last executing test programs:

5.144726319s ago: executing program 0 (id=351):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000cc0)={'wlan0\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="18000000353ba270a7a6185144667b6249e55d1c24ac0004d62374e4669474b3bbf44ea120cb8c7f908f14a14272e3", @ANYRES16=r7, @ANYBLOB="250100000000000000000900000004000380"], 0x18}}, 0x0)
sendmsg$IPVS_CMD_SET_CONFIG(r4, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="1ad050567e655ddc99a95624711554698dc03168a268fb6c42becc95b2321713834c1d02883273dec20877e5d1194684", @ANYRES16=r7, @ANYBLOB="040326bd7000ffdbdf250c00000008000400020000004400038014000600fc020000000000000000000000000001080003000000000014000600fe880000000000000000000000000101060004000500000005000800040000003c000380080003000000000014000600fc01000000000000000000000000000014000600ff0200000000000000000000000000010600040009000000"], 0x9c}, 0x1, 0x0, 0x0, 0x20004000}, 0x44000)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="5400ba440f759e571aadb29c1c2e4a736dd4a56332c5f622d2262916e2105ac311e3728991259083c6296d794baf56b01a1de599cfccd950c369ae496b75911bd3904e5582878c0ac17daa927063a520be8c412e15eae16b553fb54edf04c0a6e4aa050f209c32c50f", @ANYRES16=0x0, @ANYBLOB="2508000100000000ffe40700000008000300", @ANYRES32=r5, @ANYBLOB="1400140064756d6d7930000000000000000000001400040076657468315f746f5f626f016400000005005300010000000800050004"], 0x54}}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r1, 0x0, r3, 0x0, 0x4ffe6, 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r8, 0x6, 0x21, &(0x7f0000000040)="cdb6d1667f2c6f3c4df60ce5c47773c6", 0x10)
setsockopt$IP_VS_SO_SET_ADD(r8, 0x0, 0x482, &(0x7f0000000000)={0x6, @loopback, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000180)={0x6, @dev={0xac, 0x14, 0x14, 0x41}, 0x0, 0x0, 'rr\x00', 0x12}, 0x2c)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f00000002c0)=@v1={0x0, @adiantum, 0x0, @desc1})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r9, 0x89b0, &(0x7f0000000040)={'sit0\x00', 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x13, 0x0, 0x0, &(0x7f0000000340)='syzkaller\x00'}, 0x90)
socket$packet(0x11, 0x3, 0x300)
syz_open_procfs$namespace(r0, &(0x7f00000000c0)='ns/cgroup\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

4.2017523s ago: executing program 0 (id=355):
timer_settime(0x0, 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x4000000400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$setperm(0x5, 0x0, 0x3322226)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000100)={0x400, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1}, {}, {}, {}, 0x0, 0x3f0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4})
ioctl$UI_SET_LEDBIT(r1, 0x40045569, 0x0)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x11)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x12)
ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000100)={{}, 'syz0\x00'})
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x5502)
ioctl$BLKDISCARD(0xffffffffffffffff, 0x1277, &(0x7f0000000300)=0x5)
add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
connect$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0xfffc, 0x0, @remote, 0xffbffffc}, 0x1c)
ioctl$UI_SET_PROPBIT(r1, 0x4004556e, 0x10)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r3 = getpid()
getpgrp(r3)
syz_clone3(0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_mr_cache\x00')
fchdir(r4)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000240)='proc\x00', 0x1400000, 0x0)
inotify_init1(0x0)

3.11904959s ago: executing program 0 (id=359):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @broadcast}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x2000, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @multicast1, @multicast2}}}})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x15)
ioctl$TCFLSH(r3, 0x540b, 0x2)
sendmsg$NFT_MSG_GETFLOWTABLE(r1, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"/450], 0x1e0}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20, @local}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000004680)=ANY=[@ANYBLOB="180000000300000000000000a012544f95002b000000000093adffa82255f674412d020000000000005ab527ee3697f1ed4436dd1164b1b3f427f6ba6b34f98125f30e631d273683626e00dc254d570d4a6b78a5833488cfe410090000004aa900003d3cd62f00158e6eee8501000000520a0000151d010000000100bf000000003bbd424c6e6cafbe9309aba218812868a51d129e78f6ae170bf5a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b00f45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e460a000517ebc406e89dcbb7677e6528b0856e31eb9474c0106fc48e1f8c1a5f6945ac24cf609068f6ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bedf59ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e148bf56497e5d56d06c7551b870b2851c3f0a1aab71587a21c8f1b3369ebfcb4cb2946601b0f04edb256c604f068773f6db9d661bd7f0e2536f00000000000000005521458b7d1e341c6f864f983d745f5865aad41d29158ae7602a2d6cd41503f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121a96eb372713255012e00300000000000000b35faae176f98b745eda2967199cc93685bb537e8e487166737089df20618cd4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d0007ae4e1e347c0cff28235a6bb7aa3804b907a8f2880c5cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec64fa6c718bbd1aa591140cff0be4c6f8df08445e9734ae30aa9afdc7125f01ab03a9b1074407136b4506000f0916aada035df2e0452a9b39e73aeeb6eaf14652dda689e2051d9b7eb85f3f2d5aed65201cc2c51944da8d7391d5b6b9741aa3b76600cd1aa0afe5f8f46df4c5124caf673374b371867a79b31c6617fc3327191fbf514573f1e30d1fd2d763f3ee9218b15c1d60be2168fffcd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257bc97def5f07f2b77f05a4f81a9cf81109715b67ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c4407eca22debc99335583b00013c3130978fa069af8223b38ced735c2d90c6d84c30a0d87dc0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c534187738655d7a6240412c8f283cc0c1eba2866dc9580000000000000007fffffffff554b82d9c162f3556076b80552d961ca74f1ffdaccf0ea5f02e0219ccb9087e6c3b3917bb74fd3d560700a1fab44e77e312b3b129e000302d613916c9bcf9f0000fac73a5b6bfb01efada800e50000000000fdaf2f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6550d597300eb82a184c96ffde5a30e5433d866665b98ca2002c836e89feef904c22ff2634b7bfbf5c0d586cda5b45fd00dede1e88a4d41dee7cc8d0834fb8d124638fec58faeb4c16abb440df2a694f4cdcaa400d503d79906958102000000000000000000001ffff0ef89b2a68d2bb2dd163e863314e8449801b52bb93f6c9084659ce777dda8563c859656a357770289a61faa95a82b04cfb7f2f97252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b00110635376413c29f7c6f7b7e29b9f4bddd5e328661f4615e627a6f608ad53a4168fe8e5d7d934aa289b4bd2b870000000000000000000000000000bc4b4ff50000009b777883a02ffd92dfc4cb4114b9f9cf4ad155110cd3ace2b322ae31bfa27847c799c8869a1ea5b98e525e6383ad7fd9795170e7b11e247603000000001459c7f606d721d3979676bffb3049166ab84ac1061991bd57c2566c10c296352a5105b6164e3f2491e4793e590dcc71f110da96366c40dd44a2c9882d3aa0f8a797b8fea6efcfb5276b7679f15559cdaabf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22adef9546abb9b5fe7f30e4e0c13f60870fde1f88d830b11002135e8e7262f29b6d7923bfbe0bd2a8be179e56b3bff3792cee2fc37eee739c3008ce740d8804f8e705f0dc59d000021363e8df94ff175b48dc8c12def681a11647946595445bf1cb7d2778cd27a6b3b2966b011d193ba8075da1d1da9311a050000ab89524414cae922141f7baf17756c31559907a53581b6ebb790ad60bd03870c39d1ad12c750837e63f9880fd70259e35590afb4843cd4e9989398eaa89cefb3aa13cab8d015cbaf1561d95362decd73b8f8cbf8269cac091cfaaa3c7e46d6e79145fc0f1d1b383752ccb40515a772356d746914540216adf4c0f44f1cff3760afa252720ec6dad3a98671ecdaff46cddffb1f05a0c0976070d603a442d014822369fa3eacbb69bd1b0a074357acd5d02161fed146ad3aa15d2b8101b7bd1e091ada78ecd50181f4b35cae1b29aff91494c916323b61f815c4e0701657087ad11eef97952921365bc898ba2c76a9b6e0052f43b1ad2dfdf3f958fc1d32e692bc8846c78a956ada453c67c1c2cdc4f8b1c94e9adc106e85b31e030d955c5578e107a6e8ca0d4dd05344c3e2af25d9a3b0f7805624016aeab271a75f0bacb101a156ef8948064569154a7de08f80e4df4c339b69431b0a5671097d89212b465b0b32275deae10a77e334c9fc074d181bdeb5be80a6249d472e78e6be57a5ccd354cf0a74680bc9987d5aade221a2be926210b2690d09e4b7a3dea25403397439979c27d5613262de10bacecfff2d58437f422df4252c018795310c25e8fce18ed366ac2caade564ca869727a7dc26271e17d7aba48971835530311545273d3caadeb5d2017dcddab8f38f2068f68a4111ddd587b5df4b5d8f1ce00231a2092eb2e797c491a1e66f736c5867831c5d6eaa9ef1806fd95bbe00318000000000000259da51ff7517ace7361420a4669a97f7d0bf095c2787f00bdbfee19670d1e0ec5e6c3cb09972fa4d94993157b96d6695177c99d83716651129320924352cda7b8ead91c3301af620c1e8d703dd29ad77f54836779600bb0db3ecfad36fa8164999898e4aaa56324e1c03a74daf593f92a8ecc03f8c8e3af9ae07dc03780cc0d69da9e3528c1693fb51998731992ceb27dcc0be5be4decefe41b78bc1847bf54b087e095172f06cfa6d4bf958b1d4544947ff1230655199db4f475006047fe83caca97758dffa53cee764f85932eb20d54241b2d515c0826dfe1f0f40ae920455a4548fb35e2a345c05b1c252b7877bb3d834b0b3579a36249146f832ef258df5127318c7017ac1a996c4f902f82deb60fd113ccf812d55ffd625057bd4ff3960992b85bc8d32edfca386be16b1c549aec52e31e1405d86c7760282901750b732ec06b0db735222a731195633164704886a0c50a5db0d694028cdf61b9749d5d7bd79969a92114ca804a6365615ceb09ed22e4fc3a7d0e2ee4a5fc10f3d01346481e934e411d0e9d7a9fa515a2219b526d8f3e2b383ef694ff99257fc52c31a3503ce22e503214fa808301b489bb0cd8000000000000159c447fc6f1bf1137f6863aceb90d62dae497fe08f7e627727ad0919a62fe92a33f1e5d390000000000000000004135cb6dda469cd6622e6c36e9f005789e6b827c07b8f4f8d4f15695fe30d32ee6efe22cf8d299239eaa54e5c699a904a0344febb884d1cc94f552f48d84ee3431d817edc4bdb762d62778f30baee4aa428bba55f6cff1b5ba395d461db8ffe6fb89e1058a73bc8564c86497b92330b23cb3befb569cc67f15e349644a2c47924423e2983517074747680306eddd948e5211377575787cfa291ec8796dd7db6968791aea4f5e627b219e99bb9262493bbf04415b22ee398406ec88f6b758f6b240a87dc169f51d3a79fb512afae14fbc5e7808764b8550622c1e3080cdd6b21ce0f0324712343943f5e061df056b3b809c07e1318daf9ed1ebea0f95e302dab0b6bc52ed2aac8b950b448ca3a03d1bd21078c54f5cf86c5563b9bba2805a30574a4123e27d6f281f70ac769c62b49bf7cc73f0c9a2b84534d234d2eb136f8620d3e1147a7b7361618e0064cad6fe32685d143af0d378d54c0a5953c764ae8721bd23cba4701e9f0d7a6e1ba92c87b0384f8ee595d618f7cf5a80a0a2edc2541072e146c1e5a8f7b65c877af04e742cfdcac0641a11d51fd6dc88965691bce388005fbb071451bc260bcf7df8890d9c5c8ef47bc4ff5080a2a771f85b4f3d2a2259196a8423e7a992e9b320a40921f6f74d5b0e94be6c9c059e62ff53e5c2139806cca4545d88a7f7ff366e5d7f08a56609130931b64e3bb70000d38011b924ed9df6aa170c6d845f43c0bcbe3839cd1422944651a5908c76c3f3b4070aa1d896e4adc117698c452c9926442a000e128bb936a99536290f906c088cb10ee7bee50b7b013e4e1ff3481d77c7697738b46deebd9ac6e58b41341dcbfad161e3d529a504821549629ef63f8297bec881eb5edb07ed6c86640fb4128d7931e56bb89f0ce605"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7}, 0x48)
r5 = socket$kcm(0x29, 0x2, 0x0)
write$binfmt_script(r5, &(0x7f0000003300)={'#! ', './bus'}, 0xff1d)
recvmmsg(r5, &(0x7f0000000380)=[{{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1}}], 0x2, 0x0, 0x0)
close_range(r1, r0, 0x2)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f0000000180)={r0, r4})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0x0, 0x1, 0x0, &(0x7f00000000c0)=""/1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x5}, 0x50)

3.071681457s ago: executing program 1 (id=360):
mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x40, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r0 = epoll_create(0x3)
socket$kcm(0x10, 0x0, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
socket(0x11, 0x0, 0x0)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, 0x0, 0x0, 0x0)
r2 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)
ioctl$EVIOCSKEYCODE_V2(r2, 0x40284504, &(0x7f0000000040)={0x81, 0x0, 0x0, 0x0, "d57f8080fc2b719aeafeaf270632d39c68872691db9b679ea1376f83f99dfa2c"})
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000)='?\x00\x00\x00', 0x4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003806168e91601800000002000000c000100a1000000c84200000c0001000800000008000000340004804c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r5], 0xb4}}, 0x0)

2.884930035s ago: executing program 2 (id=361):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4}, 0x6e)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
preadv(r3, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x18, 0x8, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000005040)=[{{&(0x7f0000001800)=@in6, 0x80, &(0x7f0000000440)=[{&(0x7f0000000cc0)=""/170, 0xaa}, {&(0x7f0000000d80)=""/226, 0xe2}, {&(0x7f00000051c0)=""/174, 0xae}, {&(0x7f0000000f40)=""/223, 0xdf}, {&(0x7f0000000280)=""/44, 0x2c}, {&(0x7f0000001040)=""/242, 0xf2}, {&(0x7f0000001140)=""/227, 0xe3}], 0x7, &(0x7f0000001240)=""/199, 0xc7}, 0x401}, {{&(0x7f00000009c0)=@xdp, 0x80, &(0x7f0000001680)=[{&(0x7f0000001340)=""/203, 0xcb}, {&(0x7f0000001440)=""/79, 0x4f}, {&(0x7f00000014c0)=""/162, 0xa2}, {&(0x7f0000000740)=""/29, 0x1d}, {&(0x7f0000001600)=""/120, 0x78}], 0x5, &(0x7f0000001700)=""/95, 0x5f}, 0x6}, {{&(0x7f0000001780)=@can, 0x80, &(0x7f0000002cc0)=[{&(0x7f0000005140)=""/102, 0x66}, {&(0x7f0000001880)=""/223, 0xdf}, {&(0x7f0000001980)=""/109, 0x6d}, {&(0x7f0000001a00)=""/4096, 0x1000}, {&(0x7f0000002a00)=""/145, 0x91}, {&(0x7f0000001580)=""/1, 0x1}, {&(0x7f0000002ac0)=""/35, 0x23}, {&(0x7f0000002b00)=""/141, 0x8d}, {&(0x7f0000002bc0)=""/195, 0xc3}], 0x9, &(0x7f00000003c0)=""/59, 0x3b}}, {{0x0, 0x0, &(0x7f0000003f80), 0x0, &(0x7f0000005000)}, 0x2}], 0x4, 0x2, 0x0) (async)
recvmmsg(r1, &(0x7f0000005040)=[{{&(0x7f0000001800)=@in6, 0x80, &(0x7f0000000440)=[{&(0x7f0000000cc0)=""/170, 0xaa}, {&(0x7f0000000d80)=""/226, 0xe2}, {&(0x7f00000051c0)=""/174, 0xae}, {&(0x7f0000000f40)=""/223, 0xdf}, {&(0x7f0000000280)=""/44, 0x2c}, {&(0x7f0000001040)=""/242, 0xf2}, {&(0x7f0000001140)=""/227, 0xe3}], 0x7, &(0x7f0000001240)=""/199, 0xc7}, 0x401}, {{&(0x7f00000009c0)=@xdp, 0x80, &(0x7f0000001680)=[{&(0x7f0000001340)=""/203, 0xcb}, {&(0x7f0000001440)=""/79, 0x4f}, {&(0x7f00000014c0)=""/162, 0xa2}, {&(0x7f0000000740)=""/29, 0x1d}, {&(0x7f0000001600)=""/120, 0x78}], 0x5, &(0x7f0000001700)=""/95, 0x5f}, 0x6}, {{&(0x7f0000001780)=@can, 0x80, &(0x7f0000002cc0)=[{&(0x7f0000005140)=""/102, 0x66}, {&(0x7f0000001880)=""/223, 0xdf}, {&(0x7f0000001980)=""/109, 0x6d}, {&(0x7f0000001a00)=""/4096, 0x1000}, {&(0x7f0000002a00)=""/145, 0x91}, {&(0x7f0000001580)=""/1, 0x1}, {&(0x7f0000002ac0)=""/35, 0x23}, {&(0x7f0000002b00)=""/141, 0x8d}, {&(0x7f0000002bc0)=""/195, 0xc3}], 0x9, &(0x7f00000003c0)=""/59, 0x3b}}, {{0x0, 0x0, &(0x7f0000003f80), 0x0, &(0x7f0000005000)}, 0x2}], 0x4, 0x2, 0x0)
add_key$user(&(0x7f0000000780), 0x0, 0x0, 0x0, 0xffffffffffffffff)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0) (async)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fe050000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='percpu_free_percpu\x00'}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x1) (async)
listen(r4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@map=r6, r5, 0x26}, 0x10) (async)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@map=r6, r5, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000a80)={r6, &(0x7f0000000940), &(0x7f0000000a40)=@tcp6=r4}, 0x20) (async)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000a80)={r6, &(0x7f0000000940), &(0x7f0000000a40)=@tcp6=r4}, 0x20)
shutdown(r4, 0x0)
recvmmsg(r4, &(0x7f0000000340)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x60}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000004c0)=""/147, 0x93}, {&(0x7f0000000bc0)=""/219, 0xcd}, {&(0x7f00000007c0)=""/237, 0xed}, {&(0x7f0000000640)=""/223, 0xdf}, {&(0x7f00000008c0)=""/210, 0xd2}, {&(0x7f0000000ac0)=""/196, 0xc4}], 0x6}}], 0x2, 0x40, 0x0) (async)
recvmmsg(r4, &(0x7f0000000340)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x60}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000004c0)=""/147, 0x93}, {&(0x7f0000000bc0)=""/219, 0xcd}, {&(0x7f00000007c0)=""/237, 0xed}, {&(0x7f0000000640)=""/223, 0xdf}, {&(0x7f00000008c0)=""/210, 0xd2}, {&(0x7f0000000ac0)=""/196, 0xc4}], 0x6}}], 0x2, 0x40, 0x0)
recvfrom$inet6(0xffffffffffffffff, &(0x7f0000004000)=""/4064, 0xfe0, 0x40000063, 0x0, 0x0) (async)
recvfrom$inet6(0xffffffffffffffff, &(0x7f0000004000)=""/4064, 0xfe0, 0x40000063, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mkdir(&(0x7f0000000600)='./file1\x00', 0x0) (async)
mkdir(&(0x7f0000000600)='./file1\x00', 0x0)

2.770193615s ago: executing program 0 (id=362):
syz_emit_ethernet(0x376, &(0x7f0000002e40)=ANY=[@ANYBLOB="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"], 0x0)
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='svcrdma_rq_post_err\x00', r2}, 0xfffffffffffffee1)
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff000000000800000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0x12, &(0x7f0000000400)={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0x5c)
r7 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xffffffff}, &(0x7f0000000240)=<r8=>0x0, &(0x7f0000000200)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x12, 0x0, @fd_index})
io_uring_enter(r7, 0x47f6, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0x18, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[0xffffffffffffffff]}, 0x1)
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r10, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000300)={0xd, 0x80, 0x3df, 0x4, 0x1ff, 0x8001, 0xf, 0x5, 0x3, 0x3, 0x400, 0x3ff, 0x2, 0xfffffffffffffffa, 0x80000001, 0x80000000, 0x1ff, 0xffffffff00000001, 0xa4, 0x9, 0x66, 0xcf, 0x9, 0x9, 0x1, 0x2})
write$bt_hci(r10, &(0x7f00000001c0)=ANY=[@ANYBLOB="0e000100"], 0x8)

