last executing test programs:

1m31.388692246s ago: executing program 3 (id=551):
r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
r1 = eventfd2(0x2, 0x80001)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000100)={0x0, r1})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000001740)=""/192, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=""/57, 0x0, &(0x7f0000000500)=""/4096, 0xeeef0000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

1m31.387485514s ago: executing program 3 (id=553):
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000002300), 0x40000, 0x0)
fsetxattr$system_posix_acl(r0, &(0x7f00000000c0)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)

1m31.320590746s ago: executing program 3 (id=555):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0xffffff3f, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000040)={0x9a, @time={0x3, 0x9a8}, 0x0, {0x4}, 0xfe, 0x0, 0x1})
pipe2(&(0x7f0000001040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r2, &(0x7f00000000c0)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
ioctl$VIDIOC_G_FREQUENCY(r4, 0xc02c5638, &(0x7f0000000000)={0x1, 0x2})
tee(r1, r3, 0xfffffffffffffc01, 0x0)
tee(r1, r3, 0x60000000000, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r5, 0x84, 0x10, &(0x7f0000000280)=@sack_info={0x0, 0xb, 0x1}, 0xc)

1m30.467150715s ago: executing program 3 (id=594):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41, 0x0, 0x10000003}}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
setsockopt$TIPC_IMPORTANCE(r1, 0x10f, 0x7f, &(0x7f0000000140)=0xfffffff9, 0x4)
listen(r0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0}, 0x20001)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
r5 = accept4$unix(r4, &(0x7f0000000080)=@abs, &(0x7f00000001c0)=0x6e, 0x800)
sendmsg(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000003c0)="62e873bb1ae3d33b20e60dd4677670f69eb26d4378ac8fdae7781c225ecd30818487f02c3a75c911d19b6ab7f297d5da426044f43cc8b5d7505bb52aa2a8a4413ae25931fe4f4d866465c4e53a7564bd19707881b343bb86ecaefd71dd50504d523c61865e06f7821a879bc7687c9f779e56a6f6915f6bb536a6eedb34950a89547f74de5a9b64768b753531e660fc12e3124410e0d13ecd11c4bfc721ec6cb7b626341fd4b72448e95bdaa2fcfdb393a7c34bfec4b98af023537650a7f7aac7325234b7f4262eb18e9ab4067406a5cd", 0xd0}], 0x1, &(0x7f0000000680)=[{0x88, 0x1, 0x4, "9ce4407dba21273d25f0e96e4cf2438915e151c961656715a52b56ce74fcb23ecc7db00820f2078341b2cca4f88cea6cee625ff1f8ae933305deab55fa64aefa0dd149b5f655d9bc13a6400cc633e9c6a98da08165356a859ae837f94de2fc970d04ca66dd5b1d0df39fab26d91837b5220ea6"}, {0x18, 0x112, 0x5, "e307f7571383adec"}, {0x20, 0x10f, 0x4, "e1365e0188cf59c0cd94"}, {0x78, 0x104, 0x10, "6abfbd94e988d2a36972299adefa56b86be8a3fc9d545b3598335e8892797d235fe88767a98dfaad74ea5700befcdc51e14796848c8b499865c3d730089f6852e16de950827cc80d31cfb21e2f3b22cfda9572663282f5d5853706ff021a4f7db2d93655cca0efc1"}, {0x20, 0x101, 0x6, "e8d28f52da42dd039feac6"}, {0x78, 0x9e8626794ebbe359, 0x0, "c9da16bd8d86dcf2965b32ec6a68a86ac9859f701eb6d795dc670e64dad2343bb31260005c57691a84761aea9fd8938ed4721d4b48968ba7a19e72860e27e9993efa0f17f57b3f424ef4f73b01aa703df17af3cd51ee3bfea85757bf7875267fa4e7ee6a25"}], 0x1d0}, 0xc801)
mount$bind(&(0x7f00000002c0)='./file0/file1\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000089a38000000000000000001e00000000a3"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r6}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setns(r4, 0x4000000)

