last executing test programs:

30.087154183s ago: executing program 2 (id=589):
r0 = socket$kcm(0x2d, 0x2, 0x0)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bsg/2:0:0:0\x00', 0x100, 0x0)
ioctl$SG_SET_TIMEOUT(r1, 0x2201, &(0x7f0000000180)=0x7b0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000100)={<r2=>r0})
r3 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000340)={<r4=>r3})
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth1_to_hsr\x00', <r6=>0x0})
bind$xdp(r4, &(0x7f00000005c0)={0x2d, 0x0, r6, 0xc}, 0x10)
bind$xdp(r2, &(0x7f0000000080)={0x2d, 0x0, 0x0, 0xc}, 0x10)
close(r0)

29.981785863s ago: executing program 2 (id=590):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000002640)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000240)="b2", 0x1}], 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r0], 0x18, 0x8800}}], 0x1, 0x20040804)
accept4$unix(r0, 0x0, 0x0, 0x0) (async)
mount(&(0x7f0000000100)=@sr0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='udf\x00', 0x1214891, 0x0)

29.922083339s ago: executing program 2 (id=591):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1400000016000b63d25a80648c2594f922240685", 0x14}], 0x1}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x2c, r3, 0x6a98047402e98331, 0x1000000, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0xd1}, 0x40048c2)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x1, 0x2, 0x0, 0x0, 0x0, "71a4b85f30cc5549"})
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000480)=0x1)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000080)={0x8400, 0x1, 0x0, 0x10000, 0x1b, "4415264a88b82c521113fb235902af2556c6b6"})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
keyctl$session_to_parent(0x12)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="9eb780e3", @ANYRES16=r6, @ANYBLOB="01082cbd7000fddbdf2501000000000000000c410000000c001473797a3000000000"], 0x28}, 0x1, 0x0, 0x0, 0x40008c1}, 0x8000)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x30, r6, 0x2, 0x70bd28, 0x25dfdbfc, {{}, {}, {0x14, 0x19, {0x0, 0xb87, 0x8, 0x9}}}, [""]}, 0x30}, 0x1, 0x0, 0x0, 0x8810}, 0x800)

29.921824789s ago: executing program 2 (id=592):
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000000a882, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r1, 0x0)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000140)=@gcm_256={{0x304}, "480ca6eda49ed6a6", "3a2cc8b276a753b0e23e2a8436b0e1d53d11b70c57abe2e932240e766d3aebfd", "a0eb068e", "e96e232f2004a832"}, 0x38)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000001d000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="000096000a000200aaaaaaaaaa0c000006000500"], 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
semget(0x2, 0x1, 0x200)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r6, 0x1)
write(r6, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x30, r5, 0x5, 0x0, 0xfffffffc, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x0)
madvise(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x15)

29.351900591s ago: executing program 2 (id=604):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
syz_open_dev$I2C(&(0x7f0000000000), 0xa840, 0x582)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0x8})
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x24, @none={0x0, 0xffff}}, 0x14, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x24040000)
ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000140))
preadv(r3, &(0x7f0000000280), 0x0, 0xa973, 0xd86)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vxcan1\x00', <r5=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000000)=ANY=[@ANYBLOB="180000005600010028bd7000dfdbdf2507000000adba6b18563339f35a6433ab3a242bd9110a3c7cd3eeb02cac745af0974d26e36f3f520e2b56bb3ab156ee9b061dd264f7c481994fa59f5e156ae958db74ff2fd378c11edaddf2610603ef25641a6568306be1842ef20b60cea74fa85d340c8225", @ANYRES32=r5], 0x18}, 0x1, 0x0, 0x0, 0x4000084}, 0x4000800)

29.34450459s ago: executing program 2 (id=608):
syz_usb_connect(0x3, 0xf5, 0x0, 0x0)
r0 = socket$inet(0x2, 0x3, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000005f00)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd0600ffdbdb252100000008000300", @ANYRES32=r3, @ANYBLOB="0600eb00000800000400ec000a00060008021100000100000600f70000ff000008009e"], 0x44}, 0x1, 0x0, 0x0, 0x4048020}, 0x20000)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0xc00, &(0x7f0000001180)=ANY=[@ANYBLOB='quota,usrquota_inode_hardlimit=7'])
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_CAP_X2APIC_API(r6, 0x4068aea3, &(0x7f0000000100)={0x81, 0x0, 0x1})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
read$FUSE(r4, &(0x7f0000003480)={0x2020}, 0x2020)

2.833856948s ago: executing program 32 (id=608):
syz_usb_connect(0x3, 0xf5, 0x0, 0x0)
r0 = socket$inet(0x2, 0x3, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000005f00)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd0600ffdbdb252100000008000300", @ANYRES32=r3, @ANYBLOB="0600eb00000800000400ec000a00060008021100000100000600f70000ff000008009e"], 0x44}, 0x1, 0x0, 0x0, 0x4048020}, 0x20000)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0xc00, &(0x7f0000001180)=ANY=[@ANYBLOB='quota,usrquota_inode_hardlimit=7'])
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_CAP_X2APIC_API(r6, 0x4068aea3, &(0x7f0000000100)={0x81, 0x0, 0x1})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
read$FUSE(r4, &(0x7f0000003480)={0x2020}, 0x2020)

2.475212385s ago: executing program 3 (id=748):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x1407, 0x100, 0x70bd28, 0x259fdbff, "", [@RDMA_NLDEV_ATTR_DEV_DIM={0x5}, @RDMA_NLDEV_ATTR_DEV_DIM={0x5}]}, 0x20}, 0x1, 0x0, 0x0, 0x20044001}, 0x8000)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
mount$9p_rdma(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=rdma,port=0'])
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='cifs\x00', 0x0, &(0x7f00000001c0)='=\n\x9b\xa1Q\x83\xe9\n@\xf6\"2a\xd7\x1fch\x1a}#\xfa\xe4`\xdc[\x03\x97\xcd\xf1\xa6b\x9a\x1f\xff\xff\xffIT\xe4\x8c&\xac\xe6:\xc5\xe8\xd9\"\x82\xd5\xeb\x90\xef1:\xba\xc3\xc3\xd3\xad\'\xc44\x17,,\x8dZz\x04\x17-#F\xc7<\xe6\xf5]%gC\x9e\xca\nS\xc3\xc8\x98\xd8\xc8\x9eZ\xa76\x9f\xc2=\xaa\xcet7\xb9\xbd\xd47\xe3\xc8@$8\v\x9f\xfd\xe1!\x11\x19Y\x06J\x8f\x80\xef9Tw8\x1b\xe2\xf3\x85\xd5}\xa5\xb7\xd5|')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000005c0)={r3, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000200)={&(0x7f0000000140), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x38, 0x1407, 0x100, 0x70bd26, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_DIM={0x5}, @RDMA_NLDEV_ATTR_DEV_NAME={0x9, 0x2, 'syz2\x00'}, @RDMA_NLDEV_NET_NS_FD={0x8, 0x44, r3}, @RDMA_NLDEV_ATTR_DEV_NAME={0x9, 0x2, 'syz1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040050}, 0x40000)
ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000040))

2.401698686s ago: executing program 3 (id=750):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001400)={0xffffffffffffffff, 0xe0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x9, 0x5, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], <r0=>0x0, 0xdf, &(0x7f0000001200)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f0000001240), &(0x7f0000001280), 0x8, 0x6a, 0x8, 0x8, &(0x7f00000012c0)}}, 0x10)
r1 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000001480)=@o_path={&(0x7f0000001440)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000b918e0137d9c05158ffe325150000000000000000000000006111680000000000950000000000000068dd"], &(0x7f00000000c0)='GPL\x00', 0x1, 0x1000, &(0x7f0000000200)=""/4096, 0x41000, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd25, r0, r1}, 0x94) (async)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001540)={{0x1, <r2=>0xffffffffffffffff}, &(0x7f00000014c0), &(0x7f0000001500)='%pS    \x00'}, 0x20) (async)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xc3490000) (async)
syz_open_dev$usbmon(0x0, 0x0, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="600000001000ffff25bd700001dcdf2500000000", @ANYRES32=0x0, @ANYBLOB="00000400230800000a000100aaaaaaaaaa0d0000340012800e00010069703667726574617000"], 0x60}, 0x1, 0x0, 0x0, 0x4044030}, 0xc0)
fcntl$setflags(r2, 0x2, 0x0)

1.492770461s ago: executing program 3 (id=755):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
prctl$PR_SET_THP_DISABLE(0x29, 0x0)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000300)={r1, @in={{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x11}}}, [0x1, 0x400, 0x5cf, 0x7, 0x8, 0x1, 0x1, 0x993c, 0xa, 0x9, 0x200, 0x9, 0x9, 0x8000000000000000, 0x8]}, &(0x7f0000000140)=0x100)

1.489546608s ago: executing program 3 (id=756):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r0, 0xfff)
r1 = gettid()
clock_gettime(0x0, &(0x7f0000000240)={<r2=>0x0, <r3=>0x0})
recvmmsg(r0, &(0x7f0000000200)=[{{&(0x7f0000000000)=@ethernet={0x0, @remote}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/101, 0x65}, {&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f0000000100)=""/190, 0xbe}, {&(0x7f00000012c0)=""/202, 0xca}], 0x4}, 0x6}], 0x1, 0x40010000, &(0x7f00000013c0)={r2, r3+60000000})
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
accept4$rose(r0, 0x0, 0x0, 0x0)

991.706688ms ago: executing program 0 (id=761):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x22803)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0xf3, 0x1b1c07, 0xfffffffa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x80d02, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000000)={{0x80}, 'port0\x00', 0x0, 0x0, 0x0, 0x0, 0x80000001})
dup3(r1, r2, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000005980)={0x20, 0x40, 0x107, 0x70bd2b, 0x0, {0x1, 0x7c}, [@nested={0xc, 0x1c2, 0x0, 0x1, [@nested={0x8, 0xa, 0x0, 0x1, [@generic="543802ad"]}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r4)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)={0x44, r5, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5, 0x37, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x44}, 0x4, 0x700000000000000}, 0x40)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000240), r4)
sendmsg$IEEE802154_ASSOCIATE_REQ(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r5, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x1a}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x1f}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x1e}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x8001)

991.369555ms ago: executing program 0 (id=762):
r0 = open$dir(&(0x7f00000000c0)='./file0/../file0\x00', 0x200000, 0x115)
mkdirat(r0, &(0x7f0000000200)='./file0/../file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000180)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)={[{@uuid_on}, {@redirect_dir_follow}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000800)=ANY=[@ANYRESOCT], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c}, 0x94)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f000047a000/0x400000)=nil)
r2 = syz_open_dev$rtc(&(0x7f00000001c0), 0x8000000000000000, 0xa00)
ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f0000000240)=0x7)
r3 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x80000000}}, './bus\x00'})
open_by_handle_at(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800"], 0x830200)
creat(&(0x7f00000002c0)='./file0\x00', 0x274e4d50aafb3f22)

861.350855ms ago: executing program 0 (id=763):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000140)='id_resolver\x00', &(0x7f0000000100))
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r1, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000000)={@multicast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "75e700", 0x18, 0x3a, 0xff, @private2, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @local}}}}}}, 0x0)
write$tun(r1, &(0x7f0000000080)={@val={0x0, 0xf7}, @val={0x2, 0x80, 0x6, 0xdb26, 0xad, 0x1}, @llc={@llc={0x3c, 0x0, "cbe6", "abe7165471c6984f5b02c217a0b6db9b2d44db20eb9459a88d265eba3b6b671982d7d5d727432a9ef97e998e67ee198ca2ce754534e56fc6db3ca57097cd"}}}, 0x50)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) (async)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) (async)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000140)='id_resolver\x00', &(0x7f0000000100)) (async)
openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r1, 0x0) (async)
syz_emit_ethernet(0x4e, &(0x7f0000000000)={@multicast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "75e700", 0x18, 0x3a, 0xff, @private2, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @local}}}}}}, 0x0) (async)
write$tun(r1, &(0x7f0000000080)={@val={0x0, 0xf7}, @val={0x2, 0x80, 0x6, 0xdb26, 0xad, 0x1}, @llc={@llc={0x3c, 0x0, "cbe6", "abe7165471c6984f5b02c217a0b6db9b2d44db20eb9459a88d265eba3b6b671982d7d5d727432a9ef97e998e67ee198ca2ce754534e56fc6db3ca57097cd"}}}, 0x50) (async)

860.993698ms ago: executing program 0 (id=764):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000240), 0x2)
r1 = memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2)
ftruncate(r1, 0x10000)
fcntl$addseals(r1, 0x409, 0x7)
r2 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000000)={r1, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000440)=0x2)
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f00000001c0)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000140600000fff07006706000020000000350200000ee60000bf25000000000000bd350000000000006507000002000000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad53010000000000840400000000000014000000000000009500000000000000db13d5d8b740f2cdaabc8383c8f56b8c2b84a800ea6553f3ef4392b3815dcf00c3eebc52267b042d19d6e31e25e589d5f2692c75a547d6f186641ae8c557ccff3878a93b51a0389749df734f49ed5078b10f1e7f2b37626a3ace1ea89f7d2c570720a86853e26168761f0a53358f7ee2baa0e6a67a98a0d57ac09f36cfefbbc7492bbe7cdf64971a57fd64efd46c26"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x10, 0x0, 0x57}, 0x48)

779.686809ms ago: executing program 0 (id=766):
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x11)
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000340)={'pimreg1\x00', 0x1})
read(r2, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'lo\x00', <r3=>0x0})
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/oops_count', 0x0, 0x0) (async)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/oops_count', 0x0, 0x0)
readv(r4, &(0x7f0000000380)=[{&(0x7f0000000240)=""/237, 0xed}], 0x1) (async)
readv(r4, &(0x7f0000000380)=[{&(0x7f0000000240)=""/237, 0xed}], 0x1)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0xd0f, 0x400000, 0x25dfdbfc, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x8, 0x2}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x3}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) (async)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x1, &(0x7f0000000500)=ANY=[@ANYBLOB="200000000000090051d40f2ab42669bafb29908d333a53b07514a9d53355ec929da09968f7e64e2fdebc3b7b4c3a247f7aed7fd3a3dfd4ccc0b72ef63ffc9d7ced711e18a35d7e839fcef35dba76134600a9379cb4650607fa5d1c"], &(0x7f0000000040)='GPL\x00'}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)={0x30, r6, 0xe05, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x8, 0x70, [@NL80211_MESH_SETUP_IE={0x4}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4a484}, 0xc000) (async)
sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)={0x30, r6, 0xe05, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x8, 0x70, [@NL80211_MESH_SETUP_IE={0x4}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4a484}, 0xc000)
r8 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r8, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c) (async)
bind$inet6(r8, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
setsockopt$MRT_DEL_MFC_PROXY(r4, 0x0, 0xd3, &(0x7f0000000400)={@local, @multicast1, 0x0, "7bee724d9908c41a9f8da0a00d0013a66df3a89366e791eb10e805c4f91bb836", 0xfe, 0x3, 0x1, 0x9}, 0x3c)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000008c0)={'bridge0\x00', <r10=>0x0})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=@bridge_newneigh={0x28, 0x1c, 0x1, 0x70bd29, 0x25dfdbfe, {0x7, 0x0, 0x0, r10, 0x4, 0x7e, 0x9}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f00000003c0)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x70, 0x0, 0x8, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x5c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x40, 0x4, {'gcm(aes)\x00', 0x18, "ee6300be37d37973cff2648ecfa7ae5101eb6eb4dd446245"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}]}]}, 0x70}}, 0x20000040) (async)
sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f00000003c0)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x70, 0x0, 0x8, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x5c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x40, 0x4, {'gcm(aes)\x00', 0x18, "ee6300be37d37973cff2648ecfa7ae5101eb6eb4dd446245"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}]}]}, 0x70}}, 0x20000040)

640.973366ms ago: executing program 0 (id=770):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_DESTROY_ACCESS_PAGES(r0, 0x3ba0, &(0x7f0000000b80)={0x48})
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = io_uring_setup(0x50e0, &(0x7f0000000100)={0x0, 0xd8de, 0x8a20, 0x0, 0x274})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x2, 0x300, 0x0, 0x0, 0x3}, 0x0, &(0x7f0000000100)={0x8, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0)
getsockopt$sock_int(r3, 0x1, 0x28, 0x0, &(0x7f0000000380))
r5 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x1, 0xffffffff0fffb000, 0x1000000})
r6 = syz_open_dev$vcsn(&(0x7f0000000240), 0x324, 0x2842)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000380)=[r3, r5, r6], 0x3)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='westwood', 0x8)
getsockopt$inet_tcp_buf(r1, 0x6, 0x1a, 0x0, &(0x7f00000000c0))
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r7, 0x84, 0x65, &(0x7f00000002c0)=[@in={0x2, 0x4e24, @loopback}, @in={0x2, 0x4e20, @rand_addr=0x64010102}, @in={0x2, 0x4e20, @empty}, @in6={0xa, 0x4e24, 0xf79, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x4}, @in={0x2, 0x4e23, @remote}, @in={0x2, 0x4e21, @local}, @in6={0xa, 0x4e24, 0x1, @dev={0xfe, 0x80, '\x00', 0x3d}, 0x8}, @in6={0xa, 0x4e22, 0x0, @loopback, 0x9}], 0xa4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000006000000000084e27fa40000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)

581.061228ms ago: executing program 3 (id=771):
socket(0x10, 0x3, 0x0) (async)
r0 = socket(0x10, 0x3, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRESDEC=r0, @ANYBLOB="00ff0000000000001800128008000100707070000c00028008000100091c7e84713ff124379005b24d64452245092d122e5fe9642131c6251c2aeaa7160468ede48623f7002e1500b93fc7b1036318593ed0f27fce263e8c5f3d3716b2e82b075aaede03bcd147f16fdf45a20e96feac25bbf64bdd176d", @ANYRESHEX, @ANYBLOB='\b\x00\n\x00', @ANYRES64], 0x40}}, 0x0)

