last executing test programs:

57.160366963s ago: executing program 3 (id=4):
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x103042, 0x1) (async)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x641, 0x101001)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)={0x14, 0x15, 0x1, 0x0, 0xfffffffc, {0xe}}, 0x14}, 0x1, 0x0, 0x0, 0x20004080}, 0x20000080) (async)
sendmsg$NLBL_UNLABEL_C_STATICADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002, 0x0, 0x80}, 0x0) (async)
ppoll(&(0x7f0000000080)=[{r0, 0x20}], 0x1, &(0x7f00000000c0)={0x0, 0x989680}, 0x0, 0x0) (async)
mount$nfs(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), 0x1004000, &(0x7f0000000200)={[{'noac,'}]})

57.051189713s ago: executing program 3 (id=5):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0xa, 0x5, 0x0)
r2 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='veth0_macvtap\x00', 0x10)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='veth0_macvtap\x00', 0x10)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x41}}}, 0x1c)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7000fedbdf258900000008000300", @ANYRES32=r5, @ANYBLOB="18001d801468008006f00400392336c898beba5400000000b72bd64c533f1468380ff8384751b65a3328d98bffb002e85722de099b3c7e20291fb796d61dea256e51a45292b3536082371b6a5b770673836d9be9dde86de925a8be751f"], 0x34}}, 0x400c0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$inet6(0xa, 0x5, 0x0) (async)
socket$inet6(0xa, 0x5, 0x0) (async)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='veth0_macvtap\x00', 0x10) (async)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) (async)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='veth0_macvtap\x00', 0x10) (async)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x41}}}, 0x1c) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) (async)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7000fedbdf258900000008000300", @ANYRES32=r5, @ANYBLOB="18001d801468008006f00400392336c898beba5400000000b72bd64c533f1468380ff8384751b65a3328d98bffb002e85722de099b3c7e20291fb796d61dea256e51a45292b3536082371b6a5b770673836d9be9dde86de925a8be751f"], 0x34}}, 0x400c0) (async)

57.000156818s ago: executing program 3 (id=6):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003900000008000300", @ANYRES32=r1, @ANYBLOB="0c0050800800038004000100f9775c068ad67ade4c454f300300ee73531042f3"], 0x28}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x84000)
socket$packet(0x11, 0x2, 0x300)
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
r5 = openat$vimc0(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VIDIOC_S_CROP(r5, 0x4014563c, &(0x7f0000000280)={0xb, {0x3, 0x7, 0x7, 0xfffffc01}})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002800)=ANY=[@ANYBLOB="202700002c0007012bbd7000ffdbdf25047c0000280301802103dd802001e98008004600", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0000227082d57c5848d403e212111b7355941a4abee53192f9ad0ca4033342783801144c6ba1ea7845071729e825b33f1a20fe09b8762b86d910fab7e0264c14550e4b91c89f69764109add4c2854f000000e42303800c0001"], 0x2720}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
r7 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x400, 0x0)
lremovexattr(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)=@random={'btrfs.', '{])[\x00'})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r7, 0xc0285700, &(0x7f0000000b00)={0x4, "abacd211119ca94c633774262eb5ab2c7b9c5cff6ce78185d8c4dc064744e042"})
r8 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
read$FUSE(r8, &(0x7f00000019c0)={0x2020}, 0x2020)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c000000000000000000000c850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='9p_protocol_dump\x00', r9}, 0x10)
r10 = dup(r4)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r11)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_ADD_TX_TS(r11, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x1c, r12, 0x1, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8, 0x3, r13}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x8c0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r10}, 0x2c, {[], [], 0x6b}})
r14 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r14, 0x891b, &(0x7f0000000000)={'veth1_virt_wifi\x00', @random="0200ff7fac14"})
ioctl$KVM_CREATE_VM(r10, 0xae01, 0x8)

41.980640656s ago: executing program 32 (id=6):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003900000008000300", @ANYRES32=r1, @ANYBLOB="0c0050800800038004000100f9775c068ad67ade4c454f300300ee73531042f3"], 0x28}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x84000)
socket$packet(0x11, 0x2, 0x300)
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
r5 = openat$vimc0(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VIDIOC_S_CROP(r5, 0x4014563c, &(0x7f0000000280)={0xb, {0x3, 0x7, 0x7, 0xfffffc01}})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002800)=ANY=[@ANYBLOB="202700002c0007012bbd7000ffdbdf25047c0000280301802103dd802001e98008004600", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0000227082d57c5848d403e212111b7355941a4abee53192f9ad0ca4033342783801144c6ba1ea7845071729e825b33f1a20fe09b8762b86d910fab7e0264c14550e4b91c89f69764109add4c2854f000000e42303800c0001"], 0x2720}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
r7 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x400, 0x0)
lremovexattr(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)=@random={'btrfs.', '{])[\x00'})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r7, 0xc0285700, &(0x7f0000000b00)={0x4, "abacd211119ca94c633774262eb5ab2c7b9c5cff6ce78185d8c4dc064744e042"})
r8 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
read$FUSE(r8, &(0x7f00000019c0)={0x2020}, 0x2020)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c000000000000000000000c850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='9p_protocol_dump\x00', r9}, 0x10)
r10 = dup(r4)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r11)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_ADD_TX_TS(r11, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x1c, r12, 0x1, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8, 0x3, r13}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x8c0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r10}, 0x2c, {[], [], 0x6b}})
r14 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r14, 0x891b, &(0x7f0000000000)={'veth1_virt_wifi\x00', @random="0200ff7fac14"})
ioctl$KVM_CREATE_VM(r10, 0xae01, 0x8)

4.017304195s ago: executing program 2 (id=616):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="500100001a000100000000000200000002001c1f0000c808ffffffea080006000700000008000400", @ANYRES32=r1, @ANYBLOB="06001c004e21000008000100ac1414"], 0x150}, 0x1, 0x0, 0x0, 0x2000c094}, 0x4040084) (async)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x6c, r2, 0x5, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x40, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @val={0x5, 0x3, {0x9, 0xa8, 0x5}}, @void, @val={0x2a, 0x1, {0x0, 0x1}}, @void, @void, @val={0x72, 0x6}, @void, @val={0x76, 0x6, {0x7, 0x3, 0x3f, 0x29}}}}], @chandef_params, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x7}]}, 0x6c}}, 0x20000014) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="400000001000010400000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="000003000001000018001280e5df0100677470000c000280050005000000000008000300", @ANYRES32=0x0, @ANYBLOB], 0x40}}, 0x24000840)
lsetxattr$security_selinux(&(0x7f0000000180)='.\x00', &(0x7f00000001c0), &(0x7f0000000200)='system_u:object_r:clock_device_t:s0\x00', 0x24, 0x1)

2.369454721s ago: executing program 2 (id=628):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x3c, 0x40, 0x1, 0x70bd2a, 0x4, {0x1}, [@nested={0x4, 0x48}, @nested={0x1c, 0x1, 0x0, 0x1, [@nested={0x18, 0x10, 0x0, 0x1, [@nested={0x14, 0xc, 0x0, 0x1, [@nested={0x10, 0x90, 0x0, 0x1, [@nested={0xc, 0x58, 0x0, 0x1, [@typed={0x8, 0x73, 0x0, 0x0, @pid}]}]}]}]}]}, @typed={0x8, 0x2, 0x0, 0x0, @fd=r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008801}, 0x4008094)
sendfile(r1, r1, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x28, 0x10, 0x403, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x74, r3, 0x22820, 0x55007}, [@IFLA_TXQLEN={0x8, 0xd, 0x7d631b68}]}, 0x28}, 0x1, 0x0, 0x0, 0x41}, 0x6404c8c4)
fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x3)
r4 = syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x103482)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f00000002c0)={r5, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00000014000800000000000000007f"}})
ioctl$LOOP_SET_DIRECT_IO(r4, 0x4c08, 0x591)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

2.299636843s ago: executing program 1 (id=630):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010000d0425bd7000fddbff2500000000", @ANYRES32=0x0, @ANYBLOB="5000040000000000240012800b000100627269646765000014000280080002d5d94afa33e7fcd0186c68eab8"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x44)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYRESOCT=0x0, @ANYRES64=0x0], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@delchain={0x3c, 0x65, 0x10, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xa, 0xc}, {0x0, 0xa}, {0xe}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0xf, 0xfff2}}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000980)=ANY=[@ANYBLOB="020d0000180000002cbd700000000000080012000000020000000000000000000600000000000000fdffffff00000000ac1efa01000000000000000000000000ffffffff00000000000000000000000005000500000000000a00000700000000fe8000000000000000000000000000aa000000000000000005000600000000000a00000000000000fc020000000000000000000000000000000000000000000004000300", @ANYRESDEC], 0xc0}}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x0, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000480)=[{0x0}, {0x0}, {0x0}, {0x0}, {&(0x7f0000000680)}], 0x5, 0x4, 0x5)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000002dc0)={0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000000400)=ANY=[@ANYBLOB="640000003c0001002abd7000fedbdf2514009e00ff01000000000000000000000000df003f0018800800a700000001000080ef8e7b21620430344027c49290dc0a3ce7c8b8caecd18d384720b21db28301acbdb400005e03f9d8b6406a6de911d97c42"], 0x64}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0x0, 0xfd, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0xfffffff8, 0x3, 0xff, 0xff, 0x0, '\x00', 0x0, 0x800000000000000})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYRESHEX=r6, @ANYRES16=r5, @ANYRESOCT=r2, @ANYRES32=r0], 0x38}, 0x1, 0x0, 0x0, 0x44010}, 0x81)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001340)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018000000000000001000000010000000060000000c0000000000001103000000fbffffff00302e302e004312b1e95b5bb0409a01bcd30dcaa78a469078943fc7011fd2b7a574fdd36f514071"], 0x0, 0x2e}, 0x28)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$poke(0x4212, r7, &(0x7f0000000140), 0x200000000001)

1.838995102s ago: executing program 1 (id=639):
r0 = syz_clone(0x2b02000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0xb4, &(0x7f0000000080)=ANY=[@ANYBLOB="5bb86bfbe4bbaaaaaaaaaa29080503032732697453e698e62a34bc00f12c556e67fb1cdeaa94391e0d372fc9c280cf3651ef8275c7aefd07da30ae420d371c6741fa2e6eb4097604ef4dcc4e9aa573b4e503e0cf7f5543361689"], 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000300)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e22, @multicast1}, 0x2, 0x0, 0x3}}, 0x2e)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r3=>0x0})
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0xa82, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000500)="8564307533f69a6eadfedaf4cf4e654b664ff282dbe20223e8dcb4e3c9776796bcd986f31c6a34739ad35acbda3404c8c02161171181e3e78b8769bc50e94286eaddece71bee8e3e7bbc19c9c886ccd8f7608626985c4645249da799aadc91103720f8bb9d8d0a58995f7067e5485a9aba00"/129, 0x81}], 0x1, &(0x7f0000000e80)=ANY=[@ANYRESOCT=r3], 0x330}}], 0x1, 0x810)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r7 = accept4(r6, 0x0, 0x0, 0x800)
sendmmsg$alg(r7, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r7, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r9, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000100)={0x1c, 0x2, 0x3, 0x101, 0x0, 0x0, {0x4, 0x0, 0x4a}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x2a}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48841}, 0x2000c010)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r10, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000000203030100000000000000000400000a"], 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x2000c010)
sendmsg$NFQNL_MSG_CONFIG(r10, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)={0x1c, 0x2, 0x3, 0x101, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFQA_CFG_CMD={0x8, 0x1, {0x2, 0x0, 0x8}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20080041}, 0x20008090)
ptrace(0x10, r0)
ptrace$pokeuser(0x6, r0, 0x388, 0x2590f58a)

1.669739109s ago: executing program 2 (id=640):
r0 = socket$tipc(0x1e, 0x5, 0x0)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x11, &(0x7f0000000040)=0x100000001, 0x4)
ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f0000000040))

1.66932161s ago: executing program 2 (id=641):
syz_emit_ethernet(0xb4, &(0x7f0000000080)=ANY=[@ANYBLOB="5bb86bfbe4bbaaaaaaaaaa29080503032732697453e698e62a34bc00f12c556e67fb1cdeaa94391e0d372fc9c280cf3651ef8275c7aefd07da30ae420d371c6741fa2e6eb4097604ef4dcc4e9aa573b4e503e0cf7f5543361689ff2c3f46bf7496608057a5374711a50ad37aa3df04af508b5fe83a0938a75bdc922863a02a4b7b323ea2e38584e871830aeeb992e67165f06413d43ed391bdab8aef4011"], 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r0=>0x0})
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000500)="8564307533f69a6eadfedaf4cf4e654b664ff282dbe20223e8dcb4e3c9776796bcd986f31c6a34739ad35acbda3404c8c02161171181e3e78b8769bc50e94286ea", 0x41}], 0x1, &(0x7f0000000e80)=ANY=[@ANYRESOCT=r0], 0x330}}], 0x1, 0x810)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/mem_sleep', 0x102, 0x0)
sendfile(r1, r1, &(0x7f0000000000)=0x8, 0x4)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
ioctl$VIDIOC_G_PRIORITY(r1, 0x80045643, 0x3)
bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f00000002c0)={r0, 0x1, 0xfffffffffffffeb0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}, 0x10)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1.558593235s ago: executing program 1 (id=642):
r0 = socket(0x10, 0x3, 0x0) (async)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f00000000c0), 0x10)
recvmmsg(r1, &(0x7f0000001100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40010000, 0x0) (async, rerun: 64)
sendmsg$can_bcm(r1, &(0x7f0000000340)={0x0, 0xffffffffffffff96, &(0x7f0000000000)={&(0x7f0000000040)={0x5, 0x609f, 0x0, {0x0, 0x2710}, {0x0, 0x2710}, {}, 0x1, @can={{0x3, 0x1}, 0x1, 0x3, 0x0, 0x0, "6ee7ba2197db18bc"}}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x8800) (rerun: 64)
ioctl$SIOCGSTAMPNS(r1, 0x8907, 0x0) (async)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000540)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x3}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x9, 0x0, 0x0, 0xffffffff}, 0xfffffc00, 0x0, 0x4, 0x8, 0x9, 0x11, 0x40, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}}}}]}, 0x78}}, 0x0) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="61128c000000000061134c0000000000bf2000000000000007000000180000003d030100000000009500f000000000007126000000000000bf67000000000000360602000fff07006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad03000000000000720400000000000014000000000000009500000000000000db13d5d8b741f2cdaabc8383c8f56b8c2b84a800ea6553f304000000815dcf00c3eebc52267b042d19"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x74a849580afd22a, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffdc9}, 0x48) (rerun: 32)

1.460347239s ago: executing program 2 (id=643):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x4000000004, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f0000000040)=[0x2, 0xa])
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0xc0049364, &(0x7f0000000180))
setxattr(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)=@known='user.syz\x00', &(0x7f00000001c0)='(+#{%\x00', 0x6, 0x2)

1.130468238s ago: executing program 0 (id=647):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x4, &(0x7f0000000480)=@framed={{}, [@exit]}, &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
remap_file_pages(&(0x7f0000603000/0x3000)=nil, 0x3000, 0x0, 0x4, 0x1c0000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x4, &(0x7f0000000480)=@framed={{}, [@exit]}, &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94) (async)
remap_file_pages(&(0x7f0000603000/0x3000)=nil, 0x3000, 0x0, 0x4, 0x1c0000) (async)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) (async)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2) (async)

1.129037514s ago: executing program 0 (id=648):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCGARP(r2, 0x8954, &(0x7f0000000000)={{0x2, 0x4e21, @empty}, {0x1, @random="9b499754bb98"}, 0x2c, {0x2, 0x4e20, @empty}, 'lo\x00'})
socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ip6tnl0\x00', <r3=>0x0})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="240000007600090700000000000000000702e1ff", @ANYRES32=0x0, @ANYBLOB="0c000d80080003"], 0x24}, 0x1, 0x5502000000000000}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@RTM_NEWMDB={0x18, 0x54, 0xe5, 0x0, 0x0, {0x7, r3}}, 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

1.046518941s ago: executing program 0 (id=650):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x200480c4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000000), 0xd)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f0000000200)={"f9d45bc0fc4af19219f36c120848b4c2", 0x0, <r3=>0x0, {0x0, 0x100}, {0x3, 0x5}, 0x101, [0x10000, 0x2, 0x100000001, 0x8, 0x1, 0x5fa6, 0xb, 0x7fff, 0x32a, 0x1ff800000000000, 0x2, 0x6d8e, 0x8, 0x7, 0x9, 0x3]})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000300)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, <r4=>0x0})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c89425, &(0x7f0000000500)={"78fba7fd96f49985cf0e95b0e40fc756", r3, r4, {0x8, 0x1}, {0x8, 0x6}, 0x6, [0x0, 0x6fa, 0x3, 0x9, 0x8, 0x80000000, 0x1, 0x2, 0x7fffffffffffffff, 0x4, 0x4, 0xfffffffffffffffd, 0x4, 0x8001, 0x9, 0x4]})
r5 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r5, 0x800448d3, &(0x7f00000008c0)={@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x3, 0x6, 0x3, 0x6, 0x9, "28bfd29aca33938d4fb7588840d7bec0c25c39f92c4865b7b63e56eb31dd86c347d82269d24b7f2dae05ba064ea34e4b862a68ec14781103ee3c991ea3c83f471ce7c83cfae8642d4fd1741e7d1152ffa55f3e96bd091e964835e0b17856de38db11f15d0a0a3fb2ec706b169b0bcbf15c54c500cd485611b1946db187d81a6a"})

950.177173ms ago: executing program 0 (id=652):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0) (async)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0}) (async)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000004844fd43000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x80080, 0x0)
recvfrom$l2tp(r0, &(0x7f00000000c0)=""/83, 0x53, 0x0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) (async)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d40)=@newqdisc={0x3a8, 0x24, 0x3fe3aa0262d8c783, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x378, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x0, 0x0, 0x0, 0x2}}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x64, 0x2, 0x3, 0x17, 0xd, 0x8, 0x1}}, @TCA_CHOKE_MAX_P={0x8, 0x3, 0x2}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfc}}, @TCA_CHOKE_MAX_P={0x8}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_MAX_P={0x8}, @TCA_CHOKE_STAB={0x104, 0x2, "a2a88faa7ec665a571a9ad3d1f9512e3c591df4a4554c6c2e2cc6cb4d9aee4579684743ad4888f1522a47ddaff3d4f9450d288e8559bc4f795aa0d1bc74d926038adb808cba6e90535b2eb8ba3e8ff927207d17a86b10d604e77a459df67e7f0c842d463ca5977b7e2eb55fbb9881d15633717817c735da52a1da7d64bb22e58550d8ee20883e41ec2f119a6a6364d68900c1cce4a3b3225a9ce9e1e00b444e9e7bcd10e1dec202ce7786aa7cf10d4dd6bbcee586d7903a6239ff90b49cd7fddb0c67ddab326cdb2d0fa48a783f691be9ebaa1243b21afd04a372650aa7eb46a2675cc67ae12d3b99c9acb4d9fb7c78081d269b443affd86eededd4867311221"}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x1f}}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}]}}]}, 0x3a8}}, 0x0)

697.02154ms ago: executing program 1 (id=654):
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10) (async)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001a00150100000000000000000200000000000000000020"], 0x24}}, 0x0) (async)
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x12, 0x0, 0x36, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2, r1}})