1m30.388923646s ago: executing program 3 (id=598):
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000000100)={&(0x7f0000000800)=[0x7f, 0x14, 0x1, 0x1, 0x7, 0xffffffff, 0x2, 0x7, 0x59, 0xfffffff1, 0x3, 0xfffffffe, 0x81, 0x0, 0x1, 0x2, 0x101, 0x0, 0x3, 0x8, 0x4, 0x6, 0x4, 0x7, 0x3, 0x7f, 0xc3a, 0x6, 0x9, 0x400, 0x8, 0x44a8ffb, 0xa2, 0x9, 0x5, 0x1, 0x1, 0xad0, 0x9, 0x7, 0x1, 0x8, 0x10, 0x1, 0x1ff, 0x1, 0x1, 0x8, 0x3ff, 0x2, 0x7, 0x2, 0x9, 0x3, 0x992d, 0xc00000, 0xfffffffa, 0x0, 0x3, 0x1, 0x9, 0x1, 0x1, 0x7, 0x4, 0x81, 0x0, 0x9, 0x9, 0x101, 0xc2e3, 0x2, 0x8, 0x0, 0xc, 0xfb8d, 0x6, 0x5, 0x12, 0x1000, 0x81, 0x7, 0x6, 0x800, 0x9, 0x0, 0x2, 0xfffffffe, 0xb, 0xe49, 0x9, 0x1, 0x3ff, 0xf36f, 0xe, 0x6, 0x1, 0x5, 0x0, 0x5, 0x1, 0x7fffffff, 0x8, 0x34c, 0xc86, 0x2, 0x7ff, 0x1ff, 0x0, 0x4d, 0x4, 0x3, 0x9, 0x34f4, 0x80000001, 0xfffffff9, 0x1000, 0x6, 0x8001, 0x2c91, 0x81, 0x3, 0x3, 0x5, 0x8, 0x47, 0x58, 0x1ff, 0xa, 0x17, 0x5, 0x0, 0xc, 0x4e6, 0x3, 0x4, 0x3, 0x7, 0x5, 0x835, 0x350a, 0x8000, 0x8001, 0x81, 0x6, 0x4, 0x5, 0x1, 0x23c, 0xfffffff8, 0x3, 0xffff, 0x10, 0xd, 0x7, 0x10001, 0x9, 0xffff2996, 0x10001, 0xd, 0x5, 0x3, 0x3, 0x6, 0x8, 0x5, 0x1000, 0x67, 0x8, 0x5, 0x389, 0x4, 0x2, 0x3ff, 0xa4, 0x8, 0x3, 0x7, 0x6, 0x5, 0x7ff, 0x5b, 0x400, 0xffff, 0x8, 0x71, 0x4, 0x9, 0x1, 0x5, 0xaf, 0x0, 0xffff, 0x5, 0x0, 0x2, 0x1, 0x8, 0x505ad8c0, 0x4, 0xfffff27e, 0x3, 0x2, 0x200, 0x7745dedb, 0x6, 0x80000000, 0xd, 0x2, 0x3a, 0x4, 0x3, 0x4, 0x3, 0x4, 0x5, 0x6, 0x9, 0x7, 0x1000, 0x6, 0x0, 0x0, 0x3, 0x7, 0x2, 0x7, 0x2, 0x1, 0x401, 0xfffffffd, 0x3, 0x4, 0x7e, 0x9, 0x5, 0x5, 0x5, 0xfffffff7, 0x6, 0x2, 0x8, 0x9, 0x1, 0x80000001, 0x80000001, 0x2520, 0x5, 0x4, 0x7, 0x6, 0x8, 0x7, 0x52, 0x0, 0x8, 0x3, 0xe8f4, 0x5, 0x3, 0x3, 0x1000, 0x6, 0x8001, 0x1, 0x1, 0x4e, 0x5, 0x8, 0x9, 0x3, 0x2, 0x5, 0x9, 0x2, 0x9, 0x9, 0x8, 0x2, 0x9, 0x3, 0x5, 0x8001, 0x7, 0x20004000, 0x80000001, 0x4, 0x2, 0x8001, 0x10000, 0x1, 0x9, 0x1, 0x4, 0xb040, 0x9c1, 0x3, 0x3, 0x5, 0x5, 0x2c, 0x8, 0x2c, 0x5, 0x2, 0x5, 0x2, 0x9000, 0x6, 0x9, 0x9b, 0x1, 0x0, 0x2, 0x514c, 0x6, 0x51, 0x7, 0x5, 0x1, 0x10000, 0x6, 0x2, 0x9, 0x7dd6, 0x7, 0x75, 0x0, 0x6, 0x8, 0x4254, 0x8000, 0x1, 0xa8fd, 0x9, 0x1, 0x0, 0x6, 0xfffffff9, 0x7ff, 0xaa51, 0x3a, 0x3ff, 0x56c, 0x1, 0x0, 0x9, 0x800, 0x0, 0x5, 0x4, 0x440, 0xfff, 0x1, 0x0, 0xed, 0x4, 0x1, 0x96e99f7, 0x2400000, 0x4, 0x7, 0x7ff, 0x8, 0x4e, 0x7, 0x7f, 0x2, 0x0, 0x6, 0x4, 0x2, 0x0, 0x7, 0xfffffff8, 0xd, 0x5, 0x2, 0x2, 0x7, 0x4, 0x5, 0x3, 0x7, 0xfffffc59, 0x1, 0x8000, 0xf716, 0x6, 0x4, 0x2, 0xaa, 0xffffffff, 0xffffff67, 0x5, 0x3, 0x7f, 0x9, 0x1, 0xdf5, 0x4, 0xfffffffc, 0x6, 0x0, 0x5, 0x3ff, 0xcb0, 0x2, 0x7a96, 0x467, 0x0, 0xdac, 0xffffffff, 0xffff, 0x7fffffff, 0x0, 0x5, 0x7ff, 0x6c, 0x800, 0xa, 0x2, 0x6, 0x8, 0x0, 0xd673, 0x10001, 0x8, 0x0, 0x80000001, 0x1, 0xd27, 0x8, 0xfff, 0x9, 0x18c2, 0x5, 0x2, 0x2, 0x9, 0x59, 0x8854, 0x0, 0x273b, 0x3, 0x400, 0x0, 0x5b, 0xa, 0x0, 0x3, 0x2, 0x0, 0x7ff, 0x5, 0xfffffffc, 0x3, 0x3, 0x8, 0x6, 0x9, 0x6a2, 0x8, 0x7, 0x13, 0xdae, 0x3, 0x1ff, 0x4, 0x1, 0x1, 0x5, 0x4, 0x0, 0x0, 0x6, 0x5, 0x1, 0x8001, 0x8, 0x0, 0x1, 0x5, 0x81, 0x0, 0x80000001, 0x84, 0x0, 0xdd7, 0xa2, 0x3, 0xe166, 0x5, 0x1, 0xfffffffa, 0x9, 0xe6, 0x7c53, 0x4, 0x450, 0x6, 0x7fff, 0x7, 0xd, 0xcbf8, 0x8, 0x8, 0x16de, 0xfffffb9a, 0x8001, 0x6, 0x7ff, 0xf, 0x6, 0x3, 0x7, 0xe40, 0x1, 0x3, 0x72, 0x10, 0xcc3, 0x86c00000, 0x3, 0xc0000000, 0x9, 0x0, 0x3, 0x2, 0xc826, 0x9, 0xfffffff1, 0x6, 0xfffffffb, 0x1, 0x8e8, 0x9, 0x4, 0x6, 0x3, 0x3, 0x59b3, 0x3, 0x2, 0x9, 0x400, 0x5, 0x28, 0x5, 0x8001, 0x2, 0xffffffff, 0x10, 0x3, 0x8, 0x0, 0x5cd4, 0xfffffffb, 0x4, 0x0, 0x100, 0x0, 0x5, 0xfffffffb, 0x2, 0x9, 0x7, 0x6, 0x2, 0x688d, 0x100, 0x7, 0x0, 0xc, 0x4, 0x3, 0x1fe3, 0x5, 0x3, 0x81, 0x4, 0x3, 0x9, 0x5, 0xf37a, 0x1, 0x6, 0x116, 0xc, 0x10001, 0x3, 0x0, 0x8000, 0x9, 0xfff, 0x4, 0x7, 0xa264, 0x7, 0x8000, 0x2, 0x6, 0xe, 0x0, 0x200, 0x101, 0x4, 0x4, 0x9, 0x95e1, 0x0, 0x7fff, 0x9, 0x81, 0xb, 0x9, 0x12f, 0x1, 0x0, 0x5, 0x9, 0xe7, 0x5, 0x401, 0x80000000, 0x0, 0x9, 0x7ff, 0xfffffffb, 0x7, 0x6a7, 0x9f69, 0xda, 0x10001, 0x9, 0x2, 0x8, 0x9de, 0x2, 0x10000, 0x8001, 0x5538, 0x9, 0x0, 0xc, 0x3, 0x310, 0x7, 0x5, 0x9, 0x5, 0x80000000, 0x8000, 0x5, 0xb9500000, 0x2, 0x1ff, 0x7, 0xdaf1, 0x4, 0x40, 0x3d8, 0x4, 0x9, 0x3a75, 0xb8, 0x7, 0x756, 0x6, 0xfff, 0x6, 0x8, 0x7, 0x0, 0x9, 0x1, 0xfffffffc, 0x2, 0x0, 0x4, 0x0, 0x6, 0x81, 0x8b7, 0x2, 0x2, 0xfff, 0x7f, 0x5, 0x6, 0x3b, 0x101, 0x10000000, 0x7, 0xf2c7, 0xbe, 0x26f, 0x6, 0xd1, 0x81, 0xc8f, 0x5, 0x9c2, 0xd66, 0x6, 0xc9b2, 0xf1, 0x101, 0x800, 0x4, 0x8001, 0x0, 0x4, 0x400, 0x2, 0x98d, 0xffff, 0x10001, 0x1, 0x5, 0xe, 0xe1d, 0x2, 0x4, 0x200, 0x6, 0x91, 0x6, 0x3, 0x7ff, 0x5, 0x81, 0xbb, 0x7, 0x3, 0x0, 0x0, 0x724, 0x3, 0x0, 0xf45, 0x2, 0x3, 0x400, 0x1, 0x7, 0x3, 0x2, 0x2, 0x7, 0xb5c, 0xfffffff8, 0xfffff000, 0x9, 0x9, 0x2, 0x200, 0x9, 0x8, 0xaf, 0x0, 0x3, 0x3, 0x0, 0x7ff, 0x7f, 0xffff0000, 0x20000001, 0x4, 0x0, 0xfffff019, 0xae, 0xb, 0x5, 0x3, 0xfffffffa, 0x0, 0x9, 0x7d6, 0x2, 0x3, 0x6, 0x7ff, 0xe0, 0x7fff, 0xfffffffb, 0xfffffffa, 0x8, 0x0, 0x3, 0x8, 0x4, 0x9, 0x7ff, 0x0, 0x8, 0x8, 0x10001, 0x10000, 0x8, 0x1, 0xc4, 0xffff, 0x7ff, 0x4, 0x6, 0xd, 0x1, 0x3, 0x5, 0x81, 0x85d, 0x1, 0x5, 0xffffffff, 0x2, 0x3e, 0x4e, 0x7f, 0xa, 0xfffffff3, 0x200, 0x0, 0x6, 0x8, 0xffff228c, 0x6, 0x418bf1a7, 0x3, 0x5967, 0x6, 0x4, 0x40, 0x100, 0x5, 0xb, 0xfff, 0x7, 0x9, 0x8, 0x0, 0xd, 0x7, 0x9, 0x3, 0x8, 0x8, 0x79ff, 0xfffffff9, 0xff, 0x0, 0x8, 0x0, 0x4, 0x64f, 0xb4e, 0x9, 0x10001, 0x7, 0xc9, 0xfffffffe, 0x8, 0x9, 0xc, 0x7, 0x8, 0x71d, 0xf, 0x40, 0x8, 0x1, 0x7544, 0x5, 0x0, 0x4, 0x9, 0xee9, 0xfffff40d, 0x5, 0xfffffffd, 0x7, 0x2, 0x107, 0x5, 0x7, 0x7, 0x1, 0x6, 0x8, 0x4, 0x10001, 0x1, 0x3, 0x2, 0x3, 0x6, 0x8, 0x5, 0xfffffffa, 0xe, 0x200faf, 0xfffffff8, 0x81, 0x7, 0xfff, 0xfffffbff, 0x8, 0x6, 0x3, 0x7ff, 0xffffffff, 0x9, 0x0, 0x1, 0x9, 0x0, 0x8, 0x3, 0x3, 0x5, 0x9, 0x0, 0x2, 0x8, 0x1, 0x9, 0xffff, 0x6, 0x2e1b, 0x63, 0x7c, 0x1000, 0x2, 0x3, 0x1, 0x80, 0x5c84c2f3, 0x138d, 0x10, 0x10, 0x1ad3, 0x2ac8, 0x1, 0xc, 0x8001, 0x2, 0x5, 0x6, 0x5, 0x101, 0x8, 0x5, 0x100, 0x64, 0x7, 0x7f, 0x2, 0xf, 0x6, 0xeb15, 0x3ff, 0x8, 0x200, 0x7, 0x6, 0x10, 0xffffff00, 0x5, 0x1000, 0x10, 0x8, 0x1, 0x101, 0x7, 0x1000, 0x7, 0x6, 0xfffffff1, 0x2, 0xb, 0x6, 0x4, 0x200, 0x9, 0x4, 0x1b, 0x4, 0xfffffffc, 0x401, 0x8, 0x7, 0x0, 0xb, 0x1, 0xb, 0x1, 0xffffffff, 0x7, 0x5, 0x8, 0x78, 0x0, 0x4, 0xa0, 0x2, 0x40, 0xd, 0x2, 0x6, 0xd5, 0x2, 0x4, 0x2, 0x1, 0x10, 0x44, 0x101, 0x2, 0x400, 0x1, 0x3, 0xbb, 0x4, 0xff], 0x2, 0x400, 0x4})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000005880)=@newtfilter={0x24, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xb}, {0x7}}}, 0x24}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000f00)=ANY=[@ANYBLOB="300000001800dd8d0000000000000000020000000000000900000000060015000a0000000c001680080001"], 0x30}}, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x7, 0x50323234, 0x4, 0x0, [{0x0, 0x9}, {0x1, 0xd420}, {0xea10, 0x9}, {0x10, 0x8001}, {0x80005, 0x1}, {0x3, 0x569}, {0x6, 0x7}, {0x6, 0x10000}], 0xfd, 0x0, 0x9, 0x0, 0x3}})
sendmmsg$alg(r0, &(0x7f0000000140), 0x4924b68, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x4}]}]}}, &(0x7f0000000f40)=""/4089, 0x32, 0xff9, 0xa, 0x0, 0x0, @void, @value}, 0x20)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020025647a31000000000900010073797a3000000000080005400000001c"], 0xe0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