579.653216ms ago: executing program 3 (id=773):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xcc, 0x200)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000140)={0x3, 0xc8, &(0x7f0000000040)="9e7d630eb9f1b78fdb056af5a283f1454963ac8243fc13bf95ab593d580c22b322f72729594f63694bfe71563c9b84972552f74ec0a5ab64ec682da45774101a2dba966eee4a8a0219a88aa6be40835e53273e9573d0d4dd50a4232da4da0125c3119deb91e15ddeb78d53456d23ecd08f2568f4ac538d13e31684d23b85445579e045a0616535fb7686409a7fdde18f0eefeb88335e8cc2c58bd0ad837f8d80ec1ae23dc36533096d98d02c9ffc3e213a675bc394f716f7f41c1a9abbdd8d85962b85f569c886e1"})
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000001180)={0x5, 0x1000, &(0x7f0000000180)="c298b693a445daa0b45d196a2d68f8dff36f9858ff35f4754805ba93b125104e96430c365d8e6ac6ef1e07d0c861cf0aedda56fd4a769a1503630ad12504f183cac7d25262b097580df7a01eba94b7628bb3eacad0f5eae5622fdea17d0357d46abe361bcc0a5fed08244b78388cb2f52d8e652dd174ff8474cf12e86b50932a9a17d7a6132720f64118ef9591f785d6568b57a968a671532784248290384317ebc40185fe38b4a5284c1f1dc9a5a7a16a7345f9e630274f6ec495f98f7e123ba9b0126f44c39f400448792cb775c579be79b008374f387f75543219253f0ecce5d877413973cda0dfd5e4babd9fb98ad5cb7d355fd67fcda33b7533ab517409116a22852596336d431d93a2016f4119e542b90f49a3d95eebe12bbbcc1cb9595aaaa706eac1f95eb17751e77e32afa4955c1b46d5787599c14ce6409a72605717fd6fdcb8d390f62ceaeb53e5cbb20b10062669c738167fe32e8ad8e9604d7843e4e7a0f63d1cc79e21ec62fce6287ce080d3dce8b7ef42900e93ba138575d6fc391710e33185f4a33d6d8f4b790a85e12af2dd1109caa3e886625341133a81ea15200302a5fe7e76daa61ba9ba91927a5510fff754754f29c072721518664c4dce60ae268b889c5f89f25090fd6d5cc6acc9bbfaeb82dfc3639ca06b4de8964d9cc9552c64f413819a1844b711d1ef29c39005957fe1f18daf650922b24b0d17e8af94b931110511f8b555784bb3da3e0ce1a9c5bf16104ed22b838e8aa3a0a5a80845e0f72659eb6bcd469d09df1e8c63173fd71660f69dd3b2b94242c6a7ba8c5037617033522647e211c58fdc29ddf81ab6d2eedf008b7b2ac94520eb74a3c79acbafa2d9caddfc98b740e14041e8dc3ce6d5eab265cc58b49e880d35bfc0ecb7306b527ddf6198df5c1ce28f62b0523661867e478958ad0e93933dfdd44db47c558da862d79a88a51ce8f875c635d4e0f0f9ed8a61ad547c231e018efc51b070dc0a56427d737539aafec70d94dbb3fc32222610fc6b71715da0232808739e52dce31ae1c3f8b3f82d98f0233f21a54531fb9eb81b97a51da87cfa28bdb42a498e3d49250a3dadcd2eafc954b6805ce295c4e08080caa7f244d48a865d8b517c256d65ff1b59c8ffe2f85303621956b13f9519779cae1e85f385acd5c5f704a551b3a5b73fcc818d7058fccc9c7338c1b00ee13dd78e9b7a8e633a99ee94007e3f4d055b221d1e1e2c398739d1b75dd7e46e8900c4ac08b864d4fa3b9aeb8fe327a8cf4964dc1e4033d038b1ca1cdb338ca9e0ec3f2b47d979ce7c3aa760202fef35167574744300f35e46480ddb741d448da328450525618f7d3571b9ab1c75d62e16b4298299b7790a477d6f7c248d5894f999d28c072f4c2f749e09cdf2c3e064a81ab339d900bdd7aba90932667b63e6adbdc94a5a063a40d2720d5441a847d7fa1c2ef63ec1c7620e8da212c42a40e3b2994ecbaf1fe2471616a184e10a09214c7ddf09bcf7824241e74c09540d7610ef45c37ef5696a2fe1e951fee3abdda4892cf837c6623d04569cff8887093bd1949644ef328baf23a409e38522cc7ae21fe64fd043f1f3d91715d8fa75a944ff6316aaf549a1acb6dd27de79bfa2b7db95e2ec2f7a4e566eb419c8fe03cfba3e08c6e6378ed7827597df6c566d1295fcdc3312860e599f09aba617a07bd701dd141700ef9f0d46144abaecd5763fcde6666e05429edca270bd775995e8034bc1e17b818237383f863f063e5c3455f8ab11d9fa6b6b634b2fbfd74f5c04544a5eab317260476c94fad480f6bdaebb080c48855852f077ee32b699a7e13532a235625bc9837362e0c8f10ade5382a1359626300dc3045a1eaa54aaf25481132d2f3148e8517a1a98a66a495aeb5c31f090f2b33d767622015b53200bf64315a67b5ca5c49d546edf372c14502ad2164784f69fd4f1bc603a79775a8a4067b8915b62a0b1f6c288c57e6074a02a779b16a9ff7e7072f52c9a00ba3f41342afe37d05232910bb56ed403447910cca354825ff6489267c5ff307e413452a5171d20763ab4c1ae019cbdd9a3993a171ebb24073937351f0ecb47cd4d1b7249ac5aae56e72a1a0efb02b19cac5862e9780fab1a0a45579fc26a08773809231990c1ffd99750044244e532c86967376f8bf48960d41fa6b6613bcbda43e25c6adbf249ab348d8b7db37ff524a46f44c4560b60b8ea8bde633aec6c2746618703e0da352e30f8bc14f3508a92485e77e4186177d549e482c25138f1434f747cc166c0179e4ebcfe987db063d4cd60754d9f8beca0988b9c035f1cd1eec5cf26155412faf91e456a84119fa8508f19de6b4b71d9ded842a96ded45ca0765ad7ef537eeac06eec2fc65db5f5b7ce90b3d25df08a2c1fd4b69586ef2722b9f430297d5de2617f63a37c4f27422d48725b9757192ff405d898405a0f476d4ef7b94b0c163ba871ee32c7ec0ba8224f52b9531ec64364339d45a955c517165b6745666b8334eb4e0f17de67744e0a057a560902c25bedb0caad6139ce3efde6e8007b2468dd19e78d40f45c3a74f15952fb7d2a9a8d9af1939d0295a55f0b39bfe052cc8a2cd42336c0d159b7973ab2e84bdbb59d98647082a6327783e804a6998bb7c3962c02307bc45c92ee633c6c346312a7c6ecc5f23a60fee106be3196d7542ab7f42c04efc620e0f653fe4c2f8a422a8b789a9202a2b086fde2f4afcfb816e607f78a00a27c193238786ec3551c098da27287f9fb92c397387ddbbae9df502813a8684ff66c1e9bec74d2a9f3ff06dd4ad1d631cb6ca2cf4252dee992f1165212d03ee62e00e7f478d6573d64890a50b4bd70cb9068e5621aa5bba3c64365fbf3024348975cadf10033154b5dfc640faba3b9344fc735842e5a8c322d4aa4a77ad4d9cf890ce59d8af59bd9277a898266d6a940bd5aef31d100b759c310779632d58fec0da3447cb2c0bf29c0bfee77e3c73bcd7878b0bd080a4f1abb5519e4e7c58b21d970d6da80dab06e9b1a1074770c3c39442ad72a704fac077a81fb00d1dc61a01edae24c36e05908789b13a99b6e0faabdadac548fcd2662b247fa70383edb8d918e640fcc069c2935b736686c1f74eeaefa983e55c79c93ca9cd81fe9b3ec7cd5cb8c4b624ebb1890f1342a10c26261c8b02c448da983bef6e6506c2e7a8168261214e3e94cd7e7eb30d7db09207e1c6a58a7c6d8d586dd883c785ddf9f8defb7c03f3328106d7a448a15b3fc8d3e532d4df224d02765cf3f9e15e16d8e152897f34374bb7077d4b478e20bc0aad8ef98114d3f9cd262dac0d0b58598928f2b3ef022cb4d7922f6ac7c63965c7639b379435caa41c9d71a8106264a0b28b279dc8047283156145495015e1ca743b33bfc86e20098bfc89756ab8544ed442613b6951f2364f530f56a660f25ab5f676333bbdd87e195eb82b868fde023b83222e17e8ef61c26f7e94afe23b00dc0934c1047c0eb93b40b32c2b16efa0e8821a55a73572b2cb90408d82dbf8fe6d689eeb746ba6d42208041eff51bec1e4cd75227e99122a87bf5b3493910ebd4c90c841ad6a902d6ddfca7a00216efc293311088838ad04f3798dbf991ca2ac0578979828b5767b0f3db574994a2296c54cd34cf4bd9de99b2c159ce367b60c333cfe0954ac295c79a5a1ac5dadaf4dbff8106f07005b615f40fc763cb317a43196e1f8414524d71092cf93a127866989fced11027445cdd67052506f505c1fdc45d024102147572cd8831af49b8d8f181033c48d2147d062488e011d02dfc2b9694d36e95d6e0341c4f0415d20c31fb2b4b650688288048a0bfac4296d0e1b75f75baaba23b87006b41b33e54d30b8588f27ccce71241b65422a64cd335d6063ab175c0319dd77ac8c07e8ac32e815c487698c9a982f14dab38f8ed039ea74a2de794ffd44e20efcedea7fb43b9491ab056ae127ee6751962f7225ed66a830f3771e01b10b1e0a7dbdb5378d1a1a3debcd46f450ec6c9b66c0c6c487dbec2fbceb685e4fb9067882d71c8401ea2a9db44abe5f2ba3eabd2af82355bada5e4154a1bfb5f9846ee8b9cd19803dc290119c0f925efc3578a6dee7371735fc664e3d6f2fc2f124c2484433644b31cd6735002fcf5058486dfe5faa23cba81457983ca60ab4d8601a14f690f59b0d765c68eaab1c3d3816124695702eb80796858b824eeb4b863227a5a1fcb40b268e0ec0a69d9524af2ca7cdd14bfe6c49c618a5f38c4eef3bee7bb017eeb7941d228232a2c4e781aef54f2ccabce2ae489e8c9d0b3abba4497217487393de161dae3b25f8c50d9037eca5a47d7a819961f03c709bdfc66f5d36a8a2914a5b9e3cdc0790b20ecdc53724bdea9abd4a3712861887a689b8ba60f7c18fa36bdec516469dd0fd320ee6f761e38d37dd0cb0150fa7762e7c8b6ccabcd0589df472237628d6877566a947eea7886162478cb29cdf6e968a34a7ba1473b087e3935cd06158932b9a10bc23808e0e5d7559cf48b2e7d99a72fe3923fc81a4e7a301568078576217904d1612b534c17954f306324e241a8effcca45e835ced22d86504cfdf8d000f886f5fedc0cc00fe16f44c235b83adeb0676c1a546f683d3a65465f207d75630b52750db1082beddf8a5f0d497fce43b9bf0fbd0de1df990f1bbfd40ce0cbd3f51c28b2327d277a2536d5708832ccab11d546fc7b3f05dac5998ae67e792a894ffc2ac94e082510de4bbae29d1993d6a3cc96ad0df149b6a76a2a6f76afa9bdd0f0f1553538f0b9c4233f9afff01bb40af76820c2ad970e07a215dc0eba9a1527c985db35b310d67870f195f8a1e58caff93685b520cb2061f177e1acdb71d5963d029f8a7800e1748aa58e4ac4d885017026e0bdc8606903591ddd132dc858ee4305e64c6e73fcfdfc656115bd799b7b84f020f96241d7a476e7344f4df36b79d912aa193fb03cc0a0f7c3acc46dc3d7fb7325112821444317a407ef0c2b9ad1ad5c719edb4f4e37dca1f0d065f6f93d7bfdb293b2b97b56eee41fd4bf464cee7b82d33e7f0638f011f7305d65498408d3d0e11564f77189e08797e9792ec704eb2791ff35bbd2ef85704f72eff379c214db2e8835c3269fc9b50cb4b53cbdf2f234a19c62e4166265950ef96f797a717cab45fc56bd77f2f2149175e3a26b305bc06b9f8d07eee5afcbbbfb0271a3d324307bbe903d49fb2e3ad553c91af0bd8cc59a07f10f74dc4694f90a0e63fc3e31c8a89ef6810b28227706f2a4a1e858226e9656dbf133e6d4141f3e1da53b30a709d2920973fdcc352eacd39325f0e1d6297f0b71e857fc2d32010246275c0ec454b3e144483e66067e0dd925f72764d3bdab2df20e08a9e00c3f366ca5d2bab53f9c39b929b97e4d44b98656976ffe0edd2915dfda5eba8752090226582649b8c16b190d5133cf406ef5393d66420b0ed2bcede574d8d0dea2bd502447df2e70f58bf15772e63835d490cce8430edc37229c26b423a2b0eec70e8c72f8f67d02af42936bfbf322124991ffb5436e969a2eedb323c0d2bec862acd4328eb44087583baa9567cd7860964a35159bc1affdfd8e83d3a10b85a600d7fef79fcebd5439c38b41b7b6def6a60ba8a3cc34ed3f96fde19fb0553e57cd66f70e58acdfb0432133fdd9f8e5fcb022d9d822dd04c6823f85a2effc7ecddb274eb92fd5ea286beeafd6924a59740eeeec841bcd890153ef3bf225bcb91b94b8d2b1aaf8979bb47b638e6b1151b7cd1f6d0eb58415c0ab7c0abdb617b5e3be5a66fff20"})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x8)
write$char_usb(r1, &(0x7f00000011c0)="c62daaad93a11d4c7040bc996f14e3d7e23e3d50f39c7f084d691c98bbf198c8ae294674095aac2ea26b506b3e1707ad9f9b64ee02f8a81950e9bbdc2cfe761ffe5edc1a9a4ec152942970739494c42677b4442ba955ac336605c160309939f7829477156784742e8b0192a389f6de68b1c75c4470a30d53ab2c59d3bb592b0f1f5d6366f581a1c74059f7b121e3da1987593449f17a34742e9434aa9799908902be2be4becbfa8b1b8ab255b7bf5f1454240cfc2fcdb2ab9a33ef069b9dd52bfb263efbf4b6e80ee7d08ed407059ff41b9f2d5cd0d4ddf2022876d849a032b06221b5764c241f575d6fb3d0249f63b1f933d858ea", 0xf5)
ioctl$EVIOCGID(r0, 0x80084502, &(0x7f00000012c0)=""/13)
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000001300)=0x800)
r2 = syz_usb_connect$rtl8150(0x0, 0x3f, &(0x7f0000001340)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xbda, 0x8150, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
syz_usb_disconnect(r2)
r3 = syz_open_dev$dri(&(0x7f0000001380), 0x58d, 0x400)
ioctl$DRM_IOCTL_GET_CAP(r3, 0xc010640c, &(0x7f00000013c0)={0x12})
ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000001400)=""/239)
r4 = socket$rxrpc(0x21, 0x2, 0x2)
sendto$rxrpc(r4, &(0x7f0000001500)="5f3b0706de2380495042aaee44cb08d27898d017d377b9509174339e7e9bb2f9c493f48963222956044993222628a2c5615f554be80a4d7d07628b71561d67ba9ffcd75d95dba2060dbd688161955203efbedb0c11d2bf3fec3c62460de72812b81a226902877219c833db597662a5536fa15aca9856d89963f9b8286123ba59c971985b62169b36e376619316da84ea598b0c35fdf4eb", 0x97, 0x8094, &(0x7f00000015c0)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x24)
ioctl$IOC_PR_RESERVE(r1, 0x401070c9, &(0x7f0000001600)={0x1, 0x446, 0x1})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000001640)=<r5=>0x0, &(0x7f0000001680)=0x4)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f00000016c0)={0xffffffffffffffff, 0x0, 0x0, r5, 0x6}, 0xc)
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000001700)=0x8)
stat(&(0x7f0000001740)='./file0\x00', &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
statx(0xffffffffffffffff, &(0x7f0000001800)='./file0\x00', 0x2000, 0x400, &(0x7f0000001840)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
fchown(r0, r6, r7)
preadv(r1, &(0x7f0000001a00)=[{&(0x7f0000001940)=""/101, 0x65}, {&(0x7f00000019c0)=""/58, 0x3a}], 0x2, 0x5, 0xfffffff9)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r3, 0xc01064c7, &(0x7f0000001a80)={0x9, 0x0, &(0x7f0000001a40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000001ac0)=""/152)
write$char_usb(r1, &(0x7f0000001b80)="9f740be0c4f55d083ff0e1eebdd4095d3f356fc38f50ab58abeb8eccc5d394ef784b3d3dfc24d3b2c5bdd191953927ef0ee34693c38efe45c13e1bdf192a2e9df7260493355aa3e93dda7cd909596059498386f879de18a374aea56f226d143fc2e9b5c536", 0x65)
ioctl$EVIOCSABS20(r0, 0x401845e0, &(0x7f0000001c00)={0x0, 0x8, 0x4, 0x89, 0xcb, 0x9})
ioctl$DRM_IOCTL_AGP_RELEASE(r3, 0x6431)
ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0xfff)
getsockopt$inet_sctp6_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, &(0x7f0000001c40), &(0x7f0000001c80)=0x8)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000001cc0)={'wg0\x00'})

