]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x1d9) = 0xd15b
[  214.719406][T14886] kvm: kvm [14885]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x8483
[  214.727633][ T5979] vhci_hcd: vhci_device speed not set
[  214.749494][T14886] kvm_intel: kvm [14885]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1
[  214.752552][T14886] kvm_intel: kvm [14885]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x1d9) = 0xd15b
[  214.791063][T14897] hfsplus: unable to find HFS+ superblock
[  214.828396][T14897] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  214.913861][T14902] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2793'.
[  214.953172][T14907] [U] 
[  214.954345][T14907] [U] 
[  214.955506][T14907] [U] 
[  214.956580][T14907] [U] 
[  214.958594][T14907] [U] 
[  214.959754][T14907] [U] 
[  214.960630][T14907] [U] 
[  214.961660][T14907] [U] 
[  214.962592][T14907] [U] 
[  214.963641][T14907] [U] 
[  214.964581][T14907] [U] 
[  214.965586][T14907] [U] 
[  214.966847][T14907] [U] 
[  214.967933][T14907] [U] 
[  214.969174][T14907] [U] 
[  214.970349][T14907] [U] 
[  214.977249][T14907] netlink: 'syz.1.2794': attribute type 1 has an invalid length.
[  215.023772][T14907] 8021q: adding VLAN 0 to HW filter on device bond1
[  215.042753][T14907] bond1: (slave gretap1): making interface the new active one
[  215.049318][T14907] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  215.054418][T14906] [U] 
[  215.134764][T14925] xt_hashlimit: size too large, truncated to 1048576
[  215.164221][T14915] kvm: kvm [14913]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x32
[  215.167153][T14915] kvm: kvm [14913]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0x6445
[  215.211658][T14930] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2802'.
[  215.296971][T14935] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2804'.
[  215.501530][T14940] FAULT_INJECTION: forcing a failure.
[  215.501530][T14940] name failslab, interval 1, probability 0, space 0, times 0
[  215.505509][T14940] CPU: 0 UID: 0 PID: 14940 Comm: syz.1.2806 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  215.505524][T14940] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  215.505532][T14940] Call Trace:
[  215.505536][T14940]  <TASK>
[  215.505541][T14940]  dump_stack_lvl+0x16c/0x1f0
[  215.505561][T14940]  should_fail_ex+0x512/0x640
[  215.505576][T14940]  ? fs_reclaim_acquire+0xae/0x150
[  215.505588][T14940]  ? tomoyo_encode2+0x100/0x3e0
[  215.505603][T14940]  should_failslab+0xc2/0x120
[  215.505619][T14940]  __kmalloc_noprof+0xd2/0x510
[  215.505637][T14940]  tomoyo_encode2+0x100/0x3e0
[  215.505653][T14940]  tomoyo_encode+0x29/0x50
[  215.505667][T14940]  tomoyo_realpath_from_path+0x18f/0x6e0
[  215.505684][T14940]  ? tomoyo_profile+0x47/0x60
[  215.505702][T14940]  tomoyo_path_number_perm+0x245/0x580
[  215.505714][T14940]  ? tomoyo_path_number_perm+0x237/0x580
[  215.505729][T14940]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  215.505743][T14940]  ? find_held_lock+0x2b/0x80
[  215.505769][T14940]  ? find_held_lock+0x2b/0x80
[  215.505781][T14940]  ? hook_file_ioctl_common+0x145/0x410
[  215.505795][T14940]  ? __fget_files+0x20e/0x3c0
[  215.505812][T14940]  security_file_ioctl+0x9b/0x240
[  215.505828][T14940]  __x64_sys_ioctl+0xb7/0x210
[  215.505841][T14940]  do_syscall_64+0xcd/0x4c0
[  215.505859][T14940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.505870][T14940] RIP: 0033:0x7ff22318e929
[  215.505879][T14940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.505890][T14940] RSP: 002b:00007ff224016038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  215.505900][T14940] RAX: ffffffffffffffda RBX: 00007ff2233b5fa0 RCX: 00007ff22318e929
[  215.505907][T14940] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  215.505913][T14940] RBP: 00007ff224016090 R08: 0000000000000000 R09: 0000000000000000
[  215.505919][T14940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.505925][T14940] R13: 0000000000000000 R14: 00007ff2233b5fa0 R15: 00007ffd46b98fe8
[  215.505939][T14940]  </TASK>
[  215.505949][T14940] ERROR: Out of memory at tomoyo_realpath_from_path.
[  215.615733][T14940] kvm_intel: kvm [14939]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1
[  215.619617][T14940] kvm_intel: kvm [14939]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x1d9) = 0xd15b
[  216.010964][T14952] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  216.025414][   T40] audit: type=1400 audit(1750919625.195:834): avc:  denied  { write } for  pid=14956 comm="syz.2.2810" name="ptp1" dev="devtmpfs" ino=1289 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  216.080134][T14965] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2813'.
[  216.106552][T14968] SELinux: syz.2.2814 (14968) set checkreqprot to 1. This is no longer supported.
[  216.106557][   T40] audit: type=1400 audit(1750919625.275:835): avc:  denied  { setcheckreqprot } for  pid=14966 comm="syz.2.2814" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  216.134462][T14971] netlink: 'syz.0.2816': attribute type 3 has an invalid length.
[  216.151652][T14973] netlink: 'syz.2.2817': attribute type 10 has an invalid length.
[  216.154102][T14973] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2817'.
[  216.169797][T14973] team0: Port device geneve0 added
[  216.198779][T14978] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  216.367787][T14988] ptrace attach of "/syz-executor exec"[11682] was attempted by ""[14988]
[  216.386530][   T40] audit: type=1400 audit(1750919625.554:836): avc:  denied  { bind } for  pid=14989 comm="syz.1.2823" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  216.392557][T14990] bridge_slave_0: left allmulticast mode
[  216.394574][T14990] bridge_slave_0: left promiscuous mode
[  216.396438][T14990] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.400996][T14990] bridge_slave_1: left allmulticast mode
[  216.402887][T14990] bridge_slave_1: left promiscuous mode
[  216.404852][T14990] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.414838][T14990] bond0: (slave bond_slave_0): Releasing backup interface
[  216.421269][   T10] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  216.421525][T14990] bond0: (slave bond_slave_1): Releasing backup interface
[  216.442526][T14990] team0: Port device team_slave_0 removed
[  216.449880][T14990] team0: Port device team_slave_1 removed
[  216.452150][T14990] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  216.454486][T14990] batman_adv: batadv0: Removing interface: batadv_slave_0
[  216.457612][T14990] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  216.459983][T14990] batman_adv: batadv0: Removing interface: batadv_slave_1
[  216.467211][T14990] bond1: (slave gretap1): Releasing active interface
[  216.510417][T15000] bridge0: port 3(vlan3) entered blocking state
[  216.512497][T15000] bridge0: port 3(vlan3) entered disabled state
[  216.514526][T15000] vlan3: entered allmulticast mode
[  216.516141][T15000] bridge0: entered allmulticast mode
[  216.519133][T15000] vlan3: left allmulticast mode
[  216.520695][T15000] bridge0: left allmulticast mode
[  216.579015][   T10] usb 7-1: Using ep0 maxpacket: 8
[  216.581991][   T10] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  216.584598][   T10] usb 7-1: config 0 has no interface number 0
[  216.586577][   T10] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  216.590287][   T10] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  216.593843][   T10] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 130, changing to 11
[  216.597339][   T10] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 24862, setting to 1024
[  216.600855][   T10] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  216.604835][   T10] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  216.607662][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.612006][   T10] usb 7-1: config 0 descriptor??
[  216.616305][   T10] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  216.654903][T15006] netlink: 'syz.1.2827': attribute type 3 has an invalid length.
[  216.819858][   T10] usb 7-1: USB disconnect, device number 17
[  216.823614][   T10] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  216.848139][T15011] kvm_pr_unimpl_wrmsr: 2 callbacks suppressed
[  216.848153][T15011] kvm_intel: kvm [15010]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1
[  216.853432][T15011] kvm_intel: kvm [15010]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x1d9) = 0xd15b
[  217.073163][T15015] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2816 sclass=netlink_route_socket pid=15015 comm=syz.1.2831
[  217.078279][T15015] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2831'.
[  217.167848][T15022] netlink: 'syz.0.2833': attribute type 21 has an invalid length.
[  217.170466][T15022] netlink: 128 bytes leftover after parsing attributes in process `syz.0.2833'.
[  217.173291][T15022] netlink: 'syz.0.2833': attribute type 4 has an invalid length.
[  217.175798][T15022] netlink: 'syz.0.2833': attribute type 5 has an invalid length.
[  217.178231][T15022] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2833'.
[  217.346700][   T89] bond0: (slave bond_slave_0): interface is now down
[  217.349230][   T89] bond0: (slave bond_slave_1): interface is now down
[  217.359183][   T89] bond0: now running without any active interface!
[  217.388144][T15039] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  217.390525][T15039] IPv6: NLM_F_CREATE should be set when creating new route
[  217.612140][T15053] FAULT_INJECTION: forcing a failure.
[  217.612140][T15053] name failslab, interval 1, probability 0, space 0, times 0
[  217.616696][T15053] CPU: 0 UID: 0 PID: 15053 Comm: syz.2.2844 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  217.616711][T15053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  217.616718][T15053] Call Trace:
[  217.616722][T15053]  <TASK>
[  217.616727][T15053]  dump_stack_lvl+0x16c/0x1f0
[  217.616746][T15053]  should_fail_ex+0x512/0x640
[  217.616761][T15053]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  217.616778][T15053]  should_failslab+0xc2/0x120
[  217.616793][T15053]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  217.616808][T15053]  ? copy_process+0x4b6/0x76a0
[  217.616825][T15053]  copy_process+0x4b6/0x76a0
[  217.616845][T15053]  ? __pfx_copy_process+0x10/0x10
[  217.616861][T15053]  ? lockdep_init_map_type+0x5c/0x280
[  217.616880][T15053]  ? lockdep_init_map_type+0x5c/0x280
[  217.616898][T15053]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  217.616914][T15053]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  217.616933][T15053]  vhost_task_create+0x1d2/0x2e0
[  217.616944][T15053]  ? __pfx_vhost_task_create+0x10/0x10
[  217.616959][T15053]  ? __pfx_vhost_task_fn+0x10/0x10
[  217.616976][T15053]  kvm_mmu_post_init_vm+0x1b7/0x370
[  217.616991][T15053]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  217.617004][T15053]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  217.617020][T15053]  kvm_vcpu_ioctl+0x5eb/0x1690
[  217.617034][T15053]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  217.617051][T15053]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  217.617068][T15053]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  217.617089][T15053]  ? hook_file_ioctl_common+0x145/0x410
[  217.617103][T15053]  ? selinux_file_ioctl+0x180/0x270
[  217.617117][T15053]  ? selinux_file_ioctl+0xb4/0x270
[  217.617132][T15053]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  217.617146][T15053]  __x64_sys_ioctl+0x18b/0x210
[  217.617159][T15053]  do_syscall_64+0xcd/0x4c0
[  217.617177][T15053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.617188][T15053] RIP: 0033:0x7f860298e929
[  217.617197][T15053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.617208][T15053] RSP: 002b:00007f86038a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  217.617218][T15053] RAX: ffffffffffffffda RBX: 00007f8602bb5fa0 RCX: 00007f860298e929
[  217.617225][T15053] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  217.617231][T15053] RBP: 00007f86038a3090 R08: 0000000000000000 R09: 0000000000000000
[  217.617237][T15053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  217.617243][T15053] R13: 0000000000000000 R14: 00007f8602bb5fa0 R15: 00007ffed4810208
[  217.617257][T15053]  </TASK>
[  217.715272][ T1149] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.727506][T15063] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=23 sclass=netlink_route_socket pid=15063 comm=syz.0.2849
[  217.814255][ T5944] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  217.821817][ T5944] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  217.827316][ T5944] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  217.832323][ T5944] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  217.835443][ T5944] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  217.849537][ T1149] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.914301][ T1149] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.009754][ T1149] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.081833][T15064] chnl_net:caif_netlink_parms(): no params data found
[  218.164982][T15064] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.167217][T15064] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.169462][T15064] bridge_slave_0: entered allmulticast mode
[  218.172834][T15064] bridge_slave_0: entered promiscuous mode
[  218.181305][T15064] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.183671][T15064] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.185936][T15064] bridge_slave_1: entered allmulticast mode
[  218.192099][T15064] bridge_slave_1: entered promiscuous mode
[  218.395971][T15099] FAULT_INJECTION: forcing a failure.