1m30.38816251s ago: executing program 3 (id=601):
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x7c, 0x3, 0x1, 0x801, 0x0, 0x0, {0x5, 0x0, 0x1}, [@CTA_LABELS_MASK={0x1c, 0x17, [0x3, 0x8, 0x80000000, 0xb11d, 0x1, 0x2]}, @CTA_SEQ_ADJ_REPLY={0x3c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x5f97}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xfffffff5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xd147}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x7}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}]}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xb, 0x1, 'amanda\x00'}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x1}, 0x50)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x6}}, './file0\x00'})
ioctl$SIOCGIFHWADDR(r0, 0x8927, &(0x7f0000000180)={'veth0\x00'})
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f00000001c0)={'macvlan0\x00', {0x2, 0x0, @loopback}})
r1 = signalfd4(r0, &(0x7f0000000200)={[0x6]}, 0x8, 0x80000)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r1, 0x3ba0, &(0x7f0000000240)={0x48, 0x2, 0x0, 0x0, <r2=>0x0, 0x0, 0x0, 0x1})
ioctl$IOMMU_DESTROY$stdev(r0, 0x3b80, &(0x7f00000002c0)={0x8, r2})
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(r1, 0x3b88, &(0x7f0000000340)={0xc, <r4=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r3, 0x3ba0, &(0x7f0000000380)={0x48, 0x5, r4, 0x0, <r5=>0xffffffffffffffff, 0x1})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r3)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000440)={<r7=>0xffffffffffffffff}, 0x2, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f00000004c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, '\x00', 0x19}, 0xfff}, r7}}, 0x30)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r3, &(0x7f0000000540)={0x12, 0x10, 0xfa00, {&(0x7f0000000500), r7, r3}}, 0x18)
ioctl$BTRFS_IOC_SCRUB(r5, 0xc400941b, &(0x7f0000000580)={<r8=>0x0, 0x6, 0x3b8, 0x1})
ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000980)={r8, 0x9, 0x0, 0x1})
ptrace$setregs(0xf, 0x0, 0x40, &(0x7f0000000d80)="5c03f5d36e21c65cd49a95022990a050cb4d7d21e786256968a793e0c7bbb4b8133c")
ioctl$BLKIOMIN(r1, 0x1278, &(0x7f0000000dc0))
getpeername$unix(r0, &(0x7f0000000e00), &(0x7f0000000e80)=0x6e)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000ec0)=0x1c)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000f00)={0x73622a85, 0x1000})
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000001280)=<r9=>0x0)
stat(&(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
getgroups(0x9, &(0x7f0000001380)=[0xffffffffffffffff, <r11=>0xee00, 0xffffffffffffffff, 0x0, 0xee00, 0xffffffffffffffff, 0xee00, 0xee01, 0xffffffffffffffff])
r12 = mq_open(&(0x7f00000013c0)='nl80211\x00', 0x0, 0x127, &(0x7f0000001400)={0x7, 0x7e9b, 0x101, 0x7fffffffffffffff})
r13 = gettid()
read$FUSE(r0, &(0x7f0000001440)={0x2020, 0x0, 0x0, <r14=>0x0}, 0x2020)
r15 = getpgid(0x0)
sendmsg$netlink(r3, &(0x7f0000005a80)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000f40)={0x2d8, 0x20, 0x300, 0x70bd29, 0x25dfdbfc, "", [@nested={0x227, 0x27, 0x0, 0x1, [@nested={0x4, 0xf6}, @nested={0x4, 0x9d}, @generic="f6625bde90b7461fcc182ac65d4ee932cfe20925ee7486a93ac6f460045a36aa65fe895df25f52afd95efca629bacde3345b80e37d329db0d01afc960a390f5647c3508ca0154f19e852a268c2b726a936324cb9ba8812dffb782b84ea7ec7f552368825c982a25b04a7a179e4b5d0265d8d69d2c7c2b0639949937323c543e694628511b03ef9236173e2fad7a77f596e862a6dd8", @nested={0x4, 0x143}, @typed={0xe6, 0x99, 0x0, 0x0, @binary="757b6529977b41fd546919cd7c2abd3eff4a349648939a3e0f5fc79a9c37fa66f6917e7a595d33aa9b234612b525c4a19ea858825ab546b2f3bbbf315f11c85d276909a6d74a1a7f116943fd7d66d98ff41c6ec893e0e221b5725654594e47f36297a3cf9930687dfe2ecf13999e0649b0def5e841da7969bfe86fb991a8ce32c05b2dcbf2ce6a4095168f650591d23a9d2035bba272a5772c16330265ebb4a3544872201ab9c6984765c659a9314e7d55fcb7710fae1164348c89cfb09f99d6a00f4e0487c8ea70737adc50a2394224a8a4dbb5aefa8c32f36f3f865a856a768a68"}, @generic="44ce4fb7136156265746511b9e0453f4038954fe79fbce230eeb45f92a77a4c187fec996dae46d4f198813bac994f29898f47e8ed2f00a8dce26ea3e3e778a451b3219d4bd24cd8c80704701ce49d07ab9819b4ddab4d7fb55ece50b8a19aa91c6b60d603197098412324560fd975991688fbefa3c96ff66e755f7b353ae1ad345f5b65ac69bcda4113ee79fa04ca5b7d325f8900d1331f9f437"]}, @typed={0x8, 0x11, 0x0, 0x0, @fd=r5}, @typed={0xc, 0x118, 0x0, 0x0, @u64=0x1ff}, @nested={0x8, 0x31, 0x0, 0x1, [@nested={0x4, 0x16}]}, @typed={0x8, 0xde, 0x0, 0x0, @u32=0x86e}, @generic="4ecd9583912fe8b3d7ec71240a5684722072e5beb46f45ebd16e65072c4aa9c8", @typed={0x47, 0x14d, 0x0, 0x0, @binary="dd1059f6464e93d5c4c11fcadb4aadc84b3936e914f0926cc88bf0f180016bbc413e36895420424ab081240ceccb2de258cee086416e7a48ee8027b856a526594650b0"}, @generic, @nested={0x8, 0x106, 0x0, 0x1, [@generic, @nested={0x4, 0x27}]}, @nested={0xc, 0xad, 0x0, 0x1, [@typed={0x8, 0x149, 0x0, 0x0, @u32=0xfffffffb}]}]}, 0x2d8}], 0x1, &(0x7f0000005940)=[@cred={{0x1c, 0x1, 0x2, {r9, r10, r11}}}, @rights={{0x18, 0x1, 0x1, [r3, r1]}}, @rights={{0x18, 0x1, 0x1, [r12, r0]}}, @cred={{0x1c, 0x1, 0x2, {r13, r14, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r15}}}, @rights={{0x14, 0x1, 0x1, [r6]}}, @rights={{0x18, 0x1, 0x1, [r5, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff]}}], 0x128, 0x48000}, 0x94)