630.297829ms ago: executing program 1 (id=655):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$l2tp6(0xa, 0x2, 0x73) (async)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$inet6(r2, &(0x7f0000000640)="0b51095402cb0f4d6fdf13fecf7ed39dad0a23b073c3661ef0b1f0a621ac82d017c4d68a314776060db5947d93a173feb5e3d0769eb99fa4da52fd951bdbd269f6174f085506e66da8b85e3ba0038691f6176bf1e494277ecc65c83df5bc3d9dc22d5b177c809278b2335a1e3b07f4fee5e78ced4bb9b8506c02eb49d2ac8e52ec44c32e1404bf639532437f4cab73d2bb9d104a520f9b8190d83695935868220ea84d32c6d6f79dc16e0c9adecc02f3fd7b47f4c337a0975b01e78d7c8f5bed6703b75264044e2390a99462a09695565ddcb4e91c4e071e76c1191495e42128ebeba4f724e2ab9ca5186de17ea77a03cf648f2d2dbc0f1d4d7fef7b0ae9c5987b5681850873e71329a045d2db2108ceda4c85f239c5664b8bf79bbf90b3fe74d9defaa09ec9ec712b3fa09edef83fdd259b97678dc772182aec93c311e0f4699e0d16e6777b4483e17142c4c55e0583ee621ba7c275b64d69eaf07aa5ccc7d4e41019ea269078c77369019352297e65a7d2cb8a7c4f92177122b9ca2b61112eca35280822a24da32889d89136070bf4902317c0becf5f355dea219defd81b0dc6fba72ce93f7424fa2dc7c198f0e5b0a900052cf4efc35d3aa532ebf60e4311e0575688a7f78dfeb07afc6321ea31284598db15165a280d1c9300726bd6b40498601afc8a29841f02710edea1110f9f22fb43978110f6ddaea54c3072b06f72d1bd7ec1af8ec3ae349c1edc9d5ace32e070f97afc20e83b0e229a2ac6ad365eedae94ad29925d5ee462dc94a64ea2db4bbfe00719fa00c74566840895294ab968b63ddbd23f925075fd37f7ccfb8a64a35ff273ea799f2310bd9d2605309610d5f7b71d73d2c3252c7ce8c0f8786975df07c08cae8dae6978630f2240d5fa962a7d5dfdd2f2569fcc06a04c6b9f5fc7129aacc7c1c24627f5251ef46c0970010be02c6cc7a43d08eebb25c1a1766a112531ec8bc010bd4189c36bbc7ed68ea8de041882ac8768769095c36ef3eb0c29f86c44a2426047f9019cc3ce0fb03c1d6c09c6f019d6bdbe3f5f134c1ddea96fa2a8ab6c0c26aa14f83806a1360a331e476f2d096d78adb84cbb3f2bfc74a36ded18b142f850261fb01c299b6cf948363697c35e7f4a4378e5a2843ac15c04943aa298b0fb30b0d31ffe767179c7778ec6f0b604eac496a5dfb34702b00f2c191ef7e46a97e25de0cf647941e1919406bb24e4fbe6d28cc8c3569079480dfe715c5aeaf0e3d91d4e1cc83b7974f7ec4353d9a85f559afedaa81802ee1a7fb22032c1e4eac4440b808c60c9b12d6008fdd4298123420645289938eae452718c5f642687eee27df2a6f2df36ca8e684b4e223e1c131b39d730aa8a56bee5fd3c357aaa8f94d13f9ed999495feecf0519d65f2175674490036f82d92efad51aa4cd4184c985c0790c1ba861fd032538ec6f6b49d594ac814aa541bff99f921cbbdc1e4d9c22f931d5e85d7fa63639408583c444a1593a854fd799ac7f4b859d218ece12add9b8a757600ce515ef1176619cf4559f23d97f50b2452edc18828866998909873814e0a2444b2ce3bab21f82fdd79db994f95b90927cee41179cafc47476b59ee01bcf0e9bea5d8157267e6cec1ff0071382403802b1f95ce2c816d3380333e0c159566144402d21981764391bd76f9db72a5695817dc35795adb8c5ab5cc79c6b9ce12956e6375fef14e88262561b44fac0a5a21f22dba02f43f8de2a56e3cbcaa0caa25094baac9693e09466b3d7a7618728de6be03996cb8d2fcc2c710be837298bb8f995a1ce9a03461cb0ad6df09029fd81fbd7ce239e7a904a11a158d596a46ac3d368ad7b787621c499e137cf49a961a7667d20ed9a21456a7ef009e6e4ba827f50745d7b8efcc2bb8e979502c6b0766597bf203232cebae604459fc2ac49849348ea4cd01323b6a6ae09b713f5b0c299eeff8b57e02f568d701689dfb2e4207a41aea689ad10e4e6fa0c3a131d2b5f48f33e6f9842b32a13a68fb8a1034433145800", 0x599, 0x4, &(0x7f0000000180)={0xa, 0x4e21, 0x6, @mcast2, 0x3}, 0x1c)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0xfffc, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000140), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f00000004c0)=@gcm_256={{0x304}, "22672226c277946b", "072bfd8619706591c5e2fa6bb03a36c8f1f6d1e114245f00c5b87206d8424542", "5e65f7ff", "57a954cb3e6d9e2f"}, 0x38) (async)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f00000004c0)=@gcm_256={{0x304}, "22672226c277946b", "072bfd8619706591c5e2fa6bb03a36c8f1f6d1e114245f00c5b87206d8424542", "5e65f7ff", "57a954cb3e6d9e2f"}, 0x38)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x11a, 0x4, 0x0, 0x0) (async)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x11a, 0x4, 0x0, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000000), &(0x7f0000000300)=0x4) (async)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000300)=0x4)
socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001d00010429bd7000fedbdf2507000000", @ANYRES32=r5, @ANYBLOB="4000e6030a000200aaaaaaaaaa1b"], 0x28}, 0x1, 0x0, 0x0, 0x40801}, 0x20000040)
write$uinput_user_dev(r2, &(0x7f0000000c00)={'syz1\x00', {0x4, 0x3, 0x1, 0x100}, 0x37, [0x4, 0xfffffff7, 0x4, 0xb, 0x16, 0xfffffff9, 0x40, 0x0, 0x8ae0, 0x80000001, 0x62, 0x6, 0x3a60, 0x340, 0x80000001, 0x5800, 0x4, 0x8, 0x6, 0xfff, 0x8a, 0x1000000, 0x5, 0x0, 0x0, 0x8000, 0xc03d, 0x51c, 0x44f4, 0x8, 0x1, 0x1, 0x7, 0x9, 0x2, 0x6, 0x1, 0x5be7, 0x1ff, 0x7f, 0x6, 0x3, 0x5, 0x7f, 0x8, 0x7fffffff, 0x1, 0x6, 0xca, 0x3, 0xfff, 0x7, 0x1, 0x4, 0x4, 0x3, 0xfffff800, 0x6, 0x2, 0x18a8, 0xa, 0xfffffff8, 0x2, 0x400], [0x7, 0xa, 0x1ff, 0xac74, 0x1, 0xb8e4, 0x5, 0xffffffff, 0x80000, 0x7b, 0x8000, 0xffffffff, 0x5, 0x6, 0x7, 0xb322, 0xb93e, 0x101, 0x0, 0x6, 0x8000, 0x6, 0x8, 0x1, 0x80000000, 0x5388, 0xcf8, 0xee, 0x10, 0x1, 0x6, 0x4c, 0x1ff0, 0x4, 0x7, 0xfffffffd, 0x80, 0x5, 0xffffff2f, 0x0, 0x0, 0x0, 0xd0, 0x5, 0x38, 0x3, 0xffffffff, 0x3, 0xcf, 0x40000000, 0xffffffff, 0x8000, 0x2, 0x6, 0x5, 0x5, 0x101, 0xff, 0x0, 0x8, 0x4800, 0x7, 0x8a5, 0x1ff], [0x1, 0x7, 0xb, 0x1b1, 0x5, 0x1, 0xbf, 0x9, 0xffffffff, 0x70a, 0x1, 0x1, 0x8, 0x3, 0x66, 0x101, 0xb9ed, 0x80000000, 0x5, 0x7f, 0x74965f18, 0x3, 0xda8, 0x1, 0x4, 0x1, 0xb, 0x8, 0x2e, 0x7, 0xd, 0x80000001, 0x80000000, 0xc3, 0x2d7e, 0x8, 0x1, 0x9950, 0x3, 0x70f, 0x3, 0x290, 0x1, 0xfffffff8, 0x3ff, 0x80, 0x4, 0xfffffffa, 0xe69, 0x7, 0x6, 0x1, 0x0, 0x7, 0x3, 0x80000000, 0xc, 0x7, 0x4b84, 0x5, 0x7, 0x7fff, 0xd, 0x6], [0x2, 0x2, 0x1ed, 0x1, 0x7, 0x1, 0x4, 0xd, 0xf78, 0x1ff, 0x7, 0x4, 0x7, 0x4, 0x3, 0x8, 0xffffffff, 0x3, 0x9, 0xffff, 0x233, 0x59, 0x9, 0x80000000, 0x898, 0x7, 0x2, 0x12514d6e, 0x8, 0x1, 0x3, 0x26dbc9de, 0x8, 0xfffffff7, 0x8, 0xfffffffd, 0x98af, 0x7b87, 0x1, 0xfece, 0x3bd, 0x2, 0x9, 0x6ea, 0x9, 0x5, 0x7, 0x1, 0x3ff, 0x8, 0xa2, 0x7, 0x800, 0x3, 0xad2, 0x401, 0xfffffffa, 0x1, 0x9, 0x7, 0xf, 0x1, 0x7]}, 0x45c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000440), 0x4cc381, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=@newlink={0x98, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21029, 0x19ee0}, [@IFLA_LINKINFO={0x78, 0x12, 0x0, 0x1, @vti={{0x8}, {0x6c, 0x2, 0x0, 0x1, [@IFLA_VTI_LOCAL={0x8, 0x4, @broadcast}, @vti_common_policy=[@IFLA_VTI_LINK={0x0, 0x1, r5}, @IFLA_VTI_FWMARK={0x0, 0x6, 0xa0000000}, @IFLA_VTI_FWMARK={0x0, 0x6, 0xc}, @IFLA_VTI_IKEY={0x0, 0x2, 0x1ff}, @IFLA_VTI_FWMARK={0x0, 0x6, 0xfffffff7}, @IFLA_VTI_LINK={0x0, 0x1, r3}, @IFLA_VTI_FWMARK={0x0, 0x6, 0x3}, @IFLA_VTI_FWMARK={0x0, 0x6, 0x81}, @IFLA_VTI_IKEY={0x0, 0x2, 0x9}, @IFLA_VTI_LINK={0x0, 0x1, r3}], @vti_common_policy=[@IFLA_VTI_IKEY={0x8, 0x2, 0x7}, @IFLA_VTI_IKEY={0x8, 0x2, 0xfffffffa}, @IFLA_VTI_LINK={0x8}, @IFLA_VTI_IKEY={0xffffffffffffffa2, 0x2, 0x7}, @IFLA_VTI_IKEY={0x8, 0x2, 0x7ff}, @IFLA_VTI_IKEY={0x8, 0x2, 0x582f48c0}, @IFLA_VTI_LINK={0x8}, @IFLA_VTI_FWMARK={0x8, 0x6, 0x5}, @IFLA_VTI_LINK={0x8, 0x1, r3}, @IFLA_VTI_LINK={0x8, 0x1, r5}], @IFLA_VTI_LOCAL={0x8, 0x4, @rand_addr=0x64010102}]}}}]}, 0x98}, 0x1, 0x0, 0x0, 0xc001}, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000380)={0x1, 0x0, 0x1000, 0xcd, &(0x7f0000000080)="de8f78cc5c96eb2f557d99ab4b138cf16c558dc3f0d038deddcd64448913de82a2ff639a42f1b0600183ffa3af90404fc71f3b45516a061d9389cecec3871481c6fa14bc46ac07b9dabae2f71de9082c3614fcca57384e38fe475c1ddcca04b8ea6e75104d8b3c4e69e87a9b1f056d85213ba543af62c9460745f05fb8a252c7800a08dfdd51c722228612ee41682cb62c23c1fb930a7872430163fab048037a648efbb7b67809779cd2b70053ab92e07463d685aa212b280703405a8d84718371bc6c7769a846ef0e721a5afb", 0xcc, 0x0, &(0x7f0000000200)="9bbb0b9babe02bc5fdcdb9f3c70974ce3d90ccd7ce51131e0a8a7cca5fab0c45273f728fa2dd956014c92791ea63d155e5585d746ab6715549f86de8fb5c30c02ad08ce126ec2f481a916d58f717b4887f5bafc614a9fa853eb7ff0bad9106b74ce9fae4210d62834f90008225c7e23c5d3123d11a8b187faad7d88a71ebc8eae7b502a358be4350f358872988465bc31de5f7ecb4aca083ed27f60e45e8a2b35cab28933356c608f45d050d941e79d652654ceebcd1f5bfc99abe8416c1566c1fa460a305c054a7ea87f706"})

539.689286ms ago: executing program 1 (id=656):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xb, 0x8, 0x7fc00002}]})
userfaultfd(0x80801)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0x40082104, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}}, 0x40000)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r4, 0x89fb, &(0x7f0000000040)={'bond0\x00', 0xf76})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="010000", @ANYRES32], 0x48)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r5)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r6, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f00000007c0)={0x274, r7, 0x8, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0xc, 0x11d, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}]}, @NL80211_ATTR_TID_CONFIG={0x1c, 0x11d, 0x0, 0x1, [{0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xa8}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}]}, @NL80211_ATTR_TID_CONFIG={0x230, 0x11d, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xa2}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x84}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0x15c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x138, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xa0, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x23, 0x2, [{0x7, 0x3}, {0x7, 0x9}, {0x5, 0x8}, {0x4, 0x9}, {0x5, 0x3}, {0x6, 0x3}, {0x6, 0x8}, {0x0, 0x6}, {0x3, 0xa}, {0x2, 0x1}, {0x0, 0x6}, {0x7, 0x4}, {0x4, 0x4}, {0x7, 0x1}, {0x4, 0x5}, {0x7, 0x9}, {0x1, 0xa}, {0x1, 0x7}, {0x0, 0x4}, {0x0, 0x4}, {0x7, 0x4}, {0x4, 0xa}, {0x0, 0x6}, {0x1, 0x3}, {0x5, 0x7}, {0x0, 0x7}, {0x4, 0x1}, {0x4}, {0x4, 0xa}, {0x4, 0x6}, {0x1, 0x1}]}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HT={0x2c, 0x2, [{0x4, 0x7}, {0x7, 0x8}, {0x1, 0x8}, {0x0, 0x9}, {0x4}, {0x1, 0x8}, {0x1, 0x7}, {0x4, 0x4}, {0x1, 0xa}, {0x1, 0x2}, {0x1, 0x6}, {0x5, 0x3}, {0x1}, {0x2, 0x2}, {0x1, 0xa}, {0x4, 0x1}, {0x6, 0x6}, {0x1}, {0x6, 0x4}, {0x5, 0x2}, {0x0, 0x2}, {0x2, 0x9}, {0x0, 0x3}, {0x6, 0x8}, {0x6, 0x8}, {0x4, 0x8}, {0x6, 0x6}, {0x5, 0x2}, {0x6, 0x4}, {0x4, 0x3}, {0x2, 0x2}, {0x0, 0x3}, {0x3, 0x6}, {0x6, 0x3}, {0x7, 0x7}, {0x3, 0x1}, {0x7, 0x2}, {0x5, 0x2}, {0x1, 0x7}, {0x4, 0x3}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x9, 0x6, 0x7, 0x0, 0x0, 0xd, 0xfff]}}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x1, 0x16, 0x1, 0x12, 0x60, 0x4, 0x3, 0x16, 0x3]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x6, 0x7}, {0x6, 0x9}, {0x5, 0x5}, {0x0, 0x9}, {0x0, 0x3}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xb86, 0x8000, 0x5, 0x1, 0x2, 0x4, 0x800, 0x9]}}]}, @NL80211_BAND_6GHZ={0x4c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x8, 0x2, 0x9dbb, 0x6, 0xf8f, 0x1, 0x8]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xff80, 0x7, 0x9, 0x8001, 0x0, 0x40, 0x65d, 0xffff]}}]}, @NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}, @NL80211_BAND_6GHZ={0x3c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0x4}, {0x2, 0x7}, {0x5, 0x2}, {0x6, 0x9}, {0x4, 0x3}]}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0x60, 0x3, 0x6c, 0x2, 0x9, 0x9, 0x48, 0x12, 0x5, 0xc, 0xc, 0x6c]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1000, 0x6, 0x0, 0x7fff, 0x8, 0x86ab, 0x6, 0x2]}}]}]}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xe2}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xbb}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xd3}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x4d}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xbe}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}]}, {0x40, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xaf}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xf3}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}]}]}, 0x274}, 0x1, 0x0, 0x0, 0x4004}, 0x8801)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r8=>0x0})
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r9, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000700)={0x28, 0x3, 0x8, 0x201, 0x0, 0x0, {0x0, 0x0, 0x405}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_CLOSED={0x8, 0x1, 0x1, 0x0, 0x4}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="440000001000090400"/20, @ANYRES32=r8, @ANYBLOB="020000000000000024001280110001006272696467655f736c617665000000000c00058005002b"], 0x44}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r10, &(0x7f0000000180)=ANY=[@ANYBLOB="7f454c4620040000000000000000000002003e00ebffffff7c000000000000004000000000000000000000000000000000000000090038000100feff02000300030000000f00000008000000000000000d000000000000000080000000000000e5"], 0x78)
close(r10)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000000b00010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000400032c000000030a01030000e6ff00000073797a30000000000900030073797a32000000001400000011d52ac25bcf5305f5470100018dc67bd6f17e43f102092929e1b165edb62b84facebe76fd249cd32213f268f0d4c9c9e03cb84ec1f00200057ff6a4b7000000000000653ffefac4535d23235b000000000000"], 0x7c}, 0x1, 0x0, 0x0, 0x48800}, 0x8010)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0xfdff, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018011000100666c6f775f6f66666c6f616400000000100002800900010073797a30000000000900010073797a30000000000900020073797a32000000007c010000020a01"], 0x250}, 0x1, 0x0, 0x0, 0x2000094}, 0x4000800)

417.879142ms ago: executing program 4 (id=659):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000002380)={0x2020}, 0x2020) (async)
write$FUSE_DIRENTPLUS(r0, &(0x7f00000000c0)={0x10, 0xffffffffffffffda, 0x3}, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r1)
sendmsg$NFC_CMD_GET_SE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r2, 0x325, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

350.217419ms ago: executing program 4 (id=660):
r0 = syz_io_uring_setup(0x5d6, &(0x7f0000000100)={0x0, 0x4c39, 0x40, 0x2, 0x155}, &(0x7f0000000180), &(0x7f0000000200))
r1 = syz_io_uring_setup(0x110, &(0x7f00000003c0)={0x0, 0x100a2e, 0x800, 0x1, 0x0, 0x0, r0}, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000002a00)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0xdb4, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r1, 0x18, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x4, {0x1c8, 0x200000006d4}, 0xf0}, 0x1)
io_uring_enter(r1, 0x5b07, 0x2c7b, 0x40, &(0x7f00000000c0)={[0xfffffffffffffff9]}, 0x8)

300.359591ms ago: executing program 4 (id=661):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000780)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cast6)\x00'}, 0x58)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x8905, &(0x7f0000000000))
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r0, 0x0, 0x0, 0x800)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r2)

300.048581ms ago: executing program 4 (id=662):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$lock(r2, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfffffffffffffffd)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000640)="d8df0f23b3b9ce000000b807000000ba000000000f301b8154fea900c1210680320000c4e28ddc8dcd000000c182fd3f0000c8b950020000b801000400b9a6080000b80000010066b8377a000000d80f300f300fc79d53bf00000f0057000f01c3", 0x61}], 0x1, 0x14, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

299.381519ms ago: executing program 2 (id=663):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x183000, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x183000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf) (async)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) (async)
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000280)=@ipv4_newaddr={0x34, 0x14, 0x800, 0x70bd25, 0x25dfdbfb, {0x2, 0x20, 0x9, 0xff, r3}, [@IFA_CACHEINFO={0x14, 0x6, {0x4, 0x7, 0x9, 0x10001000}}, @IFA_RT_PRIORITY={0x8, 0x9, 0x400}]}, 0x34}, 0x1, 0x0, 0x0, 0x24048890}, 0x20048080)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000001c0)='./bus\x00', 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000068000100000000000000000c0002000100000c80"], 0x28}}, 0x40000) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000068000100000000000000000c0002000100000c80"], 0x28}}, 0x40000)
mount$overlay(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000140), 0x200800, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) (async)
mount$overlay(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000140), 0x200800, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000440)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1/file0'}}]})
ioctl$TCFLSH(r0, 0x400455c8, 0x400000009)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000100))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) (async)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000001c0)={0x34, r6, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x9c6}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0xd}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(r8, r4, 0x0) (async)
r9 = dup3(r8, r4, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r10, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"}) (async)
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})

110.350369ms ago: executing program 4 (id=664):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000180)=0x7)
ioctl$TCSETA(r0, 0x8924, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xfffd})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x35, 0x1, 0x6, 0x2000000009, 0x0)
r1 = mq_open(&(0x7f00000000c0)='ns\xbf\x12\xe1\v\xc8E\xe0\x80r\x917kj\x9cL\xceZ\x99\xf8Q%#-\xd3\xd2\x13\xe8\xdc\xe1\xfd\xde\xef\xf2\xa7\xd2\xab\x97\xc2e\'\xfc\x10\x85\x03\x00\x00\x002\xb80\x10_\\KA\x97\xb7.[O\xd56\xec^F\xdfT\xda\x9817\"\xf5h\xc0\xf8\a\x9e\xce\xa9&\xffq\xebA\x98\x96~\x17|\xc9xR\\z\x9a\x8cRJ\x85\\u\xb2\\\xedB4\xb5z\xbb\xee\xbd\x96\x19\xd1\x98\xeb\xe8\xc1u\x8b\xf8hc\x81#\r\xe8\xf8%\xd9\x7f\r\x12M\x00', 0x40, 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/36, 0x24, 0x5)
r2 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r3 = dup(r2)
read$FUSE(r3, &(0x7f0000002940)={0x2020}, 0x2020)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
lseek(r4, 0x9, 0x0)

110.103765ms ago: executing program 0 (id=665):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x581, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x4d014}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_PACKETS_PER_SLAVE={0x8}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x22004002}, 0x4040800)
ftruncate(r0, 0x7fffffffffffffff)

453.704µs ago: executing program 0 (id=666):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x1c, r2, 0x401, 0x70bd2a, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r3}]}, 0x1c}}, 0x0)
write$nci(r0, 0x0, 0x0)