458.153591ms ago: executing program 1 (id=777):
mknodat$null(0xffffffffffffff9c, &(0x7f0000002440)='./file0\x00', 0x8000, 0x103)
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0x4, @empty}, 0x1c) (async)
r1 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0xffff, 0xb, @mcast2, 0x9}, 0x1c) (async)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/icmp6\x00')
pread64(r2, &(0x7f0000000180)=""/195, 0xc3, 0x100)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002240), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000022c0)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x2000}}) (async)
read$FUSE(r3, &(0x7f0000000200)={0x2020, 0x0, <r4=>0x0}, 0x2092) (async)
syz_fuse_handle_req(r3, &(0x7f0000002580)="5536182daefa2fc6ee10a1b2d4e27cff3c3e628d4656f7b27979e371b15b420c01ae674ddb8fff7b2bc41e7c5927065cd32f2ff7908ef7dd74cdc82f3799ab12edbbfd0b8f6d2194d7f72aec3a136e25c7bf733436bf6cbfc94431ad053a2ec4ccac5aaada8a41ac38c0e1849e599dce84e431ac501db105b4484146b338c0ae9124877ccb8273c7fbb32603251e2d66c71398a7a715bcbe5c9d87e41af55f837e2931c4c1b6b7bbc30dfedfe6e61a39e28f66bbe56496745fbe03f6035183257edac4b0fe3087e7f3e79c2152a07341f3ae9ec68e78875b6e12b5a2a1abbcca4d7963be818a7a31290cad5a025ccd05b609c7ac49ea85d49f354c1e76091a917966665e77471005a46a195b290c01bb7ddf4709e94543471d87a0a5047d3631b00862e1e9a00c60b83371cc16ba087463122a892a1b21786fe3d450c7ba97799d88126f09a698a421242e9c67c981ebc576f57ba3df22e0071db74fa22e97b0fbe589894931a4c4e0eda8bb9533c4ce503fba218d0ae43ab4b4d0c705e04442d093ca5299ae8499c6db904bda6c68105bc2a1cd8e16067215476e573745d1e99daa73400567a9978dd7bffb21429479ace30c95afdfaebd7faf74343cd58e14ce6d2fada5a1c665049eeaa717ee681666c8b63c6d54e66df86144f85d80dcaa3ae7a13b58d5f2b607029efbbf8593afc75e0ce0a875a5fbedecb425a22624a0bb8e2fd06212a1fdafb92430d309f8f68504484fb1246f3d7b0893d3dc9d0b6c8d7476b6aea871eb4f32c283e22435fccb221484409cc28a6609dd869b99547fc81b2e517809a5b77783f9fc11b5fe584b9f64c0fec35d3db21ae30d0b8b88d722dea4a376d2a610f0a9d08b311e2ed3ef5d72d0e040e41d3dc45e5a17d740c67db88d95b18c8610fed3302aef0c3c1871ff8a5ae1908bf9668f0bc8e5867f56cc59cd303bafabde6a4034a96ba66b98a910dfaaff712673dcbf84c5354f066126068de620f08be67e6034138dd9a312f9ff197fca56a77bad46e59edfd79dfa3aee4582bfe01ce2201f6569178be7a4bdd28e495114944e538ee7b8f11e0812d9f822cd9760316809eccb9b0bbc5f0630224a1534f88600bbb2af2882562e76d149b44780380b62241829e5734fdfff1a2b3a052f3504dffe04d4632e9fef82762fe1950fbaceeb961464dfe2699f0a898fc8783cfdde45ecc3a16f052c4777beb1fddb080fc802a8cc760d1a0d4606b669e78ee9ba1ac398914ed5096850dedc513e5c71eca19d51af9075151f4ca3d8a841b7b1d205f5f3d223f7e48685daa0836f93017935ad1d942c7392667145ccc1d4700f5d8fb2fc218fd6d70357667d339a28dba3360761857b19f9f91e56a0e0281af1042a409a4e2839f3d21b73a5c352b22e4ff06e563e92c00b48e7f8bcdbbbd398c65331298f779dafe875854e301394b0faac2126138908fa8598b4f5e58ed1ac451eb0187e20077099d12d745fcff0b7fb5e8b9fa65ac617ea6c953e8786229b67a604c46810876650f919e6bc6792db22ec0be29cff94e9c24eb6e1830f890bb4b6bcd74b39060506095b99b95f2a8addfb8dfe11f47479fd23cc7c0701ae00774c430b3b9f52ab2579d47a2c2095365aa569f55a1431f93e651c01f0d67ff9337708a72e352c0e699f14bf07f9b9c056897c78edcf34ade3dfd17a04446d565fb6e7c701a237fe1a3d932371654a43b56e7f5ccdadc0f506d746c3f0047b69c0c174cbbfe092f139c09c0e2e76d9a777142813cb78174630ea8d73301e3343b94856fe610777468a9fb4518a0cf68243a4bd715e38e3431a811f962edb1306d76d89e0aad9be5800e7bebb82ccaec2382c9c114c91aee013acca2d8ddf99465e760bd185453a9eb4e5a78383094603b749c6242ad227124ef4b7ec7506b8a76f714099c954f0b2f2d427af0451a7ea3d1dbfa8a3e644c3640d397de3ce942311deb73fad3a76cba773f416314e81e70bda715b342113a18a249300b43250cb3b3aa46ecabe42d0e8c1dc4be286e539c71f0d1c0b0e1795ae7428a3887f36b79e9c76401a5dd460f45b9d8277e04c7c1e615fb33d0fbc444421f3fd0bff4e045d790610aaa2b62945e4b398024c75680b5e12235c35f5b23ddd99454fe527acad6d08fb37c35d9ecc0a8b10e2c31fac786666eb2ad499ddb7d06c7526fb1c5412f6a0df003410e69b81fe523057b6b73cdecf0e5bc4d3b87757889fe49dbdb3ec79c7eb3a868480fc87528e80400de837cccd4a6345508386ada1833f57a20c56e973569bc7821088d343e80009b7b35390975323d24e764aa6c90d3dd5fdec08ed363dc9ab57de949282994cd3858f829c7e5e9a745261383db27c9c53e9e98e109fda6cbb88649ba40b5067470d73b7471d406e5ea8041f9fa25f5b6c919aef84f7595511141e9f090ee103b20a13b22c9a88348ed6d284c0d7a58326e0c4c9626d9a5390bae2be199b201ea136a9aac76e6125db9bf58f61e6a46f8145a9df1305415989435f51529da03f09a67e3629e6f6cb6b70407d9d848f554f1a7e63602e678e62d3b41b4bf4ddda713ed2c291536d8cc12a16bde144ef56acc17778b1aa8eeeeeb60c781365b615be4435c7158d926351cdb46b89fa82acb384c7318dcb2e51db8bdb223aff2c8f36d9e6b1135ad18f7e0b9d91a76972c3140f8e21dc71422de12a4f5d08624bdaeb983619a5ff82cf788c6b8a5fbf0f78e61ae4058d6e03a3d5130646dfc13686e356a1325434caac94ced659529181561fee7ce4f7e1e7945f119ad8474ea6b00257ceb7af2d9b3f9ad5782cd986f1b097d61bf26a6c48c3ab597e4678d609f3050eec9f3bbea1bc67314407521950526e6d71e34e35392067ac84b66badc82a54bb0dc8ed2f1050711ef2d47af5252075c0441aad6900539fcc649c1b1ffc70a1cc39e0c2136c764ba718d50f4800dc29769c4bc9a2fd0f43eb6ffb717a473ccb14ccd58bd506c4e4a0f4ea1158b59b3d6bf1a2d010c456c1f099bff69add46cc60fd2d9779f603ebb943ab8eb02627ac8aebdd52f25b069f64a61e90fa9ac979cb4c6cf0ebcd070099a1a6e6a747e8989e84afe090390953f988f2dcee405086ce51b1d2d8d249f45899b4e862008d28efad8aa5abd0912fa456aa9d3a918a0dd3420d7c4b04b9e3d65c41a1548b7caeef5fbcededf64697786a0bae73d2c5352658b871c806bd150c91bbf8f4735dddee9cfd3e152b5d44cbcce912a2809760e225b9018fa498c86ccb2359cb0834bcefab92c0468522648fbefbe25cf8d82b897371b5369e8f2972502574c0a3235066969c4d5d67fc312d6631702f66a113d22063ba2ac7d9ab387ad1e115e9c98275f3e0dacd2e8f0843f24687b297bf42bca11b89c6db2fc7026d364486ef2d614bc45d5cff0758d69fd48ea06b8a97667e4d7d30bf7f1c30b62287637f50468bf144fd177fdabcbd0d12b50c9cbd052dcd66993c72f48bd6086412ed5f9af3d44dffdf7c012aadd5cf7bd3b314f236660fa1c0e4773a4e9ccc36fd130ffda59a9bf41f7fbf79e5e3333365a3ed2e7714e50805bc70bc6fd20203cacbbeecb8e01a2ce626756cdbd01c53717c2e7b56b47e21f13209c2bf2b1b251e7a93f8a085dcc61d9ae82303a962441372ff7c0b8b8ba75bbf5b861ff7ddbc9781d40c90ae467bdeddfdf949e9a8b8c9fb7db3a9323d05d15bef19ce2e7634b84ac082d50e84b66f99f34b2f852fefe67faa403e848f3de110eb1d9faefa176c3cacd20c7f87d74e858a1a7bfc2c9e895541f691f99a2b8771c8755300ee74e3d6a048b30d02ca16202ecfc207a0b29302aabc1c5b57c7d0d31d43be5cb1f7230dc238fb701e7037aa00c9b57c6fc85baccaa56754d27b975872051566187b0983d93b9ec052edf3b33f7ddab343eac6f7aed97771e708e40a4cc6797f85d91a0debd5c6169895e895f67a10685af5e0b80b0e728731cbffbff8be603469d03bd47dbca4456108c79c029af16482c5c2590c1e0673c7e943699ea107d906a3e667fe7b2afaeb489548b6a11d9862e86a0b549a42b607ffeda6e3ba0f567b63b0be6edb9098cf3a44e6864c5e99fa5f475acb57e2b7343eb7fe3e8c139b515348b188defd2d3021fd27950d822f6df5f9c93584fd95f3f88c85231943ed4d511249f96447f7903779e4d8c4a680661fe5133d415b862e668441e8077bfb827293a9eb733e914f37a19e01ad4b014ef87ed5a5817ab8123af9fd863090b8e9a50ce29cf706b2182fd79660cbdbb53ba71b750e71a21d0ed01db3335cad91d5cb4d4648f46468b6e51f63e4088386913ae6b6cbf103947c32d25a8a825118cd6ce23f53ffe3c087114700e9a5932faf3d844fc6b323b3e722ed3ed75037bd9a7fd9d256b2b9a168e66802e284853a0d6b47d39675900f02f005050425731f9c2cb329f70d7a5ce2ee256212bf8b2ba9ece0df39c58f0fbac06c4da946787abf19dadb536bddbf7e51d89f22413575e064c6482d936a89d48be159aeb5055feb0577ced6c5334411d1d58a7e6d02eca6164d90fda39685fd619269fea7f21db51f6aa6961250e03c9e00788c178dabeb68f13dea29f8cdcf30478dbca15c4519bb342ba8b201019061bf8317022dbc5673fb4ed92ef1a1dea0a1a00cb3cbca291f7ebcbec27ea5e824f04b82f5644d4368cdf8026550bc2f86b83da6a265357eb548a9eec6622204b3dcd22440fec0e12819ade4ba53b53b1e6ab906fe0cacabb9c15e8b657475a0dad62dbcb1037aa8617787abce24a0aa4cf1b5c85c030a14277832a95d8b29a4ea86fb80148ece147ce4bf386995ac28e1ad1e2072f3f4fce5c05d9bdd0af118815d6ee89aabfa3f8173e6fa59dfa4a8c1ba7641291b3c18c6ccc4c3588d56d169d397facb4e67485610cc68197b3a43fe78b9458dc47e5057d5bc6b8e3b65bf414818b65d41ed7cfd7a35fe79c9851ef39c3e059fb3dffe331a791ce75728efcd58dd9b3ed1c93b128469afa648f4f91de6e39d5bef7a0e69bdf5b2202682d857847a64b33432ea0f33bbfd1948ad0b6c66d853fef1e6c0d712b86c40f79ff4d125baebf2a4b32dfc8bed2a697f745cfeb16303b4f8e866ee0bb6a5eb6c6ce513b5cb84e2b44854c72ed0cf2e838245be8d098a6943d845f5a8c07c1036da86cab0d5be4ce29545fade4323acf2085b7645107dd12d5b3af7bb37be1b291cbd6fe297c4b4a2a23280358711be91f21305c035bf1f57467a1853c999b3fb478b11c49cfac66429a76099633a54689047d66fd8bd6eebea94fc8007d9e2765e2969608a78d0b96d6b30360e81fb9df5262c8ff15f2fd7000756d8cda1db3847d6f793bf803b159344c57b480c87702cb3d1260692a19ebdceb2e05a2fe2eb5ac5cfa76551a04795915bfaba9849a623e46ac1832157d0ea5255b5cacd4efa844b0ce5f2f0e1a9dc4fb115fce2640ec6d03c5fe15b4837bd6e6127349f2b6b0fd61c82c96531714f5b623ce4e4978c4a0c86b3c17f50acdd67d283ec934ed36ba7360a10ffeeb7864113eeaa25cccc66613e0757782381614b8da3cd0a85cef7bc384969517c920e8454a5a0f112d1653b2828e895d0614e5bf4dec0ec863432cce9337ce7c29affa7f29fff97bd54a6947cc68df8fed17850209242c1c67d0d7aced2efec4b3c006678bcb8716e8e9e40d78781fd6cc5b5522b8ed2ec8cecb677849b778c0a2a17817a3dd2278080e109906dd4e99b772d5911893fa09ade4296876921d1e009e714df7e4973ab1d2e593d88ecf2151e97ec66176549d3af66652c8377e162454ce7cc8ab34397d31978e84aea92a3c0a8106a2a31e33a8dfe942819fa1f2c1272d0f3cbd7dae820642cbc00202455ab7fb81857ef050a1965a291001874b38397ed9a8e8106dcfcdfd80d0f5d0ef0d5775e53cc5aeb1d6bc13886f8f3491cd6af5dd77ace3689fa2bf56e9b4d1e4964f8fd8f0a4a8b5d7fb678f0f3adcb4a19b5168ac5aeee6f087af15af3bde52a9be0f550b21b10ce98da70445284d9db9416732e63b6efb3ced984c0df50c11aa677f822af7ad39b8b4c0d236e4b36a00ff73587b39f917d7effbb37b95a96e350a430d544d68623c80bf2cd2d689b4dc41e8ef374c393092a2619055f268fbdcb9de494e6582be90a4798bac801bcac8389c823759860e7c9d692f41ee2a6b9624da3c09a2c8e7cdeaa100ba8ca25a737046d8bb237b9546641cfbb2eac9bbee9e125b14dfabac642e634d32151c06ceb3ddbb3d3f038ab2efdd063152270449ed5eca2655cd0016147ebbd00003eb8cd25297350afbffae43cfd9867543b81da4510850b1afaa199d0477837017e9098bf5b3973efe218a88b3d2bb172fe77278088997758fdc1dbb0b1fb6af2ab9db1ddf3e3fbd8e8dd35f918779ccba75b3cdfa317fc6e3cbeaa8b11ce2a30cc53292bcb9dc2a18ca400c674360c041c97ee6aec1448a025c6b04ae9efb3a01d31e3f897cfd5dc94dac95c88b95a26676cc6153e203535891116a5f4ebf54c71cbbe3215a04c57c7ba874a1e203bc66d8161d5b556f661244d9d405a2e6baaedd0d0e4c7e093c2ac0e5ee83b7ddf91669dd59016f7cb53d19896fcc838dc008da4a5fdc0a4fac1a6d7f49b24bcc01467df04d8a3f3181cc4e811942a53daf784b59186a17756a8f3a41ad93035a893a4ff60dd8f54a533e94cf87864169287804df3aa38dc5ce6021a06c58d48985c562a0f51d8b32879f9fb7d4a1d3d442626810f151b161b7e35f9a0b3bec05979e381140f31c03ee6f5549e6e7f116be5e87e0a9ab71ee632f837e9a0f9ad1b4979304c26bad6e84eff0b5b79b667e3d74e354d04f5b2c237102e41a1a4dcac99cbb911d9484aebe6ab2cb539a1db3e3302fb833a44a2d725e858ea9a65d43bb7661842b655c51a1ff25207956e8c6c71667c79975d69f688dfa34c59771488028e3d7500ba0cb71ae5751a51b568e67bdf2abb63838aba5e5cfbbeaf02285f6cbe58428a92a6fc25abb01f8d55ecbd7cc0ea69cdfb188b79048dbea488493681b0e70234463ca3e425d24e2ae4d800ce3adb04ce69428b5f884f8dc83392c22e456a2e195b86d717ac45003a99ae9a59c94167eb04aba3612528f94dad3360b46bc456fbb78072eb7f96418c71bec09831b0a63e83816ffde0d9909c06e765a666c2c41b20c339e0d39107311830ae9ad912f0a85f2ec5ca66a79798a568dae14f76b6d59e6c0bc0f9ebdff29c0fce58367c9705bd4323d3c3e125cdb13da6e58f3fdb2751401014e393e3fc688f04080a90430e531767a7c4f3187ccb7b90880955e766aba6091c4e8fed36482bb5a63372350dd08fe84bf5afd1a30a0f8f4de7a640fa84b9c0447073a0b39bf875d0377c8a572adefec3e033fb3dad91b22bfe22c01f23f27ab0c6a1ce19d2f4f4235281cbca15dafe50f383ba89a8c46a666b106c1ac534955df71f4c560010934fd3eb68eebd55487defa1e024f75ac30139cd190bde1dc8684936bc23a1882ae469fc4af8730d29658f996f71c219526497918e359228b55849d952f4b2996fe5f45a6cfdf87da93bfada579479b18d05c4e964c85b88a7bfc6e4f2b5d6e98e00635e8bd2ebb9eb40b99a9e9db2f688b2d94b8cc8c5fb2a1928624fa5df1c228e6499d992453772084bcd33dda984d97e3857b6fee43c6666b3206ccfe3af52debea4ee060c6edd194b90309213f5c4805f454c7e57bc759377aae9727e484391486be0849c5cdfa99c5a0d0687d6afdce97a32e01d45fef015e7c869ca190219a778b91d881a7b595313fb462e5bf78260c78285d6ccf5e4c50ed56ff28e3f49912773f0a58093f259b5cf4e7f607c51a81576fa95b97bf32d0e2e3511b5d784eba29a15246a97ccf608db456cd70adacc6c31913416f24f38dec3544ac2e88c409b5ff7771d873ea8d7a1868775c8b5502273c784cf945680fb14f143140b56462cd46874ffeacde7bf329fe8369df9c4b95a42535ea56ad6fa260f5c738eb9627f890f4a34f80bf3b8fe568d44c3895029b5f9557f17469a53fe4c0d581eb29029ff162ca906cd0e4bb81138be91a254752bf849232ed7042a82cda1e14dfbfdf74a09c17a9039749c789ab0242ed2d0249231c4ad70c23c805676968bdeb96c2d8886f784ecc3e42e6493e45aa20b6e8ede65c49136c9e9414a4371e3012bf596d55315be17ea9396b1df7f82db27f0d121f8aa66c40365fa686a46f430b4cd336da0d9937d5c26284bdcc6c4e0d5a6acc1be089e1a5d6ec422ad3961fb5c5c9836466c3366e6d3f2686b19b529549cacb6252b0d7a7f5df42ea2961ac59ba0b911311ccc4d83f8611f0c4b071544236037b2863d673303a4e3d428131b07f60eb2cd507dc43503456ce829aed8254bf0b51b38008d42e445acb0effc2ab7e4bc26ad76ffba1220f2e878fe9b5de39bf4f25a9ed468cdb100008ffac6bef401df4817b23463e771a3c834c32993274689c01004eb94b89bc44257b7d2b3936caab6d86937b5bb8f705d00fb6f091711222b6dc25eeaa0e350fe484337396162c86bf7d3a1ab82591ad35d393664617041142c0f8b528e947c092f28c3142493d056bd548910615e7300f041f5d01a2f00138ae5d7849244ef9215f5c9dd874e60ca4ad883f86e71690a510831e35c24de1e0d1261172bf4a8625af958febb7b109c5ca5bfffd4342c43ad02136c6eb117b4a6ea98c07a91279731c1228b01e6be755c1c1d095d3cdfe950ac32eee77327a0e7e342ccfc13c69ab6ab113b18c1abe72d39c03e351986cb3326b8b17ada5884aa7d0a553b0d35e32b8c09f1a4106f5d675a88a1508de4a0e9c598c082ae5b229b75579e39e297b225a852e3f6a7d0990a45fdf68771991acf9b7a5c04bc21a40c57817d500e8ebc6b5919219a4110395817c92bf9eb9c623606d4d98ed68dc0b51a0278b0addce8753f86316158bb4bd6a7a0c4c72b0d17b9545695e54826021a6ac44b4de1b4ea977b20af3c47b8860b0ed29a68c1a883777097d54b162cc58edc0f4de1afbbad7c340a5cd9f2f93133cb2a4babc2a688e2ddd580ef8d9d0846c269c265ce9d978aa233c73aa11eb78d3a67f4e7a3dd035ef5a1f832ada87c7dfa377b77215f8c23b1a78e4a7faa6d0c1a4a28a0ef7b32b36bd566d8c478d0133ab43f9c2a4829624eec535234eb89a177ca8d4e9d2d422f33a24d15044822e4a4c1bca5f470b8c8fde09fb69160297218398da27f4e80dbd480782ee75cecd20ad23fdbcc1d4a0acbc63241c1e2cf1a0b12949e42f707ba06b6fdbd8f336bd72d7f96ddf9ec2b5cfcc4c8da6e1ea573e97eeaea537511ac9fd2ae78eb18cb50c13b595f8b6d65ce8c08e9028fffff6b512080dbbd3fb5e5068538c05f73254969f9727db9bff0c6aeaaf83713812499308792a7fc8318e6b2996bcd1b072641be1eb8e028cbd6b0a5f1fa13bfe35b5cd0d2ca21d9cf8ed97f724ef73ab5a99d65befa38d636f2f827d229479377f25501f3a6ece12cb095549503b2299db7806d32751d4851d62b0c6a91e2e961d475d33a8874c96df52c75bb5a0569e892743937451f75345e0351bfa334d37aa43f01ad1ff984dec164faebc713de31470db5e536a0681a042ced0f9839d9ce89259349075961985171c27c410c99458d4c25614ea1d4252293c4f85b0d2ded9ac560cfd024c199d5f0f4bd47763690ba1bca88b8cc81059bb9fe82c955488523114db8c2caf8a63c0049e90ca524330b57edcf718f6a7aab0efe282079d198cc3c1294f35d1a1bf5f69a8838cfc5d4363f9ca9383f83e4f9576de3fac48866ddcde282e5e4ee3f852a063bd6423ac1fdc6201b1facd6c36609fa2faf96afc1c0b76fff27bce059ad6390fd1e3f735806ce654ed555a78ea8e59fb16ff5ac5ad183aab9de37c3d033b3018d591e7ff1a896de969f561260f797603df5fc232076ccdc2e1fe9fc789253a54af151dd50f89e777c2541591101720c893647bd4b3e6257de85251c9bcd700154e85db2a9e2c4d9d2e531a18bfaa05d16ce75f823e60416b3afebce16555536120d5f554fd13e861d74c4947a62d2d09473d8d75f03d354572b371b02e16f3976b1b0b235582ee38d938fe843b107c77c2acd88f34e1669816eb3867134b1c5fce5afad3c70f9bca972ed494577f2ba6362a6ee6b4720bd86938bb49490982a1b5ce6dd54b79f093ce27051530e1233f03d6641392d4fe7a1f7dcec8ba86d8f32f00f0ad50a29b1e17de07bd0205c0d893532c198f23656f7f5d178c0745b7e0b7e8afdd29c8fa1639a06039980d9a5fba11801db4e7868a9b77925a03a770aae3430b1ccbddb8bd766f51fef71ba25cf9184c9cfa6f9921d69066d09a656080f3c5fe475ccab94cdfccd76f3c7dada9236d1be861eb5fe6247ae9f97b7705bb71c375e8b98203c5bd224202c1aa714da47e0daf98fd3eca617f9a255df5dbe98a7520a1e6db9b88af893521f2ecf7fd2b08a7f3c5aeb77ebe6f52739b473840889c41315407477b82242d9a805f9aa200a129c4701d1c88ccd34871f356caf02da9937a88612a9755315914f4e8e1bf471a46c00650457cc06db168e5457fb3f9662994d901a1f58306156979aa795afacc1a7d6111cbea53e97fb71c7bbe44558fb06f8d78ee08e3678b5d218e13f79cf06f1da9f7e128647884589c487147b3edbdaffa16f9388568d3c8caa34a6b944e4f171842cdbb293474fcd5201b7440e05ddcf9e0b476773119516ef45077705e8bab5f877657205bf9eaaa7c86734b1b6c3661dfd4b9eb8590f962e17ad51b44058d558744e5b44cf9db280bff1062b2431d298064f11e7700ba4c8ece6f4df659d4880c4983db0152f1f903023672f6234620134bd5d1d888022da128a527d82e8fa1a562827a4f1592efe3b0bb78060626e8688ef3d5162afe9f1060123dbb1f93b7bdb6ad4ad6e1772bf8705cca424d9c42e4992eb5bef1ec7961bd4260d1e55e863fa9c8e0cb6d28b495fa37b5f59fd18cfcec6319288dd7363821e47ec46664e1994157319eb0d466b42fd9b5fac5ba979a9baf4f699dc539bf77852e18014074f88108b654219e4f9396696c94eb9fb9b360e59920f187029608bed76d09dd006f4033d384cd109726d51850202ba564599dbff7808591f834cc4084db29111de86a70217defa490e39c6e281650d15b1e44bb55164be0f6da58e838bf5f4d7cc2a23b818557ab1fad0fb2253c4da6af41591940b2608f6fa6bc25939ede95317ff96050bbc1f389235caa78adc0d801a56b2fb4cc41e73d5131552985b5af241722e0637f3b88e46b09ea875e5cf66f534666368ff8e46413e5ab557236134afa63478e18328d33b1a235deb2034955cdbb2bfd0e55fd885f380ae8efca1feea985a946519a712df1384f9e024efec61c30a6989aa3b5bd486366f3fccadc0add175c1cf0d2730ab97370eb47bcda4226ee140edbcd9b38b8ee913587125cb185adb4df18e80df2b0ea6e3e87dc8755fe6823ab5ee1feaebb1e6208cf3dd5ad5581f2388be92", 0x2000, &(0x7f0000004800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000004640)={0x18, 0x0, 0x9, {0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00') (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d032, 0xffffffffffffffff, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc)) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
read$FUSE(r5, &(0x7f0000000380)={0x2020}, 0x2020) (async)
write$FUSE_INIT(r3, &(0x7f00000046c0)={0x50, 0x0, r4, {0x7, 0x9, 0x0, 0x403a1810, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100}}, 0x50)
llistxattr(&(0x7f0000002400)='./file0\x00', 0x0, 0x0)

455.490177ms ago: executing program 4 (id=778):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000040)=ANY=[@ANYBLOB="0800000002b0e8e8b9"], 0x14)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xd}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x12}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x78}, 0x1, 0x0, 0x0, 0x840}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r2 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x2004, 0x307}, &(0x7f0000000400)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0})
io_uring_enter(r2, 0x4913, 0x770e, 0x0, 0x0, 0x0)
r5 = fsopen(&(0x7f0000000140)='f2fs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000100)='test_dummy_encryption', &(0x7f0000000240)='v2\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000000)='test_dummy_encryption', &(0x7f0000000080)='v2\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)
r6 = socket$inet(0xa, 0xa, 0xee)
connect$inet(r6, &(0x7f0000004cc0)={0x2, 0x2, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r6, 0xfffffffd)
cachestat(r5, &(0x7f00000001c0)={0x5316, 0x33}, &(0x7f0000000200), 0x0)
socket$inet(0xa, 0x801, 0x84)
r7 = socket$netlink(0x10, 0x3, 0x4)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)

381.419007ms ago: executing program 1 (id=779):
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x401, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x1, &(0x7f0000000300), 0x4)
pipe(&(0x7f0000000040))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x101000, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c0000007f000001000000000000000000000000000000000000000092010000000000000600000000000000ffff0000000000001c250800000000000200000000000000f8ffffffffffffff0000000000000000ffffffffffffffff00000000000000001f00000000000000feffffffffffffff02000000fcffffff000000002abd700005350000020001002000000000000000480003006465666c6174650000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008001f0002000000"], 0x140}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3801000018000100feffffff0001000000000000000000000000ffffe0000002fc0100000000000000000000000000010001071c4e230005000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c000000ac14142500000000000000000000000000000000000000009201000000000000a39b000000000000ffff0000000000001c250800000000000500000000000000fcffffffffffffff0000000000000000ffffffffffffffff00000000000000001f00000000000000fefffffffffffffffafffffffcffffff00000000800000000035000002"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000040)={0x4, "abacd211119ca94c63377526aeb5ab2c7b9ca5fa07558139ede6dc06270ee042", <r5=>0xffffffffffffffff})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000000)={0x9, "b546baa5cc590d3033de259c2996817bb959ebab028deda501009bdeffaf4025", <r6=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r5, 0xc0303e03, &(0x7f00000001c0)={"0080bced01eb0100000000000000000700000000000000c900", r6})
close_range(r0, 0xffffffffffffffff, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x2, 0x7, @mcast1, 0x9}, 0x1c)
r7 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f00000001c0)={[0x402, 0x6, 0x8000000000000, 0xe, 0x10003, 0x41, 0x400200cc0, 0xffd, 0x8008, 0x6, 0x100000001, 0xfffffffffffffffe, 0x3, 0x0, 0x6b, 0x7ff], 0xeeee8000, 0x211dc0})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
r10 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
pwrite64(r10, &(0x7f00000008c0)='/', 0x1, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r10, 0x0)
lseek(r10, 0x0, 0x4)
sendfile(r10, r10, &(0x7f00000001c0), 0x7fa)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
mount$bpf(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180), 0x400, &(0x7f0000000080)=ANY=[])

381.013758ms ago: executing program 4 (id=780):
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14)
syz_init_net_socket$ax25(0x3, 0x1, 0xcc)
recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r2, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x7ffffffe, 0x4}, {}, {}, @result={0x1f00}}], 0x1c)

220.923587ms ago: executing program 4 (id=781):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000100)={&(0x7f0000000080)=[0x0], 0x1, 0x0, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB(r1, 0xc01c64ad, &(0x7f0000000180)={r2})
syz_emit_ethernet(0x7a, &(0x7f0000000680)={@broadcast, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "76db40", 0x44, 0x2f, 0x0, @dev={0xfe, 0x80, '\x00', 0x21}, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}, {}, {}, {0x8, 0x88be, 0x4}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4, 0x10}, 0x2, {0x8, 0x1}}}}}}}}}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r3, 0x29, 0x1d, &(0x7f0000000000)={@private2={0xfc, 0x2, '\x00', 0x1}}, 0x14)
syz_clone3(&(0x7f0000000500)={0x81103280, &(0x7f00000000c0)=<r4=>0xffffffffffffffff, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_getfd(r4, r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCOUTQNSD(r5, 0x894b, &(0x7f0000000840))
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000000))

220.418474ms ago: executing program 4 (id=782):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006840)={0x2020, 0x0, <r2=>0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
syz_fuse_handle_req(r1, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r1, &(0x7f0000004200)={0x50, 0x0, r2, {0x7, 0x2b, 0x200, 0x10, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x80, 0x8}}, 0x50)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9, {0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x10000000000000, 0x0, 0x4, 0x1, 0x0, 0x0, r3, r4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x2, {0x5, 0x1000000, 0x5, 0x81, 0x0, 0x0, {0x8000000000000, 0x200000000000, 0x1, 0x0, 0x0, 0x80000, 0x0, 0x0, 0xfffffffd, 0xa000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x10000000000000)

149.911486ms ago: executing program 1 (id=783):
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r1, 0x200, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8dee}]}, 0x24}, 0x1, 0x0, 0x0, 0x41}, 0x200000c0) (async)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r1, 0x200, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8dee}]}, 0x24}, 0x1, 0x0, 0x0, 0x41}, 0x200000c0)
r2 = socket(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r2, 0x29, 0xd0, &(0x7f0000000000)=0x43, 0x4)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000001c0), r0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r6=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r7=>0x0})
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x6, 0x0, 0x1, 0x35, '\x00', r6, 0xffffffffffffffff, 0x5, 0x4}, 0x50)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r9, 0x0)
ioctl$KVM_X86_SETUP_MCE(r9, 0x4008ae9c, &(0x7f0000000000)={0x4, 0x41624800ab11328e, 0x4})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xfffffffa, '\x00', r6, 0xffffffffffffffff, 0x2, 0x1, 0x4}, 0x50) (async)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xfffffffa, '\x00', r6, 0xffffffffffffffff, 0x2, 0x1, 0x4}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x14, &(0x7f0000000500)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6cde, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [@btf_id={0x18, 0x7, 0x3, 0x0, 0x1}, @generic={0x8e, 0x1, 0xa, 0x0, 0x9}, @map_fd={0x18, 0xa}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000480)='syzkaller\x00', 0xb1baec4, 0x0, &(0x7f00000005c0), 0x41100, 0x3, '\x00', r6, 0x25, r9, 0x8, &(0x7f0000000600)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0xb, 0x0, 0x3}, 0x10, 0x0, 0x0, 0xa, &(0x7f0000000700)=[r10], &(0x7f00000007c0)=[{0x1, 0x1, 0xf, 0x8}, {0x3, 0x4, 0x5, 0x5}, {0x3, 0x5, 0x4, 0xa}, {0x3, 0x2, 0xb, 0xc}, {0x2, 0x4, 0x7, 0x1}, {0x3, 0x4, 0x10, 0xa}, {0x4, 0x3, 0xa, 0x4}, {0x2, 0x3, 0x0, 0x5}, {0x4, 0x4, 0xe, 0x6}, {0x4, 0x3, 0xb, 0xb}], 0x10, 0x5}, 0x94)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x24, r5, 0x331, 0x2000, 0x40000000, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}]}, 0x24}, 0x1, 0x0, 0x0, 0x400400c}, 0x0) (async)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x24, r5, 0x331, 0x2000, 0x40000000, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}]}, 0x24}, 0x1, 0x0, 0x0, 0x400400c}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r3, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48001}, 0x1)
r11 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$inet_int(r11, 0x0, 0x13, 0x0, &(0x7f0000000040))
socket(0x10, 0x3, 0x0) (async)
r12 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r13=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000000)={'lo\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000000)={'lo\x00', <r14=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@newqdisc={0x34, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfb, {0x60, 0x0, 0x0, r14, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4814) (async)
sendmsg$nl_route_sched(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@newqdisc={0x34, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfb, {0x60, 0x0, 0x0, r14, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4814)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x4040881}, 0x40040080) (async)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x4040881}, 0x40040080)

101.74518ms ago: executing program 1 (id=784):
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
chroot(&(0x7f0000000000)='./bus\x00')
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_AUTHENTICATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x28, r0, 0x800, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x7c}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x20000}, 0x8000) (async)
sendmsg$NL80211_CMD_AUTHENTICATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x28, r0, 0x800, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x7c}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x20000}, 0x8000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="48040000", @ANYRES16=r3, @ANYBLOB="01e5c300000000fb04003b1c210008000300", @ANYRES32=r2, @ANYBLOB="2c0433005000de295b3acba52ee4080211000001505050505050"], 0x448}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, 0x0, 0x0) (async)
sendmsg$nl_generic(r5, 0x0, 0x0)
syz_genetlink_get_family_id$SEG6(0x0, r5) (async)
syz_genetlink_get_family_id$SEG6(0x0, r5)
getcwd(&(0x7f00000005c0)=""/181, 0xb5)