2.602841372s ago: executing program 0 (id=363):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000180)='objagg_obj_destroy\x00', r1}, 0x10)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x840, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNGETVNETLE(r2, 0x800454dd, &(0x7f0000000040))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x40046629, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000002740)=ANY=[@ANYBLOB="14000000130001ffffff7f8cd913e90002"], 0x14}], 0x1}, 0x0)
preadv(r0, &(0x7f0000000480)=[{&(0x7f0000000300)=""/192, 0xc0}], 0x1, 0x8, 0x3)
fanotify_init(0x0, 0x0)
creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x1)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x11fa02, 0x111)
mkdirat(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000002240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000f000000050030000000000005002f000100000008000300", @ANYRES32=r7], 0x2c}}, 0x0)

2.525493343s ago: executing program 1 (id=364):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r1, 0x0, 0x0)
r2 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$UHID_CREATE2(r2, 0x0, 0x194)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6(0xa, 0x800, 0x3)
socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
openat$cgroup_ro(r2, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r4, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e23, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)}], 0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010", @ANYRES16=r4], 0x10b8}, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
r5 = syz_io_uring_setup(0x6d54, &(0x7f0000000200)={0x0, 0x28f9, 0x10100, 0x1}, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000400)=<r7=>0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="0000c2", @ANYRES16=r9, @ANYBLOB="01e814f81d6d6f1ff8a700001f0000190000000200000008000300bbdb96451e44014297de44fb081a63d58cb19a134d945f65ea1d40b1c0f5db756c6cf59d20512ab093ab02577f47cc2489b15e5eacfc57df9678af66ecda622a5cb4a9174eb903dddd8adf3caa2057f9b096c599343189d046b34d66f558ae2f982774b5966e6c4b0f8ee72668599d2d1332b911b8d05626b55074204d4baf920f70e76a2b862cd037e8d04e12f87704b7c8159e8bfceb644a1ea6226a8719a14a978f9c0ff37a409494a0acb73ec478e9e0ede9", @ANYRES32=r11, @ANYBLOB="0c00990000000000000000000800a000c609000008009f000d000000080026006c090000"], 0x40}}, 0x0)
r12 = landlock_create_ruleset(&(0x7f0000000140)={0x0, 0x2}, 0x10, 0x0)
landlock_restrict_self(r12, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f0000000000)=@rxrpc=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e21, 0x5dc, @private0, 0x3}}})
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYRESDEC], 0x27)
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x1f, 0x2, 0xbf22, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r13, 0x0, 0xa002a0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000300)={&(0x7f0000000080), &(0x7f0000000140)=""/184, &(0x7f0000000200), &(0x7f0000001540), 0x1, r13}, 0x38)
io_uring_enter(r5, 0x291c, 0x2, 0x2, 0x0, 0x0)

2.521980737s ago: executing program 3 (id=365):
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000000c0)=@x25={0x9, @remote}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/116, 0x74}, {&(0x7f00000001c0)=""/193, 0xc1}, {&(0x7f00000002c0)=""/138, 0x8a}, {&(0x7f0000000380)=""/1, 0x1}], 0x4, &(0x7f0000000400)=""/246, 0xf6}, 0x12102)
ioctl$CDROM_SEND_PACKET(r0, 0x2272, &(0x7f0000000080)={"f10000000000009452a4cb00", 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0})
ioctl$CDROM_NEXT_WRITABLE(0xffffffffffffffff, 0x5394, &(0x7f0000000000))
socket(0x2, 0x80805, 0x0)
r1 = socket$inet(0x2, 0x2, 0x80)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4), 0xc)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x0, 0x1, 0x0, 0x1000, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5, 0x1, 0x4}, 0x48)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYRES8=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYRES16=r5, @ANYRES8=r4, @ANYBLOB="6ce4912617a926b99dee41aa2d044cdd29941fd5", @ANYRES32=r5, @ANYRESDEC=r2, @ANYRES8=r1, @ANYRES8=r2, @ANYBLOB="3442ace13f8a9196006b6b30ea0561c92102f268301df94baa788b08bd73cf3884456d35c061204525f973d044cc7e5868ea8f45834b4d56806542c37d89d18408ea2be5d9a38cf5644f7dcc85bf42932ad21f5bfaf00a3bb86c761c5a8a0d8291bb970ad376d2880bd14d660f208dd8ced24e518baf7d321884aa5b391e60935b2955cc0a7d31359f418bf918ad72b5b8d4ccaae168245d1325bbc5ee03fdf20f8c6018003289a6", @ANYBLOB="eab8cbefd55d3d6c43f02525141eff7687"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000d00)='sched_switch\x00', r6}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, 0x0, 0x0, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x406, r1)

1.974986913s ago: executing program 2 (id=366):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x200000f, 0x4008032, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$MAP_CREATE(0x0, &(0x7f0000000000), 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$CAPI_REGISTER(r2, 0x400c4301, &(0x7f0000000080)={0x0, 0x0, 0xd0})
ioctl$CAPI_REGISTER(r2, 0x400c4301, 0x0)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d3000000000000008001a"], 0x34}}, 0x0)
io_cancel(0x0, 0x0, 0x0)

1.916179043s ago: executing program 2 (id=367):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
syz_open_dev$cec(0x0, 0x0, 0x508c1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec856d000000670000000500000095000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x5e, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000580)='tlb_flush\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_open_dev$usbfs(0x0, 0x0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/custom1\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x40046207, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000000)={0xffffffffffffffce, 0x0, &(0x7f0000000240)=[@increfs], 0x0, 0x0, 0x0})
dup3(r4, r3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18020000f9ffff030000000000000000850000002c00000095", @ANYRESHEX=r6, @ANYRES32=r2], &(0x7f0000000080)='syzkaller\x00', 0x370, 0xbf, &(0x7f00000020c0)=""/191}, 0x90)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r9=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r8, r9}, 0x10)
syz_emit_ethernet(0x1011, &(0x7f00000002c0)=ANY=[], 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000200)="f1"})
open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r10 = getpid()
process_vm_readv(r10, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
getpgrp(r10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.net/syz1\x00', 0x200002, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
socket(0x0, 0x0, 0x0)

1.622683588s ago: executing program 1 (id=368):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x5)

1.555370687s ago: executing program 1 (id=369):
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"})
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x0, 0x0, 0x0})
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000180)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x3}]}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440), 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
accept4$unix(r2, 0x0, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2800000014001901000000000000000228"], 0x28}}, 0x0)

1.498601081s ago: executing program 3 (id=370):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) (async, rerun: 32)
r1 = getpid() (rerun: 32)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="c40000000202010800000000000000000a000408b000038014000180080001000600010208000200ac1414bb0c00028005000100880000000c00028005000100210000001400018008000100fffffffff5ff0200e00000022c0001801c000300ff02000000000000000000000000000114000400200100000000000000000000000000021400018008000100e0000002080002007f0000011400018008000100ac1e000108000200ac1414bb0c000280050001003a000000110002800500010021000000"], 0xc4}}, 0x0)
syz_init_net_socket$llc(0x1a, 0x2, 0x0) (async)
getsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, &(0x7f0000000240))
syz_80211_inject_frame(&(0x7f0000000080)=@device_b, &(0x7f0000000780)=ANY=[@ANYBLOB="80340700ffffffffffff08021100000187272bc59a224900ffffffffffffff7f06002280000453ec897a040600f7f00e05002503000b040f0105720603030303030371070101ffffffd2037606018012000080ddab9a0e39463b2ba80935bf1b37a54e546794b021745027b18373942fd1d14cda4c9d44cbf31fea475a58fd92213d713d1be12280926891587c7665c5886726003876b5a8c6095cd4e599d4b58ac6049a000f90ad5b755f5011374ddbbe7a82fe24c484c7fddcb5ec48abf0d512b3d7e5dd651219d5dec918e6f0e8c2fdc68115bd8747df18666ad832976d8e1b7bed77e6a26127a51a95df98b778a3107e1b0edd49e6fd50b547e6fa18a0b73dcb", @ANYRES32, @ANYBLOB="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"], 0x404) (async, rerun: 64)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000400)=ANY=[@ANYBLOB="86c49f9c967ec14ab4848ccaac10390fa311d7d1b28d63f665a1376b761608f5ff4b389e11d59c69af7a12786447e296", @ANYRES32], 0x40) (async, rerun: 64)
socket$netlink(0x10, 0x3, 0x0) (async)
socket$inet6(0xa, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r3 = socket$inet6(0xa, 0x0, 0x7)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000280)={0x0, <r4=>0x0})
process_vm_writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000a40)=""/4096, 0x1000}], 0x1, &(0x7f0000001b00)=[{&(0x7f0000000340)=""/157, 0x9d}, {&(0x7f0000000580)=""/239, 0xef}, {&(0x7f0000000440)=""/43, 0x2b}, {&(0x7f0000000680)=""/155, 0x9b}, {&(0x7f0000001a40)=""/134, 0x86}], 0x5, 0x0) (async)
sendmmsg$inet6(r3, &(0x7f0000002c40)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000080)='a', 0x1}], 0x1}}], 0x1, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$l2tp(0x2, 0x2, 0x73) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_RENAME(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001b80)=ANY=[@ANYBLOB="34080000050603000000000000000000000000000900020073797a30000000000900030073797a3200000000050001000700000092b45f49b105ec06d2233340e5ed0835f021214acb840dd72ec053671b59de54a90d2ead009366526894c670d59cd1b83ac093e95507fc7cca854e97b11238f7a2a51e6f9a1afd0a46569406cadb75a277dc286954aee5a65e21cbe2236eda31ff4e6bfb99607c4f4926cc384ac634b6"], 0x34}}, 0x0)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x541000, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180200002020702500000000002020207b0af8ff00000000bda100000000000026010000f8ffffffb702000008000000b703000000000000850000004b00000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
socket$inet6(0xa, 0x3, 0x7) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x26e1, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, r6, 0x5, 0x4, 0x800}, 0x48) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (rerun: 64)

1.255130577s ago: executing program 2 (id=371):
syz_emit_ethernet(0x376, &(0x7f0000002e40)=ANY=[@ANYBLOB="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"], 0x0)
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='svcrdma_rq_post_err\x00', r2}, 0xfffffffffffffee1)
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="3400000010001fff000000000800000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468"], 0x34}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0x12, &(0x7f0000000400)={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0x5c)
r7 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xffffffff}, &(0x7f0000000240)=<r8=>0x0, &(0x7f0000000200)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x12, 0x0, @fd_index})
io_uring_enter(r7, 0x47f6, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0x18, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[0xffffffffffffffff]}, 0x1)
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r10, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000300)={0xd, 0x80, 0x3df, 0x4, 0x1ff, 0x8001, 0xf, 0x5, 0x3, 0x3, 0x400, 0x3ff, 0x2, 0xfffffffffffffffa, 0x80000001, 0x80000000, 0x1ff, 0xffffffff00000001, 0xa4, 0x9, 0x66, 0xcf, 0x9, 0x9, 0x1, 0x2})
write$bt_hci(r10, &(0x7f00000001c0)=ANY=[@ANYBLOB="0e000100"], 0x8)

1.105429982s ago: executing program 3 (id=372):
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x20)
r0 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$read(0xb, r0, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001540), 0x0, &(0x7f0000000040)}, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x20, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10)
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001}, 0x48)
r4 = socket$inet6(0xa, 0x2, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x0)
connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x0, 0x20}, 0x1c)
r5 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80], 0x0, [0x8, 0x4], [0x0, 0x8, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffe]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x10000}]}]}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x30004801}, 0x0)
sendmmsg(r5, 0x0, 0x0, 0x80fe)
sendmsg$nl_xfrm(r1, 0x0, 0x8000)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
clock_getres(0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

1.104847353s ago: executing program 2 (id=373):
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x20)
r0 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$read(0xb, r0, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000008c0)=[{{&(0x7f0000000040)={0xa, 0x0, 0x9, @mcast2={0xff, 0x24, '\x00', 0x0}}, 0x1c, 0x0}}], 0x1, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001540), 0x0, &(0x7f0000000040)}, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x20, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10)
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001}, 0x48)
r4 = socket$inet6(0xa, 0x2, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x0)
connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x0, 0x20}, 0x1c)
r5 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80], 0x0, [0x8, 0x4], [0x0, 0x8, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffe]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x10000}]}]}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x30004801}, 0x0)
sendmmsg(r5, 0x0, 0x0, 0x80fe)
sendmsg$nl_xfrm(r1, 0x0, 0x8000)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
clock_getres(0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

1.104440019s ago: executing program 1 (id=374):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/tty/drivers\x00', 0x0, 0x0)
preadv(r0, &(0x7f00000005c0)=[{&(0x7f0000000080)=""/101, 0x7b}, {&(0x7f0000000540)=""/92, 0x5c}], 0x2, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x1de)
close(r1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@ifindex, 0xffffffffffffffff, 0x33, 0x0, 0xffffffffffffffff, @prog_id=0xffffffffffffffff}, 0x20)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="85000000070000006a0a90ff0000000027000000000010009500000000000000181000008639369f554288e121e7e1479594bd86279600e9d86b86badb115d770e9f9373d833487e40631725e39078674dbf4d5c4778d646d325e315751450f0256f7dab30be2630a78d6bc01c55b75ffbead8448a5be71b71e422c0", @ANYRES32, @ANYBLOB="000000000000000005000000000000009500000000000000"], 0x0, 0x0, 0x95, &(0x7f0000000180)=""/149}, 0x90)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f00000002c0)={0x35})
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_GET_STATS(r4, 0x80f86406, &(0x7f00000003c0)=""/224)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, 0xffffffffffffffff, 0x1000)
preadv(r7, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@bloom_filter={0x1e, 0x0, 0x1, 0x1, 0x2, r9, 0x8, '\x00', 0x0, r9, 0x4, 0x4}, 0x48)

599.647294ms ago: executing program 0 (id=375):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_80211_inject_frame(&(0x7f0000000000), 0x0, 0x22)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'wlan1\x00', 0x200})
syz_80211_join_ibss(&(0x7f00000002c0)='wlan1\x00', 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="12190000abbe6740e9174e8b089c00000001090212080100000000f704000000ff00000093da09afb595ae99880286ddcdc7accb23b5e35e72268515477bda09babe9f2cda5eca"], 0x0)
syz_usb_control_io$cdc_ncm(r2, &(0x7f0000002740)={0x14, &(0x7f0000003000)=ANY=[@ANYBLOB], 0x0}, &(0x7f0000002f80)={0x44, &(0x7f0000002d40)={0x20, 0x14, 0x6c, "9f36918ec95cedd39099e9dd81e66805dfd4b33c9146091d90148bb87b00f8d59ce583636d7e22cc32a123deffc8c159910441c9d04d10d58c99b19bd2026a23a05b52039d7d4d8f4b3c06e357742dc0878648c828f33343599454c44ce70b7c1c938c69d815bd6a18ff765e"}, &(0x7f0000002a80)={0x0, 0xa, 0x1, 0x40}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002f40)={0x20, 0x89, 0x2}})
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(0xffffffffffffffff, 0x40085112, &(0x7f0000000080)=@echo)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="040e04001220", @ANYRESHEX=r1], 0x7)
mkdir(0x0, 0x1c8)
open(&(0x7f0000000100)='./file0\x00', 0x40000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

504.209663ms ago: executing program 3 (id=376):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
socket(0x2, 0x2, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
socket$nl_audit(0x10, 0x3, 0x9)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x400caed0, &(0x7f0000000080)={0x1})
bind$can_raw(0xffffffffffffffff, &(0x7f0000000000), 0x10)
dup3(r1, 0xffffffffffffffff, 0x0)
syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000d40), 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
creat(&(0x7f0000000080)='./file0/file0\x00', 0x0)
mount$9p_rdma(&(0x7f0000000300), &(0x7f0000000340)='./file0/file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000600)={'trans=rdma,', {}, 0x2c, {[{@timeout}, {@sq}]}})

355.00579ms ago: executing program 3 (id=377):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000022c0)=ANY=[@ANYRES8=r0], &(0x7f0000002340)='syzkaller\x00', 0xffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fe}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='contention_end\x00', r2}, 0x10) (async)
ioctl$sock_SIOCSIFBR(r1, 0x8941, 0x0) (async)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000f80)=""/4096, 0x1000) (async)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='qgroup_update_reserve\x00'}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0) (async)
r4 = userfaultfd(0x80001)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400000002000000000000000000000202000000000000000000000b030000000000000000000002000000000000"], 0x0, 0x3e}, 0x20) (async, rerun: 32)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0)) (async, rerun: 32)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}}) (async)
ioctl$UFFDIO_CONTINUE(r4, 0xc020aa08, 0x0) (async)
r5 = epoll_create1(0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181003900000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0)
fcntl$dupfd(r5, 0x2, 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000280))
syz_open_procfs(0x0, &(0x7f0000000540)='net/ip_mr_vif\x00') (async)
socket$inet(0x2, 0x0, 0x0) (async)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x1)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r7, 0x40505331, &(0x7f00000001c0)={0x700, 0x0, 0x0, 'queue0\x00'}) (async)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYBLOB='7'])
syz_fuse_handle_req(r8, &(0x7f00000002c0)="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", 0x2000, &(0x7f0000000080)={&(0x7f0000000100)={0x50, 0x0, 0x0, {0x7, 0x24}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

341.731108ms ago: executing program 2 (id=378):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000001200)='syzkaller\x00'}, 0x90)
r2 = fsopen(&(0x7f0000000340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r1, r3, 0x1, 0x0, @void}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000240)=ANY=[@ANYBLOB="f2d68cae10b7aaaaaaaad50c0000c2000000030000000000000000000006907864010101ac1414aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c02000090780000"], 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="180600000000000000000000000000001830000000000000000000000020000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x90, &(0x7f0000000100)=""/144}, 0x90)
open(0x0, 0x143c62, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
recvmmsg(r5, &(0x7f0000000ec0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, &(0x7f0000000f80))
r6 = socket(0x40000000015, 0x5, 0x0)
recvmsg(r6, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/112, 0xfffffffffffffc1d}], 0x1}, 0x0)
r7 = open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0)
setrlimit(0x1, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$FS_IOC_SETFSLABEL(r7, 0x41009432, &(0x7f0000000400)="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")
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r8, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000001c0)={0x1c, 0x1, 0x4, 0x5, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8845}, 0x40801)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0xc3ff, &(0x7f0000000300)='trans=rdma,')

265.239942ms ago: executing program 3 (id=379):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000001200)='syzkaller\x00'}, 0x90)
r2 = fsopen(&(0x7f0000000340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
r4 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r1, r3, 0x1, 0x0, @void}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f00000005c0)=ANY=[@ANYBLOB="f2d68cae10b7aaaaaaaad50c0000c2000000030000000000000000000006907864010101ac1414aa00004e22", @ANYRESOCT=r4, @ANYRES32=0x41424344, @ANYRES64=0x0], 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="180600000000000000000000000000001830000000000000000000000020000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x90, &(0x7f0000000100)=""/144}, 0x90)
open(0x0, 0x143c62, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
recvmmsg(r6, &(0x7f0000000ec0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, &(0x7f0000000f80))
r7 = socket(0x40000000015, 0x5, 0x0)
recvmsg(r7, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000740)=""/112, 0xfffffffffffffc1d}], 0x1}, 0x0)
r8 = open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0)
setrlimit(0x1, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$FS_IOC_SETFSLABEL(r8, 0x41009432, &(0x7f0000000400)="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")
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r9, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000010405000000004b000000000000000000050001000300005eee8d05559565434c6a3718a398a851c1df3625b09ba0a84118e6af7beb36cafb968876529107f9626704da2f4a6b89e1c6381f0e6d5c052676a3759e6fb9499c5b0be57b378c94971a68b883e9ef29f9d3c7deedd653ebfc3776b9d99cb3b17dd58c76f5a98960"], 0x1c}, 0x1, 0x0, 0x0, 0x8845}, 0x40801)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