[  218.395971][T15099] name failslab, interval 1, probability 0, space 0, times 0
[  218.400141][T15099] CPU: 2 UID: 0 PID: 15099 Comm: syz.2.2858 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  218.400158][T15099] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  218.400165][T15099] Call Trace:
[  218.400169][T15099]  <TASK>
[  218.400174][T15099]  dump_stack_lvl+0x16c/0x1f0
[  218.400214][T15099]  should_fail_ex+0x512/0x640
[  218.400229][T15099]  ? __kmalloc_noprof+0xbf/0x510
[  218.400244][T15099]  ? lsm_blob_alloc+0x68/0x90
[  218.400254][T15099]  should_failslab+0xc2/0x120
[  218.400271][T15099]  __kmalloc_noprof+0xd2/0x510
[  218.400284][T15099]  ? __pfx_perf_event_init_task+0x10/0x10
[  218.400295][T15099]  ? audit_alloc+0xa2/0x7b0
[  218.400309][T15099]  ? __pfx_audit_alloc+0x10/0x10
[  218.400323][T15099]  lsm_blob_alloc+0x68/0x90
[  218.400334][T15099]  security_task_alloc+0x2d/0x260
[  218.400352][T15099]  copy_process+0x2205/0x76a0
[  218.400372][T15099]  ? __pfx_copy_process+0x10/0x10
[  218.400393][T15099]  ? lockdep_init_map_type+0x5c/0x280
[  218.400412][T15099]  ? lockdep_init_map_type+0x5c/0x280
[  218.400429][T15099]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  218.400446][T15099]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  218.400464][T15099]  vhost_task_create+0x1d2/0x2e0
[  218.400475][T15099]  ? __pfx_vhost_task_create+0x10/0x10
[  218.400502][T15099]  ? __pfx_vhost_task_fn+0x10/0x10
[  218.400520][T15099]  kvm_mmu_post_init_vm+0x1b7/0x370
[  218.400535][T15099]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  218.400548][T15099]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  218.400565][T15099]  kvm_vcpu_ioctl+0x5eb/0x1690
[  218.400579][T15099]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  218.400596][T15099]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  218.400613][T15099]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  218.400633][T15099]  ? hook_file_ioctl_common+0x145/0x410
[  218.400649][T15099]  ? selinux_file_ioctl+0x180/0x270
[  218.400663][T15099]  ? selinux_file_ioctl+0xb4/0x270
[  218.400679][T15099]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  218.400692][T15099]  __x64_sys_ioctl+0x18b/0x210
[  218.400706][T15099]  do_syscall_64+0xcd/0x4c0
[  218.400723][T15099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.400735][T15099] RIP: 0033:0x7f860298e929
[  218.400744][T15099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.400755][T15099] RSP: 002b:00007f86038a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  218.400765][T15099] RAX: ffffffffffffffda RBX: 00007f8602bb5fa0 RCX: 00007f860298e929
[  218.400772][T15099] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  218.400778][T15099] RBP: 00007f86038a3090 R08: 0000000000000000 R09: 0000000000000000
[  218.400784][T15099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.400790][T15099] R13: 0000000000000000 R14: 00007f8602bb5fa0 R15: 00007ffed4810208
[  218.400804][T15099]  </TASK>
[  218.816481][ T1149] bond0 (unregistering): Released all slaves
[  218.886880][ T1149] bond1 (unregistering): Released all slaves
[  218.892723][T15092] netlink: 'syz.0.2856': attribute type 3 has an invalid length.
[  218.897970][T15064] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  218.906570][T15064] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  218.980569][T15064] team0: Port device team_slave_0 added
[  218.986709][T15064] team0: Port device team_slave_1 added
[  219.027913][T15064] batman_adv: batadv0: Adding interface: batadv_slave_0
[  219.030284][T15064] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  219.040527][T15064] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  219.073181][T15064] batman_adv: batadv0: Adding interface: batadv_slave_1
[  219.075509][T15064] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  219.083970][T15064] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  219.088949][   T40] audit: type=1326 audit(1750919628.252:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15129 comm="syz.0.2866" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x0
[  219.144168][T15064] hsr_slave_0: entered promiscuous mode
[  219.146477][T15064] hsr_slave_1: entered promiscuous mode
[  219.148661][T15064] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  219.152164][T15064] Cannot create hsr debugfs directory
[  219.357471][T15136] kvm_intel: kvm [15135]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1
[  219.360474][T15136] kvm_intel: kvm [15135]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x1d9) = 0xd15b
[  219.364073][ T1149] hsr_slave_0: left promiscuous mode
[  219.366561][ T1149] hsr_slave_1: left promiscuous mode
[  219.406997][ T1149] veth1_macvtap: left promiscuous mode
[  219.408874][ T1149] veth0_macvtap: left promiscuous mode
[  219.410726][ T1149] veth1_vlan: left promiscuous mode
[  219.412716][ T1149] veth0_vlan: left promiscuous mode
[  219.874125][ T5944] Bluetooth: hci1: command tx timeout
[  219.900251][T15142] syz.2.2869: attempt to access beyond end of device
[  219.900251][T15142] nbd2: rw=0, sector=0, nr_sectors = 2 limit=0
[  219.905879][T15142] befs: (nbd2): unable to read superblock
[  219.928765][T15142] syz.2.2869: attempt to access beyond end of device
[  219.928765][T15142] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0
[  219.933358][T15142] syz.2.2869: attempt to access beyond end of device
[  219.933358][T15142] nbd2: rw=0, sector=120, nr_sectors = 8 limit=0
[  219.937561][T15142] Mount JFS Failure: -5
[  219.939031][T15142] jfs_mount failed w/return code = -5
[  220.018443][T15150] netlink: 'syz.0.2873': attribute type 11 has an invalid length.
[  220.021088][T15150] __nla_validate_parse: 4 callbacks suppressed
[  220.021096][T15150] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.2873'.
[  220.068125][T15156] cgroup: name respecified
[  220.716040][T15140] netlink: 'syz.3.2868': attribute type 3 has an invalid length.
[  220.768655][T15162] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2876'.
[  220.774301][T15162] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2876'.
[  220.790940][T15064] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  220.797002][T15064] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  220.810348][T15064] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  220.818476][T15064] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  220.859635][T15159] FAULT_INJECTION: forcing a failure.
[  220.859635][T15159] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  220.867611][T15159] CPU: 2 UID: 0 PID: 15159 Comm: syz.3.2875 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  220.867629][T15159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.867636][T15159] Call Trace:
[  220.867640][T15159]  <TASK>
[  220.867645][T15159]  dump_stack_lvl+0x16c/0x1f0
[  220.867673][T15159]  should_fail_ex+0x512/0x640
[  220.867691][T15159]  should_fail_alloc_page+0xe7/0x130
[  220.867710][T15159]  prepare_alloc_pages+0x3c2/0x610
[  220.867724][T15159]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  220.867742][T15159]  ? rcu_is_watching+0x12/0xc0
[  220.867757][T15159]  ? trace_mm_page_alloc+0x11f/0x1a0
[  220.867776][T15159]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  220.867793][T15159]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  220.867809][T15159]  ? is_bpf_text_address+0x8a/0x1a0
[  220.867821][T15159]  ? bpf_ksym_find+0x127/0x1c0
[  220.867837][T15159]  ? is_bpf_text_address+0x94/0x1a0
[  220.867851][T15159]  ? __kernel_text_address+0xd/0x40
[  220.867863][T15159]  ? unwind_get_return_address+0x59/0xa0
[  220.867886][T15159]  alloc_pages_bulk_noprof+0x71c/0x1410
[  220.867900][T15159]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  220.867914][T15159]  ? policy_nodemask+0xea/0x4e0
[  220.867932][T15159]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  220.867947][T15159]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  220.867969][T15159]  kasan_populate_vmalloc+0xf1/0x1f0
[  220.867985][T15159]  alloc_vmap_area+0x959/0x29c0
[  220.868009][T15159]  ? __pfx_alloc_vmap_area+0x10/0x10
[  220.868030][T15159]  __get_vm_area_node+0x1ca/0x330
[  220.868043][T15159]  __vmalloc_node_range_noprof+0x271/0x14b0
[  220.868055][T15159]  ? vhost_task_create+0x1d2/0x2e0
[  220.868066][T15159]  ? local_lock_release+0x99/0x140
[  220.868086][T15159]  ? vhost_task_create+0x1d2/0x2e0
[  220.868096][T15159]  ? rcu_read_unlock+0x17/0x60
[  220.868114][T15159]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  220.868126][T15159]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[  220.868148][T15159]  ? vhost_task_create+0x1d2/0x2e0
[  220.868179][T15159]  __vmalloc_node_noprof+0xad/0xf0
[  220.868192][T15159]  ? vhost_task_create+0x1d2/0x2e0
[  220.868216][T15159]  copy_process+0x2c70/0x76a0
[  220.868238][T15159]  ? __pfx_copy_process+0x10/0x10
[  220.868254][T15159]  ? lockdep_init_map_type+0x5c/0x280
[  220.868273][T15159]  ? lockdep_init_map_type+0x5c/0x280
[  220.868290][T15159]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  220.868307][T15159]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  220.868325][T15159]  vhost_task_create+0x1d2/0x2e0
[  220.868335][T15159]  ? __pfx_vhost_task_create+0x10/0x10
[  220.868350][T15159]  ? __pfx_vhost_task_fn+0x10/0x10
[  220.868367][T15159]  kvm_mmu_post_init_vm+0x1b7/0x370
[  220.868382][T15159]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  220.868396][T15159]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  220.868412][T15159]  kvm_vcpu_ioctl+0x5eb/0x1690
[  220.868427][T15159]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  220.868444][T15159]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  220.868461][T15159]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  220.868482][T15159]  ? hook_file_ioctl_common+0x145/0x410
[  220.868497][T15159]  ? selinux_file_ioctl+0x180/0x270
[  220.868511][T15159]  ? selinux_file_ioctl+0xb4/0x270
[  220.868526][T15159]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  220.868539][T15159]  __x64_sys_ioctl+0x18b/0x210
[  220.868553][T15159]  do_syscall_64+0xcd/0x4c0
[  220.868570][T15159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.868581][T15159] RIP: 0033:0x7ff28918e929
[  220.868591][T15159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.868602][T15159] RSP: 002b:00007ff289f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  220.868613][T15159] RAX: ffffffffffffffda RBX: 00007ff2893b5fa0 RCX: 00007ff28918e929
[  220.868620][T15159] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  220.868626][T15159] RBP: 00007ff289f57090 R08: 0000000000000000 R09: 0000000000000000
[  220.868632][T15159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.868638][T15159] R13: 0000000000000000 R14: 00007ff2893b5fa0 R15: 00007ffe1ed523f8
[  220.868652][T15159]  </TASK>
[  220.869043][T15159] syz.3.2875: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  220.876111][T15064] 8021q: adding VLAN 0 to HW filter on device bond0
[  220.879323][T15159] ,cpuset=
[  220.888831][T15064] 8021q: adding VLAN 0 to HW filter on device team0
[  220.889965][T15159] /
[  220.905288][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.908462][T15159] ,mems_allowed=0-1
[  220.909969][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.915070][T15159] 
[  220.935334][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.939408][T15159] CPU: 3 UID: 0 PID: 15159 Comm: syz.3.2875 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  220.939423][T15159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.939430][T15159] Call Trace:
[  220.939434][T15159]  <TASK>
[  220.939439][T15159]  dump_stack_lvl+0x16c/0x1f0
[  220.939459][T15159]  warn_alloc+0x248/0x3a0
[  220.939474][T15159]  ? __pfx_warn_alloc+0x10/0x10
[  220.939489][T15159]  ? kfree+0x2b4/0x4d0
[  220.939504][T15159]  ? __get_vm_area_node+0x208/0x330
[  220.939518][T15159]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  220.939530][T15159]  ? local_lock_release+0x99/0x140
[  220.939550][T15159]  ? vhost_task_create+0x1d2/0x2e0
[  220.939561][T15159]  ? rcu_read_unlock+0x17/0x60
[  220.939579][T15159]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  220.939590][T15159]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[  220.939612][T15159]  ? vhost_task_create+0x1d2/0x2e0
[  220.939621][T15159]  __vmalloc_node_noprof+0xad/0xf0
[  220.939632][T15159]  ? vhost_task_create+0x1d2/0x2e0
[  220.939644][T15159]  copy_process+0x2c70/0x76a0
[  220.939664][T15159]  ? __pfx_copy_process+0x10/0x10
[  220.939680][T15159]  ? lockdep_init_map_type+0x5c/0x280
[  220.939699][T15159]  ? lockdep_init_map_type+0x5c/0x280
[  220.939716][T15159]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  220.939733][T15159]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  220.939752][T15159]  vhost_task_create+0x1d2/0x2e0
