last executing test programs:

1m12.650664503s ago: executing program 3 (id=294):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x1}}, './file0\x00'})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x0)
socket$inet(0x2, 0xa, 0x0)
r2 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x7a98, 0x0, 0x0, 0x0, 0x0)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_SET_LEDBIT(r5, 0x40045569, 0x0)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)

1m12.647577492s ago: executing program 3 (id=297):
r0 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
write$cgroup_netprio_ifpriomap(r0, &(0x7f0000000040)={'veth1_virt_wifi', 0x32, 0x38}, 0x12)
r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r1, 0x40305652, &(0x7f00000000c0)={0x8, 0x3, 0x4, 0xe, 0x4, 0x9fc1})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f00000002c0)={'syztnl2\x00', &(0x7f0000000240)={'syztnl1\x00', <r2=>0x0, 0x10, 0x80, 0x0, 0x7, {{0x16, 0x4, 0x3, 0x6, 0x58, 0x68, 0x0, 0x7, 0x4, 0x0, @multicast2, @remote, {[@timestamp_prespec={0x44, 0xc, 0xbe, 0x3, 0x2, [{@multicast1}]}, @lsrr={0x83, 0x1f, 0x77, [@local, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @private=0xa010102, @multicast2, @local]}, @generic={0x86, 0x4, "1ba3"}, @rr={0x7, 0x13, 0x37, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @private=0xa010101, @private=0xa010102]}, @noop]}}}}})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000200)={@ifindex=r2, 0x2e, 0x1, 0x22086b7f, &(0x7f0000000100)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0], &(0x7f00000001c0)}, 0x40)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x22100, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000003c0)=[@text32={0x20, &(0x7f0000000340)="360fc76c684a0fc7af7b1600000f20250f01df643e660f38821766b8d4008ee82e66660f74ad04000000c4e199c4f7460f01c4b9cf0b0000b806000000ba000000000f30", 0x44}], 0x1, 0x31, &(0x7f0000000400), 0x0)
ioctl$VIDIOC_G_EDID(r1, 0xc0285628, &(0x7f0000000480)={0x0, 0x4, 0x12000000, '\x00', &(0x7f0000000440)=0x6})
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$RTC_ALM_READ(r1, 0x80247008, &(0x7f00000004c0))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$RTC_UIE_OFF(r1, 0x7004)
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r1, 0xc080661a, &(0x7f0000000500)={@desc={0x1, 0x0, @desc3}})
ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r1, 0x80083313, &(0x7f0000000580))
sendfile(r5, r4, &(0x7f00000005c0), 0x8)
recvmsg$qrtr(r1, &(0x7f0000001ec0)={&(0x7f0000000600), 0xc, &(0x7f0000001880)=[{&(0x7f0000000640)}, {&(0x7f0000000680)=""/251, 0xfb}, {&(0x7f0000000780)=""/110, 0x6e}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/113, 0x71}], 0x5, &(0x7f0000001900)=[{0x78, 0x0, 0x0, ""/100}, {0xe8, 0x0, 0x0, ""/214}, {0x18, 0x0, 0x0, ""/5}, {0x80, 0x0, 0x0, ""/112}, {0x68, 0x0, 0x0, ""/86}, {0xd8, 0x0, 0x0, ""/194}, {0x80, 0x0, 0x0, ""/105}, {0x108, 0x0, 0x0, ""/246}, {0xe0, 0x0, 0x0, ""/207}], 0x5a0, 0x2}, 0x38, 0x2002)
r6 = memfd_secret(0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c89425, &(0x7f0000001f00)={"791a5aa5a07f4c054732037fa8dc602a", <r7=>0x0, 0x0, {0x1b4, 0x714c}, {0x7fffffffffffffff, 0x7}, 0x1, [0x81, 0x1, 0x4, 0x1, 0x10, 0xfff, 0x3, 0x6, 0x8, 0x6, 0x0, 0xffffffffffffe185, 0x4, 0x4, 0xe, 0x7]})
ioctl$BTRFS_IOC_RM_DEV_V2(r6, 0x5000943a, &(0x7f0000002080)={{r4}, r7, 0x4, @inherit={0x58, &(0x7f0000002000)={0x1, 0x2, 0x6, 0x5ff, {0x2, 0x2, 0x4, 0xfffffffffffffffd, 0x5}, [0x5, 0x7]}}, @name="33837896a4f42e8898eb1b92882ab4fae4126cf27059e9ecc220cdabfc72b2647369f147f6c5000bb6008996d59b997f6a80b0de8541ae8a8e1ceb3a71a95e32d6de5caf08156f3f014bf7417197cb6a5d607a991854a43b351e497bf8cc040549b3fe9ad7e44dfd0f52f98a93eb118206f023f22296ed11a5713f1c2988191a57167baea64388a45592d5b028eeb8b50167db28bf14bae4037724b3c91b8b9dce6bf58d57813f1399be25674addf8cf277dac5dca7bada6b3253c11ec9f832368bc983bfee8928d257eb1fecfe223c6cc3ee4e06ce63c18afba2f8b368717aa5d8ee3b2dc3188bca72f463228274920bf8730b5bd2bd7a0636729d644e6f60655a4265c65a88b489ce2e3f21c2e7ec1d9baf615bc22417e5ba49810e91707b64bb1453e179ee0ee97bdd275197d97cf92cfdb9820182b655e8c428e424603efd92c1019d87b6f7daeddaf25d8745f78d7482374644a4ff9b91d5fceb6257c120b53471b0bcb12e6cba20efe3e29ba64c1d8c6a0e6f9bcc40e3a57103e0d066c28a66f6ff76ac9f0914e4ea04711e24c529d6925fef4b262000f2a9b659d35611485f7da5d80a701b32fc6d4242d55fbf896cd5bcf446a46c5d45af75b4f058faf784c7c00369be8df3ba31eea2dafd285e968e6b4ca48932c47b3aaff9562bd168e892a71fc8d1c2d00c26908021df62f214caf167dd4823d40ed453fdec8b1d5f2ae5053524551101adbece62dc04c94e0a153b10fa1236ffd4d0af69784fb5b508a001ff6112d3543d160a85a1953c8a35a6c69530b308c15e1ecc0e37c4365304eed2dd79aac6afaa4a50d28a20fa59a9a7420fb59477ed32ef541556592fc50dec76993d3e7e5d5afe8f86b2061247846b875f5b8d506984e0a70f18e2dceb31fbd66e70473c598d02dacd78c70edd885f5b0a5f4570d7d88c04aa543b92aae4c713a6d33b4aef7519c32300792c28f1e0f2f02bbdc20fcaabfa029339faff730a43f1d417a98be5eeee36cd10b80d26a6f12ed48415a1f58cda7034807e801970e2a3d6f9e2602f8dc98b74b6325f1b7493f2be1909351b48b8493a0ec6124afa33055916e4062a8382337aeef2e825079cc01f8f8764c2cc78b695128082c1ca03b449dc6a120fc1ced1a5d513a3f31f7e75c0fc0e764ce08e8bf0477e1ab56379ef110b360d2470a130a043bca96e50b180478fd1393d0e98c032ef7b4ccf7001cab44f52a61c54b24c0173e4df3659aeaaa112e8c7de599ff00226b1369b65d5656e45092d90d688808c020fda94b40d5924c630007271374afc7669dfdf25e702023a235bda36035aa1e1b014d23b1bc8a67edd10ec608c2af4212e609ab2adb42e8867f2efbe9e95b8ef4777698179dfce150b4f0cf9dfbead9f9b2f04261d9dcdeda8fa9c09fde8a509ba452269502dd9f6fad519d5d79cd1960e91dcc15cae62d94c05a25d8b8d98f99822e807ee79b9b56429b5a038729c75d687bfe50b068e9d8341a6b17f53b3cd6127113d06a84d8c90d55cbfcb24fd874e0c46aa2f474783cc1a9cdd60b05b533992e5b6cb572744df44d1887e8dcbbd92e78e7395e5d568818ef80b6164d4fc2d8551fa90fbeceb4f3776cbbe2a9bc728ed8f38591fbd746715edd8df31953eb0f6dd620b16286706574c5ce4b044b26514c967918703eb75da5ad343b16bf6d013771125ac968a17664b3e5b69a3d1a6bdf158c458f724cc281f6bf74e210678a2cc220209317ef1fce396cda77895ca89733fefea270a7e8851d7b75885bc6d237e5f307cd34ec5718690b4421437b49f1c3610336914e67ffeecf8e8160dbef082dfb1785c34d916b19c602eb793f90b3d3c09b28153415a1893e7058354730d3ea113ef9a944f78ce7121a3e4225d8a97f3d0dd922ffcc053263b3feb3fd66970ea9ced6050b8e7535526aabf1175848d18cc247e0b5b09c853cbe97cce95c7ff2b33a5656ccd444b60c20687558eff4f65aedad846fd4f09459d640fbf6b2c0d0dae1a0bcbfab3f66c54df891359765a57412c115e643ad7ed9d84f4016bc3658af7d906d524a2d8e39386a0e7339f8378ebd9ebf92023bafd7a5ced98a0dd07aff3756befec9a81bf6bf964e23d14189187705e3aac82c36c1749b988605f4d809904b0570ae1098912b3deff8c3c49656132a7069a9fb789eb5633c45c86ca280eb6a24635c2d08b07fd09446e59b33083e000c427b8c54022190e0f1b529ca71bc7d79ca24e43f85284952e7377335c3ee1dd339edb82bc59d6bd9e777fe3f821bad49d0506963ab31cc5e9c1a32acd88ffb6ac565b44eee2bfa457446d8c6b8275d9d23500a9f0d6585f534655ad0a21b242e8ae7405bab485c3f88c903c560dfc57792c5a0ec47a9aeb4dbbb1c62c54f59dd7d69781671cb032c2b63f2d25ae7860f0a345c3467b693296f8fa36fb60dd3188641cae4a586872de6c959a1474c8b52b30a6ff792816140686301560bfb0f9c2f5ca7360f1012825d91a7613a7bfd76491e8efb81c6c0c2e9d39c6df079cf0263155c44d4a8eaaaf03035d6f0207ccce6cd5ce02f39f27da825def8e7105eb7e7e453ed7c938f381f72a7bc539c55ef2b10b5f82f79aaed8889e927c9132c24624f4160b40e830f241f1d663c9122092b5157c370e7e1e622d83b5f42b9acfcb1cf3e39f12d91a84ea4472ec45e5248fc307f7a51d9a53ad627199862e13d92b3c4da480f669acd25074f6c0e9bc5682616ce5276e98b8117314941d23a01c44398f703a0455cab1b72c9c6309b54656bf39fca811dbd1a8473347f94a1c73bbfa6ba98f3fe827d86ee8157aa0d63a0edcbf8d7050efce01ddbbfb48ff5d0fb27a49fc8cdd37c58f32834dc37acb7ce486fc36d8307a24819c3361b73fc91e4b9f69c68d3d107d77f202b4beb80e7214d90a4957c3fb65de4e868c3948edf0ece227d3485fd127d8b799fde2f3ece5c808f0049ac13e1b30961fcc033598000b85846766dcb1231f37d61f3b814199dd272e8d38cf1fd7cd3e9b5737a67028cb226caf578d32427af8f7bbb4bacdd1058dfd7efb8c2c1d88de9d8506cc46a95c48985819ce1ba96f0fff28a55df5b07b69803607158b88104983d125a2c6efe56de4293f0e2c272f81571cc5c8084d115adfba3356da3f8c64e1fa1552c0619cb1f418df67b6231615d3aeda7f23feb8cca46c7fd79f3b6e2e0be2373ce3ced872d26a31f614d85aa21a01f93546c63c1c791e6717b885713108bf92b91893538c08634388733cdab0c969002fa0b9b18162b031e67fb76662290e158bf996d631775491c046c9d273e8ab00f20e193193e1910b5e73e7ae08ccfabd93edbfeb928c50f5abf953f44b0c2373c31cfc91e4653c83d2e8efc048fea526c87177cb22fb6bc7b769cedad08bfa693f633e95a0f06f92f6a51cc4c8d8863cca963c4f5accc548248fae04b35a62becc2b396a67981b5fb46cf431fd926bb9e8203bd56f8f8b86ef568dda122ff79a47c359a50ada2b27bd1c8e54a3375b385097c35a154e6edd0c715f19d0d7ce3ffa87402494a9a92669bb538597af69ccfe484f2af6613562d974619be324ccdbe3837620456809d8daae364b7f462735a9419affbb8cb322bce27a3cadcd6bb9580f7f528d78b0752f6a1b841e08b2b32ca36ca41d2ae1e02a0e48165e77a3aeebb5f86385bee7a5719e58a78e6f219a5e01c0938b807e7e3323f31a215690758910d236e7c954916fc07ae037acc3633cd1589c0bbaf269a44050d1c30dbd5d353a9640d56c433fc32d480d616cb54347305020bd7438cf641e7dc45ec6cb8a19b06e453f5f6796764fb044147f6d9856cc36ceeedf0ef800d78c2c081ccded0b81fd62f3fcb84aa6c723bc6579579e1a608e8c01aa31a869ff87774c6efc0606319d51578439fb091a0a3db755de9a76a3e398bcfcb36742132a5384b054c7c2aeb3b8ab3c784afe6194bb1fc44a6f92d378e4146e9707f4f1cdc7a28c1bff3df662f5cf75b019fcfc6edf1e97e2ce79b99c21569648283b52703157bce321d71b5c295889aac98f657c761240aed092ba9e7b45fff0edca49f8fab1906866e1144ddd1ca9e79626c8a52412d0f9499e2c746e4f4b1ced049cab3bb990bcf313f692e9febbfce8d95bb6b30ac1133946cc10d7c83a0e13869cffbbe60c6db7416071f4025e8f87334bcc869159845f77c99bf0d19045038fca440b4047f330b5435e2b341b52e1d0e097d52aad33966e734d205e5fc47fb475a204486fd2870148f62f7c713d285d76c4505fc29bc6ac3270e81e1ccc6e7ab72ebd981a14aac5b00e4b20d84c77d4364527f5e06a4ce80e74234836c357a17c3bb6db176e9232fc8873be3f9654248356710efdb46c87015078343e42cc9b5c164fb6ecd7ed45c9ee30daffccb1e39ed817d0c189d16a2636528a8dec844de0f16f9aef2c925418dad3d34fd8cb8bf0956840e8c611a87c13f959dfcca478a10542f18e9a41490d7ef1e6ffb03c472010b9346c43d99670aab014e0ac26e72162152aae700eff4f3fa696bfdf8fb1df348e2b17a6cbc90203fd7470ccc2ab2665fddd21cf0d704a0083ca3621a4d40aba7bb803bb30121ddf69d62684f72231c26ad2d80a78d0f4b4228ca19f879d0c8303610da329c76179a3a3a530a146cb4b23171b4cb5770a87b04775a342be3afb433d05b26b66fc7efd2a3fd05d4f60524d34c3dd75cee571681ff0717a2ec538a12022b578f2b1788a2defe80043bc0a92dffb03baae2452a80c6e294be69599cd9595874e813952ab2d9e570ec50df25cc835895c802deee19f02d8dae5e2ac1123e55ebf75dcfcff427a57cdcd49b837e45cd804081b61e36f19e9c990d77013ead44d140ae53ec5983f17fb8ec7517876179e2ae4f299f339bfaa2b8c63978455d97f12b98dba8596879d99d9aad9f62e837e87e006df10976c06e38b405a78ded66b6d39e4b84fcee72326417f36740c6506df26a4f7de15d30f6e52e8e4cd3bf6014144e1dc7c5c9ac526149cb8791fdeb4f49a39657c02333c63ed0351dc7c9b7ab48f130b59508c79330cf2363b8b203677bec517a3088d11b13de7358cea786a4be91c05cfc7e47035efd0d9710102b9b6b1f8e0e50b6b083587180c6a657bb1affd2f1c60b4d8dca403054331e7ba304d0e9f8483737a063b350a25f84d3272615af4412718626a7a5721997728827781bbfe40ab2ed8ce8c5113cab735a8c95f055883a621b1e67515a7273700b2b192ede92609c554e10b8a66df323a0ff908412b5524811643f81c8dd32263726bd33b94619dd57f53199a6f031adee4952703f3f038e054107f9480934c077917b46aa8d69f3f8f236a4662286ae0504e9d4fc1551cbec1f9f68fb4fe1f6bac0500908488633c3c1a86f5491ad380b6aa7df69e26d9fccef5e79a42f12efe4ba8fb0e8f96c59f72315d3dc76dee4f465048859e2efdd99d8443e2f0520854f4e13b409d3e8271676c0d3262e43a7eb43c71283bac849a3c0c4ef0c23b2385a23138ba74ef53d6681b8adefe487037aa15a7497d8caeb353c7559b97576abc2aa83146cc6c611799dc894f8fc2c9a9ddfb6a4324887e9b06d912385bb6aab24953678357f080144b0dcd0abf74bccc880142cc408443982c53b6098cc3a767b35c7936201cf42759f129dab89ef707c231e1a02883a40"})
r8 = signalfd4(r1, &(0x7f0000003080)={[0x200]}, 0x8, 0x80000)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f00000030c0)={<r9=>r8, 0x1, 0x3})
ioctl$KVM_GET_SUPPORTED_CPUID(r9, 0xc008ae05, &(0x7f0000003100)=""/4096)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000004100)={<r10=>0xffffffffffffffff})
close_range(r4, r10, 0x0)
ioctl$INCFS_IOC_PERMIT_FILL(r6, 0x40046721, &(0x7f0000004140))
syz_kvm_setup_cpu$x86(r1, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000004200)=[@text16={0x10, &(0x7f0000004180)="0f001b660fe82a0f8ceb060f32856900e8c646baf80c66b84684508c66efbafc0cb006ee66b9800000c00f326635000800000f30d9e166b9190b000066b80000000066ba000000000f30", 0x4a}], 0x1, 0x2, &(0x7f0000004240)=[@dstype0={0x6, 0xe}, @flags={0x3, 0x106803}], 0x2)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r9, 0xc00c642d, &(0x7f0000004280)={0x0, 0x80000})

1m12.563440784s ago: executing program 3 (id=300):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c010000100013070000000000000000fe80000000000000000000000000008afe8000000000000000000000000000aa00b8b66c1c00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000033000000fe8000000000000000000000000000bb00000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000a00040000000000000000004c001400636d6163286165732900"/244], 0x13c}}, 0x0)

1m12.463921371s ago: executing program 3 (id=304):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000007000390228bd7000fddbdf2507000000", @ANYRES32, @ANYBLOB="0c00018008005a2d5a21e7df928554010008000400"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x8008)