0s ago: executing program 4 (id=667):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000226aa140070ad0001310010203010902240001000000000904000002bd22f00009050303000000000009058aff30"], 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000f9000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd020f4c0c8c56147d66527da307bf731fef97861750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3665f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447c2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2acb72e7ead0509d380578673f8b6e74ce23877a6b24db0000000000000003629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d7b90dfae158b94f50adab988dd8e12b1b56073d0d10f7067c881434af5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf77bfc95769a9294df517d90bdc01e73835efd98ad5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b31592479ecf2392548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbe1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5646ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4766e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec859c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f250057931d828ec78e116ae46c4897e2795b6ff92e9a1f63a6ed8fb4f8f3a6ec4e76f8621e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403f02734137ff47257f164391c673b6071b6ad0f05eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb79f5589829b6b0679b5d65a81826fc9b38f791c8f1892b51ad65a89bc84646ebf78f5d5d4804d9abb071fd711b5e7cc163b42a6510b8f5ee6747df0b560eabe0499bf1fef7c18bb9f55effa018679845c6598fb78bf1b8d9d9f04a5f6062c2bbb91952755b3f7c948268cb647d0a0bb1286480615941154a01d23734bcafe3b164474e2f2efa77850686ee4541f3e79efa63545a7ae53d5f0c40cc86473f7eb093980bd0d97bb4750128d9c519984c5f731ea259e71b2f12d67ce12e52c283e74594dfc933e625737ed231d61263721d46daf093f770357cd78fe1431aef52b4a0a933f1a5334ad03f3876fc8a8e187f80318427b4c922075cf829e3cc49d71d52137b48e1fb6b05dd1c7b251a7059f0a4b4f3431f67fc65b75c202e43816e34ff41db85bacd77b25242830b788ae1e00"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)
syz_usb_control_io$cdc_ecm(r0, &(0x7f00000005c0)={0x14, 0x0, &(0x7f0000000580)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
pread64(r5, &(0x7f00000011c0)=""/4137, 0x1029, 0x100005ffffbff)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)=ANY=[@ANYBLOB="140003001000010000000000000000000000000a4c000000060a0b04000000000000000002000000200004801c000180090001006d617371000000000c00028008000140000043290900010073797a30000000000900020073797a320000000014d32dfb707d945ad6313440eda22ad3c0000000"], 0x74}}, 0x0)

kernel console output (not intermixed with test programs):