101.586866ms ago: executing program 1 (id=785):
r0 = syz_open_dev$vbi(&(0x7f0000000200), 0x1, 0x2)
ppoll(&(0x7f00000002c0)=[{r0, 0x4}, {r0, 0x204}], 0x2, 0x0, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x5, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000240)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x40000)

8.840413ms ago: executing program 1 (id=786):
socket(0x10, 0x3, 0x0) (async)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x2a, 0x2, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_SET_LEDBIT(r2, 0x40045569, 0x7) (async)
ioctl$UI_SET_LEDBIT(r2, 0x40045569, 0x7)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x11)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000100)={{0x100}, 'syz1\x00'})
ioctl$UI_DEV_CREATE(r2, 0x5501) (async)
ioctl$UI_DEV_CREATE(r2, 0x5501)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
close_range(r3, 0xffffffffffffffff, 0x0) (async)
close_range(r3, 0xffffffffffffffff, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) (async)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f0000001040)={0xf, {"a2e3ad21ed0d09f91b3d090987f70e06d038e7ff7fc6e5539b0d440e8b089b3f380068090890e0878f0e1ac6e7049b334d959b669a240d5b67f3988f7ef319520120ffe8d178708c523c921b1b5b5b070d074a0936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006) (async)
write$UHID_INPUT(r6, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)
prctl$PR_SVE_SET_VL(0x32, 0x235b6)
prctl$PR_SET_THP_DISABLE(0x41, 0x3)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
lchown(&(0x7f0000000080)='./file0\x00', 0xee00, 0xee00)
socket$alg(0x26, 0x5, 0x0) (async)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(camellia-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000005ac0)="75bf3431aca2112b9e525e15ad000000", 0x18)
prctl$PR_SET_THP_DISABLE(0x42, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r6, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x140a, 0x100, 0x70bd2a, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040803}, 0x4000804)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newneigh={0x30, 0x1c, 0x401, 0x0, 0x0, {0x2, 0x0, 0x0, r4, 0x0, 0x44}, [@NDA_DST_MAC={0xa, 0x1, @link_local}, @NDA_FLAGS_EXT={0x8, 0xf, 0x1}]}, 0x30}}, 0x4000) (async)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newneigh={0x30, 0x1c, 0x401, 0x0, 0x0, {0x2, 0x0, 0x0, r4, 0x0, 0x44}, [@NDA_DST_MAC={0xa, 0x1, @link_local}, @NDA_FLAGS_EXT={0x8, 0xf, 0x1}]}, 0x30}}, 0x4000)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101080)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r8, 0xc0105303, &(0x7f0000000040)={0xe, 0x0, 0x7})
prctl$PR_SVE_SET_VL(0x32, 0x35b2e)

184.016µs ago: executing program 4 (id=787):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001500010300000000000000000a00000008000200", @ANYRES32=r0], 0x1c}, 0x1, 0x0, 0x0, 0x4008085}, 0x4000000)
r1 = syz_open_dev$radio(&(0x7f0000000080), 0x2, 0x2)
fsetxattr$trusted_overlay_origin(r1, &(0x7f00000000c0), &(0x7f0000000180), 0x2, 0x1)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="133bec15cb00000100000000000080000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)

0s ago: executing program 4 (id=788):
r0 = socket$inet6(0xa, 0x3, 0x5) (async)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000) (async, rerun: 64)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 64)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, 0x1, 0x4, 0x5, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x6}, @NFULA_CFG_CMD={0x5, 0x1, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x8040}, 0x800)
ioctl$UFFDIO_CONTINUE(0xffffffffffffffff, 0xc020aa08, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff) (rerun: 64)
getsockopt$inet6_buf(r0, 0x29, 0xd3, &(0x7f0000000040)=""/140, &(0x7f0000000100)=0x8c) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000600)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7040010000000f00000008000300", @ANYRES32=r5, @ANYBLOB="05002e"], 0x24}}, 0x18)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) (async)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000340)=ANY=[@ANYRESHEX]) (async, rerun: 32)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2) (async, rerun: 32)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001640)=ANY=[@ANYBLOB="54000000090601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ffffffff0500070084000000060004404e2200000c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

kernel console output (not intermixed with test programs):