0s ago: executing program 1 (id=380):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000480)='net/sco\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='ceph\x00', 0x202401a, 0x0)
fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140))
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r4)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f0000000d80)=ANY=[@ANYBLOB="0d08000000000000000000000000000018116fc9", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000030000008500000005000000bf0900000000000055090100000000009500000000000000bf9800000000000056080000000000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="580000001400192340834b", 0xb}, {&(0x7f00000002c0)="db6dfa07d8098bd2ced64ad5edc54382ee45da9203efd5732acfcc727b53d3079ed06ecae1342e4ec9c8283311dceddf89948d3ef84ff58ffb015760e03187c365999492cb07f544c5f8e72917b4af1e3e47b4655360c078947e62afae62d2ec31a3e0043a888d2096a4fe21b43cef30a6299fda9e752ea4ac9bd768a5a01356f8f5d1dae5c092d7f0fba15747b05104819751a787c6202cca9911ddff6f00ddc9997b", 0xa3}], 0x100000e0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012930b000f52899786d2c1f02a950c0eb9f3e8006d616373656300000c00028005000d0003000000"], 0x3c}}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e1f1b"], 0x22)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r7 = io_uring_setup(0x4011, &(0x7f0000000180)={0x0, 0x6e42, 0x2000, 0x3, 0x3d7})
syz_io_uring_setup(0x8a5, &(0x7f0000000080)={0x0, 0xc524, 0x4, 0x0, 0x0, 0x0, r7}, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000280)=@IORING_OP_SPLICE={0x1e, 0x8, 0x0, @fd_index=0x4, 0x7f, {0x0, r2}, 0x1, 0x5, 0x0, {0x0, 0x0, r5}})
r10 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001880), 0x400000, 0x0)
dup(r10)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r11, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000400)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff9000/0x7000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000380)="b9c2f3cb766f3ad5bb03fcd3189651032d33f523567851afcad8f6806909a3eff031718b025a123c15ee89249a177fc8651710becd5957e388df6a496c8cbe710c8d6e3bec667a4b6e558854016278ce219a8979dfa5c912bcc09441ef9dda1294a4f03a34a338ac6dabc274af3059ff968f", 0x72, r0}, 0x68)
connect$inet6(r11, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r11, 0x6, 0x1f, &(0x7f00000001c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r11, 0x11a, 0x1, &(0x7f0000000140)=@gcm_256={{0x304}, "85406704bbcd6043", "898e9d750bfd000000000400", "a22300", "8ce3a39e3181899b"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r11, 0x11a, 0x2, &(0x7f0000000280)=@ccm_128={{0x304}, "3a997aae6644173f", "b9c0a8cd2707555d2fd4cc373ac51cf2", "1784fe44", "d3e69d47722a0439"}, 0x28)
ioctl$IOCTL_VMCI_VERSION2(r10, 0x7a7, &(0x7f0000000240)=0x10000)

kernel console output (not intermixed with test programs):