1m12.399868265s ago: executing program 3 (id=306):
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'team0\x00', <r0=>0x0})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095", @ANYRESOCT=r0, @ANYRES8=r0, @ANYRES16=r0], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000180)={0xfffffffffffffffe, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x20, r2, 0x100, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xff, 0x46}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x440c3)
ioctl$sock_inet6_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000002c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f00000001c0)=0x20)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000001, 0x13, r3, 0xedaa7000)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB="600000001000010427bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000a0001000180c20000000000140012800b0001006c6f7770616e"], 0x60}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r3, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000400)={&(0x7f0000000280)={0x18, 0x140a, 0x400, 0x70bd28, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000045)
io_pgetevents(0x0, 0x9, 0x0, 0x0, 0x0, 0x0)

1m12.397756643s ago: executing program 3 (id=309):
set_mempolicy(0x1, &(0x7f0000000000)=0xffffffffffffffff, 0x6) (async)
unshare(0x6a040000) (async)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r0, 0x6, 0x9, &(0x7f0000000740), 0x4)

56.380274813s ago: executing program 32 (id=309):
set_mempolicy(0x1, &(0x7f0000000000)=0xffffffffffffffff, 0x6) (async)
unshare(0x6a040000) (async)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r0, 0x6, 0x9, &(0x7f0000000740), 0x4)

7.509198393s ago: executing program 1 (id=1341):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000080)={0x9, 0x0, 0x0, {0x3000000}})

7.508187943s ago: executing program 1 (id=1344):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x3, 0x0, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={@cgroup, 0xe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
close(r4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x3, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000002c0)=ANY=[@ANYRES32=r4], 0x20)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000340)=0xffffffffffffffff, 0x4)
bpf$MAP_LOOKUP_ELEM(0x3, &(0x7f0000000500)={r1, 0x0, 0x0}, 0x20)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a0b040000000000000000020000002800048024000180080001006c6f67001800028008000640000000100c00024073797a5f74756e000900010073797a30000000000900020073797a32"], 0x7c}}, 0x0)

7.439290095s ago: executing program 1 (id=1346):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x2, 0x3, 0x1c10a1, 0x0, 0x33}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x6)

7.389392896s ago: executing program 1 (id=1349):
r0 = gettid()
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000380)={0xa65, 0x400, 0x0, 0xfff, 0x0, 0x3, 0x1, 0x2, <r2=>0x0}, &(0x7f0000000540)=0x20)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newlink={0x58, 0x10, 0x401, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, 0x103}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x28, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x5}, @IFLA_GRE_LOCAL={0x14, 0x6, @local}, @IFLA_GRE_ENCAP_SPORT={0x6, 0x10, 0x4e21}]}}}]}, 0x58}}, 0x0)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000580)={r2, 0x5}, &(0x7f00000005c0)=0x8)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000bbdffc))
r4 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40042)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000001740)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r5, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, <r7=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1c, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000002ff0100000000000000000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r7, r6, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000680)={0x0, r5}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1f, 0x4, &(0x7f00000008c0)=ANY=[], &(0x7f0000000640)='syzkaller\x00', 0x5, 0xcb, &(0x7f0000000400)=""/203, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x6}, 0x8, 0x10, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x7}, 0x10, r7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xa7e1268, @void, @value}, 0x94)
write$binfmt_aout(r4, &(0x7f00000002c0)=ANY=[], 0x36)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0xe, &(0x7f0000000780)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @ldst={0x3, 0x0, 0x3, 0x4, 0xa, 0xfffffffffffffff8, 0xfffffffffffffffc}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xffffffffffffffff}, @func={0x85, 0x0, 0x1, 0x0, 0x6}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
readv(r4, &(0x7f0000000600)=[{&(0x7f00000001c0)=""/139, 0x8b}], 0x1)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000000c0), 0x428401)
r8 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r8, &(0x7f0000000040)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010009081000418e00000004fcff", 0x58}], 0x1)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)

7.120276407s ago: executing program 1 (id=1354):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'pimreg0\x00', <r1=>0x0})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000340)={{{@in=@multicast1, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@remote}, 0x0, @in6=@initdev}}, &(0x7f0000000440)=0xe8)
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000480)={{{@in6=@empty, @in6=@mcast1, 0x4e23, 0x0, 0x4e22, 0x0, 0xa, 0x20, 0x80, 0x0, r1, r2}, {0x76, 0x3, 0x9, 0x800, 0x6, 0x4d, 0xfadf, 0x9}, {0x687, 0x3, 0x9, 0x8000}, 0xfffeffff, 0x6e6bb5, 0x0, 0x0, 0x3}, {{@in=@local, 0x4d2, 0xff}, 0x2, @in=@local, 0x0, 0x0, 0x0, 0x52, 0x2, 0x4, 0x80000001}}, 0xe8)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001fc0), r3)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000003000)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f00000031c0)={0x0, 0x0, &(0x7f0000003180)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="090000007000fddbdf1f1000000008000300", @ANYRES32=r5], 0x34}, 0x1, 0x0, 0x0, 0x980}, 0x8080)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000040)={0x3b2, @time={0x65757100}, 0x0, {0x3}, 0x0, 0x1})
r6 = socket$inet6_dccp(0xa, 0x6, 0x0)
r7 = socket(0x10, 0x5, 0x0)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
r9 = socket(0x2b, 0x80801, 0x1)
shutdown(r9, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x11, 0xb0}, [@ldst={0x4}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r10 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r10, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1)
sendto$inet6(r10, 0x0, 0x0, 0x200c8004, 0x0, 0x0)
sendto$inet6(r10, &(0x7f00000009c0)="c7cfcaaa22e10542fca5c0195350f15147657e0bfc59d383a47190db88690e6fedc3040ab5809ae02a54cd429cc3338c5afa0c9dce3f91950d1f567f358ac21154159130e88cbb6c43197813b2f23f3e442f80877490b393408142ebcfea6821f543e5ee9e27032e2b75d78f1b79f5a6bb6f0645e267770ef7e8f3a92148091217450ce8581e54223eeb6486205a209bf1fe854d211c03f8c3140fc3979d824082990d119473d20e94f253c9621fac339560ae46cb24b88bf2d01559bb658e343257b90f233b81bc5c398be3bbddb23a1e", 0xffd6, 0xc001, 0x0, 0xffffffffffffff0c)
sendmsg$inet6(r10, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000240)="2f6c62fdf406a1a017d356c35c10e4d1be87033978d275293527325d1cd47e250c86", 0x22}], 0x1}, 0x0)
setsockopt$inet6_int(r10, 0x29, 0x19, &(0x7f00000000c0), 0x4)
sendmmsg$inet6(r8, &(0x7f0000003440)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, '\x00', 0xe}, 0x5}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000340)="f2", 0x1}], 0x1}}, {{&(0x7f0000000840)={0xa, 0x4e24, 0x9, @remote, 0x4}, 0x1c, &(0x7f0000000d00)=[{&(0x7f0000000880)="12", 0x1}], 0x1}}], 0x2, 0x0)
shutdown(r8, 0x1)
getsockopt$bt_hci(r8, 0x84, 0x85, &(0x7f0000002380)=""/4107, &(0x7f00000000c0)=0x1012)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000580)={'veth1_virt_wifi\x00'})
write(r7, &(0x7f0000000000), 0x0)
ioctl$sock_inet6_SIOCADDRT(r6, 0x890b, &(0x7f00000001c0)={@mcast1, @private2={0xfc, 0x2, '\x00', 0x1}, @empty, 0x9, 0x3f, 0x8, 0x100, 0x9, 0x200})
syz_emit_ethernet(0x121, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)={0x1, 0x1, [0xbb1, 0x875, 0x314, 0xbbc]})

7.04981007s ago: executing program 1 (id=1356):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xf8}], 0x1}, 0x1f00)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x14, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = syz_io_uring_setup(0x24fa, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
r6 = socket$inet6_dccp(0xa, 0x6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000200)=@in6={0xa, 0x0, 0x8, @ipv4={'\x00', '\xff\xff', @local}}, 0x0, 0x0, 0x1})
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000005, 0x6031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4006, &(0x7f0000000000)=0x4, 0x5, 0x2)
io_uring_enter(r3, 0x4a89, 0x138b, 0xc, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmmsg$sock(r1, &(0x7f0000003bc0)=[{{0x0, 0xfe3d, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4000000000002ca, 0x4040014)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)) (async)
recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xf8}], 0x1}, 0x1f00) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x14, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async)
syz_io_uring_setup(0x24fa, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000080)) (async)
socket$inet6_dccp(0xa, 0x6, 0x0) (async)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000200)=@in6={0xa, 0x0, 0x8, @ipv4={'\x00', '\xff\xff', @local}}, 0x0, 0x0, 0x1}) (async)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000005, 0x6031, 0xffffffffffffffff, 0x0) (async)
mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4006, &(0x7f0000000000)=0x4, 0x5, 0x2) (async)
io_uring_enter(r3, 0x4a89, 0x138b, 0xc, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
sendmmsg$sock(r1, &(0x7f0000003bc0)=[{{0x0, 0xfe3d, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4000000000002ca, 0x4040014) (async)

809.057131ms ago: executing program 0 (id=1483):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000080)={0x9, 0x0, 0x0, {0x0, 0x0, 0xffffffff}})

729.564728ms ago: executing program 4 (id=1484):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0)
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0) (async, rerun: 32)
timer_create(0x7, 0x0, &(0x7f0000000140)=<r3=>0x0) (rerun: 32)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
clock_nanosleep(0x7, 0x0, &(0x7f0000000080)={0x77359400}, 0x0) (async)
timer_delete(r3)
getsockopt$rose(r2, 0x104, 0x4, 0x0, &(0x7f0000000080)) (async)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f0000000000)=0x3, 0x2) (async, rerun: 32)
connect$bt_sco(r4, &(0x7f0000000080)={0x1f, @fixed}, 0x8) (async, rerun: 32)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = fcntl$dupfd(r6, 0x0, r6)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000500)=[r0, r4, r4, 0xffffffffffffffff, r5, r5, r7, r1, r2], 0x9)
r8 = dup(r5)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xe501, 0x3, 0x490, 0x320, 0x6affffff, 0x3403000b, 0x320, 0x7, 0x3f8, 0x230, 0x230, 0x3f8, 0x223, 0x3, 0x0, {[{{@ip={@remote, @local, 0x0, 0x0, 'veth1_macvtap\x00', 'veth1_to_team\x00'}, 0x0, 0x2d8, 0x320, 0x0, {0x1000000}, [@common=@unspec=@bpf0={{0x230}, {0x1, [{0x6}]}}, @common=@unspec=@time={{0x38}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4f0) (async)
write$cgroup_devices(r8, &(0x7f00000001c0)=ANY=[@ANYBLOB="4e4afe28344cf53f2c5552b67ab454b0ac06f2a742fb66798adc767a42762e05fe53bde634f13599dfa381371b9029edb94b1669bb451fed04cbfb47951b51212e5f7dc9889230becc4c05e7"], 0x8) (async)
r9 = openat$cgroup_devices(r0, &(0x7f0000000540)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r9, &(0x7f00000000c0)=ANY=[@ANYBLOB="63202a3a2a2072776daf"], 0xa) (async, rerun: 64)
r10 = socket$inet6_sctp(0xa, 0x1, 0x84) (rerun: 64)
setsockopt$inet_sctp6_SCTP_MAXSEG(r10, 0x84, 0xd, &(0x7f0000000180), 0x4) (async)
r11 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r11, 0xc01864c6, &(0x7f00000003c0)={0x0, 0x17, 0x80000}) (async, rerun: 32)
write$cgroup_devices(r9, &(0x7f00000058c0)=ANY=[@ANYBLOB='a'], 0x9) (async, rerun: 32)
r12 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$vim2m_VIDIOC_G_FMT(r12, 0xc0d05604, &(0x7f0000000100)={0x1, @pix={0x3, 0x200, 0x34524742, 0x9, 0x5, 0x0, 0x4, 0x3, 0x1, 0x4, 0x2, 0x5}}) (async)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000), 0x2a979d)

728.615716ms ago: executing program 0 (id=1486):
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000100)={0x0, 0xbc, "41cfcd6354317cda677ba84203b2677e5ef229a8beaf52d6c4cb53ff4d4f61068ee237523949fc7029f5418a1375181cff12623e11fa0be935d707b3422369e5f58ad0418c3d5cefd6ac819ba6ba8e9c4c849a5256dbe08a07b9c2b62ef450cf111afa5108de852329fb6222e0af8d6b41cbc9f29c2b633d7d3b4c45a730e8168c83fea1a513846603400e0dc3fc8e301c8886a8b5c746db932e10facd7b487538322f39af334bdc665b864fccd87f69ee887081fac678cec1349e1b"}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400f5ff1000010000000000000000000000000a20000000000a01020000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff000800034000000038580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c00038028000080080003400000000204000280"], 0xec}}, 0x8890)

728.529871ms ago: executing program 4 (id=1487):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x58d401, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXCEPTION_PAYLOAD(r1, 0x4068aea3, &(0x7f0000000200))
r2 = socket$inet(0x2, 0x80001, 0x100)
listen(r2, 0x3)
setsockopt$inet_opts(r2, 0x0, 0x4, 0x0, 0x0)

662.514167ms ago: executing program 0 (id=1488):
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00', <r1=>0x0}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000040)='cgroup.max.descendants\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x970b)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYRESHEX=r1], 0x6)
r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) (async)
r6 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r7, 0x0)
readv(r4, &(0x7f0000001380)=[{&(0x7f0000000100)=""/174, 0xae}, {&(0x7f0000000280)=""/102, 0x66}, {&(0x7f0000000300)=""/87, 0x57}, {&(0x7f0000000380)=""/4096, 0x1000}], 0x4) (async)
readv(r4, &(0x7f0000001380)=[{&(0x7f0000000100)=""/174, 0xae}, {&(0x7f0000000280)=""/102, 0x66}, {&(0x7f0000000300)=""/87, 0x57}, {&(0x7f0000000380)=""/4096, 0x1000}], 0x4)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r6, 0x6628)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) (async)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0xcc}, 0x1, 0x0, 0x0, 0x4048000}, 0xc8d4)

662.033156ms ago: executing program 0 (id=1490):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x3f24, &(0x7f0000000140)={0x0, 0x0, 0x40}, &(0x7f0000000240), &(0x7f0000000200))
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10) (async)
syz_io_uring_setup(0x3f24, &(0x7f0000000140)={0x0, 0x0, 0x40}, &(0x7f0000000240), &(0x7f0000000200)) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, 0x0, 0x0) (async)

600.341741ms ago: executing program 4 (id=1491):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r1=>0x0})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)={0x58, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xfffffff8}]}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x58}}, 0x0)
openat$cgroup_ro(r3, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xe32b60fbedc7f0cc}, {0x7}, {0x0, 0xa}}}, 0x24}}, 0x0)

533.813932ms ago: executing program 2 (id=1493):
syz_emit_ethernet(0x32, &(0x7f0000000000)={@broadcast, @random="2ecafcc67af2", @val={@void, {0x8100, 0x1, 0x0, 0x2}}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x3c, 0x20, 0x0, 0x0, 0x7f, 0x2f, 0x0, @rand_addr, @rand_addr=0x64010100}, {0x3200, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0) (async)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x101203, 0x0)

460.310228ms ago: executing program 2 (id=1494):
r0 = socket$inet(0x2, 0x80001, 0x100)
listen(r0, 0x3)
setsockopt$inet_opts(r0, 0x3000000, 0x4, 0x0, 0x0)

460.0909ms ago: executing program 2 (id=1495):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_SREG={0x8, 0x7, 0x1, 0x0, 0x9}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x7c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000b40)=@newtaction={0xf58, 0x30, 0x25, 0x0, 0x0, {}, [{0xf44, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x4}, [{}, {}, {}, {0x0, 0x0, 0x4000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x100}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0xff}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}], [{}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}]}}]}, {0x4}, {0xc}, {0xc}}}, @m_bpf={0xf0, 0x2, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x24, 0x4, [{0x1, 0xff, 0x4, 0x6}, {0x6, 0x9, 0x1, 0x3}, {0x8, 0xa, 0x9, 0xe5ad}, {0x2, 0xfd, 0x3, 0x7}]}]}, {0xa4, 0x6, "aef41341fdedc57514e9e6b7c9a7d6c6f2710911ea3f03808c1cd540f74547537bf4bd3de3af39a159c644fdacd41501de3816424920bd50948bb71277cbcb3af35a087dfca43335c1d1f7676239b2932026b5e5e0d02760eb4305f349000de9580b5ad411948e208801ff4e11df28aa70701228e871fa62bd8e1d2b3abd2494e13f35b5933263a1b9ee64b0161ef7cc4e38117db59c3db871f9eb7078642fdf"}, {0xc}, {0xc, 0x8, {0x3}}}}]}]}, 0xf58}}, 0x0)

249.30915ms ago: executing program 0 (id=1496):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000080)={0x9, 0x0, 0x0, {0x9ffb, 0x200000, 0x0, 0x9}})

248.992585ms ago: executing program 2 (id=1497):
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000100)={0x0, 0xbc, "41cfcd6354317cda677ba84203b2677e5ef229a8beaf52d6c4cb53ff4d4f61068ee237523949fc7029f5418a1375181cff12623e11fa0be935d707b3422369e5f58ad0418c3d5cefd6ac819ba6ba8e9c4c849a5256dbe08a07b9c2b62ef450cf111afa5108de852329fb6222e0af8d6b41cbc9f29c2b633d7d3b4c45a730e8168c83fea1a513846603400e0dc3fc8e301c8886a8b5c746db932e10facd7b487538322f39af334bdc665b864fccd87f69ee887081fac678cec1349e1b"}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000f51000010000000000000000000000000a20000000000a01020000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff000800034000000038580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c00038028000080080003400000000204000280"], 0xec}}, 0x8890)

199.259414ms ago: executing program 0 (id=1498):
ioctl$F2FS_IOC_SEC_TRIM_FILE(0xffffffffffffffff, 0x4018f514, &(0x7f0000001240)={0x2, 0xfffffffffffffc00, 0x6}) (async, rerun: 64)
r0 = socket$kcm(0x11, 0x3, 0x0) (rerun: 64)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r2, &(0x7f0000000580)=ANY=[@ANYBLOB="00000800010509003fd3800006"], 0x9e)
r3 = socket$kcm(0x2, 0xa, 0x2)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000012c0)=ANY=[@ANYBLOB="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"], 0x90}}, 0x0)
r5 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f00000011c0)={0xa000, 0x141, 0x3}, 0x18)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000001200)=0x1)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'gretap0\x00', @link_local})
write$tun(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="44d3c7024e9fbbbbbbbbbbbb88a800008100000008"], 0x1d) (async)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000240)="27050200340f14000600002fb96dbcf706060000170000005f45f491bdd54ec5ff1144ee162fd4b8bf7256da82f600102c21880b00000000010040570000000600000000000000805db18fc083", 0x4d}, {&(0x7f00000002c0)="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", 0xefd}, {&(0x7f0000000180)="11ac01302bef1fc7843a9045ed7666c8f8cd346033f8a6a51768796581c31103c1eef810c794ee5e003aa3cc6c795b580f8a3c8c9eb12576ba70716398b683d2c2825cd8d4a544", 0x47}], 0x3}, 0x9cdc2384056b48b8)
openat(r5, &(0x7f0000001280)='./file0\x00', 0x42, 0x2)