[  220.939762][T15159]  ? __pfx_vhost_task_create+0x10/0x10
[  220.939776][T15159]  ? __pfx_vhost_task_fn+0x10/0x10
[  220.939793][T15159]  kvm_mmu_post_init_vm+0x1b7/0x370
[  220.939808][T15159]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  220.939822][T15159]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  220.939838][T15159]  kvm_vcpu_ioctl+0x5eb/0x1690
[  220.939852][T15159]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  220.939868][T15159]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  220.939886][T15159]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  220.939906][T15159]  ? hook_file_ioctl_common+0x145/0x410
[  220.939920][T15159]  ? selinux_file_ioctl+0x180/0x270
[  220.939934][T15159]  ? selinux_file_ioctl+0xb4/0x270
[  220.939949][T15159]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  220.939962][T15159]  __x64_sys_ioctl+0x18b/0x210
[  220.939975][T15159]  do_syscall_64+0xcd/0x4c0
[  220.939993][T15159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.940004][T15159] RIP: 0033:0x7ff28918e929
[  220.940013][T15159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.940023][T15159] RSP: 002b:00007ff289f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  220.940034][T15159] RAX: ffffffffffffffda RBX: 00007ff2893b5fa0 RCX: 00007ff28918e929
[  220.940041][T15159] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  220.940047][T15159] RBP: 00007ff289f57090 R08: 0000000000000000 R09: 0000000000000000
[  220.940053][T15159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.940059][T15159] R13: 0000000000000000 R14: 00007ff2893b5fa0 R15: 00007ffe1ed523f8
[  220.940073][T15159]  </TASK>
[  220.940077][T15159] Mem-Info:
[  220.941134][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  220.944237][T15159] active_anon:24000 inactive_anon:0 isolated_anon:0
[  220.944237][T15159]  active_file:8299 inactive_file:13890 isolated_file:0
[  220.944237][T15159]  unevictable:1768 dirty:883 writeback:0
[  220.944237][T15159]  slab_reclaimable:12629 slab_unreclaimable:86733
[  220.944237][T15159]  mapped:27487 shmem:13241 pagetables:1551
[  220.944237][T15159]  sec_pagetables:318 bounce:0
[  220.944237][T15159]  kernel_misc_reclaimable:0
[  220.944237][T15159]  free:439206 free_pcp:24675 free_cma:0
[  221.065980][T15064] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.068329][T15159] Node 0 active_anon:96556kB inactive_anon:0kB active_file:33196kB inactive_file:55308kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:110084kB dirty:3532kB writeback:0kB shmem:49528kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:15312kB pagetables:6292kB sec_pagetables:1272kB all_unreclaimable? yes Balloon:0kB
[  221.145704][T15159] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:252kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:40kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:176kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  221.155651][T15159] Node 0 DMA free:15316kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:44kB local_pcp:0kB free_cma:0kB
[  221.172789][T15159] lowmem_reserve[]: 0 1235 1235 1235 1235
[  221.174645][T15159] Node 0 DMA32 free:145764kB boost:16384kB min:43900kB low:50776kB high:57652kB reserved_highatomic:0KB free_highatomic:0KB active_anon:96200kB inactive_anon:0kB active_file:33196kB inactive_file:55308kB unevictable:3536kB writepending:3532kB present:2080628kB managed:1264728kB mlocked:0kB bounce:0kB free_pcp:62892kB local_pcp:14700kB free_cma:0kB
[  221.185139][T15159] lowmem_reserve[]: 0 0 0 0 0
[  221.186749][T15159] Node 1 Normal free:1596188kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:252kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781956kB mlocked:0kB bounce:0kB free_pcp:32680kB local_pcp:7948kB free_cma:0kB
[  221.196727][T15159] lowmem_reserve[]: 0 0 0 0 0
[  221.198342][T15159] Node 0 DMA: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 1*64kB (M) 1*128kB (M) 1*256kB (M) 1*512kB (M) 2*1024kB (UM) 0*2048kB 3*4096kB (UM) = 15316kB
[  221.207991][T15159] Node 0 DMA32: 39*4kB (UME) 36*8kB (ME) 13*16kB (E) 60*32kB (UME) 40*64kB (UME) 40*128kB (UME) 40*256kB (UME) 60*512kB (UM) 72*1024kB (UM) 8*2048kB (UM) 1*4096kB (U) = 145420kB
[  221.213794][T15159] Node 1 Normal: 118*4kB (UME) 61*8kB (UME) 90*16kB (UME) 36*32kB (UME) 35*64kB (UME) 23*128kB (UME) 17*256kB (UME) 8*512kB (UM) 4*1024kB (UM) 3*2048kB (ME) 383*4096kB (UM) = 1596192kB
[  221.220716][T15159] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  221.225355][T15159] Node 0 hugepages_total=4 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  221.228342][T15159] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  221.231368][T15159] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  221.236360][T15159] 35477 total pagecache pages
[  221.236544][T15064] veth0_vlan: entered promiscuous mode
[  221.237924][T15159] 0 pages in swap cache
[  221.240990][T15159] Free swap  = 124996kB
[  221.242360][T15159] Total swap = 124996kB
[  221.242684][T15064] veth1_vlan: entered promiscuous mode
[  221.243837][T15159] 1048443 pages RAM
[  221.246796][T15159] 0 pages HighMem/MovableOnly
[  221.248320][T15159] 282932 pages reserved
[  221.249716][T15159] 0 pages cma reserved
[  221.259654][T15064] veth0_macvtap: entered promiscuous mode
[  221.265196][T15064] veth1_macvtap: entered promiscuous mode
[  221.282294][T15064] batman_adv: batadv0: Interface activated: batadv_slave_0
[  221.292291][T15064] batman_adv: batadv0: Interface activated: batadv_slave_1
[  221.300362][T15064] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.303273][T15064] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.306043][T15064] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.308837][T15064] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.351078][ T7150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  221.354534][ T7150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  221.370050][ T7150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  221.372567][ T7150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  221.408170][T15220] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  221.412433][T15219] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  221.573466][ T5947] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  221.577248][ T5947] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  221.580755][ T5947] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  221.597684][ T5947] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  221.600969][ T5947] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  221.756346][ T1144] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.831242][ T1144] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.842335][T15230] chnl_net:caif_netlink_parms(): no params data found
[  221.894189][ T1144] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.932853][T15230] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.935828][T15230] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.938198][T15230] bridge_slave_0: entered allmulticast mode
[  221.940800][T15230] bridge_slave_0: entered promiscuous mode
[  221.945073][ T5947] Bluetooth: hci1: command tx timeout
[  221.947912][T15230] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.950237][T15230] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.952504][T15230] bridge_slave_1: entered allmulticast mode
[  221.957407][T15230] bridge_slave_1: entered promiscuous mode
[  221.983123][ T1144] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.003896][T15230] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  222.008408][T15230] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  222.023953][ T5947] Bluetooth: hci3: command 0x1003 tx timeout
[  222.024007][ T5944] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  222.070722][T15230] team0: Port device team_slave_0 added
[  222.076235][T15230] team0: Port device team_slave_1 added
[  222.091891][T15257] netlink: 'syz.2.2883': attribute type 3 has an invalid length.
[  222.118774][T15261] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2884'.
[  222.134561][T15230] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.136727][T15230] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.147270][T15230] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.151571][T15230] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.155839][T15230] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.163990][T15230] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.239734][T15230] hsr_slave_0: entered promiscuous mode
[  222.241993][T15230] hsr_slave_1: entered promiscuous mode
[  222.244351][T15230] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  222.246754][T15230] Cannot create hsr debugfs directory
[  222.555159][ T1144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  222.559024][ T1144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  222.562219][ T1144] bond0 (unregistering): Released all slaves
[  222.568806][ T1144] bond1 (unregistering): Released all slaves
[  222.574982][ T1144] bond2 (unregistering): Released all slaves
[  222.655461][ T1144] bond3 (unregistering): Released all slaves
[  222.728532][ T1144] bond4 (unregistering): Released all slaves
[  222.735578][ T1144] bond5 (unregistering): Released all slaves
[  222.818048][ T1144] bond6 (unregistering): Released all slaves
[  222.981928][T15280] FAULT_INJECTION: forcing a failure.
[  222.981928][T15280] name failslab, interval 1, probability 0, space 0, times 0
[  222.987029][T15280] CPU: 1 UID: 0 PID: 15280 Comm: syz.4.2889 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  222.987045][T15280] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  222.987052][T15280] Call Trace:
[  222.987056][T15280]  <TASK>
[  222.987060][T15280]  dump_stack_lvl+0x16c/0x1f0
[  222.987080][T15280]  should_fail_ex+0x512/0x640
[  222.987096][T15280]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  222.987112][T15280]  should_failslab+0xc2/0x120
[  222.987128][T15280]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  222.987142][T15280]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  222.987157][T15280]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  222.987170][T15280]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  222.987187][T15280]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  222.987206][T15280]  mmu_topup_memory_caches+0x25/0x170
[  222.987220][T15280]  kvm_mmu_load+0xd9/0x22a0
[  222.987232][T15280]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  222.987249][T15280]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  222.987267][T15280]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  222.987281][T15280]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  222.987291][T15280]  ? __pfx_kvm_mmu_load+0x10/0x10
[  222.987303][T15280]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  222.987319][T15280]  ? kvm_check_and_inject_events+0x71c/0x1310
[  222.987339][T15280]  vcpu_run+0x34eb/0x5500
[  222.987349][T15280]  ? kvm_mmu_post_init_vm+0x269/0x370
[  222.987365][T15280]  ? __lock_acquire+0xb8a/0x1c90
[  222.987385][T15280]  ? __pfx_vcpu_run+0x10/0x10
[  222.987414][T15280]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  222.987427][T15280]  ? __local_bh_enable_ip+0xa4/0x120
[  222.987444][T15280]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  222.987456][T15280]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  222.987473][T15280]  kvm_vcpu_ioctl+0x5eb/0x1690
[  222.987487][T15280]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  222.987504][T15280]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  222.987522][T15280]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  222.987542][T15280]  ? hook_file_ioctl_common+0x145/0x410
[  222.987557][T15280]  ? selinux_file_ioctl+0x180/0x270
[  222.987571][T15280]  ? selinux_file_ioctl+0xb4/0x270
[  222.987586][T15280]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  222.987599][T15280]  __x64_sys_ioctl+0x18b/0x210
[  222.987613][T15280]  do_syscall_64+0xcd/0x4c0
[  222.987630][T15280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.987641][T15280] RIP: 0033:0x7f2da798e929
[  222.987650][T15280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.987661][T15280] RSP: 002b:00007f2da8878038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  222.987671][T15280] RAX: ffffffffffffffda RBX: 00007f2da7bb5fa0 RCX: 00007f2da798e929
[  222.987678][T15280] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  222.987684][T15280] RBP: 00007f2da8878090 R08: 0000000000000000 R09: 0000000000000000
[  222.987690][T15280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  222.987696][T15280] R13: 0000000000000000 R14: 00007f2da7bb5fa0 R15: 00007ffcf1d1d038
[  222.987709][T15280]  </TASK>
[  223.143977][ T1144] tipc: Left network mode
[  223.203813][T15297] netlink: 'syz.4.2892': attribute type 3 has an invalid length.