 > 3
[   57.345081][ T5338] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   57.348288][ T5348] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   57.350524][ T5338] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   57.367382][ T5338] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   57.367750][ T5346] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   57.370904][ T5338] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   57.371680][   T39] audit: type=1400 audit(1723279551.125:112): avc:  denied  { read } for  pid=5331 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.371729][   T39] audit: type=1400 audit(1723279551.125:113): avc:  denied  { open } for  pid=5331 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.371773][   T39] audit: type=1400 audit(1723279551.125:114): avc:  denied  { mounton } for  pid=5331 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   57.373600][ T5347] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   57.376483][ T5346] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   57.376912][ T5338] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   57.391963][ T5347] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   57.396525][ T5346] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   57.405617][ T5347] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   57.408054][ T5346] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   57.410694][ T5347] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   57.413989][ T5346] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   57.416565][ T5347] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   57.419227][ T5346] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   57.624758][ T5331] chnl_net:caif_netlink_parms(): no params data found
[   57.802823][ T5331] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.806344][ T5331] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.809579][ T5331] bridge_slave_0: entered allmulticast mode
[   57.813771][ T5331] bridge_slave_0: entered promiscuous mode
[   57.819792][ T5331] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.824942][ T5331] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.827762][ T5331] bridge_slave_1: entered allmulticast mode
[   57.831559][ T5331] bridge_slave_1: entered promiscuous mode
[   57.949992][ T5331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.000754][ T5331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.064902][ T5336] chnl_net:caif_netlink_parms(): no params data found
[   58.074748][ T5331] team0: Port device team_slave_0 added
[   58.077516][ T5341] chnl_net:caif_netlink_parms(): no params data found
[   58.094921][ T5331] team0: Port device team_slave_1 added
[   58.190012][ T5332] chnl_net:caif_netlink_parms(): no params data found
[   58.252259][ T5331] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.254701][ T5331] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.265447][ T5331] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.274699][ T5331] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.277107][ T5331] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.288209][ T5331] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.406943][ T5341] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.409705][ T5341] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.415121][ T5341] bridge_slave_0: entered allmulticast mode
[   58.417981][ T5341] bridge_slave_0: entered promiscuous mode
[   58.442678][ T5336] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.445787][ T5336] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.448837][ T5336] bridge_slave_0: entered allmulticast mode
[   58.452508][ T5336] bridge_slave_0: entered promiscuous mode
[   58.502847][ T5341] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.506053][ T5341] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.509414][ T5341] bridge_slave_1: entered allmulticast mode
[   58.513482][ T5341] bridge_slave_1: entered promiscuous mode
[   58.544429][ T5336] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.547505][ T5336] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.550523][ T5336] bridge_slave_1: entered allmulticast mode
[   58.556793][ T5336] bridge_slave_1: entered promiscuous mode
[   58.560198][ T5332] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.563479][ T5332] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.566175][ T5332] bridge_slave_0: entered allmulticast mode
[   58.569661][ T5332] bridge_slave_0: entered promiscuous mode
[   58.647196][ T5332] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.650058][ T5332] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.653220][ T5332] bridge_slave_1: entered allmulticast mode
[   58.656952][ T5332] bridge_slave_1: entered promiscuous mode
[   58.691735][ T5341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.697579][ T5331] hsr_slave_0: entered promiscuous mode
[   58.700395][ T5331] hsr_slave_1: entered promiscuous mode
[   58.757076][ T5336] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.784399][ T5341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.819418][ T5336] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.845899][ T5332] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.916544][ T5332] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.002291][ T5341] team0: Port device team_slave_0 added
[   59.012736][ T5341] team0: Port device team_slave_1 added
[   59.018941][ T5336] team0: Port device team_slave_0 added
[   59.044326][ T5332] team0: Port device team_slave_0 added
[   59.099582][ T5336] team0: Port device team_slave_1 added
[   59.123952][ T5332] team0: Port device team_slave_1 added
[   59.211373][ T5341] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.214082][ T5341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.223765][ T5341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.229355][ T5336] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.232650][ T5336] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.242355][ T5336] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.255584][ T5332] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.258591][ T5332] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.269703][ T5332] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.275919][ T5332] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.278582][ T5332] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.289262][ T5332] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.295435][ T5341] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.300073][ T5341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.316270][ T5341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.329784][ T5336] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.332907][ T5336] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.356660][ T5336] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.386480][ T5346] Bluetooth: hci0: command tx timeout
[   59.386503][ T5333] Bluetooth: hci3: command tx timeout
[   59.472042][ T5333] Bluetooth: hci2: command tx timeout
[   59.474812][ T5333] Bluetooth: hci1: command tx timeout
[   59.509345][ T5332] hsr_slave_0: entered promiscuous mode
[   59.512885][ T5332] hsr_slave_1: entered promiscuous mode
[   59.516256][ T5332] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.519734][ T5332] Cannot create hsr debugfs directory
[   59.554150][ T5336] hsr_slave_0: entered promiscuous mode
[   59.557506][ T5336] hsr_slave_1: entered promiscuous mode
[   59.560041][ T5336] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.563382][ T5336] Cannot create hsr debugfs directory
[   59.599828][ T5341] hsr_slave_0: entered promiscuous mode
[   59.603023][ T5341] hsr_slave_1: entered promiscuous mode
[   59.605535][ T5341] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.608269][ T5341] Cannot create hsr debugfs directory
[   59.789814][ T5331] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   59.839397][ T5331] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   59.849292][ T5331] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   59.899348][ T5331] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   60.062527][ T5336] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   60.067919][ T5336] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   60.074628][ T5336] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   60.081108][ T5336] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   60.147692][ T5332] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   60.153343][ T5332] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   60.160388][ T5332] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   60.167304][ T5332] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   60.229715][ T5341] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   60.242405][ T5341] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   60.253656][ T5341] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   60.260967][ T5341] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   60.283206][ T5331] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.333011][ T5331] 8021q: adding VLAN 0 to HW filter on device team0
[   60.355501][ T5336] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.369618][   T99] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.372321][   T99] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.395971][   T99] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.398774][   T99] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.416589][ T5336] 8021q: adding VLAN 0 to HW filter on device team0
[   60.439443][ T5332] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.443981][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.446502][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.467202][ T1104] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.470272][ T1104] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.490605][ T5332] 8021q: adding VLAN 0 to HW filter on device team0
[   60.501154][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.504389][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.534702][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.537879][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.572381][ T5341] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.604199][ T5341] 8021q: adding VLAN 0 to HW filter on device team0
[   60.618919][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.621621][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.636646][ T1104] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.639858][ T1104] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.695908][ T5331] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.773771][ T5331] veth0_vlan: entered promiscuous mode
[   60.786450][ T5331] veth1_vlan: entered promiscuous mode
[   60.806868][ T5336] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.818156][ T5332] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.849629][ T5331] veth0_macvtap: entered promiscuous mode
[   60.856375][ T5331] veth1_macvtap: entered promiscuous mode
[   60.890552][ T5336] veth0_vlan: entered promiscuous mode
[   60.906329][ T5331] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.914093][ T5336] veth1_vlan: entered promiscuous mode
[   60.923594][ T5341] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.936937][ T5331] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.952597][ T5332] veth0_vlan: entered promiscuous mode
[   60.958577][ T5331] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.964328][ T5331] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.967854][ T5331] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.972099][ T5331] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.990286][ T5332] veth1_vlan: entered promiscuous mode
[   61.037187][ T5336] veth0_macvtap: entered promiscuous mode
[   61.053420][ T5336] veth1_macvtap: entered promiscuous mode
[   61.091526][ T5341] veth0_vlan: entered promiscuous mode
[   61.101373][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.105821][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.107115][ T5336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.113823][ T5336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.118837][ T5336] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.124060][ T5336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.128075][ T5336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.133159][ T5336] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.136361][ T5341] veth1_vlan: entered promiscuous mode
[   61.157343][ T5332] veth0_macvtap: entered promiscuous mode
[   61.164145][ T5332] veth1_macvtap: entered promiscuous mode
[   61.174991][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.176947][ T5336] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.178139][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.181538][ T5336] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.181564][ T5336] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.181588][ T5336] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.223388][ T5332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.227243][ T5332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.231284][ T5332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.237624][ T5332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.243187][ T5332] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.247259][ T5341] veth0_macvtap: entered promiscuous mode
[   61.265993][ T5332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.270672][ T5332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.275551][ T5332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.279845][ T5332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.285559][ T5332] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.320365][ T5332] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.324343][ T5332] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.328166][ T5332] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.331389][ T5332] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.353265][ T5341] veth1_macvtap: entered promiscuous mode
[   61.365580][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.368938][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.390367][ T5341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.397435][ T5341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.402346][ T5341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.407038][ T5341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.411181][ T5341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.416165][ T5341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.425377][ T5341] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.460818][ T5341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.465586][ T5341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.465828][ T5333] Bluetooth: hci0: command tx timeout
[   61.469836][ T5341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.469853][ T5341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.472844][ T5333] Bluetooth: hci3: command tx timeout
[   61.476403][ T5341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.488022][ T5341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.494147][ T5341] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.510412][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.516809][   T39] kauditd_printk_skb: 18 callbacks suppressed
[   61.516820][   T39] audit: type=1400 audit(1723279555.275:133): avc:  denied  { create } for  pid=5396 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   61.521903][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.533723][   T39] audit: type=1400 audit(1723279555.295:134): avc:  denied  { connect } for  pid=5396 comm="syz.1.2" lport=256 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   61.538466][ T5341] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.543229][ T5333] Bluetooth: hci2: command tx timeout
[   61.543311][ T5346] Bluetooth: hci1: command tx timeout
[   61.551567][ T5341] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.554752][ T5341] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.555494][   T39] audit: type=1400 audit(1723279555.305:135): avc:  denied  { write } for  pid=5396 comm="syz.1.2" laddr=172.20.20.10 lport=256 faddr=172.20.20.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   61.557883][ T5341] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.575151][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.578545][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.604334][   T39] audit: type=1400 audit(1723279555.365:136): avc:  denied  { read } for  pid=5396 comm="syz.1.2" name="card1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   61.614467][   T39] audit: type=1400 audit(1723279555.365:137): avc:  denied  { open } for  pid=5396 comm="syz.1.2" path="/dev/dri/card1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   61.629713][   T94] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.633759][   T94] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.648274][   T39] audit: type=1400 audit(1723279555.405:138): avc:  denied  { create } for  pid=5396 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   61.663834][   T39] audit: type=1400 audit(1723279555.405:139): avc:  denied  { write } for  pid=5396 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   61.708725][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.721572][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.771858][   T39] audit: type=1400 audit(1723279555.525:140): avc:  denied  { map_create } for  pid=5400 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   61.782330][   T99] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.790862][   T99] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.809939][   T39] audit: type=1400 audit(1723279555.545:141): avc:  denied  { create } for  pid=5400 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   61.819372][   T39] audit: type=1400 audit(1723279555.545:142): avc:  denied  { ioctl } for  pid=5400 comm="syz.3.4" path="socket:[8585]" dev="sockfs" ino=8585 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   62.061904][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   62.584408][    T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!!
[   62.654140][ T5420] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7'.
[   62.790954][ T5420] Bluetooth: MGMT ver 1.23
[   63.001812][ T5374] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   63.191591][ T5374] usb 5-1: Using ep0 maxpacket: 8
[   63.198207][ T5374] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   63.202192][ T5374] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   63.207368][ T5374] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   63.215622][ T5374] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   63.220085][ T5374] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   63.221702][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   63.231196][ T5374] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   63.237686][ T5374] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   63.426637][ T5436] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(12)
[   63.429726][ T5436] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   63.436686][ T5436] vhci_hcd vhci_hcd.0: Device attached
[   63.499043][ T5436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10'.
[   63.541707][ T5333] Bluetooth: hci3: command tx timeout
[   63.544185][ T5333] Bluetooth: hci0: command tx timeout
[   63.621572][ T5333] Bluetooth: hci1: command tx timeout
[   63.632786][ T5333] Bluetooth: hci2: command tx timeout
[   63.721509][ T5395] usb 15-1: new high-speed USB device number 2 using vhci_hcd
[   63.955938][ T5437] vhci_hcd: connection reset by peer
[   63.960643][ T1104] vhci_hcd: stop threads
[   63.962854][ T1104] vhci_hcd: release socket
[   63.981909][ T1104] vhci_hcd: disconnect device
[   64.043333][  T831] usb 5-1: USB disconnect, device number 2
[   64.355856][ T5445] netlink: 28 bytes leftover after parsing attributes in process `syz.3.13'.
[   65.604409][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   65.632461][ T5333] Bluetooth: hci0: command tx timeout
[   65.632481][ T5346] Bluetooth: hci3: command tx timeout
[   65.662358][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2ca!!!
[   65.674538][    T0] NOHZ tick-stop error: local softirq work is pending, handler #288!!!
[   65.701649][ T5333] Bluetooth: hci2: command tx timeout
[   65.702529][ T5346] Bluetooth: hci1: command tx timeout
[   65.711997][ T5460] netlink: 48 bytes leftover after parsing attributes in process `syz.2.19'.
[   65.719604][ T5460] netlink: 48 bytes leftover after parsing attributes in process `syz.2.19'.
[   65.763203][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   65.772094][ T5464] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20'.
[   65.785685][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   65.802547][ T5462] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   65.962348][ T5468] usb usb1: usbfs: process 5468 (syz.2.19) did not claim interface 0 before use
[   66.018371][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   66.215427][ T5473] netlink: 4 bytes leftover after parsing attributes in process `syz.0.22'.
[   66.321029][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   66.390219][ T5478] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[   66.691755][   T57] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   66.902122][   T57] usb 5-1: device descriptor read/64, error -71
[   67.171554][   T57] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   67.223217][   T39] kauditd_printk_skb: 64 callbacks suppressed
[   67.223234][   T39] audit: type=1400 audit(1723279560.985:207): avc:  denied  { create } for  pid=5486 comm="syz.2.27" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   67.317155][ T5492] netlink: 4 bytes leftover after parsing attributes in process `syz.3.28'.
[   67.361771][   T57] usb 5-1: device descriptor read/64, error -71
[   67.389104][ T5490] pim6reg1: entered promiscuous mode
[   67.391705][ T5490] pim6reg1: entered allmulticast mode
[   67.481860][   T57] usb usb5-port1: attempt power cycle
[   67.495387][   T39] audit: type=1400 audit(1723279561.255:208): avc:  denied  { unlink } for  pid=5489 comm="syz.1.29" name="#1" dev="tmpfs" ino=71 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   67.510049][   T39] audit: type=1400 audit(1723279561.265:209): avc:  denied  { mount } for  pid=5489 comm="syz.1.29" name="/" dev="overlay" ino=66 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   67.905131][   T57] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   67.945841][   T57] usb 5-1: device descriptor read/8, error -71
[   68.113554][   T39] audit: type=1400 audit(1723279561.875:210): avc:  denied  { ioctl } for  pid=5498 comm="syz.2.31" path="socket:[7787]" dev="sockfs" ino=7787 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   68.231919][   T57] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   68.272747][   T57] usb 5-1: device descriptor read/8, error -71
[   68.392413][   T57] usb usb5-port1: unable to enumerate USB device
[   68.821638][ T5395] vhci_hcd: vhci_device speed not set
[   69.381011][ T5478] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   69.599696][   T39] audit: type=1400 audit(1723279563.355:211): avc:  denied  { mount } for  pid=5509 comm="syz.2.33" name="/" dev="ramfs" ino=7795 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   69.614842][ T5512] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   69.625117][   T39] audit: type=1400 audit(1723279563.385:212): avc:  denied  { create } for  pid=5508 comm="syz.3.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   69.643956][   T39] audit: type=1400 audit(1723279563.405:213): avc:  denied  { write } for  pid=5508 comm="syz.3.35" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   69.714647][   T39] audit: type=1400 audit(1723279563.475:214): avc:  denied  { map } for  pid=5508 comm="syz.3.35" path="socket:[7796]" dev="sockfs" ino=7796 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   69.727000][ T5510] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   69.734407][ T5510] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   69.749517][ T5513] gfs2: not a GFS2 filesystem
[   69.766214][   T39] audit: type=1400 audit(1723279563.475:215): avc:  denied  { read accept } for  pid=5508 comm="syz.3.35" path="socket:[7796]" dev="sockfs" ino=7796 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   69.863408][   T39] audit: type=1400 audit(1723279563.625:216): avc:  denied  { read write } for  pid=5509 comm="syz.2.33" name="video36" dev="devtmpfs" ino=990 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   70.076941][ T5515] netlink: 48 bytes leftover after parsing attributes in process `syz.2.36'.
[   70.082043][ T5515] netlink: 48 bytes leftover after parsing attributes in process `syz.2.36'.
[   70.368959][ T5516] usb usb1: usbfs: process 5516 (syz.2.36) did not claim interface 0 before use
[   72.540705][ T5554] netlink: 20 bytes leftover after parsing attributes in process `syz.0.47'.
[   72.683405][   T39] kauditd_printk_skb: 6 callbacks suppressed
[   72.683415][   T39] audit: type=1400 audit(1723279566.445:223): avc:  denied  { create } for  pid=5556 comm="syz.0.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   72.746570][   T39] audit: type=1400 audit(1723279566.505:224): avc:  denied  { read } for  pid=5556 comm="syz.0.48" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   72.757030][   T39] audit: type=1400 audit(1723279566.505:225): avc:  denied  { open } for  pid=5556 comm="syz.0.48" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   72.767445][   T39] audit: type=1400 audit(1723279566.515:226): avc:  denied  { create } for  pid=5556 comm="syz.0.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   72.783234][   T39] audit: type=1400 audit(1723279566.515:227): avc:  denied  { ioctl } for  pid=5556 comm="syz.0.48" path="socket:[9356]" dev="sockfs" ino=9356 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   72.804757][   T39] audit: type=1400 audit(1723279566.565:228): avc:  denied  { setattr } for  pid=5556 comm="syz.0.48" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   73.043096][   T39] audit: type=1400 audit(1723279566.805:229): avc:  denied  { write } for  pid=5565 comm="syz.0.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   73.270431][   T39] audit: type=1400 audit(1723279567.025:230): avc:  denied  { mounton } for  pid=5567 comm="syz.3.51" path="/11/file0" dev="tmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   73.574762][ T5572] syz.2.52 uses obsolete (PF_INET,SOCK_PACKET)
[   73.647143][   T39] audit: type=1400 audit(1723279567.405:231): avc:  denied  { create } for  pid=5578 comm="syz.1.54" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   73.660189][   T39] audit: type=1400 audit(1723279567.405:232): avc:  denied  { getopt } for  pid=5565 comm="syz.0.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   73.672532][ T5579] netlink: 60 bytes leftover after parsing attributes in process `syz.1.54'.
[   73.707618][ T5579] netlink: 24 bytes leftover after parsing attributes in process `syz.1.54'.
[   73.861561][   T63] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   74.053305][   T63] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   74.057040][   T63] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   74.061429][   T63] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[   74.066447][   T63] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[   74.071119][   T63] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[   74.078361][   T63] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   74.084215][   T63] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   74.090596][   T63] usb 7-1: Product: syz
[   74.092574][   T63] usb 7-1: Manufacturer: syz
[   74.098681][   T63] cdc_wdm 7-1:1.0: skipping garbage
[   74.101431][   T63] cdc_wdm 7-1:1.0: skipping garbage
[   74.112511][   T63] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   74.115012][   T63] cdc_wdm 7-1:1.0: Unknown control protocol
[   74.342800][   T63] usb 7-1: USB disconnect, device number 2
[   74.780570][ T5589] netlink: 4 bytes leftover after parsing attributes in process `syz.0.57'.
[   74.911759][   T63] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   75.093792][   T63] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   75.099954][   T63] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   75.104557][   T63] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[   75.109251][   T63] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[   75.136460][   T63] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[   75.150608][   T63] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   75.154545][   T63] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   75.170176][   T63] usb 7-1: Product: syz
[   75.172793][   T63] usb 7-1: Manufacturer: syz
[   75.184339][   T63] cdc_wdm 7-1:1.0: skipping garbage
[   75.186765][   T63] cdc_wdm 7-1:1.0: skipping garbage
[   75.195413][   T63] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   75.197889][   T63] cdc_wdm 7-1:1.0: Unknown control protocol
[   75.931352][ T5606] netlink: 20 bytes leftover after parsing attributes in process `syz.0.61'.
[   75.967809][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   75.970726][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   75.974500][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   75.976896][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   75.979426][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   75.982265][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   75.984996][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   75.987536][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   75.990276][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   75.992808][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   75.995372][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   75.997943][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   76.000527][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   76.003169][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   76.006080][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   76.009010][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   76.011755][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   76.014470][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   76.016859][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[   76.019648][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[   76.036037][   T57] usb 7-1: USB disconnect, device number 3
[   76.038214][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[   76.722453][   T57] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   76.911059][ T5627] netlink: 20 bytes leftover after parsing attributes in process `syz.0.66'.
[   76.928234][   T57] usb 7-1: too many configurations: 9, using maximum allowed: 8
[   76.934707][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   76.938089][   T57] usb 7-1: config 0 has no interfaces?
[   76.946801][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   76.950864][   T57] usb 7-1: config 0 has no interfaces?
[   76.954840][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   76.958895][   T57] usb 7-1: config 0 has no interfaces?
[   76.963063][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   76.967112][   T57] usb 7-1: config 0 has no interfaces?
[   76.971377][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   76.976004][   T57] usb 7-1: config 0 has no interfaces?