198.827808ms ago: executing program 2 (id=1499):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x6, 0x3, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0], 0x0, 0x57, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0xfb, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000440)={'wg2\x00', <r3=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000500)={'syztnl0\x00', &(0x7f0000000480)={'ip_vti0\x00', <r4=>0x0, 0x87, 0x20, 0xcdef, 0x1, {{0x15, 0x4, 0x0, 0x9, 0x54, 0x64, 0x0, 0x3, 0x2f, 0x0, @broadcast, @empty, {[@timestamp={0x44, 0x18, 0xa0, 0x0, 0x2, [0x9, 0x80, 0x8001, 0x0, 0x6]}, @timestamp={0x44, 0x28, 0xb0, 0x0, 0x6, [0x3, 0xfffffffb, 0x8b, 0x8, 0x6, 0x5, 0x2, 0x0, 0x5bfc]}]}}}}})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000000)={0x5c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x49}, @val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "0234b0542e01986bbc47a652bd9bb208c1a4825ffc307fc0"}]]}, 0x5c}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x24, 0x0, 0x1, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0xa7}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000580)={'team0\x00', <r7=>0x0})
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)={0x24, r8, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000600)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000000680)={0xf0, 0x0, 0x300, 0x70bd2b, 0x25dfdbff, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x1}, 0x4)

198.640452ms ago: executing program 4 (id=1500):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x94, 0x0, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x100}, @IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x40040}, 0x1)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x2000)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r2, 0xc01064bd, &(0x7f0000000040)={&(0x7f00000004c0)="7cdf8b8cdbeb7168f1561b7936128c3d96a63cef3584d1a9dbd379bf307b64022ce2f5cb857805273406c1cb784963e5e8d46115019079764b4ca9c93e43006c2ef4346d8414cbdbc0c6ae84f36959d7d2014c1e7aa27dbe20d6057ef749012e059ab7e309e143c840d8aa7ca909a1d1c9dac0b9959bdd0c8099754c30160d0576881203301085872d5e1d45f2f2a2f0b8bc4da047c2b11b31b7fc87954bd5437279db5bd27cc5ef439add7c01995188a97e9d17a413597316d76c8b6c18183479", 0xc1, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000001c40)={&(0x7f0000001c00)=[r3], 0x1, 0x800})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='H\x00'/20, @ANYRES32=0x0, @ANYBLOB="8842000000000000140012800b00010067656e6576650000040002801400030067656e65766531000000000000000000"], 0x48}}, 0x2000000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))

87.649458ms ago: executing program 4 (id=1501):
syz_emit_ethernet(0x4a, &(0x7f0000000300)={@broadcast, @broadcast, @val={@void}, {@ipv6={0x86dd, @udp={0x0, 0x6, "2e5cea", 0x10, 0x3c, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast2, {[], {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000501000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$usbfs(&(0x7f0000000600), 0x800000001ff, 0x802)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000040)={0x2, 0x3, 0x5, 0x401, 0x0, 0x8004, 0x0})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x16b301, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x15)
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[], 0xff2e)
syz_open_pts(r1, 0x20000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010001fff0000056842bb002552d215f6", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x48}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r2, &(0x7f0000000140), 0x4924b68, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
pread64(r3, &(0x7f0000000440)=""/197, 0xc5, 0x4)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000100)={{0x800, 0x9f, 0x68, 0xdf4b}, 'syz0\x00', 0x41})

85.189654ms ago: executing program 2 (id=1502):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000080)={0x9, 0x0, 0x0, {0x300}}) (fail_nth: 1)

0s ago: executing program 4 (id=1503):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fff, 0x2)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000180)='qnx4\x00', 0x4000, 0x0)
read(r0, &(0x7f0000000080)=""/27, 0x1b)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000000)=0x1)

kernel console output (not intermixed with test programs):