[  223.209046][T15299] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2893'.
[  223.244005][T15301] ip6_tunnel: non-ECT from fe80:0000:0000:0000:0000:0000:0000:0021 with DS=0x7
[  223.245233][T15304] SELinux: syz.4.2896 (15304) set checkreqprot to 1. This is no longer supported.
[  223.247800][T15306] @: renamed from vlan0 (while UP)
[  223.314812][ T1149] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  223.326063][T15308] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2897'.
[  223.544332][ T1144] hsr_slave_0: left promiscuous mode
[  223.552212][ T1144] hsr_slave_1: left promiscuous mode
[  223.554434][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_0
[  223.564777][ T5979] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[  223.568525][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_1
[  223.582058][T15333] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2903'.
[  223.608073][T15336] overlayfs: failed to clone upperpath
[  223.635064][ T5944] Bluetooth: hci4: command tx timeout
[  223.704842][ T5979] usb 9-1: device descriptor read/64, error -71
[  223.965821][ T5979] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[  224.025043][ T5944] Bluetooth: hci1: command tx timeout
[  224.105150][ T1144] team0 (unregistering): Port device team_slave_1 removed
[  224.105307][ T5979] usb 9-1: device descriptor read/64, error -71
[  224.178931][ T1144] team0 (unregistering): Port device team_slave_0 removed
[  224.225365][ T5979] usb usb9-port1: attempt power cycle
[  224.575721][ T5979] usb 9-1: new full-speed USB device number 4 using dummy_hcd
[  224.599442][ T5979] usb 9-1: device descriptor read/8, error -71
[  224.713824][T15339] netlink: 'syz.2.2905': attribute type 3 has an invalid length.
[  224.716669][T15339] netlink: 'syz.2.2905': attribute type 3 has an invalid length.
[  224.778323][T15230] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  224.799208][T15230] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  224.812637][T15357] cgroup: none used incorrectly
[  224.817395][T15230] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  224.828783][T15230] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  224.836224][ T5979] usb 9-1: new full-speed USB device number 5 using dummy_hcd
[  224.856675][ T5979] usb 9-1: device descriptor read/8, error -71
[  224.873274][T15368] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2911'.
[  224.923169][T15230] 8021q: adding VLAN 0 to HW filter on device bond0
[  224.940874][T15230] 8021q: adding VLAN 0 to HW filter on device team0
[  224.955068][ T7151] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.957364][ T7151] bridge0: port 1(bridge_slave_0) entered forwarding state
[  224.971964][ T7151] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.974238][ T7151] bridge0: port 2(bridge_slave_1) entered forwarding state
[  224.977487][ T5979] usb usb9-port1: unable to enumerate USB device
[  224.980402][T15390] netlink: 'syz.0.2916': attribute type 3 has an invalid length.
[  224.983034][T15390] netlink: 'syz.0.2916': attribute type 3 has an invalid length.
[  224.995397][T15230] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  225.002951][T15230] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  225.098868][T15230] 8021q: adding VLAN 0 to HW filter on device batadv0
[  225.120684][T15403] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2919'.
[  225.122681][T15230] veth0_vlan: entered promiscuous mode
[  225.128636][T15230] veth1_vlan: entered promiscuous mode
[  225.149198][T15230] veth0_macvtap: entered promiscuous mode
[  225.152935][T15230] veth1_macvtap: entered promiscuous mode
[  225.163281][T15230] batman_adv: batadv0: Interface activated: batadv_slave_0
[  225.170731][T15230] batman_adv: batadv0: Interface activated: batadv_slave_1
[  225.178509][T15230] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  225.181803][T15230] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  225.184610][T15230] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  225.187871][T15230] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  225.222782][ T7162] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.225268][ T7162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.241038][ T7162] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.243508][ T7162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.480765][T15425] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  225.490013][T15425] netlink: 'syz.3.2926': attribute type 11 has an invalid length.
[  225.495031][   T40] audit: type=1400 audit(1750919634.657:838): avc:  denied  { mounton } for  pid=15424 comm="syz.3.2926" path="/bus" dev="proc" ino=4026531855 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=dir permissive=1
[  225.496693][T15425] overlay: filesystem on ./bus is read-only
[  225.531660][T15432] sctp: [Deprecated]: syz.2.2927 (pid 15432) Use of struct sctp_assoc_value in delayed_ack socket option.
[  225.531660][T15432] Use struct sctp_sack_info instead
[  225.559034][T15436] netlink: 'syz.3.2929': attribute type 3 has an invalid length.
[  225.562312][T15436] netlink: 'syz.3.2929': attribute type 3 has an invalid length.
[  225.603524][T15444] overlay: Unknown parameter 'permit_directio'
[  225.706561][ T5944] Bluetooth: hci4: command tx timeout
[  225.778315][T15452] kvm_pr_unimpl_wrmsr: 16 callbacks suppressed
[  225.778329][T15452] kvm: kvm [15451]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x18
[  225.783074][T15452] kvm: kvm [15451]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xc0b1
[  225.808597][T15456] fuse: Unknown parameter 'fD'
[  225.812153][T15456] veth0_to_bond: entered allmulticast mode
[  225.850636][T15461] netlink: 'syz.0.2937': attribute type 21 has an invalid length.
[  225.853363][T15461] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2937'.
[  225.894183][   T40] audit: type=1800 audit(1750919635.057:839): pid=15466 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.2938" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[  226.112905][ T5944] Bluetooth: hci1: command tx timeout
[  226.119109][T15476] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2942'.
[  226.235033][T15489] fuse: Bad value for 'fd'
[  226.351900][   T40] audit: type=1400 audit(1750919635.517:840): avc:  denied  { getopt } for  pid=15495 comm="syz.0.2948" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  226.474595][T15505] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2951'.
[  226.513957][T15508] netlink: 'syz.0.2952': attribute type 3 has an invalid length.
[  226.516512][T15508] netlink: 'syz.0.2952': attribute type 3 has an invalid length.
[  226.541052][   T40] audit: type=1400 audit(1750919635.706:841): avc:  denied  { mount } for  pid=15509 comm="syz.4.2953" name="/" dev="securityfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[  226.565965][   T40] audit: type=1400 audit(1750919635.726:842): avc:  denied  { unmount } for  pid=15064 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[  226.592803][T15522] syz.4.2956: attempt to access beyond end of device
[  226.592803][T15522] nbd4: rw=4096, sector=2, nr_sectors = 2 limit=0
[  226.597461][T15522] EXT4-fs (nbd4): unable to read superblock
[  226.608075][T15524] delete_channel: no stack
[  226.665496][T15531] netlink: 'syz.4.2960': attribute type 29 has an invalid length.
[  226.827168][T15536] kvm: kvm [15535]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xff01
[  226.829949][T15536] kvm: kvm [15535]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0xfeb3
[  226.849743][T15536] kvm: kvm [15535]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xff01
[  226.852736][T15536] kvm: kvm [15535]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xfe33
[  226.871406][T15536] kvm: kvm [15535]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0xff01
[  226.874844][T15536] kvm: kvm [15535]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x186) = 0xfe33
[  226.891402][T15536] kvm_intel: kvm [15535]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xff01
[  226.944950][T15541] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2962'.
[  227.011706][T15545] netlink: 'syz.2.2964': attribute type 3 has an invalid length.
[  227.014309][T15545] netlink: 'syz.2.2964': attribute type 3 has an invalid length.
[  227.265415][T15561] netlink: 'syz.2.2970': attribute type 1 has an invalid length.
[  227.483787][T15567] syzkaller1: left promiscuous mode
[  227.486011][T15567] syzkaller1: left allmulticast mode
[  227.693795][T15585] netlink: 'syz.4.2977': attribute type 3 has an invalid length.
[  227.697422][T15585] netlink: 'syz.4.2977': attribute type 3 has an invalid length.
[  227.698763][T15581] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2976'.
[  227.703413][T15581] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2976'.
[  227.740506][T15587] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2979'.
[  227.787722][ T5944] Bluetooth: hci4: command tx timeout
[  227.835579][   T40] audit: type=1400 audit(1750919636.996:843): avc:  denied  { setopt } for  pid=15597 comm="syz.0.2982" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  227.897425][T15601] No source specified
[  228.062067][T15607] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  228.120554][T15617] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2988'.
[  228.623201][T15648] sctp: [Deprecated]: syz.4.2995 (pid 15648) Use of struct sctp_assoc_value in delayed_ack socket option.
[  228.623201][T15648] Use struct sctp_sack_info instead
[  228.693329][T15651] netlink: 'syz.0.2996': attribute type 3 has an invalid length.
[  228.719357][T15653] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2997'.
[  228.935374][T15667] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  228.940468][T15667] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  229.186572][T15705] xt_hashlimit: size too large, truncated to 1048576
[  229.250433][T15710] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  229.253077][T15710] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  229.255850][T15710] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  229.258645][T15710] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  229.315319][T15718] bond4: entered promiscuous mode
[  229.317334][T15718] bond4: entered allmulticast mode
[  229.321767][T15718] openvswitch: netlink: Geneve opt len 10 is not a multiple of 4.
[  229.341068][T15715] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  229.404913][T15732] team0: No ports can be present during mode change
[  229.439621][   T40] audit: type=1326 audit(1750919638.604:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15743 comm="syz.4.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2da798e929 code=0x7ffc0000
[  229.446829][   T40] audit: type=1326 audit(1750919638.604:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15743 comm="syz.4.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2da798e929 code=0x7ffc0000
[  229.453955][   T40] audit: type=1326 audit(1750919638.604:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15743 comm="syz.4.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f2da798e929 code=0x7ffc0000
[  229.461281][   T40] audit: type=1326 audit(1750919638.604:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15743 comm="syz.4.3022" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2da798e929 code=0x7ffc0000
[  229.689093][T15772] program syz.4.3031 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  229.820449][T15790] xt_CT: You must specify a L4 protocol and not use inversions on it
[  229.869278][ T5944] Bluetooth: hci4: command tx timeout
[  229.918778][T15806] bridge0: entered promiscuous mode
[  229.924398][T15806] macvlan2: entered promiscuous mode
[  230.129861][T15855] bpf: Bad value for 'uid'
[  230.377352][T15877] kAFS: unparsable volume name
[  230.496502][T15883] __nla_validate_parse: 16 callbacks suppressed
[  230.496514][T15883] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3058'.
[  230.886107][T15920] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3069'.
[  230.916630][T15922] overlayfs: failed to clone upperpath
[  230.965701][T15925] CIFS: Unable to determine destination address
[  230.971070][T15925] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3072'.
[  230.971117][T15925] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  230.971124][T15925] IPv6: NLM_F_CREATE should be set when creating new route
[  230.971136][T15925] IPv6: NLM_F_CREATE should be set when creating new route
[  231.148293][T15946] validate_nla: 16 callbacks suppressed
[  231.148310][T15946] netlink: 'syz.0.3078': attribute type 3 has an invalid length.
[  231.148422][T15946] netlink: 'syz.0.3078': attribute type 3 has an invalid length.
[  231.189502][T15948] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3079'.
[  231.299658][   T40] kauditd_printk_skb: 105 callbacks suppressed
[  231.299670][   T40] audit: type=1400 audit(1750919640.453:953): avc:  denied  { create } for  pid=15953 comm="syz.0.3082" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1
[  231.326415][   T40] audit: type=1400 audit(1750919640.483:954): avc:  denied  { read } for  pid=15955 comm="syz.0.3083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  231.760869][T15967] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  231.787706][   T40] audit: type=1400 audit(1750919640.943:955): avc:  denied  { create } for  pid=15969 comm="syz.4.3087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=irda_socket permissive=1
[  231.844233][T15977] netlink: 'syz.4.3088': attribute type 3 has an invalid length.
[  231.846720][T15977] netlink: 'syz.4.3088': attribute type 3 has an invalid length.
[  231.898614][T15981] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3090'.