[   76.987496][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   77.006214][   T57] usb 7-1: config 0 has no interfaces?
[   77.009831][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   77.015140][   T57] usb 7-1: config 0 has no interfaces?
[   77.025597][ T1382] ieee802154 phy0 wpan0: encryption failed: -22
[   77.028282][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   77.028614][ T1382] ieee802154 phy1 wpan1: encryption failed: -22
[   77.033788][   T57] usb 7-1: config 0 has no interfaces?
[   77.052769][   T57] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   77.063539][   T57] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   77.068193][   T57] usb 7-1: Product: syz
[   77.070470][   T57] usb 7-1: Manufacturer: syz
[   77.074697][   T57] usb 7-1: SerialNumber: syz
[   77.083673][   T57] usb 7-1: config 0 descriptor??
[   77.486659][ T5636] netlink: 4 bytes leftover after parsing attributes in process `syz.0.69'.
[   77.660233][ T5639] netlink: 48 bytes leftover after parsing attributes in process `syz.0.70'.
[   77.664618][ T5639] netlink: 48 bytes leftover after parsing attributes in process `syz.0.70'.
[   77.930142][ T5640] usb usb1: usbfs: process 5640 (syz.0.70) did not claim interface 0 before use
[   78.518169][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x11
[   78.522705][ T5346] Bluetooth: Wrong link type (-22)
[   78.562254][   T63] usb 7-1: USB disconnect, device number 4
[   78.595863][   T39] kauditd_printk_skb: 13 callbacks suppressed
[   78.595877][   T39] audit: type=1400 audit(1723279572.355:246): avc:  denied  { write } for  pid=5645 comm="syz.3.72" name="ip6_flowlabel" dev="proc" ino=4026533430 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   78.678117][   T39] audit: type=1400 audit(1723279572.425:247): avc:  denied  { create } for  pid=5650 comm="syz.2.73" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   78.688141][   T39] audit: type=1400 audit(1723279572.425:248): avc:  denied  { connect } for  pid=5650 comm="syz.2.73" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   78.892160][ T5654] netlink: 8 bytes leftover after parsing attributes in process `syz.0.74'.
[   79.367418][   T39] audit: type=1400 audit(1723279573.125:249): avc:  denied  { create } for  pid=5669 comm="syz.3.79" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   79.825580][   T39] audit: type=1400 audit(1723279573.585:250): avc:  denied  { execute } for  pid=5676 comm="syz.0.81" path="/proc/capi/capi20" dev="proc" ino=4026532342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=file permissive=1
[   79.843325][   T39] audit: type=1400 audit(1723279573.585:251): avc:  denied  { ioctl } for  pid=5676 comm="syz.0.81" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=8777 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   80.013405][   T39] audit: type=1400 audit(1723279573.775:252): avc:  denied  { create } for  pid=5676 comm="syz.0.81" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   80.581134][ T5683] netlink: 48 bytes leftover after parsing attributes in process `syz.2.82'.
[   80.584785][ T5683] netlink: 48 bytes leftover after parsing attributes in process `syz.2.82'.
[   80.791812][ T5684] usb usb1: usbfs: process 5684 (syz.2.82) did not claim interface 0 before use
[   81.900946][   T39] audit: type=1400 audit(1723279575.655:253): avc:  denied  { bind } for  pid=5694 comm="syz.2.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   81.916430][   T39] audit: type=1400 audit(1723279575.675:254): avc:  denied  { setopt } for  pid=5694 comm="syz.2.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   82.123895][   T56] cfg80211: failed to load regulatory.db
[   82.545776][   T39] audit: type=1400 audit(1723279576.305:255): avc:  denied  { create } for  pid=5710 comm="syz.2.92" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   82.561551][    C3] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   83.924933][ T5736] netlink: 4 bytes leftover after parsing attributes in process `syz.0.99'.
[   83.961730][ T5737] netlink: 4 bytes leftover after parsing attributes in process `syz.2.98'.
[   84.157090][ T5745] netlink: 4 bytes leftover after parsing attributes in process `syz.1.100'.
[   84.331929][ T5746] nbd0: detected capacity change from 0 to 22
[   84.338174][ T5753] block nbd0: shutting down sockets
[   84.342839][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.357279][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.383327][   T49] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.387625][   T49] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.392306][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.396133][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.412770][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.419601][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.429930][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.483668][   T39] kauditd_printk_skb: 11 callbacks suppressed
[   84.483683][   T39] audit: type=1400 audit(1723279578.245:267): avc:  denied  { bind } for  pid=5744 comm="syz.0.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   84.490675][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.497683][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.499139][   T39] audit: type=1400 audit(1723279578.255:268): avc:  denied  { accept } for  pid=5744 comm="syz.0.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   84.501995][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.513383][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.517347][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.520821][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.524922][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.528304][ T5648] ldm_validate_partition_table(): Disk read failed.
[   84.531260][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.534935][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.538111][ T5648] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   84.542321][ T5648] Buffer I/O error on dev nbd0, logical block 0, async page read
[   84.545917][ T5648] Dev nbd0: unable to read RDB block 0
[   84.548997][ T5648]  nbd0: unable to read partition table
[   84.551815][ T5648] nbd0: partition table beyond EOD, truncated
[   84.557457][ T5755] ldm_validate_partition_table(): Disk read failed.
[   84.569407][ T5755] Dev nbd0: unable to read RDB block 0
[   84.581597][ T5755]  nbd0: unable to read partition table
[   84.584692][ T5755] nbd0: partition table beyond EOD, truncated
[   84.613902][ T5648] ldm_validate_partition_table(): Disk read failed.
[   84.617128][ T5648] Dev nbd0: unable to read RDB block 0
[   84.619760][ T5648]  nbd0: unable to read partition table
[   84.622524][ T5648] nbd0: partition table beyond EOD, truncated
[   85.713593][   T39] audit: type=1400 audit(1723279579.475:269): avc:  denied  { read } for  pid=5763 comm="syz.1.106" name="loop-control" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   85.724609][   T39] audit: type=1400 audit(1723279579.475:270): avc:  denied  { open } for  pid=5763 comm="syz.1.106" path="/dev/loop-control" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   85.749944][   T39] audit: type=1400 audit(1723279579.475:271): avc:  denied  { sys_module } for  pid=5765 comm="syz.2.107" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   85.758837][   T39] audit: type=1400 audit(1723279579.475:272): avc:  denied  { module_load } for  pid=5765 comm="syz.2.107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[   85.765713][   T39] audit: type=1400 audit(1723279579.475:273): avc:  denied  { ioctl } for  pid=5763 comm="syz.1.106" path="/dev/loop-control" dev="devtmpfs" ino=659 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   85.796407][   T39] audit: type=1400 audit(1723279579.485:274): avc:  denied  { create } for  pid=5763 comm="syz.1.106" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   85.804985][   T39] audit: type=1400 audit(1723279579.505:275): avc:  denied  { bind } for  pid=5765 comm="syz.2.107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   85.813000][   T39] audit: type=1400 audit(1723279579.505:276): avc:  denied  { name_bind } for  pid=5765 comm="syz.2.107" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   85.914149][ T5774] tipc: Started in network mode
[   85.916347][ T5774] tipc: Node identity ffffffff, cluster identity 4711
[   85.918963][ T5774] tipc: Node number set to 4294967295
[   86.008045][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x11
[   86.011957][ T5346] Bluetooth: Wrong link type (-22)
[   86.227630][ T5782] netlink: 4 bytes leftover after parsing attributes in process `syz.2.112'.
[   86.817095][ T5792] FAULT_INJECTION: forcing a failure.
[   86.817095][ T5792] name failslab, interval 1, probability 0, space 0, times 1
[   86.822654][ T5792] CPU: 0 UID: 0 PID: 5792 Comm: syz.0.116 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[   86.826730][ T5792] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.830951][ T5792] Call Trace:
[   86.832259][ T5792]  <TASK>
[   86.833729][ T5792]  dump_stack_lvl+0x16c/0x1f0
[   86.835713][ T5792]  should_fail_ex+0x497/0x5b0
[   86.837656][ T5792]  ? fs_reclaim_acquire+0xae/0x160
[   86.839920][ T5792]  should_failslab+0xc2/0x120
[   86.842007][ T5792]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   86.844324][ T5792]  ? security_inode_alloc+0x3e/0x240
[   86.847016][ T5792]  security_inode_alloc+0x3e/0x240
[   86.849227][ T5792]  inode_init_always+0xc56/0xf80
[   86.851123][ T5792]  alloc_inode+0x7d/0x230
[   86.852810][ T5792]  sock_alloc+0x40/0x280
[   86.854507][ T5792]  __sock_create+0xc0/0x800
[   86.856488][ T5792]  udp_sock_create6+0xc8/0x6a0
[   86.858520][ T5792]  ? __pfx_lock_release+0x10/0x10
[   86.861822][ T5792]  ? __pfx_udp_sock_create6+0x10/0x10
[   86.864440][ T5792]  ? mark_held_locks+0x9f/0xe0
[   86.866511][ T5792]  ? crng_make_state+0x46e/0x6d0
[   86.868628][ T5792]  ? lockdep_hardirqs_on+0x7c/0x110
[   86.870919][ T5792]  ? crng_make_state+0x48e/0x6d0
[   86.873114][ T5792]  rxrpc_open_socket+0x20c/0x6c0
[   86.875363][ T5792]  ? __pfx_rxrpc_open_socket+0x10/0x10
[   86.880065][ T5792]  ? __pfx_lock_release+0x10/0x10
[   86.884626][ T5792]  ? lockdep_init_map_type+0x16d/0x7d0
[   86.886608][ T5792]  ? rcu_is_watching+0x12/0xc0
[   86.888350][ T5792]  rxrpc_lookup_local+0xa02/0x1220
[   86.890317][ T5792]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[   86.892535][ T5792]  ? rxrpc_sendmsg+0x113/0x5f0
[   86.894509][ T5792]  ? __local_bh_enable_ip+0xa4/0x120
[   86.896672][ T5792]  rxrpc_sendmsg+0x375/0x5f0
[   86.898363][ T5792]  ____sys_sendmsg+0xab5/0xc90
[   86.900113][ T5792]  ? __pfx_____sys_sendmsg+0x10/0x10
[   86.902018][ T5792]  ? find_held_lock+0x2d/0x110
[   86.903757][ T5792]  ? __pfx___lock_acquire+0x10/0x10
[   86.905627][ T5792]  ___sys_sendmsg+0x135/0x1e0
[   86.907639][ T5792]  ? __pfx____sys_sendmsg+0x10/0x10
[   86.909750][ T5792]  ? ksys_write+0x21c/0x260
[   86.911750][ T5792]  ? __fget_light+0x173/0x210
[   86.914239][ T5792]  __sys_sendmsg+0x117/0x1f0
[   86.916294][ T5792]  ? __pfx___sys_sendmsg+0x10/0x10
[   86.918711][ T5792]  do_syscall_64+0xcd/0x250
[   86.920775][ T5792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.923465][ T5792] RIP: 0033:0x7f3ffd3779f9
[   86.925472][ T5792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.934047][ T5792] RSP: 002b:00007f3ffcdff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   86.937698][ T5792] RAX: ffffffffffffffda RBX: 00007f3ffd505f80 RCX: 00007f3ffd3779f9
[   86.941203][ T5792] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[   86.944709][ T5792] RBP: 00007f3ffcdff090 R08: 0000000000000000 R09: 0000000000000000
[   86.948263][ T5792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   86.951724][ T5792] R13: 0000000000000000 R14: 00007f3ffd505f80 R15: 00007fff509170f8
[   86.954812][ T5792]  </TASK>
[   86.960301][ T5792] socket: no more sockets
[   87.058568][ T5795] netlink: 12 bytes leftover after parsing attributes in process `syz.0.117'.
[   87.140522][ T5805] netlink: 4 bytes leftover after parsing attributes in process `syz.2.122'.
[   87.311410][ T5812] process 'syz.2.123' launched './file1' with NULL argv: empty string added
[   87.409095][ T5816] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x5
[   87.492952][ T5818] netlink: 4 bytes leftover after parsing attributes in process `syz.2.125'.
[   87.626936][ T5821] netlink: 'syz.2.126': attribute type 4 has an invalid length.
[   87.631218][ T5822] netlink: 12 bytes leftover after parsing attributes in process `syz.2.126'.
[   87.640638][ T5821] netlink: 12 bytes leftover after parsing attributes in process `syz.2.126'.
[   87.818962][ T5831] FAULT_INJECTION: forcing a failure.
[   87.818962][ T5831] name failslab, interval 1, probability 0, space 0, times 0
[   87.824489][ T5831] CPU: 3 UID: 0 PID: 5831 Comm: syz.1.128 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[   87.828602][ T5831] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.832730][ T5831] Call Trace:
[   87.834024][ T5831]  <TASK>
[   87.835043][ T5831]  dump_stack_lvl+0x16c/0x1f0
[   87.836664][ T5831]  should_fail_ex+0x497/0x5b0
[   87.838413][ T5831]  ? fs_reclaim_acquire+0xae/0x160
[   87.840532][ T5831]  should_failslab+0xc2/0x120
[   87.842537][ T5831]  __kmalloc_cache_noprof+0x6b/0x300
[   87.844740][ T5831]  ? snd_seq_oss_open+0x55/0xa20
[   87.846944][ T5831]  snd_seq_oss_open+0x55/0xa20
[   87.848795][ T5831]  odev_open+0x6f/0x90
[   87.850429][ T5831]  ? __pfx_odev_open+0x10/0x10
[   87.852569][ T5831]  soundcore_open+0x31f/0x620
[   87.854586][ T5831]  ? __pfx_soundcore_open+0x10/0x10
[   87.856777][ T5831]  chrdev_open+0x26d/0x6f0
[   87.858683][ T5831]  ? __pfx_chrdev_open+0x10/0x10
[   87.860920][ T5831]  ? security_file_open+0x9d/0x8b0
[   87.863212][ T5831]  do_dentry_open+0x91f/0x15f0
[   87.865366][ T5831]  ? __pfx_chrdev_open+0x10/0x10
[   87.867575][ T5831]  ? inode_permission+0xdd/0x5f0
[   87.869722][ T5831]  vfs_open+0x82/0x3f0
[   87.871539][ T5831]  ? may_open+0x1f2/0x400
[   87.873523][ T5831]  path_openat+0x2141/0x2d20
[   87.875607][ T5831]  ? __pfx_path_openat+0x10/0x10
[   87.878035][ T5831]  ? __pfx___lock_acquire+0x10/0x10
[   87.880277][ T5831]  ? find_held_lock+0x2d/0x110
[   87.882496][ T5831]  do_filp_open+0x1dc/0x430
[   87.884531][ T5831]  ? __pfx_do_filp_open+0x10/0x10
[   87.886771][ T5831]  ? find_held_lock+0x2d/0x110
[   87.888905][ T5831]  ? _raw_spin_unlock+0x28/0x50
[   87.891060][ T5831]  ? alloc_fd+0x2d7/0x6c0
[   87.892982][ T5831]  do_sys_openat2+0x17a/0x1e0
[   87.895059][ T5831]  ? __pfx_do_sys_openat2+0x10/0x10
[   87.897321][ T5831]  __x64_sys_openat+0x175/0x210
[   87.899322][ T5831]  ? __pfx___x64_sys_openat+0x10/0x10
[   87.901504][ T5831]  ? rcu_is_watching+0x12/0xc0
[   87.903544][ T5831]  do_syscall_64+0xcd/0x250
[   87.905506][ T5831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.908074][ T5831] RIP: 0033:0x7f2161f779f9
[   87.910039][ T5831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.917643][ T5831] RSP: 002b:00007f2162da7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   87.920964][ T5831] RAX: ffffffffffffffda RBX: 00007f2162106058 RCX: 00007f2161f779f9
[   87.924029][ T5831] RDX: 0000000000000000 RSI: 0000000020000240 RDI: ffffffffffffff9c
[   87.927060][ T5831] RBP: 00007f2162da7090 R08: 0000000000000000 R09: 0000000000000000
[   87.930565][ T5831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.934081][ T5831] R13: 0000000000000000 R14: 00007f2162106058 R15: 00007ffc99c1ec48
[   87.937339][ T5831]  </TASK>
[   88.112164][ T5809] Process accounting resumed
[   88.671152][ T5846] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   89.299219][ T5373] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   89.481599][ T5373] usb 8-1: Using ep0 maxpacket: 8
[   89.486031][ T5373] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   89.489894][ T5373] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   89.494856][ T5373] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   89.499611][ T5373] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   89.505684][ T5373] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   89.512995][ T5373] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   89.517588][ T5373] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.564097][   T39] kauditd_printk_skb: 24 callbacks suppressed
[   89.564114][   T39] audit: type=1400 audit(1723279583.325:301): avc:  denied  { ioctl } for  pid=5862 comm="syz.0.146" path="/dev/fb0" dev="devtmpfs" ino=639 ioctlcmd=0x4601 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   89.665739][ T5867] netlink: 4 bytes leftover after parsing attributes in process `syz.0.139'.
[   89.704530][ T5869] warning: `syz.1.140' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   89.735198][ T5860] nbd2: detected capacity change from 0 to 22
[   89.740875][   T39] audit: type=1400 audit(1723279583.495:302): avc:  denied  { create } for  pid=5868 comm="syz.1.140" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   89.752611][ T5871] block nbd2: shutting down sockets
[   89.755596][    C0] blk_print_req_error: 40 callbacks suppressed
[   89.755605][    C0] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.761707][    C0] buffer_io_error: 40 callbacks suppressed
[   89.761718][    C0] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.773107][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.776943][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.780587][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.791658][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.796167][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.800518][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.812324][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.816296][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.821970][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.828841][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.834725][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.840004][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.848636][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.854113][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.858245][ T5335] ldm_validate_partition_table(): Disk read failed.
[   89.869433][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.877819][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.881365][ T5335] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   89.892054][ T5335] Buffer I/O error on dev nbd2, logical block 0, async page read
[   89.895964][ T5335] Dev nbd2: unable to read RDB block 0
[   89.901698][ T5335]  nbd2: unable to read partition table
[   89.904639][ T5335] nbd2: partition table beyond EOD, truncated
[   89.908723][ T5873] ldm_validate_partition_table(): Disk read failed.
[   89.912411][ T5873] Dev nbd2: unable to read RDB block 0
[   89.913271][ T5877] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[   89.915572][ T5873]  nbd2: unable to read partition table
[   89.920820][ T5873] nbd2: partition table beyond EOD, truncated
[   89.923294][   T39] audit: type=1400 audit(1723279583.685:303): avc:  denied  { getopt } for  pid=5876 comm="syz.1.143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   89.932537][ T5335] ldm_validate_partition_table(): Disk read failed.
[   89.938807][ T5335] Dev nbd2: unable to read RDB block 0
[   89.942327][ T5335]  nbd2: unable to read partition table
[   89.944714][ T5335] nbd2: partition table beyond EOD, truncated
[   89.949659][   T39] audit: type=1400 audit(1723279583.705:304): avc:  denied  { accept } for  pid=5872 comm="syz.0.141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   89.984345][ T5874] Zero length message leads to an empty skb
[   90.066201][   T39] audit: type=1400 audit(1723279583.825:305): avc:  denied  { bind } for  pid=5886 comm="syz.1.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   90.070694][ T5373] usb 8-1: USB disconnect, device number 2
[   90.075085][   T39] audit: type=1400 audit(1723279583.825:306): avc:  denied  { write } for  pid=5886 comm="syz.1.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   90.092718][   T39] audit: type=1400 audit(1723279583.825:307): avc:  denied  { setopt } for  pid=5886 comm="syz.1.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   90.347411][ T5346] Bluetooth: hci3: Received unexpected HCI Event 0x00
[   90.845409][ T5913] FAULT_INJECTION: forcing a failure.
[   90.845409][ T5913] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   90.857121][ T5913] CPU: 0 UID: 0 PID: 5913 Comm: syz.3.154 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[   90.861697][ T5913] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.866253][ T5913] Call Trace:
[   90.867702][ T5913]  <TASK>
[   90.868999][ T5913]  dump_stack_lvl+0x16c/0x1f0
[   90.871002][ T5913]  should_fail_ex+0x497/0x5b0
[   90.873045][ T5913]  _copy_to_user+0x30/0xc0
[   90.874993][ T5913]  simple_read_from_buffer+0xd0/0x160
[   90.877304][ T5913]  proc_fail_nth_read+0x1b0/0x290
[   90.879563][ T5913]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   90.882084][ T5913]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   90.884600][ T5913]  vfs_read+0x1d4/0xbd0
[   90.886428][ T5913]  ? __fdget_pos+0xeb/0x180
[   90.888382][ T5913]  ? inet_dgram_connect+0x166/0x2f0
[   90.890644][ T5913]  ? __pfx_vfs_read+0x10/0x10
[   90.892690][ T5913]  ? __pfx___mutex_lock+0x10/0x10
[   90.894874][ T5913]  ? __fget_files+0x256/0x400
[   90.896885][ T5913]  ksys_read+0x12f/0x260
[   90.898716][ T5913]  ? __pfx_ksys_read+0x10/0x10
[   90.900828][ T5913]  do_syscall_64+0xcd/0x250
[   90.902828][ T5913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.905412][ T5913] RIP: 0033:0x7fb26df7643c
[   90.907359][ T5913] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[   90.915530][ T5913] RSP: 002b:00007fb26ed28030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   90.919113][ T5913] RAX: ffffffffffffffda RBX: 00007fb26e105f80 RCX: 00007fb26df7643c
[   90.922473][ T5913] RDX: 000000000000000f RSI: 00007fb26ed280a0 RDI: 0000000000000004
[   90.925620][ T5913] RBP: 00007fb26ed28090 R08: 0000000000000000 R09: 0000000000000000
[   90.928595][ T5913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.931577][ T5913] R13: 0000000000000000 R14: 00007fb26e105f80 R15: 00007fff546830f8
[   90.934685][ T5913]  </TASK>
[   91.021088][   T39] audit: type=1400 audit(1723279584.775:308): avc:  denied  { ioctl } for  pid=5914 comm="syz.1.155" path="socket:[9768]" dev="sockfs" ino=9768 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   91.076377][ T5918] 9pnet_fd: Insufficient options for proto=fd
[   91.083624][   T39] audit: type=1400 audit(1723279584.845:309): avc:  denied  { write } for  pid=5917 comm="syz.3.156" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[   91.104250][   T39] audit: type=1400 audit(1723279584.845:310): avc:  denied  { write } for  pid=5917 comm="syz.3.156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   91.150538][ T5916] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   91.332345][ T5921] netlink: 'syz.0.157': attribute type 2 has an invalid length.
[   91.407686][ T5923] nfs: Unknown parameter 'smackfstransmute'
[   91.416241][ T5923] input: syz1 as /devices/virtual/input/input9
[   91.971907][ T5942] netlink: 16 bytes leftover after parsing attributes in process `syz.2.164'.
[   92.029216][ T5947] FAULT_INJECTION: forcing a failure.
[   92.029216][ T5947] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.037391][ T5947] CPU: 1 UID: 0 PID: 5947 Comm: syz.2.166 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[   92.042040][ T5947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.046587][ T5947] Call Trace:
[   92.048040][ T5947]  <TASK>
[   92.049317][ T5947]  dump_stack_lvl+0x16c/0x1f0
[   92.051012][ T5947]  should_fail_ex+0x497/0x5b0
[   92.052946][ T5947]  _copy_from_user+0x30/0xf0
[   92.054834][ T5947]  __sys_bpf+0x21c/0x4a20
[   92.056730][ T5947]  ? ksys_write+0x21c/0x260
[   92.058563][ T5947]  ? reacquire_held_locks+0x440/0x4c0
[   92.060884][ T5947]  ? __pfx___sys_bpf+0x10/0x10
[   92.063007][ T5947]  ? vfs_write+0x14d/0x1140
[   92.064975][ T5947]  ? __mutex_unlock_slowpath+0x164/0x650
[   92.067025][ T5947]  ? fput+0x32/0x390
[   92.068537][ T5947]  ? ksys_write+0x1ab/0x260
[   92.070400][ T5947]  ? __pfx_ksys_write+0x10/0x10
[   92.072471][ T5947]  __x64_sys_bpf+0x78/0xc0
[   92.074380][ T5947]  ? lockdep_hardirqs_on+0x7c/0x110
[   92.076450][ T5947]  do_syscall_64+0xcd/0x250
[   92.078184][ T5947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.080701][ T5947] RIP: 0033:0x7f95fb9779f9
[   92.082611][ T5947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.090568][ T5947] RSP: 002b:00007f95fc67a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   92.094353][ T5947] RAX: ffffffffffffffda RBX: 00007f95fbb05f80 RCX: 00007f95fb9779f9
[   92.097905][ T5947] RDX: 0000000000000080 RSI: 0000000020000180 RDI: 0000000000000005
[   92.100504][ T5947] RBP: 00007f95fc67a090 R08: 0000000000000000 R09: 0000000000000000
[   92.103632][ T5947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.106704][ T5947] R13: 0000000000000001 R14: 00007f95fbb05f80 R15: 00007ffdb799c398
[   92.109776][ T5947]  </TASK>
[   92.169571][ T5949] netlink: 4 bytes leftover after parsing attributes in process `syz.2.167'.
[   92.247616][ T5952] syzkaller1: entered promiscuous mode
[   92.249964][ T5952] syzkaller1: entered allmulticast mode
[   92.561830][ T5952] veth1_macvtap: left promiscuous mode
[   93.030486][ T5971] capability: warning: `syz.3.172' uses deprecated v2 capabilities in a way that may be insecure
[   93.425546][ T5974] batadv_slave_1: entered promiscuous mode
[   93.451173][ T5974] FAULT_INJECTION: forcing a failure.
[   93.451173][ T5974] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.457203][ T5974] CPU: 3 UID: 0 PID: 5974 Comm: syz.2.173 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[   93.477896][ T5974] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.482844][ T5974] Call Trace:
[   93.484346][ T5974]  <TASK>
[   93.485664][ T5974]  dump_stack_lvl+0x16c/0x1f0
[   93.487698][ T5974]  should_fail_ex+0x497/0x5b0
[   93.489700][ T5974]  _copy_to_user+0x30/0xc0
[   93.491741][ T5974]  simple_read_from_buffer+0xd0/0x160
[   93.494039][ T5974]  proc_fail_nth_read+0x1b0/0x290
[   93.496167][ T5974]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   93.498354][ T5974]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   93.500726][ T5974]  vfs_read+0x1d4/0xbd0
[   93.502541][ T5974]  ? __fdget_pos+0xeb/0x180
[   93.504493][ T5974]  ? __pfx_vfs_read+0x10/0x10
[   93.506542][ T5974]  ? __pfx___mutex_lock+0x10/0x10
[   93.508776][ T5974]  ? __fget_files+0x256/0x400
[   93.510781][ T5974]  ksys_read+0x12f/0x260
[   93.512603][ T5974]  ? __pfx_ksys_read+0x10/0x10
[   93.514674][ T5974]  do_syscall_64+0xcd/0x250
[   93.516726][ T5974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.519351][ T5974] RIP: 0033:0x7f95fb97643c
[   93.521301][ T5974] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[   93.529736][ T5974] RSP: 002b:00007f95fc67a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   93.533260][ T5974] RAX: ffffffffffffffda RBX: 00007f95fbb05f80 RCX: 00007f95fb97643c
[   93.536604][ T5974] RDX: 000000000000000f RSI: 00007f95fc67a0a0 RDI: 0000000000000005
[   93.539993][ T5974] RBP: 00007f95fc67a090 R08: 0000000000000000 R09: 0000000000000000
[   93.543212][ T5974] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001
[   93.546547][ T5974] R13: 0000000000000000 R14: 00007f95fbb05f80 R15: 00007ffdb799c398
[   93.549545][ T5974]  </TASK>
[   93.571303][ T5974] batadv_slave_1: left promiscuous mode
[   93.803916][ T5986] nbd: nbd2 already in use
[   93.890328][ T5987] netlink: 64 bytes leftover after parsing attributes in process `syz.2.176'.
[   93.966109][ T5989] netlink: 4 bytes leftover after parsing attributes in process `syz.1.177'.
[   95.381220][   T39] kauditd_printk_skb: 10 callbacks suppressed
[   95.381234][   T39] audit: type=1400 audit(1723279589.135:321): avc:  denied  { mount } for  pid=6014 comm="syz.1.186" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   96.282709][ T6034] FAULT_INJECTION: forcing a failure.
[   96.282709][ T6034] name failslab, interval 1, probability 0, space 0, times 0
[   96.289303][ T6034] CPU: 3 UID: 0 PID: 6034 Comm: syz.0.188 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[   96.294549][ T6034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.301076][ T6034] Call Trace:
[   96.302555][ T6034]  <TASK>
[   96.303843][ T6034]  dump_stack_lvl+0x16c/0x1f0
[   96.306056][ T6034]  should_fail_ex+0x497/0x5b0
[   96.308079][ T6034]  ? fs_reclaim_acquire+0xae/0x160
[   96.310351][ T6034]  should_failslab+0xc2/0x120
[   96.313957][ T6034]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   96.316495][ T6034]  ? vfs_write+0x14d/0x1140
[   96.318530][ T6034]  ? getname_flags.part.0+0x4c/0x550
[   96.320856][ T6034]  getname_flags.part.0+0x4c/0x550
[   96.330863][ T6034]  getname+0x8d/0xe0
[   96.332383][ T6034]  do_sys_openat2+0x104/0x1e0
[   96.340058][ T6034]  ? __pfx_do_sys_openat2+0x10/0x10
[   96.342148][ T6034]  __x64_sys_creat+0xcd/0x120
[   96.344466][ T6034]  ? __pfx___x64_sys_creat+0x10/0x10
[   96.347064][ T6034]  ? __pfx_ksys_write+0x10/0x10
[   96.350247][ T6034]  ? do_syscall_64+0x91/0x250
[   96.352541][ T6034]  do_syscall_64+0xcd/0x250
[   96.354993][ T6034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.357973][ T6034] RIP: 0033:0x7f3ffd3779f9
[   96.360172][ T6034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.370407][ T6034] RSP: 002b:00007f3ffcdde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   96.373902][ T6034] RAX: ffffffffffffffda RBX: 00007f3ffd506058 RCX: 00007f3ffd3779f9
[   96.378159][ T6034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200003c0
[   96.382884][ T6034] RBP: 00007f3ffcdde090 R08: 0000000000000000 R09: 0000000000000000
[   96.387120][ T6034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.391495][ T6034] R13: 0000000000000000 R14: 00007f3ffd506058 R15: 00007fff509170f8
[   96.396267][ T6034]  </TASK>
[   96.575653][ T6035] netlink: 12 bytes leftover after parsing attributes in process `syz.1.191'.
[   97.336702][ T6035] Process accounting resumed
[   97.394689][ T6046] Bluetooth: MGMT ver 1.23
[   97.597636][ T6057] netlink: 8 bytes leftover after parsing attributes in process `syz.3.196'.
[   97.652867][   T39] audit: type=1400 audit(1723279591.415:322): avc:  denied  { read write } for  pid=6058 comm="syz.2.197" name="userio" dev="devtmpfs" ino=860 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   97.663605][   T39] audit: type=1400 audit(1723279591.415:323): avc:  denied  { open } for  pid=6058 comm="syz.2.197" path="/dev/userio" dev="devtmpfs" ino=860 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   97.725394][   T39] audit: type=1326 audit(1723279591.485:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.1.195" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2161f779f9 code=0x0
[   97.879238][ T6064] netlink: 'syz.3.196': attribute type 8 has an invalid length.
[   98.077018][ T6062] netlink: 20 bytes leftover after parsing attributes in process `syz.2.197'.
[   98.122055][ T6062] misc userio: Can't change port type on an already running userio instance