generic_socket permissive=1
[   85.247419][ T1138] team0 (unregistering): Port device team_slave_1 removed
[   85.400623][ T1138] team0 (unregistering): Port device team_slave_0 removed
[   85.822727][ T5295] Bluetooth: hci0: command tx timeout
[   86.219542][ T5295] Bluetooth: hci1: command 0x0c1a tx timeout
[   86.289372][ T7719] netlink: 24 bytes leftover after parsing attributes in process `syz.1.557'.
[   86.295490][   T39] audit: type=1400 audit(1740023714.023:524): avc:  denied  { setopt } for  pid=7722 comm="syz.0.559" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   86.298936][ T7594] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   86.308341][ T7594] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   86.332235][ T7594] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   86.362130][ T7594] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   86.388700][   T39] audit: type=1400 audit(1740023714.113:525): avc:  denied  { read } for  pid=7722 comm="syz.0.559" path="socket:[15226]" dev="sockfs" ino=15226 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   86.446084][ T7723] Cannot find del_set index 4 as target
[   86.485672][ T7723] netlink: 16 bytes leftover after parsing attributes in process `syz.0.559'.
[   86.511822][ T7594] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.517076][ T7594] 8021q: adding VLAN 0 to HW filter on device team0
[   86.521170][   T63] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.521357][   T63] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.525196][   T63] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.525251][   T63] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.662664][ T1138] IPVS: stop unused estimator thread 0...
[   86.694813][ T7594] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.832452][ T7594] veth0_vlan: entered promiscuous mode
[   86.836622][ T7594] veth1_vlan: entered promiscuous mode
[   86.849586][ T7594] veth0_macvtap: entered promiscuous mode
[   86.856322][ T7594] veth1_macvtap: entered promiscuous mode
[   86.865750][ T7594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.868976][ T7594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.872636][ T7594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.875488][ T7594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.878931][ T7594] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.883975][ T7594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.886979][ T7594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.889794][ T7594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.893260][ T7594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.897647][ T7594] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.902545][   T39] audit: type=1400 audit(1740023714.633:526): avc:  denied  { append } for  pid=7779 comm="syz.2.565" name="sg1" dev="devtmpfs" ino=727 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   86.903436][ T7594] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.915567][ T7594] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.918833][ T7594] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.922498][ T7594] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.928877][ T7780] netlink: 12 bytes leftover after parsing attributes in process `syz.2.565'.
[   86.938760][ T7780] program syz.2.565 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   86.973744][ T1147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.976825][ T1147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.009031][   T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.014719][   T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.246693][ T7805] netlink: 24 bytes leftover after parsing attributes in process `syz.2.569'.
[   87.279283][ T7812] FAULT_INJECTION: forcing a failure.
[   87.279283][ T7812] name failslab, interval 1, probability 0, space 0, times 1
[   87.283816][ T7812] CPU: 2 UID: 0 PID: 7812 Comm: syz.0.570 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[   87.283829][ T7812] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.283835][ T7812] Call Trace:
[   87.283875][ T7812]  <TASK>
[   87.283880][ T7812]  dump_stack_lvl+0x16c/0x1f0
[   87.283957][ T7812]  should_fail_ex+0x50a/0x650
[   87.284027][ T7812]  ? fs_reclaim_acquire+0xae/0x150
[   87.284091][ T7812]  should_failslab+0xc2/0x120
[   87.284123][ T7812]  __kmalloc_node_noprof+0xd1/0x510
[   87.284135][ T7812]  ? __kvmalloc_node_noprof+0xad/0x1a0
[   87.284196][ T7812]  ? __lock_acquire+0x15a9/0x3c40
[   87.284235][ T7812]  __kvmalloc_node_noprof+0xad/0x1a0
[   87.284251][ T7812]  seq_read_iter+0x82a/0x12b0
[   87.284298][ T7812]  seq_read+0x39f/0x4e0
[   87.284313][ T7812]  ? __pfx_seq_read+0x10/0x10
[   87.284330][ T7812]  ? avc_policy_seqno+0x9/0x20
[   87.284363][ T7812]  ? rw_verify_area+0xcf/0x680
[   87.284404][ T7812]  ? __pfx_seq_read+0x10/0x10
[   87.284428][ T7812]  vfs_read+0x1df/0xbf0
[   87.284447][ T7812]  ? __fget_files+0x1fc/0x3a0
[   87.284457][ T7812]  ? __pfx___mutex_lock+0x10/0x10
[   87.284469][ T7812]  ? __pfx_vfs_read+0x10/0x10
[   87.284488][ T7812]  ? __fget_files+0x206/0x3a0
[   87.284501][ T7812]  ksys_read+0x12b/0x250
[   87.284516][ T7812]  ? __pfx_ksys_read+0x10/0x10
[   87.284535][ T7812]  do_syscall_64+0xcd/0x250
[   87.284549][ T7812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.284565][ T7812] RIP: 0033:0x7f9cdf58cde9
[   87.284574][ T7812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.284583][ T7812] RSP: 002b:00007f9ce032a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   87.284604][ T7812] RAX: ffffffffffffffda RBX: 00007f9cdf7a5fa0 RCX: 00007f9cdf58cde9
[   87.284610][ T7812] RDX: 0000000000002020 RSI: 0000400000000400 RDI: 0000000000000004
[   87.284615][ T7812] RBP: 00007f9ce032a090 R08: 0000000000000000 R09: 0000000000000000
[   87.284621][ T7812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.284626][ T7812] R13: 0000000000000000 R14: 00007f9cdf7a5fa0 R15: 00007ffc20ceeb58
[   87.284639][ T7812]  </TASK>
[   87.442355][ T7832] openvswitch: netlink: push_nsh: missing base or metadata attributes
[   87.444622][ T7832] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   87.457048][ T7830] dlm: non-version read from control device 0
[   87.466453][ T7830] netlink: 4 bytes leftover after parsing attributes in process `syz.1.575'.
[   87.581686][ T7851] netdevsim netdevsim2 netdevsim1: Unsupported IPsec algorithm
[   87.660502][ T7856] netlink: 24 bytes leftover after parsing attributes in process `syz.2.581'.
[   87.692844][ T7861] FAULT_INJECTION: forcing a failure.
[   87.692844][ T7861] name failslab, interval 1, probability 0, space 0, times 0
[   87.696831][ T7861] CPU: 1 UID: 0 PID: 7861 Comm: syz.4.582 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[   87.696845][ T7861] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.696851][ T7861] Call Trace:
[   87.696855][ T7861]  <TASK>
[   87.696859][ T7861]  dump_stack_lvl+0x16c/0x1f0
[   87.696876][ T7861]  should_fail_ex+0x50a/0x650
[   87.696893][ T7861]  ? fs_reclaim_acquire+0xae/0x150
[   87.696910][ T7861]  should_failslab+0xc2/0x120
[   87.696922][ T7861]  __kmalloc_node_noprof+0xd1/0x510
[   87.696933][ T7861]  ? alloc_slab_obj_exts+0x41/0xa0
[   87.696950][ T7861]  alloc_slab_obj_exts+0x41/0xa0
[   87.696965][ T7861]  __memcg_slab_post_alloc_hook+0x2a7/0x9b0
[   87.696981][ T7861]  __kmalloc_node_noprof+0x439/0x510
[   87.696992][ T7861]  ? __kvmalloc_node_noprof+0xad/0x1a0
[   87.697008][ T7861]  ? __lock_acquire+0x15a9/0x3c40
[   87.697025][ T7861]  __kvmalloc_node_noprof+0xad/0x1a0
[   87.697041][ T7861]  seq_read_iter+0x82a/0x12b0
[   87.697062][ T7861]  seq_read+0x39f/0x4e0
[   87.697076][ T7861]  ? __pfx_seq_read+0x10/0x10
[   87.697092][ T7861]  ? avc_policy_seqno+0x9/0x20
[   87.697106][ T7861]  ? rw_verify_area+0xcf/0x680
[   87.697120][ T7861]  ? __pfx_seq_read+0x10/0x10
[   87.697134][ T7861]  vfs_read+0x1df/0xbf0
[   87.697149][ T7861]  ? __fget_files+0x1fc/0x3a0
[   87.697159][ T7861]  ? __pfx___mutex_lock+0x10/0x10
[   87.697172][ T7861]  ? __pfx_vfs_read+0x10/0x10
[   87.697191][ T7861]  ? __fget_files+0x206/0x3a0
[   87.697209][ T7861]  ksys_read+0x12b/0x250
[   87.697223][ T7861]  ? __pfx_ksys_read+0x10/0x10
[   87.697242][ T7861]  do_syscall_64+0xcd/0x250
[   87.697255][ T7861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.697270][ T7861] RIP: 0033:0x7ff144d8cde9
[   87.697278][ T7861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.697287][ T7861] RSP: 002b:00007ff145cac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   87.697298][ T7861] RAX: ffffffffffffffda RBX: 00007ff144fa5fa0 RCX: 00007ff144d8cde9
[   87.697304][ T7861] RDX: 0000000000002020 RSI: 0000400000000400 RDI: 0000000000000004
[   87.697310][ T7861] RBP: 00007ff145cac090 R08: 0000000000000000 R09: 0000000000000000
[   87.697316][ T7861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.697321][ T7861] R13: 0000000000000000 R14: 00007ff144fa5fa0 R15: 00007ffe97da5598
[   87.697333][ T7861]  </TASK>
[   87.800890][ T7870] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   87.881922][ T7887] No such timeout policy "syz0"
[   87.890986][ T5295] Bluetooth: hci0: command tx timeout
[   87.958489][ T7901] netlink: 24 bytes leftover after parsing attributes in process `syz.2.592'.
[   87.961424][ T7901] netlink: 24 bytes leftover after parsing attributes in process `syz.2.592'.
[   88.041891][ T7904] 9pnet_fd: Insufficient options for proto=fd
[   88.073184][ T7915] FAULT_INJECTION: forcing a failure.
[   88.073184][ T7915] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   88.079413][ T7915] CPU: 3 UID: 0 PID: 7915 Comm: syz.1.595 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[   88.079442][ T7915] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.079450][ T7915] Call Trace:
[   88.079456][ T7915]  <TASK>
[   88.079462][ T7915]  dump_stack_lvl+0x16c/0x1f0
[   88.079486][ T7915]  should_fail_ex+0x50a/0x650
[   88.079530][ T7915]  _copy_to_user+0x32/0xd0
[   88.079589][ T7915]  simple_read_from_buffer+0xd0/0x160
[   88.079613][ T7915]  proc_fail_nth_read+0x198/0x270
[   88.079678][ T7915]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   88.079701][ T7915]  ? rw_verify_area+0xcf/0x680
[   88.079722][ T7915]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   88.079742][ T7915]  vfs_read+0x1df/0xbf0
[   88.079765][ T7915]  ? __fget_files+0x1fc/0x3a0
[   88.079780][ T7915]  ? __pfx___mutex_lock+0x10/0x10
[   88.079798][ T7915]  ? __pfx_vfs_read+0x10/0x10
[   88.079827][ T7915]  ? __fget_files+0x206/0x3a0
[   88.079847][ T7915]  ksys_read+0x12b/0x250
[   88.079870][ T7915]  ? __pfx_ksys_read+0x10/0x10
[   88.079898][ T7915]  do_syscall_64+0xcd/0x250
[   88.079918][ T7915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.079940][ T7915] RIP: 0033:0x7f82cc38b7fc
[   88.079955][ T7915] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   88.079970][ T7915] RSP: 002b:00007f82cd28c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   88.079986][ T7915] RAX: ffffffffffffffda RBX: 00007f82cc5a5fa0 RCX: 00007f82cc38b7fc
[   88.079996][ T7915] RDX: 000000000000000f RSI: 00007f82cd28c0a0 RDI: 0000000000000005
[   88.080006][ T7915] RBP: 00007f82cd28c090 R08: 0000000000000000 R09: 0000000000000000
[   88.080015][ T7915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.080024][ T7915] R13: 0000000000000000 R14: 00007f82cc5a5fa0 R15: 00007fffd61f6008
[   88.080044][ T7915]  </TASK>
[   88.499750][ T5981] usb 9-1: new low-speed USB device number 2 using dummy_hcd
[   88.656331][   T39] kauditd_printk_skb: 11 callbacks suppressed
[   88.656345][   T39] audit: type=1400 audit(1740023716.383:538): avc:  denied  { write } for  pid=7952 comm="syz.2.600" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   88.666557][ T5981] usb 9-1: Invalid ep0 maxpacket: 16
[   88.669896][ T7955] netlink: 16 bytes leftover after parsing attributes in process `syz.2.600'.
[   88.799550][ T5981] usb 9-1: new low-speed USB device number 3 using dummy_hcd
[   88.970870][ T7979] cgroup: none used incorrectly
[   88.971661][ T7980] netlink: 24 bytes leftover after parsing attributes in process `syz.0.603'.
[   88.980299][ T5981] usb 9-1: Invalid ep0 maxpacket: 16
[   88.982834][ T5981] usb usb9-port1: attempt power cycle
[   89.200762][ T7994] wg2: entered promiscuous mode
[   89.202118][ T7994] wg2: entered allmulticast mode
[   89.302617][ T5988] libceph: connect (1)[c::]:6789 error -13
[   89.304411][ T5988] libceph: mon0 (1)[c::]:6789 connect error
[   89.340614][ T5981] usb 9-1: new low-speed USB device number 4 using dummy_hcd
[   89.369250][  T911] libceph: connect (1)[c::]:6789 error -13
[   89.372109][  T911] libceph: mon0 (1)[c::]:6789 connect error
[   89.380024][ T5981] usb 9-1: Invalid ep0 maxpacket: 16
[   89.394913][   T39] audit: type=1400 audit(1740023717.123:539): avc:  denied  { connect } for  pid=8009 comm="syz.1.613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   89.405558][ T8000] ceph: No mds server is up or the cluster is laggy
[   89.434325][ T8006] ceph: No mds server is up or the cluster is laggy
[   89.437228][   T39] audit: type=1400 audit(1740023717.133:540): avc:  denied  { bind } for  pid=8009 comm="syz.1.613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   89.445874][   T39] audit: type=1400 audit(1740023717.133:541): avc:  denied  { write } for  pid=8009 comm="syz.1.613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   89.506199][ T8013] geneve2: entered promiscuous mode
[   89.511373][ T8013] geneve2: entered allmulticast mode
[   89.521859][ T5981] usb 9-1: new low-speed USB device number 5 using dummy_hcd
[   89.548296][ T5981] usb 9-1: Invalid ep0 maxpacket: 16
[   89.550870][ T5981] usb usb9-port1: unable to enumerate USB device
[   89.708628][   T39] audit: type=1400 audit(1740023717.433:542): avc:  granted  { setsecparam } for  pid=8019 comm="syz.2.617" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   89.755426][ T8023] syz.2.618: attempt to access beyond end of device
[   89.755426][ T8023] nbd2: rw=0, sector=2, nr_sectors = 2 limit=0
[   89.763148][ T8023] syz.2.618: attempt to access beyond end of device
[   89.763148][ T8023] nbd2: rw=0, sector=0, nr_sectors = 2 limit=0
[   89.768106][ T8023] syz.2.618: attempt to access beyond end of device
[   89.768106][ T8023] nbd2: rw=0, sector=0, nr_sectors = 2 limit=0
[   89.776920][ T8023] syz.2.618: attempt to access beyond end of device
[   89.776920][ T8023] nbd2: rw=0, sector=18, nr_sectors = 2 limit=0
[   89.782481][ T8023] syz.2.618: attempt to access beyond end of device
[   89.782481][ T8023] nbd2: rw=0, sector=30, nr_sectors = 2 limit=0
[   89.787630][ T8023] syz.2.618: attempt to access beyond end of device
[   89.787630][ T8023] nbd2: rw=0, sector=36, nr_sectors = 2 limit=0
[   89.872579][ T8030] netlink: 'syz.1.621': attribute type 11 has an invalid length.
[   89.969625][ T5295] Bluetooth: hci0: command tx timeout
[   89.990431][   T39] audit: type=1400 audit(1740023717.713:543): avc:  denied  { accept } for  pid=8039 comm="syz.0.624" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   89.998001][   T39] audit: type=1400 audit(1740023717.723:544): avc:  denied  { unmount } for  pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   90.021829][ T8043] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65298 sclass=netlink_route_socket pid=8043 comm=syz.2.625
[   90.065429][ T8046] netlink: ct family unspecified
[   90.067393][ T8046] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   90.160312][ T8054] mkiss: ax0: crc mode is auto.
[   90.214302][ T5295] Bluetooth: hci2: ACL packet for unknown connection handle 201
[   90.604960][   T39] audit: type=1400 audit(1740023718.333:545): avc:  denied  { accept } for  pid=8100 comm="syz.2.644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   90.998226][ T5295] Bluetooth: hci1: Unable to find connection for big 0x00
[   91.384753][ T8124] __nla_validate_parse: 39 callbacks suppressed
[   91.384769][ T8124] netlink: 8 bytes leftover after parsing attributes in process `syz.0.652'.
[   91.465363][ T8130] netlink: 24 bytes leftover after parsing attributes in process `syz.4.656'.
[   91.468958][ T8130] netlink: 24 bytes leftover after parsing attributes in process `syz.4.656'.
[   91.508705][ T8132] netlink: 28 bytes leftover after parsing attributes in process `syz.1.655'.
[   91.508756][ T8133] netlink: 28 bytes leftover after parsing attributes in process `syz.1.655'.
[   91.512227][ T8132] netlink: 12 bytes leftover after parsing attributes in process `syz.1.655'.
[   91.516856][ T8133] netlink: 12 bytes leftover after parsing attributes in process `syz.1.655'.
[   91.694661][ T8154] openvswitch: netlink: IPv6 tunnel dst address is zero
[   91.792470][ T8165] xt_HMARK: spi-set and port-set can't be combined
[   91.837861][   T39] audit: type=1400 audit(1740023719.563:546): avc:  denied  { associate } for  pid=8162 comm="syz.1.666" name="file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   91.889914][   T39] audit: type=1400 audit(1740023719.623:547): avc:  denied  { getopt } for  pid=8170 comm="syz.2.669" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   91.963297][ T8159] netlink: 48 bytes leftover after parsing attributes in process `syz.0.664'.
[   91.982642][ T8159] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.985973][ T8159] batadv_slave_0: entered promiscuous mode
[   92.346805][ T8206] tipc: Started in network mode
[   92.348902][ T8206] tipc: Node identity aaaaaaaaaa34, cluster identity 4711
[   92.369992][ T8206] tipc: Enabled bearer <eth:macvlan0>, priority 10
[   92.513155][ T8217] netlink: 12 bytes leftover after parsing attributes in process `syz.2.686'.
[   92.516855][ T8217] netlink: 12 bytes leftover after parsing attributes in process `syz.2.686'.
[   92.592217][ T8228] orangefs_mount: mount request failed with -4
[   93.033378][ T8278] erofs (device loop1): cannot find valid erofs superblock
[   93.078511][ T8281] netlink: 'syz.1.706': attribute type 9 has an invalid length.
[   93.089824][ T7783] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   93.159410][ T5981] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[   93.240425][ T7783] usb 7-1: too many configurations: 9, using maximum allowed: 8
[   93.244176][ T7783] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.247745][ T7783] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.253176][ T7783] usb 7-1: config 0 interface 0 has no altsetting 0
[   93.256919][ T7783] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.260663][ T7783] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.264947][ T7783] usb 7-1: config 0 interface 0 has no altsetting 0
[   93.268560][ T7783] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.272332][ T7783] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.276540][ T7783] usb 7-1: config 0 interface 0 has no altsetting 0
[   93.280903][ T7783] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.284202][ T7783] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.288340][ T7783] usb 7-1: config 0 interface 0 has no altsetting 0
[   93.292172][ T7783] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.294684][ T7783] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.297678][ T7783] usb 7-1: config 0 interface 0 has no altsetting 0
[   93.300596][ T7783] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.303062][ T7783] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.306071][ T7783] usb 7-1: config 0 interface 0 has no altsetting 0
[   93.308597][ T7783] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.311122][ T7783] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.314173][ T7783] usb 7-1: config 0 interface 0 has no altsetting 0
[   93.316809][ T7783] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   93.319219][ T7783] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   93.322429][ T7783] usb 7-1: config 0 interface 0 has no altsetting 0
[   93.329415][ T5981] usb 9-1: Using ep0 maxpacket: 32
[   93.330396][ T7783] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   93.333974][ T7783] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   93.335945][ T8268] netlink: 'syz.4.703': attribute type 16 has an invalid length.
[   93.336310][ T7783] usb 7-1: Product: syz
[   93.339163][ T8268] netlink: 'syz.4.703': attribute type 17 has an invalid length.
[   93.342161][ T7783] usb 7-1: Manufacturer: syz
[   93.344743][ T7783] usb 7-1: SerialNumber: syz
[   93.347211][ T7783] usb 7-1: config 0 descriptor??
[   93.352557][ T8268] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   93.352994][ T7783] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[   93.361922][ T5981] usb 9-1: unable to get BOS descriptor or descriptor too short
[   93.369424][ T5981] usb 9-1: unable to read config index 0 descriptor/start: -71
[   93.378737][ T5981] usb 9-1: can't read configurations, error -71
[   93.491083][  T911] tipc: Node number set to 10398378
[   93.507321][ T8292] tun0: tun_chr_ioctl cmd 1074025675
[   93.508909][ T8292] tun0: persist enabled
[   93.510527][ T8292] tun0: tun_chr_ioctl cmd 1074025675
[   93.512096][ T8292] tun0: persist disabled
[   93.517804][ T8292] Option 'n4:v®êšmäÛÌð¨áçžRÝfÍêËR­Oq±rúsJ)º¿rq' to dns_resolver key: bad/missing value
[   93.608623][    C0] usb 7-1: yurex_control_callback - control failed: -71
[   93.608881][  T911] usb 7-1: USB disconnect, device number 6
[   93.617006][  T911] yurex 7-1:0.0: USB YUREX #0 now disconnected
[   93.945489][ T8309] netlink: 'syz.4.715': attribute type 1 has an invalid length.
[   94.023243][ T8312] nvme_fabrics: missing parameter 'transport=%s'
[   94.025699][ T8312] nvme_fabrics: missing parameter 'nqn=%s'
[   94.209372][   T39] kauditd_printk_skb: 14 callbacks suppressed
[   94.209390][   T39] audit: type=1400 audit(1740023721.933:562): avc:  denied  { ioctl } for  pid=8318 comm="syz.4.718" path="socket:[20961]" dev="sockfs" ino=20961 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   94.243577][ T8321] netlink: 'syz.4.719': attribute type 2 has an invalid length.
[   94.247112][ T8321] netlink: 'syz.4.719': attribute type 1 has an invalid length.
[   94.265596][ T8321] netlink: 'syz.4.719': attribute type 2 has an invalid length.
[   94.399532][ T8330] can: request_module (can-proto-5) failed.
[   94.440948][ T8335] No control pipe specified
[   94.495685][ T8342] program syz.4.723 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   94.719496][ T5981] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[   94.849669][ T5981] usb 5-1: device descriptor read/64, error -71
[   95.089633][ T5981] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[   95.219585][ T5981] usb 5-1: device descriptor read/64, error -71
[   95.239941][ T8365] sp0: Synchronizing with TNC
[   95.333275][ T5981] usb usb5-port1: attempt power cycle
[   95.538492][   T39] audit: type=1400 audit(1740023723.263:563): avc:  denied  { create } for  pid=8387 comm="syz.4.741" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   95.547134][   T39] audit: type=1400 audit(1740023723.273:564): avc:  denied  { ioctl } for  pid=8387 comm="syz.4.741" path="socket:[18429]" dev="sockfs" ino=18429 ioctlcmd=0x4944 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   95.567046][ T8390] netlink: 'syz.2.742': attribute type 10 has an invalid length.
[   95.597177][ T8390] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   95.652134][ T5295] Bluetooth: hci0: command tx timeout
[   95.669519][ T5981] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[   95.699964][ T5981] usb 5-1: device descriptor read/8, error -71