1m30.310803751s ago: executing program 32 (id=601):
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x7c, 0x3, 0x1, 0x801, 0x0, 0x0, {0x5, 0x0, 0x1}, [@CTA_LABELS_MASK={0x1c, 0x17, [0x3, 0x8, 0x80000000, 0xb11d, 0x1, 0x2]}, @CTA_SEQ_ADJ_REPLY={0x3c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x5f97}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xfffffff5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xd147}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x7}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}]}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xb, 0x1, 'amanda\x00'}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x1}, 0x50)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x6}}, './file0\x00'})
ioctl$SIOCGIFHWADDR(r0, 0x8927, &(0x7f0000000180)={'veth0\x00'})
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f00000001c0)={'macvlan0\x00', {0x2, 0x0, @loopback}})
r1 = signalfd4(r0, &(0x7f0000000200)={[0x6]}, 0x8, 0x80000)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r1, 0x3ba0, &(0x7f0000000240)={0x48, 0x2, 0x0, 0x0, <r2=>0x0, 0x0, 0x0, 0x1})
ioctl$IOMMU_DESTROY$stdev(r0, 0x3b80, &(0x7f00000002c0)={0x8, r2})
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(r1, 0x3b88, &(0x7f0000000340)={0xc, <r4=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r3, 0x3ba0, &(0x7f0000000380)={0x48, 0x5, r4, 0x0, <r5=>0xffffffffffffffff, 0x1})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r3)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000440)={<r7=>0xffffffffffffffff}, 0x2, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f00000004c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, '\x00', 0x19}, 0xfff}, r7}}, 0x30)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r3, &(0x7f0000000540)={0x12, 0x10, 0xfa00, {&(0x7f0000000500), r7, r3}}, 0x18)
ioctl$BTRFS_IOC_SCRUB(r5, 0xc400941b, &(0x7f0000000580)={<r8=>0x0, 0x6, 0x3b8, 0x1})
ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000980)={r8, 0x9, 0x0, 0x1})
ptrace$setregs(0xf, 0x0, 0x40, &(0x7f0000000d80)="5c03f5d36e21c65cd49a95022990a050cb4d7d21e786256968a793e0c7bbb4b8133c")
ioctl$BLKIOMIN(r1, 0x1278, &(0x7f0000000dc0))
getpeername$unix(r0, &(0x7f0000000e00), &(0x7f0000000e80)=0x6e)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000ec0)=0x1c)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000f00)={0x73622a85, 0x1000})
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000001280)=<r9=>0x0)
stat(&(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
getgroups(0x9, &(0x7f0000001380)=[0xffffffffffffffff, <r11=>0xee00, 0xffffffffffffffff, 0x0, 0xee00, 0xffffffffffffffff, 0xee00, 0xee01, 0xffffffffffffffff])
r12 = mq_open(&(0x7f00000013c0)='nl80211\x00', 0x0, 0x127, &(0x7f0000001400)={0x7, 0x7e9b, 0x101, 0x7fffffffffffffff})
r13 = gettid()
read$FUSE(r0, &(0x7f0000001440)={0x2020, 0x0, 0x0, <r14=>0x0}, 0x2020)
r15 = getpgid(0x0)
sendmsg$netlink(r3, &(0x7f0000005a80)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000f40)={0x2d8, 0x20, 0x300, 0x70bd29, 0x25dfdbfc, "", [@nested={0x227, 0x27, 0x0, 0x1, [@nested={0x4, 0xf6}, @nested={0x4, 0x9d}, @generic="f6625bde90b7461fcc182ac65d4ee932cfe20925ee7486a93ac6f460045a36aa65fe895df25f52afd95efca629bacde3345b80e37d329db0d01afc960a390f5647c3508ca0154f19e852a268c2b726a936324cb9ba8812dffb782b84ea7ec7f552368825c982a25b04a7a179e4b5d0265d8d69d2c7c2b0639949937323c543e694628511b03ef9236173e2fad7a77f596e862a6dd8", @nested={0x4, 0x143}, @typed={0xe6, 0x99, 0x0, 0x0, @binary="757b6529977b41fd546919cd7c2abd3eff4a349648939a3e0f5fc79a9c37fa66f6917e7a595d33aa9b234612b525c4a19ea858825ab546b2f3bbbf315f11c85d276909a6d74a1a7f116943fd7d66d98ff41c6ec893e0e221b5725654594e47f36297a3cf9930687dfe2ecf13999e0649b0def5e841da7969bfe86fb991a8ce32c05b2dcbf2ce6a4095168f650591d23a9d2035bba272a5772c16330265ebb4a3544872201ab9c6984765c659a9314e7d55fcb7710fae1164348c89cfb09f99d6a00f4e0487c8ea70737adc50a2394224a8a4dbb5aefa8c32f36f3f865a856a768a68"}, @generic="44ce4fb7136156265746511b9e0453f4038954fe79fbce230eeb45f92a77a4c187fec996dae46d4f198813bac994f29898f47e8ed2f00a8dce26ea3e3e778a451b3219d4bd24cd8c80704701ce49d07ab9819b4ddab4d7fb55ece50b8a19aa91c6b60d603197098412324560fd975991688fbefa3c96ff66e755f7b353ae1ad345f5b65ac69bcda4113ee79fa04ca5b7d325f8900d1331f9f437"]}, @typed={0x8, 0x11, 0x0, 0x0, @fd=r5}, @typed={0xc, 0x118, 0x0, 0x0, @u64=0x1ff}, @nested={0x8, 0x31, 0x0, 0x1, [@nested={0x4, 0x16}]}, @typed={0x8, 0xde, 0x0, 0x0, @u32=0x86e}, @generic="4ecd9583912fe8b3d7ec71240a5684722072e5beb46f45ebd16e65072c4aa9c8", @typed={0x47, 0x14d, 0x0, 0x0, @binary="dd1059f6464e93d5c4c11fcadb4aadc84b3936e914f0926cc88bf0f180016bbc413e36895420424ab081240ceccb2de258cee086416e7a48ee8027b856a526594650b0"}, @generic, @nested={0x8, 0x106, 0x0, 0x1, [@generic, @nested={0x4, 0x27}]}, @nested={0xc, 0xad, 0x0, 0x1, [@typed={0x8, 0x149, 0x0, 0x0, @u32=0xfffffffb}]}]}, 0x2d8}], 0x1, &(0x7f0000005940)=[@cred={{0x1c, 0x1, 0x2, {r9, r10, r11}}}, @rights={{0x18, 0x1, 0x1, [r3, r1]}}, @rights={{0x18, 0x1, 0x1, [r12, r0]}}, @cred={{0x1c, 0x1, 0x2, {r13, r14, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r15}}}, @rights={{0x14, 0x1, 0x1, [r6]}}, @rights={{0x18, 0x1, 0x1, [r5, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff]}}], 0x128, 0x48000}, 0x94)