[  231.929301][   T40] audit: type=1400 audit(1750919641.083:956): avc:  denied  { map_create } for  pid=15982 comm="syz.3.3091" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  231.977661][T15992] loop6: detected capacity change from 0 to 524287999
[  231.993631][   T40] audit: type=1400 audit(1750919641.153:957): avc:  denied  { map_read map_write } for  pid=15991 comm="syz.3.3094" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  232.030682][   T40] audit: type=1400 audit(1750919641.193:958): avc:  denied  { prog_load } for  pid=15989 comm="syz.2.3093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  232.040954][T15990] netlink: 'syz.2.3093': attribute type 29 has an invalid length.
[  232.043759][T15990] netlink: 'syz.2.3093': attribute type 29 has an invalid length.
[  232.046523][T15990] netlink: 492 bytes leftover after parsing attributes in process `syz.2.3093'.
[  232.093919][   T40] audit: type=1400 audit(1750919641.253:959): avc:  denied  { map } for  pid=16002 comm="syz.2.3096" path="socket:[71955]" dev="sockfs" ino=71955 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  232.101926][   T40] audit: type=1400 audit(1750919641.253:960): avc:  denied  { read } for  pid=16002 comm="syz.2.3096" path="socket:[71955]" dev="sockfs" ino=71955 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  232.124368][T16005] netlink: 'syz.3.3097': attribute type 3 has an invalid length.
[  232.128848][T16005] netlink: 'syz.3.3097': attribute type 3 has an invalid length.
[  232.318105][T16022] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3102'.
[  232.351659][T16028] loop2: detected capacity change from 0 to 7
[  232.360888][T16028] Dev loop2: unable to read RDB block 7
[  232.362692][T16028]  loop2: unable to read partition table
[  232.364541][T16028] loop2: partition table beyond EOD, truncated
[  232.370712][T16028] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  232.392283][T16031] syz_tun: entered allmulticast mode
[  232.404038][T16031] dvmrp0: entered allmulticast mode
[  232.411511][T16029] dvmrp0: left allmulticast mode
[  232.421177][T16029] syz_tun: left allmulticast mode
[  232.457521][   T40] audit: type=1400 audit(1750919641.612:961): avc:  denied  { prog_run } for  pid=16037 comm="syz.2.3107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  232.491985][T16040] netlink: 'syz.2.3108': attribute type 3 has an invalid length.
[  232.495156][T16040] netlink: 'syz.2.3108': attribute type 3 has an invalid length.
[  232.558916][T16049] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3112'.
[  232.657629][T16065] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3119'.
[  232.717074][T16075] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3123'.
[  232.750246][T16081] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  232.753477][T16081] overlayfs: failed to set xattr on upper
[  232.755429][T16081] overlayfs: ...falling back to redirect_dir=nofollow.
[  232.757565][T16081] overlayfs: ...falling back to metacopy=off.
[  232.759471][T16081] overlayfs: ...falling back to index=off.
[  232.761434][T16081] overlayfs: ...falling back to uuid=null.
[  232.766713][T16081] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  232.804076][T16086] xt_hashlimit: size too large, truncated to 1048576
[  232.823567][T16091] cgroup: none used incorrectly
[  232.856889][T16095] tipc: Started in network mode
[  232.858521][T16095] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711
[  232.862783][T16095] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  232.913901][T16100] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  233.040659][   T40] audit: type=1400 audit(1750919642.192:962): avc:  denied  { read } for  pid=16113 comm="syz.3.3134" name="mouse1" dev="devtmpfs" ino=1298 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  233.065793][T16119] overlayfs: conflicting options: userxattr,metacopy=on
[  233.086024][T16121] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16121 comm=syz.4.3137
[  234.870254][T16234] trusted_key: encrypted_key: keyword 'new0default' not recognized
[  235.367413][T16269] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  235.370830][T16269] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.455047][T16269] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  235.458307][T16269] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.515958][T16269] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  235.519736][T16269] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.596185][T16269] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  235.600086][T16269] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.687721][T16269] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  235.690705][T16269] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  235.698227][T16275] __nla_validate_parse: 13 callbacks suppressed
[  235.698237][T16275] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3193'.
[  235.700458][T16269] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  235.700711][T16275] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3193'.
[  235.705008][T16269] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  235.718325][T16269] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  235.720985][T16269] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  235.728318][T16269] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  235.731000][T16269] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  235.844447][T16288] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3198'.
[  235.877949][T16283] netlink: 212408 bytes leftover after parsing attributes in process `syz.4.3196'.
[  236.103241][T16321] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3208'.
[  236.139596][T16330] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3211'.
[  236.174240][T16323] overlayfs: failed to clone upperpath
[  236.228791][T16349] validate_nla: 18 callbacks suppressed
[  236.228805][T16349] netlink: 'syz.0.3216': attribute type 3 has an invalid length.
[  236.237899][T16349] netlink: 'syz.0.3216': attribute type 3 has an invalid length.
[  236.250722][T16348] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  236.252943][T16348] overlayfs: failed to set xattr on upper
[  236.254922][T16348] overlayfs: ...falling back to redirect_dir=nofollow.
[  236.257082][T16348] overlayfs: ...falling back to index=off.
[  236.259043][T16348] overlayfs: ...falling back to uuid=null.
[  236.267402][T16354] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3219'.
[  236.271024][T16354] ip_vti0: Master is either lo or non-ether device
[  236.275031][T16354] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  236.279055][T16356] overlayfs: option "workdir=." is useless in a non-upper mount, ignore
[  236.279625][T16354] xt_CHECKSUM: unsupported CHECKSUM operation f4
[  236.282099][T16356] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  236.291027][T16356] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  236.319402][T16360] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3222'.
[  236.319846][T16358] bond0: entered promiscuous mode
[  236.327270][T16358] bond_slave_0: entered promiscuous mode
[  236.329231][T16358] bond_slave_1: entered promiscuous mode
[  236.338613][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  236.338621][   T40] audit: type=1400 audit(1750919645.490:969): avc:  denied  { read } for  pid=16344 comm="syz.4.3215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  236.423064][T16380] netlink: 'syz.2.3228': attribute type 3 has an invalid length.
[  236.432255][T16380] netlink: 'syz.2.3228': attribute type 3 has an invalid length.
[  236.446173][T16382] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3229'.
[  236.456390][T16384] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3230'.
[  236.471331][T16382] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=16382 comm=syz.4.3229
[  236.490790][T16382] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16382 comm=syz.4.3229
[  236.678971][T16414] netlink: 'syz.4.3240': attribute type 3 has an invalid length.
[  236.681523][T16414] netlink: 'syz.4.3240': attribute type 3 has an invalid length.
[  236.798764][T16430] overlayfs: failed to clone upperpath
[  236.874871][T16433] syzkaller1: entered promiscuous mode
[  236.877613][T16433] syzkaller1: entered allmulticast mode
[  237.220878][T16466] netlink: 'syz.2.3252': attribute type 3 has an invalid length.
[  237.223474][T16466] netlink: 'syz.2.3252': attribute type 3 has an invalid length.
[  237.276897][T16470] netlink: 'syz.2.3253': attribute type 1 has an invalid length.
[  237.337531][T16475] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  237.340592][T16475] gfs2: path_lookup on ™6(ï+‰d‹QÌnB´!eU‚çVè!š`:Ñ 8×DSEíÄðÃÄèÎ	Áy|YT¢®{-€í
ê°”,mb/ returned error -2
[  237.397718][T16488] openvswitch: netlink: Geneve opt len 10 is not a multiple of 4.
[  237.414956][T16490] CIFS mount error: No usable UNC path provided in device string!
[  237.414956][T16490] 
[  237.419134][T16490] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  237.457111][   T40] audit: type=1400 audit(1750919646.609:970): avc:  denied  { ioctl } for  pid=16493 comm="syz.4.3261" path="/90/file0" dev="tmpfs" ino=498 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  237.491708][T16497] netlink: 'syz.3.3262': attribute type 3 has an invalid length.
[  237.564681][   T40] audit: type=1400 audit(1750919646.719:971): avc:  denied  { getopt } for  pid=16505 comm="syz.4.3266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  237.995227][T16525] binder: 16524:16525 ioctl c0306201 0 returned -14
[  238.049407][T16533] trusted_key: encrypted_key: insufficient parameters specified
[  238.418159][T16555] geneve2: entered promiscuous mode
[  238.419857][T16555] geneve2: entered allmulticast mode
[  238.729581][T16585] bridge_slave_0: left allmulticast mode
[  238.731404][T16585] bridge_slave_0: left promiscuous mode
[  238.733281][T16585] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.739383][T16585] bridge_slave_1: left allmulticast mode
[  238.741205][T16585] bridge_slave_1: left promiscuous mode
[  238.743029][T16585] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.747718][T16585] bond0: (slave bond_slave_0): Releasing backup interface
[  238.752351][T16585] bond0: (slave bond_slave_1): Releasing backup interface
[  238.762412][T16585] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  238.765115][T16585] batman_adv: batadv0: Removing interface: batadv_slave_0
[  238.768289][T16585] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  238.771261][T16585] batman_adv: batadv0: Removing interface: batadv_slave_1
[  238.780278][T16585] bond2: (slave geneve2): Releasing active interface
[  238.782490][T16585] geneve2: left promiscuous mode
[  239.096242][T16619] @: renamed from vlan0 (while UP)
[  239.265763][T16641] configfs: Unknown parameter 'verity'
[  239.272491][   T40] audit: type=1400 audit(1750919648.428:972): avc:  denied  { remount } for  pid=16640 comm="syz.4.3306" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  239.440579][T16664] ip6erspan0: entered promiscuous mode
[  239.549770][T16680] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  239.601035][T16680] batman_adv: batadv0: Removing interface: batadv_slave_1
[  239.651534][T16689] syz_tun: entered allmulticast mode
[  239.655145][T16689] SELinux: failure in sel_netif_sid_slow(), invalid network interface (0)
[  239.658037][T16689] mroute: pending queue full, dropping entries
[  239.660783][T16689] syz_tun: left allmulticast mode
[  240.108201][T16745] tipc: Started in network mode
[  240.109816][T16745] tipc: Node identity 7f000001, cluster identity 4711
[  240.112282][T16745] tipc: Enabled bearer <udp:syz2>, priority 10
[  240.762498][T16780] __nla_validate_parse: 29 callbacks suppressed
[  240.762511][T16780] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3355'.
[  240.905731][T16810] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3366'.
[  241.011251][   T40] audit: type=1400 audit(1750919650.167:973): avc:  denied  { setopt } for  pid=16832 comm="syz.0.3373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  241.063858][T16847] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3377'.
[  241.110072][T16856] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3381'.
[  241.159840][   T40] audit: type=1400 audit(1750919650.317:974): avc:  denied  { append } for  pid=16860 comm="syz.3.3382" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  241.228651][   T10] tipc: Node number set to 2130706433
[  241.356424][T16873] validate_nla: 24 callbacks suppressed
[  241.356436][T16873] netlink: 'syz.4.3387': attribute type 3 has an invalid length.
[  241.360644][T16873] netlink: 'syz.4.3387': attribute type 3 has an invalid length.
[  241.442196][T16880] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3390'.
[  241.507763][T16885] batadv_slave_0: entered promiscuous mode
[  241.518105][T16885] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3392'.
[  241.524427][   T40] audit: type=1326 audit(1750919650.677:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16884 comm="syz.0.3392" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f717958e929 code=0x0
[  241.597841][T16893] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3394'.
[  241.694581][T16893] team0: Port device team_slave_0 removed
[  242.148873][T16905] netlink: 'syz.2.3397': attribute type 3 has an invalid length.
[  242.151609][T16905] netlink: 'syz.2.3397': attribute type 3 has an invalid length.
[  242.183460][ T7165] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.186081][ T7165] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.241762][T16911] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3400'.
[  242.516246][T16928] netlink: 'syz.0.3406': attribute type 3 has an invalid length.
[  242.519000][T16928] netlink: 'syz.0.3406': attribute type 3 has an invalid length.
[  242.634076][T16939] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  242.800383][T16946] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3412'.