[   95.741690][   T39] audit: type=1400 audit(1740023723.473:565): avc:  denied  { bind } for  pid=8401 comm="syz.4.747" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   95.795460][ T8405] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[   95.939468][ T5981] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[   95.960047][ T5981] usb 5-1: device descriptor read/8, error -71
[   96.029609][   T39] audit: type=1400 audit(1740023723.753:566): avc:  denied  { sqpoll } for  pid=8422 comm="syz.2.754" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   96.031206][ T8423] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   96.036820][   T39] audit: type=1400 audit(1740023723.763:567): avc:  denied  { execute } for  pid=8422 comm="syz.2.754" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=20444 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   96.050172][   T39] audit: type=1400 audit(1740023723.773:568): avc:  denied  { ioctl } for  pid=8422 comm="syz.2.754" path="socket:[20443]" dev="sockfs" ino=20443 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   96.069867][ T5981] usb usb5-port1: unable to enumerate USB device
[   96.569216][ T8449] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   96.578572][ T8449] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   96.584582][ T8449] bond0 (unregistering): Released all slaves
[   96.658481][ T8468] __nla_validate_parse: 90 callbacks suppressed
[   96.658499][ T8468] netlink: 12 bytes leftover after parsing attributes in process `syz.2.770'.
[   96.725351][ T8474] blktrace: Concurrent blktraces are not allowed on loop3
[   96.786044][   T39] audit: type=1400 audit(1740023724.513:569): avc:  denied  { map } for  pid=8477 comm="syz.2.773" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   96.797904][   T39] audit: type=1400 audit(1740023724.523:570): avc:  denied  { execute } for  pid=8477 comm="syz.2.773" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   96.846084][   T39] audit: type=1400 audit(1740023724.573:571): avc:  denied  { mount } for  pid=8481 comm="syz.4.775" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   97.063307][ T8492] netlink: 12 bytes leftover after parsing attributes in process `syz.4.779'.
[   97.151540][ T8501] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8501 comm=syz.1.782
[   97.373434][ T8525] netlink: 24 bytes leftover after parsing attributes in process `syz.1.790'.
[   97.376596][ T8525] netlink: 24 bytes leftover after parsing attributes in process `syz.1.790'.
[   97.616845][ T8550] wg2: entered promiscuous mode
[   97.619935][ T8550] wg2: entered allmulticast mode
[   97.645504][ T8552] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[   97.659526][ T8523] overlayfs: conflicting options: metacopy=off,verity=on
[   97.660294][ T8554] netlink: 24 bytes leftover after parsing attributes in process `syz.0.800'.
[   97.686165][ T8554] netlink: 24 bytes leftover after parsing attributes in process `syz.0.800'.
[   97.908365][ T8585] mkiss: ax0: crc mode is auto.
[   98.117531][ T8600] netlink: 24 bytes leftover after parsing attributes in process `syz.4.811'.
[   98.120291][ T8600] netlink: 24 bytes leftover after parsing attributes in process `syz.4.811'.
[   98.151165][ T8604] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[   98.213813][ T8614] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[   98.216550][ T8614] overlayfs: missing 'lowerdir'
[   98.283021][ T8620] syz.1.818: attempt to access beyond end of device
[   98.283021][ T8620] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[   98.287170][ T8620] hpfs: hpfs_map_sector(): read error
[   98.293328][ T8620] xt_CT: You must specify a L4 protocol and not use inversions on it
[   98.309520][ T5981] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   98.456099][ T8631] netlink: 24 bytes leftover after parsing attributes in process `syz.4.821'.
[   98.458966][ T8631] netlink: 24 bytes leftover after parsing attributes in process `syz.4.821'.
[   98.462271][ T5981] usb 7-1: too many configurations: 9, using maximum allowed: 8
[   98.465306][ T5981] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   98.467728][ T5981] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   98.471920][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[   98.481312][ T5981] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   98.484460][ T5981] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   98.488066][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[   98.491039][ T5981] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   98.493627][ T5981] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   98.496881][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[   98.499892][ T5981] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   98.502424][ T5981] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   98.505416][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[   98.508014][ T5981] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   98.510945][ T5981] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   98.514124][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[   98.516728][ T5981] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   98.519196][ T5981] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   98.522621][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[   98.525555][ T5981] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   98.528202][ T5981] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   98.532220][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[   98.535065][ T5981] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[   98.537659][ T5981] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   98.541220][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[   98.545228][ T5981] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   98.548801][ T5981] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   98.552590][ T5981] usb 7-1: Product: syz
[   98.554206][ T5981] usb 7-1: Manufacturer: syz
[   98.555911][ T5981] usb 7-1: SerialNumber: syz
[   98.564485][ T5981] usb 7-1: config 0 descriptor??
[   98.572707][ T5981] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[   98.775784][  T911] usb 7-1: USB disconnect, device number 7
[   98.782663][  T911] yurex 7-1:0.0: USB YUREX #0 now disconnected
[   99.114819][ T8680] kernel read not supported for file /policy (pid: 8680 comm: syz.1.835)
[   99.282210][   T39] kauditd_printk_skb: 37 callbacks suppressed
[   99.282224][   T39] audit: type=1400 audit(1740023727.013:609): avc:  denied  { sqpoll } for  pid=8697 comm="syz.4.839" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   99.328671][ T5295] Bluetooth: hci2: unexpected event for opcode 0x1408
[   99.432316][ T8709] 9pnet: Could not find request transport: t€Œ¢t¯QÁ�¬xJƒÇ<cÄO
[   99.480292][   T39] audit: type=1400 audit(1740023727.213:610): avc:  denied  { create } for  pid=8712 comm="syz.1.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   99.688008][ T8727] openvswitch: netlink: Message has 1275 unknown bytes.
[   99.693428][ T8727] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   99.759640][ T8735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.765947][ T8735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.771120][ T8735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.777644][ T8698] syz.4.839 (8698): drop_caches: 2
[   99.778836][ T8735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.785098][ T8735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.788490][ T8698] syz.4.839 (8698): drop_caches: 2
[   99.789868][ T8735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.805526][   T39] audit: type=1400 audit(1740023727.533:611): avc:  denied  { getopt } for  pid=8733 comm="syz.2.848" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   99.854736][ T8740] program syz.1.849 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   99.983354][ T8742] overlayfs: workdir and upperdir must reside under the same mount
[  100.146999][ T7594] cgroup: fork rejected by pids controller in /syz4
[  100.409527][  T911] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  100.468348][ T1139] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.569015][  T911] usb 6-1: device descriptor read/64, error -71
[  100.608399][ T1139] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.722225][ T5951] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.741648][ T5951] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  100.744208][ T1139] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.746412][ T5951] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  100.756283][ T5951] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  100.760491][ T5951] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  100.763725][ T5951] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  100.819756][  T911] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  100.826785][ T1139] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.934523][ T8763] chnl_net:caif_netlink_parms(): no params data found
[  100.960296][  T911] usb 6-1: device descriptor read/64, error -71
[  100.990523][   T39] audit: type=1400 audit(1740023728.723:612): avc:  denied  { read } for  pid=8779 comm="syz.0.855" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  101.033652][ T1139] bridge_slave_1: left allmulticast mode
[  101.035931][ T1139] bridge_slave_1: left promiscuous mode
[  101.038313][ T1139] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.053051][ T8787] usb usb9: check_ctrlrecip: process 8787 (syz.0.857) requesting ep 01 but needs 81
[  101.056660][ T8787] usb usb9: usbfs: process 8787 (syz.0.857) did not claim interface 0 before use
[  101.064208][ T1139] bridge_slave_0: left allmulticast mode
[  101.064336][ T8787] netlink: 'syz.0.857': attribute type 1 has an invalid length.
[  101.066499][ T1139] bridge_slave_0: left promiscuous mode
[  101.070310][ T8787] netlink: 'syz.0.857': attribute type 2 has an invalid length.
[  101.077352][ T1139] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.079711][  T911] usb usb6-port1: attempt power cycle
[  101.085400][   T39] audit: type=1326 audit(1740023728.813:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8788 comm="syz.2.856" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x0
[  101.419443][  T911] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  101.460246][  T911] usb 6-1: device descriptor read/8, error -71
[  101.485111][ T1139] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  101.489772][ T1139] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  101.493450][ T1139] bond0 (unregistering): Released all slaves
[  101.604797][ T8763] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.605803][   T39] audit: type=1400 audit(1740023729.333:614): avc:  denied  { getopt } for  pid=8798 comm="syz.2.860" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  101.612350][ T8763] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.630273][ T8763] bridge_slave_0: entered allmulticast mode
[  101.631090][ T8763] bridge_slave_0: entered promiscuous mode
[  101.632726][ T8763] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.632770][ T8763] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.632867][ T8763] bridge_slave_1: entered allmulticast mode
[  101.633640][ T8763] bridge_slave_1: entered promiscuous mode
[  101.709568][  T911] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  101.728230][ T8812] overlay: Unknown parameter 'ä€[!ð) 𳇅kÇæOŠbÅWÓJ	­C}¾
6&ØróïëV;¾èÛ>ÝÄ­�"'
[  101.730639][  T911] usb 6-1: device descriptor read/8, error -71
[  101.755765][ T8763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.760625][ T8763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  101.767767][ T8809] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  101.782139][ T8809] qnx6: wrong signature (magic) in superblock #1.
[  101.784045][ T8809] qnx6: unable to read the first superblock
[  101.807526][ T8763] team0: Port device team_slave_0 added
[  101.848696][ T8763] team0: Port device team_slave_1 added
[  101.850363][  T911] usb usb6-port1: unable to enumerate USB device
[  101.944356][ T8823] __nla_validate_parse: 4 callbacks suppressed
[  101.944375][ T8823] netlink: 20 bytes leftover after parsing attributes in process `syz.0.866'.
[  101.959278][ T8763] batman_adv: batadv0: Adding interface: batadv_slave_0
[  101.962777][ T8763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  101.973020][ T8763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  101.995328][ T8763] batman_adv: batadv0: Adding interface: batadv_slave_1
[  101.998252][ T8763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.010634][ T8763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.017923][ T8828] 9pnet_fd: Insufficient options for proto=fd
[  102.052345][ T1139] hsr_slave_0: left promiscuous mode
[  102.055226][ T1139] hsr_slave_1: left promiscuous mode
[  102.057053][ T1139] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.059130][ T1139] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.065021][ T1139] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.067189][ T1139] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.102722][ T1139] veth1_macvtap: left promiscuous mode
[  102.104483][ T1139] veth0_macvtap: left promiscuous mode
[  102.106093][ T1139] veth1_vlan: left promiscuous mode
[  102.107649][ T1139] veth0_vlan: left promiscuous mode
[  102.112477][ T8837] afs: Unknown parameter 'dmn'
[  102.184568][ T8840] netlink: 'syz.2.871': attribute type 11 has an invalid length.
[  102.863186][ T5951] Bluetooth: hci0: command tx timeout
[  103.220963][ T1139] team0 (unregistering): Port device team_slave_1 removed
[  103.442876][ T1139] team0 (unregistering): Port device team_slave_0 removed
[  103.462858][   T39] audit: type=1400 audit(1740023731.193:615): avc:  denied  { read } for  pid=8844 comm="syz.1.873" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  103.492572][ T8845] netlink: 8 bytes leftover after parsing attributes in process `syz.1.873'.
[  103.625638][ T8850] netlink: 8 bytes leftover after parsing attributes in process `syz.1.875'.
[  104.449278][ T8850] netlink: 'syz.1.875': attribute type 1 has an invalid length.
[  104.452350][ T8850] netlink: 'syz.1.875': attribute type 2 has an invalid length.
[  104.501144][ T8763] hsr_slave_0: entered promiscuous mode
[  104.503863][ T8763] hsr_slave_1: entered promiscuous mode
[  104.505947][ T8763] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  104.508121][ T8763] Cannot create hsr debugfs directory
[  104.548834][ T8857] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  104.647417][ T8870] netlink: 108 bytes leftover after parsing attributes in process `syz.2.882'.
[  104.670703][ T8875] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  104.690517][ T8874] netlink: 12 bytes leftover after parsing attributes in process `syz.0.883'.
[  104.720744][ T8874] netem: invalid attributes len -9
[  104.722896][ T8874] netem: change failed
[  104.737324][ T8874] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=8874 comm=syz.0.883
[  104.929523][ T5951] Bluetooth: hci0: command tx timeout
[  105.191651][ T8763] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  105.200438][ T8763] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  105.204251][ T8763] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  105.208226][ T8763] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  105.254657][ T8763] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.271629][ T8763] 8021q: adding VLAN 0 to HW filter on device team0
[  105.277314][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.280090][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  105.289005][ T1138] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.292071][ T1138] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.399112][ T8763] 8021q: adding VLAN 0 to HW filter on device batadv0
[  105.484610][ T8927] netlink: 28 bytes leftover after parsing attributes in process `syz.1.887'.
[  105.489230][ T8927] netlink: 28 bytes leftover after parsing attributes in process `syz.1.887'.
[  105.533223][ T8763] veth0_vlan: entered promiscuous mode
[  105.550957][ T8763] veth1_vlan: entered promiscuous mode
[  105.571211][ T8763] veth0_macvtap: entered promiscuous mode
[  105.574908][ T8763] veth1_macvtap: entered promiscuous mode
[  105.584209][ T8763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.587232][ T8763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.593862][ T8763] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.599628][ T8763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.603467][ T8763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.607340][ T8763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.613050][ T8763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.617801][ T8763] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.628893][ T8763] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.632671][ T8763] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.636142][ T8763] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.640612][ T8763] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.694558][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.698139][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.728606][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.731391][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.735822][   T39] audit: type=1400 audit(1740023733.463:616): avc:  denied  { write } for  pid=8947 comm="syz.0.892" path="socket:[23060]" dev="sockfs" ino=23060 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  105.759424][   T39] audit: type=1400 audit(1740023733.463:617): avc:  denied  { nlmsg_read } for  pid=8947 comm="syz.0.892" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  105.767145][   T39] audit: type=1400 audit(1740023733.463:618): avc:  denied  { setopt } for  pid=8947 comm="syz.0.892" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  105.781243][ T8951] ip6gre1: entered promiscuous mode
[  105.799752][ T8951] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  105.799752][ T8951]    program syz.0.893 not setting count and/or reply_len properly
[  105.850421][ T8954] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.854688][ T8954] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.872326][ T8957] Driver unsupported XDP return value 0 on prog  (id 88) dev N/A, expect packet loss!
[  105.917237][ T8954] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.926303][ T8954] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.963925][ T8954] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.967229][ T8954] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.971322][ T8954] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.974596][ T8954] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.389810][ T8946] usb 9-1: new low-speed USB device number 8 using dummy_hcd
[  106.527506][ T8977] netlink: 20 bytes leftover after parsing attributes in process `syz.1.899'.
[  106.549392][ T8946] usb 9-1: Invalid ep0 maxpacket: 16
[  106.709579][ T8946] usb 9-1: new low-speed USB device number 9 using dummy_hcd
[  106.718439][   T39] audit: type=1400 audit(1740023734.443:619): avc:  denied  { ioctl } for  pid=8981 comm="syz.2.902" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  106.727393][ T5295] Bluetooth: hci4: sending frame failed (-49)
[  106.733198][ T5951] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  106.859657][ T8946] usb 9-1: Invalid ep0 maxpacket: 16
[  106.863026][ T8946] usb usb9-port1: attempt power cycle
[  106.873847][   T39] audit: type=1400 audit(1740023734.603:620): avc:  denied  { recv } for  pid=24 comm="ksoftirqd/2" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=58796 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  106.883594][   T39] audit: type=1400 audit(1740023734.603:621): avc:  denied  { recv } for  pid=24 comm="ksoftirqd/2" saddr=127.0.0.1 src=58796 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  106.887626][ T8994] syzkaller1: entered promiscuous mode
[  106.896549][ T8994] syzkaller1: entered allmulticast mode
[  106.951835][ T8998] netlink: 20 bytes leftover after parsing attributes in process `syz.2.909'.
[  106.985825][ T9000] netlink: 'syz.1.910': attribute type 10 has an invalid length.
[  106.996167][ T9000] batman_adv: batadv0: Adding interface: team0
[  106.998622][ T9000] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.008226][  T911] usb 5-1: new low-speed USB device number 13 using dummy_hcd
[  107.008342][ T9000] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  107.010102][ T5951] Bluetooth: hci0: command tx timeout
[  107.022866][ T9000] netlink: 'syz.1.910': attribute type 10 has an invalid length.
[  107.026165][ T9000] netlink: 2 bytes leftover after parsing attributes in process `syz.1.910'.
[  107.029824][ T9000] team0: entered promiscuous mode
[  107.031824][ T9000] team_slave_0: entered promiscuous mode
[  107.034257][ T9000] team_slave_1: entered promiscuous mode
[  107.037769][ T9000] 8021q: adding VLAN 0 to HW filter on device team0
[  107.040731][ T9000] batman_adv: batadv0: Interface activated: team0
[  107.043278][ T9000] batman_adv: batadv0: Interface deactivated: team0
[  107.045912][ T9000] batman_adv: batadv0: Removing interface: team0
[  107.049105][ T9000] bridge0: port 3(team0) entered blocking state
[  107.051812][ T9000] bridge0: port 3(team0) entered disabled state
[  107.054395][ T9000] team0: entered allmulticast mode
[  107.056427][ T9000] team_slave_0: entered allmulticast mode
[  107.058673][ T9000] team_slave_1: entered allmulticast mode
[  107.062720][ T9000] bridge0: port 3(team0) entered blocking state
[  107.065256][ T9000] bridge0: port 3(team0) entered forwarding state
[  107.154720][   T39] audit: type=1400 audit(1740023734.883:622): avc:  denied  { create } for  pid=9005 comm="syz.1.913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  107.162325][   T39] audit: type=1400 audit(1740023734.883:623): avc:  denied  { setopt } for  pid=9005 comm="syz.1.913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  107.172238][  T911] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  107.175629][  T911] usb 5-1: config 0 has no interface number 0
[  107.178130][  T911] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  107.179405][   T39] audit: type=1400 audit(1740023734.883:624): avc:  denied  { getopt } for  pid=9005 comm="syz.1.913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  107.182901][  T911] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  107.187628][   T39] audit: type=1400 audit(1740023734.893:625): avc:  denied  { ioctl } for  pid=9001 comm="syz.2.911" path="socket:[23108]" dev="sockfs" ino=23108 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  107.192183][  T911] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  107.204381][  T911] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  107.208645][  T911] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  107.209660][ T8946] usb 9-1: new low-speed USB device number 10 using dummy_hcd
[  107.213821][  T911] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  107.229400][  T911] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  107.232974][  T911] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.239425][  T911] usb 5-1: config 0 descriptor??
[  107.240693][ T8946] usb 9-1: Invalid ep0 maxpacket: 16
[  107.242292][ T8985] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  107.249145][  T911] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  107.379905][ T8946] usb 9-1: new low-speed USB device number 11 using dummy_hcd
[  107.411822][ T8946] usb 9-1: Invalid ep0 maxpacket: 16
[  107.416312][ T8946] usb usb9-port1: unable to enumerate USB device