46.334482703s ago: executing program 2 (id=1270):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
pipe(&(0x7f0000000d00)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000000500)=[{{&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='p'], 0x70}}], 0x1, 0x2000c044)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r6], 0x20}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000240), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x714f, 0x0)

45.319764243s ago: executing program 2 (id=1277):
r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
r1 = socket(0x80000000000000a, 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000007e00), r2)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000007e40)={'wpan0\x00', <r4=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f0000007f80)={0x0, 0x0, &(0x7f0000007f40)={&(0x7f0000007e80)={0x44, r3, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x20, 0x2b, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xffff}]}, @NL802154_ATTR_SEC_ENABLED={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x40040}, 0x40000)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000780)={0x0, {{0xa, 0x4e24, 0x6589e3, @mcast1, 0x8}}, {{0xa, 0x4e1d, 0x4, @private1, 0xfffffff8}}}, 0x108)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r5 = socket$kcm(0x2, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x7, &(0x7f0000000140)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @alu={0x6, 0x0, 0xd}, @exit={0x95, 0x0, 0x7b00}, @call={0x85, 0x0, 0x0, 0x18}]}, &(0x7f00000003c0)='syzkaller\x00', 0x4, 0x92, &(0x7f0000000240)=""/146, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$inet(r5, &(0x7f0000000200)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
r6 = socket$kcm(0x29, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001dc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r8 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r8, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f0000000040)={r8, r7})
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f0000000040)={r5, r7})
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000340)=""/54, 0x36}], 0x1, 0x5b, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000400)=0x200000000)
r11 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x13)
sendmsg$nl_route(r11, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3800000068000100030010000000008000000000000000000c00020001000000150000000c000c80f2ffffffffffffff0600030001"], 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000)
r12 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x4206, r12)
tkill(r12, 0x12)
tkill(r12, 0x12)
ptrace(0x4208, r12)
sendmsg$IPVS_CMD_NEW_DAEMON(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)={0x38, r10, 0x100, 0x70bd2a, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x24, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x63}]}]}, 0x38}}, 0x4)

44.348745353s ago: executing program 2 (id=1288):
r0 = syz_open_procfs(0x0, &(0x7f0000000400)='net/ip6_tables_matches\x00')
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x17)
bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000040)=r1, 0x4)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000140)={r1, 0x0}, 0x20)
pread64(r0, &(0x7f0000001b80)=""/4084, 0xff4, 0x7f)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB="0c0100001a0007000000000000000000ff020000000000000000000000000001e0000002000000000000000000000000ffff0000000000000000000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="ff016300000000000000000000000001000000002b000000fc0000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000070000000000000000000000000000000000040000000000e80a000000000000000000000a000200700000000000000014000e00fe8000000000000000000000000000bb08000c0003000000"], 0x10c}}, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
pread64(r3, &(0x7f0000019340)=""/102372, 0x18fe4, 0xc2a)

44.207622996s ago: executing program 2 (id=1289):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f00000000c0)=0x8c, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x30}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x41, 0x0)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r6 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa441, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r7, 0x4038ae7a, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0})
syz_emit_ethernet(0x6e, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000008004500006000000000000190780a010101ac1414aa05019078e000000241a00004000000000289000064010101e0000002441c9571ac1e0101000020000a0136edfddc0401ac1414aa000000034414445364010100000000090a010101fffffffd5ba7facf43a528becaefd68d30d4a1c0cba388b467aaee1c1848d03b851185b4ee"], 0x0)
sendfile(r1, r4, &(0x7f00000001c0)=0xffffffff80000000, 0xffff)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000140)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c0d23266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x34e, &(0x7f0000000780)={@local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00cd04", 0x318, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x5a, 0x1, 0x0, 0x0, [{0x3, 0xa, "a78c000005dc8080a2030003004003493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af0502"}, {0x0, 0x2000000000000199, "000005000000000026000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x0, 0xb, "17dcea468000000000054740a5d4901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2bce9ac946a3f0e2bc4000091394c02bcfbbb7d71138537d68e2d2c6393a9f3cc271a9ff09a48b5b303f4f0"}, {0xe, 0x7, "b8a3e10000a3e1100000006f00ffc0ffff00000000600000ff0bc0fe000000000000000000000000d9a0274400"/55}, {0x0, 0xc, "5e14ccb44d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d260600aa89c8f267d76ece1c9f6ae2e1eb3d8bf9c6ab2642c4808298e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c"}]}}}}}}, 0x0)
sendmsg$nl_generic(r2, &(0x7f00000007c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000780)={&(0x7f0000000480)={0x2f4, 0x3d, 0x2, 0x70bd25, 0x25dfdbfe, {0x3}, [@typed={0x8, 0xb6, 0x0, 0x0, @ipv4=@loopback}, @generic="53df40a1ea48bf9984b85f81865ec901fb28fcf38bbfa44586ec2338fee94ddbd5f44d0b6cf4b63c38dfc1986224eeb85144969d4dc760149335f1a210a5b86648665bd7cd83d51a1bb77325008a40a082f0b0fa9d8a32", @generic="fdc3477b", @nested={0xc, 0x8f, 0x0, 0x1, [@typed={0x8, 0x63, 0x0, 0x0, @str=')#%\x00'}]}, @nested={0x1e6, 0x3f, 0x0, 0x1, [@generic="69ed443c8e0ebb21aa725d25727ee72b407e6c589b4e2c4aa7eea18a9f62985f7171720b95d8bc242c5abe05b22ff7d169799489aae0e4c240e6df121c5ed50a8efb618a0f4ee397a5d8595c79593be546e290e54b14d76265659ffca326f42e3dbb49b1b72707505e8903a3f7aead50fd31ce8d1d08d04449c4cc0d5cc1b2801bf45fe751376a83a9d5ad378a36db78e8e5e736661f6ca8c62bfc88055f7195a043d2", @typed={0x45, 0x4, 0x0, 0x0, @binary="ab07471cebdac91e78dc4dcc154fd2048347cdffc4dad6f579eb6a357970a40a3943eb5c85477cefab86f7d54d0b167ab83e3791514f30f870027dafbfdae947b9"}, @generic="d5889fa31f02d3eda4145bf5df74add329ead6b5066c57550d855fe1cd3a68e3f905d79e00e4783cbebde00b9f441cf44e6767d2217e3d1d542b3402e51dae2c6521816e8cfd528df4ec4e273986a83c8bbc1029853adb29c4e01c2c352bcf1987205a40044a967284b68168a16aff03de88cbedf1a7b66727536dac6a13b42499e9e8a63905ee24847ca05558375c499d2b058d24d4ccee8535754cc57462344eb51d6edfe501360862b81784f1800d3aaa118701b5bf23e2e777911eb327bc7cd00432", @generic="195d3c3d4801adb7089830edf070526ca3b244243216bf5e5e8e54fa71c9fe7a6bcc062dceab00cbcd6813e484e02328e00ac8"]}, @generic="0fb90865a29d772b2ede56c4f056aa64fac72aaf48d7681b5400ec2978b48ec88a9d0fd740460dda46bd80fd6cff0a67e8f7c91f195cb707751872c8158e933d7d2213669c10ef25b18721cdd9d5d0992dd7cc1c835b0800666d0ec9100a9b989f0dc4d03b11a87f93b22458ba44e6f0c4f97e7fb28232c1b20223da04ef9749abcd29558c543f15"]}, 0x2f4}, 0x1, 0x0, 0x0, 0x48001}, 0x880)
ioctl$KVM_CREATE_PIT2(r5, 0x4040ae77, &(0x7f0000000040))
r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x20000, 0x4}]})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r5, 0xc400941d, &(0x7f0000000800)={0x0, 0xfff, 0x4})
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x20000000, 0x440, 0x4000000002, 0x0, 0x0, 0x2004cb, 0x3, 0x0, 0x0, 0x0, 0xfffffffffffff2a4, 0x2000, 0x2], 0x0, 0x200306})
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r5, 0xf502, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r9, 0x401c5820, &(0x7f0000000080)={0x8})
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)