[   98.321145][   T39] audit: type=1400 audit(1723279592.075:325): avc:  denied  { write } for  pid=6069 comm="syz.0.199" path="socket:[11578]" dev="sockfs" ino=11578 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   98.646482][   T39] audit: type=1400 audit(1723279592.405:326): avc:  denied  { ioctl } for  pid=6076 comm="syz.1.201" path="/dev/vmci" dev="devtmpfs" ino=694 ioctlcmd=0x7a7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   99.854446][   T39] audit: type=1400 audit(1723279593.615:327): avc:  denied  { bind } for  pid=6085 comm="syz.3.205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   99.865567][   T39] audit: type=1400 audit(1723279593.615:328): avc:  denied  { node_bind } for  pid=6085 comm="syz.3.205" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   99.874256][ T6087] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[   99.879533][   T39] audit: type=1400 audit(1723279593.625:329): avc:  denied  { create } for  pid=6085 comm="syz.3.205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   99.891628][   T39] audit: type=1400 audit(1723279593.625:330): avc:  denied  { getopt } for  pid=6085 comm="syz.3.205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  100.161603][ T5393] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  100.311971][ T5393] usb 6-1: device descriptor read/64, error -71
[  100.425431][   T39] kauditd_printk_skb: 6 callbacks suppressed
[  100.425441][   T39] audit: type=1400 audit(1723279594.185:337): avc:  denied  { write } for  pid=6103 comm="syz.3.210" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  100.436099][   T39] audit: type=1400 audit(1723279594.195:338): avc:  denied  { setopt } for  pid=6103 comm="syz.3.210" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  100.445791][   T39] audit: type=1400 audit(1723279594.195:339): avc:  denied  { write } for  pid=6103 comm="syz.3.210" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  100.458223][   T39] audit: type=1400 audit(1723279594.195:340): avc:  denied  { connect } for  pid=6103 comm="syz.3.210" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  100.463113][ T6104] Invalid architecture in ELF header: 0
[  100.467933][   T39] audit: type=1400 audit(1723279594.195:341): avc:  denied  { name_connect } for  pid=6103 comm="syz.3.210" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  100.481006][   T39] audit: type=1400 audit(1723279594.215:342): avc:  denied  { module_load } for  pid=6103 comm="syz.3.210" path=2F6D656D66643A1037202864656C6574656429 dev="tmpfs" ino=3077 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  100.544772][ T6107] overlay: Unknown parameter 'dont_hash'
[  100.601698][ T5393] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  100.751608][ T5393] usb 6-1: device descriptor read/64, error -71
[  100.872618][ T5393] usb usb6-port1: attempt power cycle
[  100.949484][   T39] audit: type=1400 audit(1723279594.705:343): avc:  denied  { read write } for  pid=6109 comm="syz.3.212" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  100.961283][   T39] audit: type=1400 audit(1723279594.705:344): avc:  denied  { ioctl open } for  pid=6109 comm="syz.3.212" path="/dev/ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  101.291833][ T5393] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  101.373514][ T5393] usb 6-1: device descriptor read/8, error -71
[  101.661740][ T5393] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  101.703603][ T5393] usb 6-1: device descriptor read/8, error -71
[  101.834277][ T5393] usb usb6-port1: unable to enumerate USB device
[  101.888135][   T39] audit: type=1400 audit(1723279595.645:345): avc:  denied  { append } for  pid=6122 comm="syz.2.217" name="001" dev="devtmpfs" ino=753 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  101.896884][ T6124] binder: 6122:6124 ioctl c0306201 0 returned -14
[  102.348329][   T39] audit: type=1400 audit(1723279596.105:346): avc:  denied  { read write } for  pid=6125 comm="syz.3.218" name="ppp" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  102.538404][ T6130] netlink: 4 bytes leftover after parsing attributes in process `syz.3.218'.
[  102.659481][ T6134] netlink: 134744 bytes leftover after parsing attributes in process `syz.2.220'.
[  102.754575][    C2] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  102.888047][ T6086] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  103.246012][ T6141] syzkaller0: entered promiscuous mode
[  103.248358][ T6141] syzkaller0: entered allmulticast mode
[  103.253182][ T1104] syzkaller0: tun_net_xmit 48
[  103.257175][ T6141] syzkaller0: tun_chr_ioctl cmd 1074025677
[  103.259839][ T6141] syzkaller0: Linktype set failed because interface is up
[  103.265555][ T6141] usb usb9: usbfs: process 6141 (syz.1.221) did not claim interface 0 before use
[  104.189428][ T6153] fuse: Unknown parameter 'váô(.Kt³?¥lɦ*+Wð{#o0÷Qš9¯©.kM}Z'
[  104.411696][ T5374] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  104.607723][ T5374] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  104.622033][ T5374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  104.625872][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 114, changing to 10
[  104.634026][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 24710, setting to 1024
[  104.638568][ T5374] usb 5-1: config 0 interface 0 has no altsetting 0
[  104.650668][ T5374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  104.658813][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 114, changing to 10
[  104.662953][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 24710, setting to 1024
[  104.668052][ T5374] usb 5-1: config 0 interface 0 has no altsetting 0
[  104.693377][ T5374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  104.700515][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 114, changing to 10
[  104.705873][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 24710, setting to 1024
[  104.713751][ T5374] usb 5-1: config 0 interface 0 has no altsetting 0
[  104.723014][ T5374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  104.726775][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 114, changing to 10
[  104.735331][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 24710, setting to 1024
[  104.740054][ T5374] usb 5-1: config 0 interface 0 has no altsetting 0
[  104.769180][ T5374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  104.773271][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 114, changing to 10
[  104.778133][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 24710, setting to 1024
[  104.779540][ T6167] netlink: 20 bytes leftover after parsing attributes in process `syz.2.228'.
[  104.786530][ T5374] usb 5-1: config 0 interface 0 has no altsetting 0
[  104.798657][ T5374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  104.813893][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 114, changing to 10
[  104.822229][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 24710, setting to 1024
[  104.830566][ T5374] usb 5-1: config 0 interface 0 has no altsetting 0
[  104.844082][ T5374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  104.847441][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 114, changing to 10
[  104.855081][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 24710, setting to 1024
[  104.858752][ T5374] usb 5-1: config 0 interface 0 has no altsetting 0
[  104.872375][ T5374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  104.876415][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 114, changing to 10
[  104.883867][ T5374] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 24710, setting to 1024
[  104.888250][ T5374] usb 5-1: config 0 interface 0 has no altsetting 0
[  104.911030][ T5374] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  104.918273][ T5374] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  104.922132][ T5374] usb 5-1: Product: syz
[  104.923947][ T5374] usb 5-1: Manufacturer: syz
[  104.929899][ T5374] usb 5-1: SerialNumber: syz
[  104.982599][ T5374] usb 5-1: config 0 descriptor??
[  105.010380][ T5374] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[  105.068749][ T6169] netlink: 4 bytes leftover after parsing attributes in process `syz.2.229'.
[  105.274776][ T6181] netlink: 'syz.2.233': attribute type 12 has an invalid length.
[  105.278628][    C3] usb 5-1: yurex_control_callback - control failed: -2
[  105.287189][    C3] usb 5-1: yurex_control_callback - control failed: -32
[  105.315012][  T831] usb 5-1: USB disconnect, device number 7
[  105.328210][  T831] yurex 5-1:0.0: USB YUREX #0 now disconnected
[  106.065135][ T6204] debugfs: Directory 'netdev:nicvf0' with parent 'phy9' already present!
[  106.109121][ T6204] netlink: 20 bytes leftover after parsing attributes in process `syz.0.238'.
[  106.273855][ T6207] binder: 6205:6207 ioctl c018620c 20000000 returned -22
[  106.339426][ T6213] netlink: 4 bytes leftover after parsing attributes in process `syz.3.240'.
[  106.401197][ T6218] FAULT_INJECTION: forcing a failure.
[  106.401197][ T6218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.407390][ T6218] CPU: 2 UID: 0 PID: 6218 Comm: syz.1.242 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  106.411626][ T6218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.415388][ T6218] Call Trace:
[  106.416515][ T6218]  <TASK>
[  106.417756][ T6218]  dump_stack_lvl+0x16c/0x1f0
[  106.419701][ T6218]  should_fail_ex+0x497/0x5b0
[  106.421926][ T6218]  _copy_from_iter+0x2a1/0x1150
[  106.423948][ T6218]  ? __pfx__copy_from_iter+0x10/0x10
[  106.425989][ T6218]  ? __virt_addr_valid+0x5e/0x590
[  106.428442][ T6218]  ? __phys_addr_symbol+0x30/0x80
[  106.430431][ T6218]  ? __check_object_size+0x497/0x720
[  106.432751][ T6218]  file_tty_write.constprop.0+0x49f/0x9b0
[  106.435229][ T6218]  vfs_write+0x6b6/0x1140
[  106.437814][ T6218]  ? __pfx_tty_write+0x10/0x10
[  106.439623][ T6218]  ? __pfx_vfs_write+0x10/0x10
[  106.445824][ T6218]  ? __fget_files+0x256/0x400
[  106.447998][ T6218]  ? __fget_light+0x173/0x210
[  106.450229][ T6218]  ksys_write+0x12f/0x260
[  106.452096][ T6218]  ? __pfx_ksys_write+0x10/0x10
[  106.454205][ T6218]  do_syscall_64+0xcd/0x250
[  106.456170][ T6218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.458687][ T6218] RIP: 0033:0x7f2161f779f9
[  106.460483][ T6218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.468533][ T6218] RSP: 002b:00007f2162dc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  106.472080][ T6218] RAX: ffffffffffffffda RBX: 00007f2162105f80 RCX: 00007f2161f779f9
[  106.475423][ T6218] RDX: 0000000000001006 RSI: 0000000020004000 RDI: 0000000000000004
[  106.478885][ T6218] RBP: 00007f2162dc8090 R08: 0000000000000000 R09: 0000000000000000
[  106.482230][ T6218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.486554][ T6218] R13: 0000000000000000 R14: 00007f2162105f80 R15: 00007ffc99c1ec48
[  106.491191][ T6218]  </TASK>
[  106.559439][   T39] kauditd_printk_skb: 15 callbacks suppressed
[  106.559454][   T39] audit: type=1400 audit(1723279600.315:362): avc:  denied  { name_connect } for  pid=6215 comm="syz.0.243" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  106.641614][ T5587] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  106.799991][ T6236] mmap: syz.3.249 (6236) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  106.822027][ T5587] usb 7-1: Using ep0 maxpacket: 8
[  106.832856][ T5587] usb 7-1: config 0 has an invalid interface number: 52 but max is 0
[  106.837200][ T5587] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  106.842301][ T5587] usb 7-1: config 0 has no interface number 0
[  106.845077][ T5587] usb 7-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  106.850377][ T5587] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  106.855916][ T5587] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  106.861235][ T5587] usb 7-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  106.867393][ T5587] usb 7-1: config 0 interface 52 has no altsetting 0
[  106.871088][ T5587] usb 7-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[  106.874910][ T5587] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.879779][ T5587] usb 7-1: config 0 descriptor??
[  107.096136][ T5587] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.52/input/input11
[  107.677299][ T6249] FAULT_INJECTION: forcing a failure.
[  107.677299][ T6249] name failslab, interval 1, probability 0, space 0, times 0
[  107.682896][ T6249] CPU: 1 UID: 0 PID: 6249 Comm: syz.1.251 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  107.687605][ T6249] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.692512][ T6249] Call Trace:
[  107.693898][ T6249]  <TASK>
[  107.695194][ T6249]  dump_stack_lvl+0x16c/0x1f0
[  107.697146][ T6249]  should_fail_ex+0x497/0x5b0
[  107.698753][ T6249]  ? fs_reclaim_acquire+0xae/0x160
[  107.700512][ T6249]  should_failslab+0xc2/0x120
[  107.702171][ T6249]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  107.704049][ T6249]  ? fuse_request_alloc+0x22/0x1a0
[  107.705422][ T6232] syz.0.247 (6232): drop_caches: 2
[  107.705783][ T6249]  fuse_request_alloc+0x22/0x1a0
[  107.710142][ T6249]  fuse_get_req+0x44d/0x9a0
[  107.712158][ T6249]  ? __pfx_fuse_get_req+0x10/0x10
[  107.714377][ T6249]  ? lockdep_unlock+0x11a/0x290
[  107.716439][ T6249]  ? __lock_acquire+0x20f2/0x3cb0
[  107.718585][ T6249]  fuse_simple_request+0xb0/0xd20
[  107.720805][ T6249]  ? mark_lock+0xb5/0xc60
[  107.722676][ T6249]  fuse_getxattr+0x243/0x400
[  107.724743][ T6249]  ? __pfx_fuse_getxattr+0x10/0x10
[  107.727033][ T6249]  ? find_held_lock+0x2d/0x110
[  107.729167][ T6249]  ? __lock_acquire+0x1620/0x3cb0
[  107.731437][ T6249]  ? __pfx_fuse_xattr_get+0x10/0x10
[  107.733638][ T6249]  fuse_xattr_get+0x7b/0xb0
[  107.735346][ T6249]  __vfs_getxattr+0x13b/0x1a0
[  107.737293][ T6249]  ? __pfx___vfs_getxattr+0x10/0x10
[  107.739057][ T6249]  ? __pfx_fuse_do_getattr+0x10/0x10
[  107.740927][ T6249]  cap_inode_need_killpriv+0x40/0x60
[  107.742664][ T6249]  security_inode_need_killpriv+0x65/0xb0
[  107.744767][ T6249]  file_remove_privs_flags+0x3a6/0x5d0
[  107.747157][ T6249]  ? __pfx_file_remove_privs_flags+0x10/0x10
[  107.749270][ T6249]  ? __pfx___might_resched+0x10/0x10
[  107.751380][ T6249]  ? generic_write_check_limits+0x1fd/0x290
[  107.753682][ T6249]  ? generic_write_checks+0x322/0x490
[  107.756001][ T6249]  ? __pfx_generic_write_checks+0x10/0x10
[  107.758475][ T6249]  __generic_file_write_iter+0x87/0x240
[  107.761212][ T6249]  generic_file_write_iter+0xe7/0x350
[  107.763321][ T6249]  fuse_file_write_iter+0x6f8/0x8a0
[  107.765494][ T6249]  do_iter_readv_writev+0x531/0x800
[  107.767703][ T6249]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  107.769965][ T6249]  vfs_writev+0x36f/0xde0
[  107.771814][ T6249]  ? __pfx_vfs_writev+0x10/0x10
[  107.774018][ T6249]  ? trace_contention_end+0xea/0x140
[  107.776273][ T6249]  ? __mutex_lock+0x1a6/0x9c0
[  107.778306][ T6249]  ? __fdget_pos+0xeb/0x180
[  107.780199][ T6249]  ? do_writev+0x137/0x370
[  107.781937][ T6249]  do_writev+0x137/0x370
[  107.783515][ T6249]  ? __pfx_do_writev+0x10/0x10
[  107.785341][ T6249]  do_syscall_64+0xcd/0x250
[  107.786984][ T6249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.789459][ T6249] RIP: 0033:0x7f2161f779f9
[  107.791416][ T6249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.800101][ T6249] RSP: 002b:00007f2162d86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  107.803751][ T6249] RAX: ffffffffffffffda RBX: 00007f2162106130 RCX: 00007f2161f779f9
[  107.807174][ T6249] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000005
[  107.810648][ T6249] RBP: 00007f2162d86090 R08: 0000000000000000 R09: 0000000000000000
[  107.814097][ T6249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.817538][ T6249] R13: 0000000000000000 R14: 00007f2162106130 R15: 00007ffc99c1ec48
[  107.820775][ T6249]  </TASK>
[  107.875262][ T6251] No such timeout policy "syz1"
[  108.204545][   T39] audit: type=1400 audit(1723279601.965:363): avc:  denied  { ioctl } for  pid=6267 comm="syz.3.256" path="socket:[13373]" dev="sockfs" ino=13373 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  109.421302][ T6272] kvm: emulating exchange as write
[  109.439974][ T5373] usb 7-1: USB disconnect, device number 5
[  109.471170][ T6276] netlink: 4 bytes leftover after parsing attributes in process `syz.2.259'.
[  109.756687][   T39] audit: type=1326 audit(1723279603.515:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6280 comm="syz.2.261" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f95fb9779f9 code=0x0
[  110.322322][   T39] audit: type=1400 audit(1723279604.085:365): avc:  denied  { shutdown } for  pid=6286 comm="syz.3.263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  110.350984][   T39] audit: type=1400 audit(1723279604.105:366): avc:  denied  { setopt } for  pid=6286 comm="syz.3.263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  110.597989][   T39] audit: type=1400 audit(1723279604.355:367): avc:  denied  { write } for  pid=6290 comm="syz.3.265" name="/" dev="9p" ino=36575733 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  110.607546][   T39] audit: type=1400 audit(1723279604.355:368): avc:  denied  { add_name } for  pid=6290 comm="syz.3.265" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  110.616955][   T39] audit: type=1400 audit(1723279604.355:369): avc:  denied  { create } for  pid=6290 comm="syz.3.265" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  110.625642][   T39] audit: type=1400 audit(1723279604.355:370): avc:  denied  { associate } for  pid=6290 comm="syz.3.265" name="bus" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  110.635447][   T39] audit: type=1400 audit(1723279604.365:371): avc:  denied  { write open } for  pid=6290 comm="syz.3.265" path="/61/file0/bus" dev="9p" ino=36575762 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  110.770618][ T6303] FAULT_INJECTION: forcing a failure.
[  110.770618][ T6303] name failslab, interval 1, probability 0, space 0, times 0
[  110.775527][ T6303] CPU: 1 UID: 0 PID: 6303 Comm: syz.1.269 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  110.779105][ T6303] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.782668][ T6303] Call Trace:
[  110.783840][ T6303]  <TASK>
[  110.784893][ T6303]  dump_stack_lvl+0x16c/0x1f0
[  110.787019][ T6303]  should_fail_ex+0x497/0x5b0
[  110.789145][ T6303]  ? fs_reclaim_acquire+0xae/0x160
[  110.791422][ T6303]  should_failslab+0xc2/0x120
[  110.793034][ T6303]  __kmalloc_noprof+0xcb/0x400
[  110.794687][ T6303]  ? __pfx_lock_acquire+0x10/0x10
[  110.796389][ T6303]  tomoyo_realpath_from_path+0xb9/0x720
[  110.798551][ T6303]  ? tomoyo_profile+0x47/0x60
[  110.800551][ T6303]  tomoyo_path_number_perm+0x245/0x590
[  110.802951][ T6303]  ? tomoyo_path_number_perm+0x232/0x590
[  110.805396][ T6303]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  110.808087][ T6303]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.810750][ T6303]  ? __fget_files+0x256/0x400
[  110.812555][ T6303]  security_file_ioctl+0x75/0xc0
[  110.814288][ T6303]  __x64_sys_ioctl+0xbb/0x220
[  110.816133][ T6303]  do_syscall_64+0xcd/0x250
[  110.818052][ T6303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.820455][ T6303] RIP: 0033:0x7f2161f779f9
[  110.822118][ T6303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.830514][ T6303] RSP: 002b:00007f2162dc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  110.833787][ T6303] RAX: ffffffffffffffda RBX: 00007f2162105f80 RCX: 00007f2161f779f9
[  110.836403][ T6303] RDX: 0000000020001480 RSI: 00000000c03864bc RDI: 0000000000000003
[  110.839096][ T6303] RBP: 00007f2162dc8090 R08: 0000000000000000 R09: 0000000000000000
[  110.841906][ T6303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.845137][ T6303] R13: 0000000000000000 R14: 00007f2162105f80 R15: 00007ffc99c1ec48
[  110.847822][ T6303]  </TASK>
[  110.850949][ T6303] ERROR: Out of memory at tomoyo_realpath_from_path.
[  111.442278][ T5395] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  111.643496][ T5395] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  111.647970][ T5395] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  111.663624][ T5395] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  111.667275][ T5395] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.687483][ T5395] usb 6-1: config 0 descriptor??
[  112.015560][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  112.015577][   T39] audit: type=1400 audit(1723279605.775:377): avc:  denied  { read } for  pid=6326 comm="syz.2.276" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  112.031770][   T39] audit: type=1400 audit(1723279605.775:378): avc:  denied  { open } for  pid=6326 comm="syz.2.276" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  112.099937][   T39] audit: type=1400 audit(1723279605.855:379): avc:  denied  { read } for  pid=6331 comm="syz.2.278" dev="sockfs" ino=13448 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  112.101302][ T6332] 9pnet_fd: Insufficient options for proto=fd
[  112.165457][   T39] audit: type=1400 audit(1723279605.925:380): avc:  denied  { ioctl } for  pid=6335 comm="syz.2.279" path="/dev/sg0" dev="devtmpfs" ino=707 ioctlcmd=0x1267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  112.321093][ T6337] netlink: 'syz.0.277': attribute type 4 has an invalid length.
[  112.408422][ T6341] netlink: 'syz.0.277': attribute type 4 has an invalid length.
[  112.891178][ T6353] mkiss: ax0: crc mode is auto.
[  112.923268][   T39] audit: type=1400 audit(1723279606.685:381): avc:  denied  { search } for  pid=5047 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  112.941411][   T39] audit: type=1400 audit(1723279606.685:382): avc:  denied  { read } for  pid=5047 comm="dhcpcd" name="n71" dev="tmpfs" ino=2805 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  112.966446][   T39] audit: type=1400 audit(1723279606.685:383): avc:  denied  { open } for  pid=5047 comm="dhcpcd" path="/run/udev/data/n71" dev="tmpfs" ino=2805 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  112.966870][ T6353] netlink: 'syz.3.283': attribute type 4 has an invalid length.
[  112.979657][ T6353] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.283'.
[  112.998185][   T39] audit: type=1400 audit(1723279606.685:384): avc:  denied  { getattr } for  pid=5047 comm="dhcpcd" path="/run/udev/data/n71" dev="tmpfs" ino=2805 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  113.319018][ T5395] usbhid 6-1:0.0: can't add hid device: -71
[  113.326791][ T5395] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  113.332065][ T5395] usb 6-1: USB disconnect, device number 6
[  113.582049][ T5373] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  113.702795][ T6364] netlink: 4 bytes leftover after parsing attributes in process `syz.2.288'.
[  113.751746][ T5373] usb 5-1: device descriptor read/64, error -71
[  114.021620][ T5373] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  114.151703][   T57] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  114.173251][ T5373] usb 5-1: device descriptor read/64, error -71
[  114.292361][ T5373] usb usb5-port1: attempt power cycle
[  114.341617][   T57] usb 7-1: Using ep0 maxpacket: 8
[  114.353422][   T57] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  114.361528][   T57] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  114.365831][   T57] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  114.371570][   T57] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  114.375806][   T57] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  114.381409][   T57] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  114.385467][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.607453][   T57] usb 7-1: GET_CAPABILITIES returned 0
[  114.609959][   T57] usbtmc 7-1:16.0: can't read capabilities
[  114.711633][ T5373] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  114.742869][ T5373] usb 5-1: device descriptor read/8, error -71
[  114.809336][   T57] usb 7-1: USB disconnect, device number 6
[  115.011540][ T5373] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  115.042341][ T5373] usb 5-1: device descriptor read/8, error -71
[  115.152980][ T6388] XFS (nullb0): Invalid superblock magic number
[  115.163092][ T5373] usb usb5-port1: unable to enumerate USB device
[  115.551671][ T5373] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  115.725612][ T6396] infiniband syz1: set down
[  115.728788][ T6396] infiniband syz1: added syzkaller0
[  115.729284][   T57] infiniband syz1: ib_query_port failed (-19)
[  115.741608][ T5373] usb 8-1: Using ep0 maxpacket: 32
[  115.746152][ T5373] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  115.749413][ T5373] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  115.753913][ T5373] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  115.758522][ T5373] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  115.763950][ T5373] usb 8-1: config 0 interface 0 has no altsetting 0
[  115.765084][ T6396] RDS/IB: syz1: added
[  115.768760][ T6396] smc: adding ib device syz1 with port count 1
[  115.770167][ T5373] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  115.770963][ T6396] smc:    ib device syz1 port 1 has pnetid 
[  115.774681][ T5373] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  115.774697][ T5373] usb 8-1: Product: syz
[  115.774708][ T5373] usb 8-1: Manufacturer: syz
[  115.777954][   T39] audit: type=1400 audit(1723279609.535:385): avc:  denied  { setopt } for  pid=6402 comm="syz.1.300" laddr=fe80::11 lport=54814 faddr=fe80::bb scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  115.780206][ T5373] usb 8-1: SerialNumber: syz
[  115.782567][ T5373] usb 8-1: config 0 descriptor??
[  115.784666][ T6396] smc: removing ib device syz1
[  115.795256][ T5373] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  115.806247][ T5373] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  115.820422][   T39] audit: type=1400 audit(1723279609.575:386): avc:  denied  { ioctl } for  pid=6402 comm="syz.1.300" path="socket:[13524]" dev="sockfs" ino=13524 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  115.950160][ T6396] rdma_rxe: rxe_newlink: failed to add syzkaller0
[  116.009779][   T63] usb 8-1: USB disconnect, device number 3
[  116.009797][    C2] ldusb 8-1:0.0: usb_submit_urb failed (-19)
[  116.015760][   T63] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[  116.209870][ T6388] ldusb: No device or device unplugged -19
[  116.290075][ T6356] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  116.642184][ T6414] No control pipe specified
[  116.728852][ T6419] netlink: 4 bytes leftover after parsing attributes in process `syz.2.306'.
[  116.973630][ T6434] FAULT_INJECTION: forcing a failure.
[  116.973630][ T6434] name failslab, interval 1, probability 0, space 0, times 0
[  116.978590][ T6434] CPU: 3 UID: 0 PID: 6434 Comm: syz.3.310 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  116.983074][ T6434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.987161][ T6434] Call Trace:
[  116.988631][ T6434]  <TASK>
[  116.989855][ T6434]  dump_stack_lvl+0x16c/0x1f0
[  116.991503][ T6434]  should_fail_ex+0x497/0x5b0
[  116.993508][ T6434]  ? fs_reclaim_acquire+0xae/0x160
[  116.995473][ T6434]  should_failslab+0xc2/0x120
[  116.997226][ T6434]  __kmalloc_cache_noprof+0x6b/0x300
[  116.999552][ T6434]  ? tty_open+0x146/0x1020
[  117.001497][ T6434]  tty_open+0x146/0x1020
[  117.002989][ T6434]  ? chrdev_open+0x5cc/0x6f0
[  117.004876][ T6434]  ? __pfx_tty_open+0x10/0x10
[  117.006960][ T6434]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  117.009071][ T6434]  ? __pfx_tty_open+0x10/0x10
[  117.010805][ T6434]  chrdev_open+0x26d/0x6f0
[  117.012753][ T6434]  ? __pfx_chrdev_open+0x10/0x10
[  117.014679][ T6434]  ? security_file_open+0x9d/0x8b0
[  117.016529][ T6434]  do_dentry_open+0x91f/0x15f0
[  117.018574][ T6434]  ? __pfx_chrdev_open+0x10/0x10
[  117.020706][ T6434]  vfs_open+0x82/0x3f0
[  117.022152][ T6434]  ? may_open+0x1f2/0x400
[  117.023891][ T6434]  path_openat+0x2141/0x2d20
[  117.025743][ T6434]  ? __pfx_path_openat+0x10/0x10
[  117.027577][ T6434]  ? __pfx___lock_acquire+0x10/0x10
[  117.029822][ T6434]  ? find_held_lock+0x2d/0x110
[  117.031583][ T6434]  do_filp_open+0x1dc/0x430
[  117.033300][ T6434]  ? __pfx_do_filp_open+0x10/0x10
[  117.035486][ T6434]  ? find_held_lock+0x2d/0x110
[  117.037316][ T6434]  ? _raw_spin_unlock+0x28/0x50
[  117.039296][ T6434]  ? alloc_fd+0x2d7/0x6c0
[  117.041277][ T6434]  do_sys_openat2+0x17a/0x1e0
[  117.043395][ T6434]  ? __pfx_do_sys_openat2+0x10/0x10
[  117.045737][ T6434]  __x64_sys_openat+0x175/0x210
[  117.047867][ T6434]  ? __pfx___x64_sys_openat+0x10/0x10
[  117.050033][ T6434]  do_syscall_64+0xcd/0x250
[  117.052053][ T6434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.054151][ T6434] RIP: 0033:0x7fb26df76390
[  117.056100][ T6434] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8e 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8e 02 00 8b 44
[  117.063847][ T6434] RSP: 002b:00007fb26ed27f00 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  117.068245][ T6434] RAX: ffffffffffffffda RBX: 0000000000064b00 RCX: 00007fb26df76390
[  117.071729][ T6434] RDX: 0000000000064b00 RSI: 00007fb26ed27fa0 RDI: 00000000ffffff9c
[  117.075219][ T6434] RBP: 00007fb26ed27fa0 R08: 0000000000000000 R09: 00007fb26ed27d17
[  117.078726][ T6434] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  117.082252][ T6434] R13: 0000000000000000 R14: 00007fb26e105f80 R15: 00007fff546830f8
[  117.085551][ T6434]  </TASK>
[  117.162697][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  117.162712][   T39] audit: type=1400 audit(1723279610.915:391): avc:  denied  { setopt } for  pid=6435 comm="syz.3.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  117.318055][   T39] audit: type=1400 audit(1723279611.075:392): avc:  denied  { setopt } for  pid=6437 comm="syz.3.312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  117.636196][   T39] audit: type=1400 audit(1723279611.395:393): avc:  denied  { connect } for  pid=6441 comm="syz.3.313" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  117.980903][ T6456] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[  117.995238][ T6456] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  118.071658][   T63] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  118.231571][   T63] usb 5-1: device descriptor read/64, error -71
[  118.501734][   T63] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  118.651685][   T63] usb 5-1: device descriptor read/64, error -71
[  118.719733][   T39] audit: type=1400 audit(1723279612.475:394): avc:  denied  { read } for  pid=6473 comm="syz.3.322" path="socket:[12829]" dev="sockfs" ino=12829 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  118.780974][   T63] usb usb5-port1: attempt power cycle
[  118.862103][ T5374] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  118.991543][   T30] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  119.041700][ T5374] usb 7-1: Using ep0 maxpacket: 16
[  119.046046][ T5374] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  119.050577][ T5374] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  119.056164][ T5374] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  119.060005][ T5374] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.066846][ T5374] usb 7-1: config 0 descriptor??
[  119.072129][ T5374] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  119.171704][   T30] usb 8-1: Using ep0 maxpacket: 8
[  119.176016][   T30] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  119.179385][   T30] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  119.182812][   T30] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  119.186172][   T30] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  119.191212][   T30] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  119.195148][   T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.201552][   T63] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  119.232236][   T63] usb 5-1: device descriptor read/8, error -71
[  119.414586][   T30] usb 8-1: GET_CAPABILITIES returned 0
[  119.417079][   T30] usbtmc 8-1:16.0: can't read capabilities
[  119.483541][   T39] audit: type=1400 audit(1723279613.245:395): avc:  denied  { create } for  pid=6471 comm="syz.2.321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  119.502048][   T63] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  119.539180][   T63] usb 5-1: device descriptor read/8, error -71