fig 0 has 0 interfaces, different from the descriptor's value: 1
[   72.579841][   T24] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[   72.583352][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.586926][   T24] usb 6-1: Product: syz
[   72.588393][   T24] usb 6-1: Manufacturer: syz
[   72.589960][   T24] usb 6-1: SerialNumber: syz
[   72.598825][   T24] usb 6-1: config 0 descriptor??
[   72.682591][ T6271] libceph: resolve '0' (ret=-3): failed
[   72.783946][   T40] kauditd_printk_skb: 75 callbacks suppressed
[   72.783961][   T40] audit: type=1400 audit(1767392608.044:256): avc:  denied  { map } for  pid=6278 comm="syz.0.75" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   72.783998][   T40] audit: type=1400 audit(1767392608.044:257): avc:  denied  { execute } for  pid=6278 comm="syz.0.75" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   72.839405][   T40] audit: type=1400 audit(1767392608.104:258): avc:  denied  { kexec_image_load } for  pid=6281 comm="syz.0.76" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[   72.847329][ T6282] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   72.921120][   T40] audit: type=1400 audit(1767392608.184:259): avc:  denied  { create } for  pid=6283 comm="syz.0.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   72.921161][   T40] audit: type=1400 audit(1767392608.184:260): avc:  denied  { write } for  pid=6283 comm="syz.0.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   72.921182][   T40] audit: type=1400 audit(1767392608.184:261): avc:  denied  { nlmsg_write } for  pid=6283 comm="syz.0.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   72.921206][   T40] audit: type=1400 audit(1767392608.184:262): avc:  denied  { create } for  pid=6283 comm="syz.0.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   72.922044][   T40] audit: type=1400 audit(1767392608.184:263): avc:  denied  { write } for  pid=6283 comm="syz.0.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   72.948029][ T6284] netlink: 'syz.0.77': attribute type 62 has an invalid length.
[   72.970993][   T40] audit: type=1400 audit(1767392608.234:264): avc:  denied  { ioctl } for  pid=6283 comm="syz.0.77" path="socket:[13408]" dev="sockfs" ino=13408 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   72.972512][ T6284] netlink: 12 bytes leftover after parsing attributes in process `syz.0.77'.
[   73.037714][   T40] audit: type=1400 audit(1767392608.304:265): avc:  denied  { create } for  pid=6286 comm="syz.0.78" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   73.587032][ T6295] can0 (unregistered): slcan off ttyS3.
[   74.182136][ T6323] could not open pipe file descriptor
[   74.485968][ T6343] netlink: 'syz.2.90': attribute type 15 has an invalid length.
[   74.485990][ T6343] netlink: 4 bytes leftover after parsing attributes in process `syz.2.90'.
[   74.486112][ T6343] netlink: 'syz.2.90': attribute type 15 has an invalid length.
[   74.486125][ T6343] netlink: 4 bytes leftover after parsing attributes in process `syz.2.90'.
[   74.635848][ T6346] openvswitch: netlink: Unexpected mask (mask=840, allowed=10048)
[   74.647634][ T6346] netlink: 8 bytes leftover after parsing attributes in process `syz.2.91'.
[   74.647668][ T6346] netlink: 'syz.2.91': attribute type 7 has an invalid length.
[   74.656358][  T170] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   74.656386][ T6346] netlink: 8 bytes leftover after parsing attributes in process `syz.2.91'.
[   74.656388][  T170] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   74.656405][  T170] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   74.656414][ T6346] netlink: 'syz.2.91': attribute type 7 has an invalid length.
[   74.656422][  T170] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   75.164647][ T1336] usb 6-1: USB disconnect, device number 2
[   75.272272][ T6377] netlink: 'syz.1.99': attribute type 15 has an invalid length.
[   75.272646][ T6379] IPVS: set_ctl: invalid protocol: 44 172.20.20.12:21
[   75.289967][ T6377] netlink: 4 bytes leftover after parsing attributes in process `syz.1.99'.
[   75.303133][  T170] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 2816 - 0
[   75.303230][ T6377] netlink: 'syz.1.99': attribute type 15 has an invalid length.
[   75.314298][   T13] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 2816 - 0
[   75.324388][   T13] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 2816 - 0
[   75.328182][   T13] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 2816 - 0
[   75.337730][ T6382] netlink: 'syz.2.102': attribute type 30 has an invalid length.
[   75.495973][ T6397] syz_tun: entered allmulticast mode
[   76.265992][ T6405] macvlan0: entered promiscuous mode
[   76.268641][ T6405] macvlan0: entered allmulticast mode
[   76.271080][ T6405] veth1_vlan: entered allmulticast mode
[   76.349787][ T6416] : entered promiscuous mode
[   76.366650][ T6416] syz_tun (unregistering): left allmulticast mode
[   76.380585][ T6417] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   76.383363][ T6417] IPv6: NLM_F_CREATE should be set when creating new route
[   76.386100][ T6417] IPv6: NLM_F_CREATE should be set when creating new route
[   76.388443][ T6417] IPv6: NLM_F_CREATE should be set when creating new route
[   76.392715][ T6417] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   76.524255][   T10] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   76.558785][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[   76.561188][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[   76.626524][ T6420] xt_AUDIT: Audit type out of range (valid range: 0..2)
[   76.674257][   T10] usb 5-1: Using ep0 maxpacket: 8
[   76.677439][   T10] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   76.680718][   T10] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   76.684510][   T10] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   76.688528][   T10] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   76.692100][   T10] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   76.694631][ T6422] comedi comedi1: dac02: I/O port conflict (0x2,8)
[   76.696655][   T10] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   76.701730][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.796902][ T6424] FAULT_INJECTION: forcing a failure.
[   76.796902][ T6424] name failslab, interval 1, probability 0, space 0, times 0
[   76.801832][ T6424] CPU: 1 UID: 0 PID: 6424 Comm: syz.1.114 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   76.801856][ T6424] Tainted: [L]=SOFTLOCKUP
[   76.801860][ T6424] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.801885][ T6424] Call Trace:
[   76.801893][ T6424]  <TASK>
[   76.801900][ T6424]  dump_stack_lvl+0x16c/0x1f0
[   76.801946][ T6424]  should_fail_ex+0x512/0x640
[   76.801974][ T6424]  ? kmem_cache_alloc_noprof+0x62/0x770
[   76.801991][ T6424]  should_failslab+0xc2/0x120
[   76.802011][ T6424]  kmem_cache_alloc_noprof+0x83/0x770
[   76.802024][ T6424]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   76.802047][ T6424]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   76.802072][ T6424]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   76.802093][ T6424]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   76.802121][ T6424]  mmu_topup_memory_caches+0x25/0x170
[   76.802139][ T6424]  kvm_mmu_load+0xd6/0x2390
[   76.802156][ T6424]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   76.802177][ T6424]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   76.802199][ T6424]  ? __pfx_kvm_mmu_load+0x10/0x10
[   76.802214][ T6424]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   76.802236][ T6424]  ? kvm_check_and_inject_events+0x63d/0x1050
[   76.802260][ T6424]  vcpu_run+0x39d2/0x5a80
[   76.802281][ T6424]  ? __pfx_vcpu_run+0x10/0x10
[   76.802301][ T6424]  ? rcu_is_watching+0x12/0xc0
[   76.802318][ T6424]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   76.802334][ T6424]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   76.802358][ T6424]  kvm_vcpu_ioctl+0x76d/0x16d0
[   76.802382][ T6424]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   76.802404][ T6424]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   76.802421][ T6424]  ? do_vfs_ioctl+0x128/0x14f0
[   76.802438][ T6424]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   76.802454][ T6424]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   76.802481][ T6424]  ? hook_file_ioctl_common+0x144/0x410
[   76.802508][ T6424]  ? selinux_file_ioctl+0x180/0x270
[   76.802524][ T6424]  ? selinux_file_ioctl+0xb4/0x270
[   76.802543][ T6424]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   76.802564][ T6424]  __x64_sys_ioctl+0x18e/0x210
[   76.802582][ T6424]  do_syscall_64+0xcd/0xf80
[   76.802602][ T6424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.802617][ T6424] RIP: 0033:0x7fe267f8f7c9
[   76.802630][ T6424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.802643][ T6424] RSP: 002b:00007fe268ebb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.802657][ T6424] RAX: ffffffffffffffda RBX: 00007fe2681e5fa0 RCX: 00007fe267f8f7c9
[   76.802666][ T6424] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   76.802674][ T6424] RBP: 00007fe268ebb090 R08: 0000000000000000 R09: 0000000000000000
[   76.802682][ T6424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   76.802690][ T6424] R13: 00007fe2681e6038 R14: 00007fe2681e5fa0 R15: 00007fff2b313ba8
[   76.802717][ T6424]  </TASK>
[   76.919382][   T10] usb 5-1: usb_control_msg returned -32
[   76.921673][   T10] usbtmc 5-1:16.0: can't read capabilities
[   76.999175][ T6428] warning: `syz.1.115' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   78.269966][   T40] kauditd_printk_skb: 28 callbacks suppressed
[   78.269981][   T40] audit: type=1400 audit(1767392613.534:294): avc:  denied  { create } for  pid=6442 comm="syz.1.120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   78.280946][   T40] audit: type=1400 audit(1767392613.544:295): avc:  denied  { write } for  pid=6442 comm="syz.1.120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   78.288361][   T40] audit: type=1400 audit(1767392613.554:296): avc:  denied  { read } for  pid=6442 comm="syz.1.120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   78.408459][   T40] audit: type=1400 audit(1767392613.674:297): avc:  denied  { getopt } for  pid=6442 comm="syz.1.120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   78.516347][   T40] audit: type=1400 audit(1767392613.784:298): avc:  denied  { write } for  pid=6442 comm="syz.1.120" dev="sockfs" ino=10630 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   78.524633][   T40] audit: type=1400 audit(1767392613.784:299): avc:  denied  { setattr } for  pid=6442 comm="syz.1.120" name="LLC" dev="sockfs" ino=10630 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   79.200122][ T6448] SQUASHFS error: Failed to read block 0x0: -5
[   79.202296][ T6448] unable to read squashfs_super_block
[   79.276888][ T6450] __nla_validate_parse: 9 callbacks suppressed
[   79.276904][ T6450] netlink: 12 bytes leftover after parsing attributes in process `syz.1.122'.
[   79.296147][  T828] usb 5-1: USB disconnect, device number 2
[   79.334584][   T40] audit: type=1400 audit(1767392614.594:300): avc:  denied  { setattr } for  pid=6453 comm=C007B0FDA31C0A171BFA8120DD21D9 name="/" dev="9p" ino=71827681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   79.389732][ T6454] process '����
[   79.389732][ T6454] �� �!�' launched './file0' with NULL argv: empty string added
[   79.395823][   T40] audit: type=1400 audit(1767392614.654:301): avc:  denied  { execute_no_trans } for  pid=6453 comm=C007B0FDA31C0A171BFA8120DD21D9 path="/40/file0" dev="tmpfs" ino=230 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   79.422176][ T6466] netlink: 284 bytes leftover after parsing attributes in process `syz.2.128'.
[   79.432506][   T24] IPVS: starting estimator thread 0...
[   79.509987][   T40] audit: type=1400 audit(1767392614.774:302): avc:  denied  { write } for  pid=6470 comm="syz.0.129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   79.534413][ T6467] IPVS: using max 31 ests per chain, 74400 per kthread
[   79.575459][   T40] audit: type=1400 audit(1767392614.844:303): avc:  denied  { ioctl } for  pid=6472 comm="syz.1.131" path="socket:[10730]" dev="sockfs" ino=10730 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   79.635303][ T6478] xt_cgroup: invalid path, errno=-2
[   79.688309][ T6489] netlink: 'syz.0.134': attribute type 17 has an invalid length.
[   79.688334][ T6489] netlink: 20 bytes leftover after parsing attributes in process `syz.0.134'.
[   79.698129][ T6489] netlink: 8 bytes leftover after parsing attributes in process `syz.0.134'.
[   79.755746][   T24] IPVS: starting estimator thread 0...
[   79.800344][ T6500] netlink: 'syz.1.138': attribute type 15 has an invalid length.
[   79.800360][ T6500] netlink: 4 bytes leftover after parsing attributes in process `syz.1.138'.
[   79.800470][ T6500] netlink: 'syz.1.138': attribute type 15 has an invalid length.
[   79.800478][ T6500] netlink: 4 bytes leftover after parsing attributes in process `syz.1.138'.
[   79.855973][ T6498] IPVS: using max 47 ests per chain, 112800 per kthread
[   79.914401][ T6509] faux_driver vgem: [drm] Unknown color mode 9; guessing buffer size.
[   79.923696][ T6508] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.141'.
[   80.031391][ T6511] FAULT_INJECTION: forcing a failure.
[   80.031391][ T6511] name failslab, interval 1, probability 0, space 0, times 0
[   80.031428][ T6511] CPU: 0 UID: 0 PID: 6511 Comm: syz.1.143 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   80.031442][ T6511] Tainted: [L]=SOFTLOCKUP
[   80.031445][ T6511] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.031451][ T6511] Call Trace:
[   80.031455][ T6511]  <TASK>
[   80.031458][ T6511]  dump_stack_lvl+0x16c/0x1f0
[   80.031493][ T6511]  should_fail_ex+0x512/0x640
[   80.031513][ T6511]  ? kmem_cache_alloc_noprof+0x62/0x770
[   80.031526][ T6511]  should_failslab+0xc2/0x120
[   80.031539][ T6511]  kmem_cache_alloc_noprof+0x83/0x770
[   80.031549][ T6511]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   80.031566][ T6511]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   80.031585][ T6511]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   80.031601][ T6511]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   80.031621][ T6511]  mmu_topup_memory_caches+0x25/0x170
[   80.031634][ T6511]  kvm_mmu_load+0xd6/0x2390
[   80.031645][ T6511]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   80.031660][ T6511]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   80.031685][ T6511]  ? __pfx_kvm_mmu_load+0x10/0x10
[   80.031695][ T6511]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   80.031712][ T6511]  ? kvm_check_and_inject_events+0x63d/0x1050
[   80.031727][ T6511]  vcpu_run+0x39d2/0x5a80
[   80.031745][ T6511]  ? __pfx_vcpu_run+0x10/0x10
[   80.031762][ T6511]  ? rcu_is_watching+0x12/0xc0
[   80.031775][ T6511]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   80.031786][ T6511]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   80.031803][ T6511]  kvm_vcpu_ioctl+0x76d/0x16d0
[   80.031820][ T6511]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   80.031835][ T6511]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   80.031848][ T6511]  ? do_vfs_ioctl+0x128/0x14f0
[   80.031860][ T6511]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   80.031872][ T6511]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   80.031891][ T6511]  ? hook_file_ioctl_common+0x144/0x410
[   80.031911][ T6511]  ? selinux_file_ioctl+0x180/0x270
[   80.031923][ T6511]  ? selinux_file_ioctl+0xb4/0x270
[   80.031937][ T6511]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   80.031953][ T6511]  __x64_sys_ioctl+0x18e/0x210
[   80.031965][ T6511]  do_syscall_64+0xcd/0xf80
[   80.031979][ T6511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.031990][ T6511] RIP: 0033:0x7fe267f8f7c9
[   80.031998][ T6511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.032008][ T6511] RSP: 002b:00007fe268ebb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   80.032017][ T6511] RAX: ffffffffffffffda RBX: 00007fe2681e5fa0 RCX: 00007fe267f8f7c9
[   80.032024][ T6511] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   80.032029][ T6511] RBP: 00007fe268ebb090 R08: 0000000000000000 R09: 0000000000000000
[   80.032035][ T6511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   80.032040][ T6511] R13: 00007fe2681e6038 R14: 00007fe2681e5fa0 R15: 00007fff2b313ba8
[   80.032054][ T6511]  </TASK>
[   80.186309][ T6526] netlink: 'syz.1.147': attribute type 6 has an invalid length.
[   80.188071][ T6526] netlink: 'syz.1.147': attribute type 6 has an invalid length.
[   80.235405][ T6531] netlink: 'syz.1.149': attribute type 15 has an invalid length.
[   80.235419][ T6531] netlink: 4 bytes leftover after parsing attributes in process `syz.1.149'.
[   80.235515][ T6531] netlink: 'syz.1.149': attribute type 15 has an invalid length.
[   80.235523][ T6531] netlink: 4 bytes leftover after parsing attributes in process `syz.1.149'.
[   80.391789][ T6550] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[   80.436010][ T6552] netlink: 80 bytes leftover after parsing attributes in process `syz.1.157'.
[   80.472551][ T6561] No control pipe specified
[   80.695183][ T6568] netlink: 'syz.1.162': attribute type 3 has an invalid length.
[   80.695202][ T6568] netlink: 'syz.1.162': attribute type 1 has an invalid length.
[   81.037158][ T6574] 8021q: adding VLAN 0 to HW filter on device bond1
[   81.053295][ T6574] bond1: (slave ip6gretap1): making interface the new active one
[   81.055401][ T6574] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[   81.239563][ T5943] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   81.242317][ T5943] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   81.249158][ T5943] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   81.250103][ T5943] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   81.259152][ T5943] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   81.327293][ T6588] No control pipe specified
[   81.406805][ T6594] 9p: Bad value for 'version'
[   81.424388][   T10] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   81.425619][ T6581] chnl_net:caif_netlink_parms(): no params data found
[   81.502647][ T6581] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.505977][ T6581] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.509991][ T6581] bridge_slave_0: entered allmulticast mode
[   81.514339][ T6581] bridge_slave_0: entered promiscuous mode
[   81.521427][ T6581] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.524572][ T6581] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.528095][ T6581] bridge_slave_1: entered allmulticast mode
[   81.533202][ T6581] bridge_slave_1: entered promiscuous mode
[   81.571730][ T6581] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.577940][ T6581] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.584267][   T10] usb 6-1: Using ep0 maxpacket: 8
[   81.589531][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   81.594514][   T10] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   81.598626][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.602363][ T6581] team0: Port device team_slave_0 added
[   81.606602][   T10] usb 6-1: config 0 descriptor??
[   81.607506][ T6581] team0: Port device team_slave_1 added
[   81.628617][ T6581] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.631492][ T6581] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.642009][ T6581] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.647844][ T6581] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.651007][ T6581] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.664861][ T6581] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.710045][ T6581] hsr_slave_0: entered promiscuous mode
[   81.713907][ T6581] hsr_slave_1: entered promiscuous mode
[   81.716912][ T6581] debugfs: 'hsr0' already exists in 'hsr'
[   81.719158][ T6581] Cannot create hsr debugfs directory
[   81.724411][   T24] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   81.819319][   T10] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   81.864389][   T24] usb 5-1: device descriptor read/64, error -71
[   81.877961][ T6581] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   81.887967][ T6581] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   81.896135][ T6581] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   81.903582][ T6581] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   81.931367][ T6581] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.934527][ T6581] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.938443][ T6581] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.942199][ T6581] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.985109][ T6581] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.996134][ T1179] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.000996][ T1179] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.016910][ T6581] 8021q: adding VLAN 0 to HW filter on device team0
[   82.023982][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.026630][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.036266][ T1179] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.038881][ T1179] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.048518][   T10] usb 6-1: USB disconnect, device number 3
[   82.104319][   T24] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   82.212315][ T6581] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.235134][   T24] usb 5-1: device descriptor read/64, error -71
[   82.345323][   T24] usb usb5-port1: attempt power cycle
[   82.362887][ T6581] veth0_vlan: entered promiscuous mode
[   82.367801][ T6581] veth1_vlan: entered promiscuous mode
[   82.382647][ T6581] veth0_macvtap: entered promiscuous mode
[   82.385753][ T6581] veth1_macvtap: entered promiscuous mode
[   82.393148][ T6581] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.399811][ T6581] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.405389][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.405445][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.405864][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.406892][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.458142][  T170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.458176][  T170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.484428][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.484442][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.578688][ T6641] openvswitch: netlink: IP tunnel dst address not specified
[   82.684303][   T24] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   82.705375][   T24] usb 5-1: device descriptor read/8, error -71
[   82.762095][ T6650] batadv_slave_1: entered promiscuous mode
[   82.783429][ T6650] batadv_slave_1: left promiscuous mode
[   82.944292][   T24] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   82.965065][   T24] usb 5-1: device descriptor read/8, error -71
[   82.979453][ T6664] MINIX-fs: blocksize too small for device
[   83.074568][   T24] usb usb5-port1: unable to enumerate USB device
[   83.115329][ T6677] openvswitch: netlink: Duplicate key (type 1).
[   83.124929][ T5944] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   83.275706][ T5943] Bluetooth: hci4: command tx timeout
[   83.281662][ T5944] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   83.287633][ T5944] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.292412][ T5944] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   83.298993][ T5944] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   83.303157][ T5944] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.308713][ T5944] usb 6-1: config 0 descriptor??
[   83.384323][   T53] usb 7-1: new low-speed USB device number 2 using dummy_hcd
[   83.545359][   T53] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   83.548068][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   83.552079][   T53] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   83.555885][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   83.560430][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   83.565738][   T53] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   83.569047][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   83.573560][   T53] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   83.578937][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   83.583527][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   83.590035][   T53] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   83.593674][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   83.599412][   T53] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   83.604222][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   83.609471][   T53] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   83.617972][   T53] usb 7-1: string descriptor 0 read error: -22
[   83.620275][   T53] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   83.623413][   T53] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.637304][   T53] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   83.723455][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.729101][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.731499][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.734197][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.736686][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.739317][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.741889][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.745209][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.747619][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.750352][ T5944] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   83.768991][ T5944] plantronics 0003:047F:FFFF.0002: hiddev1,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   83.840029][   T24] usb 7-1: USB disconnect, device number 2
[   83.927294][ T6657] geneve2: entered allmulticast mode
[   83.934932][ T5944] usb 6-1: USB disconnect, device number 4
[   84.449965][   T40] kauditd_printk_skb: 70 callbacks suppressed
[   84.449983][   T40] audit: type=1400 audit(1767392619.714:374): avc:  denied  { connect } for  pid=6688 comm="syz.2.196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   84.495638][   T40] audit: type=1400 audit(1767392619.764:375): avc:  denied  { unmount } for  pid=5938 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   84.519793][   T40] audit: type=1400 audit(1767392619.784:376): avc:  denied  { bind } for  pid=6688 comm="syz.2.196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   84.527755][   T40] audit: type=1400 audit(1767392619.794:377): avc:  denied  { write } for  pid=6688 comm="syz.2.196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   84.627172][   T40] audit: type=1400 audit(1767392619.894:378): avc:  denied  { append } for  pid=6704 comm="syz.0.201" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   84.646723][   T40] audit: type=1400 audit(1767392619.914:379): avc:  denied  { read write } for  pid=6704 comm="syz.0.201" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   84.656629][   T40] audit: type=1400 audit(1767392619.924:380): avc:  denied  { open } for  pid=6704 comm="syz.0.201" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   84.717699][   T40] audit: type=1400 audit(1767392619.984:381): avc:  denied  { create } for  pid=6710 comm="syz.0.202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   84.732101][   T40] audit: type=1400 audit(1767392619.994:382): avc:  denied  { setopt } for  pid=6710 comm="syz.0.202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   84.794332][ T5944] usb 6-1: new low-speed USB device number 5 using dummy_hcd
[   84.838343][   T40] audit: type=1400 audit(1767392620.104:383): avc:  denied  { ioctl } for  pid=6716 comm="syz.0.205" path="/newroot/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x1280 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   84.925386][ T5944] usb 6-1: device descriptor read/64, error -71
[   85.164371][ T5944] usb 6-1: new low-speed USB device number 6 using dummy_hcd
[   85.204280][   T53] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   85.294544][ T5944] usb 6-1: device descriptor read/64, error -71
[   85.312143][ T6741] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=6741 comm=syz.4.213
[   85.341866][ T6743] binder: Binderfs stats mode cannot be changed during a remount
[   85.354288][ T5943] Bluetooth: hci4: command tx timeout
[   85.360560][   T53] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   85.364531][   T53] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   85.368018][   T53] usb 7-1: Product: syz
[   85.369857][   T53] usb 7-1: Manufacturer: syz
[   85.371801][   T53] usb 7-1: SerialNumber: syz
[   85.380867][   T53] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   85.404573][ T5944] usb usb6-port1: attempt power cycle
[   85.412721][ T6035] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   85.584417][   T53] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   85.689160][ T1148] nci: nci_add_new_protocol: the target found does not have the desired protocol
[   85.714302][   T53] usb 5-1: device descriptor read/64, error -71
[   85.754745][ T5944] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[   85.774881][ T5944] usb 6-1: device descriptor read/8, error -71
[   85.974217][   T53] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   86.014396][ T5944] usb 6-1: new low-speed USB device number 8 using dummy_hcd
[   86.036040][ T5944] usb 6-1: device descriptor read/8, error -71
[   86.104278][   T53] usb 5-1: device descriptor read/64, error -71
[   86.144550][ T5944] usb usb6-port1: unable to enumerate USB device
[   86.215304][   T53] usb usb5-port1: attempt power cycle
[   86.474785][ T6035] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[   86.482383][ T6035] ath9k_htc: Failed to initialize the device
[   86.508753][ T6035] usb 7-1: ath9k_htc: USB layer deinitialized
[   86.521821][ T6759] autofs: Unknown parameter '0x0000000000000000'
[   86.555043][   T53] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   86.576796][   T53] usb 5-1: device descriptor read/8, error -71
[   86.603121][ T6766] __nla_validate_parse: 5 callbacks suppressed
[   86.603137][ T6766] netlink: 8 bytes leftover after parsing attributes in process `syz.4.219'.
[   86.614070][ T6766] tipc: Started in network mode
[   86.616708][ T6766] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711
[   86.620946][ T6766] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   86.659840][ T6768] input: syz0 as /devices/virtual/input/input7
[   86.700300][   T24] libceph: connect (1)[c::]:6789 error -101
[   86.703639][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   86.708494][   T24] libceph: connect (1)[c::]:6789 error -101
[   86.710595][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   86.716517][   T24] usb 7-1: USB disconnect, device number 3
[   86.821619][   T53] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[   86.844938][   T53] usb 5-1: device descriptor read/8, error -71
[   86.954589][   T53] usb usb5-port1: unable to enumerate USB device
[   86.966268][   T24] libceph: connect (1)[c::]:6789 error -101
[   86.968872][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   87.434684][ T5943] Bluetooth: hci4: command tx timeout
[   87.484592][   T24] libceph: connect (1)[c::]:6789 error -101
[   87.486693][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   87.495247][ T6768] ceph: No mds server is up or the cluster is laggy
[   87.578678][ T6784] autofs: Unknown parameter '0x0000000000000000'
[   87.589213][ T6782] kvm: user requested TSC rate below hardware speed
[   87.598865][ T6782] overlay: Bad value for 'index'
[   87.625983][ T6787] netlink: 4 bytes leftover after parsing attributes in process `syz.1.227'.
[   87.629351][ T1336] hid-generic 0004:0006:0002.0003: item fetching failed at offset 1/2
[   87.632965][ T1336] hid-generic 0004:0006:0002.0003: probe with driver hid-generic failed with error -22
[   87.664453][ T5944] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   87.780676][ T6790] sch_tbf: burst 274 is lower than device lo mtu (65550) !
[   87.844977][ T5944] usb 7-1: Using ep0 maxpacket: 8
[   87.848763][ T5944] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[   87.856816][ T5944] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   87.861372][ T5944] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   87.866320][ T5944] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   87.870481][ T5944] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   87.876983][ T5944] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   87.881421][ T5944] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.936822][ T6797] loop2: detected capacity change from 0 to 7
[   87.943731][ T6456] Dev loop2: unable to read RDB block 7