ed allmulticast mode
[   53.512331][ T5928] bridge_slave_0: entered promiscuous mode
[   53.518006][ T5928] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.522596][ T5928] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.525604][ T5928] bridge_slave_1: entered allmulticast mode
[   53.529503][ T5928] bridge_slave_1: entered promiscuous mode
[   53.591567][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.595065][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.598066][ T5936] bridge_slave_0: entered allmulticast mode
[   53.602034][ T5936] bridge_slave_0: entered promiscuous mode
[   53.624498][ T5928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.628853][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.633374][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.636371][ T5936] bridge_slave_1: entered allmulticast mode
[   53.640969][ T5936] bridge_slave_1: entered promiscuous mode
[   53.682454][ T5928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.750065][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.802545][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.812941][ T5928] team0: Port device team_slave_0 added
[   53.815511][ T5932] chnl_net:caif_netlink_parms(): no params data found
[   53.873819][ T5928] team0: Port device team_slave_1 added
[   53.883098][ T5936] team0: Port device team_slave_0 added
[   53.960500][ T5936] team0: Port device team_slave_1 added
[   53.963395][ T5940] chnl_net:caif_netlink_parms(): no params data found
[   53.996040][ T5928] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.999118][ T5928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.009867][ T5928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.067193][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.070481][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.081475][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.086763][ T5928] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.089385][ T5928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.098009][ T5928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.118704][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.121601][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.132136][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.270149][ T5928] hsr_slave_0: entered promiscuous mode
[   54.272984][ T5928] hsr_slave_1: entered promiscuous mode
[   54.310448][ T5932] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.313337][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.315966][ T5932] bridge_slave_0: entered allmulticast mode
[   54.321567][ T5932] bridge_slave_0: entered promiscuous mode
[   54.400941][ T5936] hsr_slave_0: entered promiscuous mode
[   54.404089][ T5936] hsr_slave_1: entered promiscuous mode
[   54.406426][ T5936] debugfs: 'hsr0' already exists in 'hsr'
[   54.408428][ T5936] Cannot create hsr debugfs directory
[   54.411402][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.413846][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.416006][ T5932] bridge_slave_1: entered allmulticast mode
[   54.418429][ T5932] bridge_slave_1: entered promiscuous mode
[   54.420996][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.423833][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.426757][ T5940] bridge_slave_0: entered allmulticast mode
[   54.430799][ T5940] bridge_slave_0: entered promiscuous mode
[   54.495493][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.498507][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.502277][ T5940] bridge_slave_1: entered allmulticast mode
[   54.506140][ T5940] bridge_slave_1: entered promiscuous mode
[   54.594308][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.600319][ T5932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.624617][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.630345][ T5932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.751885][ T5940] team0: Port device team_slave_0 added
[   54.759880][ T5932] team0: Port device team_slave_0 added
[   54.767278][ T5940] team0: Port device team_slave_1 added
[   54.797469][ T5932] team0: Port device team_slave_1 added
[   54.887089][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.890090][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.900656][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.910775][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.913859][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.922096][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.935757][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.938683][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.949140][ T5932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.988593][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.990815][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.998406][ T5932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.049794][ T5939] Bluetooth: hci0: command tx timeout
[   55.050711][ T5935] Bluetooth: hci1: command tx timeout
[   55.050747][   T65] Bluetooth: hci2: command tx timeout
[   55.062075][ T5940] hsr_slave_0: entered promiscuous mode
[   55.064669][ T5940] hsr_slave_1: entered promiscuous mode
[   55.066713][ T5940] debugfs: 'hsr0' already exists in 'hsr'
[   55.068578][ T5940] Cannot create hsr debugfs directory
[   55.119800][ T5935] Bluetooth: hci3: command tx timeout
[   55.139517][ T5932] hsr_slave_0: entered promiscuous mode
[   55.142928][ T5932] hsr_slave_1: entered promiscuous mode
[   55.145865][ T5932] debugfs: 'hsr0' already exists in 'hsr'
[   55.148250][ T5932] Cannot create hsr debugfs directory
[   55.267773][ T5928] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   55.277335][ T5928] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   55.287725][ T5928] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   55.294582][ T5928] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   55.454696][ T5936] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.459582][ T5936] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.465280][ T5936] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   55.476493][ T5936] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   55.524606][ T5940] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   55.530285][ T5940] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   55.534776][ T5940] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.540107][ T5940] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.606463][ T5932] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   55.610911][ T5932] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   55.620524][ T5932] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   55.626617][ T5928] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.632392][ T5932] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   55.680490][ T5928] 8021q: adding VLAN 0 to HW filter on device team0
[   55.687859][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.714154][ T1056] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.717305][ T1056] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.725019][ T5936] 8021q: adding VLAN 0 to HW filter on device team0
[   55.736953][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.739890][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.744567][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.747441][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.765462][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.768229][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.820119][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.848138][ T5932] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.861609][ T5936] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.873054][ T5940] 8021q: adding VLAN 0 to HW filter on device team0
[   55.888073][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.890391][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.896872][   T40] audit: type=1400 audit(1762085806.339:89): avc:  denied  { sys_module } for  pid=5928 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   55.898789][ T5932] 8021q: adding VLAN 0 to HW filter on device team0
[   55.910260][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.912453][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.922760][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.924995][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.928264][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.930516][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.973957][ T5932] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.993513][ T5928] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.032180][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.056410][ T5928] veth0_vlan: entered promiscuous mode
[   56.072086][ T5928] veth1_vlan: entered promiscuous mode
[   56.090882][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.108073][ T5928] veth0_macvtap: entered promiscuous mode
[   56.115705][ T5928] veth1_macvtap: entered promiscuous mode
[   56.118575][ T5936] veth0_vlan: entered promiscuous mode
[   56.135129][ T5936] veth1_vlan: entered promiscuous mode
[   56.149634][ T5932] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.159443][ T5928] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.169939][ T5928] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.178384][ T5940] veth0_vlan: entered promiscuous mode
[   56.186185][ T5940] veth1_vlan: entered promiscuous mode
[   56.197384][   T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.201708][   T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.208141][   T60] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.211663][   T60] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.214833][ T5936] veth0_macvtap: entered promiscuous mode
[   56.223813][ T5936] veth1_macvtap: entered promiscuous mode
[   56.247660][ T5932] veth0_vlan: entered promiscuous mode
[   56.258828][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.270073][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.280395][ T5932] veth1_vlan: entered promiscuous mode
[   56.283468][   T60] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.287413][   T60] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.297471][ T5940] veth0_macvtap: entered promiscuous mode
[   56.302889][   T60] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.306510][   T60] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.325382][ T5940] veth1_macvtap: entered promiscuous mode
[   56.337663][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.343851][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.352598][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.366905][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.383252][ T5932] veth0_macvtap: entered promiscuous mode
[   56.387442][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.389945][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.394963][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.398792][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.410156][ T5932] veth1_macvtap: entered promiscuous mode
[   56.414317][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.432030][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.434731][ T5928] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   56.442539][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.445368][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.486206][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.488460][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.488583][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.493724][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.513633][ T6014] Zero length message leads to an empty skb
[   56.516921][ T1146] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.517445][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.521905][ T1146] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.523316][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.533171][ T1146] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.537737][ T1146] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.561622][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.564441][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.611857][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.615004][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.622426][ T6018] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=6018 comm=syz.1.2
[   56.628553][ T6018] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   56.639431][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.642077][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.644748][ T6024] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=45334 sclass=netlink_tcpdiag_socket pid=6024 comm=syz.0.1
[   56.704273][ T6030] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.708774][ T6030] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.745855][ T6037] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8'.
[   56.748849][ T6037] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8'.
[   56.768320][ T6039] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   56.944076][ T6077] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   56.975648][ T6081] netlink: 24 bytes leftover after parsing attributes in process `syz.0.19'.
[   56.990134][ T6081] netlink: 8 bytes leftover after parsing attributes in process `syz.0.19'.
[   57.127335][ T5935] Bluetooth: hci0: command tx timeout
[   57.129041][ T5939] Bluetooth: hci2: command tx timeout
[   57.129433][ T5935] Bluetooth: hci1: command tx timeout
[   57.155720][ T6110] process 'syz.1.27' launched './file0' with NULL argv: empty string added
[   57.209174][ T5935] Bluetooth: hci3: command tx timeout
[   57.254201][ T6118] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6118 comm=syz.1.31
[   57.438448][ T6133] Bluetooth: MGMT ver 1.23
[   57.447851][ T6120] 9pnet_virtio: no channels available for device 127.0.0.1
[   57.662972][   T40] kauditd_printk_skb: 101 callbacks suppressed
[   57.662987][   T40] audit: type=1400 audit(1762085808.109:191): avc:  denied  { ioctl } for  pid=6152 comm="syz.3.36" path="socket:[8964]" dev="sockfs" ino=8964 ioctlcmd=0x8907 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   57.677889][   T40] audit: type=1400 audit(1762085808.119:192): avc:  denied  { ioctl } for  pid=6152 comm="syz.3.36" path="/dev/vhost-vsock" dev="devtmpfs" ino=1301 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   57.725197][   T40] audit: type=1400 audit(1762085808.169:193): avc:  denied  { ioctl } for  pid=6155 comm="syz.3.37" path="socket:[7131]" dev="sockfs" ino=7131 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   57.737136][ T6156] ./bus: Can't lookup blockdev
[   57.746258][ T6156] Cannot find set identified by id 0 to match
[   57.762185][   T40] audit: type=1400 audit(1762085808.209:194): avc:  denied  { create } for  pid=6157 comm="syz.2.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   57.766618][ T6159] netlink: 182 bytes leftover after parsing attributes in process `syz.2.38'.
[   57.778139][   T40] audit: type=1400 audit(1762085808.209:195): avc:  denied  { write } for  pid=6157 comm="syz.2.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   57.786355][   T40] audit: type=1400 audit(1762085808.209:196): avc:  denied  { nlmsg_write } for  pid=6157 comm="syz.2.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   57.788688][ T6161] netlink: 88 bytes leftover after parsing attributes in process `syz.1.39'.
[   57.811752][   T40] audit: type=1400 audit(1762085808.249:197): avc:  denied  { read write } for  pid=6162 comm="syz.2.40" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   57.812435][ T1146] Bluetooth: hci4: Frame reassembly failed (-84)
[   57.821560][   T40] audit: type=1400 audit(1762085808.259:198): avc:  denied  { open } for  pid=6162 comm="syz.2.40" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   57.854970][   T40] audit: type=1400 audit(1762085808.299:199): avc:  denied  { mounton } for  pid=6165 comm="syz.3.41" path="/syzcgroup/unified/syz3" dev="cgroup2" ino=38 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[   57.861459][ T6166] hpfs: hpfs_map_sector(): read error
[   57.905306][ T6169] netlink: 4 bytes leftover after parsing attributes in process `syz.3.42'.
[   57.908603][ T6169] netlink: 12 bytes leftover after parsing attributes in process `syz.3.42'.
[   57.915787][   T40] audit: type=1400 audit(1762085808.359:200): avc:  denied  { write } for  pid=6168 comm="syz.3.42" name="virtual_nci" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   58.143653][ T6189] netlink: 'syz.3.49': attribute type 10 has an invalid length.
[   58.146420][ T6189] netlink: 40 bytes leftover after parsing attributes in process `syz.3.49'.
[   58.534263][ T6212] veth0: entered promiscuous mode
[   58.543006][ T6212] input: syz0 as /devices/virtual/input/input5
[   58.549977][ T6211] veth0: left promiscuous mode
[   58.801136][ T6223] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6223 comm=syz.2.60
[   58.843006][ T6225] netlink: 'syz.2.61': attribute type 11 has an invalid length.
[   58.889944][ T6227] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[   58.896723][ T6227] overlayfs: missing 'lowerdir'
[   59.199573][   T65] Bluetooth: hci2: command tx timeout
[   59.199582][ T5934] Bluetooth: hci0: command tx timeout
[   59.201919][ T5939] Bluetooth: hci1: command tx timeout
[   59.279221][ T5939] Bluetooth: hci3: command tx timeout
[   59.839104][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[   59.839255][ T5935] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   59.939113][ T6267] tty tty26: ldisc open failed (-12), clearing slot 25
[   59.956455][ T6263] syz.1.73 uses obsolete (PF_INET,SOCK_PACKET)
[   60.435490][ T6289] tmpfs: Bad value for 'mpol'
[   60.484989][ T6293] mmap: syz.3.81 (6293) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   60.485714][   T10] IPVS: starting estimator thread 0...
[   60.521578][ T6298] Cannot find add_set index 0 as target
[   60.521600][ T6297] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   60.528568][ T6297] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   60.575789][ T6301] hugetlbfs: Bad value for 'uid'
[   60.577412][ T6301] hugetlbfs: Bad value for 'uid'
[   60.579220][ T6294] IPVS: using max 43 ests per chain, 103200 per kthread
[   60.619787][ T6302] IPv6: addrconf: prefix option has invalid lifetime
[   60.934649][ T6310] netlink: 'syz.1.89': attribute type 5 has an invalid length.
[   60.969425][ T6310] netlink: 'syz.1.89': attribute type 5 has an invalid length.
[   61.027847][ T6312] lo speed is unknown, defaulting to 1000
[   61.031315][ T6312] lo speed is unknown, defaulting to 1000
[   61.040641][ T6312] lo speed is unknown, defaulting to 1000
[   61.047165][ T6312] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   61.056070][ T6312] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   61.057095][ T6324] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2571 sclass=netlink_route_socket pid=6324 comm=syz.2.94
[   61.073121][ T6326] =======================================================
[   61.073121][ T6326] WARNING: The mand mount option has been deprecated and
[   61.073121][ T6326]          and is ignored by this kernel. Remove the mand
[   61.073121][ T6326]          option from the mount to silence this warning.
[   61.073121][ T6326] =======================================================
[   61.075638][ T6312] lo speed is unknown, defaulting to 1000
[   61.088504][ T6326] devtmpfs: Cannot change global quota limit on remount
[   61.092413][ T6312] lo speed is unknown, defaulting to 1000
[   61.097545][ T6312] lo speed is unknown, defaulting to 1000
[   61.101272][ T6312] lo speed is unknown, defaulting to 1000
[   61.197378][ T6321] infiniband syz0: set active
[   61.200662][ T6321] infiniband syz0: added bond_slave_0
[   61.220885][ T6321] RDS/IB: syz0: added
[   61.222696][ T6321] smc: adding ib device syz0 with port count 1
[   61.226196][ T6321] smc:    ib device syz0 port 1 has no pnetid
[   61.279032][ T5935] Bluetooth: hci0: command tx timeout
[   61.289873][ T5935] Bluetooth: hci1: command tx timeout
[   61.292642][ T5935] Bluetooth: hci2: command tx timeout
[   61.359585][ T5935] Bluetooth: hci3: command tx timeout
[   61.746614][ T6368] FAULT_INJECTION: forcing a failure.
[   61.746614][ T6368] name failslab, interval 1, probability 0, space 0, times 1
[   61.752342][ T6368] CPU: 2 UID: 0 PID: 6368 Comm: syz.0.106 Not tainted syzkaller #0 PREEMPT(full) 
[   61.752363][ T6368] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.752372][ T6368] Call Trace:
[   61.752376][ T6368]  <TASK>
[   61.752382][ T6368]  dump_stack_lvl+0x16c/0x1f0
[   61.752409][ T6368]  should_fail_ex+0x512/0x640
[   61.752425][ T6368]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   61.752444][ T6368]  should_failslab+0xc2/0x120
[   61.752463][ T6368]  kmem_cache_alloc_noprof+0x75/0x6e0
[   61.752488][ T6368]  ? skb_clone+0x190/0x3f0
[   61.752514][ T6368]  ? skb_clone+0x190/0x3f0
[   61.752534][ T6368]  skb_clone+0x190/0x3f0
[   61.752555][ T6368]  netlink_deliver_tap+0xabd/0xd30
[   61.752592][ T6368]  netlink_unicast+0x64c/0x870
[   61.752617][ T6368]  ? __pfx_netlink_unicast+0x10/0x10
[   61.752649][ T6368]  netlink_sendmsg+0x8c8/0xdd0
[   61.752675][ T6368]  ? __pfx_netlink_sendmsg+0x10/0x10
[   61.752707][ T6368]  ____sys_sendmsg+0xa98/0xc70
[   61.752723][ T6368]  ? copy_msghdr_from_user+0x10a/0x160
[   61.752746][ T6368]  ? __pfx_____sys_sendmsg+0x10/0x10
[   61.752775][ T6368]  ___sys_sendmsg+0x134/0x1d0
[   61.752798][ T6368]  ? __pfx____sys_sendmsg+0x10/0x10
[   61.752816][ T6368]  ? __lock_acquire+0x622/0x1c90
[   61.752869][ T6368]  __sys_sendmsg+0x16d/0x220
[   61.752890][ T6368]  ? __pfx___sys_sendmsg+0x10/0x10
[   61.752921][ T6368]  ? fput+0x9b/0xd0
[   61.752947][ T6368]  do_syscall_64+0xcd/0xfa0
[   61.752975][ T6368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.752992][ T6368] RIP: 0033:0x7f46c518efc9
[   61.753007][ T6368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.753020][ T6368] RSP: 002b:00007f46c607a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   61.753039][ T6368] RAX: ffffffffffffffda RBX: 00007f46c53e5fa0 RCX: 00007f46c518efc9
[   61.753049][ T6368] RDX: 0000000020000000 RSI: 0000200000003100 RDI: 0000000000000003
[   61.753057][ T6368] RBP: 00007f46c607a090 R08: 0000000000000000 R09: 0000000000000000
[   61.753067][ T6368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.753078][ T6368] R13: 00007f46c53e6038 R14: 00007f46c53e5fa0 R15: 00007ffd8d274798
[   61.753101][ T6368]  </TASK>
[   62.062685][ T6390] __nla_validate_parse: 7 callbacks suppressed
[   62.062702][ T6390] netlink: 8 bytes leftover after parsing attributes in process `syz.2.113'.
[   62.255089][ T6405] Driver unsupported XDP return value 0 on prog  (id 84) dev N/A, expect packet loss!
[   62.258402][ T6407] FAULT_INJECTION: forcing a failure.
[   62.258402][ T6407] name failslab, interval 1, probability 0, space 0, times 0
[   62.263184][ T6407] CPU: 1 UID: 0 PID: 6407 Comm: syz.0.117 Not tainted syzkaller #0 PREEMPT(full) 
[   62.263199][ T6407] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.263205][ T6407] Call Trace:
[   62.263209][ T6407]  <TASK>
[   62.263214][ T6407]  dump_stack_lvl+0x16c/0x1f0
[   62.263235][ T6407]  should_fail_ex+0x512/0x640
[   62.263247][ T6407]  ? __kmalloc_noprof+0xca/0x880
[   62.263264][ T6407]  should_failslab+0xc2/0x120
[   62.263276][ T6407]  __kmalloc_noprof+0xdd/0x880
[   62.263291][ T6407]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   62.263306][ T6407]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   62.263316][ T6407]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   62.263345][ T6407]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   62.263358][ T6407]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   62.263373][ T6407]  ? bpf_lsm_capable+0x9/0x10
[   62.263385][ T6407]  ? security_capable+0x7e/0x260
[   62.263402][ T6407]  ? ns_capable+0xd7/0x110
[   62.263416][ T6407]  genl_rcv_msg+0x55c/0x800
[   62.263428][ T6407]  ? __pfx_genl_rcv_msg+0x10/0x10
[   62.263437][ T6407]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   62.263452][ T6407]  ? __pfx_nl80211_del_key+0x10/0x10
[   62.263464][ T6407]  ? __pfx_nl80211_post_doit+0x10/0x10
[   62.263480][ T6407]  netlink_rcv_skb+0x158/0x420
[   62.263495][ T6407]  ? __pfx_genl_rcv_msg+0x10/0x10
[   62.263505][ T6407]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   62.263526][ T6407]  ? netlink_deliver_tap+0x1ae/0xd30
[   62.263542][ T6407]  genl_rcv+0x28/0x40
[   62.263557][ T6407]  netlink_unicast+0x5aa/0x870
[   62.263574][ T6407]  ? __pfx_netlink_unicast+0x10/0x10
[   62.263594][ T6407]  netlink_sendmsg+0x8c8/0xdd0
[   62.263615][ T6407]  ? __pfx_netlink_sendmsg+0x10/0x10
[   62.263635][ T6407]  ____sys_sendmsg+0xa98/0xc70
[   62.263647][ T6407]  ? copy_msghdr_from_user+0x10a/0x160
[   62.263660][ T6407]  ? __pfx_____sys_sendmsg+0x10/0x10
[   62.263676][ T6407]  ___sys_sendmsg+0x134/0x1d0
[   62.263690][ T6407]  ? __pfx____sys_sendmsg+0x10/0x10
[   62.263702][ T6407]  ? __lock_acquire+0x622/0x1c90
[   62.263735][ T6407]  __sys_sendmsg+0x16d/0x220
[   62.263749][ T6407]  ? __pfx___sys_sendmsg+0x10/0x10
[   62.263771][ T6407]  do_syscall_64+0xcd/0xfa0
[   62.263788][ T6407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.263799][ T6407] RIP: 0033:0x7f46c518efc9
[   62.263808][ T6407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.263818][ T6407] RSP: 002b:00007f46c607a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.263828][ T6407] RAX: ffffffffffffffda RBX: 00007f46c53e5fa0 RCX: 00007f46c518efc9
[   62.263834][ T6407] RDX: 0000000020000000 RSI: 0000200000003100 RDI: 0000000000000003
[   62.263840][ T6407] RBP: 00007f46c607a090 R08: 0000000000000000 R09: 0000000000000000
[   62.263845][ T6407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.263851][ T6407] R13: 00007f46c53e6038 R14: 00007f46c53e5fa0 R15: 00007ffd8d274798
[   62.263865][ T6407]  </TASK>
[   62.431653][ T6412] netlink: 8 bytes leftover after parsing attributes in process `syz.2.119'.
[   62.566595][ T6425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.126'.
[   62.570417][ T6426] kvm: pic: non byte read
[   62.573088][ T6426] kvm: pic: non byte read
[   62.575402][ T6426] kvm: pic: non byte read
[   62.577795][ T6426] kvm: pic: non byte read
[   62.581287][ T6426] kvm: pic: non byte read
[   62.583640][ T6426] kvm: pic: non byte read
[   62.585959][ T6426] kvm: pic: non byte read
[   62.588030][ T6428] bond1: option arp_interval: mode dependency failed, not supported in mode balance-alb(6)
[   62.588716][ T6426] kvm: pic: non byte read
[   62.594661][ T6426] kvm: pic: non byte read
[   62.597019][ T6426] kvm: pic: non byte read
[   62.601157][ T6428] bond1 (unregistering): Released all slaves
[   62.608494][ T6434] TCP: tcp_parse_options: Illegal window scaling value 218 > 14 received
[   62.620254][ T6414] warning: `syz.0.121' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   62.644087][ T6438] netlink: 12 bytes leftover after parsing attributes in process `syz.3.128'.
[   62.647980][ T6438] netlink: 3 bytes leftover after parsing attributes in process `syz.3.128'.
[   62.726308][ T6447] FAULT_INJECTION: forcing a failure.
[   62.726308][ T6447] name failslab, interval 1, probability 0, space 0, times 0
[   62.732805][ T6447] CPU: 1 UID: 0 PID: 6447 Comm: syz.1.130 Not tainted syzkaller #0 PREEMPT(full) 
[   62.732820][ T6447] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.732826][ T6447] Call Trace:
[   62.732830][ T6447]  <TASK>
[   62.732835][ T6447]  dump_stack_lvl+0x16c/0x1f0
[   62.732854][ T6447]  should_fail_ex+0x512/0x640
[   62.732867][ T6447]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[   62.732885][ T6447]  should_failslab+0xc2/0x120
[   62.732898][ T6447]  kmem_cache_alloc_node_noprof+0x78/0x770
[   62.732913][ T6447]  ? __alloc_skb+0x2b2/0x380
[   62.732937][ T6447]  ? __alloc_skb+0x2b2/0x380
[   62.732953][ T6447]  __alloc_skb+0x2b2/0x380
[   62.732973][ T6447]  ? __pfx___alloc_skb+0x10/0x10
[   62.732993][ T6447]  ? genl_rcv_msg+0x460/0x800
[   62.733005][ T6447]  ? genl_rcv_msg+0x4bb/0x800
[   62.733027][ T6447]  netlink_ack+0x15d/0xb80
[   62.733056][ T6447]  netlink_rcv_skb+0x332/0x420
[   62.733080][ T6447]  ? __pfx_genl_rcv_msg+0x10/0x10
[   62.733097][ T6447]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   62.733119][ T6447]  ? netlink_deliver_tap+0x1ae/0xd30
[   62.733135][ T6447]  genl_rcv+0x28/0x40
[   62.733150][ T6447]  netlink_unicast+0x5aa/0x870
[   62.733167][ T6447]  ? __pfx_netlink_unicast+0x10/0x10
[   62.733187][ T6447]  netlink_sendmsg+0x8c8/0xdd0
[   62.733205][ T6447]  ? __pfx_netlink_sendmsg+0x10/0x10
[   62.733225][ T6447]  ____sys_sendmsg+0xa98/0xc70
[   62.733235][ T6447]  ? copy_msghdr_from_user+0x10a/0x160
[   62.733249][ T6447]  ? __pfx_____sys_sendmsg+0x10/0x10
[   62.733264][ T6447]  ___sys_sendmsg+0x134/0x1d0
[   62.733283][ T6447]  ? __pfx____sys_sendmsg+0x10/0x10
[   62.733296][ T6447]  ? __lock_acquire+0x622/0x1c90
[   62.733329][ T6447]  __sys_sendmsg+0x16d/0x220
[   62.733343][ T6447]  ? __pfx___sys_sendmsg+0x10/0x10
[   62.733365][ T6447]  do_syscall_64+0xcd/0xfa0
[   62.733382][ T6447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.733392][ T6447] RIP: 0033:0x7f929278efc9
[   62.733401][ T6447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.733410][ T6447] RSP: 002b:00007f9293621038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.733421][ T6447] RAX: ffffffffffffffda RBX: 00007f92929e5fa0 RCX: 00007f929278efc9
[   62.733427][ T6447] RDX: 0000000020000000 RSI: 0000200000003100 RDI: 0000000000000003
[   62.733433][ T6447] RBP: 00007f9293621090 R08: 0000000000000000 R09: 0000000000000000
[   62.733438][ T6447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.733444][ T6447] R13: 00007f92929e6038 R14: 00007f92929e5fa0 R15: 00007ffcbf7b6368
[   62.733457][ T6447]  </TASK>
[   62.842608][   T40] kauditd_printk_skb: 106 callbacks suppressed
[   62.842619][   T40] audit: type=1400 audit(1762085813.289:307): avc:  denied  { transfer } for  pid=6448 comm="syz.1.132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   62.852806][   T40] audit: type=1400 audit(1762085813.289:308): avc:  denied  { create } for  pid=6450 comm="syz.2.134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   62.890993][ T6457] netlink: 'syz.2.136': attribute type 1 has an invalid length.
[   62.893732][ T6457] netlink: 'syz.2.136': attribute type 4 has an invalid length.
[   62.896462][ T6457] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.136'.
[   62.904504][   T40] audit: type=1400 audit(1762085813.349:309): avc:  denied  { read } for  pid=6454 comm="syz.0.135" name="btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[   62.952213][   T40] audit: type=1400 audit(1762085813.399:310): avc:  denied  { write } for  pid=6467 comm="syz.1.140" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   62.960786][ T5957] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   62.989402][   T40] audit: type=1400 audit(1762085813.429:311): avc:  denied  { create } for  pid=6462 comm="syz.2.139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   62.998241][   T40] audit: type=1400 audit(1762085813.429:312): avc:  denied  { write } for  pid=6462 comm="syz.2.139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   63.073318][ T6477] binder: binder_mmap: 6476 200000ffc000-200001000000 bad vm_flags failed -1
[   63.074099][   T40] audit: type=1400 audit(1762085813.519:313): avc:  denied  { create } for  pid=6476 comm="syz.1.142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   63.084422][   T40] audit: type=1400 audit(1762085813.519:314): avc:  denied  { getopt } for  pid=6476 comm="syz.1.142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   63.092220][   T40] audit: type=1400 audit(1762085813.529:315): avc:  denied  { listen } for  pid=6476 comm="syz.1.142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   63.135525][ T5957] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   63.140206][ T5957] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   63.144209][ T5957] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   63.149790][ T5957] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   63.153514][ T5957] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   63.160314][ T5957] usb 8-1: config 0 descriptor??
[   63.296635][   T40] audit: type=1400 audit(1762085813.739:316): avc:  denied  { create } for  pid=6491 comm="syz.0.145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   63.299469][ T6494] program syz.0.145 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   63.334215][ T6498] netlink: 36 bytes leftover after parsing attributes in process `syz.0.147'.
[   63.337793][ T6498] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   63.344605][   T34] lo speed is unknown, defaulting to 1000
[   63.576490][ T5957] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   63.599893][ T5935] Bluetooth: hci3: command tx timeout
[   63.871750][ T6518] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   63.875832][ T6518] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   64.470605][ T6523] loop1: detected capacity change from 0 to 524255232
[   64.739472][ T6528] openvswitch: netlink: nsh attribute has 65512 unknown bytes.
[   64.741963][ T6528] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   64.786345][ T6531] capability: warning: `syz.0.156' uses deprecated v2 capabilities in a way that may be insecure
[   64.790241][ T6530] capability: warning: `syz.0.156' uses 32-bit capabilities (legacy support in use)
[   64.930570][ T6546] FAULT_INJECTION: forcing a failure.
[   64.930570][ T6546] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   64.936671][ T6546] CPU: 2 UID: 0 PID: 6546 Comm: syz.3.160 Not tainted syzkaller #0 PREEMPT(full) 
[   64.936695][ T6546] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.936705][ T6546] Call Trace:
[   64.936712][ T6546]  <TASK>
[   64.936719][ T6546]  dump_stack_lvl+0x16c/0x1f0
[   64.936752][ T6546]  should_fail_ex+0x512/0x640
[   64.936778][ T6546]  _copy_to_user+0x32/0xd0
[   64.936802][ T6546]  simple_read_from_buffer+0xcb/0x170
[   64.936833][ T6546]  proc_fail_nth_read+0x197/0x240
[   64.936855][ T6546]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   64.936878][ T6546]  ? rw_verify_area+0xcf/0x6c0
[   64.936902][ T6546]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   64.936923][ T6546]  vfs_read+0x1e4/0xcf0
[   64.936943][ T6546]  ? __pfx___mutex_lock+0x10/0x10
[   64.936959][ T6546]  ? __pfx_vfs_read+0x10/0x10
[   64.936982][ T6546]  ? __fget_files+0x20e/0x3c0
[   64.937008][ T6546]  ksys_read+0x12a/0x250
[   64.937024][ T6546]  ? __pfx_ksys_read+0x10/0x10
[   64.937047][ T6546]  do_syscall_64+0xcd/0xfa0
[   64.937076][ T6546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.937093][ T6546] RIP: 0033:0x7f3e0c18d9dc
[   64.937107][ T6546] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   64.937123][ T6546] RSP: 002b:00007f3e0d04e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   64.937139][ T6546] RAX: ffffffffffffffda RBX: 00007f3e0c3e5fa0 RCX: 00007f3e0c18d9dc
[   64.937150][ T6546] RDX: 000000000000000f RSI: 00007f3e0d04e0a0 RDI: 0000000000000005
[   64.937160][ T6546] RBP: 00007f3e0d04e090 R08: 0000000000000000 R09: 0000000000000000
[   64.937170][ T6546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   64.937180][ T6546] R13: 00007f3e0c3e6038 R14: 00007f3e0c3e5fa0 R15: 00007fff53b8f2e8
[   64.937205][ T6546]  </TASK>
[   65.089013][  T841] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   65.219000][  T841] usb 7-1: device descriptor read/64, error -71
[   65.438227][ T6568] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[   65.458990][  T841] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   65.545280][    C2] sr 2:0:0:0: [sr0] tag#22 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[   65.549715][    C2] sr 2:0:0:0: [sr0] tag#22 CDB: Regenerate(16) 82 5a 86 a5 26 a3 50 1f b1 dd 8d ff 3e 90 d6 f5
[   65.589000][  T841] usb 7-1: device descriptor read/64, error -71
[   65.699178][ T6580] : renamed from wg1 (while UP)
[   65.699230][  T841] usb usb7-port1: attempt power cycle
[   65.724239][   T10] usb 8-1: USB disconnect, device number 2
[   66.039020][  T841] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   66.059593][  T841] usb 7-1: device descriptor read/8, error -71
[   66.135878][ T6590] netlink: 28 bytes leftover after parsing attributes in process `syz.3.173'.
[   66.140548][ T6590] netlink: 'syz.3.173': attribute type 7 has an invalid length.
[   66.144889][ T6590] netlink: 'syz.3.173': attribute type 8 has an invalid length.
[   66.148083][ T6590] netlink: 4 bytes leftover after parsing attributes in process `syz.3.173'.
[   66.299595][  T841] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   66.320087][  T841] usb 7-1: device descriptor read/8, error -71
[   66.431154][  T841] usb usb7-port1: unable to enumerate USB device
[   66.601499][  T839] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   66.682363][ T6625] netlink: 16 bytes leftover after parsing attributes in process `syz.1.182'.
[   66.729704][  T839] usb 7-1: device descriptor read/64, error -71
[   66.978690][ T6642] autofs: Bad value for 'fd'
[   66.981084][  T839] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   67.119101][  T839] usb 7-1: device descriptor read/64, error -71
[   67.229915][  T839] usb usb7-port1: attempt power cycle
[   67.240445][ T6652] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   67.382936][ T6661] openvswitch: netlink: Missing valid actions attribute.
[   67.385986][ T6661] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   67.432635][ T6663] SELinux:  policydb version 1193491547 does not match my version range 15-35
[   67.435643][ T6663] SELinux: failed to load policy
[   67.454756][ T6668] pim6reg1: entered promiscuous mode
[   67.456593][ T6668] pim6reg1: entered allmulticast mode
[   67.563620][ T6670] __nla_validate_parse: 2 callbacks suppressed
[   67.563637][ T6670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.198'.
[   67.570568][ T6670] netlink: 'syz.3.198': attribute type 30 has an invalid length.
[   67.579145][  T839] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   67.603387][  T839] usb 7-1: device descriptor read/8, error -71
[   67.626968][ T6677] : entered promiscuous mode
[   67.629108][ T6678] netlink: 32 bytes leftover after parsing attributes in process `syz.1.199'.
[   67.861350][   T40] kauditd_printk_skb: 39 callbacks suppressed
[   67.861362][   T40] audit: type=1400 audit(1762085818.309:356): avc:  denied  { getopt } for  pid=6681 comm="syz.3.201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   67.879779][  T839] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   67.910987][ T6701] 9pnet_virtio: no channels available for device ./file0
[   67.911130][   T40] audit: type=1400 audit(1762085818.359:357): avc:  denied  { mounton } for  pid=6699 comm="syz.1.206" path="/54/file0" dev="tmpfs" ino=307 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[   67.954446][ T6703] netlink: 12 bytes leftover after parsing attributes in process `syz.2.207'.
[   67.958057][ T6703] openvswitch: netlink: Flow actions attr not present in new flow.
[   67.961736][   T40] audit: type=1400 audit(1762085818.409:358): avc:  denied  { write } for  pid=6704 comm="syz.3.208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[   67.962165][ T6705] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=6705 comm=syz.3.208