[  119.652266][   T57] usb 8-1: USB disconnect, device number 4
[  119.662919][   T63] usb usb5-port1: unable to enumerate USB device
[  120.110330][ T6483] syzkaller0: entered promiscuous mode
[  120.113028][ T6483] syzkaller0: entered allmulticast mode
[  120.363745][   T57] usb 7-1: USB disconnect, device number 7
[  120.409744][ T6488] FAULT_INJECTION: forcing a failure.
[  120.409744][ T6488] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  120.416338][ T6488] CPU: 3 UID: 0 PID: 6488 Comm: syz.3.325 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  120.420902][ T6488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.425457][ T6488] Call Trace:
[  120.426895][ T6488]  <TASK>
[  120.428155][ T6488]  dump_stack_lvl+0x16c/0x1f0
[  120.430199][ T6488]  should_fail_ex+0x497/0x5b0
[  120.432318][ T6488]  ? fs_reclaim_acquire+0xae/0x160
[  120.434608][ T6488]  should_fail_alloc_page+0xe7/0x130
[  120.436881][ T6488]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  120.439640][ T6488]  ? mark_lock+0xb5/0xc60
[  120.441506][ T6488]  __alloc_pages_noprof+0x194/0x2460
[  120.443796][ T6488]  ? hlock_class+0x4e/0x130
[  120.445821][ T6488]  ? __lock_acquire+0xbdd/0x3cb0
[  120.448037][ T6488]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  120.450530][ T6488]  ? __pfx___lock_acquire+0x10/0x10
[  120.452714][ T6488]  ? __pfx_mark_lock+0x10/0x10
[  120.454830][ T6488]  ? __might_fault+0x13b/0x190
[  120.456955][ T6488]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  120.459511][ T6488]  ? policy_nodemask+0xea/0x4e0
[  120.461649][ T6488]  alloc_pages_mpol_noprof+0x275/0x610
[  120.463968][ T6488]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  120.466546][ T6488]  folio_alloc_mpol_noprof+0x36/0xd0
[  120.468807][ T6488]  vma_alloc_folio_noprof+0xee/0x1b0
[  120.471135][ T6488]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  120.473658][ T6488]  __handle_mm_fault+0x2e35/0x5660
[  120.475870][ T6488]  ? lock_vma_under_rcu+0x1e2/0x8f0
[  120.478107][ T6488]  ? __pfx___handle_mm_fault+0x10/0x10
[  120.480476][ T6488]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  120.482880][ T6488]  handle_mm_fault+0x44e/0x7b0
[  120.484915][ T6488]  ? __pkru_allows_pkey+0x52/0xb0
[  120.487042][ T6488]  do_user_addr_fault+0x60d/0x13f0
[  120.489174][ T6488]  exc_page_fault+0x5c/0xc0
[  120.491135][ T6488]  asm_exc_page_fault+0x26/0x30
[  120.493222][ T6488] RIP: 0033:0x7fb26de430bb
[  120.495083][ T6488] Code: 00 00 00 48 8d 3d cd 2a 19 00 48 89 c1 31 c0 e8 4b 5d ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 01 2b 19 00 48 89 34 24 48 8b 14 24 48 8b
[  120.503172][ T6488] RSP: 002b:00007fb26ed05fb0 EFLAGS: 00010202
[  120.505521][ T6488] RAX: 0000000000000000 RBX: 00007fb26e106058 RCX: 0000000000000000
[  120.508728][ T6488] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000020000280
[  120.512063][ T6488] RBP: 00007fb26ed07090 R08: 0000000000000000 R09: 0000000000000000
[  120.515489][ T6488] R10: 0000000020000280 R11: 0000000000000000 R12: 0000000000000001
[  120.519014][ T6488] R13: 0000000000000001 R14: 00007fb26e106058 R15: 00007fff546830f8
[  120.522406][ T6488]  </TASK>
[  120.529087][ T6488] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  120.782428][ T6452] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  121.404296][   T39] audit: type=1400 audit(1723279615.165:396): avc:  denied  { write } for  pid=6494 comm="syz.2.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  122.077218][   T39] audit: type=1400 audit(1723279615.835:397): avc:  denied  { bind } for  pid=6506 comm="syz.0.331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  122.141624][   T63] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  122.323554][   T63] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  122.328712][   T63] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  122.334527][   T63] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  122.340339][   T63] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  122.344400][   T63] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.357273][   T63] usb 8-1: config 0 descriptor??
[  122.360151][ T6514] sctp: [Deprecated]: syz.0.333 (pid 6514) Use of int in maxseg socket option.
[  122.360151][ T6514] Use struct sctp_assoc_value instead
[  122.360172][ T6502] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  122.386791][   T39] audit: type=1400 audit(1723279616.145:398): avc:  denied  { setopt } for  pid=6512 comm="syz.0.333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  122.728877][ T6516] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  123.021549][ T5373] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  123.117904][ T6526] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  123.171721][ T5373] usb 7-1: device descriptor read/64, error -71
[  123.184692][   T39] audit: type=1400 audit(1723279616.935:399): avc:  denied  { bind } for  pid=6501 comm="syz.3.329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  123.200819][   T39] audit: type=1400 audit(1723279616.935:400): avc:  denied  { connect } for  pid=6501 comm="syz.3.329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  123.243115][   T39] audit: type=1400 audit(1723279617.005:401): avc:  denied  { accept } for  pid=6501 comm="syz.3.329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  123.441773][ T5373] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  123.595624][ T5373] usb 7-1: device descriptor read/64, error -71
[  123.646454][   T39] audit: type=1400 audit(1723279617.405:402): avc:  denied  { bind } for  pid=6532 comm="syz.0.339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  123.783452][ T5373] usb usb7-port1: attempt power cycle
[  124.211552][ T5373] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  124.242179][ T5373] usb 7-1: device descriptor read/8, error -71
[  124.521607][ T5373] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  124.562831][ T5373] usb 7-1: device descriptor read/8, error -71
[  124.691850][ T5373] usb usb7-port1: unable to enumerate USB device
[  124.959090][   T63] usbhid 8-1:0.0: can't add hid device: -71
[  124.967591][   T63] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  124.976370][   T63] usb 8-1: USB disconnect, device number 5
[  124.998373][ T6552] netlink: 24 bytes leftover after parsing attributes in process `syz.3.344'.
[  125.365187][ T6555] FAULT_INJECTION: forcing a failure.
[  125.365187][ T6555] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.370988][ T6555] CPU: 2 UID: 0 PID: 6555 Comm: syz.1.345 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  125.375647][ T6555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.380353][ T6555] Call Trace:
[  125.381893][ T6555]  <TASK>
[  125.383263][ T6555]  dump_stack_lvl+0x16c/0x1f0
[  125.385410][ T6555]  should_fail_ex+0x497/0x5b0
[  125.387467][ T6555]  _copy_from_user+0x30/0xf0
[  125.389581][ T6555]  __x64_sys_rt_sigsuspend+0xd6/0x160
[  125.391915][ T6555]  ? __pfx___x64_sys_rt_sigsuspend+0x10/0x10
[  125.394384][ T6555]  do_syscall_64+0xcd/0x250
[  125.395986][ T6555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.398413][ T6555] RIP: 0033:0x7f2161f779f9
[  125.400256][ T6555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.407640][ T6555] RSP: 002b:00007f2162dc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000082
[  125.411030][ T6555] RAX: ffffffffffffffda RBX: 00007f2162105f80 RCX: 00007f2161f779f9
[  125.414513][ T6555] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000020000040
[  125.418038][ T6555] RBP: 00007f2162dc8090 R08: 0000000000000000 R09: 0000000000000000
[  125.421453][ T6555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.424844][ T6555] R13: 0000000000000000 R14: 00007f2162105f80 R15: 00007ffc99c1ec48
[  125.428297][ T6555]  </TASK>
[  125.664885][   T39] audit: type=1400 audit(1723279619.425:403): avc:  denied  { mount } for  pid=6561 comm="syz.0.347" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  125.666754][ T6562] SELinux: security_context_str_to_sid () failed with errno=-22
[  125.674112][   T39] audit: type=1400 audit(1723279619.425:404): avc:  denied  { remount } for  pid=6561 comm="syz.0.347" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  125.724778][ T6516] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  125.811648][ T5375] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[  125.816795][   T39] audit: type=1400 audit(1723279619.575:405): avc:  denied  { create } for  pid=6561 comm="syz.0.347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  125.825721][   T39] audit: type=1400 audit(1723279619.575:406): avc:  denied  { setopt } for  pid=6561 comm="syz.0.347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  125.890326][   T39] audit: type=1326 audit(1723279619.645:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6572 comm="syz.3.349" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb26df779f9 code=0x7ffc0000
[  126.003873][ T5375] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  126.007591][ T5375] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  126.011059][ T5375] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  126.017748][ T5375] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  126.022458][ T5375] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  126.027608][ T5375] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  126.031598][ T5375] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  126.040496][ T5375] usb 6-1: string descriptor 0 read error: -22
[  126.043677][ T5375] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  126.047937][ T5375] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.053599][ T5375] usb 6-1: config 0 descriptor??
[  126.059056][ T5375] hub 6-1:0.0: bad descriptor, ignoring hub
[  126.061732][ T5375] hub 6-1:0.0: probe with driver hub failed with error -5
[  126.067686][ T5375] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input12
[  126.709746][ T5375] IPVS: starting estimator thread 0...
[  126.789551][ T6560] evm: overlay not supported
[  126.811799][ T6590] IPVS: using max 19 ests per chain, 45600 per kthread
[  127.589866][ T6598] input: syz0 as /devices/virtual/input/input13
[  127.711966][ T6602] netlink: 116 bytes leftover after parsing attributes in process `syz.2.356'.
[  128.306504][ T6604] sctp: [Deprecated]: syz.3.357 (pid 6604) Use of int in max_burst socket option deprecated.
[  128.306504][ T6604] Use struct sctp_assoc_value instead
[  128.588571][ T5395] usb 6-1: USB disconnect, device number 7
[  128.719515][ T6614] kernel read not supported for file /eth0 (pid: 6614 comm: syz.1.360)
[  128.729558][   T39] kauditd_printk_skb: 92 callbacks suppressed
[  128.729572][   T39] audit: type=1800 audit(1723279622.485:500): pid=6614 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.360" name="eth0" dev="mqueue" ino=13701 res=0 errno=0
[  128.742824][ T6612] netlink: 319 bytes leftover after parsing attributes in process `syz.0.359'.
[  128.757414][   T39] audit: type=1400 audit(1723279622.515:501): avc:  denied  { read } for  pid=6611 comm="syz.0.359" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  128.843842][ T6616] netlink: 8 bytes leftover after parsing attributes in process `syz.1.360'.
[  128.848204][ T6616] netlink: 48 bytes leftover after parsing attributes in process `syz.1.360'.
[  128.854841][ T6616] netlink: 36 bytes leftover after parsing attributes in process `syz.1.360'.
[  128.873876][ T6616] vlan2: entered allmulticast mode
[  128.945367][ T6620] netlink: 4 bytes leftover after parsing attributes in process `syz.0.362'.
[  129.092455][ T5346] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  129.096045][ T5346] Bluetooth: hci2: Injecting HCI hardware error event
[  129.100375][ T5346] Bluetooth: hci2: hardware error 0x00
[  129.208948][   T39] audit: type=1400 audit(1723279622.965:502): avc:  denied  { bind } for  pid=6626 comm="syz.1.364" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  129.317043][   T39] audit: type=1326 audit(1723279623.075:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6626 comm="syz.1.364" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2161f779f9 code=0x0
[  129.898173][ T6645] binder: 6643:6645 ioctl c0306201 20000280 returned -11
[  130.484051][ T6660] netlink: 4 bytes leftover after parsing attributes in process `syz.2.371'.
[  131.221790][ T5346] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  131.450918][   T39] audit: type=1400 audit(1723279625.205:504): avc:  denied  { mount } for  pid=6685 comm="syz.2.378" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  131.541813][   T63] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  131.640246][ T6691] =======================================================
[  131.640246][ T6691] WARNING: The mand mount option has been deprecated and
[  131.640246][ T6691]          and is ignored by this kernel. Remove the mand
[  131.640246][ T6691]          option from the mount to silence this warning.
[  131.640246][ T6691] =======================================================
[  131.640329][   T39] audit: type=1400 audit(1723279625.395:505): avc:  denied  { remount } for  pid=6685 comm="syz.2.378" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  131.713937][   T63] usb 5-1: device descriptor read/64, error -71
[  131.869683][ T5333] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:585
[  131.874361][ T5333] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 5333, name: kworker/u33:2
[  131.879790][ T5333] preempt_count: 0, expected: 0
[  131.882676][ T5333] RCU nest depth: 1, expected: 0
[  131.884947][ T5333] 4 locks held by kworker/u33:2/5333:
[  131.887440][ T5333]  #0: ffff88802deb9148 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  131.891809][ T5333]  #1: ffffc900032d7d80 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  131.896902][ T5333]  #2: ffff88802f5e8078 (&hdev->lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0xde/0xb30
[  131.901676][ T5333]  #3: ffffffff8ddb5ca0 (rcu_read_lock){....}-{1:2}, at: hci_le_create_big_complete_evt+0x100/0xb30
[  131.906533][ T5333] CPU: 2 UID: 0 PID: 5333 Comm: kworker/u33:2 Not tainted 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  131.911384][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.916177][ T5333] Workqueue: hci0 hci_rx_work
[  131.918317][ T5333] Call Trace:
[  131.919834][ T5333]  <TASK>
[  131.921154][ T5333]  dump_stack_lvl+0x16c/0x1f0
[  131.923273][ T5333]  __might_resched+0x3c0/0x5e0
[  131.925400][ T5333]  ? __pfx___might_resched+0x10/0x10
[  131.927743][ T5333]  ? __pfx___lock_acquire+0x10/0x10
[  131.930111][ T5333]  ? rcu_is_watching+0x12/0xc0
[  131.932301][ T5333]  __mutex_lock+0xe2/0x9c0
[  131.934357][ T5333]  ? hci_le_create_big_complete_evt+0x387/0xb30
[  131.937227][ T5333]  ? __pfx___mutex_lock+0x10/0x10
[  131.939555][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[  131.941856][ T5333]  ? find_held_lock+0x2d/0x110
[  131.943823][ T5333]  ? hci_event_packet+0x438/0x1180
[  131.945946][ T5333]  ? __pfx_lock_release+0x10/0x10
[  131.948254][ T5333]  ? hci_le_create_big_complete_evt+0x387/0xb30
[  131.951069][ T5333]  hci_le_create_big_complete_evt+0x387/0xb30
[  131.953786][ T5333]  ? __mutex_unlock_slowpath+0x164/0x650
[  131.956346][ T5333]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[  131.959332][ T5333]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  131.962053][ T5333]  ? skb_pull_data+0x166/0x210
[  131.964228][ T5333]  hci_le_meta_evt+0x2e2/0x5d0
[  131.966411][ T5333]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[  131.969339][ T5333]  hci_event_packet+0x666/0x1180
[  131.971599][ T5333]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  131.973977][ T5333]  ? __pfx_hci_event_packet+0x10/0x10
[  131.976415][ T5333]  ? mark_held_locks+0x9f/0xe0
[  131.978603][ T5333]  ? kcov_remote_start+0x3cf/0x6e0
[  131.980946][ T5333]  ? lockdep_hardirqs_on+0x7c/0x110
[  131.983284][ T5333]  hci_rx_work+0x2c6/0x1610
[  131.985286][ T5333]  process_one_work+0x9c5/0x1b40
[  131.987548][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[  131.989834][ T5333]  ? __pfx_process_one_work+0x10/0x10
[  131.992222][ T5333]  ? assign_work+0x1a0/0x250
[  131.994279][ T5333]  worker_thread+0x6c8/0xf20
[  131.996397][ T5333]  ? __pfx_worker_thread+0x10/0x10
[  131.998646][ T5333]  kthread+0x2c1/0x3a0
[  132.000390][ T5333]  ? _raw_spin_unlock_irq+0x23/0x50
[  132.002670][ T5333]  ? __pfx_kthread+0x10/0x10
[  132.004635][ T5333]  ret_from_fork+0x45/0x80
[  132.006653][ T5333]  ? __pfx_kthread+0x10/0x10
[  132.008701][ T5333]  ret_from_fork_asm+0x1a/0x30
[  132.010793][ T5333]  </TASK>
[  132.012643][ T5333] 
[  132.013700][ T5333] =============================
[  132.015857][ T5333] [ BUG: Invalid wait context ]
[  132.018043][ T5333] 6.11.0-rc2-syzkaller-00194-gafdab700f65e #0 Tainted: G        W         
[  132.021917][ T5333] -----------------------------
[  132.022463][   T63] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  132.024091][ T5333] kworker/u33:2/5333 is trying to lock:
[  132.029712][ T5333] ffffffff8fc85d28 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0x387/0xb30
[  132.034269][ T5333] other info that might help us debug this:
[  132.036577][ T5333] context-{4:4}
[  132.038246][ T5333] 4 locks held by kworker/u33:2/5333:
[  132.040664][ T5333]  #0: ffff88802deb9148 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  132.045294][ T5333]  #1: ffffc900032d7d80 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  132.050384][ T5333]  #2: ffff88802f5e8078 (&hdev->lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0xde/0xb30
[  132.055199][ T5333]  #3: ffffffff8ddb5ca0 (rcu_read_lock){....}-{1:2}, at: hci_le_create_big_complete_evt+0x100/0xb30
[  132.060039][ T5333] stack backtrace:
[  132.061744][ T5333] CPU: 2 UID: 0 PID: 5333 Comm: kworker/u33:2 Tainted: G        W          6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  132.067235][ T5333] Tainted: [W]=WARN
[  132.068956][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.073728][ T5333] Workqueue: hci0 hci_rx_work
[  132.075865][ T5333] Call Trace:
[  132.077392][ T5333]  <TASK>
[  132.078759][ T5333]  dump_stack_lvl+0x116/0x1f0
[  132.080903][ T5333]  __lock_acquire+0x13cc/0x3cb0
[  132.083084][ T5333]  ? __pfx___lock_acquire+0x10/0x10
[  132.085427][ T5333]  ? irqentry_exit+0x3b/0x90
[  132.087520][ T5333]  ? lockdep_hardirqs_on+0x7c/0x110
[  132.089883][ T5333]  lock_acquire+0x1b1/0x560
[  132.091915][ T5333]  ? hci_le_create_big_complete_evt+0x387/0xb30
[  132.094720][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[  132.096977][ T5333]  ? dump_stack_lvl+0x1a3/0x1f0
[  132.099217][ T5333]  ? add_taint+0x5f/0xd0
[  132.101147][ T5333]  ? __might_resched+0x3cc/0x5e0
[  132.103260][ T5333]  ? __pfx___might_resched+0x10/0x10
[  132.105446][ T5333]  ? __pfx___lock_acquire+0x10/0x10
[  132.107813][ T5333]  __mutex_lock+0x175/0x9c0
[  132.109885][ T5333]  ? hci_le_create_big_complete_evt+0x387/0xb30
[  132.112472][ T5333]  ? hci_le_create_big_complete_evt+0x387/0xb30
[  132.115186][ T5333]  ? __pfx___mutex_lock+0x10/0x10
[  132.117478][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[  132.119766][ T5333]  ? find_held_lock+0x2d/0x110
[  132.121945][ T5333]  ? hci_event_packet+0x438/0x1180
[  132.124251][ T5333]  ? __pfx_lock_release+0x10/0x10
[  132.126527][ T5333]  ? hci_le_create_big_complete_evt+0x387/0xb30
[  132.129319][ T5333]  hci_le_create_big_complete_evt+0x387/0xb30
[  132.132056][ T5333]  ? __mutex_unlock_slowpath+0x164/0x650
[  132.134588][ T5333]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[  132.137532][ T5333]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  132.140095][ T5333]  ? skb_pull_data+0x166/0x210
[  132.142217][ T5333]  hci_le_meta_evt+0x2e2/0x5d0
[  132.144364][ T5333]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[  132.147160][ T5333]  hci_event_packet+0x666/0x1180
[  132.149326][ T5333]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  132.151450][ T5333]  ? __pfx_hci_event_packet+0x10/0x10
[  132.153818][ T5333]  ? mark_held_locks+0x9f/0xe0
[  132.155922][ T5333]  ? kcov_remote_start+0x3cf/0x6e0
[  132.158081][ T5333]  ? lockdep_hardirqs_on+0x7c/0x110
[  132.160300][ T5333]  hci_rx_work+0x2c6/0x1610
[  132.162255][ T5333]  process_one_work+0x9c5/0x1b40
[  132.164388][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[  132.166603][ T5333]  ? __pfx_process_one_work+0x10/0x10
[  132.168972][ T5333]  ? assign_work+0x1a0/0x250
[  132.171061][ T5333]  worker_thread+0x6c8/0xf20
[  132.173086][ T5333]  ? __pfx_worker_thread+0x10/0x10
[  132.175233][ T5333]  kthread+0x2c1/0x3a0
[  132.176912][ T5333]  ? _raw_spin_unlock_irq+0x23/0x50
[  132.179192][ T5333]  ? __pfx_kthread+0x10/0x10
[  132.181164][ T5333]  ret_from_fork+0x45/0x80
[  132.183132][ T5333]  ? __pfx_kthread+0x10/0x10
[  132.185163][ T5333]  ret_from_fork_asm+0x1a/0x30
[  132.187307][ T5333]  </TASK>
[  132.189783][ T5333] ==================================================================
[  132.193346][ T5333] BUG: KASAN: slab-use-after-free in hci_le_create_big_complete_evt+0xa62/0xb30
[  132.193380][   T63] usb 5-1: device descriptor read/64, error -71
[  132.197262][ T5333] Read of size 8 at addr ffff888027fc8000 by task kworker/u33:2/5333
[  132.197282][ T5333] 
[  132.197291][ T5333] CPU: 2 UID: 0 PID: 5333 Comm: kworker/u33:2 Tainted: G        W          6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  132.209763][ T5333] Tainted: [W]=WARN
[  132.211465][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.216085][ T5333] Workqueue: hci0 hci_rx_work
[  132.218198][ T5333] Call Trace:
[  132.219713][ T5333]  <TASK>
[  132.221048][ T5333]  dump_stack_lvl+0x116/0x1f0
[  132.223198][ T5333]  print_report+0xc3/0x620
[  132.225217][ T5333]  ? __virt_addr_valid+0x5e/0x590
[  132.227440][ T5333]  ? __phys_addr+0xc6/0x150
[  132.229510][ T5333]  kasan_report+0xd9/0x110
[  132.231526][ T5333]  ? hci_le_create_big_complete_evt+0xa62/0xb30
[  132.234270][ T5333]  ? hci_le_create_big_complete_evt+0xa62/0xb30
[  132.237053][ T5333]  hci_le_create_big_complete_evt+0xa62/0xb30
[  132.239791][ T5333]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[  132.242747][ T5333]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  132.245464][ T5333]  ? skb_pull_data+0x166/0x210
[  132.247644][ T5333]  hci_le_meta_evt+0x2e2/0x5d0
[  132.249833][ T5333]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[  132.252761][ T5333]  hci_event_packet+0x666/0x1180
[  132.255011][ T5333]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  132.257364][ T5333]  ? __pfx_hci_event_packet+0x10/0x10
[  132.259740][ T5333]  ? mark_held_locks+0x9f/0xe0
[  132.261879][ T5333]  ? kcov_remote_start+0x3cf/0x6e0
[  132.264189][ T5333]  ? lockdep_hardirqs_on+0x7c/0x110
[  132.266486][ T5333]  hci_rx_work+0x2c6/0x1610
[  132.268492][ T5333]  process_one_work+0x9c5/0x1b40
[  132.270642][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[  132.272911][ T5333]  ? __pfx_process_one_work+0x10/0x10
[  132.275347][ T5333]  ? assign_work+0x1a0/0x250
[  132.277434][ T5333]  worker_thread+0x6c8/0xf20
[  132.279556][ T5333]  ? __pfx_worker_thread+0x10/0x10
[  132.281850][ T5333]  kthread+0x2c1/0x3a0
[  132.283704][ T5333]  ? _raw_spin_unlock_irq+0x23/0x50
[  132.286013][ T5333]  ? __pfx_kthread+0x10/0x10
[  132.288013][ T5333]  ret_from_fork+0x45/0x80
[  132.289976][ T5333]  ? __pfx_kthread+0x10/0x10
[  132.291990][ T5333]  ret_from_fork_asm+0x1a/0x30
[  132.294172][ T5333]  </TASK>
[  132.295588][ T5333] 
[  132.296682][ T5333] Allocated by task 5346:
[  132.298659][ T5333]  kasan_save_stack+0x33/0x60
[  132.300780][ T5333]  kasan_save_track+0x14/0x30
[  132.302919][ T5333]  __kasan_kmalloc+0xaa/0xb0
[  132.305010][ T5333]  __hci_conn_add+0x131/0x1a50
[  132.307215][ T5333]  hci_conn_add+0x56/0x70
[  132.309178][ T5333]  hci_le_big_sync_established_evt+0x73f/0xad0
[  132.311963][ T5333]  hci_le_meta_evt+0x2e2/0x5d0
[  132.314140][ T5333]  hci_event_packet+0x666/0x1180
[  132.316425][ T5333]  hci_rx_work+0x2c6/0x1610
[  132.318503][ T5333]  process_one_work+0x9c5/0x1b40
[  132.320775][ T5333]  worker_thread+0x6c8/0xf20
[  132.322905][ T5333]  kthread+0x2c1/0x3a0
[  132.324757][ T5333]  ret_from_fork+0x45/0x80
[  132.326787][ T5333]  ret_from_fork_asm+0x1a/0x30
[  132.328931][ T5333] 
[  132.330003][ T5333] Freed by task 5333:
[  132.331788][ T5333]  kasan_save_stack+0x33/0x60
[  132.333979][ T5333]  kasan_save_track+0x14/0x30
[  132.336101][ T5333]  kasan_save_free_info+0x3b/0x60
[  132.338401][ T5333]  poison_slab_object+0xf7/0x160
[  132.340633][ T5333]  __kasan_slab_free+0x32/0x50
[  132.342824][ T5333]  kfree+0x12a/0x3b0
[  132.344608][ T5333]  device_release+0xa1/0x240
[  132.346687][ T5333]  kobject_put+0x1fa/0x5b0
[  132.348500][ T5333]  put_device+0x1f/0x30
[  132.350250][ T5333]  hci_conn_del_sysfs+0x151/0x180
[  132.352532][ T5333]  hci_conn_del+0x54e/0xdb0
[  132.354609][ T5333]  hci_le_create_big_complete_evt+0x4ba/0xb30
[  132.357356][ T5333]  hci_le_meta_evt+0x2e2/0x5d0
[  132.359548][ T5333]  hci_event_packet+0x666/0x1180
[  132.361812][ T5333]  hci_rx_work+0x2c6/0x1610
[  132.363871][ T5333]  process_one_work+0x9c5/0x1b40
[  132.366063][ T5333]  worker_thread+0x6c8/0xf20
[  132.368166][ T5333]  kthread+0x2c1/0x3a0
[  132.370035][ T5333]  ret_from_fork+0x45/0x80
[  132.372036][ T5333]  ret_from_fork_asm+0x1a/0x30
[  132.374215][ T5333] 
[  132.375307][ T5333] The buggy address belongs to the object at ffff888027fc8000
[  132.375307][ T5333]  which belongs to the cache kmalloc-8k of size 8192
[  132.381489][ T5333] The buggy address is located 0 bytes inside of
[  132.381489][ T5333]  freed 8192-byte region [ffff888027fc8000, ffff888027fca000)
[  132.387452][ T5333] 
[  132.388490][ T5333] The buggy address belongs to the physical page:
[  132.391342][ T5333] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888027fcc000 pfn:0x27fc8
[  132.395794][ T5333] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  132.399557][ T5333] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[  132.403107][ T5333] page_type: 0xfdffffff(slab)
[  132.405181][ T5333] raw: 00fff00000000240 ffff888015843180 ffffea0000afa810 ffffea00007bdc10
[  132.408999][ T5333] raw: ffff888027fcc000 0000000000020001 00000001fdffffff 0000000000000000
[  132.412783][ T5333] head: 00fff00000000240 ffff888015843180 ffffea0000afa810 ffffea00007bdc10
[  132.416667][ T5333] head: ffff888027fcc000 0000000000020001 00000001fdffffff 0000000000000000
[  132.420479][ T5333] head: 00fff00000000003 ffffea00009ff201 ffffffffffffffff 0000000000000000
[  132.424263][ T5333] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  132.428063][ T5333] page dumped because: kasan: bad access detected
[  132.430915][ T5333] page_owner tracks the page as allocated
[  132.433460][ T5333] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5061, tgid 5061 (dhcpcd-run-hook), ts 30217815694, free_ts 30181086437
[  132.442521][ T5333]  post_alloc_hook+0x2d1/0x350
[  132.444675][ T5333]  get_page_from_freelist+0x1351/0x2e50
[  132.447169][ T5333]  __alloc_pages_noprof+0x22b/0x2460
[  132.449533][ T5333]  alloc_slab_page+0x4e/0xf0
[  132.451502][ T5333]  new_slab+0x84/0x260
[  132.453278][ T5333]  ___slab_alloc+0xdac/0x1870
[  132.455406][ T5333]  __slab_alloc.constprop.0+0x56/0xb0
[  132.457809][ T5333]  __kmalloc_cache_noprof+0x2b4/0x300
[  132.460104][ T5333]  tomoyo_init_log+0xcb6/0x2180
[  132.462157][ T5333]  tomoyo_supervisor+0x30c/0xea0
[  132.464368][ T5333]  tomoyo_execute_permission+0x38e/0x4b0
[  132.466951][ T5333]  tomoyo_find_next_domain+0x367/0x2020
[  132.469527][ T5333]  tomoyo_bprm_check_security+0x12e/0x1d0
[  132.471923][ T5333]  security_bprm_check+0x65/0xb0
[  132.474145][ T5333]  bprm_execve+0x642/0x1960
[  132.476231][ T5333]  do_execveat_common.isra.0+0x4f1/0x630
[  132.478771][ T5333] page last free pid 5059 tgid 5059 stack trace:
[  132.481618][ T5333]  free_unref_page+0x64a/0xe40
[  132.483765][ T5333]  qlist_free_all+0x4e/0x140
[  132.485855][ T5333]  kasan_quarantine_reduce+0x192/0x1e0
[  132.488219][ T5333]  __kasan_slab_alloc+0x69/0x90
[  132.490333][ T5333]  kmem_cache_alloc_noprof+0x121/0x2f0
[  132.492750][ T5333]  getname_flags.part.0+0x4c/0x550
[  132.495038][ T5333]  getname_flags+0x93/0xf0
[  132.497044][ T5333]  vfs_fstatat+0x86/0x160
[  132.499045][ T5333]  __do_sys_newfstatat+0xa2/0x130
[  132.501325][ T5333]  do_syscall_64+0xcd/0x250
[  132.503362][ T5333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.506046][ T5333] 
[  132.507097][ T5333] Memory state around the buggy address:
[  132.509545][ T5333]  ffff888027fc7f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  132.513049][ T5333]  ffff888027fc7f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  132.516573][ T5333] >ffff888027fc8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  132.520128][ T5333]                    ^
[  132.521992][ T5333]  ffff888027fc8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  132.525528][ T5333]  ffff888027fc8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  132.529046][ T5333] ==================================================================
[  132.533625][ T5333] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  132.536742][ T5333] CPU: 2 UID: 0 PID: 5333 Comm: kworker/u33:2 Tainted: G        W          6.11.0-rc2-syzkaller-00194-gafdab700f65e #0
[  132.542233][ T5333] Tainted: [W]=WARN
[  132.543942][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.548520][ T5333] Workqueue: hci0 hci_rx_work
[  132.550655][ T5333] Call Trace:
[  132.552265][ T5333]  <TASK>
[  132.553654][ T5333]  dump_stack_lvl+0x3d/0x1f0
[  132.555749][ T5333]  panic+0x6f5/0x7a0
[  132.557531][ T5333]  ? __pfx_panic+0x10/0x10
[  132.559652][ T5333]  ? trace_irq_enable.constprop.0+0xe4/0x130
[  132.562315][ T5333]  ? preempt_schedule_thunk+0x1a/0x30
[  132.564757][ T5333]  ? preempt_schedule_common+0x44/0xc0
[  132.567208][ T5333]  check_panic_on_warn+0xab/0xb0
[  132.569344][ T5333]  end_report+0x117/0x180
[  132.571326][ T5333]  kasan_report+0xe9/0x110
[  132.573321][ T5333]  ? hci_le_create_big_complete_evt+0xa62/0xb30
[  132.576121][ T5333]  ? hci_le_create_big_complete_evt+0xa62/0xb30
[  132.579049][ T5333]  hci_le_create_big_complete_evt+0xa62/0xb30
[  132.581792][ T5333]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[  132.584685][ T5333]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  132.587366][ T5333]  ? skb_pull_data+0x166/0x210
[  132.589529][ T5333]  hci_le_meta_evt+0x2e2/0x5d0
[  132.591692][ T5333]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[  132.594536][ T5333]  hci_event_packet+0x666/0x1180
[  132.596741][ T5333]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  132.599141][ T5333]  ? __pfx_hci_event_packet+0x10/0x10
[  132.601565][ T5333]  ? mark_held_locks+0x9f/0xe0
[  132.603739][ T5333]  ? kcov_remote_start+0x3cf/0x6e0
[  132.606047][ T5333]  ? lockdep_hardirqs_on+0x7c/0x110
[  132.608378][ T5333]  hci_rx_work+0x2c6/0x1610
[  132.610476][ T5333]  process_one_work+0x9c5/0x1b40
[  132.612705][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[  132.614998][ T5333]  ? __pfx_process_one_work+0x10/0x10
[  132.617371][ T5333]  ? assign_work+0x1a0/0x250
[  132.619470][ T5333]  worker_thread+0x6c8/0xf20
[  132.621586][ T5333]  ? __pfx_worker_thread+0x10/0x10
[  132.623889][ T5333]  kthread+0x2c1/0x3a0
[  132.625714][ T5333]  ? _raw_spin_unlock_irq+0x23/0x50
[  132.627963][ T5333]  ? __pfx_kthread+0x10/0x10
[  132.630000][ T5333]  ret_from_fork+0x45/0x80
[  132.631957][ T5333]  ? __pfx_kthread+0x10/0x10
[  132.634000][ T5333]  ret_from_fork_asm+0x1a/0x30
[  132.636139][ T5333]  </TASK>
[  132.638170][ T5333] Kernel Offset: disabled
[  132.640033][ T5333] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:47:05  Registers:
info registers vcpu 0