[  242.887535][ T1122] sr 2:0:0:0: [sr0] tag#16 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  242.890659][ T1122] sr 2:0:0:0: [sr0] tag#16 Sense Key : Illegal Request [current] 
[  242.893186][ T1122] sr 2:0:0:0: [sr0] tag#16 Add. Sense: Invalid command operation code
[  242.895867][ T1122] sr 2:0:0:0: [sr0] tag#16 CDB: Write(10) 2a 00 00 00 00 00 00 00 02 00
[  242.898721][ T1122] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[  242.901968][ T1122] buffer_io_error: 23 callbacks suppressed
[  242.901975][ T1122] Buffer I/O error on dev sr0, logical block 0, lost async page write
[  242.940502][T16956] netlink: 'syz.4.3416': attribute type 3 has an invalid length.
[  242.943953][T16956] netlink: 'syz.4.3416': attribute type 3 has an invalid length.
[  243.196315][T16985] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3424'.
[  243.231869][T16988] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=101 sclass=netlink_tcpdiag_socket pid=16988 comm=syz.4.3426
[  243.237650][T16988] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=16988 comm=syz.4.3426
[  243.242007][T16988] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=16988 comm=syz.4.3426
[  243.266890][T16994] netlink: 'syz.2.3427': attribute type 3 has an invalid length.
[  243.270011][T16994] netlink: 'syz.2.3427': attribute type 3 has an invalid length.
[  243.352000][T17005] netlink: zone id is out of range
[  243.353928][T17005] netlink: get zone limit has 8 unknown bytes
[  244.024815][T17088] mac80211_hwsim hwsim21 wlan0: vlans aren't supported yet for dev_uc|mc_add()
[  244.240096][T17107] binder: 17106:17107 ioctl c0306201 200000000640 returned -22
[  244.741795][T17163] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17163 comm=syz.0.3481
[  244.963872][T17206] trusted_key: encrypted_key: hex blob is missing
[  244.963934][   T40] audit: type=1400 audit(1750919654.115:976): avc:  denied  { setattr } for  pid=17205 comm="syz.4.3494" name="AX25" dev="sockfs" ino=75485 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  244.975061][T17202] 8021q: adding VLAN 0 to HW filter on device bond1
[  244.992137][T17202] bond1: (slave erspan0): making interface the new active one
[  244.995088][T17202] bond1: (slave erspan0): Enslaving as an active interface with an up link
[  245.032691][T17211] binder: BC_ATTEMPT_ACQUIRE not supported
[  245.034763][T17211] binder: 17210:17211 ioctl c0306201 200000000a80 returned -22
[  245.073898][   T40] audit: type=1400 audit(1750919654.225:977): avc:  denied  { lock } for  pid=17216 comm="syz.4.3498" path="socket:[76180]" dev="sockfs" ino=76180 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  245.301893][   T40] audit: type=1400 audit(1750919654.455:978): avc:  denied  { map } for  pid=17243 comm="syz.4.3508" path="/dev/bus/usb/004/001" dev="devtmpfs" ino=752 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  245.305421][T17244] hub 4-0:1.0: USB hub found
[  245.313912][T17244] hub 4-0:1.0: 2 ports detected
[  245.385684][T17254] 8021q: adding VLAN 0 to HW filter on device bond2
[  245.399556][   T40] audit: type=1400 audit(1750919654.555:979): avc:  denied  { node_bind } for  pid=17261 comm="syz.3.3514" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  245.409771][T17254] 8021q: adding VLAN 0 to HW filter on device bond2
[  245.412451][T17254] bond2: (slave vcan1): The slave device specified does not support setting the MAC address
[  245.416888][T17254] bond2: (slave vcan1): Error -95 calling set_mac_address
[  245.459673][T17264] netdevsim netdevsim4: Direct firmware load for .
[  245.459673][T17264]  failed with error -2
[  245.459706][T17264] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  245.459706][T17264] 
[  245.561775][   T40] audit: type=1326 audit(1750919654.715:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17276 comm="syz.2.3519" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f860298e929 code=0x0
[  245.596275][   T40] audit: type=1400 audit(1750919654.745:981): avc:  granted  { setsecparam } for  pid=17278 comm="syz.4.3520" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  245.686688][T17279] hsr_slave_0 (unregistering): left promiscuous mode
[  245.933119][T17291] __nla_validate_parse: 84 callbacks suppressed
[  245.933132][T17291] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3525'.
[  246.005196][T17296] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3527'.
[  246.072245][T17297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17297 comm=syz.0.3527
[  246.430105][T17305] validate_nla: 18 callbacks suppressed
[  246.430118][T17305] netlink: 'syz.2.3529': attribute type 3 has an invalid length.
[  246.434472][T17305] netlink: 'syz.2.3529': attribute type 3 has an invalid length.
[  246.614371][T17286] Bluetooth: hci1: Opcode 0x0401 failed: -4
[  246.646953][T17318] binder: BINDER_SET_CONTEXT_MGR already set
[  246.650990][T17318] binder: 17316:17318 ioctl 4018620d 200000000340 returned -16
[  246.653995][T17318] netlink: 'syz.4.3534': attribute type 8 has an invalid length.
[  246.657750][T17320] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3535'.
[  246.766348][T17333] netlink: 'syz.2.3539': attribute type 3 has an invalid length.
[  246.768884][T17333] netlink: 'syz.2.3539': attribute type 3 has an invalid length.
[  246.853269][   T40] audit: type=1804 audit(1750919656.004:982): pid=17340 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.3542" name="file0" dev="tmpfs" ino=1882 res=1 errno=0
[  246.861972][   T40] audit: type=1800 audit(1750919656.004:983): pid=17340 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.3542" name="file0" dev="tmpfs" ino=1882 res=0 errno=0
[  246.868780][   T40] audit: type=1800 audit(1750919656.004:984): pid=17342 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.3542" name="file0" dev="tmpfs" ino=1882 res=0 errno=0
[  246.879819][   T40] audit: type=1804 audit(1750919656.004:985): pid=17340 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.2.3542" name="file0" dev="tmpfs" ino=1882 res=1 errno=0
[  246.905260][T17348] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17348 comm=syz.2.3544
[  246.938510][T17353] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3545'.
[  246.959161][T17339] kvm: kvm [17337]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x5
[  246.962165][T17339] kvm: kvm [17337]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0xf8
[  246.971026][T17355] netlink: 'syz.2.3546': attribute type 21 has an invalid length.
[  246.988439][T17339] kvm: kvm [17337]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x5
[  246.991425][T17339] kvm: kvm [17337]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xc876
[  246.995561][T17339] kvm: kvm [17337]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0xff01
[  246.998437][T17339] kvm: kvm [17337]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x186) = 0xfed0
[  247.014463][T17339] kvm_intel: kvm [17337]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x31
[  247.024727][T17359] netlink: 'syz.2.3548': attribute type 3 has an invalid length.
[  247.026163][T17339] kvm_intel: kvm [17337]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xff63
[  247.027211][T17359] netlink: 'syz.2.3548': attribute type 3 has an invalid length.
[  247.119808][T17363] sp0: Synchronizing with TNC
[  247.126060][T17363] sp0: Found TNC
[  247.132790][T17363] sp1: Synchronizing with TNC
[  247.149279][   T40] audit: type=1400 audit(1750919656.284:986): avc:  denied  { connect } for  pid=17362 comm="syz.3.3550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  247.229381][   T40] audit: type=1400 audit(1750919656.374:987): avc:  denied  { sys_admin } for  pid=17360 comm="syz.2.3549" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  247.298798][T17372] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17372 comm=syz.2.3553
[  247.328123][T17376] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3554'.
[  247.397755][T17393] netlink: 'syz.3.3557': attribute type 3 has an invalid length.
[  247.397838][T17393] netlink: 'syz.3.3557': attribute type 3 has an invalid length.
[  247.613715][T17415] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3565'.
[  247.641704][   T40] audit: type=1400 audit(1750919656.794:988): avc:  denied  { execute } for  pid=17416 comm="syz.0.3566" path="pipe:[77112]" dev="pipefs" ino=77112 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  247.749618][T17430] netlink: 100 bytes leftover after parsing attributes in process `syz.0.3571'.
[  247.761723][T17434] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3572'.
[  247.799831][ T5944] Bluetooth: hci1: command 0x0401 tx timeout
[  247.887048][T17439] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3574'.
[  247.919604][   T40] audit: type=1400 audit(1750919657.063:989): avc:  denied  { create } for  pid=17440 comm="syz.3.3576" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_generic_socket permissive=1
[  247.920253][   T40] audit: type=1400 audit(1750919657.073:990): avc:  denied  { write } for  pid=17440 comm="syz.3.3576" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_generic_socket permissive=1
[  247.920346][T17443] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3576'.
[  247.920365][T17443] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  247.925283][   T40] audit: type=1400 audit(1750919657.073:991): avc:  denied  { create } for  pid=17440 comm="syz.3.3576" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  248.409339][T17462] dummy0: entered promiscuous mode
[  248.412346][T17462] bridge0: port 3(dummy0) entered blocking state
[  248.414432][T17462] bridge0: port 3(dummy0) entered disabled state
[  248.416775][T17462] dummy0: entered allmulticast mode
[  248.419633][T17462] bridge0: port 3(dummy0) entered blocking state
[  248.421805][T17462] bridge0: port 3(dummy0) entered forwarding state
[  248.648273][ T5944] Bluetooth: hci1: unexpected event for opcode 0x0c7d
[  248.979539][T17528] No such timeout policy "syz1"
[  249.015256][T17533] SELinux: syz.4.3609 (17533) set checkreqprot to 1. This is no longer supported.
[  249.376989][T17570] kvm: kvm [17569]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xff01
[  249.379981][T17570] kvm: kvm [17569]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0xfeb3
[  249.393019][T17570] kvm: kvm [17569]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x1
[  249.395988][T17570] kvm: kvm [17569]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x8483
[  249.414899][T17570] kvm_intel: kvm [17569]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1
[  249.418139][T17570] kvm_intel: kvm [17569]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x1d9) = 0xd15b
[  250.021013][ T2212] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  250.172238][ T2212] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  250.175578][ T2212] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  250.178674][ T2212] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  250.184541][ T2212] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  250.187347][ T2212] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.195283][ T2212] usb 9-1: config 0 descriptor??
[  250.402811][ T2212] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  250.414209][ T2212] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  250.425914][ T2212] usb 9-1: USB disconnect, device number 6
[  250.454033][T17675] fido_id[17675]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb9/report_descriptor': No such file or directory
[  250.503149][T17682] overlay: ./file0 is not a directory
[  250.868584][T17707] kvm_intel: kvm [17706]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1
[  250.873271][T17707] kvm_intel: kvm [17706]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x1d9) = 0xd15b
[  251.191318][T17711] dummy0: left allmulticast mode
[  251.193310][T17711] bridge0: port 3(dummy0) entered disabled state
[  251.197712][T17711] batman_adv: batadv0: Adding interface: dummy0
[  251.199676][T17711] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.207984][T17711] batman_adv: batadv0: Interface activated: dummy0
[  251.224970][T17711] batadv0: mtu less than device minimum
[  251.228215][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.233597][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.238556][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.242203][T17718] __nla_validate_parse: 17 callbacks suppressed
[  251.242213][T17718] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3673'.
[  251.243529][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.252058][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.255675][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.259300][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.263146][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.266776][T17711] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  251.511102][T17732] kvm_intel: kvm [17731]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1
[  251.514663][T17732] kvm_intel: kvm [17731]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x1d9) = 0xd15b
[  251.516957][T17737] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3680'.
[  251.519710][T17734] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3679'.
[  251.523806][T17734] IPVS: Unknown mcast interface: wlau1
[  251.572253][T17742] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3682'.
[  251.664344][T17749] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3685'.
[  251.703818][T17751] validate_nla: 23 callbacks suppressed
[  251.703830][T17751] netlink: 'syz.0.3686': attribute type 3 has an invalid length.
[  251.708260][T17751] netlink: 'syz.0.3686': attribute type 3 has an invalid length.
[  251.711867][ T5992] usb 9-1: new low-speed USB device number 7 using dummy_hcd
[  251.861992][ T5992] usb 9-1: Invalid ep0 maxpacket: 64
[  251.992585][ T5992] usb 9-1: new low-speed USB device number 8 using dummy_hcd
[  252.019589][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  252.019601][   T40] audit: type=1400 audit(1750919661.161:996): avc:  denied  { connect } for  pid=17766 comm="syz.2.3690" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  252.061723][T17769] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3691'.