[   68.042834][   T40] audit: type=1400 audit(1762085818.489:359): avc:  denied  { create } for  pid=6706 comm="syz.3.209" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   68.051568][   T40] audit: type=1400 audit(1762085818.489:360): avc:  denied  { read } for  pid=6706 comm="syz.3.209" path="socket:[12852]" dev="sockfs" ino=12852 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   68.072393][ T6707] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.089604][  T839] usb 7-1: device not accepting address 9, error -71
[   68.092863][  T839] usb usb7-port1: unable to enumerate USB device
[   68.171806][   T40] audit: type=1400 audit(1762085818.619:361): avc:  denied  { add_name } for  pid=6714 comm="syz.1.212" name="blkio.bfq.sectors" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   68.181223][   T40] audit: type=1400 audit(1762085818.619:362): avc:  denied  { create } for  pid=6714 comm="syz.1.212" name="blkio.bfq.sectors" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   68.190339][   T40] audit: type=1400 audit(1762085818.619:363): avc:  denied  { associate } for  pid=6714 comm="syz.1.212" name="blkio.bfq.sectors" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   68.200445][   T40] audit: type=1400 audit(1762085818.629:364): avc:  denied  { read append open } for  pid=6714 comm="syz.1.212" path="/57/file0/blkio.bfq.sectors" dev="9p" ino=80740569 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   68.211149][   T40] audit: type=1400 audit(1762085818.639:365): avc:  denied  { map } for  pid=6714 comm="syz.1.212" path="/57/file0/blkio.bfq.sectors" dev="9p" ino=80740569 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   68.506838][ T6727] Bluetooth: MGMT ver 1.23
[   68.555156][ T6729] xfrm0 speed is unknown, defaulting to 1000
[   68.557530][ T6729] xfrm0 speed is unknown, defaulting to 1000
[   68.560639][ T6729] xfrm0 speed is unknown, defaulting to 1000
[   68.570071][ T6729] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   68.588263][ T6729] xfrm0 speed is unknown, defaulting to 1000
[   68.594707][ T6729] xfrm0 speed is unknown, defaulting to 1000
[   68.598600][ T6729] xfrm0 speed is unknown, defaulting to 1000
[   68.601987][ T6729] xfrm0 speed is unknown, defaulting to 1000
[   68.704737][ T6736] No such timeout policy "syz1"
[   68.997817][ T6748] binder: BINDER_SET_CONTEXT_MGR already set
[   69.004976][ T6748] binder: 6747:6748 ioctl 4018620d 200000004a80 returned -16
[   69.128594][ T6763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.228'.
[   69.180869][ T6772] netlink: 8 bytes leftover after parsing attributes in process `syz.2.230'.
[   69.183781][ T6772] netlink: 4 bytes leftover after parsing attributes in process `syz.2.230'.
[   69.186666][ T6772] netlink: 'syz.2.230': attribute type 11 has an invalid length.
[   69.191149][ T6772] netlink: 'syz.2.230': attribute type 7 has an invalid length.
[   69.340961][ T6789] netlink: 4 bytes leftover after parsing attributes in process `syz.1.236'.
[   69.349431][ T6789] netlink: 4 bytes leftover after parsing attributes in process `syz.1.236'.
[   70.127799][ T6812] binder: 6811:6812 unknown command 0
[   70.130201][ T6812] binder: 6811:6812 ioctl c0306201 200000000080 returned -22
[   70.134112][ T6812] binder: 6811:6812 ioctl c0306201 2000000003c0 returned -14
[   70.237615][ T6832] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   70.240880][ T6832] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   70.248967][ T6012] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[   70.306966][ T6809] lo speed is unknown, defaulting to 1000
[   70.310771][ T6809] xfrm0 speed is unknown, defaulting to 1000
[   70.373004][ T6852] program syz.0.249 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   70.383951][ T6856] netlink: 'syz.1.251': attribute type 23 has an invalid length.
[   70.389096][ T6012] usb 7-1: device descriptor read/64, error -71
[   70.460218][ T6865] netlink: 16 bytes leftover after parsing attributes in process `syz.3.254'.
[   70.579567][ T6880] netlink: 20 bytes leftover after parsing attributes in process `syz.0.258'.
[   70.629015][ T6012] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[   70.706527][ T6892] Bluetooth: hci4: Frame reassembly failed (-90)
[   70.711084][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[   70.759061][ T6012] usb 7-1: device descriptor read/64, error -71
[   70.786574][ T6901] loop1: detected capacity change from 0 to 7
[   70.794336][ T6901]  loop1: [CUMANA/ADFS] p1 [ADFS] p1
[   70.796191][ T6901] loop1: partition table partially beyond EOD, truncated
[   70.799665][ T6901] loop1: p1 size 2989602745 extends beyond EOD, truncated
[   70.824610][ T5930] udevd[5930]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   70.882495][ T6012] usb usb7-port1: attempt power cycle
[   70.888833][ T6910] tmpfs: Bad value for 'mpol'
[   70.941935][ T6914] bridge0: entered promiscuous mode
[   70.944536][ T6914] macsec1: entered promiscuous mode
[   71.051450][ T6921] overlayfs: overlapping lowerdir path
[   71.064873][ T6921] overlayfs: failed to verify upper (64/file0, ino=364, err=-116)
[   71.068533][ T6921] overlayfs: failed to verify index dir 'upper' xattr
[   71.071746][ T6921] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[   71.209318][ T6933] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=59664 sclass=netlink_route_socket pid=6933 comm=syz.3.276
[   71.242475][ T6012] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[   71.263570][ T6012] usb 7-1: device descriptor read/8, error -71
[   71.294602][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[   71.297470][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[   71.426201][ T6946] netlink: 'syz.0.277': attribute type 9 has an invalid length.
[   71.509022][ T6012] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[   71.529710][ T6012] usb 7-1: device descriptor read/8, error -71
[   71.651171][ T6012] usb usb7-port1: unable to enumerate USB device
[   71.671948][ T6957] kAFS: unable to lookup cell '/,c��L'
[   71.718565][ T6962] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for erspan1
[   71.867694][ T6965] : entered promiscuous mode
[   71.906081][ T6967] pimreg: tun_chr_ioctl cmd 1074025675
[   71.907882][ T6967] pimreg: persist enabled
[   72.168064][ T6980] block nbd3: shutting down sockets
[   72.672931][ T7012] netlink: 'syz.3.297': attribute type 10 has an invalid length.
[   72.690816][ T7012] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   72.719974][ T5935] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   72.762573][ T7014] __nla_validate_parse: 3 callbacks suppressed
[   72.762583][ T7014] netlink: 172 bytes leftover after parsing attributes in process `syz.1.298'.
[   72.815165][ T7016] affs: No valid root block on device nullb0
[   72.925641][   T40] kauditd_printk_skb: 51 callbacks suppressed
[   72.925656][   T40] audit: type=1400 audit(1762085823.369:417): avc:  denied  { write } for  pid=7030 comm="syz.0.305" path="socket:[15399]" dev="sockfs" ino=15399 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   72.950827][   T40] audit: type=1400 audit(1762085823.379:418): avc:  denied  { mount } for  pid=7030 comm="syz.0.305" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   73.116419][ T7048] binder: BINDER_SET_CONTEXT_MGR already set
[   73.123998][ T7048] binder: 7047:7048 ioctl 4018620d 200000000040 returned -16
[   73.126746][ T7048] binder: 7047:7048 ioctl c0306201 2000000003c0 returned -22
[   73.506770][ T1056] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.585206][   T40] audit: type=1400 audit(1762085824.029:419): avc:  denied  { execute } for  pid=7060 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   73.593177][   T40] audit: type=1400 audit(1762085824.029:420): avc:  denied  { execute_no_trans } for  pid=7060 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   73.613349][   T40] audit: type=1400 audit(1762085824.059:421): avc:  denied  { connect } for  pid=7061 comm="syz.0.315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   73.653110][ T7064] Cannot find del_set index 0 as target
[   73.667509][ T7064] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[   73.719047][ T1056] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.766946][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   73.773689][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   73.777287][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   73.780590][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   73.789413][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   73.813393][ T7071] geneve2: entered promiscuous mode
[   73.834790][ T7071] netlink: 28 bytes leftover after parsing attributes in process `syz.2.318'.
[   73.837719][ T7071] netlink: 28 bytes leftover after parsing attributes in process `syz.2.318'.
[   73.842153][ T7071] netlink: 28 bytes leftover after parsing attributes in process `syz.2.318'.
[   73.845829][ T7071] netlink: 28 bytes leftover after parsing attributes in process `syz.2.318'.
[   73.851744][   T40] audit: type=1400 audit(1762085824.299:422): avc:  denied  { write } for  pid=7070 comm="syz.2.318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   73.863819][ T7071] gfs2: Unknown parameter 'barrierevents'
[   73.878343][ T1056] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.899655][ T5980] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   73.965013][ T1056] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.004399][   T40] audit: type=1400 audit(1762085824.449:423): avc:  denied  { shutdown } for  pid=7075 comm="syz.2.320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   74.058989][ T5980] usb 5-1: Using ep0 maxpacket: 32
[   74.070251][ T5980] usb 5-1: config 0 has no interfaces?
[   74.074665][ T5980] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   74.077974][ T5980] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   74.082546][ T5980] usb 5-1: Product: syz
[   74.084577][ T5980] usb 5-1: Manufacturer: syz
[   74.086573][ T5980] usb 5-1: SerialNumber: syz
[   74.094956][ T7044] syz.1.307 (7044): drop_caches: 2
[   74.098040][ T5980] usb 5-1: config 0 descriptor??
[   74.153367][ T1056] bridge_slave_1: left allmulticast mode
[   74.155353][ T1056] bridge_slave_1: left promiscuous mode
[   74.158166][ T1056] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.166817][ T1056] bridge_slave_0: left allmulticast mode
[   74.169151][ T1056] bridge_slave_0: left promiscuous mode
[   74.171493][ T1056] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.305002][ T6011] usb 5-1: USB disconnect, device number 2
[   74.353704][ T7062] netlink: 56 bytes leftover after parsing attributes in process `syz.0.315'.
[   74.409051][ T6012] usb 7-1: new full-speed USB device number 14 using dummy_hcd
[   74.431787][ T1056] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   74.438019][ T1056] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   74.444192][ T1056] bond0 (unregistering): (slave wlan1): Releasing backup interface
[   74.456067][ T1056] bond0 (unregistering): Released all slaves
[   74.466627][ T7068] lo speed is unknown, defaulting to 1000
[   74.469715][ T7068] xfrm0 speed is unknown, defaulting to 1000
[   74.515339][ T7092] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:19969
[   74.518778][ T7092] tipc: Started in network mode
[   74.522437][ T7092] tipc: Node identity 4, cluster identity 4711
[   74.524446][ T7092] tipc: Node number set to 4
[   74.526388][ T1056] : left promiscuous mode
[   74.570288][ T6012] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[   74.573416][ T6012] usb 7-1: config 0 interface 0 has no altsetting 0
[   74.580166][ T6012] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   74.583028][ T6012] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   74.585622][ T6012] usb 7-1: Product: syz
[   74.586960][ T6012] usb 7-1: Manufacturer: syz
[   74.588497][ T6012] usb 7-1: SerialNumber: syz
[   74.594087][ T6012] usb 7-1: config 0 descriptor??
[   74.602202][ T6012] usb 7-1: selecting invalid altsetting 0
[   74.678748][ T7068] chnl_net:caif_netlink_parms(): no params data found
[   74.828018][ T7068] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.832881][ T7068] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.836007][ T7068] bridge_slave_0: entered allmulticast mode
[   74.840431][ T7068] bridge_slave_0: entered promiscuous mode
[   74.847706][ T7068] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.855465][ T7068] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.859595][ T7068] bridge_slave_1: entered allmulticast mode
[   74.863548][ T7068] bridge_slave_1: entered promiscuous mode
[   74.909710][ T6012] usb 7-1: USB disconnect, device number 14
[   74.937488][   T40] audit: type=1400 audit(1762085825.379:424): avc:  denied  { map } for  pid=7121 comm="syz.1.327" path="/dev/comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   74.982930][ T7068] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.010149][ T7068] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.093659][   T40] audit: type=1400 audit(1762085825.539:425): avc:  denied  { accept } for  pid=7129 comm="syz.0.330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   75.156030][ T1056] hsr_slave_0: left promiscuous mode
[   75.160063][ T1056] hsr_slave_1: left promiscuous mode
[   75.162165][ T1056] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   75.164591][ T1056] batman_adv: batadv0: Removing interface: batadv_slave_0
[   75.167771][ T1056] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   75.170581][ T1056] batman_adv: batadv0: Removing interface: batadv_slave_1
[   75.198684][ T1056] veth1_macvtap: left promiscuous mode
[   75.204292][ T1056] veth0_macvtap: left promiscuous mode
[   75.206925][ T1056] veth1_vlan: left promiscuous mode
[   75.209790][ T1056] veth0_vlan: left promiscuous mode
[   75.304057][   T40] audit: type=1400 audit(1762085825.749:426): avc:  denied  { listen } for  pid=7150 comm="syz.0.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   75.731661][ T1056] team0 (unregistering): Port device team_slave_1 removed
[   75.787828][ T1056] team0 (unregistering): Port device team_slave_0 removed
[   75.839028][ T5939] Bluetooth: hci0: command tx timeout
[   76.242450][ T7068] team0: Port device team_slave_0 added
[   76.247194][ T7068] team0: Port device team_slave_1 added
[   76.270937][ T7159] bridge_slave_0: left allmulticast mode
[   76.273366][ T7159] bridge_slave_0: left promiscuous mode
[   76.275946][ T7159] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.281656][ T7159] bridge_slave_1: left allmulticast mode
[   76.284102][ T7159] bridge_slave_1: left promiscuous mode
[   76.286643][ T7159] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.294425][ T7159] bond0: (slave bond_slave_0): Releasing backup interface
[   76.301550][ T7159] bond0: (slave bond_slave_1): Releasing backup interface
[   76.311301][ T7159] team0: Port device team_slave_0 removed
[   76.319520][ T7159] team0: Port device team_slave_1 removed
[   76.321991][ T7159] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   76.324620][ T7159] batman_adv: batadv0: Removing interface: batadv_slave_0
[   76.328008][ T7159] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   76.330467][ T7159] batman_adv: batadv0: Removing interface: batadv_slave_1
[   76.330954][ T7127] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   76.335105][ T7127] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   76.336468][ T7159] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   76.347579][ T7127] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   76.352086][ T7127] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   76.354120][ T7127] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   76.360057][ T7127] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   76.369877][ T7127] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   76.372141][ T7127] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   76.376185][ T7127] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   76.381971][ T7127] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   76.382455][ T7068] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.384668][ T7127] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   76.386750][ T7068] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   76.397365][ T7068] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.401404][ T7127] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   76.409540][ T7068] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.412308][ T7068] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   76.421605][ T7068] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.522290][ T7068] hsr_slave_0: entered promiscuous mode
[   76.526882][ T7068] hsr_slave_1: entered promiscuous mode
[   76.646947][ T7180] SELinux:  policydb magic number 0x7665642f does not match expected magic number 0xf97cff8c
[   76.651362][ T7180] SELinux: failed to load policy
[   76.669153][ T6012] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   76.844146][ T6012] usb 5-1: Using ep0 maxpacket: 8
[   76.849743][ T6012] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[   76.853162][ T6012] usb 5-1: config 0 has no interface number 0
[   76.855330][ T6012] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   76.861297][ T6012] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[   76.865552][ T6012] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   76.869642][ T6012] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[   76.874163][ T6012] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[   76.877889][ T6012] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.883640][ T6012] usb 5-1: config 0 descriptor??
[   76.902970][ T6012] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[   76.917786][ T7204] bridge1: entered promiscuous mode
[   76.963531][ T7209] netlink: 'syz.2.345': attribute type 1 has an invalid length.
[   76.966666][ T7209] netlink: 'syz.2.345': attribute type 4 has an invalid length.
[   76.970585][ T7209] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.345'.
[   77.075256][ T7220] netlink: 28 bytes leftover after parsing attributes in process `syz.2.348'.
[   77.093619][   T24] usb 5-1: USB disconnect, device number 3
[   77.094041][ T7068] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   77.102806][   T24] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[   77.104654][ T7068] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   77.111475][ T7068] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   77.123802][ T7068] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   77.200996][ T7068] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.275630][ T7068] 8021q: adding VLAN 0 to HW filter on device team0
[   77.284313][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.287477][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.298231][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.301280][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.424497][ T7068] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.450660][ T7068] veth0_vlan: entered promiscuous mode
[   77.456067][ T7068] veth1_vlan: entered promiscuous mode
[   77.471630][ T7255] kernel profiling enabled (shift: 2)
[   77.473608][ T7068] veth0_macvtap: entered promiscuous mode
[   77.477513][ T7068] veth1_macvtap: entered promiscuous mode
[   77.487879][ T7068] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.497960][ T7068] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.505630][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.510147][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.515495][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.520264][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.524779][ T7255] syz.1.353: vmalloc error: size 174350336, failed to allocated page array size 340528, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   77.531542][ T7255] CPU: 3 UID: 0 PID: 7255 Comm: syz.1.353 Not tainted syzkaller #0 PREEMPT(full) 
[   77.531556][ T7255] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.531563][ T7255] Call Trace:
[   77.531579][ T7255]  <TASK>
[   77.531583][ T7255]  dump_stack_lvl+0x16c/0x1f0
[   77.531614][ T7255]  warn_alloc+0x248/0x3a0
[   77.531631][ T7255]  ? __pfx_warn_alloc+0x10/0x10
[   77.531652][ T7255]  ? profile_init+0xd5/0x130
[   77.531665][ T7255]  ? __vmalloc_node_noprof+0xad/0xf0
[   77.531681][ T7255]  __vmalloc_node_range_noprof+0xfe2/0x1480
[   77.531694][ T7255]  ? policy_nodemask+0xea/0x4e0
[   77.531709][ T7255]  ? profile_init+0xd5/0x130
[   77.531725][ T7255]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   77.531739][ T7255]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   77.531752][ T7255]  ? rcu_is_watching+0x12/0xc0
[   77.531767][ T7255]  ? profile_init+0xd5/0x130
[   77.531779][ T7255]  __vmalloc_node_noprof+0xad/0xf0
[   77.531791][ T7255]  ? profile_init+0xd5/0x130
[   77.531804][ T7255]  ? __pfx_profiling_store+0x10/0x10
[   77.531815][ T7255]  profile_init+0xd5/0x130
[   77.531827][ T7255]  profiling_store+0x7b/0x120
[   77.531838][ T7255]  kobj_attr_store+0x58/0x80
[   77.531854][ T7255]  ? __pfx_kobj_attr_store+0x10/0x10
[   77.531871][ T7255]  sysfs_kf_write+0xf2/0x150
[   77.531885][ T7255]  kernfs_fop_write_iter+0x3af/0x570
[   77.531895][ T7255]  ? __pfx_sysfs_kf_write+0x10/0x10
[   77.531908][ T7255]  vfs_write+0x7d3/0x11d0
[   77.531919][ T7255]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   77.531929][ T7255]  ? __pfx___mutex_lock+0x10/0x10
[   77.531939][ T7255]  ? __pfx_vfs_write+0x10/0x10
[   77.531958][ T7255]  ksys_write+0x12a/0x250
[   77.531967][ T7255]  ? __pfx_ksys_write+0x10/0x10
[   77.531981][ T7255]  do_syscall_64+0xcd/0xfa0
[   77.531997][ T7255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.532008][ T7255] RIP: 0033:0x7f929278efc9
[   77.532016][ T7255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.532026][ T7255] RSP: 002b:00007f9293600038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   77.532035][ T7255] RAX: ffffffffffffffda RBX: 00007f92929e6090 RCX: 00007f929278efc9
[   77.532042][ T7255] RDX: 0000000000000048 RSI: 0000200000000300 RDI: 0000000000000027
[   77.532047][ T7255] RBP: 00007f9292811f91 R08: 0000000000000000 R09: 0000000000000000
[   77.532053][ T7255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   77.532059][ T7255] R13: 00007f92929e6128 R14: 00007f92929e6090 R15: 00007ffcbf7b6368
[   77.532073][ T7255]  </TASK>
[   77.532076][ T7255] Mem-Info:
[   77.619301][ T7255] active_anon:9898 inactive_anon:1 isolated_anon:0
[   77.619301][ T7255]  active_file:13093 inactive_file:40639 isolated_file:0
[   77.619301][ T7255]  unevictable:1768 dirty:261 writeback:0
[   77.619301][ T7255]  slab_reclaimable:8726 slab_unreclaimable:68924
[   77.619301][ T7255]  mapped:24753 shmem:2400 pagetables:1220
[   77.619301][ T7255]  sec_pagetables:309 bounce:0
[   77.619301][ T7255]  kernel_misc_reclaimable:0
[   77.619301][ T7255]  free:449811 free_pcp:25703 free_cma:0
[   77.637519][ T7255] Node 0 active_anon:39592kB inactive_anon:4kB active_file:52344kB inactive_file:162356kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:98984kB dirty:1016kB writeback:0kB shmem:6064kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12496kB pagetables:4664kB sec_pagetables:1236kB all_unreclaimable? no Balloon:0kB
[   77.652021][ T7255] Node 1 active_anon:0kB inactive_anon:0kB active_file:28kB inactive_file:200kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:28kB dirty:28kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:112kB pagetables:216kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   77.662435][ T7255] Node 0 DMA free:15344kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:0kB free_cma:0kB
[   77.668172][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.672786][ T7255] lowmem_reserve[]: 0 1239 1239 1239 1239
[   77.674526][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.676349][ T7255] Node 0 DMA32 free:182968kB boost:0kB min:27580kB low:34472kB high:41364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:39592kB inactive_anon:4kB active_file:52344kB inactive_file:162356kB unevictable:3536kB writepending:1016kB zspages:0kB present:2080628kB managed:1269484kB mlocked:0kB bounce:0kB free_pcp:81912kB local_pcp:21992kB free_cma:0kB
[   77.689796][ T7255] lowmem_reserve[]: 0 0 0 0 0
[   77.691366][ T7255] Node 1 Normal free:1599848kB boost:0kB min:39660kB low:49572kB high:59484kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:28kB inactive_file:200kB unevictable:3536kB writepending:28kB zspages:0kB present:2097152kB managed:1781892kB mlocked:0kB bounce:0kB free_pcp:20188kB local_pcp:3360kB free_cma:0kB
[   77.693360][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.701988][ T7255] lowmem_reserve[]: 0
[   77.704087][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.705365][ T7255]  0 0 0 0
[   77.709323][ T7255] Node 0 DMA: 0*4kB 0*8kB 1*16kB (U) 1*32kB (U) 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15344kB
[   77.714154][ T7255] Node 0 DMA32: 7*4kB (UME) 18*8kB (UM) 16*16kB (UM) 244*32kB (UME) 205*64kB (UME) 150*128kB (UME) 32*256kB (UME) 22*512kB (UME) 32*1024kB (UME) 6*2048kB (M) 19*4096kB (UM) = 182892kB
[   77.720120][ T7255] Node 1 Normal: 8*4kB (UME) 29*8kB (UME) 28*16kB (UE) 27*32kB (UE) 23*64kB (UE) 9*128kB (UME) 1*256kB (U) 4*512kB (UM) 0*1024kB 2*2048kB (ME) 388*4096kB (M) = 1599848kB
[   77.725453][ T7255] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   77.728529][ T7255] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   77.731787][ T7255] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   77.734772][ T7255] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   77.737687][ T7255] 56124 total pagecache pages
[   77.739331][ T7255] 1 pages in swap cache
[   77.740643][ T7255] Free swap  = 124992kB
[   77.742559][ T7255] Total swap = 124996kB
[   77.743907][ T7255] 1048443 pages RAM
[   77.745149][ T7255] 0 pages HighMem/MovableOnly
[   77.746622][ T7255] 281759 pages reserved
[   77.747910][ T7255] 0 pages cma reserved
[   78.068106][ T5939] Bluetooth: hci2: unexpected event for opcode 0x0c26
[   78.287777][ T7297] binder: 7296:7297 ioctl c0306201 200000000080 returned -22
[   78.399759][ T5939] Bluetooth: hci1: command 0x0c1a tx timeout
[   78.399801][ T5935] Bluetooth: hci0: command 0x040f tx timeout
[   78.401789][ T5939] Bluetooth: hci3: command 0x0c1a tx timeout
[   78.636126][ T7307] netlink: 'syz.0.371': attribute type 1 has an invalid length.
[   78.654444][   T40] kauditd_printk_skb: 11 callbacks suppressed
[   78.654457][   T40] audit: type=1400 audit(1762085829.099:438): avc:  denied  { mount } for  pid=7311 comm="syz.1.372" name="/" dev="configfs" ino=1063 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   78.666216][   T40] audit: type=1400 audit(1762085829.099:439): avc:  denied  { search } for  pid=7311 comm="syz.1.372" name="/" dev="configfs" ino=1063 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   78.691690][ T7314] tipc: Enabled bearer <ib:gre0>, priority 29
[   78.734850][ T7319] netlink: 6 bytes leftover after parsing attributes in process `syz.1.375'.
[   78.737962][ T7319] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   78.772875][ T7322] netlink: 'syz.0.376': attribute type 64 has an invalid length.
[   78.775315][ T7322] netlink: 'syz.0.376': attribute type 4 has an invalid length.
[   78.777718][ T7322] netlink: 152 bytes leftover after parsing attributes in process `syz.0.376'.
[   78.777945][ T7319] netlink: 'syz.1.375': attribute type 21 has an invalid length.
[   78.783149][ T7319] netlink: 156 bytes leftover after parsing attributes in process `syz.1.375'.
[   78.787461][ T7322] trusted_key: syz.0.376 sent an empty control message without MSG_MORE.
[   78.827060][ T7329] binder: BINDER_SET_CONTEXT_MGR already set
[   78.829133][ T7329] binder: 7327:7329 ioctl 4018620d 200000000100 returned -16
[   78.831535][ T7329] binder: BINDER_SET_CONTEXT_MGR already set
[   78.833465][ T7329] binder: 7327:7329 ioctl 4018620d 200000000100 returned -16
[   78.835817][ T7329] binder: BINDER_SET_CONTEXT_MGR already set
[   78.837786][ T7329] binder: 7327:7329 ioctl 4018620d 200000000100 returned -16
[   78.866674][ T7333] netlink: 48 bytes leftover after parsing attributes in process `syz.0.379'.
[   78.871314][ T7333] afs: Unknown parameter 'dynkaller'
[   78.984467][ T7343] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.987274][ T7345] Bluetooth: MGMT ver 1.23
[   78.987445][ T7343] bond0: (slave sit0): The slave device specified does not support setting the MAC address
[   78.992491][ T7343] bond0: (slave sit0): Error -95 calling set_mac_address
[   78.996759][ T7341] infiniband syz!: set active
[   78.998357][ T7341] infiniband syz!: added team_slave_0
[   79.018322][ T7341] RDS/IB: syz!: added
[   79.019917][ T7341] smc: adding ib device syz! with port count 1
[   79.022231][ T7341] smc:    ib device syz! port 1 has no pnetid
[   79.067431][ T7361] netlink: 8 bytes leftover after parsing attributes in process `syz.0.386'.
[   79.072242][ T7361] netlink: 8 bytes leftover after parsing attributes in process `syz.0.386'.
[   79.076445][ T7361] netlink: 24 bytes leftover after parsing attributes in process `syz.0.386'.
[   79.098240][   T40] audit: type=1400 audit(1762085829.539:440): avc:  denied  { bind } for  pid=7363 comm="syz.2.387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   79.150741][ T7372] netlink: 'syz.2.389': attribute type 10 has an invalid length.
[   79.157044][ T7372] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.166169][ T7372] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   79.240587][ T7386] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7386 comm=syz.2.391
[   79.248328][ T7386] binder: 7385:7386 ioctl 4018620d 0 returned -22
[   79.251577][ T7386] binder: 7385:7386 ioctl c0306201 200000000240 returned -11
[   79.259303][ T7386] netlink: 92 bytes leftover after parsing attributes in process `syz.2.391'.
[   79.355068][ T7400] netlink: 14 bytes leftover after parsing attributes in process `syz.2.393'.
[   79.427697][ T7400] bond0 (unregistering): (slave batadv0): Releasing backup interface
[   79.432821][ T7400] bond0 (unregistering): Released all slaves
[   79.519244][  T839] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   79.690893][  T839] usb 5-1: config 0 has an invalid descriptor of length 134, skipping remainder of the config
[   79.695707][  T839] usb 5-1: too many endpoints for config 0 interface 0 altsetting 209: 129, using maximum allowed: 30
[   79.701127][  T839] usb 5-1: config 0 interface 0 altsetting 209 has 0 endpoint descriptors, different from the interface descriptor's value: 129
[   79.708130][  T839] usb 5-1: config 0 interface 0 has no altsetting 0
[   79.711454][  T839] usb 5-1: New USB device found, idVendor=1b96, idProduct=0009, bcdDevice= 0.00
[   79.715278][  T839] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.721324][  T839] usb 5-1: config 0 descriptor??
[   79.743225][   T40] audit: type=1400 audit(1762085830.189:441): avc:  denied  { read } for  pid=7409 comm="syz.1.395" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   79.745275][ T7411] deleting an unspecified loop device is not supported.
[   79.753156][   T40] audit: type=1400 audit(1762085830.189:442): avc:  denied  { open } for  pid=7409 comm="syz.1.395" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   79.766991][   T40] audit: type=1400 audit(1762085830.189:443): avc:  denied  { ioctl } for  pid=7409 comm="syz.1.395" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   79.862977][   T40] audit: type=1400 audit(1762085830.309:444): avc:  denied  { write } for  pid=7417 comm="syz.3.398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   80.076346][   T40] audit: type=1400 audit(1762085830.519:445): avc:  denied  { ioctl } for  pid=7431 comm="syz.2.404" path="pid:[4026532874]" dev="nsfs" ino=4026532874 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   80.114264][ T7436] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7436 comm=syz.2.405
[   80.118753][ T7437] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7437 comm=syz.2.405
[   80.130609][  T839] usb 5-1: string descriptor 0 read error: -71
[   80.139150][  T839] usb 5-1: USB disconnect, device number 4
[   80.226490][ T7453] netlink: 8 bytes leftover after parsing attributes in process `syz.2.409'.
[   80.317024][   T40] audit: type=1400 audit(1762085830.759:446): avc:  denied  { bind } for  pid=7465 comm="syz.2.413" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   80.383600][ T7472] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[   80.385826][ T7472] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   80.389876][ T7472] vhci_hcd vhci_hcd.0: Device attached
[   80.393567][ T7473] usbip_core: unknown command
[   80.395252][ T7473] vhci_hcd: unknown pdu 0
[   80.396912][ T7473] usbip_core: unknown command
[   80.400574][   T12] vhci_hcd: stop threads
[   80.401949][   T12] vhci_hcd: release socket
[   80.403400][   T12] vhci_hcd: disconnect device
[   80.404847][ T7472] syzkaller0: entered allmulticast mode
[   80.469834][ T7476] vlan2: entered promiscuous mode
[   80.472015][ T7476] syz_tun: entered promiscuous mode
[   80.479023][ T5939] Bluetooth: hci0: command 0x040f tx timeout
[   80.479081][ T5935] Bluetooth: hci3: command 0x0c1a tx timeout
[   80.479948][ T5934] Bluetooth: hci1: command 0x0c1a tx timeout
[   80.622182][   T40] audit: type=1400 audit(1762085831.069:447): avc:  denied  { read } for  pid=7487 comm="syz.1.419" name="/" dev="configfs" ino=1063 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   80.751041][ T5935] Bluetooth: hci2: unexpected event for opcode 0x0c26
[   81.125940][ T7521] netlink: 'syz.3.432': attribute type 1 has an invalid length.
[   81.129240][ T7521] netlink: 'syz.3.432': attribute type 4 has an invalid length.
[   81.169692][ T7528] overlayfs: overlapping lowerdir path
[   81.210841][ T5935] Bluetooth: hci0: unexpected event for opcode 0x0c26
[   81.249093][ T7310] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   81.300012][ T7542] bridge0: entered promiscuous mode
[   81.301742][ T7542] macsec1: entered allmulticast mode
[   81.303429][ T7542] bridge0: entered allmulticast mode
[   81.305906][ T7542] bridge0: port 3(macsec1) entered blocking state
[   81.308089][ T7542] bridge0: port 3(macsec1) entered disabled state
[   81.312260][ T7542] bridge0: left allmulticast mode
[   81.313967][ T7542] bridge0: left promiscuous mode
[   81.430000][   T53] usb 7-1: new low-speed USB device number 15 using dummy_hcd
[   81.521634][ T1338] cfg80211: failed to load regulatory.db
[   81.581757][   T53] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[   81.584661][   T53] usb 7-1: config 0 has no interface number 0
[   81.587314][   T53] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[   81.592049][   T53] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[   81.596524][   T53] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   81.600454][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.606707][   T53] usb 7-1: config 0 descriptor??
[   81.610180][ T7532] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   81.617196][   T53] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   81.817666][    C3] iowarrior 7-1:0.1: iowarrior_callback - usb_submit_urb failed with result -1
[   81.822309][   T34] usb 7-1: USB disconnect, device number 15
[   82.344906][ T7551] netlink: 'syz.1.438': attribute type 1 has an invalid length.
[   82.406488][ T7555] bond0: entered allmulticast mode
[   82.439070][ T7561] netlink: 'syz.2.441': attribute type 1 has an invalid length.
[   82.473939][ T7563] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=13 sclass=netlink_route_socket pid=7563 comm=syz.2.442
[   82.547642][ T7568] bond1: peer notification delay (8) is not a multiple of miimon (100), value rounded to 0 ms
[   82.554717][ T7568] 8021q: adding VLAN 0 to HW filter on device bond1
[   82.559365][ T5935] Bluetooth: hci3: command 0x0c1a tx timeout
[   82.559385][ T5939] Bluetooth: hci1: command 0x0c1a tx timeout
[   82.789493][ T7578] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   82.946032][ T7590] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   83.070830][ T7596] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   83.074152][ T7594] netlink: 'syz.1.451': attribute type 5 has an invalid length.
[   83.333213][ T7616] unsupported nla_type 4111
[   83.454374][ T7622] random: crng reseeded on system resumption
[   83.467709][ T7624] random: crng reseeded on system resumption
[   83.507961][ T7627] fuse: Unknown parameter 'r	otmode'
[   83.620262][ T7627] lo speed is unknown, defaulting to 1000
[   83.623770][ T7627] xfrm0 speed is unknown, defaulting to 1000
[   83.724388][ T7310] usb 5-1: unable to get BOS descriptor or descriptor too short
[   83.728123][ T7310] usb 5-1: unable to read config index 0 descriptor/start: -71
[   83.730724][ T7310] usb 5-1: can't read configurations, error -71
[   83.995489][ T7658] netlink: 'syz.2.468': attribute type 21 has an invalid length.
[   84.051381][ T7663] binder: BINDER_SET_CONTEXT_MGR already set
[   84.054019][ T7663] binder: 7657:7663 ioctl 4018620d 200000000100 returned -16
[   84.056865][ T7664] sctp: [Deprecated]: syz.3.470 (pid 7664) Use of struct sctp_assoc_value in delayed_ack socket option.
[   84.056865][ T7664] Use struct sctp_sack_info instead
[   84.106865][   T40] kauditd_printk_skb: 21 callbacks suppressed
[   84.106880][   T40] audit: type=1400 audit(1762085834.549:469): avc:  denied  { read } for  pid=7667 comm="syz.2.471" name="msr" dev="devtmpfs" ino=89 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   84.116844][   T40] audit: type=1400 audit(1762085834.549:470): avc:  denied  { open } for  pid=7667 comm="syz.2.471" path="/dev/cpu/1/msr" dev="devtmpfs" ino=89 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   84.125852][   T40] audit: type=1400 audit(1762085834.559:471): avc:  denied  { ioctl } for  pid=7667 comm="syz.2.471" path="socket:[18778]" dev="sockfs" ino=18778 ioctlcmd=0x942d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   84.135316][ T7673] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(74)
[   84.138230][ T7673] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   84.143409][ T7673] vhci_hcd vhci_hcd.0: Device attached
[   84.223635][ T7681] netlink: 'syz.2.473': attribute type 29 has an invalid length.
[   84.268153][ T7681] netlink: 'syz.2.473': attribute type 29 has an invalid length.
[   84.388996][ T1338] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[   84.635778][   T40] audit: type=1400 audit(1762085835.079:472): avc:  denied  { ioctl } for  pid=7682 comm="syz.1.474" path="socket:[18860]" dev="sockfs" ino=18860 ioctlcmd=0x8971 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   84.654061][   T40] audit: type=1400 audit(1762085835.099:473): avc:  denied  { bind } for  pid=7684 comm="syz.0.475" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   84.671803][ T7677] vhci_hcd: connection reset by peer
[   84.674300][ T1147] vhci_hcd: stop threads
[   84.675986][ T1147] vhci_hcd: release socket
[   84.678062][ T1147] vhci_hcd: disconnect device
[   84.726684][ T7685] __nla_validate_parse: 7 callbacks suppressed
[   84.726695][ T7685] netlink: 12 bytes leftover after parsing attributes in process `syz.0.475'.