CPU#0
RAX=00000000002e1a6d RBX=0000000000000000 RCX=ffffffff8b120709 RDX=0000000000000000
RSI=ffffffff8b4cc500 RDI=ffffffff8bb08a40 RBP=fffffbfff1b52af8 RSP=ffffffff8da07e20
R8 =0000000000000001 R9 =ffffed100d606fd9 R10=ffff88806b037ecb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8da957c0 R14=ffffffff9012d558 R15=0000000000000000
RIP=ffffffff8b121aff RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555589f9c808 CR3=0000000045b3c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95fb9e66e4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95fb9e66f1
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95fb9e66eb
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95fb9e66ff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95fb9e6785
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95fb9e6863
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4799f8742134c8d0 83447e3418196970 86f5ca13cf6e2df6 b9f34b1a5ecc7ec6
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8a4405826f439cc8 62f03441b0b51eca e37327d4f0150004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3f74b677a7d379e7 101c7ca58898b6b3 a1786b1d1e10e737 1c5abbc2ee9350e9
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 76a0cb790c4b1acf 8d03e0fb31c6465b c5a8c8f5829d73f5 7ad14cc8195693d3
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 97e7f2f71132fc8f 02f19717ac9e8c7e 62b6ecd81d0e5d22 6d783575cbcde0ec
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9e9473b358e16d21 c8e02e48a3054905 4236e50e2d887b5c fd7ae99b0615152c
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6b831f3333f6ee6b 7aa120eb8c99f466 3d6980241cf4d36a c35edf0dd1bbce62
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffff8881043c4000 RBX=ffff8881043c4000 RCX=ffffc9000411a000 RDX=1ffff11020878903
RSI=ffffffff846b63a3 RDI=ffff8881043c4818 RBP=00fff00000000000 RSP=ffffc90003bef4a8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000040 R13=0000000000000000 R14=ffff88801f2c9ba0 R15=00fff00000000000
RIP=ffffffff846c2784 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f95fc67a6c0 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020abe000 CR3=0000000045b3c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000800 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff54683480 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe66e4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe66f1
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe66eb
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe66ff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe6785
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe6863
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff84fe5e65 RDI=ffffffff9519f6a0 RBP=ffffffff9519f660 RSP=ffffc900032d7418
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000005 R14=ffffffff84fe5e00 R15=0000000000000000
RIP=ffffffff84fe5e8f RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2162107a8c CR3=000000002f0b8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000400001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe66e4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe66f1
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe66eb
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe66ff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe6785
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb26dfe6863
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 768896fbca36eb7b afe61841a8a09bb0 2536dfc151a898a3 18376a4c43659555
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e50b5b9c49b96f9e 75a37626055c6d0e 1f38c6e1896b0004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 768cd57db1b39cd9 b97637fceb53d6ed dec7d3f929efe983 b8681a97948c377b
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6089a9f5768cd57d b1b39cd9b97637fc eb53d6eddec7d3f9 29efe983b8681a97
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 948c377be50b5b9c 49b96f9e75a37626 055c6d0e1f38c6e1 896b4a2fda046762
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f9079152768896fb ca36eb7bafe61841 a8a09bb02536dfc1 51a898a318376a4c
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 43659555058dee5e 0000030001000500 0000000000000000 4b00000000050401
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000012f271 RBX=0000000000000003 RCX=ffffffff8b120709 RDX=0000000000000000
RSI=ffffffff8b4cc500 RDI=ffffffff8bb08a40 RBP=ffffed10030db488 RSP=ffffc900001a7e08
R8 =0000000000000001 R9 =ffffed100d666fd9 R10=ffff88806b337ecb R11=0000000000000000
R12=0000000000000003 R13=ffff8880186da440 R14=ffffffff9012d558 R15=0000000000000000
RIP=ffffffff8b121aff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000040 CR3=00000000266f6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555594aa8e34 0000555594aa8e30
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555594aa64a0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555594aaa98e 0000555594aaa4c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000033323335 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffb08028003 0100000208060201 03b6128004000800 040241fa006f6373
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a18a08001be00300 10001bd003001000 1bc0000800000000 00080007000c0008
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff f3080a800320a082 10001b8004010000 120806060134a004
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffe9080c8003 00703901ffffffff fffffffff9080b80 03007375622f2e01
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010c80040010000b 80040a8004048004 0a0128ca2c616d64 723d736e61727401
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff e9080c8003007039 01ffffffffffffff fff9080b80030073
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 75622f2e01ffffff fffffffffff3080a 800320a08210001b 8004010000120806
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 060134a004a18a08 001be0030010001b d0030010001bc003 0210001bb0033810
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000