[  252.071307][T17769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3691'.
[  252.152197][ T5992] usb 9-1: Invalid ep0 maxpacket: 64
[  252.156286][ T5992] usb usb9-port1: attempt power cycle
[  252.224247][T17773] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3692'.
[  252.225633][T17775] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3693'.
[  252.289015][T17787] netlink: 'syz.2.3697': attribute type 3 has an invalid length.
[  252.291570][T17787] netlink: 'syz.2.3697': attribute type 3 has an invalid length.
[  252.352270][T17803] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3703'.
[  252.367662][T17806] bridge_slave_0: left allmulticast mode
[  252.371274][T17806] bridge0: port 1(bridge_slave_0) entered disabled state
[  252.376822][T17806] bridge_slave_1: left allmulticast mode
[  252.378597][T17806] bridge_slave_1: left promiscuous mode
[  252.380406][T17806] bridge0: port 2(bridge_slave_1) entered disabled state
[  252.387750][T17806] bond0: (slave bond_slave_0): Releasing backup interface
[  252.390173][T17806] bond_slave_0: left promiscuous mode
[  252.394676][T17806] bond0: (slave bond_slave_1): Releasing backup interface
[  252.397307][T17806] bond_slave_1: left promiscuous mode
[  252.413907][T17806] team0: Port device team_slave_0 removed
[  252.423294][   T40] audit: type=1400 audit(1750919661.571:997): avc:  denied  { checkpoint_restore } for  pid=17804 comm="syz.3.3705" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  252.423565][T17806] team0: Port device team_slave_1 removed
[  252.433655][T17806] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  252.436115][T17806] batman_adv: batadv0: Removing interface: batadv_slave_0
[  252.439470][T17806] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  252.441858][T17806] batman_adv: batadv0: Removing interface: batadv_slave_1
[  252.445504][T17816] 9p: Unknown access argument ü~ª¾CŠ7aENñÈþ“Ù«^-á¼Î9ªyûGZ%]ic›IC<yg²|¬Ä͆ŒuGéyŸÜÌ[Ï=!·l�ëŽ\|£í‚fRaïÐoXi1ðê`ïŠruš{c%fÉlµï
çˆ×8oe¼;™Å
[  252.445504][T17816] ãÖá¦~
[  252.445504][T17816] <éµPíKÐ*9�%�À€ï3ÞGÚ2Šä1y<‚)Vë…¼{
GSf¬1ÄÖ±Æf7F íÒQ7K³}¬è¶ötC�Ƥ�«ò(Ï™
[  252.445504][T17816] ­
"æ§*³ŒÒ00000000000000036032: -22
[  252.492297][ T5992] usb 9-1: new low-speed USB device number 9 using dummy_hcd
[  252.512703][ T5992] usb 9-1: Invalid ep0 maxpacket: 64
[  252.642695][ T5992] usb 9-1: new low-speed USB device number 10 using dummy_hcd
[  252.645097][T17825] netlink: 'syz.0.3710': attribute type 3 has an invalid length.
[  252.647820][T17825] netlink: 'syz.0.3710': attribute type 3 has an invalid length.
[  252.664679][ T5992] usb 9-1: Invalid ep0 maxpacket: 64
[  252.666579][ T5992] usb usb9-port1: unable to enumerate USB device
[  253.455348][T17850] 9pnet: p9_errstr2errno: server reported unknown error 00000000000000000009
[  253.463898][   T40] audit: type=1326 audit(1750919662.610:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17851 comm="syz.0.3720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x50000
[  253.475052][   T40] audit: type=1326 audit(1750919662.610:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17851 comm="syz.0.3720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x50000
[  253.484188][   T40] audit: type=1326 audit(1750919662.610:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17851 comm="syz.0.3720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x50000
[  253.493325][   T40] audit: type=1326 audit(1750919662.610:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17851 comm="syz.0.3720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x50000
[  253.502531][   T40] audit: type=1326 audit(1750919662.610:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17851 comm="syz.0.3720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x50000
[  253.511927][   T40] audit: type=1326 audit(1750919662.610:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17851 comm="syz.0.3720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x50000
[  253.523007][   T40] audit: type=1326 audit(1750919662.610:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17851 comm="syz.0.3720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x50000
[  253.530422][   T40] audit: type=1326 audit(1750919662.610:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17851 comm="syz.0.3720" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f717958e929 code=0x50000
[  253.647942][T17858] netlink: 'syz.2.3721': attribute type 3 has an invalid length.
[  253.650476][T17858] netlink: 'syz.2.3721': attribute type 3 has an invalid length.
[  253.718742][T17862] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  254.356091][T17877] binder: 17876:17877 ioctl c0306201 200000000a00 returned -11
[  254.375834][T17882] netlink: 'syz.2.3731': attribute type 3 has an invalid length.
[  254.378355][T17882] netlink: 'syz.2.3731': attribute type 3 has an invalid length.
[  254.425997][T17888] overlayfs: failed to clone upperpath
[  255.214755][T17930] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  255.292759][T17935] CUSE: unknown device info "ÿ
"
[  255.294477][T17935] CUSE: zero length info key specified
[  255.334217][T15824] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  255.576832][T17957] vcan0: tx drop: invalid sa for name 0xfffffffffffffffd
[  255.683205][T17968] syz_tun: entered allmulticast mode
[  256.093803][T17987] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=17987 comm=syz.2.3764
[  256.541041][T17991] __nla_validate_parse: 10 callbacks suppressed
[  256.541054][T17991] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3765'.
[  258.795043][T17993] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3766'.
[  271.006837][ T5947] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  271.010823][ T5947] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  271.015048][ T5947] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  271.019661][ T5947] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  271.022434][ T5947] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  271.933066][ T1423] ==================================================================
[  271.935595][ T1423] BUG: KASAN: slab-use-after-free in handle_tx+0x5a5/0x630
SYZFAIL: failed to recv rpc
[  271.937858][ T1423] Read of size 8 at addr ffff888057311020 by task aoe_tx0/1423
[  271.941042][ T1423] 
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  271.942433][ T1423] CPU: 3 UID: 0 PID: 1423 Comm: aoe_tx0 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  271.942448][ T1423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  271.942456][ T1423] Call Trace:
[  271.942460][ T1423]  <TASK>
[  271.942465][ T1423]  dump_stack_lvl+0x116/0x1f0
[  271.942490][ T1423]  print_report+0xcd/0x680
[  271.942506][ T1423]  ? __virt_addr_valid+0x81/0x610
[  271.942519][ T1423]  ? __phys_addr+0xe8/0x180
[  271.942531][ T1423]  ? handle_tx+0x5a5/0x630
[  271.942546][ T1423]  kasan_report+0xe0/0x110
[  271.942561][ T1423]  ? handle_tx+0x5a5/0x630
[  271.942578][ T1423]  handle_tx+0x5a5/0x630
[  271.942596][ T1423]  dev_hard_start_xmit+0x97/0x740
[  271.942611][ T1423]  __dev_queue_xmit+0x7eb/0x43e0
[  271.942626][ T1423]  ? lockdep_hardirqs_on+0x7c/0x110
[  271.942642][ T1423]  ? finish_task_switch.isra.0+0x221/0xc10
[  271.942657][ T1423]  ? rcu_is_watching+0x12/0xc0
[  271.942671][ T1423]  ? __pfx___dev_queue_xmit+0x10/0x10
[  271.942685][ T1423]  ? __lock_acquire+0xb8a/0x1c90
[  271.942703][ T1423]  ? __lock_acquire+0xb8a/0x1c90
[  271.942721][ T1423]  ? do_raw_spin_lock+0x12c/0x2b0
[  271.942734][ T1423]  ? rcu_is_watching+0x12/0xc0
[  271.942748][ T1423]  tx+0xcc/0x190
[  271.942758][ T1423]  ? __pfx_tx+0x10/0x10
[  271.942767][ T1423]  kthread+0x1e1/0x3e0
[  271.942783][ T1423]  ? find_held_lock+0x2b/0x80
[  271.942795][ T1423]  ? __pfx_kthread+0x10/0x10
[  271.942810][ T1423]  ? __pfx_default_wake_function+0x10/0x10
[  271.942824][ T1423]  ? lockdep_hardirqs_on+0x7c/0x110
[  271.942840][ T1423]  ? __kthread_parkme+0x19e/0x250
[  271.942855][ T1423]  ? __pfx_kthread+0x10/0x10
[  271.942873][ T1423]  kthread+0x3c2/0x780
[  271.942883][ T1423]  ? __pfx_kthread+0x10/0x10
[  271.942892][ T1423]  ? rcu_is_watching+0x12/0xc0
[  271.942905][ T1423]  ? __pfx_kthread+0x10/0x10
[  271.942915][ T1423]  ret_from_fork+0x5d4/0x6f0
[  271.942930][ T1423]  ? __pfx_kthread+0x10/0x10
[  271.942940][ T1423]  ret_from_fork_asm+0x1a/0x30
[  271.942955][ T1423]  </TASK>
[  271.942959][ T1423] 
[  272.004498][ T1423] Allocated by task 13946:
[  272.005916][ T1423]  kasan_save_stack+0x33/0x60
[  272.007407][ T1423]  kasan_save_track+0x14/0x30
[  272.008908][ T1423]  __kasan_kmalloc+0xaa/0xb0
[  272.010393][ T1423]  alloc_tty_struct+0x96/0x8c0
[  272.011917][ T1423]  tty_init_dev.part.0+0x1e/0x500
[  272.013514][ T1423]  tty_open+0xa50/0xf90
[  272.014838][ T1423]  chrdev_open+0x234/0x6a0
[  272.016251][ T1423]  do_dentry_open+0x744/0x1c10
[  272.017760][ T1423]  vfs_open+0x82/0x3f0
[  272.019052][ T1423]  path_openat+0x1de4/0x2cb0
[  272.020536][ T1423]  do_filp_open+0x20b/0x470
[  272.021967][ T1423]  do_sys_openat2+0x11b/0x1d0
[  272.023442][ T1423]  __x64_sys_openat+0x174/0x210
[  272.025004][ T1423]  do_syscall_64+0xcd/0x4c0
[  272.026437][ T1423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.028293][ T1423] 
[  272.029073][ T1423] Freed by task 5979:
[  272.030348][ T1423]  kasan_save_stack+0x33/0x60
[  272.031835][ T1423]  kasan_save_track+0x14/0x30
[  272.033323][ T1423]  kasan_save_free_info+0x3b/0x60
[  272.034905][ T1423]  __kasan_slab_free+0x51/0x70
[  272.036418][ T1423]  kfree+0x2b4/0x4d0
[  272.037653][ T1423]  process_one_work+0x9cc/0x1b70
[  272.039218][ T1423]  worker_thread+0x6c8/0xf10
[  272.040687][ T1423]  kthread+0x3c2/0x780
[  272.041990][ T1423]  ret_from_fork+0x5d4/0x6f0
[  272.043449][ T1423]  ret_from_fork_asm+0x1a/0x30
[  272.045004][ T1423] 
[  272.045764][ T1423] Last potentially related work creation:
[  272.047527][ T1423]  kasan_save_stack+0x33/0x60
[  272.049029][ T1423]  kasan_record_aux_stack+0xa7/0xc0
[  272.050675][ T1423]  insert_work+0x36/0x230
[  272.052039][ T1423]  __queue_work+0x97e/0x10f0
[  272.053487][ T1423]  queue_work_on+0x1a4/0x1f0
[  272.054964][ T1423]  release_tty+0x4de/0x5d0
[  272.056374][ T1423]  tty_release_struct+0xb7/0xe0
[  272.057911][ T1423]  tty_release+0xe2d/0x1430
[  272.059357][ T1423]  __fput+0x3ff/0xb70
[  272.060647][ T1423]  task_work_run+0x150/0x240
[  272.062098][ T1423]  do_exit+0x864/0x2bd0
[  272.063408][ T1423]  do_group_exit+0xd3/0x2a0
[  272.064879][ T1423]  get_signal+0x2673/0x26d0
[  272.066303][ T1423]  arch_do_signal_or_restart+0x8f/0x7d0
[  272.068042][ T1423]  exit_to_user_mode_loop+0x84/0x110
[  272.069719][ T1423]  do_syscall_64+0x3f6/0x4c0
[  272.071176][ T1423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.072978][ T1423] 
[  272.073753][ T1423] The buggy address belongs to the object at ffff888057311000
[  272.073753][ T1423]  which belongs to the cache kmalloc-cg-2k of size 2048
[  272.077936][ T1423] The buggy address is located 32 bytes inside of
[  272.077936][ T1423]  freed 2048-byte region [ffff888057311000, ffff888057311800)
[  272.082185][ T1423] 
[  272.082957][ T1423] The buggy address belongs to the physical page:
[  272.084968][ T1423] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57310
[  272.087661][ T1423] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  272.090319][ T1423] memcg:ffff888055e66181