[  107.458472][ T8985] ldusb 5-1:0.55: Couldn't submit interrupt_in_urb -90
[  107.464520][  T911] usb 5-1: USB disconnect, device number 13
[  107.472936][  T911] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  107.542360][ T9024] ntfs3(sr0): Primary boot signature is not NTFS.
[  107.545731][ T9024] ntfs3(sr0): try to read out of volume at offset 0xf800
[  107.555323][ T9023] netlink: 'syz.1.918': attribute type 1 has an invalid length.
[  107.558315][ T9023] netlink: 'syz.1.918': attribute type 3 has an invalid length.
[  107.561857][ T9023] netlink: 224 bytes leftover after parsing attributes in process `syz.1.918'.
[  107.565360][ T9023] NCSI netlink: No device for ifindex 0
[  107.610915][ T9026] bond0: (slave wlan1): Releasing backup interface
[  107.635359][ T9026] 9pnet_fd: p9_fd_create_tcp (9026): problem binding to privport
[  107.694655][ T9032] snd_dummy snd_dummy.0: control 5:65279:0:syz0:0 is already present
[  107.710137][ T9032] netlink: 4 bytes leftover after parsing attributes in process `syz.2.919'.
[  107.766469][ T9034] erofs (device loop1): cannot find valid erofs superblock
[  108.164968][ T9040] netlink: 4 bytes leftover after parsing attributes in process `syz.0.924'.
[  108.285923][ T9047] gtp0: entered promiscuous mode
[  108.287824][ T9047] gtp0: entered allmulticast mode
[  108.446282][ T9055] netlink: 24 bytes leftover after parsing attributes in process `syz.0.930'.
[  108.449701][ T9055] netlink: 24 bytes leftover after parsing attributes in process `syz.0.930'.
[  108.493191][ T9057] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9057 comm=syz.0.931
[  108.503027][ T9057] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9057 comm=syz.0.931
[  108.640231][ T9071] netlink: 20 bytes leftover after parsing attributes in process `syz.0.935'.
[  108.832741][ T9081] SELinux: security_context_str_to_sid („) failed with errno=-22
[  108.980342][ T9086] netlink: 24 bytes leftover after parsing attributes in process `syz.1.939'.
[  108.983806][ T9086] netlink: 24 bytes leftover after parsing attributes in process `syz.1.939'.
[  109.090129][ T5951] Bluetooth: hci0: command tx timeout
[  109.355291][ T9098] 9pnet_virtio: no channels available for device syz
[  109.429561][ T5981] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  109.508390][ T9103] netlink: 'syz.4.947': attribute type 9 has an invalid length.
[  109.511747][ T9103] netlink: 'syz.4.947': attribute type 9 has an invalid length.
[  109.514868][ T9103] netlink: 'syz.4.947': attribute type 9 has an invalid length.
[  109.518135][ T9103] netlink: 'syz.4.947': attribute type 9 has an invalid length.
[  109.521705][ T9103] netlink: 'syz.4.947': attribute type 9 has an invalid length.
[  109.524899][ T9103] netlink: 'syz.4.947': attribute type 9 has an invalid length.
[  109.579561][ T5981] usb 6-1: Using ep0 maxpacket: 8
[  109.585470][ T5981] usb 6-1: config index 0 descriptor too short (expected 5924, got 36)
[  109.588859][ T5981] usb 6-1: config 250 has an invalid interface number: 228 but max is -1
[  109.596379][ T5981] usb 6-1: config 250 has 1 interface, different from the descriptor's value: 0
[  109.600517][ T5981] usb 6-1: config 250 has no interface number 0
[  109.602957][ T5981] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  109.607574][ T5981] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  109.611820][ T5981] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 26
[  109.615917][ T5981] usb 6-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  109.621193][ T5981] usb 6-1: config 250 interface 228 has no altsetting 0
[  109.625564][ T5981] usb 6-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  109.629170][ T5981] usb 6-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  109.632744][ T5981] usb 6-1: Product: syz
[  109.634486][ T5981] usb 6-1: SerialNumber: syz
[  109.644364][ T5981] hub 6-1:250.228: bad descriptor, ignoring hub
[  109.646883][ T5981] hub 6-1:250.228: probe with driver hub failed with error -5
[  109.670210][ T9110] misc userio: Invalid payload size
[  109.847061][ T5981] usblp 6-1:250.228: usblp0: USB Bidirectional printer dev 8 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  110.121260][ T9122] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9122 comm=syz.4.954
[  110.126037][ T9123] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2320 sclass=netlink_route_socket pid=9123 comm=syz.4.954
[  110.146956][    C2] usblp0: nonzero read bulk status received: -71
[  110.157233][   T57] usb 6-1: USB disconnect, device number 8
[  110.177319][ T9125] ip6gre1: entered promiscuous mode
[  110.193103][ T9125] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  110.193103][ T9125]    program syz.4.955 not setting count and/or reply_len properly
[  110.466395][ T9091] usblp0: removed
[  110.635778][ T9130] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  110.781023][ T9137] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  110.783763][ T9137] IPv6: NLM_F_CREATE should be set when creating new route
[  110.800342][ T9141] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  111.132769][ T9161] sock: sock_set_timeout: `syz.2.967' (pid 9161) tries to set negative timeout
[  111.225695][ T9177] mkiss: ax0: crc mode is auto.
[  111.235517][ T9178] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  111.235517][ T9178]    program syz.4.974 not setting count and/or reply_len properly
[  111.285461][ T9177] cgroup: Unknown subsys name 'cpuset'
[  111.392354][   T39] kauditd_printk_skb: 10 callbacks suppressed
[  111.392372][   T39] audit: type=1800 audit(1740023739.123:636): pid=9203 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.978" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  111.440013][   T39] audit: type=1400 audit(1740023739.173:637): avc:  denied  { watch } for  pid=9206 comm="syz.2.979" path="/296/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=1564 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  111.453317][   T39] audit: type=1400 audit(1740023739.183:638): avc:  denied  { watch_sb } for  pid=9206 comm="syz.2.979" path="/296/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=1564 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  111.635025][ T9217] syz.2.983: attempt to access beyond end of device
[  111.635025][ T9217] nbd2: rw=6144, sector=128, nr_sectors = 8 limit=0
[  111.639035][ T9217] gfs2: error -5 reading superblock
[  111.819999][   T39] audit: type=1400 audit(1740023739.553:639): avc:  denied  { accept } for  pid=9234 comm="syz.1.988" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  111.898264][   T39] audit: type=1400 audit(1740023739.623:640): avc:  denied  { write } for  pid=9237 comm="syz.2.989" path="socket:[26009]" dev="sockfs" ino=26009 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  111.913327][ T9241] sp0: Synchronizing with TNC
[  112.031977][ T9247] __nla_validate_parse: 44 callbacks suppressed
[  112.032002][ T9247] netlink: 24 bytes leftover after parsing attributes in process `syz.1.992'.
[  112.037947][ T9247] netlink: 24 bytes leftover after parsing attributes in process `syz.1.992'.
[  112.077499][ T9249] tmpfs: Bad value for 'mpol'
[  112.307960][ T9279] overlayfs: failed to resolve './file1': -2
[  112.343553][ T9283] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1005'.
[  112.436935][ T9291] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  112.474178][ T9293] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1008'.
[  112.477523][ T9293] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1008'.
[  112.529815][ T5951] Bluetooth: hci0: unexpected Set CIG Parameters response data
[  112.597114][ T9307] ip6t_srh: unknown srh invflags 7863
[  112.789590][   T35] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  112.838458][ T9315] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1015'.
[  112.844909][   T39] audit: type=1400 audit(1740023740.573:641): avc:  denied  { read } for  pid=9313 comm="syz.1.1015" name="file0" dev="tmpfs" ino=1686 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  112.847626][ T9315] nfs4: Unknown parameter '
PL'
[  112.854006][   T39] audit: type=1400 audit(1740023740.573:642): avc:  denied  { open } for  pid=9313 comm="syz.1.1015" path="/319/file0" dev="tmpfs" ino=1686 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  112.925452][ T9317] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1016'.
[  112.928898][ T9317] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1016'.
[  112.952513][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.955481][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  112.958345][   T35] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  112.962001][   T35] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  112.964668][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.968258][   T35] usb 7-1: config 0 descriptor??
[  112.976302][ T9319] raw_sendmsg: syz.1.1017 forgot to set AF_INET. Fix it!
[  113.024531][   T39] audit: type=1400 audit(1740023740.753:643): avc:  denied  { load_policy } for  pid=9322 comm="syz.1.1018" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  113.031390][ T9323] SELinux:  policydb version 1103156768 does not match my version range 15-34
[  113.035248][ T9323] SELinux: failed to load policy
[  113.134189][   T39] audit: type=1400 audit(1740023740.863:644): avc:  denied  { read } for  pid=9330 comm="syz.1.1022" name="file0" dev="tmpfs" ino=1713 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  113.150011][   T39] audit: type=1400 audit(1740023740.863:645): avc:  denied  { setattr } for  pid=9330 comm="syz.1.1022" name="file0" dev="tmpfs" ino=1713 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  113.170277][ T9334] misc userio: Can't change port type on an already running userio instance
[  113.263682][ T9288] syz.1.1006 (9288) used greatest stack depth: 20800 bytes left
[  113.383107][ T9341] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1025'.
[  113.386005][ T9341] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1025'.
[  113.388620][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.392759][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.395150][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.397397][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.399766][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.401958][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.404076][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.406269][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.408516][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.411157][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.413358][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.415618][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.417857][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.420424][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.422897][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.425744][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.428565][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.431360][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.433390][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.435438][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.437660][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.440264][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.442439][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.444561][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.446600][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.448665][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.451469][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.453615][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.455656][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.457733][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.460407][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.462561][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.465285][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.467887][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.470841][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.472998][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.475163][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.477241][   T35] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  113.480562][   T35] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[  113.491190][   T35] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  113.623081][ T9349] validate_nla: 29 callbacks suppressed
[  113.623096][ T9349] netlink: 'syz.0.1029': attribute type 9 has an invalid length.
[  113.664159][  T911] usb 7-1: USB disconnect, device number 8
[  113.665727][ T9352] netlink: 'syz.0.1030': attribute type 8 has an invalid length.
[  113.764658][ T9358] pim6reg1: entered promiscuous mode
[  113.766743][ T9358] pim6reg1: entered allmulticast mode
[  114.346000][ T9409] program syz.1.1053 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  114.471346][ T9419] netlink: 'syz.2.1056': attribute type 10 has an invalid length.
[  114.604836][ T9446] cgroup: Name too long
[  114.874542][ T9462] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  114.874542][ T9462]    program syz.4.1068 not setting count and/or reply_len properly
[  114.958629][ T9467] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  114.965254][ T9467] cgroup: Invalid name
[  115.380353][ T9481] Cannot find del_set index 2 as target
[  115.446264][ T9490] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  115.603105][ T9502] IPVS: length: 184 != 24
[  115.642452][  T911] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  115.652138][  T911] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  115.859430][ T9527] loop6: detected capacity change from 0 to 524287999
[  115.867297][    C2] blk_print_req_error: 26 callbacks suppressed
[  115.867313][    C2] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.873028][ T9527] Dev loop6: unable to read RDB block 8
[  115.873387][    C0] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.873567][ T9200] loop: Write error at byte offset 1, length 4096.
[  115.875530][ T9527]  loop6: unable to read partition table
[  115.875568][    C2] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[  115.875592][    C2] buffer_io_error: 25 callbacks suppressed
[  115.875600][    C2] Buffer I/O error on dev loop6, logical block 0, lost async page write
[  115.875699][    C2] I/O error, dev loop6, sector 24 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.875715][    C2] Buffer I/O error on dev loop6, logical block 3, async page read
[  115.878243][    C0] Buffer I/O error on dev loop6, logical block 1, async page read
[  115.896650][ T9527] loop_reread_partitions: partition scan of loop6 (ÿŸ¾‚³˜±Ä6�tPΪŔ±³×AÝÁ¬8ï*V^ñè3c) failed (rc=-5)
[  115.952530][ T9534] 9p: Unknown Cache mode or invalid value fscache­çÌf×»ïrGyÊs3FÿpP7=yÿ{>›ÀÁ´²f¨‡‹�ºª�>;c—šÃßnoHY¯Õ8ÇTz9¶“€D®]+£à
[  115.952530][ T9534] Nsghd®	�êî^æÏ
[  115.952530][ T9534] ³xÝMØ‘é7ÂêTàQ0
[  116.248991][ T9542] ip6gre1: entered promiscuous mode
[  116.257180][ T9542] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  116.257180][ T9542]    program syz.1.1098 not setting count and/or reply_len properly
[  116.624318][ T5951] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  116.628098][ T5951] Bluetooth: hci0: Injecting HCI hardware error event
[  116.635079][ T5295] Bluetooth: hci0: hardware error 0x00
[  116.682565][ T9558] block device autoloading is deprecated and will be removed.
[  116.689975][ T9558] syz.0.1103: attempt to access beyond end of device
[  116.689975][ T9558] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  116.698399][ T9559] syz.0.1103: attempt to access beyond end of device
[  116.698399][ T9559] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  116.711749][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  116.711764][   T39] audit: type=1400 audit(1740023744.443:653): avc:  denied  { read } for  pid=9554 comm="syz.2.1102" path="socket:[27239]" dev="sockfs" ino=27239 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  116.724080][   T39] audit: type=1326 audit(1740023744.443:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9554 comm="syz.2.1102" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7fc00000
[  116.787262][ T9566] netlink: zone id is out of range
[  116.789842][ T9566] netlink: zone id is out of range
[  116.792683][ T9566] netlink: zone id is out of range
[  116.798925][ T9566] netlink: set zone limit has 8 unknown bytes
[  116.902646][ T9574] openvswitch: netlink: EtherType 0 is less than min 600
[  116.998691][   T39] audit: type=1400 audit(1740023744.723:655): avc:  denied  { connect } for  pid=9581 comm="syz.4.1112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  117.042178][ T9584] netlink: 'syz.4.1113': attribute type 29 has an invalid length.
[  117.061736][ T9584] netlink: 'syz.4.1113': attribute type 29 has an invalid length.
[  117.066504][ T9584] __nla_validate_parse: 31 callbacks suppressed
[  117.066520][ T9584] netlink: 500 bytes leftover after parsing attributes in process `syz.4.1113'.
[  117.071655][ T9586] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1114'.
[  117.086278][   T39] audit: type=1400 audit(1740023744.813:656): avc:  denied  { setcheckreqprot } for  pid=9583 comm="syz.4.1113" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  117.159243][   T39] audit: type=1400 audit(1740023744.883:657): avc:  denied  { mount } for  pid=9591 comm="syz.4.1117" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  117.168144][ T9592] devtmpfs: Cannot change global quota limit on remount
[  117.189483][   T39] audit: type=1400 audit(1740023744.903:658): avc:  denied  { remount } for  pid=9591 comm="syz.4.1117" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  117.201349][   T39] audit: type=1400 audit(1740023744.933:659): avc:  denied  { unmount } for  pid=8763 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  117.288693][ T9605] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  117.288693][ T9605]    program syz.1.1123 not setting count and/or reply_len properly
[  117.344654][ T9603] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1121'.
[  117.347588][ T9603] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1121'.
[  117.435592][ T9609] Cannot find set identified by id 0 to match
[  117.472618][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1125'.
[  117.476238][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1125'.
[  117.479814][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1125'.
[  117.489467][   T39] audit: type=1326 audit(1740023745.213:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9554 comm="syz.2.1102" exe="/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f6e5f58cde9 code=0x7fc00000
[  117.557394][   T39] audit: type=1400 audit(1740023745.283:661): avc:  denied  { connect } for  pid=9616 comm="syz.0.1128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  117.609770][   T39] audit: type=1400 audit(1740023745.333:662): avc:  denied  { write } for  pid=9616 comm="syz.0.1128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  117.620565][ T9617] tls_set_device_offload_rx: netdev not found
[  117.789641][  T911] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  117.939488][  T911] usb 9-1: Using ep0 maxpacket: 8
[  117.943676][  T911] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  117.946501][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  117.950875][  T911] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  117.955497][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  117.959695][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  117.964834][  T911] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  117.967669][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  117.971521][  T911] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  117.975638][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  117.980263][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  117.986040][  T911] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  117.988817][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  117.993517][  T911] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  117.997899][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  118.001861][  T911] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  118.007536][  T911] usb 9-1: string descriptor 0 read error: -22
[  118.009473][  T911] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  118.012176][  T911] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.025314][  T911] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  118.230016][  T911] usb 9-1: USB disconnect, device number 12
[  118.446453][ T9661] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1140'.
[  118.452961][ T9661] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1140'.
[  118.653629][ T9679] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1145'.
[  118.657315][ T9679] netlink: 'syz.0.1145': attribute type 11 has an invalid length.
[  118.701004][ T5295] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  118.781686][ T9689] pim6reg1: entered promiscuous mode
[  118.783839][ T9689] pim6reg1: entered allmulticast mode
[  118.941114][ T9696] rtc_cmos 00:05: Alarms can be up to one day in the future
[  119.001425][ T9701] Trying to write to read-only block-device nullb0
[  119.192924][ T9716] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  119.292815][ T9723] team0: Device ipip0 is of different type
[  119.339994][ T9724] netlink: 'syz.4.1161': attribute type 12 has an invalid length.
[  119.349104][ T9724] netlink: 'syz.4.1161': attribute type 29 has an invalid length.
[  119.353265][ T9724] netlink: 'syz.4.1161': attribute type 2 has an invalid length.
[  119.359770][ T9724] netlink: 'syz.4.1161': attribute type 3 has an invalid length.
[  119.444066][ T9727] overlayfs: failed to resolve './file1': -2
[  119.597557][ T9742] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  119.597557][ T9742]    program syz.1.1169 not setting count and/or reply_len properly
[  119.724963][ T9758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.728813][ T9758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.734241][ T9758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.737981][ T9758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.815920][ T9189] Bluetooth: Invalid byte 5e after esc byte
[  120.652464][ T9781] netlink: 'syz.2.1181': attribute type 5 has an invalid length.
[  120.766509][ T9790] netlink: 'syz.2.1183': attribute type 2 has an invalid length.
[  120.816539][ T9790] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.945198][ T9790] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.024593][ T9790] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.108415][ T9790] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.206826][ T9790] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  121.221115][ T9790] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  121.231770][ T9790] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  121.240371][ T9790] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  121.640499][ T9191] Bluetooth: hci5: Frame reassembly failed (-84)
[  121.642468][ T9191] Bluetooth: hci5: Frame reassembly failed (-84)
[  121.644733][ T9191] Bluetooth: hci5: Frame reassembly failed (-84)
[  121.681847][ T9816] netlink: 'syz.2.1192': attribute type 64 has an invalid length.
[  121.684642][ T9816] netlink: 'syz.2.1192': attribute type 4 has an invalid length.
[  121.889478][ T5295] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  121.991721][   T39] kauditd_printk_skb: 13 callbacks suppressed