[   84.757308][   T40] audit: type=1326 audit(1762085835.199:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7693 comm="syz.1.478" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f929278efc9 code=0x0
[   84.777586][   T40] audit: type=1400 audit(1762085835.219:475): avc:  denied  { module_request } for  pid=7695 comm="syz.3.479" kmod="net-pf-2-proto-9-type-0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   84.907339][   T40] audit: type=1400 audit(1762085835.349:476): avc:  denied  { read } for  pid=7709 comm="syz.3.483" name="fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   84.915812][   T40] audit: type=1400 audit(1762085835.349:477): avc:  denied  { open } for  pid=7709 comm="syz.3.483" path="/dev/fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   84.915850][   T40] audit: type=1400 audit(1762085835.349:478): avc:  denied  { ioctl } for  pid=7709 comm="syz.3.483" path="/dev/fb1" dev="devtmpfs" ino=640 ioctlcmd=0x4610 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   85.219014][ T5980] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   85.240005][ T7730] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   85.243187][ T7730] overlayfs: missing 'lowerdir'
[   85.252946][ T7730] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   85.256009][ T7730] overlayfs: failed to set xattr on upper
[   85.259143][ T7730] overlayfs: ...falling back to redirect_dir=nofollow.
[   85.262040][ T7730] overlayfs: ...falling back to metacopy=off.
[   85.264121][ T7730] overlayfs: ...falling back to index=off.
[   85.266279][ T7730] overlayfs: ...falling back to uuid=null.
[   85.309388][ T7738] netlink: 2384 bytes leftover after parsing attributes in process `syz.3.491'.
[   85.361796][ T7741] fuse: Unknown parameter ''
[   85.369075][ T5980] usb 5-1: Using ep0 maxpacket: 8
[   85.372683][ T5980] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   85.376243][ T5980] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   85.380442][ T5980] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   85.384725][ T5980] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   85.390106][ T5980] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   85.394081][ T5980] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.612427][ T5980] usb 5-1: usb_control_msg returned -32
[   85.620774][ T5980] usbtmc 5-1:16.0: can't read capabilities
[   85.628331][ T5939] Bluetooth: hci2: unexpected event for opcode 0x0c26
[   85.865865][ T7767] erspan1: entered promiscuous mode
[   86.019827][ T7776] tipc: Trying to set illegal importance in message
[   86.382112][ T5935] Bluetooth: hci0: unexpected event for opcode 0x0c26
[   86.448144][ T7819] veth1_to_bond: entered allmulticast mode
[   86.450451][ T7818] veth1_to_bond: left allmulticast mode
[   86.556567][ T7826] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[   86.659324][ T5957] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[   86.736058][ T7846] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7846 comm=syz.3.522
[   86.741189][ T7846] netlink: 'syz.3.522': attribute type 1 has an invalid length.
[   86.811371][ T5957] usb 7-1: Using ep0 maxpacket: 32
[   86.814832][ T5957] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[   86.817858][ T5957] usb 7-1: config 0 has no interface number 0
[   86.823209][ T5957] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[   86.827191][ T5957] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.830806][ T5957] usb 7-1: Product: syz
[   86.832736][ T5957] usb 7-1: Manufacturer: syz
[   86.834855][ T5957] usb 7-1: SerialNumber: syz
[   86.840414][ T5957] usb 7-1: config 0 descriptor??
[   86.848513][ T5957] smsc95xx v2.0.0
[   87.085854][ T7861] netlink: 8 bytes leftover after parsing attributes in process `syz.3.526'.
[   87.090338][ T7861] siw: device registration error -23
[   87.137709][ T7864] netlink: 108 bytes leftover after parsing attributes in process `syz.3.527'.
[   87.196371][ T7866] overlay: filesystem on ./bus is read-only
[   87.379887][ T5935] Bluetooth: hci0: unexpected event for opcode 0x0c2d
[   87.404853][ T7871] bridge2: entered promiscuous mode
[   87.406824][ T7871] bridge2: entered allmulticast mode
[   87.483506][ T7878] netlink: 8 bytes leftover after parsing attributes in process `syz.3.533'.
[   87.668417][   T53] usb 5-1: USB disconnect, device number 7
[   87.753581][ T7891] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   87.838065][ T7893] lo speed is unknown, defaulting to 1000
[   87.840741][ T7893] xfrm0 speed is unknown, defaulting to 1000
[   88.253967][ T7899] Invalid source name
[   88.255782][ T7899] UBIFS error (pid: 7899): cannot open "./file0", error -22
[   88.292206][ T7893] tipc: Disabling bearer <eth:syzkaller0>
[   88.418360][ T7909] sctp: [Deprecated]: syz.3.542 (pid 7909) Use of int in max_burst socket option.
[   88.418360][ T7909] Use struct sctp_assoc_value instead
[   88.706699][ T7919] erspan0: entered promiscuous mode
[   88.709353][ T7919] erspan0: entered allmulticast mode
[   88.838081][ T7929] overlay: Bad value for 'workdir'
[   88.917165][ T7936] overlay: ./file1 is not a directory
[   88.927110][ T7936] netlink: 'syz.0.552': attribute type 3 has an invalid length.
[   88.928468][ T7937] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0)
[   89.404830][ T5957] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[   89.409361][ T5957] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -71
[   89.419971][ T5957] usb 7-1: USB disconnect, device number 16
[   89.454143][   T40] kauditd_printk_skb: 38 callbacks suppressed
[   89.454154][   T40] audit: type=1400 audit(1762085839.899:517): avc:  denied  { append } for  pid=7946 comm="syz.2.555" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   89.519307][ T1338] vhci_hcd: vhci_device speed not set
[   89.751326][   T40] audit: type=1400 audit(1762085840.199:518): avc:  denied  { create } for  pid=7948 comm="syz.1.556" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   89.759820][   T40] audit: type=1400 audit(1762085840.199:519): avc:  denied  { write } for  pid=7948 comm="syz.1.556" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   89.767300][   T40] audit: type=1400 audit(1762085840.199:520): avc:  denied  { nlmsg_write } for  pid=7948 comm="syz.1.556" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   89.777467][   T40] audit: type=1400 audit(1762085840.199:521): avc:  denied  { setopt } for  pid=7948 comm="syz.1.556" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   89.779042][ T5957] usb 7-1: new full-speed USB device number 17 using dummy_hcd
[   89.803983][ T7956] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5126 sclass=netlink_route_socket pid=7956 comm=syz.1.558
[   89.891106][ T7964] IPv6: NLM_F_CREATE should be specified when creating new route
[   89.940769][ T5957] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[   89.944981][ T5957] usb 7-1: config 0 interface 0 has no altsetting 0
[   89.951960][ T5957] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   89.955771][ T5957] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   89.960132][ T5957] usb 7-1: Product: syz
[   89.961906][ T5957] usb 7-1: Manufacturer: syz
[   89.963241][ T7973] netlink: 'syz.1.564': attribute type 21 has an invalid length.
[   89.963871][ T5957] usb 7-1: SerialNumber: syz
[   89.967328][ T7973] netlink: 132 bytes leftover after parsing attributes in process `syz.1.564'.
[   89.979535][ T5957] usb 7-1: config 0 descriptor??
[   89.986896][ T5957] usb 7-1: selecting invalid altsetting 0
[   90.121043][ T7977] comedi comedi3: driver 'ni_daq_700' does not support attach using comedi_config
[   90.126333][ T7977] futex_wake_op: syz.1.565 tries to shift op by 32; fix this program
[   90.196434][   T34] usb 7-1: USB disconnect, device number 17
[   90.213273][ T7981] IPv6: sit1: Disabled Multicast RS
[   90.215735][ T7981] sit1: entered allmulticast mode
[   90.319016][ T5935] Bluetooth: hci3: command 0x0c1a tx timeout
[   90.713304][ T7988] netlink: 7 bytes leftover after parsing attributes in process `syz.1.569'.
[   90.721392][ T7988] netlink: 'syz.1.569': attribute type 13 has an invalid length.
[   90.785904][    T9] xfrm0 speed is unknown, defaulting to 1000
[   90.810849][   T40] audit: type=1400 audit(1762085841.259:522): avc:  denied  { listen } for  pid=7997 comm="syz.3.573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   90.855987][ T5935] Bluetooth: hci0: unexpected event for opcode 0x0c26
[   90.916918][   T40] audit: type=1326 audit(1762085841.359:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7991 comm="syz.2.571" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9666d8efc9 code=0x0
[   90.944616][ T7992] lo speed is unknown, defaulting to 1000
[   90.947395][ T7992] xfrm0 speed is unknown, defaulting to 1000
[   90.995306][ T5935] Bluetooth: hci2: unexpected event for opcode 0x0803
[   91.152459][   T40] audit: type=1400 audit(1762085841.599:524): avc:  denied  { execmem } for  pid=8014 comm="syz.3.579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   91.204375][   T40] audit: type=1400 audit(1762085841.649:525): avc:  denied  { bind } for  pid=8014 comm="syz.3.579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   91.325681][   T40] audit: type=1400 audit(1762085841.769:526): avc:  denied  { accept } for  pid=8016 comm="syz.1.580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   91.542637][ T8029] netlink: 24 bytes leftover after parsing attributes in process `syz.3.582'.
[   91.545956][ T8029] netlink: 24 bytes leftover after parsing attributes in process `syz.3.582'.
[   91.592345][ T8031] netlink: 'syz.3.583': attribute type 1 has an invalid length.
[   91.657797][ T8033] mkiss: ax0: crc mode is auto.
[   91.781166][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.983258][ T8052] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[   91.986182][ T8052] UDF-fs: Scanning with blocksize 2048 failed
[   91.999240][ T8052] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[   92.002248][ T8052] UDF-fs: Scanning with blocksize 4096 failed
[   92.554005][ T8076] xt_cgroup: xt_cgroup: no path or classid specified
[   92.562978][ T8076] netlink: 16 bytes leftover after parsing attributes in process `syz.0.600'.
[   92.569406][ T8081] netlink: 'syz.1.602': attribute type 1 has an invalid length.
[   92.597149][ T8081] 8021q: adding VLAN 0 to HW filter on device bond2
[   92.622364][ T8081] bond2: (slave wlan0): Enslaving as an active interface with a down link
[   92.854929][ T8119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.614'.
[   92.855774][ T8118] netlink: 8 bytes leftover after parsing attributes in process `syz.3.613'.
[   92.857814][ T8119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.614'.
[   92.863874][ T8118] netlink: 40 bytes leftover after parsing attributes in process `syz.3.613'.
[   92.951282][ T8127] netlink: 4 bytes leftover after parsing attributes in process `syz.3.616'.
[   93.736332][ T5935] Bluetooth: hci3: unexpected event for opcode 0x0c26
[   93.860508][ T8153] IPv4: Oversized IP packet from 172.20.20.24
[   93.864831][    C3] IPv4: Oversized IP packet from 172.20.20.24
[   93.905843][ T8155] fuse: Unknown parameter ''
[   93.934898][ T8157] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   93.938475][ T8157] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   93.944304][ T5935] Bluetooth: hci3: ACL packet for unknown connection handle 201
[   93.974279][ T5935] Bluetooth: hci3: unexpected event for opcode 0x0c26
[   94.620624][ T5935] Bluetooth: hci2: unexpected cc 0x042d length: 1 < 7
[   94.624612][ T5935] Bluetooth: hci2: unexpected event for opcode 0x042d
[   94.717535][ T8178] libceph: resolve '4' (ret=-3): failed
[   94.758303][ T8185] sit0: Caught tx_queue_len zero misconfig
[   94.761151][   T40] kauditd_printk_skb: 18 callbacks suppressed
[   94.761160][   T40] audit: type=1400 audit(1762085845.209:545): avc:  denied  { create } for  pid=8184 comm="" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   94.772496][   T40] audit: type=1400 audit(1762085845.219:546): avc:  denied  { write } for  pid=8184 comm="" path="socket:[22610]" dev="sockfs" ino=22610 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   94.970453][   T40] audit: type=1400 audit(1762085845.419:547): avc:  denied  { nlmsg_write } for  pid=8191 comm="syz.0.636" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[   94.977443][   T40] audit: type=1400 audit(1762085845.419:548): avc:  denied  { append } for  pid=8191 comm="syz.0.636" name="btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[   95.424649][ T8234] __nla_validate_parse: 2 callbacks suppressed
[   95.424661][ T8234] netlink: 28 bytes leftover after parsing attributes in process `syz.0.642'.
[   95.464247][ T8236] netlink: 'syz.0.643': attribute type 1 has an invalid length.
[   95.467621][ T8236] netlink: 224 bytes leftover after parsing attributes in process `syz.0.643'.
[   95.519859][ T8241] netlink: 4 bytes leftover after parsing attributes in process `syz.0.644'.
[   95.651524][   T40] audit: type=1400 audit(1762085846.099:549): avc:  denied  { bind } for  pid=8246 comm="syz.1.647" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   95.738874][ T8250] batadv0: entered promiscuous mode
[   95.744522][ T8249] batadv0: left promiscuous mode
[   95.788591][   T40] audit: type=1400 audit(1762085846.229:550): avc:  denied  { bind } for  pid=8251 comm="syz.1.649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   95.798515][ T8252] netlink: 52 bytes leftover after parsing attributes in process `syz.1.649'.
[   95.839492][   T40] audit: type=1400 audit(1762085846.289:551): avc:  denied  { accept } for  pid=8253 comm="syz.1.650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   95.929359][ T8259] loop9: detected capacity change from 0 to 7
[   95.934961][ T8259] Dev loop9: unable to read RDB block 7
[   95.937334][ T8259]  loop9: AHDI p1 p2
[   95.939939][ T8259] loop9: partition table partially beyond EOD, truncated
[   95.943082][ T8259] loop9: p1 size 4227858431 extends beyond EOD, truncated
[   96.244375][ T8274] netlink: 182 bytes leftover after parsing attributes in process `syz.3.656'.
[   96.251801][   T40] audit: type=1400 audit(1762085846.699:552): avc:  denied  { read } for  pid=5327 comm="acpid" name="mouse2" dev="devtmpfs" ino=2955 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[   96.258186][   T40] audit: type=1400 audit(1762085846.699:553): avc:  denied  { open } for  pid=5327 comm="acpid" path="/dev/input/mouse2" dev="devtmpfs" ino=2955 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[   96.265588][   T40] audit: type=1400 audit(1762085846.699:554): avc:  denied  { ioctl } for  pid=5327 comm="acpid" path="/dev/input/mouse2" dev="devtmpfs" ino=2955 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[   96.472242][ T8277] netlink: 28 bytes leftover after parsing attributes in process `syz.0.657'.
[   96.804715][ T8283] netlink: 24 bytes leftover after parsing attributes in process `syz.0.660'.
[   96.852056][ T8285] tmpfs: Bad value for 'size'
[   97.028523][ T8302] IPv6: NLM_F_CREATE should be specified when creating new route
[   97.151156][ T8311] cgroup2: Unknown parameter 'euid'
[   97.163360][ T8311] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3596000302 (14384001208 ns) > initial count (4696682236 ns). Using initial count to start timer.
[   97.255296][ T8320] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8320 comm=syz.0.671
[   97.431373][ T8334] UHID_CREATE from different security context by process 498 (syz.0.675), this is not allowed.
[   97.501791][ T8337] netlink: 12 bytes leftover after parsing attributes in process `syz.0.676'.
[   97.742137][ T5935] Bluetooth: hci3: unexpected event for opcode 0x0c26
[   97.786449][ T8346] geneve1: entered allmulticast mode
[   97.841725][ T8348] loop7: detected capacity change from 0 to 7
[   97.847763][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.851889][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.857874][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.861831][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.867920][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.871938][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.875879][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.879768][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.884116][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.888030][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.892261][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.895691][ T8350] geneve1: Caught tx_queue_len zero misconfig
[   97.896119][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.902435][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.906323][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.909774][ T5930] ldm_validate_partition_table(): Disk read failed.
[   97.912949][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.916854][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.920759][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.924564][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.928146][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   97.932118][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[   97.937105][ T5930] Dev loop7: unable to read RDB block 0
[   97.940498][ T5930]  loop7: unable to read partition table
[   97.943100][ T5930] loop7: partition table beyond EOD, truncated
[   97.966142][ T5342] ldm_validate_partition_table(): Disk read failed.
[   97.970510][ T5342] Dev loop7: unable to read RDB block 0
[   97.973547][ T5342]  loop7: unable to read partition table
[   97.976112][ T5342] loop7: partition table beyond EOD, truncated
[   98.017791][ T8357] netlink: 'syz.1.680': attribute type 1 has an invalid length.
[   98.024252][ T8357] tmpfs: Bad value for 'usrquota_block_hardlimit'
[   98.116036][ T8365] netlink: 252 bytes leftover after parsing attributes in process `syz.0.685'.
[   98.133576][   T13] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   98.136508][   T13] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   98.139588][   T13] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   98.142474][   T13] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   98.217523][ T8369] loop6: detected capacity change from 0 to 2640
[   98.220868][ T5930] ldm_validate_partition_table(): Disk read failed.
[   98.223330][ T5930] Dev loop6: unable to read RDB block 0
[   98.225733][ T5930]  loop6: unable to read partition table
[   98.229277][ T8369] ldm_validate_partition_table(): Disk read failed.
[   98.231879][ T8369] Dev loop6: unable to read RDB block 0
[   98.233940][ T8369]  loop6: unable to read partition table
[   98.236049][ T8369] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[   99.205173][ T8418] netlink: 96 bytes leftover after parsing attributes in process `syz.0.701'.
[   99.324336][ T5935] Bluetooth: hci3: unexpected event for opcode 0x0411
[   99.378533][ T8425] fuse: Unknown parameter '���.�0遦	ܒC�!v��4�P�7@.�q@s�}K�[@;��*�'
[   99.439169][ T5935] Bluetooth: hci0: command 0x040f tx timeout
[   99.722318][ T8441] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  100.017874][ T8461] sch_tbf: burst 32852 is lower than device lo mtu (65550) !
[  100.030723][ T8461] netem: change failed
[  100.078425][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  100.078439][   T40] audit: type=1400 audit(1762085850.519:565): avc:  denied  { bind } for  pid=8453 comm="syz.1.712" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  100.124411][ T8474] syzkaller0: entered promiscuous mode
[  100.126309][ T8474] syzkaller0: entered allmulticast mode
[  100.212694][ T8476] kvm: kvm [8473]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0xc1) = 0xfffffc18
[  100.216066][ T8476] kvm: kvm [8473]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0xc2) = 0xfffffc18
[  100.296575][   T40] audit: type=1400 audit(1762085850.739:566): avc:  denied  { map } for  pid=8480 comm="syz.3.722" path="socket:[22989]" dev="sockfs" ino=22989 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  100.305720][   T40] audit: type=1400 audit(1762085850.739:567): avc:  denied  { accept } for  pid=8480 comm="syz.3.722" path="socket:[22989]" dev="sockfs" ino=22989 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  100.426189][   T40] audit: type=1400 audit(1762085850.869:568): avc:  denied  { setattr } for  pid=8498 comm="syz.0.726" name="NETLINK" dev="sockfs" ino=25848 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  100.493866][ T8508] dlm: Unknown command passed to DLM device : 255
[  100.493866][ T8508] 
[  100.604614][ T8514] __nla_validate_parse: 3 callbacks suppressed
[  100.604629][ T8514] netlink: 20 bytes leftover after parsing attributes in process `syz.1.731'.
[  100.663695][ T8520] tipc: Resetting bearer <ib:gre0>
[  100.701321][ T8522] tipc: Can't bind to reserved service type 0
[  100.721466][ T8520] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.724756][ T8520] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.807204][ T8520] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.824264][ T8520] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.935406][ T8526] xfrm0 speed is unknown, defaulting to 1000
[  100.936315][   T13] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.937359][ T8526] syz1: Port: 1 Link DOWN
[  100.940451][   T13] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.945165][   T13] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.948266][   T13] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  101.519117][ T5939] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  101.519273][ T5935] Bluetooth: hci0: command 0x040f tx timeout
[  103.599115][ T5935] Bluetooth: hci0: command 0x040f tx timeout
[  105.679105][ T5935] Bluetooth: hci0: command 0x040f tx timeout
[  108.577337][ T1146] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.644462][ T1146] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.763683][ T1146] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.838485][ T1146] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.342053][ T1146] bond0 (unregistering): Released all slaves
[  109.399986][ T1146] bond1 (unregistering): Released all slaves
[  109.407245][ T1146] bond2 (unregistering): Released all slaves
[  110.089292][ T1146] hsr_slave_0: left promiscuous mode
[  110.092168][ T1146] hsr_slave_1: left promiscuous mode
[  110.115380][ T1146] veth1_macvtap: left promiscuous mode
[  110.118123][ T1146] veth0_macvtap: left promiscuous mode
[  110.120194][ T1146] veth1_vlan: left promiscuous mode
[  110.122066][ T1146] veth0_vlan: left promiscuous mode
[  119.186706][ T8583] bond0: Caught tx_queue_len zero misconfig
[  119.194907][   T40] audit: type=1400 audit(1762085869.639:569): avc:  denied  { ioctl } for  pid=8581 comm="syz.0.736" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x9411 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  119.229435][   T40] audit: type=1400 audit(1762085869.679:570): avc:  denied  { append } for  pid=8587 comm="syz.3.740" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  119.239611][ T8589] netlink: 14 bytes leftover after parsing attributes in process `syz.1.737'.
[  119.322967][ T5939] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  119.328505][ T5939] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  119.332134][ T5939] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  119.337087][ T5939] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  119.340967][ T5939] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  119.359559][ T8589] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  119.364687][ T8589] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.369569][ T8589] bond0 (unregistering): Released all slaves
[  119.375549][ T8594] udevd[8594]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory
[  119.504249][ T8616] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  119.518345][ T8616] CIFS mount error: No usable UNC path provided in device string!
[  119.518345][ T8616] 
[  119.522622][ T8616] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  119.528839][   T40] audit: type=1400 audit(1762085869.969:571): avc:  denied  { ioctl } for  pid=8615 comm="syz.3.748" path="socket:[23285]" dev="sockfs" ino=23285 ioctlcmd=0x894b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  119.575368][ T8593] lo speed is unknown, defaulting to 1000
[  119.578127][ T8593] xfrm0 speed is unknown, defaulting to 1000
[  119.705648][ T8621] lo speed is unknown, defaulting to 1000
[  119.711147][ T8621] xfrm0 speed is unknown, defaulting to 1000
[  119.753488][ T8593] chnl_net:caif_netlink_parms(): no params data found
[  119.799035][   T34] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  119.843970][ T8593] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.846356][ T8593] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.848689][ T8593] bridge_slave_0: entered allmulticast mode
[  119.851425][ T8593] bridge_slave_0: entered promiscuous mode
[  119.857591][ T8593] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.860635][ T8593] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.862963][ T8593] bridge_slave_1: entered allmulticast mode
[  119.866470][ T8593] bridge_slave_1: entered promiscuous mode
[  119.935025][ T8593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  119.959016][   T34] usb 5-1: Using ep0 maxpacket: 16
[  119.962193][   T34] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 1023
[  119.963591][ T8593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  119.966245][   T34] usb 5-1: config 1 interface 0 has no altsetting 0
[  119.973554][   T34] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  119.976395][   T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.979269][   T34] usb 5-1: Product: ᐄ
[  119.980981][   T34] usb 5-1: Manufacturer: ࠔ
[  119.982603][   T34] usb 5-1: SerialNumber: Ё
[  119.987179][ T8624] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  120.027382][ T8593] team0: Port device team_slave_0 added
[  120.032521][ T8593] team0: Port device team_slave_1 added
[  120.160846][ T8593] batman_adv: batadv0: Adding interface: batadv_slave_0
[  120.163963][ T8593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  120.173524][ T8593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  120.177714][ T8593] batman_adv: batadv0: Adding interface: batadv_slave_1
[  120.181033][ T8593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  120.191998][ T8593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  120.231404][   T34] usb 5-1: USB disconnect, device number 8
[  120.294914][ T8593] hsr_slave_0: entered promiscuous mode
[  120.297146][ T8593] hsr_slave_1: entered promiscuous mode
[  120.300143][ T8593] debugfs: 'hsr0' already exists in 'hsr'
[  120.302468][ T8593] Cannot create hsr debugfs directory
[  120.367344][ T8637] netlink: 6 bytes leftover after parsing attributes in process `syz.1.752'.
[  120.458198][ T8643] binder: 8642:8643 ioctl 4018620d 200000004a80 returned -22
[  120.509656][ T8593] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  120.514137][ T8648] binder: 8642:8648 ioctl c0306201 2000000001c0 returned -14
[  120.514912][   T40] audit: type=1400 audit(1762085870.959:572): avc:  denied  { listen } for  pid=8646 comm="syz.3.756" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  120.515969][ T8593] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  120.525818][   T40] audit: type=1400 audit(1762085870.959:573): avc:  denied  { accept } for  pid=8646 comm="syz.3.756" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  120.527715][ T8593] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  120.538238][ T8593] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  120.600170][ T8593] 8021q: adding VLAN 0 to HW filter on device bond0
[  120.614780][ T8593] 8021q: adding VLAN 0 to HW filter on device team0
[  120.623077][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.625330][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  120.632377][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.634688][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.751728][   T40] audit: type=1400 audit(1762085871.199:574): avc:  denied  { ioctl } for  pid=8658 comm="syz.0.757" path="socket:[23371]" dev="sockfs" ino=23371 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  120.780880][ T8593] 8021q: adding VLAN 0 to HW filter on device batadv0
[  120.801236][ T8666] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  120.808150][ T8666] Cannot find del_set index 2 as target
[  120.830628][ T8669] Cannot find del_set index 2 as target
[  120.843955][ T8666] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  120.915750][ T8593] veth0_vlan: entered promiscuous mode
[  120.922252][ T8593] veth1_vlan: entered promiscuous mode
[  120.937171][ T8593] veth0_macvtap: entered promiscuous mode
[  120.940872][ T8680] xt_CT: You must specify a L4 protocol and not use inversions on it
[  120.941542][ T8593] veth1_macvtap: entered promiscuous mode
[  120.953183][ T8593] batman_adv: batadv0: Interface activated: batadv_slave_0
[  120.957240][ T8593] batman_adv: batadv0: Interface activated: batadv_slave_1
[  120.966333][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  120.970241][ T8683] openvswitch: netlink: Flow key attr not present in new flow.
[  120.973871][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  120.976958][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  120.981823][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  121.001580][ T8685] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  121.004717][ T8685] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  121.008828][ T8685] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  121.014506][ T8685] overlayfs: missing 'lowerdir'
[  121.026447][ T1177] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.029884][ T1177] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.044158][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.046949][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.065128][   T40] audit: type=1400 audit(1762085871.509:575): avc:  denied  { mounton } for  pid=8593 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  121.104282][ T8687] netlink: 24 bytes leftover after parsing attributes in process `syz.4.738'.
[  121.140444][   T40] audit: type=1400 audit(1762085871.589:576): avc:  denied  { view } for  pid=8694 comm="syz.4.765" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  121.226497][ T8702] bridge: RTM_NEWNEIGH with invalid state 0x4
[  121.249680][ T8702] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8702 comm=syz.0.766
[  121.250276][ T8701] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8701 comm=syz.0.766
[  121.360040][ T5939] Bluetooth: hci1: command tx timeout
[  121.380110][ T8716] netlink: 32 bytes leftover after parsing attributes in process `syz.3.771'.
[  121.467980][ T8730] netlink: 8 bytes leftover after parsing attributes in process `syz.1.774'.
[  121.582520][ T8746] random: crng reseeded on system resumption
[  121.584290][   T40] audit: type=1400 audit(1762085872.029:577): avc:  denied  { append } for  pid=8745 comm="syz.1.779" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  121.598130][ T8746] netlink: 80 bytes leftover after parsing attributes in process `syz.1.779'.
[  121.602334][ T8746] netlink: 64 bytes leftover after parsing attributes in process `syz.1.779'.
[  121.669308][ T5957] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  121.822642][ T5957] usb 8-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  121.826654][ T5957] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.830541][ T5957] usb 8-1: Product: syz
[  121.832395][ T5957] usb 8-1: Manufacturer: syz
[  121.834443][ T5957] usb 8-1: SerialNumber: syz
[  121.962640][ T8776] input: syz1 as /devices/virtual/input/input9
[  121.973079][   T40] audit: type=1400 audit(1762085872.419:578): avc:  denied  { setattr } for  pid=8778 comm="syz.4.787" name="radio8" dev="devtmpfs" ino=1032 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  122.004621][ T8635] udevd[8635]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  122.011383][ T8776] ==================================================================
[  122.011391][ T8776] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0
[  122.011433][ T8776] Write of size 8 at addr ffffc900052e1000 by task syz.1.786/8776
[  122.011441][ T8776] 
[  122.011446][ T8776] CPU: 3 UID: 0 PID: 8776 Comm: syz.1.786 Not tainted syzkaller #0 PREEMPT(full) 
[  122.011458][ T8776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.011464][ T8776] Call Trace:
[  122.011468][ T8776]  <TASK>
[  122.011472][ T8776]  dump_stack_lvl+0x116/0x1f0
[  122.011495][ T8776]  print_report+0xcd/0x630
[  122.011507][ T8776]  ? __virt_addr_valid+0x81/0x610
[  122.011523][ T8776]  ? sys_fillrect+0x15d4/0x17b0
[  122.011537][ T8776]  kasan_report+0xe0/0x110
[  122.011548][ T8776]  ? sys_fillrect+0x15d4/0x17b0
[  122.011564][ T8776]  sys_fillrect+0x15d4/0x17b0
[  122.011580][ T8776]  ? __pfx___schedule+0x10/0x10
[  122.011595][ T8776]  ? __pfx_sys_fillrect+0x10/0x10
[  122.011612][ T8776]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  122.011629][ T8776]  bit_clear+0x17d/0x220
[  122.011641][ T8776]  ? __pfx_bit_clear+0x10/0x10
[  122.011653][ T8776]  ? __pfx___might_resched+0x10/0x10
[  122.011666][ T8776]  ? fb_get_color_depth+0x120/0x250
[  122.011677][ T8776]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  122.011692][ T8776]  ? __pfx_bit_clear+0x10/0x10
[  122.011704][ T8776]  __fbcon_clear+0x603/0x720
[  122.011716][ T8776]  fbcon_scroll+0x48b/0x640
[  122.011727][ T8776]  con_scroll+0x45f/0x690
[  122.011743][ T8776]  do_con_write+0x5575/0x8290
[  122.011763][ T8776]  ? check_all_holdout_tasks_trace+0xa50/0xcc0
[  122.011783][ T8776]  ? __pfx___mutex_lock+0x10/0x10
[  122.011793][ T8776]  ? __pfx_do_con_write+0x10/0x10
[  122.011807][ T8776]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  122.011820][ T8776]  con_write+0x23/0xb0
[  122.011834][ T8776]  n_tty_write+0x41e/0x11e0
[  122.011848][ T8776]  ? __pfx_n_tty_write+0x10/0x10
[  122.011857][ T8776]  ? trace_kmalloc+0x2b/0xd0
[  122.011871][ T8776]  ? __pfx_woken_wake_function+0x10/0x10
[  122.011883][ T8776]  ? kfree+0x252/0x6d0
[  122.011897][ T8776]  ? __pfx_n_tty_write+0x10/0x10
[  122.011908][ T8776]  file_tty_write.constprop.0+0x503/0x9b0
[  122.011925][ T8776]  vfs_write+0x7d3/0x11d0
[  122.011935][ T8776]  ? __pfx_tty_write+0x10/0x10
[  122.011949][ T8776]  ? __pfx_vfs_write+0x10/0x10
[  122.011958][ T8776]  ? find_held_lock+0x2b/0x80
[  122.011974][ T8776]  ksys_write+0x12a/0x250
[  122.011983][ T8776]  ? __pfx_ksys_write+0x10/0x10
[  122.011994][ T8776]  do_syscall_64+0xcd/0xfa0
[  122.012011][ T8776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.012021][ T8776] RIP: 0033:0x7f929278efc9
[  122.012030][ T8776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.012040][ T8776] RSP: 002b:00007f9293600038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  122.012050][ T8776] RAX: ffffffffffffffda RBX: 00007f92929e6090 RCX: 00007f929278efc9
[  122.012057][ T8776] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000002
[  122.012063][ T8776] RBP: 00007f9292811f91 R08: 0000000000000000 R09: 0000000000000000
[  122.012069][ T8776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  122.012075][ T8776] R13: 00007f92929e6128 R14: 00007f92929e6090 R15: 00007ffcbf7b6368
[  122.012085][ T8776]  </TASK>
[  122.012089][ T8776] 
[  122.012092][ T8776] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc90004fe1000 allocated at drm_gem_shmem_vmap_locked+0x561/0x7e0
[  122.012113][ T8776] Memory state around the buggy address:
[  122.012118][ T8776]  ffffc900052e0f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  122.012125][ T8776]  ffffc900052e0f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  122.012132][ T8776] >ffffc900052e1000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  122.012137][ T8776]                    ^
[  122.012142][ T8776]  ffffc900052e1080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  122.012149][ T8776]  ffffc900052e1100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  122.012155][ T8776] ==================================================================
[  122.012160][ T8776] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  122.012166][ T8776] CPU: 3 UID: 0 PID: 8776 Comm: syz.1.786 Not tainted syzkaller #0 PREEMPT(full) 
[  122.012190][ T8776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.012197][ T8776] Call Trace:
[  122.012201][ T8776]  <TASK>
[  122.012205][ T8776]  dump_stack_lvl+0x3d/0x1f0
[  122.012220][ T8776]  vpanic+0x640/0x6f0
[  122.012236][ T8776]  panic+0xca/0xd0
[  122.012251][ T8776]  ? __pfx_panic+0x10/0x10
[  122.012268][ T8776]  ? check_panic_on_warn+0x1f/0xb0
[  122.012284][ T8776]  check_panic_on_warn+0xab/0xb0
[  122.012300][ T8776]  end_report+0x107/0x170
[  122.012311][ T8776]  kasan_report+0xee/0x110
[  122.012323][ T8776]  ? sys_fillrect+0x15d4/0x17b0
[  122.012339][ T8776]  sys_fillrect+0x15d4/0x17b0
[  122.012354][ T8776]  ? __pfx___schedule+0x10/0x10
[  122.012369][ T8776]  ? __pfx_sys_fillrect+0x10/0x10
[  122.012386][ T8776]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  122.012401][ T8776]  bit_clear+0x17d/0x220
[  122.012413][ T8776]  ? __pfx_bit_clear+0x10/0x10
[  122.012425][ T8776]  ? __pfx___might_resched+0x10/0x10
[  122.012437][ T8776]  ? fb_get_color_depth+0x120/0x250
[  122.012448][ T8776]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  122.012462][ T8776]  ? __pfx_bit_clear+0x10/0x10
[  122.012473][ T8776]  __fbcon_clear+0x603/0x720
[  122.012486][ T8776]  fbcon_scroll+0x48b/0x640
[  122.012497][ T8776]  con_scroll+0x45f/0x690
[  122.012512][ T8776]  do_con_write+0x5575/0x8290
[  122.012527][ T8776]  ? check_all_holdout_tasks_trace+0xa50/0xcc0
[  122.012547][ T8776]  ? __pfx___mutex_lock+0x10/0x10
[  122.012556][ T8776]  ? __pfx_do_con_write+0x10/0x10
[  122.012571][ T8776]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  122.012584][ T8776]  con_write+0x23/0xb0
[  122.012598][ T8776]  n_tty_write+0x41e/0x11e0
[  122.012611][ T8776]  ? __pfx_n_tty_write+0x10/0x10
[  122.012621][ T8776]  ? trace_kmalloc+0x2b/0xd0
[  122.012631][ T8776]  ? __pfx_woken_wake_function+0x10/0x10
[  122.012643][ T8776]  ? kfree+0x252/0x6d0
[  122.012657][ T8776]  ? __pfx_n_tty_write+0x10/0x10
[  122.012668][ T8776]  file_tty_write.constprop.0+0x503/0x9b0
[  122.012684][ T8776]  vfs_write+0x7d3/0x11d0
[  122.012694][ T8776]  ? __pfx_tty_write+0x10/0x10
[  122.012708][ T8776]  ? __pfx_vfs_write+0x10/0x10
[  122.012717][ T8776]  ? find_held_lock+0x2b/0x80
[  122.012733][ T8776]  ksys_write+0x12a/0x250
[  122.012742][ T8776]  ? __pfx_ksys_write+0x10/0x10
[  122.012758][ T8776]  do_syscall_64+0xcd/0xfa0
[  122.012774][ T8776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.012785][ T8776] RIP: 0033:0x7f929278efc9
[  122.012792][ T8776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.012802][ T8776] RSP: 002b:00007f9293600038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  122.012812][ T8776] RAX: ffffffffffffffda RBX: 00007f92929e6090 RCX: 00007f929278efc9
[  122.012818][ T8776] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000002
[  122.012824][ T8776] RBP: 00007f9292811f91 R08: 0000000000000000 R09: 0000000000000000
[  122.012831][ T8776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  122.012837][ T8776] R13: 00007f92929e6128 R14: 00007f92929e6090 R15: 00007ffcbf7b6368
[  122.012847][ T8776]  </TASK>
[  122.013452][ T8776] Kernel Offset: disabled