[   87.946874][ T6456]  loop2: AHDI p1 p2 p3
[   87.948850][ T6456] loop2: partition table partially beyond EOD, truncated
[   87.953263][ T6456] loop2: p1 start 1601398130 is beyond EOD, truncated
[   87.956914][ T6456] loop2: p2 start 1702059890 is beyond EOD, truncated
[   87.974385][ T6797] Dev loop2: unable to read RDB block 7
[   87.977016][ T6797]  loop2: AHDI p1 p2 p3
[   87.978945][ T6797] loop2: partition table partially beyond EOD, truncated
[   87.982318][ T6797] loop2: p1 start 1601398130 is beyond EOD, truncated
[   87.985232][ T6797] loop2: p2 start 1702059890 is beyond EOD, truncated
[   88.005571][ T6799] netlink: 8 bytes leftover after parsing attributes in process `syz.1.231'.
[   88.088133][ T6801] netlink: 8 bytes leftover after parsing attributes in process `syz.1.232'.
[   88.095036][ T5944] usb 7-1: usb_control_msg returned -32
[   88.097438][ T5944] usbtmc 7-1:16.0: can't read capabilities
[   88.225501][ T6806] netlink: 'syz.1.233': attribute type 1 has an invalid length.
[   88.240181][ T6806] 8021q: adding VLAN 0 to HW filter on device bond2
[   88.276903][ T6806] veth3: entered promiscuous mode
[   88.376751][ T6813] autofs: Unknown parameter 'fd0x0000000000000000'
[   88.448679][ T6821] usbtmc 7-1:16.0: INITIATE_ABORT_BULK_OUT returned 0
[   88.667783][ T6844] SELinux:  Context system_u:object_r:dlm_control_device_t:s0 is not valid (left unmapped).
[   88.941384][ T6854] fuse: Unknown parameter 'f`ub�#q.u�ĉ�!S������ @kG��vϲ�y���׼±�oaZ���k�d�)�Y�d��}1�&��@�4���.I�s]zْg%i����eʟ;���q��m�-y���K;�}���UV��!'
[   89.267783][ T6865] netlink: 28 bytes leftover after parsing attributes in process `syz.0.247'.
[   89.267783][ T6866] netlink: 28 bytes leftover after parsing attributes in process `syz.0.247'.
[   89.267807][ T6866] netlink: 'syz.0.247': attribute type 7 has an invalid length.
[   89.270753][ T6865] netlink: 'syz.0.247': attribute type 7 has an invalid length.
[   89.270765][ T6865] netlink: 'syz.0.247': attribute type 8 has an invalid length.
[   89.270772][ T6865] netlink: 4 bytes leftover after parsing attributes in process `syz.0.247'.
[   89.273932][ T6865] syz_tun: entered promiscuous mode
[   89.274035][ T6866] netlink: 'syz.0.247': attribute type 8 has an invalid length.
[   89.290398][ T6866] netlink: 4 bytes leftover after parsing attributes in process `syz.0.247'.
[   89.290419][ T6865] syz_tun: left promiscuous mode
[   89.310221][ T6866] syz_tun: entered promiscuous mode
[   89.314497][ T6866] syz_tun: left promiscuous mode
[   89.381918][ T6876] netlink: 12 bytes leftover after parsing attributes in process `syz.1.249'.
[   89.514454][ T5943] Bluetooth: hci4: command tx timeout
[   89.611393][ T6887] EXT4-fs (nbd0): unable to read superblock
[   89.714299][ T6889] FAULT_INJECTION: forcing a failure.
[   89.714299][ T6889] name failslab, interval 1, probability 0, space 0, times 0
[   89.720110][ T6889] CPU: 0 UID: 0 PID: 6889 Comm: syz.0.254 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   89.720142][ T6889] Tainted: [L]=SOFTLOCKUP
[   89.720148][ T6889] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.720158][ T6889] Call Trace:
[   89.720168][ T6889]  <TASK>
[   89.720176][ T6889]  dump_stack_lvl+0x16c/0x1f0
[   89.720240][ T6889]  should_fail_ex+0x512/0x640
[   89.720286][ T6889]  ? kmem_cache_alloc_noprof+0x62/0x770
[   89.720309][ T6889]  should_failslab+0xc2/0x120
[   89.720335][ T6889]  kmem_cache_alloc_noprof+0x83/0x770
[   89.720354][ T6889]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   89.720385][ T6889]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   89.720421][ T6889]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   89.720451][ T6889]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   89.720490][ T6889]  mmu_topup_memory_caches+0x25/0x170
[   89.720515][ T6889]  kvm_mmu_load+0xd6/0x2390
[   89.720600][ T6889]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   89.720624][ T6889]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   89.720650][ T6889]  ? __pfx_kvm_mmu_load+0x10/0x10
[   89.720667][ T6889]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   89.720695][ T6889]  ? kvm_check_and_inject_events+0x63d/0x1050
[   89.720721][ T6889]  vcpu_run+0x39d2/0x5a80
[   89.720752][ T6889]  ? __pfx_vcpu_run+0x10/0x10
[   89.720786][ T6889]  ? rcu_is_watching+0x12/0xc0
[   89.720807][ T6889]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   89.720827][ T6889]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   89.720855][ T6889]  kvm_vcpu_ioctl+0x76d/0x16d0
[   89.720886][ T6889]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   89.720911][ T6889]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   89.720932][ T6889]  ? do_vfs_ioctl+0x128/0x14f0
[   89.720954][ T6889]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   89.720973][ T6889]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   89.721005][ T6889]  ? hook_file_ioctl_common+0x144/0x410
[   89.721037][ T6889]  ? selinux_file_ioctl+0x180/0x270
[   89.721058][ T6889]  ? selinux_file_ioctl+0xb4/0x270
[   89.721080][ T6889]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   89.721105][ T6889]  __x64_sys_ioctl+0x18e/0x210
[   89.721166][ T6889]  do_syscall_64+0xcd/0xf80
[   89.721188][ T6889]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.721204][ T6889] RIP: 0033:0x7f4a0698f7c9
[   89.721219][ T6889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.721234][ T6889] RSP: 002b:00007f4a0776f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   89.721253][ T6889] RAX: ffffffffffffffda RBX: 00007f4a06be5fa0 RCX: 00007f4a0698f7c9
[   89.721263][ T6889] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   89.721311][ T6889] RBP: 00007f4a0776f090 R08: 0000000000000000 R09: 0000000000000000
[   89.721322][ T6889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   89.721331][ T6889] R13: 00007f4a06be6038 R14: 00007f4a06be5fa0 R15: 00007fff1cf29278
[   89.721364][ T6889]  </TASK>
[   89.774410][ T1336] usb 6-1: new low-speed USB device number 9 using dummy_hcd
[   90.006504][ T1336] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[   90.006533][ T1336] usb 6-1: config 0 has no interface number 0
[   90.006566][ T1336] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[   90.006598][ T1336] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[   90.006633][ T1336] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   90.006653][ T1336] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.009179][ T1336] usb 6-1: config 0 descriptor??
[   90.038291][ T6885] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   90.046863][ T1336] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1
[   90.112033][   T40] kauditd_printk_skb: 30 callbacks suppressed
[   90.112047][   T40] audit: type=1400 audit(1767392625.374:414): avc:  denied  { mount } for  pid=6897 comm="syz.4.257" name="/" dev="hugetlbfs" ino=14891 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[   90.127694][   T40] audit: type=1400 audit(1767392625.394:415): avc:  denied  { unmount } for  pid=6581 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[   90.157614][   T40] audit: type=1400 audit(1767392625.424:416): avc:  granted  { setsecparam } for  pid=6899 comm="syz.4.258" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   90.244407][ T1336] usb 6-1: USB disconnect, device number 9
[   90.290489][ T6905] netlink: 8 bytes leftover after parsing attributes in process `syz.4.260'.
[   90.414417][ T1336] usb 7-1: USB disconnect, device number 4
[   90.528377][ T6909] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   90.553100][   T40] audit: type=1400 audit(1767392625.814:417): avc:  denied  { bind } for  pid=6923 comm="syz.2.263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   90.656969][ T6929] FAULT_INJECTION: forcing a failure.
[   90.656969][ T6929] name failslab, interval 1, probability 0, space 0, times 0
[   90.661634][ T6929] CPU: 0 UID: 0 PID: 6929 Comm: syz.2.264 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   90.661656][ T6929] Tainted: [L]=SOFTLOCKUP
[   90.661660][ T6929] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.661667][ T6929] Call Trace:
[   90.661673][ T6929]  <TASK>
[   90.661678][ T6929]  dump_stack_lvl+0x16c/0x1f0
[   90.661700][ T6929]  should_fail_ex+0x512/0x640
[   90.661718][ T6929]  ? kmem_cache_alloc_noprof+0x62/0x770
[   90.661733][ T6929]  should_failslab+0xc2/0x120
[   90.661749][ T6929]  kmem_cache_alloc_noprof+0x83/0x770
[   90.661759][ T6929]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   90.661778][ T6929]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   90.661797][ T6929]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   90.661813][ T6929]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   90.661834][ T6929]  mmu_topup_memory_caches+0x25/0x170
[   90.661849][ T6929]  kvm_mmu_load+0xd6/0x2390
[   90.661862][ T6929]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   90.661879][ T6929]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   90.661896][ T6929]  ? __pfx_kvm_mmu_load+0x10/0x10
[   90.661907][ T6929]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   90.661924][ T6929]  ? kvm_check_and_inject_events+0x63d/0x1050
[   90.661940][ T6929]  vcpu_run+0x39d2/0x5a80
[   90.661958][ T6929]  ? __pfx_vcpu_run+0x10/0x10
[   90.661976][ T6929]  ? rcu_is_watching+0x12/0xc0
[   90.661989][ T6929]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   90.662001][ T6929]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   90.662018][ T6929]  kvm_vcpu_ioctl+0x76d/0x16d0
[   90.662036][ T6929]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   90.662052][ T6929]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   90.662066][ T6929]  ? do_vfs_ioctl+0x128/0x14f0
[   90.662079][ T6929]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   90.662090][ T6929]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   90.662111][ T6929]  ? hook_file_ioctl_common+0x144/0x410
[   90.662132][ T6929]  ? selinux_file_ioctl+0x180/0x270
[   90.662144][ T6929]  ? selinux_file_ioctl+0xb4/0x270
[   90.662158][ T6929]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   90.662174][ T6929]  __x64_sys_ioctl+0x18e/0x210
[   90.662193][ T6929]  do_syscall_64+0xcd/0xf80
[   90.662209][ T6929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.662220][ T6929] RIP: 0033:0x7fe79b18f7c9
[   90.662230][ T6929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.662240][ T6929] RSP: 002b:00007fe79bf63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.662251][ T6929] RAX: ffffffffffffffda RBX: 00007fe79b3e5fa0 RCX: 00007fe79b18f7c9
[   90.662257][ T6929] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   90.662263][ T6929] RBP: 00007fe79bf63090 R08: 0000000000000000 R09: 0000000000000000
[   90.662268][ T6929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   90.662274][ T6929] R13: 00007fe79b3e6038 R14: 00007fe79b3e5fa0 R15: 00007ffd58be4c28
[   90.662287][ T6929]  </TASK>
[   90.894478][   T40] audit: type=1400 audit(1767392626.164:418): avc:  denied  { bpf } for  pid=6932 comm="syz.1.265" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   90.903964][ T6945] loop2: detected capacity change from 0 to 7
[   90.904982][   T40] audit: type=1400 audit(1767392626.164:419): avc:  denied  { perfmon } for  pid=6932 comm="syz.1.265" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   90.907927][ T6945] Dev loop2: unable to read RDB block 7
[   90.918972][ T6945]  loop2: AHDI p1 p2 p3
[   90.919014][ T6945] loop2: partition table partially beyond EOD, truncated
[   90.923312][ T6945] loop2: p1 start 1601398130 is beyond EOD, truncated
[   90.923339][ T6945] loop2: p2 start 1702059890 is beyond EOD, truncated
[   91.008389][   T40] audit: type=1400 audit(1767392626.274:420): avc:  denied  { create } for  pid=6949 comm="syz.1.271" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   91.017046][   T40] audit: type=1400 audit(1767392626.274:421): avc:  denied  { write } for  pid=6949 comm="syz.1.271" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   91.023893][   T40] audit: type=1400 audit(1767392626.274:422): avc:  denied  { read } for  pid=6949 comm="syz.1.271" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   91.030737][   T40] audit: type=1400 audit(1767392626.274:423): avc:  denied  { create } for  pid=6949 comm="syz.1.271" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   91.065635][ T6952] bridge0: port 3(veth0_to_bridge) entered blocking state
[   91.068086][ T6952] bridge0: port 3(veth0_to_bridge) entered disabled state
[   91.070707][ T6952] veth0_to_bridge: entered allmulticast mode
[   91.073931][ T6952] veth0_to_bridge: entered promiscuous mode
[   91.076348][ T6952] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[   91.081320][ T6952] bridge0: port 3(veth0_to_bridge) entered blocking state
[   91.083898][ T6952] bridge0: port 3(veth0_to_bridge) entered forwarding state
[   91.201556][ T6961] FAULT_INJECTION: forcing a failure.
[   91.201556][ T6961] name failslab, interval 1, probability 0, space 0, times 0
[   91.207298][ T6961] CPU: 0 UID: 0 PID: 6961 Comm: syz.0.275 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   91.207326][ T6961] Tainted: [L]=SOFTLOCKUP
[   91.207338][ T6961] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.207348][ T6961] Call Trace:
[   91.207353][ T6961]  <TASK>
[   91.207360][ T6961]  dump_stack_lvl+0x16c/0x1f0
[   91.207388][ T6961]  should_fail_ex+0x512/0x640
[   91.207411][ T6961]  ? kmem_cache_alloc_noprof+0x62/0x770
[   91.207431][ T6961]  should_failslab+0xc2/0x120
[   91.207452][ T6961]  kmem_cache_alloc_noprof+0x83/0x770
[   91.207467][ T6961]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   91.207494][ T6961]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   91.207521][ T6961]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   91.207544][ T6961]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   91.207575][ T6961]  mmu_topup_memory_caches+0x25/0x170
[   91.207598][ T6961]  kvm_mmu_load+0xd6/0x2390
[   91.207617][ T6961]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   91.207641][ T6961]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   91.207667][ T6961]  ? __pfx_kvm_mmu_load+0x10/0x10
[   91.207683][ T6961]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   91.207709][ T6961]  ? kvm_check_and_inject_events+0x63d/0x1050
[   91.207733][ T6961]  vcpu_run+0x39d2/0x5a80
[   91.207764][ T6961]  ? __pfx_vcpu_run+0x10/0x10
[   91.207791][ T6961]  ? rcu_is_watching+0x12/0xc0
[   91.207811][ T6961]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   91.207829][ T6961]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   91.207855][ T6961]  kvm_vcpu_ioctl+0x76d/0x16d0
[   91.207884][ T6961]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   91.207906][ T6961]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   91.207927][ T6961]  ? do_vfs_ioctl+0x128/0x14f0
[   91.207946][ T6961]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   91.207965][ T6961]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   91.207994][ T6961]  ? hook_file_ioctl_common+0x144/0x410
[   91.208025][ T6961]  ? selinux_file_ioctl+0x180/0x270
[   91.208044][ T6961]  ? selinux_file_ioctl+0xb4/0x270
[   91.208065][ T6961]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   91.208089][ T6961]  __x64_sys_ioctl+0x18e/0x210
[   91.208109][ T6961]  do_syscall_64+0xcd/0xf80
[   91.208132][ T6961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.208148][ T6961] RIP: 0033:0x7f4a0698f7c9
[   91.208162][ T6961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.208176][ T6961] RSP: 002b:00007f4a0776f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   91.208192][ T6961] RAX: ffffffffffffffda RBX: 00007f4a06be5fa0 RCX: 00007f4a0698f7c9
[   91.208203][ T6961] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   91.208211][ T6961] RBP: 00007f4a0776f090 R08: 0000000000000000 R09: 0000000000000000
[   91.208221][ T6961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   91.208229][ T6961] R13: 00007f4a06be6038 R14: 00007f4a06be5fa0 R15: 00007fff1cf29278
[   91.208253][ T6961]  </TASK>
[   91.470822][ T6987] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[   91.584386][ T6994] binder: 6989:6994 ioctl c0306201 200000000600 returned -14
[   91.751029][ T7006] syzkaller0: entered promiscuous mode
[   91.753450][ T7006] syzkaller0: entered allmulticast mode
[   91.918098][   T29] cfg80211: failed to load regulatory.db
[   91.940454][ T7011] FAULT_INJECTION: forcing a failure.
[   91.940454][ T7011] name failslab, interval 1, probability 0, space 0, times 0
[   91.947137][ T7011] CPU: 0 UID: 0 PID: 7011 Comm: syz.0.288 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   91.947166][ T7011] Tainted: [L]=SOFTLOCKUP
[   91.947172][ T7011] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.947181][ T7011] Call Trace:
[   91.947187][ T7011]  <TASK>
[   91.947195][ T7011]  dump_stack_lvl+0x16c/0x1f0
[   91.947223][ T7011]  should_fail_ex+0x512/0x640
[   91.947248][ T7011]  ? kmem_cache_alloc_noprof+0x62/0x770
[   91.947269][ T7011]  should_failslab+0xc2/0x120
[   91.947291][ T7011]  kmem_cache_alloc_noprof+0x83/0x770
[   91.947309][ T7011]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   91.947334][ T7011]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   91.947366][ T7011]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   91.947393][ T7011]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   91.947427][ T7011]  mmu_topup_memory_caches+0x25/0x170
[   91.947449][ T7011]  kvm_mmu_load+0xd6/0x2390
[   91.947468][ T7011]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   91.947494][ T7011]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   91.947522][ T7011]  ? __pfx_kvm_mmu_load+0x10/0x10
[   91.947540][ T7011]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   91.947567][ T7011]  ? kvm_check_and_inject_events+0x63d/0x1050
[   91.947599][ T7011]  vcpu_run+0x39d2/0x5a80
[   91.947629][ T7011]  ? __pfx_vcpu_run+0x10/0x10
[   91.947654][ T7011]  ? rcu_is_watching+0x12/0xc0
[   91.947675][ T7011]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   91.947694][ T7011]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   91.947722][ T7011]  kvm_vcpu_ioctl+0x76d/0x16d0
[   91.947750][ T7011]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   91.947776][ T7011]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   91.947797][ T7011]  ? do_vfs_ioctl+0x128/0x14f0
[   91.947818][ T7011]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   91.947837][ T7011]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   91.947870][ T7011]  ? hook_file_ioctl_common+0x144/0x410
[   91.947903][ T7011]  ? selinux_file_ioctl+0x180/0x270
[   91.947923][ T7011]  ? selinux_file_ioctl+0xb4/0x270
[   91.947946][ T7011]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   91.947972][ T7011]  __x64_sys_ioctl+0x18e/0x210
[   91.947994][ T7011]  do_syscall_64+0xcd/0xf80
[   91.948018][ T7011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.948035][ T7011] RIP: 0033:0x7f4a0698f7c9
[   91.948050][ T7011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.948065][ T7011] RSP: 002b:00007f4a0774e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   91.948082][ T7011] RAX: ffffffffffffffda RBX: 00007f4a06be6090 RCX: 00007f4a0698f7c9
[   91.948092][ T7011] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   91.948101][ T7011] RBP: 00007f4a0774e090 R08: 0000000000000000 R09: 0000000000000000
[   91.948111][ T7011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   91.948120][ T7011] R13: 00007f4a06be6128 R14: 00007f4a06be6090 R15: 00007fff1cf29278
[   91.948159][ T7011]  </TASK>
[   92.380871][ T7016] __nla_validate_parse: 1 callbacks suppressed
[   92.380890][ T7016] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.291'.
[   92.863514][ T7056] netlink: 'syz.2.304': attribute type 1 has an invalid length.
[   92.867895][ T7056] netlink: 'syz.2.304': attribute type 1 has an invalid length.
[   92.871415][ T7056] netlink: 9172 bytes leftover after parsing attributes in process `syz.2.304'.
[   93.056111][ T7066] syzkaller0: entered promiscuous mode
[   93.242348][ T7079] capability: warning: `syz.0.312' uses 32-bit capabilities (legacy support in use)
[   93.280411][ T7081] loop2: detected capacity change from 0 to 7
[   93.287053][ T6456] Dev loop2: unable to read RDB block 7
[   93.290133][ T6456]  loop2: AHDI p1 p2 p3
[   93.292812][ T6456] loop2: partition table partially beyond EOD, truncated
[   93.295901][ T6456] loop2: p1 start 1601398130 is beyond EOD, truncated
[   93.298161][ T6456] loop2: p2 start 1702059890 is beyond EOD, truncated
[   93.302844][ T7081] Dev loop2: unable to read RDB block 7
[   93.306426][ T7081]  loop2: AHDI p1 p2 p3
[   93.308097][ T7081] loop2: partition table partially beyond EOD, truncated
[   93.310898][ T7081] loop2: p1 start 1601398130 is beyond EOD, truncated
[   93.313474][ T7081] loop2: p2 start 1702059890 is beyond EOD, truncated
[   93.401455][ T7086] FAULT_INJECTION: forcing a failure.
[   93.401455][ T7086] name failslab, interval 1, probability 0, space 0, times 0
[   93.406407][ T7086] CPU: 3 UID: 0 PID: 7086 Comm: syz.2.315 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   93.406424][ T7086] Tainted: [L]=SOFTLOCKUP
[   93.406428][ T7086] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.406434][ T7086] Call Trace:
[   93.406438][ T7086]  <TASK>
[   93.406442][ T7086]  dump_stack_lvl+0x16c/0x1f0
[   93.406460][ T7086]  should_fail_ex+0x512/0x640
[   93.406476][ T7086]  ? kmem_cache_alloc_noprof+0x62/0x770
[   93.406489][ T7086]  should_failslab+0xc2/0x120
[   93.406574][ T7086]  kmem_cache_alloc_noprof+0x83/0x770
[   93.406587][ T7086]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   93.406605][ T7086]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   93.406624][ T7086]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   93.406640][ T7086]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   93.406661][ T7086]  mmu_topup_memory_caches+0x25/0x170
[   93.406677][ T7086]  kvm_mmu_load+0xd6/0x2390
[   93.406690][ T7086]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   93.406706][ T7086]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   93.406723][ T7086]  ? __pfx_kvm_mmu_load+0x10/0x10
[   93.406733][ T7086]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   93.406750][ T7086]  ? kvm_check_and_inject_events+0x63d/0x1050
[   93.406766][ T7086]  vcpu_run+0x39d2/0x5a80
[   93.406785][ T7086]  ? __pfx_vcpu_run+0x10/0x10
[   93.406802][ T7086]  ? rcu_is_watching+0x12/0xc0
[   93.406815][ T7086]  ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   93.406827][ T7086]  kvm_arch_vcpu_ioctl_run+0xfd3/0x1860
[   93.406843][ T7086]  kvm_vcpu_ioctl+0x76d/0x16d0
[   93.406861][ T7086]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   93.406877][ T7086]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   93.406891][ T7086]  ? do_vfs_ioctl+0x128/0x14f0
[   93.406904][ T7086]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   93.406916][ T7086]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   93.406936][ T7086]  ? hook_file_ioctl_common+0x144/0x410
[   93.406957][ T7086]  ? selinux_file_ioctl+0x180/0x270
[   93.406970][ T7086]  ? selinux_file_ioctl+0xb4/0x270
[   93.406983][ T7086]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   93.406999][ T7086]  __x64_sys_ioctl+0x18e/0x210
[   93.407012][ T7086]  do_syscall_64+0xcd/0xf80
[   93.407027][ T7086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.407039][ T7086] RIP: 0033:0x7fe79b18f7c9
[   93.407050][ T7086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.407060][ T7086] RSP: 002b:00007fe79bf42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   93.407071][ T7086] RAX: ffffffffffffffda RBX: 00007fe79b3e6090 RCX: 00007fe79b18f7c9
[   93.407077][ T7086] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   93.407083][ T7086] RBP: 00007fe79bf42090 R08: 0000000000000000 R09: 0000000000000000
[   93.407088][ T7086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   93.407094][ T7086] R13: 00007fe79b3e6128 R14: 00007fe79b3e6090 R15: 00007ffd58be4c28
[   93.407107][ T7086]  </TASK>
[   94.011522][ T7098] netlink: 8 bytes leftover after parsing attributes in process `syz.0.317'.
[   94.018523][ T7099] netlink: 8 bytes leftover after parsing attributes in process `syz.0.317'.
[   94.259822][ T7104] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   94.263732][ T7104] block device autoloading is deprecated and will be removed.
[   94.277388][ T7103] netlink: 8 bytes leftover after parsing attributes in process `syz.0.318'.
[   94.574296][ T7114] omfs: Invalid superblock (0)
[   95.110197][ T7129] No control pipe specified
[   95.126213][   T40] kauditd_printk_skb: 186 callbacks suppressed
[   95.126230][   T40] audit: type=1400 audit(1767392886.396:610): avc:  denied  { execute } for  pid=7128 comm="syz.4.326" name="file0" dev="tmpfs" ino=180 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   95.144318][   T40] audit: type=1400 audit(1767392886.396:611): avc:  denied  { execute_no_trans } for  pid=7128 comm="syz.4.326" path="/31/file0" dev="tmpfs" ino=180 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   95.226328][   T40] audit: type=1400 audit(1767392886.496:612): avc:  denied  { create } for  pid=7134 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   95.244732][   T40] audit: type=1400 audit(1767392886.506:613): avc:  denied  { write } for  pid=7134 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   95.252411][   T40] audit: type=1400 audit(1767392886.506:614): avc:  denied  { read } for  pid=7134 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   95.261116][   T40] audit: type=1400 audit(1767392886.506:615): avc:  denied  { map_read map_write } for  pid=7134 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   95.268813][   T40] audit: type=1400 audit(1767392886.506:616): avc:  denied  { create } for  pid=7134 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   95.277534][   T40] audit: type=1400 audit(1767392886.516:617): avc:  denied  { bind } for  pid=7134 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   95.285945][   T40] audit: type=1400 audit(1767392886.516:618): avc:  denied  { setopt } for  pid=7134 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   95.293373][   T40] audit: type=1400 audit(1767392886.516:619): avc:  denied  { accept } for  pid=7134 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   95.552544][ T7144] syzkaller1: entered promiscuous mode
[   95.554695][ T7144] syzkaller1: entered allmulticast mode
[   95.604319][ T1336] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[   95.688559][ T7146] capability: warning: `syz.2.333' uses deprecated v2 capabilities in a way that may be insecure
[   95.767227][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:a7:e1:6c:02:5f, vlan:0)
[   95.775298][    C3] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.780787][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.786011][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:a7:e1:6c:02:5f, vlan:0)
[   95.791091][    C3] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.796559][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.801601][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:a7:e1:6c:02:5f, vlan:0)
[   95.806659][    C3] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.811667][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.817709][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:a7:e1:6c:02:5f, vlan:0)
[   95.867895][ T7154] netlink: 'syz.1.336': attribute type 1 has an invalid length.
[   95.927324][ T1336] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   95.931918][ T1336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   95.941590][ T7159] PKCS7: Unknown OID: [4] 5.25.43204.122
[   95.941612][ T7159] PKCS7: Only support pkcs7_signedData type
[   95.944357][ T7154] 8021q: adding VLAN 0 to HW filter on device bond3
[   95.966047][ T1336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   95.980649][ T1336] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   95.996935][ T1336] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   96.000486][ T1336] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.055423][ T1336] usb 5-1: config 0 descriptor??
[   96.087696][ T7165] No source specified
[   96.089596][ T7164] No source specified
[   96.142180][ T7167] binder: 7166:7167 ioctl c0306201 2000000000c0 returned -14
[   96.538597][   T24] IPVS: starting estimator thread 0...
[   96.624265][ T7194] IPVS: using max 31 ests per chain, 74400 per kthread
[   97.039297][ T7228] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   97.060288][ T1336] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   97.098445][ T7234] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[   97.103214][ T7234] Error validating options; rc = [-22]
[   97.185075][ T7239] netlink: 8 bytes leftover after parsing attributes in process `syz.4.359'.
[   97.230327][ T7239] 8021q: adding VLAN 0 to HW filter on device bond1
[   97.379786][   T24] usb 5-1: USB disconnect, device number 11
[   97.404343][   T29] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[   97.524694][ T7244] netlink: 4 bytes leftover after parsing attributes in process `syz.2.363'.
[   97.575475][   T29] usb 6-1: New USB device found, idVendor=0fe9, idProduct=db55, bcdDevice=69.fb
[   97.582387][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=201
[   97.590877][   T29] usb 6-1: Product: syz
[   97.592722][   T29] usb 6-1: Manufacturer: syz
[   97.594688][   T29] usb 6-1: SerialNumber: syz
[   97.597582][ T7246] loop2: detected capacity change from 0 to 7
[   97.602477][ T7246] Dev loop2: unable to read RDB block 7
[   97.603043][   T29] usb 6-1: config 0 descriptor??
[   97.612160][ T7246]  loop2: AHDI p1 p2 p3
[   97.617116][ T7246] loop2: partition table partially beyond EOD, truncated
[   97.617877][   T29] dvb-usb: found a 'DigitalNow DVB-T Dual USB' in warm state.
[   97.620462][ T7246] loop2: p1 start 1601398130 is beyond EOD, truncated
[   97.626113][   T29] dvb-usb: bulk message failed: -22 (2/0)
[   97.627409][ T7246] loop2: p2 start 1702059890 is beyond EOD, truncated
[   97.640187][   T29] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   97.644109][   T29] dvbdev: DVB: registering new adapter (DigitalNow DVB-T Dual USB)
[   97.649466][   T29] usb 6-1: media controller created
[   97.667958][   T29] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   97.823120][ T7234] dvb-usb: bulk message failed: -22 (3/0)
[   97.833333][ T7234] overlay: ./bus is not a directory
[   97.894574][   T29] cxusb: set interface failed
[   97.896943][   T29] dvb-usb: bulk message failed: -22 (1/0)
[   97.929914][   T29] DVB: Unable to find symbol mt352_attach()
[   97.934944][   T29] dvb-usb: bulk message failed: -22 (5/0)
[   97.937882][   T29] zl10353_read_register: readreg error (reg=127, ret==-121)
[   97.941272][   T29] dvb-usb: no frontend was attached by 'DigitalNow DVB-T Dual USB'
[   98.064708][   T29] rc_core: IR keymap rc-dvico-mce not found
[   98.069904][   T29] Registered IR keymap rc-empty
[   98.088060][   T29] rc rc0: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0
[   98.093928][   T29] input: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0/input9
[   98.107788][   T29] dvb-usb: schedule remote query interval to 100 msecs.
[   98.111018][   T29] dvb-usb: DigitalNow DVB-T Dual USB successfully initialized and connected.
[   98.125061][   T29] usb 6-1: USB disconnect, device number 10
[   98.211987][   T29] dvb-usb: DigitalNow DVB-T Dual USB successfully deinitialized and disconnected.
[   98.299947][ T7261] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7261 comm=syz.2.368
[   98.349311][ T7274] loop9: detected capacity change from 0 to 7
[   98.354717][ T6456] Dev loop9: unable to read RDB block 7
[   98.354738][ T6456]  loop9: AHDI p3 p4
[   98.354752][ T6456] loop9: partition table partially beyond EOD, truncated
[   98.361063][ T6456] loop9: p3 size 4227858431 extends beyond EOD, truncated
[   98.369396][ T7274] Dev loop9: unable to read RDB block 7
[   98.369417][ T7274]  loop9: AHDI p3 p4
[   98.369430][ T7274] loop9: partition table partially beyond EOD, truncated
[   98.369520][ T7274] loop9: p3 size 4227858431 extends beyond EOD, truncated
[   98.445411][ T6456] udevd[6456]: inotify_add_watch(7, /dev/loop9p3, 10) failed: No such file or directory
[   98.475712][ T6456] udevd[6456]: inotify_add_watch(7, /dev/loop9p3, 10) failed: No such file or directory
[   98.569059][ T7282] SELinux: syz.2.375 (7282) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   98.569365][ T7287] netlink: 'syz.1.374': attribute type 1 has an invalid length.
[   98.607009][ T7292] netlink: 112 bytes leftover after parsing attributes in process `syz.0.377'.
[   98.671403][ T7299] loop6: detected capacity change from 0 to 524287999
[   98.818275][ T7299] Dev loop6: unable to read RDB block 8
[   98.821128][ T7299]  loop6: unable to read partition table
[   98.823365][ T7299] loop_reread_partitions: partition scan of loop6 (3��x��C�

) failed (rc=-5)
[   98.902987][ T7302] netlink: 'syz.4.379': attribute type 10 has an invalid length.
[   98.913620][ T7302] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.917067][ T7302] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.938487][ T7302] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.941584][ T7302] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.945099][ T7302] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.948136][ T7302] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.983336][ T7302] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   99.089085][ T7311] netlink: 'syz.0.380': attribute type 5 has an invalid length.
[   99.146951][   T55] libceph: connect (1)[c::]:6789 error -101
[   99.150326][   T55] libceph: mon0 (1)[c::]:6789 connect error
[   99.404700][   T55] libceph: connect (1)[c::]:6789 error -101
[   99.407490][   T55] libceph: mon0 (1)[c::]:6789 connect error
[   99.625140][   T55] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   99.774789][   T55] usb 9-1: Using ep0 maxpacket: 8
[   99.777043][   T55] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   99.780532][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   99.780552][   T55] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   99.780566][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   99.780580][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   99.781505][   T55] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   99.781712][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   99.781733][   T55] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   99.781750][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   99.781763][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   99.782624][   T55] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   99.822441][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   99.827137][   T55] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   99.827159][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   99.827172][   T55] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   99.830008][   T55] usb 9-1: string descriptor 0 read error: -22
[   99.843929][   T55] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   99.843945][   T55] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.862818][   T55] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   99.894823][ T7309] ceph: No mds server is up or the cluster is laggy
[  100.075120][ T7321] netlink: 20 bytes leftover after parsing attributes in process `syz.4.383'.
[  100.256191][   T29] usb 9-1: USB disconnect, device number 2
[  100.451442][   T40] kauditd_printk_skb: 183 callbacks suppressed
[  100.451457][   T40] audit: type=1400 audit(1767392891.716:803): avc:  denied  { create } for  pid=7336 comm="syz.1.389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  100.460373][   T40] audit: type=1400 audit(1767392891.716:804): avc:  denied  { write } for  pid=7336 comm="syz.1.389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  100.475312][   T40] audit: type=1400 audit(1767392891.716:805): avc:  denied  { read } for  pid=7336 comm="syz.1.389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  100.503503][   T40] audit: type=1400 audit(1767392891.726:806): avc:  denied  { module_request } for  pid=7336 comm="syz.1.389" kmod="crypto-aegis128l-aesni" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  100.520029][   T40] audit: type=1400 audit(1767392891.766:807): avc:  denied  { ioctl } for  pid=7336 comm="syz.1.389" path="socket:[17342]" dev="sockfs" ino=17342 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  100.529409][   T40] audit: type=1400 audit(1767392891.786:808): avc:  denied  { read write } for  pid=7340 comm="syz.0.390" name="video3" dev="devtmpfs" ino=959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  100.546560][   T40] audit: type=1400 audit(1767392891.786:809): avc:  denied  { open } for  pid=7340 comm="syz.0.390" path="/dev/video3" dev="devtmpfs" ino=959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  100.553578][   T40] audit: type=1400 audit(1767392891.786:810): avc:  denied  { ioctl } for  pid=7340 comm="syz.0.390" path="/dev/video3" dev="devtmpfs" ino=959 ioctlcmd=0x5608 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  100.565487][   T40] audit: type=1400 audit(1767392891.816:811): avc:  denied  { ioctl } for  pid=7336 comm="syz.1.389" path="/dev/dri/card1" dev="devtmpfs" ino=636 ioctlcmd=0x640d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  100.645920][   T40] audit: type=1400 audit(1767392891.916:812): avc:  denied  { read write } for  pid=7343 comm="syz.0.391" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  100.774258][    C3] net_ratelimit: 22752 callbacks suppressed
[  100.774272][    C3] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.781132][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  100.785938][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:a7:e1:6c:02:5f, vlan:0)
[  100.790595][    C3] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  100.794635][    C3] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.799207][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  100.804272][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:a7:e1:6c:02:5f, vlan:0)
[  100.808802][    C3] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  100.812821][    C3] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.816980][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  100.860343][ T7349] tipc: Started in network mode
[  100.862121][ T7349] tipc: Node identity ac14140f, cluster identity 4711
[  100.865266][ T7349] tipc: New replicast peer: 255.255.255.255
[  100.867569][ T7349] tipc: Enabled bearer <udp:syz2>, priority 10
[  100.878733][ T7354] netlink: 12 bytes leftover after parsing attributes in process `syz.0.391'.
[  100.882350][ T7354] tipc: Disabling bearer <udp:syz2>
[  100.891321][ T7356] netlink: 'syz.4.393': attribute type 72 has an invalid length.
[  101.756624][ T7392] netlink: 'syz.4.402': attribute type 4 has an invalid length.
[  101.923276][ T7400] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  101.928743][ T7400] block device autoloading is deprecated and will be removed.
[  101.977068][ T7402] netlink: 'syz.0.405': attribute type 3 has an invalid length.
[  101.979968][ T7403] netlink: 'syz.0.405': attribute type 3 has an invalid length.
[  102.064380][   T29] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  102.189718][ T7410] netlink: 'syz.1.407': attribute type 12 has an invalid length.
[  102.192885][ T7410] netlink: 'syz.1.407': attribute type 29 has an invalid length.
[  102.197277][ T7410] netlink: 'syz.1.407': attribute type 1 has an invalid length.
[  102.200709][ T7410] netlink: 'syz.1.407': attribute type 2 has an invalid length.
[  102.204326][ T7410] netlink: 244 bytes leftover after parsing attributes in process `syz.1.407'.
[  102.207854][ T7410] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.216732][   T29] usb 9-1: Using ep0 maxpacket: 8
[  102.221079][   T29] usb 9-1: config 0 has an invalid interface number: 141 but max is 3
[  102.224287][   T29] usb 9-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  102.227822][   T29] usb 9-1: config 0 has an invalid interface number: 164 but max is 3
[  102.231503][   T29] usb 9-1: config 0 has an invalid descriptor of length 1, skipping remainder of the config
[  102.244453][   T29] usb 9-1: config 0 has 3 interfaces, different from the descriptor's value: 4
[  102.247723][   T29] usb 9-1: config 0 has no interface number 1
[  102.259294][   T29] usb 9-1: config 0 has no interface number 2
[  102.262007][   T29] usb 9-1: config 0 interface 141 altsetting 12 endpoint 0xC has invalid maxpacket 1023, setting to 64
[  102.266238][   T29] usb 9-1: config 0 interface 141 altsetting 12 endpoint 0xE has invalid maxpacket 1023, setting to 64
[  102.269496][ T7405] 9p: Bad value for 'rfdno'
[  102.270811][   T29] usb 9-1: config 0 interface 141 altsetting 12 has a duplicate endpoint with address 0xE, skipping
[  102.277726][   T29] usb 9-1: config 0 interface 141 altsetting 12 endpoint 0x9 has invalid maxpacket 1024, setting to 64
[  102.283037][   T29] usb 9-1: config 0 interface 141 altsetting 12 endpoint 0xF has invalid maxpacket 1024, setting to 64
[  102.287352][   T29] usb 9-1: config 0 interface 141 altsetting 12 has a duplicate endpoint with address 0xE, skipping
[  102.291519][   T29] usb 9-1: config 0 interface 141 altsetting 12 has an invalid descriptor for endpoint zero, skipping
[  102.296345][   T29] usb 9-1: config 0 interface 141 altsetting 12 endpoint 0x7 has an invalid bInterval 0, changing to 7
[  102.301028][   T29] usb 9-1: config 0 interface 141 altsetting 12 has an invalid descriptor for endpoint zero, skipping
[  102.305902][   T29] usb 9-1: config 0 interface 164 altsetting 5 endpoint 0xA has invalid maxpacket 27131, setting to 64
[  102.310084][   T29] usb 9-1: config 0 interface 164 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[  102.315122][   T29] usb 9-1: config 0 interface 164 altsetting 5 has a duplicate endpoint with address 0xE, skipping
[  102.319513][   T29] usb 9-1: config 0 interface 164 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[  102.324023][   T29] usb 9-1: config 0 interface 0 altsetting 15 has a duplicate endpoint with address 0x7, skipping
[  102.328057][   T29] usb 9-1: config 0 interface 0 altsetting 15 has an endpoint descriptor with address 0x58, changing to 0x8
[  102.332235][   T29] usb 9-1: config 0 interface 0 altsetting 15 has 4 endpoint descriptors, different from the interface descriptor's value: 11
[  102.337725][   T29] usb 9-1: config 0 interface 141 has no altsetting 0
[  102.339985][   T29] usb 9-1: config 0 interface 164 has no altsetting 0
[  102.342831][   T29] usb 9-1: config 0 interface 0 has no altsetting 0
[  102.349907][   T29] usb 9-1: New USB device found, idVendor=1b3d, idProduct=010d, bcdDevice= a.ae
[  102.353533][   T29] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  102.357575][   T29] usb 9-1: Product: И
[  102.359421][   T29] usb 9-1: Manufacturer: Ъ
[  102.361090][   T29] usb 9-1: SerialNumber: у
[  102.365789][   T29] usb 9-1: config 0 descriptor??
[  102.369631][ T7395] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  102.586412][   T29] ftdi_sio 9-1:0.141: FTDI USB Serial Device converter detected
[  102.589824][   T29] ftdi_sio ttyUSB0: unknown device type: 0xaae
[  102.596096][   T29] ftdi_sio 9-1:0.164: FTDI USB Serial Device converter detected
[  102.599610][   T29] ftdi_sio ttyUSB1: unknown device type: 0xaae
[  102.604553][   T29] ftdi_sio 9-1:0.0: FTDI USB Serial Device converter detected
[  102.607826][   T29] ftdi_sio ttyUSB2: unknown device type: 0xaae
[  102.612354][   T29] usb 9-1: USB disconnect, device number 3
[  102.619738][   T29] ftdi_sio 9-1:0.141: device disconnected
[  102.624110][   T29] ftdi_sio 9-1:0.164: device disconnected
[  102.629985][   T29] ftdi_sio 9-1:0.0: device disconnected
[  103.049916][ T7423] ADFS-fs (nbd0): error: unable to read block 3, try 0
[  103.215951][ T7446] netlink: 12 bytes leftover after parsing attributes in process `syz.4.418'.
[  103.279991][ T7456] 9p: Bad value for 'rfdno'
[  103.322386][ T7460] FAULT_INJECTION: forcing a failure.
[  103.322386][ T7460] name failslab, interval 1, probability 0, space 0, times 0
[  103.329634][ T7460] CPU: 0 UID: 0 PID: 7460 Comm: syz.0.421 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  103.329655][ T7460] Tainted: [L]=SOFTLOCKUP
[  103.329659][ T7460] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.329666][ T7460] Call Trace:
[  103.329670][ T7460]  <TASK>
[  103.329675][ T7460]  dump_stack_lvl+0x16c/0x1f0
[  103.329696][ T7460]  should_fail_ex+0x512/0x640
[  103.329714][ T7460]  ? fs_reclaim_acquire+0xae/0x150
[  103.329731][ T7460]  should_failslab+0xc2/0x120
[  103.329747][ T7460]  __kmalloc_noprof+0xeb/0x910
[  103.329764][ T7460]  ? tomoyo_encode2+0x100/0x3e0
[  103.329782][ T7460]  ? tomoyo_encode2+0x100/0x3e0
[  103.329795][ T7460]  tomoyo_encode2+0x100/0x3e0
[  103.329810][ T7460]  tomoyo_encode+0x29/0x50
[  103.329824][ T7460]  tomoyo_realpath_from_path+0x18f/0x6e0
[  103.329839][ T7460]  ? tomoyo_profile+0x47/0x60
[  103.329857][ T7460]  tomoyo_path_number_perm+0x245/0x580
[  103.329868][ T7460]  ? tomoyo_path_number_perm+0x237/0x580
[  103.329886][ T7460]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  103.329899][ T7460]  ? find_held_lock+0x2b/0x80
[  103.329928][ T7460]  ? find_held_lock+0x2b/0x80
[  103.329942][ T7460]  ? hook_file_ioctl_common+0x144/0x410
[  103.329963][ T7460]  ? __fget_files+0x20e/0x3c0
[  103.329984][ T7460]  security_file_ioctl+0x9b/0x240
[  103.330000][ T7460]  __x64_sys_ioctl+0xb7/0x210
[  103.330020][ T7460]  do_syscall_64+0xcd/0xf80
[  103.330035][ T7460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.330046][ T7460] RIP: 0033:0x7f4a0698f7c9
[  103.330056][ T7460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.330066][ T7460] RSP: 002b:00007f4a0776f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  103.330078][ T7460] RAX: ffffffffffffffda RBX: 00007f4a06be5fa0 RCX: 00007f4a0698f7c9
[  103.330085][ T7460] RDX: 0000200000000180 RSI: 00000000c0049364 RDI: 0000000000000003
[  103.330090][ T7460] RBP: 00007f4a0776f090 R08: 0000000000000000 R09: 0000000000000000
[  103.330096][ T7460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.330102][ T7460] R13: 00007f4a06be6038 R14: 00007f4a06be5fa0 R15: 00007fff1cf29278
[  103.330116][ T7460]  </TASK>
[  103.330128][ T7460] ERROR: Out of memory at tomoyo_realpath_from_path.
[  103.778097][ T7475] netlink: 44 bytes leftover after parsing attributes in process `syz.4.425'.
[  103.816683][ T5939] Bluetooth: hci5: sending frame failed (-49)
[  103.821649][ T5943] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  103.971122][ T7479] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.426'.
[  104.012610][ T7481] netlink: 24 bytes leftover after parsing attributes in process `syz.2.427'.
[  105.121130][ T6824] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  105.503058][   T40] kauditd_printk_skb: 171 callbacks suppressed
[  105.503074][   T40] audit: type=1400 audit(1767392896.766:984): avc:  denied  { create } for  pid=7535 comm="syz.2.440" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  105.513055][   T40] audit: type=1400 audit(1767392896.776:985): avc:  denied  { write } for  pid=7535 comm="syz.2.440" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  105.829323][   T40] audit: type=1400 audit(1767392897.096:986): avc:  denied  { allowed } for  pid=7543 comm="syz.4.442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  105.839652][   T40] audit: type=1400 audit(1767392897.106:987): avc:  denied  { prog_load } for  pid=7543 comm="syz.4.442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  105.850116][   T40] audit: type=1400 audit(1767392897.106:988): avc:  denied  { map_read map_write } for  pid=7545 comm="syz.0.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  105.874461][   T40] audit: type=1400 audit(1767392897.146:989): avc:  denied  { create } for  pid=7547 comm="syz.4.443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  105.882806][   T40] audit: type=1400 audit(1767392897.146:990): avc:  denied  { accept } for  pid=7547 comm="syz.4.443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  105.892043][   T40] audit: type=1400 audit(1767392897.156:991): avc:  denied  { create } for  pid=7547 comm="syz.4.443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  105.921352][   T40] audit: type=1400 audit(1767392897.186:992): avc:  denied  { module_request } for  pid=7555 comm="syz.0.445" kmod="crypto-cts(cbc(serpent))" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  105.932318][   T40] audit: type=1400 audit(1767392897.196:993): avc:  denied  { write } for  pid=7556 comm="syz.4.446" name="event1" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  105.976123][ T7561] QAT: Device 2 not found
[  105.988344][ T7564] mmap: syz.4.447 (7564) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  106.012275][ T7566] loop2: detected capacity change from 0 to 7
[  106.019535][ T6456] Dev loop2: unable to read RDB block 7
[  106.021496][ T6456]  loop2: AHDI p1 p2 p3
[  106.023092][ T6456] loop2: partition table partially beyond EOD, truncated
[  106.023558][ T7568] QAT: Invalid ioctl -2114415556
[  106.026983][ T6456] loop2: p1 start 1601398130 is beyond EOD, truncated
[  106.030994][ T6456] loop2: p2 start 1702059890 is beyond EOD, truncated
[  106.044497][ T7566] Dev loop2: unable to read RDB block 7
[  106.047327][ T7566]  loop2: AHDI p1 p2 p3
[  106.049062][ T7566] loop2: partition table partially beyond EOD, truncated
[  106.052431][ T7566] loop2: p1 start 1601398130 is beyond EOD, truncated
[  106.056328][ T7566] loop2: p2 start 1702059890 is beyond EOD, truncated
[  107.226753][ T7612] trusted_key: encrypted_key: master key parameter '' is invalid
[  107.304314][ T7631] x_tables: ip6_tables: mh match: only valid for protocol 135
[  107.317232][ T7631] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  107.488411][ T7634] batadv_slave_0: entered promiscuous mode
[  107.614322][   T55] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  107.774274][   T55] usb 6-1: Using ep0 maxpacket: 8
[  107.778494][   T55] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  107.782098][   T55] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  107.786472][   T55] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  107.790510][   T55] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  107.796708][   T55] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  107.802666][   T55] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  107.806564][   T55] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.023565][   T55] usb 6-1: usb_control_msg returned -32
[  108.026394][   T55] usbtmc 6-1:16.0: can't read capabilities
[  108.379890][ T7670] netlink: 144 bytes leftover after parsing attributes in process `syz.1.463'.
[  108.585051][   T55] usb 6-1: USB disconnect, device number 11
[  108.630305][ T7684] loop2: detected capacity change from 0 to 7
[  108.631644][ T6456] Dev loop2: unable to read RDB block 7
[  108.639859][ T6456]  loop2: AHDI p1 p2 p3
[  108.639889][ T6456] loop2: partition table partially beyond EOD, truncated
[  108.640070][ T6456] loop2: p1 start 1601398130 is beyond EOD, truncated
[  108.640088][ T6456] loop2: p2 start 1702059890 is beyond EOD, truncated
[  108.642075][ T7684] Dev loop2: unable to read RDB block 7
[  108.654908][ T7684]  loop2: AHDI p1 p2 p3
[  108.654927][ T7684] loop2: partition table partially beyond EOD, truncated
[  108.655032][ T7684] loop2: p1 start 1601398130 is beyond EOD, truncated
[  108.655044][ T7684] loop2: p2 start 1702059890 is beyond EOD, truncated
[  109.196929][ T7689] netlink: 4 bytes leftover after parsing attributes in process `syz.4.477'.
[  109.215899][ T7690] netlink: 4 bytes leftover after parsing attributes in process `syz.4.477'.
[  109.342895][ T7697] netlink: 'syz.0.480': attribute type 10 has an invalid length.
[  109.368022][ T7697] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  109.479159][ T7709] program syz.2.483 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  109.491777][ T7709] macsec1: entered promiscuous mode
[  109.493722][ T7709] mac80211_hwsim hwsim6 wlan0: entered promiscuous mode
[  109.496551][ T7709] macsec1: entered allmulticast mode
[  109.498226][ T7709] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode
[  109.511424][ T7709] hub 9-0:1.0: USB hub found
[  109.514091][ T7709] hub 9-0:1.0: 1 port detected
[  109.660716][ T7715] net_ratelimit: 5836 callbacks suppressed
[  109.660728][ T7715] openvswitch: netlink: IP tunnel dst address not specified
[  109.734259][  T828] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  109.886258][  T828] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  109.891288][  T828] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  109.895619][  T828] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.902820][  T828] usb 6-1: config 0 descriptor??
[  110.108072][ T7694] netlink: 80 bytes leftover after parsing attributes in process `syz.1.478'.
[  110.111582][ T7694] openvswitch: netlink: Flow key attr not present in new flow.
[  110.317242][ T7694] raw-gadget.0 gadget.1: fail, usb_ep_set_wedge returned -11
[  110.326238][  T828] usbhid 6-1:0.0: can't add hid device: -71
[  110.326323][  T828] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  110.343702][ T7730] mkiss: ax0: crc mode is auto.
[  110.352293][  T828] usb 6-1: USB disconnect, device number 12
[  110.409978][ T7733] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  110.410006][ T7733] overlayfs: failed to set xattr on upper
[  110.410011][ T7733] overlayfs: ...falling back to redirect_dir=nofollow.
[  110.410016][ T7733] overlayfs: ...falling back to index=off.
[  110.410020][ T7733] overlayfs: ...falling back to uuid=null.
[  110.410025][ T7733] overlayfs: ...falling back to xino=off.
[  110.410082][ T7733] overlayfs: conflicting lowerdir path
[  110.473445][ T7742] netlink: 8 bytes leftover after parsing attributes in process `syz.1.494'.
[  110.473483][ T7742] netlink: 'syz.1.494': attribute type 7 has an invalid length.
[  110.473532][ T7742] netlink: 4 bytes leftover after parsing attributes in process `syz.1.494'.
[  110.487350][ T6833] netdevsim netdevsim1 netdevsim0: set [0, 1] type 1 family 0 port 8472 - 0
[  110.487380][ T6833] netdevsim netdevsim1 netdevsim1: set [0, 1] type 1 family 0 port 8472 - 0
[  110.487398][ T6833] netdevsim netdevsim1 netdevsim2: set [0, 1] type 1 family 0 port 8472 - 0