[  121.991738][   T39] audit: type=1400 audit(1740023749.723:676): avc:  denied  { append } for  pid=9823 comm="syz.4.1196" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.998677][ T9824] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  121.998677][ T9824]    program syz.0.1195 not setting count and/or reply_len properly
[  122.036915][ T9825] Cannot find add_set index 0 as target
[  122.121862][ T9831] sp0: Synchronizing with TNC
[  122.128809][ T9830] [U] è
[  122.301538][ T9833] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9833 comm=syz.4.1198
[  122.577015][ T9852] netlink: 'syz.2.1205': attribute type 4 has an invalid length.
[  122.602622][ T9848] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9848 comm=syz.4.1204
[  122.609902][ T9848] __nla_validate_parse: 9 callbacks suppressed
[  122.609918][ T9848] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1204'.
[  122.754008][ T9855] hfs: Unknown parameter '/dev/input/event#'
[  122.994389][   T39] audit: type=1400 audit(1740023750.723:677): avc:  denied  { create } for  pid=9862 comm="syz.2.1209" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  122.994720][ T9865] 9pnet_fd: Insufficient options for proto=fd
[  123.238753][ T9878] syz.0.1213(9878): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  123.335521][ T9886] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  123.335521][ T9886]    program syz.0.1216 not setting count and/or reply_len properly
[  123.649570][ T5951] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[  123.649622][ T5295] Bluetooth: hci5: command 0xfc11 tx timeout
[  123.778771][ T5951] Bluetooth: hci1: adv larger than maximum supported
[  123.778809][ T5951] Bluetooth: hci1: Malformed LE Event: 0x0d
[  124.319275][   T39] audit: type=1400 audit(1740023752.043:678): avc:  denied  { write } for  pid=9898 comm="syz.2.1222" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  124.334129][ T9901] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1221'.
[  124.428764][ T9913] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  124.428764][ T9913]    program syz.0.1227 not setting count and/or reply_len properly
[  124.485203][   T39] audit: type=1400 audit(1740023752.213:679): avc:  denied  { getopt } for  pid=9914 comm="syz.1.1228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  124.504887][   T39] audit: type=1400 audit(1740023752.233:680): avc:  denied  { ioctl } for  pid=9906 comm="syz.2.1225" path="socket:[29944]" dev="sockfs" ino=29944 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  124.676366][ T9925] vivid-000: =================  START STATUS  =================
[  124.679130][ T9925] vivid-000: Test Pattern: 75% Colorbar
[  124.681246][ T9925] vivid-000: Fill Percentage of Frame: 100
[  124.683218][ T9925] vivid-000: Horizontal Movement: No Movement
[  124.685097][ T9925] vivid-000: Vertical Movement: No Movement
[  124.686899][ T9925] vivid-000: OSD Text Mode: All
[  124.688664][ T9925] vivid-000: Show Border: false
[  124.690640][ T9925] vivid-000: Show Square: false
[  124.692218][ T9925] vivid-000: Sensor Flipped Horizontally: false
[  124.694135][ T9925] vivid-000: Sensor Flipped Vertically: false
[  124.695956][ T9925] vivid-000: Insert SAV Code in Image: false
[  124.697738][ T9925] vivid-000: Insert EAV Code in Image: false
[  124.699848][ T9925] vivid-000: Insert Video Guard Band: false
[  124.701812][ T9925] vivid-000: Reduced Framerate: false
[  124.703442][ T9925] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  124.705754][ T9925] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  124.708015][ T9925] vivid-000: Enable Capture Cropping: true
[  124.710345][ T9925] vivid-000: Enable Capture Composing: false
[  124.712119][ T9925] vivid-000: Enable Capture Scaler: true
[  124.713748][ T9925] vivid-000: Timestamp Source: End of Frame
[  124.715426][ T9925] vivid-000: Colorspace: SMPTE 170M
[  124.716981][ T9925] vivid-000: Transfer Function: Default
[  124.718725][ T9925] vivid-000: Y'CbCr Encoding: Default
[  124.720715][ T9925] vivid-000: HSV Encoding: Hue 0-179
[  124.722446][ T9925] vivid-000: Quantization: Default
[  124.724091][ T9925] vivid-000: Apply Alpha To Red Only: false
[  124.725855][ T9925] vivid-000: Standard Aspect Ratio: 4x3
[  124.727551][ T9925] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  124.730466][ T9925] vivid-000: DV Timings: 640x480p59 inactive
[  124.732337][ T9925] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  124.734569][ T9925] vivid-000: Maximum EDID Blocks: 2
[  124.736205][ T9925] vivid-000: Limited RGB Range (16-235): false
[  124.738124][ T9925] vivid-000: Rx RGB Quantization Range: Automatic
[  124.740409][ T9925] vivid-000: Power Present: 0x00000001
[  124.742184][ T9925] tpg source WxH: 720x576 (R'G'B)
[  124.743779][ T9925] tpg field: 2
[  124.744980][ T9925] tpg crop: 16x16@0x0
[  124.746232][ T9925] tpg compose: 16x8@0x0
[  124.747499][ T9925] tpg colorspace: 1
[  124.748738][ T9925] tpg transfer function: 0/0
[  124.750554][ T9925] tpg quantization: 0/0
[  124.751870][ T9925] tpg RGB range: 0/2
[  124.752986][ T9925] vivid-000: ==================  END STATUS  ==================
[  124.938823][ T9936] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1234'.
[  125.028084][ T9941] sp0: Synchronizing with TNC
[  125.043095][ T9940] [U] è
[  125.194906][   T39] audit: type=1400 audit(1740023752.923:681): avc:  denied  { setopt } for  pid=9944 comm="syz.1.1238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  125.203659][   T39] audit: type=1400 audit(1740023752.923:682): avc:  denied  { setopt } for  pid=9944 comm="syz.1.1238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  125.277485][ T9951] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1240'.
[  125.374746][ T9958] RDS: rds_bind could not find a transport for fe80::41, load rds_tcp or rds_rdma?
[  125.400568][ T9965] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1245'.
[  125.404037][ T9965] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1245'.
[  125.551552][ T9974] Cannot find set identified by id 65534 to match
[  125.555179][ T9974] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1249'.
[  125.559033][ T9974] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1249'.
[  125.622566][ T9976] FAULT_INJECTION: forcing a failure.
[  125.622566][ T9976] name failslab, interval 1, probability 0, space 0, times 0
[  125.622778][   T39] audit: type=1400 audit(1740023753.353:683): avc:  denied  { module_load } for  pid=9971 comm="syz.1.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  125.627608][ T9976] CPU: 1 UID: 0 PID: 9976 Comm: syz.2.1250 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  125.627631][ T9976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.627642][ T9976] Call Trace:
[  125.627688][ T9976]  <TASK>
[  125.627695][ T9976]  dump_stack_lvl+0x16c/0x1f0
[  125.627817][ T9976]  should_fail_ex+0x50a/0x650
[  125.627911][ T9976]  ? fs_reclaim_acquire+0xae/0x150
[  125.627990][ T9976]  ? tomoyo_realpath_from_path+0xb9/0x720
[  125.628038][ T9976]  should_failslab+0xc2/0x120
[  125.628081][ T9976]  __kmalloc_noprof+0xcb/0x510
[  125.628098][ T9976]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  125.628173][ T9976]  tomoyo_realpath_from_path+0xb9/0x720
[  125.628193][ T9976]  ? tomoyo_path_number_perm+0x235/0x590
[  125.628210][ T9976]  ? tomoyo_path_number_perm+0x235/0x590
[  125.628232][ T9976]  tomoyo_path_number_perm+0x248/0x590
[  125.628246][ T9976]  ? tomoyo_path_number_perm+0x235/0x590
[  125.628265][ T9976]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  125.628302][ T9976]  ? __pfx_lock_release+0x10/0x10
[  125.628321][ T9976]  ? trace_lock_acquire+0x14e/0x1f0
[  125.628337][ T9976]  ? lock_acquire+0x2f/0xb0
[  125.628353][ T9976]  ? __fget_files+0x40/0x3a0
[  125.628405][ T9976]  ? __fget_files+0x206/0x3a0
[  125.628422][ T9976]  security_file_ioctl+0x9b/0x240
[  125.628471][ T9976]  __x64_sys_ioctl+0xb7/0x200
[  125.628523][ T9976]  do_syscall_64+0xcd/0x250
[  125.628546][ T9976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.628568][ T9976] RIP: 0033:0x7f6e5f58cde9
[  125.628584][ T9976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.628600][ T9976] RSP: 002b:00007f6e604c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  125.628654][ T9976] RAX: ffffffffffffffda RBX: 00007f6e5f7a5fa0 RCX: 00007f6e5f58cde9
[  125.628665][ T9976] RDX: 0000400000000080 RSI: 00000000c040565f RDI: 0000000000000003
[  125.628676][ T9976] RBP: 00007f6e604c5090 R08: 0000000000000000 R09: 0000000000000000
[  125.628685][ T9976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.628694][ T9976] R13: 0000000000000000 R14: 00007f6e5f7a5fa0 R15: 00007ffe86e72df8
[  125.628717][ T9976]  </TASK>
[  125.628813][ T9976] ERROR: Out of memory at tomoyo_realpath_from_path.
[  125.805676][   T39] audit: type=1400 audit(1740023753.533:684): avc:  denied  { getopt } for  pid=9980 comm="syz.2.1252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  126.084187][ T9992] netlink: 'syz.2.1255': attribute type 12 has an invalid length.
[  126.192312][T10003] FAULT_INJECTION: forcing a failure.
[  126.192312][T10003] name failslab, interval 1, probability 0, space 0, times 0
[  126.197281][T10003] CPU: 3 UID: 0 PID: 10003 Comm: syz.4.1260 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  126.197303][T10003] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.197312][T10003] Call Trace:
[  126.197319][T10003]  <TASK>
[  126.197326][T10003]  dump_stack_lvl+0x16c/0x1f0
[  126.197350][T10003]  should_fail_ex+0x50a/0x650
[  126.197406][T10003]  ? fs_reclaim_acquire+0xae/0x150
[  126.197459][T10003]  ? tomoyo_encode2+0x100/0x3e0
[  126.197481][T10003]  should_failslab+0xc2/0x120
[  126.197499][T10003]  __kmalloc_noprof+0xcb/0x510
[  126.197516][T10003]  ? d_absolute_path+0x137/0x1b0
[  126.197536][T10003]  ? rcu_is_watching+0x12/0xc0
[  126.197612][T10003]  tomoyo_encode2+0x100/0x3e0
[  126.197637][T10003]  tomoyo_encode+0x29/0x50
[  126.197657][T10003]  tomoyo_realpath_from_path+0x19d/0x720
[  126.197687][T10003]  tomoyo_path_number_perm+0x248/0x590
[  126.197705][T10003]  ? tomoyo_path_number_perm+0x235/0x590
[  126.197727][T10003]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  126.197769][T10003]  ? __pfx_lock_release+0x10/0x10
[  126.197796][T10003]  ? trace_lock_acquire+0x14e/0x1f0
[  126.197834][T10003]  ? lock_acquire+0x2f/0xb0
[  126.197854][T10003]  ? __fget_files+0x40/0x3a0
[  126.197874][T10003]  ? __fget_files+0x206/0x3a0
[  126.197891][T10003]  security_file_ioctl+0x9b/0x240
[  126.197915][T10003]  __x64_sys_ioctl+0xb7/0x200
[  126.197939][T10003]  do_syscall_64+0xcd/0x250
[  126.197959][T10003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.197981][T10003] RIP: 0033:0x7f96e3d8cde9
[  126.197996][T10003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.198011][T10003] RSP: 002b:00007f96e4b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  126.198028][T10003] RAX: ffffffffffffffda RBX: 00007f96e3fa5fa0 RCX: 00007f96e3d8cde9
[  126.198037][T10003] RDX: 0000400000000080 RSI: 00000000c040565f RDI: 0000000000000003
[  126.198046][T10003] RBP: 00007f96e4b10090 R08: 0000000000000000 R09: 0000000000000000
[  126.198055][T10003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.198063][T10003] R13: 0000000000000000 R14: 00007f96e3fa5fa0 R15: 00007ffda11abad8
[  126.198083][T10003]  </TASK>
[  126.198136][T10003] ERROR: Out of memory at tomoyo_realpath_from_path.
[  126.343915][   T39] audit: type=1400 audit(1740023754.073:685): avc:  denied  { mount } for  pid=10005 comm="syz.4.1262" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1
[  126.444290][T10012] FAULT_INJECTION: forcing a failure.
[  126.444290][T10012] name failslab, interval 1, probability 0, space 0, times 0
[  126.449426][T10012] CPU: 3 UID: 0 PID: 10012 Comm: syz.4.1264 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  126.449447][T10012] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.449456][T10012] Call Trace:
[  126.449462][T10012]  <TASK>
[  126.449467][T10012]  dump_stack_lvl+0x16c/0x1f0
[  126.449491][T10012]  should_fail_ex+0x50a/0x650
[  126.449513][T10012]  ? fs_reclaim_acquire+0xae/0x150
[  126.449536][T10012]  should_failslab+0xc2/0x120
[  126.449554][T10012]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  126.449570][T10012]  ? skb_clone+0x190/0x3f0
[  126.449644][T10012]  skb_clone+0x190/0x3f0
[  126.449645][ T6218] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  126.449664][T10012]  nfnetlink_rcv_batch+0x1d9/0x24e0
[  126.449740][T10012]  ? __pfx___lock_acquire+0x10/0x10
[  126.449760][T10012]  ? mark_lock+0xb5/0xc60
[  126.449779][T10012]  ? __pfx_mark_lock+0x10/0x10
[  126.449798][T10012]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  126.449818][T10012]  ? find_held_lock+0x2d/0x110
[  126.449837][T10012]  ? avc_has_perm_noaudit+0x119/0x3a0
[  126.449870][T10012]  ? avc_has_perm_noaudit+0x143/0x3a0
[  126.449887][T10012]  ? __asan_memset+0x23/0x50
[  126.449909][T10012]  ? __nla_validate_parse+0x601/0x2880
[  126.449929][T10012]  ? rcu_is_watching+0x12/0xc0
[  126.449945][T10012]  ? __pfx___nla_validate_parse+0x10/0x10
[  126.449963][T10012]  ? cap_capable+0xb3/0x250
[  126.449985][T10012]  ? __nla_parse+0x40/0x60
[  126.450002][T10012]  nfnetlink_rcv+0x3c3/0x430
[  126.450021][T10012]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  126.450045][T10012]  netlink_unicast+0x53c/0x7f0
[  126.450095][T10012]  ? __pfx_netlink_unicast+0x10/0x10
[  126.450119][T10012]  netlink_sendmsg+0x8b8/0xd70
[  126.450141][T10012]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.450165][T10012]  ____sys_sendmsg+0xaaf/0xc90
[  126.450180][T10012]  ? copy_msghdr_from_user+0x10b/0x160
[  126.450198][T10012]  ? __pfx_____sys_sendmsg+0x10/0x10
[  126.450221][T10012]  ___sys_sendmsg+0x135/0x1e0
[  126.450240][T10012]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.450265][T10012]  ? __pfx_lock_release+0x10/0x10
[  126.450283][T10012]  ? trace_lock_acquire+0x14e/0x1f0
[  126.450306][T10012]  ? __fget_files+0x206/0x3a0
[  126.450325][T10012]  __sys_sendmsg+0x16e/0x220
[  126.450346][T10012]  ? __pfx___sys_sendmsg+0x10/0x10
[  126.450378][T10012]  do_syscall_64+0xcd/0x250
[  126.450397][T10012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.450418][T10012] RIP: 0033:0x7f96e3d8cde9
[  126.450434][T10012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.450449][T10012] RSP: 002b:00007f96e4b10038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.450466][T10012] RAX: ffffffffffffffda RBX: 00007f96e3fa5fa0 RCX: 00007f96e3d8cde9
[  126.450477][T10012] RDX: 0000000000008890 RSI: 00004000000000c0 RDI: 0000000000000003
[  126.450485][T10012] RBP: 00007f96e4b10090 R08: 0000000000000000 R09: 0000000000000000
[  126.450494][T10012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.450503][T10012] R13: 0000000000000000 R14: 00007f96e3fa5fa0 R15: 00007ffda11abad8
[  126.450522][T10012]  </TASK>
[  126.497142][T10017] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1267'.
[  126.503495][T10018] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1265'.
[  126.641879][T10027] FAULT_INJECTION: forcing a failure.
[  126.641879][T10027] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.646441][T10028] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  126.647139][T10027] CPU: 1 UID: 0 PID: 10027 Comm: syz.0.1271 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  126.647160][T10027] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.647170][T10027] Call Trace:
[  126.647175][T10027]  <TASK>
[  126.647182][T10027]  dump_stack_lvl+0x16c/0x1f0
[  126.647202][T10027]  should_fail_ex+0x50a/0x650
[  126.647224][T10027]  _copy_from_user+0x2e/0xd0
[  126.647275][T10027]  video_usercopy+0xedb/0x1620
[  126.647319][T10027]  ? __pfx___video_do_ioctl+0x10/0x10
[  126.647341][T10027]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  126.647366][T10027]  ? __pfx_video_usercopy+0x10/0x10
[  126.647393][T10027]  v4l2_ioctl+0x1ba/0x250
[  126.647406][T10027]  ? __pfx_v4l2_ioctl+0x10/0x10
[  126.647428][T10027]  __x64_sys_ioctl+0x190/0x200
[  126.647451][T10027]  do_syscall_64+0xcd/0x250
[  126.647469][T10027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.647489][T10027] RIP: 0033:0x7f9cdf58cde9
[  126.647500][T10027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.647514][T10027] RSP: 002b:00007f9ce032a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  126.647529][T10027] RAX: ffffffffffffffda RBX: 00007f9cdf7a5fa0 RCX: 00007f9cdf58cde9
[  126.647538][T10027] RDX: 0000400000000080 RSI: 00000000c040565f RDI: 0000000000000003
[  126.647547][T10027] RBP: 00007f9ce032a090 R08: 0000000000000000 R09: 0000000000000000
[  126.647556][T10027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.647565][T10027] R13: 0000000000000000 R14: 00007f9cdf7a5fa0 R15: 00007ffc20ceeb58
[  126.647584][T10027]  </TASK>
[  126.718970][T10029] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  126.722515][ T6218] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  126.726125][ T6218] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  126.729451][ T6218] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  126.733767][ T6218] usb 7-1: config 0 interface 0 has no altsetting 0
[  126.740824][ T6218] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  126.744360][ T6218] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  126.748353][ T6218] usb 7-1: config 0 interface 0 has no altsetting 0
[  126.752608][ T6218] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  126.756057][ T6218] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  126.763941][ T6218] usb 7-1: config 0 interface 0 has no altsetting 0
[  126.769362][ T6218] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  126.773012][ T6218] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  126.777303][ T6218] usb 7-1: config 0 interface 0 has no altsetting 0
[  126.782350][ T6218] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  126.786126][ T6218] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  126.790591][ T6218] usb 7-1: config 0 interface 0 has no altsetting 0
[  126.794374][ T6218] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  126.797886][ T6218] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  126.802808][ T6218] usb 7-1: config 0 interface 0 has no altsetting 0
[  126.806619][ T6218] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  126.811196][ T6218] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  126.815610][ T6218] usb 7-1: config 0 interface 0 has no altsetting 0
[  126.820121][ T6218] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  126.823709][ T6218] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  126.827819][ T6218] usb 7-1: config 0 interface 0 has no altsetting 0
[  126.834131][ T6218] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  126.836639][ T6218] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  126.838884][ T6218] usb 7-1: Product: syz
[  126.840694][ T6218] usb 7-1: Manufacturer: syz
[  126.842282][ T6218] usb 7-1: SerialNumber: syz
[  126.844734][ T6218] usb 7-1: config 0 descriptor??
[  126.848559][ T6218] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[  127.009773][ T5981] usb 5-1: new low-speed USB device number 14 using dummy_hcd
[  127.052764][   T35] usb 7-1: USB disconnect, device number 9
[  127.056260][   T35] yurex 7-1:0.0: USB YUREX #0 now disconnected
[  127.110935][T10057] FAULT_INJECTION: forcing a failure.
[  127.110935][T10057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.114766][T10057] CPU: 0 UID: 0 PID: 10057 Comm: syz.1.1283 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  127.114780][T10057] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.114787][T10057] Call Trace:
[  127.114797][T10057]  <TASK>
[  127.114802][T10057]  dump_stack_lvl+0x16c/0x1f0
[  127.114819][T10057]  should_fail_ex+0x50a/0x650
[  127.114837][T10057]  _copy_to_user+0x32/0xd0
[  127.114849][T10057]  video_usercopy+0xf3e/0x1620
[  127.114861][T10057]  ? __pfx___video_do_ioctl+0x10/0x10
[  127.114879][T10057]  ? __pfx_video_usercopy+0x10/0x10
[  127.114897][T10057]  v4l2_ioctl+0x1ba/0x250
[  127.114906][T10057]  ? __pfx_v4l2_ioctl+0x10/0x10
[  127.114922][T10057]  __x64_sys_ioctl+0x190/0x200
[  127.114938][T10057]  do_syscall_64+0xcd/0x250
[  127.114952][T10057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.114967][T10057] RIP: 0033:0x7f82cc38cde9
[  127.114976][T10057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.114986][T10057] RSP: 002b:00007f82cd28c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  127.114997][T10057] RAX: ffffffffffffffda RBX: 00007f82cc5a5fa0 RCX: 00007f82cc38cde9
[  127.115003][T10057] RDX: 0000400000000080 RSI: 00000000c040565f RDI: 0000000000000003
[  127.115009][T10057] RBP: 00007f82cd28c090 R08: 0000000000000000 R09: 0000000000000000
[  127.115015][T10057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.115021][T10057] R13: 0000000000000000 R14: 00007f82cc5a5fa0 R15: 00007fffd61f6008
[  127.115032][T10057]  </TASK>
[  127.183001][ T5981] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  127.186131][ T5981] usb 5-1: config 0 has no interface number 0
[  127.188444][ T5981] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  127.192683][ T5981] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  127.196707][ T5981] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  127.197836][T10059] netlink: 'syz.1.1284': attribute type 2 has an invalid length.
[  127.201439][ T5981] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  127.207088][ T5981] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  127.210647][ T5981] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  127.215247][ T5981] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  127.218391][ T5981] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.223110][ T5981] usb 5-1: config 0 descriptor??
[  127.225684][T10033] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  127.232008][ T5981] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  127.432984][T10033] ldusb 5-1:0.55: Couldn't submit interrupt_in_urb -90
[  127.440237][ T5981] usb 5-1: USB disconnect, device number 14
[  127.446362][ T5981] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  127.672106][T10070] PKCS7: Unknown OID: [4] 5.25.43204.122
[  127.674448][T10070] PKCS7: Only support pkcs7_signedData type
[  127.716922][T10070] option changes via remount are deprecated (pid=10069 comm=syz.4.1287)
[  127.719445][   T39] kauditd_printk_skb: 22 callbacks suppressed
[  127.719462][   T39] audit: type=1400 audit(1740023755.443:708): avc:  denied  { bind } for  pid=10069 comm="syz.4.1287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  127.733386][   T39] audit: type=1400 audit(1740023755.443:709): avc:  denied  { remount } for  pid=10069 comm="syz.4.1287" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  127.752851][T10072] netlink: 'syz.2.1288': attribute type 39 has an invalid length.
[  127.991138][T10082] FAULT_INJECTION: forcing a failure.
[  127.991138][T10082] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.998147][T10082] CPU: 2 UID: 0 PID: 10082 Comm: syz.2.1292 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  127.998170][T10082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.998179][T10082] Call Trace:
[  127.998185][T10082]  <TASK>
[  127.998191][T10082]  dump_stack_lvl+0x16c/0x1f0
[  127.998215][T10082]  should_fail_ex+0x50a/0x650
[  127.998240][T10082]  _copy_to_user+0x32/0xd0
[  127.998256][T10082]  simple_read_from_buffer+0xd0/0x160
[  127.998280][T10082]  proc_fail_nth_read+0x198/0x270
[  127.998351][T10082]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  127.998375][T10082]  ? rw_verify_area+0xcf/0x680