44.071125271s ago: executing program 2 (id=1291):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$sndctrl(&(0x7f0000000e00), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0x800455d1, 0xfffffffffffffffd)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x11, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x122}}, 0x4008090)
execve(&(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000980)={[&(0x7f00000005c0)='syz1\x00', &(0x7f0000000600)='LED\x00']})

43.894568576s ago: executing program 2 (id=1293):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x54}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r1, @ANYBLOB="0100000000000000240012000c000100627269646765000e1400020008"], 0x44}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
mount$overlay(0x0, &(0x7f0000000500)='./file1/file0\x00', 0x0, 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file1'}}]})
r3 = socket(0x10, 0x2, 0x6)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x128}}, 0x0)
getsockname$packet(r3, &(0x7f00000001c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xa3)
bind$packet(r2, &(0x7f00000000c0)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
sendto$inet6(r2, &(0x7f0000000100)="0503460008003e00000002008100", 0x36, 0x0, 0x0, 0x0)

43.613996638s ago: executing program 33 (id=1293):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x54}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r1, @ANYBLOB="0100000000000000240012000c000100627269646765000e1400020008"], 0x44}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
mount$overlay(0x0, &(0x7f0000000500)='./file1/file0\x00', 0x0, 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file1'}}]})
r3 = socket(0x10, 0x2, 0x6)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x128}}, 0x0)
getsockname$packet(r3, &(0x7f00000001c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xa3)
bind$packet(r2, &(0x7f00000000c0)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
sendto$inet6(r2, &(0x7f0000000100)="0503460008003e00000002008100", 0x36, 0x0, 0x0, 0x0)

3.231182412s ago: executing program 4 (id=1580):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha256)\x00'}, 0x58) (async)
bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha256)\x00'}, 0x58)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"])
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
accept$alg(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f00000000c0)=[{0x28, 0x0, 0x0, 0xffffefff}, {0x6}]}, 0x10) (async)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f00000000c0)=[{0x28, 0x0, 0x0, 0xffffefff}, {0x6}]}, 0x10)
sendmmsg$unix(r4, &(0x7f0000002a00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r6, 0xae03, 0xa3)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000280)={'vcan0\x00', <r9=>0x0})
bind$can_j1939(r8, &(0x7f00000000c0)={0x1d, r9, 0x2, {0x0, 0xf0, 0x3}, 0xfd}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r10=>0x0})
bind$can_j1939(r7, &(0x7f0000000100)={0x1d, r10, 0x2, {0x0, 0xf0, 0x1}, 0xff}, 0x18)
r11 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x3f}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
accept4(r11, 0x0, 0x0, 0x80800) (async)
accept4(r11, 0x0, 0x0, 0x80800)

2.796684528s ago: executing program 4 (id=1585):
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000000)={&(0x7f0000000180)="68a96afa847d161d36b84ba84b8334c825166945243d230faa260aeec66ff0ab1d140d5cb730f7178b38a503ab64bf7ebaa7dbae0a7512e4e10b3aed153ea6e3695d2e39973c648dc9a87699d04865fcd07de5227e64f916609f9bc4a6257b64b98d89cc4a227bfdd1437d84eed44a4494d6b725f88c7fcf4473ca4cc98308cea4b7c99770b70b2704dc56a68fbac4403eac6ccda37280c23f9e591d6d96a31843add97c6e79a3b3e2a6373418be08f1e0169022894230b901aff00611c24900db6e9c849ebfefcfcf4200c5a7f820e437ccb19211", 0xd5, <r0=>0x0})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000280)=[0x0, r0, r0, r0, r0, r0, r0, r0], 0x8, 0x80000, 0x0, <r1=>0xffffffffffffffff})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x4, 0x8, 0x101, 0x0, 0x0, {0x3, 0x0, 0x5}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x19}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_SCRNMAP(r2, 0x4b40, &(0x7f00000009c0)=""/109)

2.643856006s ago: executing program 4 (id=1589):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
pipe(0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
close(r0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000500)=[{{&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='p'], 0x70}}], 0x1, 0x2000c044)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r4], 0x20}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000240), 0xfffffecc)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x714f, 0x0)

2.28052432s ago: executing program 0 (id=1592):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket(0x1, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000021c0)=0x1, 0x4)
setsockopt(r1, 0x1, 0x10000000000009, &(0x7f0000000100)="0100ddff", 0x507b420f2d51f971)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0xfffc, 0x7, @empty, 0x200}, 0x1c)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
sendmmsg$inet(r0, &(0x7f0000000480)=[{{&(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10, 0x0}}], 0x1, 0x24040890)
arch_prctl$ARCH_REQ_XCOMP_GUEST_PERM(0x1025, 0x12)
setsockopt$sock_int(r0, 0x1, 0x3e, &(0x7f0000000140)=0x1, 0x4)

2.212473279s ago: executing program 4 (id=1593):
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000400)='.\x00', 0xa4000021)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r4 = fanotify_init(0xf00, 0x0)
fanotify_mark(r4, 0x105, 0x4800003a, r3, 0x0)
read$FUSE(r4, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0xdddd1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
read(r0, &(0x7f0000000100)=""/208, 0xd0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, &(0x7f0000000240), 0x4, &(0x7f0000000040))

2.145337843s ago: executing program 0 (id=1594):
r0 = syz_open_dev$usbfs(&(0x7f00000002c0), 0xc, 0x101b01)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a02fa560186d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f68530c2b21a100efb76cba37ff3111d6847e0c7f719e169a596e5fc008daefba68f6222103472bc55704cdb72b4b996ed82ccb1eaae27969d008ba7d34171113d806726615380fe65a6a0a72e19c2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13e4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe3635b2ee97c143f28def4b73905ca14d90d1f6"})
ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522)
syz_open_dev$usbfs(&(0x7f0000000040), 0xc, 0x101600)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x8008551d, &(0x7f00000000c0)={0x801484})
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r1, 0x0, 0xd1, &(0x7f0000000000)=0x3, 0x4)

1.615497605s ago: executing program 4 (id=1599):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @initdev={0xac, 0x1e, 0xfd, 0x0}}}, 0x0, 0x0, 0x3f8, 0x5, 0x10, 0x63821132}, 0x9c) (async)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400fbff3700010000000000000077bff4e3ad297bcc90dc7b3ef514b3c700000000000048455eb414cc06271f9f4d8d7e0817d5db7dc1f4c915242bf3a27497a8d247968c99a374b77ffde2755a0e907f"], 0x14}}, 0x0) (async)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000000)=0x29, 0x4) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x0, 0x20}, 0xc) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) (async)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000040)={0x90000005}) (async, rerun: 32)
epoll_pwait(r5, &(0x7f0000000100)=[{}], 0x1, 0xfffeffff, 0x0, 0x443c000000000000) (rerun: 32)
connect$unix(r3, &(0x7f0000000140)=@abs, 0x6e) (async)
lseek(r2, 0x1fffffffd, 0x2) (async, rerun: 64)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34c8, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 64)
getdents64(r2, &(0x7f0000000280)=""/87, 0xfffffffffffffe99)
r6 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$qrtrtun(r6, &(0x7f0000000340)="6a0cc193beb70a52", 0x8)
ioctl$UI_ABS_SETUP(r6, 0x401c5504, &(0x7f0000000300)={0x6, {0x8000, 0x9, 0x7f, 0x325d, 0x8, 0x8}})