VM DIAGNOSIS:
12:17:52  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81617a73 RDX=ffff888058f92480
RSI=ffffffff81617abb RDI=ffffffff93a69fe0 RBP=ffff88806a420000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff274d3fc R10=ffffffff93a69fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81617abc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe5efaa2880 ffffffff 00c00000
GS =0000 ffff8880d6a08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe5ef3909c0 CR3=0000000063068000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffffc0 Opmask01=0000000000800000 Opmask02=0000000001ff001f Opmask03=0000000001041000
Opmask04=00000000ffffefff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd5c2b6d10 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000556b78f69ea0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000556b78f67900
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe5ef3f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ff00000000 ff00000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 0000ff000000ff00
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73730c969c4c6fa3 73730c969c4c6fa3
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737372b2 1f5c7300161f7340
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 003d4d4554535953 425553003d485441 505645440073253a 73252b0069256e00
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00184d4554535953 4255530018485441 505645440056001f 56000e004c004b00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 76703a5f39303032 2c394843492b3533 515f435064726164 6e6174536e703a55
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 273a756b733a302e 30312d3533712d63 707276633a317463 3a554d45516e7663
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a302e30312d3533 712d63707276703a 5f393030322c3948 43492b3533515f43
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 50647261646e6174 536e703a554d4551 6e76733a302e3072 623a343130322f31
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302f343064623a31 2b32316f70625f32 2d332e36312e312d 6e61696265642d33
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000014100 000000000000303d 44440045525f5346 0054242044492065
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81617a73 RDX=ffff88801da9a480
RSI=ffffffff81617abb RDI=ffffffff93a69fe0 RBP=ffff88806a520000 RSP=ffffc900006a0fd0
R8 =0000000000000001 R9 =fffffbfff274d3fc R10=ffffffff93a69fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81617abc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6b08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b32963fff CR3=0000000048787000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d2412fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d2412fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d2412fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d2412ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d241307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d241315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d25b74a8 00007fc6d25b74a0 00007fc6d25b7498 00007fc6d25b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d311d100 00007fc6d25b7460 00007fc6d25b7478 00007fc6d25b74c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d25b74b8 00007fc6d25b74b0 00007fc6d25b74a8 00007fc6d25b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81617a73 RDX=ffff8880607ea480
RSI=ffffffff81617abb RDI=ffffffff93a69fe0 RBP=ffff88806a620000 RSP=ffffc90000648fd0
R8 =0000000000000001 R9 =fffffbfff274d3fc R10=ffffffff93a69fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81617abc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fc6d31ae6c0 ffffffff 00c00000
GS =0000 ffff8880d6c08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fc6d318cf98 CR3=0000000048787000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d2412fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d2412fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d2412fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d2412ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d241307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d241315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d25b74a8 00007fc6d25b74a0 00007fc6d25b7498 00007fc6d25b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d311d100 00007fc6d25b7460 00007fc6d25b7478 00007fc6d25b74c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc6d25b74b8 00007fc6d25b74b0 00007fc6d25b74a8 00007fc6d25b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff85296275 RDI=ffffffff9add8780 RBP=ffffffff9add8740 RSP=ffffc90005a97150
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=666f206574697257
R12=0000000000000000 R13=0000000000000005 R14=ffffffff9add8740 R15=ffffffff85296210
RIP=ffffffff8529629f RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f92936006c0 ffffffff 00c00000
GS =0000 ffff8880d6d08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000002000 CR3=000000004c8a5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c5212fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c5212fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c5212fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c5212ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c521307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c521315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 95000200a0000000 c50000000f000000 a47fe28400000000 0006000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c5f1d100 00007f46c53b7460 00007f46c53b0004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c53b74b8 00007f46c53b74b0 00007f46c53b74a8 00007f46c53b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000005 0000000000000000 0000000000000000 0000000000000110
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000