[  127.998399][T10082]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  127.998420][T10082]  vfs_read+0x1df/0xbf0
[  127.998443][T10082]  ? __fget_files+0x1fc/0x3a0
[  127.998458][T10082]  ? __pfx___mutex_lock+0x10/0x10
[  127.998477][T10082]  ? __pfx_vfs_read+0x10/0x10
[  127.998507][T10082]  ? __fget_files+0x206/0x3a0
[  127.998528][T10082]  ksys_read+0x12b/0x250
[  127.998551][T10082]  ? __pfx_ksys_read+0x10/0x10
[  127.998582][T10082]  do_syscall_64+0xcd/0x250
[  127.998601][T10082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.998624][T10082] RIP: 0033:0x7f6e5f58b7fc
[  127.998637][T10082] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  127.998652][T10082] RSP: 002b:00007f6e604c5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  127.998669][T10082] RAX: ffffffffffffffda RBX: 00007f6e5f7a5fa0 RCX: 00007f6e5f58b7fc
[  127.998680][T10082] RDX: 000000000000000f RSI: 00007f6e604c50a0 RDI: 0000000000000004
[  127.998689][T10082] RBP: 00007f6e604c5090 R08: 0000000000000000 R09: 0000000000000000
[  127.998698][T10082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.998707][T10082] R13: 0000000000000000 R14: 00007f6e5f7a5fa0 R15: 00007ffe86e72df8
[  127.998729][T10082]  </TASK>
[  128.069439][    C2] vkms_vblank_simulate: vblank timer overrun
[  128.101489][T10089] __nla_validate_parse: 2 callbacks suppressed
[  128.101506][T10089] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1295'.
[  128.148420][T10093] ksmbd: Unknown IPC event: 1, ignore.
[  128.166816][T10091] loop2: detected capacity change from 0 to 524287999
[  128.378700][T10111] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1302'.
[  128.382525][T10111] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1302'.
[  128.960106][T10129] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  128.960106][T10129]    program syz.0.1309 not setting count and/or reply_len properly
[  129.049672][ T6218] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  129.065756][T10132] xt_l2tp: missing protocol rule (udp|l2tpip)
[  129.070851][T10133] xt_l2tp: missing protocol rule (udp|l2tpip)
[  129.139528][T10138] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1312'.
[  129.143431][T10138] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1312'.
[  129.214523][ T6218] usb 9-1: Using ep0 maxpacket: 16
[  129.218397][ T6218] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  129.223530][ T6218] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  129.227941][ T6218] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  129.235231][ T6218] usb 9-1: config 0 interface 0 has no altsetting 0
[  129.241235][ T6218] usb 9-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  129.244916][ T6218] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.248061][ T6218] usb 9-1: Product: syz
[  129.252372][ T6218] usb 9-1: Manufacturer: syz
[  129.254368][ T6218] usb 9-1: SerialNumber: syz
[  129.262478][ T6218] usb 9-1: config 0 descriptor??
[  129.325524][T10157] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1317'.
[  129.331206][T10157] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1317'.
[  129.393325][T10152] netlink: 87 bytes leftover after parsing attributes in process `syz.0.1318'.
[  129.410421][T10155] netlink: 87 bytes leftover after parsing attributes in process `syz.0.1318'.
[  129.469124][T10165] netlink: 4380 bytes leftover after parsing attributes in process `syz.1.1320'.
[  129.475285][ T6218] input: syz syz as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input19
[  129.500523][ T5341] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.520947][ T5341] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.526053][ T5341] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.529243][ T5341] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.604229][ T5956] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.619503][ T5341] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.669020][ T5341] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.682895][ T5341] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.732935][T10127] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  129.758345][   T39] audit: type=1400 audit(1740023757.483:710): avc:  denied  { append } for  pid=10186 comm="syz.1.1329" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  129.781130][   T39] audit: type=1400 audit(1740023757.513:711): avc:  denied  { read } for  pid=10194 comm="syz.2.1332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  129.982872][T10210] netlink: 'syz.0.1339': attribute type 10 has an invalid length.
[  129.994052][T10210] team0: Device ipvlan1 failed to register rx_handler
[  130.060352][  T911] usb 9-1: USB disconnect, device number 13
[  130.175493][T10234] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  130.175493][T10234]    program syz.1.1349 not setting count and/or reply_len properly
[  130.333695][T10225] 9pnet: Could not find request transport: virts‡ë^k0;ðj7<´0ÎkµN
[  130.340910][   T39] audit: type=1400 audit(1740023758.073:712): avc:  denied  { map } for  pid=10224 comm="syz.2.1345" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  130.357247][   T39] audit: type=1400 audit(1740023758.073:713): avc:  denied  { execute } for  pid=10224 comm="syz.2.1345" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  130.371189][ T5981] IPVS: starting estimator thread 0...
[  130.424026][   T39] audit: type=1400 audit(1740023758.153:714): avc:  denied  { getopt } for  pid=10246 comm="syz.0.1352" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  130.470345][T10248] IPVS: using max 21 ests per chain, 50400 per kthread
[  130.590685][T10262] wg1: entered promiscuous mode
[  130.746923][   T39] audit: type=1400 audit(1740023758.473:715): avc:  denied  { mount } for  pid=10278 comm="syz.4.1362" name="/" dev="9p" ino=36185929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  130.771737][   T39] audit: type=1400 audit(1740023758.503:716): avc:  denied  { unmount } for  pid=8763 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  130.788371][T10282] sg_write: data in/out 1633904962/6 bytes for SCSI command 0x68-- guessing data in;
[  130.788371][T10282]    program syz.0.1363 not setting count and/or reply_len properly
[  131.229708][T10303] netlink: 'syz.4.1372': attribute type 16 has an invalid length.
[  131.232830][T10303] netlink: 'syz.4.1372': attribute type 3 has an invalid length.
[  131.235668][T10303] netlink: 'syz.4.1372': attribute type 1 has an invalid length.
[  131.238408][T10303] netlink: 'syz.4.1372': attribute type 2 has an invalid length.
[  131.297945][T10309] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  131.307865][T10306] netlink: 'syz.4.1374': attribute type 12 has an invalid length.
[  131.367612][T10311] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 10311 comm: syz.0.1376)
[  131.373125][   T39] audit: type=1800 audit(1740023759.103:717): pid=10311 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.1376" name="blkio.throttle.io_service_bytes_recursive" dev="mqueue" ino=28600 res=0 errno=0
[  131.580790][T10313] program syz.4.1375 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  131.595306][T10330] Cannot find del_set index 85 as target
[  131.940188][T10357] program syz.4.1386 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  131.943881][T10357] ata1.00: invalid command format 0
[  131.978289][T10354] syzkaller0: tun_chr_ioctl cmd 1074025672
[  131.980896][T10354] syzkaller0: ignored: set checksum disabled
[  132.307064][ T5951] Bluetooth: hci1: unexpected subevent 0x05 length: 11 < 12
[  132.699177][T10408] overlayfs: workdir and upperdir must be separate subtrees
[  132.711654][T10408] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  132.801111][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  132.801127][   T39] audit: type=1400 audit(1740023760.533:722): avc:  denied  { unmount } for  pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  132.960821][T10420] sctp: [Deprecated]: syz.2.1413 (pid 10420) Use of int in max_burst socket option.
[  132.960821][T10420] Use struct sctp_assoc_value instead
[  133.094782][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  133.097445][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  133.125839][T10431] ax25_connect(): syz.0.1417 uses autobind, please contact jreuter@yaina.de
[  133.210228][T10436] cgroup: Invalid name
[  133.291630][T10446] __nla_validate_parse: 19 callbacks suppressed
[  133.291649][T10446] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1422'.
[  133.371254][   T39] audit: type=1326 audit(1740023761.103:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.383928][   T39] audit: type=1326 audit(1740023761.113:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.393267][   T39] audit: type=1326 audit(1740023761.113:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.404987][   T39] audit: type=1326 audit(1740023761.113:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.408687][T10452] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1424'.
[  133.414040][   T39] audit: type=1326 audit(1740023761.113:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.428789][   T39] audit: type=1326 audit(1740023761.123:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.436921][   T39] audit: type=1326 audit(1740023761.123:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.445770][   T39] audit: type=1326 audit(1740023761.123:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.454210][   T39] audit: type=1326 audit(1740023761.123:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10445 comm="syz.0.1422" exe="/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f9cdf58cde9 code=0x7ffc0000
[  133.478987][T10454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1424'.
[  133.738922][T10460] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1426'.
[  133.742562][T10460] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1426'.
[  133.863543][T10462] trusted_key: syz.4.1427 sent an empty control message without MSG_MORE.
[  133.917832][T10469] netlink: 'syz.4.1427': attribute type 12 has an invalid length.
[  134.263235][T10477] netlink: 'syz.0.1430': attribute type 1 has an invalid length.
[  134.267049][T10477] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  134.327460][T10485] netlink: 'syz.0.1432': attribute type 7 has an invalid length.
[  134.363117][T10487] netlink: 'syz.2.1433': attribute type 2 has an invalid length.
[  134.366306][T10487] netlink: 'syz.2.1433': attribute type 1 has an invalid length.
[  134.420237][T10491] bridge0: entered allmulticast mode
[  134.751392][T10504] sctp: [Deprecated]: syz.2.1439 (pid 10504) Use of struct sctp_assoc_value in delayed_ack socket option.
[  134.751392][T10504] Use struct sctp_sack_info instead
[  134.991894][T10529] pimreg: entered allmulticast mode
[  135.631467][T10568] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1459'.
[  135.868123][T10577] x_tables: ip_tables: icmp.0 match: invalid size 8 (kernel) != (user) 56
[  135.945961][T10579] evm: overlay not supported
[  136.026357][T10588] ip6gre1: entered promiscuous mode
[  136.452708][T10568] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  136.462277][T10609] fuse: Bad value for 'user_id'
[  136.464299][T10609] fuse: Bad value for 'user_id'
[  136.522193][T10618] validate_nla: 1 callbacks suppressed
[  136.522211][T10618] netlink: 'syz.4.1475': attribute type 11 has an invalid length.
[  136.527565][T10618] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1475'.
[  136.600136][T10624] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1477'.
[  136.704710][T10634] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2052 sclass=netlink_route_socket pid=10634 comm=syz.4.1480
[  136.938140][T10668] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1491'.
[  137.395996][T10700] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10700 comm=syz.4.1500
[  137.457712][T10704] usb usb9: check_ctrlrecip: process 10704 (syz.4.1501) requesting ep 01 but needs 81
[  137.461321][T10704] usb usb9: usbfs: process 10704 (syz.4.1501) did not claim interface 0 before use
[  137.462067][T10706] FAULT_INJECTION: forcing a failure.
[  137.462067][T10706] name failslab, interval 1, probability 0, space 0, times 0
[  137.469130][T10706] CPU: 3 UID: 0 PID: 10706 Comm: syz.2.1502 Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  137.469151][T10706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  137.469161][T10706] Call Trace:
[  137.469202][T10706]  <TASK>
[  137.469209][T10706]  dump_stack_lvl+0x16c/0x1f0
[  137.469314][T10706]  should_fail_ex+0x50a/0x650
[  137.469373][T10706]  ? fs_reclaim_acquire+0xae/0x150
[  137.469426][T10706]  ? tomoyo_realpath_from_path+0xb9/0x720
[  137.469471][T10706]  should_failslab+0xc2/0x120
[  137.469513][T10706]  __kmalloc_noprof+0xcb/0x510
[  137.469529][T10706]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  137.469584][T10706]  tomoyo_realpath_from_path+0xb9/0x720
[  137.469605][T10706]  ? tomoyo_path_number_perm+0x235/0x590
[  137.469625][T10706]  ? tomoyo_path_number_perm+0x235/0x590
[  137.469647][T10706]  tomoyo_path_number_perm+0x248/0x590
[  137.469664][T10706]  ? tomoyo_path_number_perm+0x235/0x590
[  137.469685][T10706]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  137.469726][T10706]  ? __pfx_lock_release+0x10/0x10
[  137.469744][T10706]  ? trace_lock_acquire+0x14e/0x1f0
[  137.469765][T10706]  ? lock_acquire+0x2f/0xb0
[  137.469784][T10706]  ? __fget_files+0x40/0x3a0
[  137.469833][T10706]  ? __fget_files+0x206/0x3a0
[  137.469850][T10706]  security_file_ioctl+0x9b/0x240
[  137.469897][T10706]  __x64_sys_ioctl+0xb7/0x200
[  137.469946][T10706]  do_syscall_64+0xcd/0x250
[  137.469968][T10706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.469996][T10706] RIP: 0033:0x7f6e5f58cde9
[  137.470010][T10706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.470026][T10706] RSP: 002b:00007f6e604c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  137.470067][T10706] RAX: ffffffffffffffda RBX: 00007f6e5f7a5fa0 RCX: 00007f6e5f58cde9
[  137.470077][T10706] RDX: 0000400000000080 RSI: 00000000c040565f RDI: 0000000000000003
[  137.470087][T10706] RBP: 00007f6e604c5090 R08: 0000000000000000 R09: 0000000000000000
[  137.470096][T10706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.470106][T10706] R13: 0000000000000000 R14: 00007f6e5f7a5fa0 R15: 00007ffe86e72df8
[  137.470127][T10706]  </TASK>
[  137.477003][T10704] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1501'.
[  137.478395][T10706] ERROR: Out of memory at tomoyo_realpath_from_path.
[  137.586447][T10709] ==================================================================
[  137.588780][T10709] BUG: KASAN: vmalloc-out-of-bounds in tpg_fill_plane_buffer+0x1fdc/0x4380
[  137.591256][T10709] Write of size 5760 at addr ffffc90005479000 by task vivid-000-vid-c/10709
[  137.594034][T10709] 
[  137.595706][T10709] CPU: 0 UID: 0 PID: 10709 Comm: vivid-000-vid-c Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  137.595719][T10709] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  137.595726][T10709] Call Trace:
[  137.595731][T10709]  <TASK>
[  137.595736][T10709]  dump_stack_lvl+0x116/0x1f0
[  137.595753][T10709]  print_report+0xc3/0x620
[  137.595765][T10709]  ? __virt_addr_valid+0x5e/0x590
[  137.595812][T10709]  kasan_report+0xd9/0x110
[  137.595823][T10709]  ? tpg_fill_plane_buffer+0x1fdc/0x4380
[  137.595836][T10709]  ? tpg_fill_plane_buffer+0x1fdc/0x4380
[  137.595848][T10709]  kasan_check_range+0xef/0x1a0
[  137.595862][T10709]  __asan_memcpy+0x3c/0x60
[  137.595877][T10709]  tpg_fill_plane_buffer+0x1fdc/0x4380
[  137.595895][T10709]  ? __pfx_tpg_fill_plane_buffer+0x10/0x10
[  137.595908][T10709]  vivid_fillbuff+0x8e0/0x41f0
[  137.595952][T10709]  ? hlock_class+0x4e/0x130
[  137.595964][T10709]  ? __lock_acquire+0x15a9/0x3c40
[  137.595981][T10709]  ? __pfx_vivid_fillbuff+0x10/0x10
[  137.595993][T10709]  ? vivid_thread_vid_cap_tick+0x7ab/0x15d0
[  137.596006][T10709]  ? v4l2_ctrl_request_setup+0x45c/0xa60
[  137.596044][T10709]  ? lockdep_hardirqs_on+0x7c/0x110
[  137.596056][T10709]  ? vivid_thread_vid_cap_tick+0x81b/0x15d0
[  137.596067][T10709]  vivid_thread_vid_cap_tick+0x81b/0x15d0
[  137.596078][T10709]  ? lock_acquire+0x2f/0xb0
[  137.596093][T10709]  vivid_thread_vid_cap+0x5b8/0xb90
[  137.596105][T10709]  ? lockdep_hardirqs_on+0x7c/0x110
[  137.596115][T10709]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  137.596125][T10709]  ? __kthread_parkme+0x148/0x220
[  137.596160][T10709]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  137.596171][T10709]  kthread+0x3af/0x750
[  137.596183][T10709]  ? __pfx_kthread+0x10/0x10
[  137.596197][T10709]  ? __pfx_kthread+0x10/0x10
[  137.596209][T10709]  ret_from_fork+0x45/0x80
[  137.596246][T10709]  ? __pfx_kthread+0x10/0x10
[  137.596258][T10709]  ret_from_fork_asm+0x1a/0x30
[  137.596298][T10709]  </TASK>
[  137.596301][T10709] 
[  137.653805][T10709] The buggy address belongs to the virtual mapping at
[  137.653805][T10709]  [ffffc90005279000, ffffc9000547a000) created by:
[  137.653805][T10709]  vb2_vmalloc_alloc+0x11e/0x3d0
[  137.658747][T10709] 
[  137.659484][T10709] Memory state around the buggy address:
[  137.661136][T10709]  ffffc90005478f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  137.663633][T10709]  ffffc90005478f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  137.666012][T10709] >ffffc90005479000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  137.668317][T10709]                    ^
[  137.669547][T10709]  ffffc90005479080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  137.671887][T10709]  ffffc90005479100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  137.674200][T10709] ==================================================================
[  137.676950][T10709] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  137.679089][T10709] CPU: 0 UID: 0 PID: 10709 Comm: vivid-000-vid-c Not tainted 6.14.0-rc3-syzkaller-00060-g6537cfb395f3 #0
[  137.682330][T10709] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  137.685478][T10709] Call Trace:
[  137.686474][T10709]  <TASK>
[  137.687358][T10709]  dump_stack_lvl+0x3d/0x1f0
[  137.688743][T10709]  panic+0x71d/0x800
[  137.690072][T10709]  ? __pfx_panic+0x10/0x10
[  137.691572][T10709]  ? irqentry_exit+0x3b/0x90
[  137.693129][T10709]  ? lockdep_hardirqs_on+0x7c/0x110
[  137.694887][T10709]  ? preempt_schedule_thunk+0x1a/0x30
[  137.696702][T10709]  ? preempt_schedule_common+0x44/0xc0
[  137.698519][T10709]  ? check_panic_on_warn+0x1f/0xb0
[  137.700232][T10709]  check_panic_on_warn+0xab/0xb0
[  137.701858][T10709]  end_report+0x117/0x180
[  137.703280][T10709]  kasan_report+0xe9/0x110
[  137.704762][T10709]  ? tpg_fill_plane_buffer+0x1fdc/0x4380
[  137.706629][T10709]  ? tpg_fill_plane_buffer+0x1fdc/0x4380
[  137.708755][T10709]  kasan_check_range+0xef/0x1a0
[  137.710634][T10709]  __asan_memcpy+0x3c/0x60
[  137.712353][T10709]  tpg_fill_plane_buffer+0x1fdc/0x4380
[  137.714258][T10709]  ? __pfx_tpg_fill_plane_buffer+0x10/0x10
[  137.716233][T10709]  vivid_fillbuff+0x8e0/0x41f0
[  137.717947][T10709]  ? hlock_class+0x4e/0x130
[  137.719506][T10709]  ? __lock_acquire+0x15a9/0x3c40
[  137.721239][T10709]  ? __pfx_vivid_fillbuff+0x10/0x10
[  137.722973][T10709]  ? vivid_thread_vid_cap_tick+0x7ab/0x15d0
[  137.725000][T10709]  ? v4l2_ctrl_request_setup+0x45c/0xa60
[  137.726857][T10709]  ? lockdep_hardirqs_on+0x7c/0x110
[  137.728590][T10709]  ? vivid_thread_vid_cap_tick+0x81b/0x15d0
[  137.730565][T10709]  vivid_thread_vid_cap_tick+0x81b/0x15d0
[  137.732471][T10709]  ? lock_acquire+0x2f/0xb0
[  137.734006][T10709]  vivid_thread_vid_cap+0x5b8/0xb90
[  137.735798][T10709]  ? lockdep_hardirqs_on+0x7c/0x110
[  137.737622][T10709]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  137.739571][T10709]  ? __kthread_parkme+0x148/0x220
[  137.741254][T10709]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  137.743129][T10709]  kthread+0x3af/0x750
[  137.744568][T10709]  ? __pfx_kthread+0x10/0x10
[  137.746108][T10709]  ? __pfx_kthread+0x10/0x10
[  137.747641][T10709]  ret_from_fork+0x45/0x80
[  137.749157][T10709]  ? __pfx_kthread+0x10/0x10
[  137.750712][T10709]  ret_from_fork_asm+0x1a/0x30
[  137.752365][T10709]  </TASK>
[  137.754130][T10709] Kernel Offset: disabled
[  137.755401][T10709] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:13:24  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854069d5 RDI=ffffffff9ab80740 RBP=ffffffff9ab80700 RSP=ffffc900048b7240
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=666f206574697257
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9ab80700 R15=0000000000000000
RIP=ffffffff854069ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f96e3d70ba0 CR3=000000004ef22000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=0000000002fefcfe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e602dd100 00007f6e5f77c440 00007f6e5f77c458 00007f6e5f77c4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f77c498 00007f6e5f77c490 00007f6e5f77c488 00007f6e5f77c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88806a73fe00 RCX=ffffffff81adec14 RDX=ffff88801cef0000
RSI=ffffffff81adebef RDI=0000000000000005 RBP=ffffc90000167d10 RSP=ffffc90000167c40
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c38f3e
R12=1ffff9200002cf8c R13=0000000000000001 R14=0000000000000003 R15=ffffed100d4e7fc1
RIP=ffffffff81adebf1 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3170f6 CR3=0000000059f50000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000054 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3f7c488 00007f96e3f7c480 00007f96e3f7c478 00007f96e3f7c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e4add100 00007f96e3f7c440 00007f96e3f70004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3f7c498 00007f96e3f7c490 00007f96e3f7c488 00007f96e3f7c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000000fb1a3 RBX=0000000000000002 RCX=ffffffff8b572469 RDX=0000000000000000
RSI=ffffffff8b6ceca0 RDI=ffffffff8bd35480 RBP=ffffed1003ad1000 RSP=ffffc90000197e08
R8 =0000000000000001 R9 =ffffed100d506f85 R10=ffff88806a837c2b R11=0000000000000000
R12=0000000000000002 R13=ffff88801d688000 R14=ffffffff90624f10 R15=0000000000000000
RIP=ffffffff8b57384f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f96e1bf6d58 CR3=000000004ef22000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000003 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=0000000002fefcfe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f60f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e602dd100 00007f6e5f77c440 00007f6e5f77c458 00007f6e5f77c4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e5f77c498 00007f6e5f77c490 00007f6e5f77c488 00007f6e5f77c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000000d8665 RBX=0000000000000003 RCX=ffffffff8b572469 RDX=0000000000000000
RSI=ffffffff8b6ceca0 RDI=ffffffff8bd35480 RBP=ffffed1003ad1488 RSP=ffffc900001a7e08
R8 =0000000000000001 R9 =ffffed100d526f85 R10=ffff88806a937c2b R11=0000000000000001
R12=0000000000000003 R13=ffff88801d68a440 R14=ffffffff90624f10 R15=0000000000000000
RIP=ffffffff8b57384f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f96e1bf5f98 CR3=0000000059f50000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000054 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3e0f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3f7c488 00007f96e3f7c480 00007f96e3f7c478 00007f96e3f7c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e4add100 00007f96e3f7c440 00007f96e3f7c458 00007f96e3f7c4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96e3f7c498 00007f96e3f7c490 00007f96e3f7c488 00007f96e3f7c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000