1.380643274s ago: executing program 0 (id=1601):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
pipe(&(0x7f0000000d00)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(r2)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000000500)=[{{&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='p'], 0x70}}], 0x1, 0x2000c044)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r6], 0x20}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000240), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x714f, 0x0)

1.31884922s ago: executing program 4 (id=1602):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000050000f58d"])
r4 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000030020f003176c400000000001090224725100000000090400001207010300090501020000000000090582020002"], 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xff58)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='mm_migrate_pages\x00', r6, 0x0, 0x9}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
syz_usb_disconnect(r4)
r7 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000140)=ANY=[], 0x0)
syz_usb_control_io$hid(r7, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r7, 0x82, 0xa8, &(0x7f0000000040)=ANY=[])
r8 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r8, 0x0, 0x0)

1.305711143s ago: executing program 1 (id=1603):
r0 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000240)={0x0, 0x0, r1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000380)={r2, 0x0, 0x1ff, 0x0, 0x0, [<r3=>0x0], [0x9, 0x0, 0x0, 0x8], [0x3, 0x20000000, 0x100, 0xd], [0x1000010000000, 0x0, 0x7fffffffffffffff]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080)={r3, 0x0, <r4=>0xffffffffffffffff})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r5, 0xc0bc5351, &(0x7f0000000000)={0x97, 0x0, 'client1\x00', 0x4, "e07fd187e36823c5", "d969d205213edd5063b70042ff0d395b1d75a50b05e5e7d5a8bd20f7a444d1e8", 0x2, 0x100})
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4, 0x13, r4, 0x0)

1.129780296s ago: executing program 1 (id=1604):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x149a82, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000240)={0x8000, {{0x2, 0x4e20, @multicast1}}, 0x1, 0x5, [{{0x2, 0x4e22, @rand_addr=0x64010102}}, {{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x36}}}, {{0x2, 0x4e22, @rand_addr=0x64010101}}, {{0x2, 0x4e24, @rand_addr=0x64010100}}, {{0x2, 0x4e21, @loopback}}]}, 0x310)
sendfile(r1, r1, 0x0, 0x5)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="340000001000810526bd700000000000000000003cbe13e851729052f8e356002c106091bbe642336f588223c1159db394179aa6c166f08fe67e9b879920a4f73d238e286095ae2e23428f61e25a5d4f1dc98d8fe21d07e6e7f489955044015ec7053aba565cc55ef62526a61cf803bad3132d59a471e01c4c603ea6e5a0f733e8af6eff8803e5820e542acd25a2cb7af9a1dfb0914a4ea7fdde0ef3be08ec1fec165fabbd787fa133e1d6fe359d7d5e688bae6b3759", @ANYRES32=0x0, @ANYBLOB="022000002000000014001280090001007663616e0000000004000280"], 0x34}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

1.009375328s ago: executing program 1 (id=1605):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='highspeed\x00', 0xa)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a)
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2b00b8, &(0x7f00000002c0)={[{@huge_never}]})
sendto$inet6(r0, &(0x7f0000000240)=':', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
shutdown(r0, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000300)=ANY=[@ANYRES8=r1, @ANYRES32=r1, @ANYBLOB="00000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff4aae048f0008000000b704000000000000850000005900000095", @ANYRESDEC=r1, @ANYRESHEX=r0], 0x0, 0x0, 0xfffffffffffffefe, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

845.797857ms ago: executing program 5 (id=1606):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x54}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r1, @ANYBLOB="0100000000000000240012000c000100627269646765000e14000200080007004a"], 0x44}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket(0x10, 0x2, 0x6)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x128}}, 0x0)
getsockname$packet(r3, &(0x7f00000001c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xa3)
bind$packet(r2, &(0x7f00000000c0)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
sendto$inet6(r2, &(0x7f0000000100)="0503460008003e00000002", 0xb, 0x0, 0x0, 0x0)

741.755373ms ago: executing program 1 (id=1607):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x19, 0xfffffffffffffffd, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
open$dir(&(0x7f0000000080)='./file1\x00', 0x22240, 0x82)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'ipvlan1\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="300000001c000104000000000000000002000000", @ANYRES32=r2, @ANYBLOB="100000000a00010001"], 0x30}}, 0x4)
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='./file1/file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x201008, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000001180)='./bus\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
fcntl$setstatus(r3, 0x4, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r5, &(0x7f0000000140)="96", 0x1, 0x1, &(0x7f0000000240)={0xa, 0x0, 0x0, @private2}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r5, 0x84, 0x1e, &(0x7f0000000000)=0x6, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0x541b, &(0x7f0000000040)={<r7=>0xffffffffffffffff, 0x0, 0x4, 0x8040000000000000})
close_range(r7, 0xffffffffffffffff, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r8, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
recvmmsg(r4, &(0x7f0000000e40)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x4c, &(0x7f0000000340)=ANY=[@ANYBLOB="0180c2000000ece65fbcee556f7efb71f58876cd3b3d3dbe8b86dd6001010000161100fe8000000000000000000000000000bbfe8000000000000000000000000040aa00030e2200169078020300147d4230c3fab60000000000ffb00afe4e700c0e38f3462223f9d3d266ce6a88f5ece32999179ff5282761706c220cf10957fdc720dac3a2f7fed3d0"], 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r9, 0xffffffffffffffff, 0x0)

545.024232ms ago: executing program 1 (id=1608):
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000400)='.\x00', 0xa4000021)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r4 = fanotify_init(0xf00, 0x0)
fanotify_mark(r4, 0x105, 0x4800003a, r3, 0x0)
read$FUSE(r4, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0xdddd1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
read(r0, &(0x7f0000000100)=""/208, 0xd0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, &(0x7f0000000240), 0x4, &(0x7f0000000040))

544.818065ms ago: executing program 5 (id=1609):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x68, r1, 0x1, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0xd, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x2c, r5, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0xc}, @NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24008880}, 0x4044000)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
r7 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r7, 0x4028700f, &(0x7f0000000140)={0x6, 0x0, {0x20, 0x37, 0x9, 0x10, 0x2, 0xee6d, 0x0, 0xf7, 0x1}})
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @local, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}, @local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x38}, @local}}}}, 0x0)