[  272.091649][ T1423] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  272.094113][ T1423] page_type: f5(slab)
[  272.095401][ T1423] raw: 00fff00000000040 ffff88801b84c140 0000000000000000 dead000000000001
[  272.098062][ T1423] raw: 0000000000000000 0000000000080008 00000000f5000000 ffff888055e66181
[  272.100730][ T1423] head: 00fff00000000040 ffff88801b84c140 0000000000000000 dead000000000001
[  272.103398][ T1423] head: 0000000000000000 0000000000080008 00000000f5000000 ffff888055e66181
[  272.106104][ T1423] head: 00fff00000000003 ffffea00015cc401 00000000ffffffff 00000000ffffffff
[  272.108802][ T1423] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  272.111494][ T1423] page dumped because: kasan: bad access detected
[  272.113495][ T1423] page_owner tracks the page as allocated
[  272.115306][ T1423] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5948, tgid 5948 (syz-executor), ts 159764240374, free_ts 159761376224
[  272.121838][ T1423]  post_alloc_hook+0x1c0/0x230
[  272.123349][ T1423]  get_page_from_freelist+0x1321/0x3890
[  272.125115][ T1423]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  272.126967][ T1423]  alloc_pages_mpol+0x1fb/0x550
[  272.128504][ T1423]  new_slab+0x23b/0x330
[  272.129851][ T1423]  ___slab_alloc+0xd9c/0x1940
[  272.131333][ T1423]  __slab_alloc.constprop.0+0x56/0xb0
[  272.133017][ T1423]  __kvmalloc_node_noprof+0x3b1/0x620
[  272.134720][ T1423]  xt_alloc_table_info+0x3e/0xa0
[  272.136285][ T1423]  do_ip6t_set_ctl+0x50e/0xb00
[  272.137788][ T1423]  nf_setsockopt+0x8a/0xf0
[  272.139206][ T1423]  ipv6_setsockopt+0x135/0x170
[  272.140728][ T1423]  tcp_setsockopt+0xa4/0x100
[  272.142192][ T1423]  do_sock_setsockopt+0x221/0x470
[  272.143776][ T1423]  __sys_setsockopt+0x1a0/0x230
[  272.145333][ T1423]  __x64_sys_setsockopt+0xbd/0x160
[  272.146941][ T1423] page last free pid 5948 tgid 5948 stack trace:
[  272.149058][ T1423]  __free_frozen_pages+0x7fe/0x1180
[  272.150724][ T1423]  __put_partials+0x16d/0x1c0
[  272.152217][ T1423]  qlist_free_all+0x4d/0x120
[  272.153677][ T1423]  kasan_quarantine_reduce+0x195/0x1e0
[  272.155410][ T1423]  __kasan_slab_alloc+0x69/0x90
[  272.156951][ T1423]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  272.158655][ T1423]  getname_flags.part.0+0x4c/0x550
[  272.160296][ T1423]  __x64_sys_unlink+0xb0/0x110
[  272.161802][ T1423]  do_syscall_64+0xcd/0x4c0
[  272.163244][ T1423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.165104][ T1423] 
[  272.165879][ T1423] Memory state around the buggy address:
[  272.167627][ T1423]  ffff888057310f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  272.170143][ T1423]  ffff888057310f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  272.172625][ T1423] >ffff888057311000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  272.175129][ T1423]                                ^
[  272.176735][ T1423]  ffff888057311080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  272.179228][ T1423]  ffff888057311100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  272.181741][ T1423] ==================================================================
[  272.184338][ T1423] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  272.186596][ T1423] CPU: 3 UID: 0 PID: 1423 Comm: aoe_tx0 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  272.190263][ T1423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.193610][ T1423] Call Trace:
[  272.194681][ T1423]  <TASK>
[  272.195627][ T1423]  dump_stack_lvl+0x3d/0x1f0
[  272.197106][ T1423]  panic+0x71c/0x800
[  272.198347][ T1423]  ? __pfx_panic+0x10/0x10
[  272.199787][ T1423]  ? irqentry_exit+0x3b/0x90
[  272.201251][ T1423]  ? lockdep_hardirqs_on+0x7c/0x110
[  272.202888][ T1423]  ? handle_tx+0x5a5/0x630
[  272.204324][ T1423]  ? check_panic_on_warn+0x1f/0xb0
[  272.205928][ T1423]  ? handle_tx+0x5a5/0x630
[  272.207334][ T1423]  check_panic_on_warn+0xab/0xb0
[  272.208916][ T1423]  end_report+0x107/0x170
[  272.210308][ T1423]  kasan_report+0xee/0x110
[  272.211728][ T1423]  ? handle_tx+0x5a5/0x630
[  272.213141][ T1423]  handle_tx+0x5a5/0x630
[  272.214496][ T1423]  dev_hard_start_xmit+0x97/0x740
[  272.216089][ T1423]  __dev_queue_xmit+0x7eb/0x43e0
[  272.217644][ T1423]  ? lockdep_hardirqs_on+0x7c/0x110
[  272.219285][ T1423]  ? finish_task_switch.isra.0+0x221/0xc10
[  272.221124][ T1423]  ? rcu_is_watching+0x12/0xc0
[  272.222627][ T1423]  ? __pfx___dev_queue_xmit+0x10/0x10
[  272.224368][ T1423]  ? __lock_acquire+0xb8a/0x1c90
[  272.225928][ T1423]  ? __lock_acquire+0xb8a/0x1c90
[  272.227487][ T1423]  ? do_raw_spin_lock+0x12c/0x2b0
[  272.229097][ T1423]  ? rcu_is_watching+0x12/0xc0
[  272.230624][ T1423]  tx+0xcc/0x190
[  272.231771][ T1423]  ? __pfx_tx+0x10/0x10
[  272.233083][ T1423]  kthread+0x1e1/0x3e0
[  272.234399][ T1423]  ? find_held_lock+0x2b/0x80
[  272.235888][ T1423]  ? __pfx_kthread+0x10/0x10
[  272.237353][ T1423]  ? __pfx_default_wake_function+0x10/0x10
[  272.239185][ T1423]  ? lockdep_hardirqs_on+0x7c/0x110
[  272.240848][ T1423]  ? __kthread_parkme+0x19e/0x250
[  272.242439][ T1423]  ? __pfx_kthread+0x10/0x10
[  272.243911][ T1423]  kthread+0x3c2/0x780
[  272.245219][ T1423]  ? __pfx_kthread+0x10/0x10
[  272.246678][ T1423]  ? rcu_is_watching+0x12/0xc0
[  272.248200][ T1423]  ? __pfx_kthread+0x10/0x10
[  272.249696][ T1423]  ret_from_fork+0x5d4/0x6f0
[  272.251162][ T1423]  ? __pfx_kthread+0x10/0x10
[  272.252623][ T1423]  ret_from_fork_asm+0x1a/0x30
[  272.254141][ T1423]  </TASK>
[  272.255805][ T1423] Kernel Offset: disabled
[  272.257172][ T1423] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:56:33  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffff88803b202378 RCX=ffffc90025c7f6cc RDX=0000000000000002
RSI=ffffffff8ddf4e9b RDI=ffffffff8c1579e0 RBP=ffff888035437b80 RSP=ffffc90025c7f6b8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffffff8209cf59 R13=0000000000000287 R14=ffff888058644880 R15=0000000000000003
RIP=ffffffff8198775a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055557ff3f500 ffffffff 00c00000
GS =0000 ffff8880d6753000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5b02db6038 CR3=00000000520f9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffc0000 Opmask01=000000000000000f Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20303d766765735f 656c646e61683d53 4e4f4954504f5f4e 4153410063657865
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5b038ed100 00007f5b02d84440 00007f5b02d84458 00007f5b02d844a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d534e4f4954504f 5f4e415341006365 786500726f747563 6578652d7a79732f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000004007 RBX=0000000000000000 RCX=00000000fffffffe RDX=0000000000000000
RSI=00000000ffffffff RDI=ffff88802b932f30 RBP=ffff88802b932440 RSP=ffffc900035473e0
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88802b932f30 R13=ffff88802b932f30 R14=00000000ffffffff R15=0000000000000001
RIP=ffffffff81985d96 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555581a35500 ffffffff 00c00000
GS =0000 ffff8880d6853000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f63a1bb6038 CR3=00000000609e9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000010000000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000003000000012 0004000000080024 0000000000280034
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000ebe 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100000008000300 040000000204b208 0f80031a00000aa2 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 cee2d47bad53f949 28968c48bfa042d9 663f2367aeb2fb10 239f669806989e91
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 eca50247c30efda2 6a1a0fda6bfa5763 5ee12d408ef97628 6a1aef806049466e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 241f740000000000 23671b1b0af96f5e 9d9a714512c2e073 82bd4ef28c1c99d2
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 aafafb42ff3a2c49 e248b3d3913490b9 767ce81096185279 5700000080000000
ZMM24=4f3d90354f3d9035 4f3d90354f3d9035 4f3d90354f3d9035 4f3d90354f3d9035 4f3d90354f3d9035 4f3d90354f3d9035 4f3d90354f3d9035 4f3d90354f3d9035
ZMM25=17f9e2b217f9e2b2 17f9e2b217f9e2b2 17f9e2b217f9e2b2 17f9e2b217f9e2b2 17f9e2b217f9e2b2 17f9e2b217f9e2b2 17f9e2b217f9e2b2 17f9e2b217f9e2b2
ZMM26=edb66401edb66401 edb66401edb66401 edb66401edb66401 edb66401edb66401 edb66401edb66401 edb66401edb66401 edb66401edb66401 edb66401edb66401
ZMM27=5f72c7745f72c774 5f72c7745f72c774 5f72c7745f72c774 5f72c7745f72c774 5f72c7745f72c774 5f72c7745f72c774 5f72c7745f72c774 5f72c7745f72c774
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=6214000062140000 6214000062140000 6214000062140000 6214000062140000 6214000062140000 6214000062140000 6214000062140000 6214000062140000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=ffff888026ac2f30 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8e5c4880 RDI=ffff888026ac2f30 RBP=ffffffff8e5c4880 RSP=ffffc900038c7700
R8 =0000000000000006 R9 =0000000000001000 R10=0000000000000000 R11=0000000000000001
R12=ffff888026ac2440 R13=ffff888026ac2f30 R14=00000000ffffffff R15=0000000000000001
RIP=ffffffff8b80108f RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6953000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f115e6e7d60 CR3=0000000032131000 CR4=00352ef0
DR0=0000000000000040 DR1=0000000000000004 DR2=0000000000000003 DR3=00000000000010e3 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f115db846a3 00007f115db846a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcc4c7e880 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000030000000f 0000000200000021
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000500000007 0000000400000012
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000001c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555562c20c85 0000555562c20990
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 100001af0000001c 0001afc000000000 01afb00368100001 ae90030000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0010036874657600 01000c0012002800 0000000200000028 0823b0030000001f
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 080623a800000000 1600000000000000 0007050010000000 482808230000001e
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0400030000000000 0008000190030fff ffffffffff040180 032080880000001d
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8004010000000000 060167d208808084 80080001afe00300 100001af0000001c
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855b8a55 RDI=ffffffff9b087360 RBP=ffffffff9b087320 RSP=ffffc9000704f458
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000032343154
R12=0000000000000000 R13=0000000000000032 R14=ffffffff9b087320 R15=ffffffff855b89f0
RIP=ffffffff855b8a7f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a53000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000000e382000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000010000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb147e360 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7179611b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7179611b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7179611b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7179611b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7179611bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7179611c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000