[  110.487415][ T6833] netdevsim netdevsim1 netdevsim3: set [0, 1] type 1 family 0 port 8472 - 0
[  110.524540][   T40] kauditd_printk_skb: 155 callbacks suppressed
[  110.524552][   T40] audit: type=1400 audit(1767392901.796:1149): avc:  denied  { write } for  pid=7744 comm="syz.0.496" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  110.557891][   T40] audit: type=1400 audit(1767392901.826:1150): avc:  denied  { create } for  pid=7725 comm="syz.2.490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  110.558171][   T40] audit: type=1400 audit(1767392901.826:1151): avc:  denied  { setopt } for  pid=7725 comm="syz.2.490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  110.599115][   T40] audit: type=1400 audit(1767392901.866:1152): avc:  denied  { map_create } for  pid=7748 comm="syz.1.497" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  110.627088][   T40] audit: type=1400 audit(1767392901.896:1153): avc:  denied  { create } for  pid=7750 comm="syz.1.498" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  110.627977][   T40] audit: type=1400 audit(1767392901.896:1154): avc:  denied  { ioctl } for  pid=7750 comm="syz.1.498" path="socket:[19364]" dev="sockfs" ino=19364 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  110.635599][ T7751] openvswitch: netlink: IP tunnel dst address not specified
[  110.638203][ T5943] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  110.654901][ T5943] Bluetooth: hci0: Injecting HCI hardware error event
[  110.656182][ T5939] Bluetooth: hci0: hardware error 0x00
[  110.748305][ T7758] netlink: 32 bytes leftover after parsing attributes in process `syz.2.500'.
[  110.750200][   T40] audit: type=1400 audit(1767392902.016:1155): avc:  denied  { read write } for  pid=7757 comm="syz.2.500" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  110.764433][   T40] audit: type=1400 audit(1767392902.016:1156): avc:  denied  { open } for  pid=7757 comm="syz.2.500" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  110.773528][   T40] audit: type=1400 audit(1767392902.026:1157): avc:  denied  { setopt } for  pid=7757 comm="syz.2.500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  110.795862][ T6020] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  110.856523][ T6826] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  110.957779][ T6020] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  110.957800][ T6020] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  110.957853][ T6020] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  110.957875][ T6020] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  110.957887][ T6020] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.959359][ T6020] usb 5-1: config 0 descriptor??
[  111.129469][   T40] audit: type=1400 audit(1767392902.396:1158): avc:  denied  { prog_run } for  pid=7767 comm="syz.2.503" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  111.154047][ T7771] sctp: [Deprecated]: syz.4.504 (pid 7771) Use of int in max_burst socket option.
[  111.154047][ T7771] Use struct sctp_assoc_value instead
[  111.232978][ T7777] loop2: detected capacity change from 0 to 7
[  111.238138][ T6456] Dev loop2: unable to read RDB block 7
[  111.240849][ T6456]  loop2: AHDI p1 p2 p3
[  111.242776][ T6456] loop2: partition table partially beyond EOD, truncated
[  111.247020][ T6456] loop2: p1 start 1601398130 is beyond EOD, truncated
[  111.250257][ T6456] loop2: p2 start 1702059890 is beyond EOD, truncated
[  111.255674][ T7777] Dev loop2: unable to read RDB block 7
[  111.258103][ T7777]  loop2: AHDI p1 p2 p3
[  111.260321][ T7777] loop2: partition table partially beyond EOD, truncated
[  111.263820][ T7777] loop2: p1 start 1601398130 is beyond EOD, truncated
[  111.267704][ T7777] loop2: p2 start 1702059890 is beyond EOD, truncated
[  111.401740][ T6020] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  111.605118][ T7790] comedi: valid board names for 8255 driver are:
[  111.607606][ T7790]  8255
[  111.608890][ T7790] comedi: valid board names for vmk80xx driver are:
[  111.617190][ T7790]  vmk80xx
[  111.618299][ T7790] comedi: valid board names for usbduxsigma driver are:
[  111.621287][ T7790]  usbduxsigma
[  111.622452][ T7790] comedi: valid board names for usbduxfast driver are:
[  111.627429][ T7790]  usbduxfast
[  111.628584][ T7790] comedi: valid board names for usbdux driver are:
[  111.630943][ T7790]  usbdux
[  111.632103][ T7790] comedi: valid board names for ni6501 driver are:
[  111.634506][ T7790]  ni6501
[  111.635527][ T7790] comedi: valid board names for dt9812 driver are:
[  111.638545][ T7790]  dt9812
[  111.640011][ T7790] comedi: valid board names for ni_labpc_cs driver are:
[  111.643301][ T7790]  ni_labpc_cs
[  111.645165][ T7790] comedi: valid board names for ni_daq_700 driver are:
[  111.648227][ T7790]  ni_daq_700
[  111.649828][ T7790] comedi: valid board names for labpc_pci driver are:
[  111.652948][ T7790]  labpc_pci
[  111.656268][ T7790] comedi: valid board names for adl_pci9118 driver are:
[  111.656371][ T7745] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  111.659706][ T7790]  pci9118dg
[  111.659721][ T7790]  pci9118hg
[  111.659727][ T7790]  pci9118hr
[  111.664731][ T7745] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  111.666515][ T7790] comedi: valid board names for 8255_pci driver are:
[  111.669061][ T7745] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  111.670481][ T7790]  8255_pci
[  111.670493][ T7790] comedi: valid board names for s526 driver are:
[  111.670502][ T7790]  s526
[  111.670508][ T7790] comedi: valid board names for multiq3 driver are:
[  111.670516][ T7790]  multiq3
[  111.670523][ T7790] comedi: valid board names for pcmuio driver are:
[  111.670530][ T7790]  pcmuio48
[  111.670537][ T7790]  pcmuio96
[  111.673168][ T7745] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  111.678563][ T7790] comedi: valid board names for pcmmio driver are:
[  111.699819][ T7790]  pcmmio
[  111.700913][ T7790] comedi: valid board names for pcmda12 driver are:
[  111.703207][ T7790]  pcmda12
[  111.704968][ T7790] comedi: valid board names for pcmad driver are:
[  111.707655][ T7790]  pcmad12
[  111.708937][ T7790]  pcmad16
[  111.710109][ T7790] comedi: valid board names for ni_labpc driver are:
[  111.712575][ T7790]  lab-pc-1200
[  111.714320][ T7790]  lab-pc-1200ai
[  111.715729][ T7790]  lab-pc+
[  111.716938][ T7790] comedi: valid board names for atmio16 driver are:
[  111.719299][ T7790]  atmio16
[  111.720322][ T7790]  atmio16d
[  111.721553][ T7790] comedi: valid board names for ni_at_ao driver are:
[  111.723998][ T7790]  at-ao-6
[  111.725589][ T7790]  at-ao-10
[  111.726994][ T7790] comedi: valid board names for ni_at_a2150 driver are:
[  111.729660][ T7790]  ni_at_a2150
[  111.730989][ T7790] comedi: valid board names for adq12b driver are:
[  111.733316][ T7790]  adq12b
[  111.735014][ T7790] comedi: valid board names for mpc624 driver are:
[  111.737994][ T7790]  mpc624
[  111.739671][ T7790] comedi: valid board names for c6xdigio driver are:
[  111.739746][ T1336] usb 5-1: USB disconnect, device number 12
[  111.743280][ T7790]  c6xdigio
[  111.743294][ T7790] comedi: valid board names for aio_iiro_16 driver are:
[  111.750926][ T7790]  aio_iiro_16
[  111.750988][ T7796] netlink: 64138 bytes leftover after parsing attributes in process `syz.1.510'.
[  111.752315][ T7790] comedi: valid board names for aio_aio12_8 driver are:
[  111.759683][ T7790]  aio_aio12_8
[  111.761427][ T7790]  aio_ai12_8
[  111.762706][ T7790]  aio_ao12_4
[  111.763892][ T7790] comedi: valid board names for fl512 driver are:
[  111.766684][ T7790]  fl512
[  111.768004][ T7790] comedi: valid board names for dmm32at driver are:
[  111.770575][ T7790]  dmm32at
[  111.771699][ T7790] comedi: valid board names for dt282x driver are:
[  111.774405][ T7790]  dt2821
[  111.775707][ T7790]  dt2821-f
[  111.777167][ T7790]  dt2821-g
[  111.778302][ T7790]  dt2823
[  111.779310][ T7790]  dt2824-pgh
[  111.781002][ T7790]  dt2824-pgl
[  111.782883][ T7790]  dt2825
[  111.784429][ T7790]  dt2827
[  111.786151][ T7790]  dt2828
[  111.787933][ T7790]  dt2829
[  111.789392][ T7790]  dt21-ez
[  111.790801][ T7790]  dt23-ez
[  111.792231][ T7790]  dt24-ez
[  111.793797][ T7790]  dt24-ez-pgl
[  111.795347][ T7790] comedi: valid board names for dt2817 driver are:
[  111.798188][ T7790]  dt2817
[  111.799766][ T7790] comedi: valid board names for dt2815 driver are:
[  111.803407][ T7790]  dt2815
[  111.805425][ T7790] comedi: valid board names for dt2814 driver are:
[  111.808321][ T7790]  dt2814
[  111.809635][ T7790] comedi: valid board names for dt2811 driver are:
[  111.812415][ T7790]  dt2811-pgh
[  111.814073][ T7790]  dt2811-pgl
[  111.815801][ T7790] comedi: valid board names for dt2801 driver are:
[  111.818739][ T7790]  dt2801
[  111.819927][ T7790] comedi: valid board names for das6402 driver are:
[  111.822434][ T7790]  das6402-12
[  111.823683][ T7790]  das6402-16
[  111.826025][ T7790] comedi: valid board names for das1800 driver are:
[  111.829103][ T7790]  das-1701st
[  111.830050][ T7801] vivid-000: =================  START STATUS  =================
[  111.830321][ T7790]  das-1701st-da
[  111.832955][ T7801] vivid-000: Radio HW Seek Mode: 
[  111.835854][ T7790]  das-1702st
[  111.838692][ T7790]  das-1702st-da
[  111.839904][ T7790]  das-1702hr
[  111.841386][ T7790]  das-1702hr-da
[  111.842848][ T7790]  das-1701ao
[  111.844614][ T7801] Bounded
[  111.844634][ T7801] vivid-000: Radio Programmable HW Seek: 
[  111.845784][ T7790]  das-1702ao
[  111.845790][ T7801] false
[  111.848069][ T7790]  das-1801st
[  111.848080][ T7790]  das-1801st-da
[  111.848084][ T7790]  das-1802st
[  111.848088][ T7790]  das-1802st-da
[  111.848092][ T7790]  das-1802hr
[  111.848099][ T7790]  das-1802hr-da
[  111.848103][ T7790]  das-1801hc
[  111.848107][ T7790]  das-1802hc
[  111.848111][ T7790]  das-1801ao
[  111.848114][ T7790]  das-1802ao
[  111.848118][ T7790] comedi: valid board names for das800 driver are:
[  111.848124][ T7790]  das-800
[  111.848127][ T7790]  cio-das800
[  111.848131][ T7790]  das-801
[  111.848135][ T7790]  cio-das801
[  111.848139][ T7790]  das-802
[  111.848142][ T7790]  cio-das802
[  111.848146][ T7790]  cio-das802/16
[  111.848150][ T7790] comedi: valid board names for isa-das08 driver are:
[  111.848155][ T7790]  isa-das08
[  111.848158][ T7790]  das08-pgm
[  111.848162][ T7790]  das08-pgh
[  111.848166][ T7790]  das08-pgl
[  111.848170][ T7790]  das08-aoh
[  111.848173][ T7790]  das08-aol
[  111.848177][ T7790]  das08-aom
[  111.848180][ T7790]  das08/jr-ao
[  111.848184][ T7790]  das08jr-16-ao
[  111.848188][ T7790]  pc104-das08
[  111.848192][ T7790]  das08jr/16
[  111.848196][ T7790] comedi: valid board names for das16m1 driver are:
[  111.848201][ T7790]  das16m1
[  111.848204][ T7790] comedi: valid board names for dac02 driver are:
[  111.848209][ T7790]  dac02
[  111.848212][ T7790] comedi: valid board names for rti802 driver are:
[  111.848217][ T7790]  rti802
[  111.848221][ T7790] comedi: valid board names for rti800 driver are:
[  111.848225][ T7790]  rti800
[  111.848229][ T7790]  rti815
[  111.848233][ T7790] comedi: valid board names for pcm3724 driver are:
[  111.848237][ T7790]  pcm3724
[  111.848241][ T7790] comedi: valid board names for pcl818 driver are:
[  111.848246][ T7790]  pcl818l
[  111.848249][ T7790]  pcl818h
[  111.848253][ T7790]  pcl818hd
[  111.848256][ T7790]  pcl818hg
[  111.848260][ T7790]  pcl818
[  111.848263][ T7790]  pcl718
[  111.848268][ T7790]  pcm3718
[  111.848271][ T7790] comedi: valid board names for pcl816 driver are:
[  111.848276][ T7790]  pcl816
[  111.848279][ T7790]  pcl814b
[  111.848283][ T7790] comedi: valid board names for pcl812 driver are:
[  111.848288][ T7790]  pcl812
[  111.848292][ T7790]  pcl812pg
[  111.848295][ T7790]  acl8112pg
[  111.848299][ T7790]  acl8112dg
[  111.848303][ T7790]  acl8112hg
[  111.848306][ T7790]  a821pgl
[  111.848310][ T7790]  a821pglnda
[  111.848314][ T7790]  a821pgh
[  111.848317][ T7790]  a822pgl
[  111.848321][ T7790]  a822pgh
[  111.848324][ T7790]  a823pgl
[  111.848328][ T7790]  a823pgh
[  111.848332][ T7790]  pcl813
[  111.848335][ T7790]  pcl813b
[  111.848339][ T7790]  acl8113
[  111.848342][ T7790]  iso813
[  111.848346][ T7790]  acl8216
[  111.848349][ T7790]  a826pg
[  111.848353][ T7790] comedi: valid board names for pcl730 driver are:
[  111.848358][ T7790]  pcl730
[  111.848361][ T7790]  iso730
[  111.848365][ T7790]  acl7130
[  111.848368][ T7790]  pcm3730
[  111.848372][ T7790]  pcl725
[  111.848375][ T7790]  p8r8dio
[  111.848379][ T7790]  acl7225b
[  111.848382][ T7790]  p16r16dio
[  111.848386][ T7790]  pcl733
[  111.848390][ T7790]  pcl734
[  111.848393][ T7790]  opmm-1616-xt
[  111.848397][ T7790]  pearl-mm-p
[  111.848400][ T7790]  ir104-pbf
[  111.848404][ T7790] comedi: valid board names for pcl726 driver are:
[  111.848409][ T7790]  pcl726
[  111.848412][ T7790]  pcl727
[  111.848416][ T7790]  pcl728
[  111.848420][ T7790]  acl6126
[  111.848423][ T7790]  acl6128
[  111.848427][ T7790] comedi: valid board names for pcl724 driver are:
[  111.848431][ T7790]  pcl724
[  111.848435][ T7790]  pcl722
[  111.848438][ T7790]  pcl731
[  111.848442][ T7790]  acl7122
[  111.848445][ T7790]  acl7124
[  111.848449][ T7790]  pet48dio
[  111.848453][ T7790]  pcmio48
[  111.848456][ T7790]  onyx-mm-dio
[  111.848460][ T7790] comedi: valid board names for pcl711 driver are:
[  111.848465][ T7790]  pcl711
[  111.848468][ T7790]  pcl711b
[  111.848472][ T7790]  acl8112hg
[  111.848475][ T7790]  acl8112dg
[  111.848479][ T7790] comedi: valid board names for amplc_pc263 driver are:
[  111.848484][ T7790]  pc263
[  111.848487][ T7790] comedi: valid board names for amplc_pc236 driver are:
[  111.848492][ T7790]  pc36at
[  111.848496][ T7790] comedi: valid board names for amplc_dio200 driver are:
[  111.848501][ T7790]  pc212e
[  111.848504][ T7790]  pc214e
[  111.848508][ T7790]  pc215e
[  111.848511][ T7790]  pc218e
[  111.848515][ T7790]  pc272e
[  111.848518][ T7790] comedi: valid board names for comedi_parport driver are:
[  111.848523][ T7790]  comedi_parport
[  111.848527][ T7790] comedi: valid board names for comedi_test driver are:
[  111.848532][ T7790]  comedi_test
[  111.848535][ T7790] comedi: valid board names for comedi_bond driver are:
[  111.848540][ T7790]  comedi_bond
[  112.056257][ T7801] vivid-000: RDS Rx I/O Mode: Block I/O
[  112.058718][ T7801] vivid-000: Generate RBDS Instead of RDS: false
[  112.061697][ T7801] vivid-000: RDS Reception: true
[  112.063651][ T7801] vivid-000: RDS Program Type: 0 inactive
[  112.066453][ T7801] vivid-000: RDS PS Name:  inactive
[  112.069445][ T7801] vivid-000: RDS Radio Text:  inactive
[  112.071915][ T7801] vivid-000: RDS Traffic Announcement: false inactive
[  112.075697][ T7801] vivid-000: RDS Traffic Program: false inactive
[  112.078005][ T7801] vivid-000: RDS Music: false inactive
[  112.079938][ T7801] vivid-000: ==================  END STATUS  ==================
[  112.126791][ T7814] use of bytesused == 0 is deprecated and will be removed in the future,
[  112.130110][ T7814] use the actual size instead.
[  112.196509][ T6831] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  112.246905][ T7824] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  112.251328][ T7824] SET target dimension over the limit!
[  112.272149][ T7826] netlink: 32 bytes leftover after parsing attributes in process `syz.1.521'.
[  112.714392][ T5939] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  113.004710][ T7840] openvswitch: netlink: IP tunnel TTL not specified.
[  113.288677][ T7877] xt_hashlimit: size too large, truncated to 1048576
[  113.416697][ T7877] kvm: requested 1676 ns i8254 timer period limited to 200000 ns
[  113.442141][ T7897] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  114.247937][ T7946] EXT4-fs (nbd4): unable to read superblock
[  114.425938][ T7972] xt_CT: No such helper "pptp"
[  114.963340][ T8013] netlink: 16 bytes leftover after parsing attributes in process `syz.4.563'.
[  115.043337][ T8017] netlink: 180 bytes leftover after parsing attributes in process `syz.4.564'.
[  115.047603][ T8017] netlink: 180 bytes leftover after parsing attributes in process `syz.4.564'.
[  115.056896][ T8017] netlink: 112 bytes leftover after parsing attributes in process `syz.4.564'.
[  115.085864][ T8020] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'.
[  115.118549][ T8020] veth0_to_bridge: left allmulticast mode
[  115.118573][ T8020] veth0_to_bridge: left promiscuous mode
[  115.118749][ T8020] bridge0: port 3(veth0_to_bridge) entered disabled state
[  115.155002][ T8020] bridge_slave_1: left allmulticast mode
[  115.156844][ T8020] bridge_slave_1: left promiscuous mode
[  115.159319][ T8020] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.167454][ T8020] bridge_slave_0: left allmulticast mode
[  115.169653][ T8020] bridge_slave_0: left promiscuous mode
[  115.172380][ T8020] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.248182][ T8032] netlink: 136 bytes leftover after parsing attributes in process `syz.4.569'.
[  115.251332][ T8032] netlink: 4 bytes leftover after parsing attributes in process `syz.4.569'.
[  115.317749][ T8032] netlink: 'syz.4.569': attribute type 10 has an invalid length.
[  115.331713][ T8032] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.339014][ T8032] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  115.438553][ T8037] netlink: 12 bytes leftover after parsing attributes in process `syz.1.571'.
[  115.479523][ T8037] netlink: 8 bytes leftover after parsing attributes in process `syz.1.571'.
[  115.534857][   T40] kauditd_printk_skb: 369 callbacks suppressed
[  115.534872][   T40] audit: type=1400 audit(1767392906.806:1528): avc:  denied  { read write } for  pid=8048 comm="syz.2.573" name="video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  115.565456][   T40] audit: type=1400 audit(1767392906.816:1529): avc:  denied  { open } for  pid=8048 comm="syz.2.573" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  115.573972][   T40] audit: type=1400 audit(1767392906.816:1530): avc:  denied  { name_bind } for  pid=8048 comm="syz.2.573" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  115.584398][   T40] audit: type=1400 audit(1767392906.816:1531): avc:  denied  { node_bind } for  pid=8048 comm="syz.2.573" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  115.601647][   T40] audit: type=1400 audit(1767392906.866:1532): avc:  denied  { create } for  pid=8053 comm="syz.0.574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  115.611525][ T8037] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  115.634951][   T40] audit: type=1400 audit(1767392906.886:1533): avc:  denied  { write } for  pid=8053 comm="syz.0.574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  115.642095][   T40] audit: type=1400 audit(1767392906.886:1534): avc:  denied  { nlmsg_write } for  pid=8053 comm="syz.0.574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  115.704800][   T40] audit: type=1400 audit(1767392906.976:1535): avc:  denied  { map_create } for  pid=8057 comm="syz.1.576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  115.718901][   T40] audit: type=1400 audit(1767392906.976:1536): avc:  denied  { map_read map_write } for  pid=8057 comm="syz.1.576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  115.736333][   T40] audit: type=1400 audit(1767392906.986:1537): avc:  denied  { write } for  pid=8059 comm="syz.0.577" name="001" dev="devtmpfs" ino=764 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  115.830866][ T8067] netlink: 212328 bytes leftover after parsing attributes in process `syz.2.581'.
[  115.834097][ T8067] netlink: ct family unspecified
[  116.016437][ T8083] netlink: 'syz.0.585': attribute type 11 has an invalid length.
[  116.413446][ T8104] SELinux: failed to load policy
[  116.528402][ T6826] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  116.655087][   T55] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  116.824445][   T55] usb 5-1: Using ep0 maxpacket: 8
[  116.826379][   T55] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  116.831250][   T55] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  116.835905][   T55] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  116.840405][   T55] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  116.845669][   T55] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  116.852057][   T55] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  116.856529][   T55] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.064735][   T55] usb 5-1: usb_control_msg returned -32
[  117.068486][   T55] usbtmc 5-1:16.0: can't read capabilities
[  117.256522][ T8117] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 4π!F���Vl�uc'f`�ކ�;��1�
[  117.478307][ T8128] veth1_vlan (unregistering): left allmulticast mode
[  117.578719][ T8140] netlink: 'syz.2.600': attribute type 12 has an invalid length.
[  117.658316][ T8145] F2FS-fs: Conflicting test_dummy_encryption options
[  118.215159][  T828] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  118.344315][   T55] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[  118.368795][  T828] usb 6-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  118.380494][  T828] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.386354][  T828] usb 6-1: Product: syz
[  118.388231][  T828] usb 6-1: Manufacturer: syz
[  118.390359][  T828] usb 6-1: SerialNumber: syz
[  118.495973][   T55] usb 7-1: config 0 interface 0 altsetting 251 has an endpoint descriptor with address 0x41, changing to 0x1
[  118.500647][   T55] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x1 has invalid wMaxPacketSize 0
[  118.505352][   T55] usb 7-1: config 0 interface 0 has no altsetting 0
[  118.509759][   T55] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  118.513865][   T55] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  118.517158][   T55] usb 7-1: Product: syz
[  118.518497][   T55] usb 7-1: Manufacturer: syz
[  118.519934][   T55] usb 7-1: SerialNumber: syz
[  118.523332][   T55] usb 7-1: config 0 descriptor??
[  118.529677][   T55] usb 7-1: selecting invalid altsetting 0
[  118.660539][ T6831] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  118.729855][ T1336] usb 7-1: USB disconnect, device number 5
[  119.107082][ T8199] SELinux:  Context system_u:object_r:clock_device_t:s0 is not valid (left unmapped).
[  119.391621][ T6020] usb 5-1: USB disconnect, device number 13
[  119.526737][ T8194] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  120.679845][ T8158] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  120.701067][  T828] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO
[  120.715405][   T40] kauditd_printk_skb: 229 callbacks suppressed
[  120.715425][   T40] audit: type=1400 audit(1767392911.966:1767): avc:  denied  { unmount } for  pid=6581 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  120.730180][  T828] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71
[  120.735486][  T828] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  120.741313][   T40] audit: type=1400 audit(1767392912.006:1768): avc:  denied  { allowed } for  pid=8233 comm="syz.1.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  120.752153][   T40] audit: type=1400 audit(1767392912.006:1769): avc:  denied  { create } for  pid=8233 comm="syz.1.627" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  120.769247][  T828] lan78xx 6-1:1.0: probe with driver lan78xx failed with error -71
[  120.778082][   T40] audit: type=1400 audit(1767392912.006:1770): avc:  denied  { map } for  pid=8233 comm="syz.1.627" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=22950 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  120.788958][   T40] audit: type=1400 audit(1767392912.006:1771): avc:  denied  { read write } for  pid=8233 comm="syz.1.627" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=22950 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  120.802751][  T828] usb 6-1: USB disconnect, device number 13
[  120.812638][   T40] audit: type=1400 audit(1767392912.006:1772): avc:  denied  { create } for  pid=8233 comm="syz.1.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  120.830619][   T40] audit: type=1400 audit(1767392912.006:1773): avc:  denied  { read } for  pid=8233 comm="syz.1.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  120.849282][   T40] audit: type=1400 audit(1767392912.006:1774): avc:  denied  { write } for  pid=8233 comm="syz.1.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  120.862517][   T40] audit: type=1400 audit(1767392912.096:1775): avc:  denied  { create } for  pid=8244 comm="syz.1.630" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  120.871450][   T40] audit: type=1400 audit(1767392912.096:1776): avc:  denied  { write } for  pid=8244 comm="syz.1.630" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  120.991065][ T8256] autofs: Unknown parameter 'i������:���$ܚn�$_���
[  120.991065][ T8256] �ڦ��kr ��m?�(zM-�Tfb�@'
[  120.998594][ T8251] kvm: pic: non byte write
[  121.003428][ T8257] kvm: vcpu 0: requested 3328 ns lapic timer period limited to 200000 ns
[  121.037675][ T8245] kvm: pic: non byte write
[  121.083682][ T8264] __nla_validate_parse: 7 callbacks suppressed
[  121.083697][ T8264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.636'.
[  121.151150][ T8267] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.637'.
[  121.253931][ T5939] Bluetooth: hci4: ACL packet for unknown connection handle 1769
[  121.864466][   T54] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  122.015923][   T54] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  122.019150][   T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.034993][   T54] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  122.038698][   T54] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  122.041352][   T54] usb 7-1: Manufacturer: syz
[  122.061513][   T54] usb 7-1: config 0 descriptor??
[  122.095776][ T8316] Bluetooth: MGMT ver 1.23
[  122.124261][   T54] rc_core: IR keymap rc-hauppauge not found
[  122.126789][   T54] Registered IR keymap rc-empty
[  122.129272][   T54] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  122.138076][   T54] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input14
[  122.273320][ T6020] usb 7-1: USB disconnect, device number 6
[  122.468685][ T8333] bridge_slave_0: default FDB implementation only supports local addresses
[  122.474045][ T8333] netlink: 96 bytes leftover after parsing attributes in process `syz.1.655'.
[  122.488446][ T8328] bond2: Unable to set down delay as MII monitoring is disabled
[  122.493783][ T8328] bond2 (unregistering): Released all slaves
[  122.526099][ T8336] netlink: 8 bytes leftover after parsing attributes in process `syz.4.653'.
[  122.683382][ T8341] netlink: 360 bytes leftover after parsing attributes in process `syz.1.656'.
[  122.841878][ T8354] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  122.853981][ T8354] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  122.873236][ T6831] Bluetooth: hci5: Frame reassembly failed (-84)
[  122.990863][ T8360] sp0: Synchronizing with TNC
[  123.003383][ T8359] [U] �
[  123.194445][ T5943] ==================================================================
[  123.198394][ T5943] BUG: KASAN: slab-use-after-free in le_read_features_complete+0x5b/0x390
[  123.202504][ T5943] Write of size 4 at addr ffff888013378010 by task kworker/u33:5/5943
[  123.204283][ T5942] Bluetooth: hci3: command 0x2016 tx timeout
[  123.208249][ T5943] 
[  123.208269][ T5943] CPU: 0 UID: 0 PID: 5943 Comm: kworker/u33:5 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  123.208292][ T5943] Tainted: [L]=SOFTLOCKUP
[  123.208298][ T5943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.208317][ T5943] Workqueue: hci3 hci_cmd_sync_work
[  123.208345][ T5943] Call Trace:
[  123.208353][ T5943]  <TASK>
[  123.208359][ T5943]  dump_stack_lvl+0x116/0x1f0
[  123.208380][ T5943]  print_report+0xcd/0x630
[  123.208414][ T5943]  ? __virt_addr_valid+0x81/0x610
[  123.208430][ T5943]  ? __phys_addr+0xe8/0x180
[  123.208446][ T5943]  ? le_read_features_complete+0x5b/0x390
[  123.208466][ T5943]  kasan_report+0xe0/0x110
[  123.208484][ T5943]  ? le_read_features_complete+0x5b/0x390
[  123.208507][ T5943]  kasan_check_range+0x100/0x1b0
[  123.208531][ T5943]  le_read_features_complete+0x5b/0x390
[  123.208554][ T5943]  hci_cmd_sync_work+0x1ff/0x470
[  123.208576][ T5943]  ? __pfx_le_read_features_complete+0x10/0x10
[  123.208597][ T5943]  process_one_work+0x9ba/0x1b20
[  123.208620][ T5943]  ? __pfx_process_one_work+0x10/0x10
[  123.208642][ T5943]  ? assign_work+0x1a0/0x250
[  123.208662][ T5943]  worker_thread+0x6c8/0xf10
[  123.208688][ T5943]  ? __pfx_worker_thread+0x10/0x10
[  123.208708][ T5943]  kthread+0x3c5/0x780
[  123.208725][ T5943]  ? __pfx_kthread+0x10/0x10
[  123.208742][ T5943]  ? rcu_is_watching+0x12/0xc0
[  123.208757][ T5943]  ? __pfx_kthread+0x10/0x10
[  123.208776][ T5943]  ret_from_fork+0x983/0xb10
[  123.208796][ T5943]  ? __pfx_ret_from_fork+0x10/0x10
[  123.208814][ T5943]  ? rcu_is_watching+0x12/0xc0
[  123.208828][ T5943]  ? __switch_to+0x7af/0x10d0
[  123.208853][ T5943]  ? __pfx_kthread+0x10/0x10
[  123.208873][ T5943]  ret_from_fork_asm+0x1a/0x30
[  123.208901][ T5943]  </TASK>
[  123.208906][ T5943] 
[  123.283930][ T5943] Allocated by task 5939:
[  123.285358][ T5943]  kasan_save_stack+0x33/0x60
[  123.286871][ T5943]  kasan_save_track+0x14/0x30
[  123.288560][ T5943]  __kasan_kmalloc+0xaa/0xb0
[  123.290498][ T5943]  __hci_conn_add+0xf8/0x1cc0
[  123.292113][ T5943]  hci_conn_add_unset+0x76/0x130
[  123.293827][ T5943]  le_conn_complete_evt+0x639/0x1fa0
[  123.295519][ T5943]  hci_le_enh_conn_complete_evt+0x23d/0x3b0
[  123.297568][ T5943]  hci_le_meta_evt+0x357/0x610
[  123.299549][ T5943]  hci_event_packet+0x685/0x1210
[  123.301335][ T5943]  hci_rx_work+0x2c9/0x1020
[  123.302861][ T5943]  process_one_work+0x9ba/0x1b20
[  123.304489][ T5943]  worker_thread+0x6c8/0xf10
[  123.306063][ T5943]  kthread+0x3c5/0x780
[  123.307457][ T5943]  ret_from_fork+0x983/0xb10
[  123.309155][ T5943]  ret_from_fork_asm+0x1a/0x30
[  123.310811][ T5943] 
[  123.311809][ T5943] Freed by task 5939:
[  123.313371][ T5943]  kasan_save_stack+0x33/0x60
[  123.315020][ T5943]  kasan_save_track+0x14/0x30
[  123.316577][ T5943]  kasan_save_free_info+0x3b/0x60
[  123.318443][ T5943]  __kasan_slab_free+0x5f/0x80
[  123.320533][ T5943]  kfree+0x2f8/0x6e0
[  123.322029][ T5943]  device_release+0xa4/0x240
[  123.323667][ T5943]  kobject_put+0x1ef/0x6f0
[  123.325648][ T5943]  device_unregister+0x2f/0xe0
[  123.327333][ T5943]  hci_conn_del_sysfs+0xdd/0x1a0
[  123.329170][ T5943]  hci_conn_del+0x680/0x11d0
[  123.331154][ T5943]  hci_disconn_complete_evt+0x410/0xa30
[  123.333341][ T5943]  hci_event_packet+0xa39/0x1210
[  123.334996][ T5943]  hci_rx_work+0x2c9/0x1020
[  123.336487][ T5943]  process_one_work+0x9ba/0x1b20
[  123.338180][ T5943]  worker_thread+0x6c8/0xf10
[  123.339931][ T5943]  kthread+0x3c5/0x780
[  123.341312][ T5943]  ret_from_fork+0x983/0xb10
[  123.342908][ T5943]  ret_from_fork_asm+0x1a/0x30
[  123.344697][ T5943] 
[  123.345661][ T5943] The buggy address belongs to the object at ffff888013378000
[  123.345661][ T5943]  which belongs to the cache kmalloc-8k of size 8192
[  123.351729][ T5943] The buggy address is located 16 bytes inside of
[  123.351729][ T5943]  freed 8192-byte region [ffff888013378000, ffff88801337a000)
[  123.357693][ T5943] 
[  123.358731][ T5943] The buggy address belongs to the physical page:
[  123.361551][ T5943] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x13378
[  123.365118][ T5943] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  123.369315][ T5943] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  123.373023][ T5943] page_type: f5(slab)
[  123.374754][ T5943] raw: 00fff00000000040 ffff88801b443180 0000000000000000 dead000000000001
[  123.378453][ T5943] raw: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  123.382243][ T5943] head: 00fff00000000040 ffff88801b443180 0000000000000000 dead000000000001
[  123.385961][ T5943] head: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  123.389216][ T5943] head: 00fff00000000003 ffffea00004cde01 00000000ffffffff 00000000ffffffff
[  123.392459][ T5943] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  123.396223][ T5943] page dumped because: kasan: bad access detected
[  123.399207][ T5943] page_owner tracks the page as allocated
[  123.401628][ T5943] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5654, tgid 5654 (dhcpcd-run-hook), ts 38341909556, free_ts 38325368076
[  123.411398][ T5943]  post_alloc_hook+0x1af/0x220
[  123.413559][ T5943]  get_page_from_freelist+0xd0b/0x31a0
[  123.415872][ T5943]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  123.418429][ T5943]  alloc_pages_mpol+0x1fb/0x550
[  123.420617][ T5943]  new_slab+0x2c3/0x430
[  123.422073][ T5943]  ___slab_alloc+0xe18/0x1c90
[  123.423749][ T5943]  __slab_alloc.constprop.0+0x63/0x110
[  123.425577][ T5943]  __kmalloc_cache_noprof+0x485/0x800
[  123.427391][ T5943]  tomoyo_init_log+0xc8a/0x2140
[  123.429248][ T5943]  tomoyo_supervisor+0x302/0x13b0
[  123.431151][ T5943]  tomoyo_env_perm+0x191/0x200
[  123.433060][ T5943]  tomoyo_find_next_domain+0xec1/0x20b0
[  123.435063][ T5943]  tomoyo_bprm_check_security+0x12d/0x1d0
[  123.436921][ T5943]  security_bprm_check+0x1b9/0x1e0
[  123.438694][ T5943]  bprm_execve+0x81e/0x1620
[  123.440219][ T5943]  do_execveat_common.isra.0+0x4a5/0x610
[  123.442203][ T5943] page last free pid 5653 tgid 5653 stack trace:
[  123.444414][ T5943]  __free_frozen_pages+0x7df/0x1170
[  123.446535][ T5943]  __put_partials+0x130/0x170
[  123.448606][ T5943]  qlist_free_all+0x4c/0xf0
[  123.450656][ T5943]  kasan_quarantine_reduce+0x195/0x1e0
[  123.453145][ T5943]  __kasan_slab_alloc+0x69/0x90
[  123.455136][ T5943]  __kmalloc_noprof+0x2f6/0x910
[  123.457054][ T5943]  tomoyo_supervisor+0x45b/0x13b0
[  123.459320][ T5943]  tomoyo_path_permission+0x270/0x3b0
[  123.461178][ T5943]  tomoyo_path_perm+0x362/0x460
[  123.462872][ T5943]  security_inode_getattr+0x116/0x290
[  123.464752][ T5943]  vfs_fstat+0x4b/0xe0
[  123.466207][ T5943]  __do_sys_newfstat+0x87/0x100
[  123.467872][ T5943]  do_syscall_64+0xcd/0xf80
[  123.469703][ T5943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.472130][ T5943] 
[  123.473025][ T5943] Memory state around the buggy address:
[  123.474907][ T5943]  ffff888013377f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  123.477742][ T5943]  ffff888013377f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  123.481209][ T5943] >ffff888013378000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  123.483951][ T5943]                          ^
[  123.485536][ T5943]  ffff888013378080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  123.488323][ T5943]  ffff888013378100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  123.491562][ T5943] ==================================================================
[  123.496769][ T5943] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  123.499565][ T5943] CPU: 0 UID: 0 PID: 5943 Comm: kworker/u33:5 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  123.503588][ T5943] Tainted: [L]=SOFTLOCKUP
[  123.505296][ T5943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.509466][ T5943] Workqueue: hci3 hci_cmd_sync_work
[  123.511228][ T5943] Call Trace:
[  123.512426][ T5943]  <TASK>
[  123.513735][ T5943]  dump_stack_lvl+0x3d/0x1f0
[  123.516084][ T5943]  vpanic+0x640/0x6f0
[  123.518004][ T5943]  panic+0xca/0xd0
[  123.519750][ T5943]  ? __pfx_panic+0x10/0x10
[  123.522086][ T5943]  ? le_read_features_complete+0x5b/0x390
[  123.524918][ T5943]  ? preempt_schedule_common+0x44/0xc0
[  123.527265][ T5943]  ? preempt_schedule_thunk+0x16/0x30
[  123.529496][ T5943]  ? check_panic_on_warn+0x1f/0xb0
[  123.531306][ T5943]  check_panic_on_warn+0xab/0xb0
[  123.533224][ T5943]  end_report+0x107/0x160
[  123.534678][ T5943]  kasan_report+0xee/0x110
[  123.536186][ T5943]  ? le_read_features_complete+0x5b/0x390
[  123.538317][ T5943]  kasan_check_range+0x100/0x1b0
[  123.540160][ T5943]  le_read_features_complete+0x5b/0x390
[  123.542771][ T5943]  hci_cmd_sync_work+0x1ff/0x470
[  123.544848][ T5943]  ? __pfx_le_read_features_complete+0x10/0x10
[  123.546951][ T5943]  process_one_work+0x9ba/0x1b20
[  123.548663][ T5943]  ? __pfx_process_one_work+0x10/0x10
[  123.550604][ T5943]  ? assign_work+0x1a0/0x250
[  123.552244][ T5943]  worker_thread+0x6c8/0xf10
[  123.553890][ T5943]  ? __pfx_worker_thread+0x10/0x10
[  123.555572][ T5943]  kthread+0x3c5/0x780
[  123.556917][ T5943]  ? __pfx_kthread+0x10/0x10
[  123.558710][ T5943]  ? rcu_is_watching+0x12/0xc0
[  123.560680][ T5943]  ? __pfx_kthread+0x10/0x10
[  123.562283][ T5943]  ret_from_fork+0x983/0xb10
[  123.563933][ T5943]  ? __pfx_ret_from_fork+0x10/0x10
[  123.565786][ T5943]  ? rcu_is_watching+0x12/0xc0
[  123.567581][ T5943]  ? __switch_to+0x7af/0x10d0
[  123.569477][ T5943]  ? __pfx_kthread+0x10/0x10
[  123.571227][ T5943]  ret_from_fork_asm+0x1a/0x30
[  123.572817][ T5943]  </TASK>
[  123.574717][ T5943] Kernel Offset: disabled
[  123.576141][ T5943] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:24:18  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85326435 RDI=ffffffff9aeedc00 RBP=ffffffff9aeedbc0 RSP=ffffc900041af588
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3333313038387257
R12=0000000000000000 R13=0000000000000038 R14=ffffffff9aeedbc0 R15=ffffffff853263d0
RIP=ffffffff8532645f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68f5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4a06be7dac CR3=000000003f722000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00307265646e6962 2f73667265646e69
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe79b215050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe79b21505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe79b215057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe79b21506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe79b2150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe79b2151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c3a5bf813e72a1cb e646a9ee80797293 76d05acfff73aba0 081c00781dcbe4f0
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 52dddf7d8e93f77d b2dc24a1c8038868 c3a5bf813e72a1cb e646000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 76d05acfff73aba0 081c00781dcbe4f0 e75e39077a9a8492 4f90ff6fbfdeae86
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffff888031660080 RCX=0000000000000000 RDX=1ffff110062cc029
RSI=0000000000000002 RDI=00000000000001ba RBP=0000000000000824 RSP=ffffc900006a0b88
R8 =000000000000043f R9 =fffffbfff211171a R10=ffffffff9088b8d7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000002 R15=ffff88803166015c
RIP=ffffffff8191dc80 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69f5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4a0774ed58 CR3=000000002b096000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000003bf12
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555561fe2cec 0000555561fda5e0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a403bad20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555561fcb599 0000555561fcab20
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555561fc7238
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00001000080075f2 30ff8a0509000000 00000303050900f0 22bd020000040900
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 011ad20100000208 06048004040473e2 0063666e01ffffff 00080007000c0008
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0890030fffffffff ffff040880030803 8006050380040008 0001000000080606
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8204000c03000000 0404060803380800 0003000407800307 800408a003000800
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010010000fffffff ffffff0401000000 080606017d8a0010 0008800401000002
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 080606015ca20008 0008e00300100008 d00300100008c003 02100008b0033810
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007900300000006 080630030204002c 0310040028030004 0024030002002203
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040200200304ddfe eff8080018030785 f4d4080010031082 04000c0300000004
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=ffff88806a443060 RCX=ffffffff81b28bb1 RDX=ffff888026c1a4c0
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000003 RSP=ffffc9000353f800
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=ffff888026c1aff0
R12=dffffc0000000000 R13=ffffed100d48860d R14=0000000000000001 R15=0000000000000000
RIP=ffffffff81bee368 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6af5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fc2c5fe7dac CR3=000000000e184000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000004090010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe268015050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe26801505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe268015057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe26801506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe2680150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe2680151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 64616f6c66666f5f 776f6c6600010011 800100288004002c 0000000200000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010a020000017c00 000000327a797300 0200090000000004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000307a797300 0100098002001000 00000064616f6c66 666f5f776f6c6600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000005b23 235d53c4fafe3f65 000000000000b7a4 f67f050002f0c14e
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 b83ce0c9c9d4f068 f21322d39c24fd76 becefa842bb6ed65 b1e129290902f143
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7ef1d67bc68d0100 0147f50553cf5bc2 2ad5110000001400 000000327a797300
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300090000000030 7a7973000000ffe6 000003010a030000 002c030004004002
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=000000000000002a RCX=ffffffff819d0ed1 RDX=ffff888022cf0000
RSI=0000000000000000 RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc9000419f940
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffff888022cf0b30
R12=1ffff92000833f2b R13=0000000000000200 R14=ffff888027e74980 R15=ffffc9000419fa10
RIP=ffffffff81bee8c0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bf5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4a0774df98 CR3=000000003898a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000050 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a06a15050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a06a1505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a06a15057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a06a1506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a06a150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a06a151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a06bba4a8 00007f4a06bba4a0 00007f4a06bba498 00007f4a06bba470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a0771d100 00007f4a06bba460 00007f4a06bb0004 00080000000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a06bba4b8 00007f4a06bba4b0 00007f4a06bba4a8 00007f4a06bba4a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000