437.288187ms ago: executing program 5 (id=1610):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x2, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x26}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=@newlink={0x3c, 0x10, 0x401, 0x70bd2a, 0x2000, {0x0, 0x0, 0x0, 0x0, 0x20520, 0x41811}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_FLAGS={0x8, 0x8, 0x9}]}}}]}, 0x3c}, 0x1, 0xd, 0x0, 0x31d12d490dcd105d}, 0x0)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000040)={'tunl0\x00', <r3=>0x0, 0x700, 0x1, 0x7, 0x2, {{0x22, 0x4, 0x1, 0x7, 0x88, 0x67, 0x0, 0x0, 0x3c, 0x0, @broadcast, @multicast2, {[@timestamp={0x44, 0x14, 0xba, 0x0, 0x8, [0x9, 0xae71, 0x7, 0x80000000]}, @generic={0x82, 0x3, "df"}, @timestamp_addr={0x44, 0x2c, 0x6d, 0x1, 0x3, [{@multicast1, 0xc}, {@local, 0x7}, {@remote, 0x1}, {@multicast2, 0xfffffff6}, {@multicast1, 0x7}]}, @noop, @rr={0x7, 0x1f, 0x40, [@loopback, @loopback, @rand_addr=0x5, @remote, @loopback, @remote, @dev={0xac, 0x14, 0x14, 0x41}]}, @end, @noop, @timestamp={0x44, 0xc, 0xb7, 0x0, 0x5, [0x1, 0x8001]}]}}}}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{0xffffffffffffffff, <r4=>0xffffffffffffffff}, &(0x7f0000000140), &(0x7f00000001c0)}, 0x20)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), r5)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x20, 0x0, 0x2, 0x70bd2a, 0x25dfdbf8, {}, [@NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x4000004}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x80d0}, 0x0)
sendmsg$NL80211_CMD_SET_COALESCE(r5, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r6, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r7}, @void}}}, 0x28}}, 0x0)
r8 = memfd_secret(0x80000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x13, r8, 0x0)
write$dsp(r8, &(0x7f0000000980)="7cbf9e4d1d6fde9c09b130a44e5b8ecb627f9fa8a83161af921a2fc521249a6fd76c923a7be23727a5837f751a61090a89b906a0f318983502ee4f027e15beff7636aeb3422db5efcdaf4529ee39e605d6d9455b77558e991d6e70644d39b2fcab21d243e3", 0x65)
r9 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ppoll(&(0x7f00000000c0)=[{r9, 0x600}, {r9, 0x9411}], 0x2, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000680)={'\x00', 0x0, 0x0, {0xfffffffffffffff5, 0xffff}, {0x6, 0x2}, 0xab4, [0x5, 0x7b, 0x3, 0x4000000005, 0x3ff, 0x66, 0x5, 0x5f, 0x8, 0x9, 0x10, 0xa, 0x6, 0xffdffffffffffff7, 0x621, 0xe4]})
r10 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x169101, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r10, &(0x7f0000000940)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000007c0)={&(0x7f00000008c0)={0x4c, r6, 0x800, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0xffffffff, 0x6b}}}}, [@NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_4ADDR={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x80)
ioctl$DRM_IOCTL_GEM_FLINK(r10, 0xc008640a, &(0x7f0000000180))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xdf}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x400}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r2)
add_key(&(0x7f0000002100)='asymmetric\x00', 0x0, &(0x7f00000008c0)="3080", 0x2, 0xfffffffffffffffe)
sendmsg$NL80211_CMD_GET_SURVEY(r11, &(0x7f0000000640)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x20, r12, 0x300, 0x70bd28, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x2, 0x48}}}}, ["", "", ""]}, 0x20}}, 0x8004)
write$selinux_load(r2, &(0x7f0000000340)={0xf97cff8c, 0xfffffc61, 'SE Linux', "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"}, 0x20)

436.732266ms ago: executing program 0 (id=1611):
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSCTTY(r3, 0x540e, 0x9)
connect$llc(r2, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @local}, 0x10)
getpeername$llc(r2, 0x0, 0x0) (async)
getpeername$llc(r2, 0x0, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) (async)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/custom0\x00', 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, r6, 0x1, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x22}]}, 0x28}, 0x1, 0x0, 0x0, 0x84}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x400, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r4, 0x500}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000804}, 0x8000)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r8=>r0, {0x1}}, './file0\x00'})
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0) (async)
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0x8, 0xd, 0x5, 0x6850c, r8, 0x8000, '\x00', r4, 0xffffffffffffffff, 0x1, 0x5, 0x5, 0xffffffffffffffff, @value=r9, @void, @void, @value}, 0x50) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0x8, 0xd, 0x5, 0x6850c, r8, 0x8000, '\x00', r4, 0xffffffffffffffff, 0x1, 0x5, 0x5, 0xffffffffffffffff, @value=r9, @void, @void, @value}, 0x50)
bind$llc(r2, &(0x7f00000002c0)={0x1a, 0x302, 0x3, 0x0, 0x5, 0x0, @broadcast}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
add_key(0x0, 0x0, &(0x7f0000000100)="305c0605e182d1447ad1ad837003", 0xe, 0xfffffffffffffffe) (async)
add_key(0x0, 0x0, &(0x7f0000000100)="305c0605e182d1447ad1ad837003", 0xe, 0xfffffffffffffffe)
syz_emit_ethernet(0x52, &(0x7f0000000340)=ANY=[@ANYRES32=r7, @ANYRESHEX=r1, @ANYRESOCT=r6, @ANYRESDEC=r7, @ANYRESHEX=r1, @ANYRES8], 0x0) (async)
syz_emit_ethernet(0x52, &(0x7f0000000340)=ANY=[@ANYRES32=r7, @ANYRESHEX=r1, @ANYRESOCT=r6, @ANYRESDEC=r7, @ANYRESHEX=r1, @ANYRES8], 0x0)
r10 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850", 0x4, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='H'], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) (async)
r11 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r10, r11, r10}, &(0x7f00000000c0)=""/83, 0xffffffffffffff02, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0) (async)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) (async)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
dup(r13)

234.008259ms ago: executing program 5 (id=1612):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f00000003c0)=[{0x5, 0x61, 0x0, 0x0, @time, {}, {}, @result}], 0x1c)

141.187609ms ago: executing program 0 (id=1613):
r0 = socket$kcm(0x10, 0x2, 0x0) (async)
r1 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0) (async)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x11, r1, 0x0) (async)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x0) (async)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000001c0)="0600000000000000040f46ecdb4cb9cca705000000000000e3bd6efb3401e0469472e3bca8f3f7daf67cd84e2921347f4a3ba023adce64860b948e7c1816f1b5def2dfa0c546de52673ebfccf7d0ee4f9c1ca9ebbc63c1e82513d25ecae9f14a3884910ebd9ece0ce912b9d198c9cb5056845679f22f8dcc7c11509711fa52cd4062184b5bdb2a4d14dba89367fcf2bb9ab3bb92c1daaf2c8ffd4575", 0x9c}], 0x1, 0x0, 0x0, 0xc9e}, 0x80)

139.125117ms ago: executing program 5 (id=1614):
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000000)={0x2, 0x2, 0x2})
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCFLSH(r2, 0x540b, 0x2)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000140)={0x0, r1}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000240)='mmap_lock_acquire_returned\x00', r3}, 0x18)
r4 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r4, 0x11, 0x67, &(0x7f0000000940)=0x28, 0x4)
sendto$inet6(r4, 0x0, 0x0, 0x400ad80, &(0x7f0000000080)={0xa, 0x4621, 0x0, @local}, 0x1c)
sendmmsg$inet6(r4, &(0x7f00000012c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000100)={0xa, 0x4e22, 0x81, @loopback, 0xd28}, 0x1c, &(0x7f00000004c0)=[{0x0}], 0x1}}], 0x2, 0x0)
getsockopt$inet_mptcp_buf(r1, 0x11c, 0x3, &(0x7f00000003c0)=""/106, &(0x7f0000000440)=0x6a)
setsockopt$inet_tcp_int(r1, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r1, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)="b9cd14", 0x3}], 0x1}}], 0x1, 0x20008000)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000080)=@ccm_128={{0x303}, "f1a0f9fff9e440b4", "881aae83544dfa6412f91b9057e3f415", "9dca43b6", "9ecb592c6ee49fbd"}, 0x28)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000380)={0x2, @sdr})

37.793436ms ago: executing program 0 (id=1615):
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r0 = socket$netlink(0x10, 0x3, 0xa)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, <r1=>0x0}, &(0x7f0000000080)=0xc)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f0000000400)={'trans=virtio,', {[{@access_uid={'access', 0x3d, r1}}]}})
r2 = fsopen(&(0x7f0000000340)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000000c0)='so\xf5rce', &(0x7f0000000280)='source', 0x0)
gettid()

4.97249ms ago: executing program 1 (id=1616):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x54}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r1, @ANYBLOB="0100000000000000240012000c000100627269646765000e14000200080007004a"], 0x44}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket(0x10, 0x2, 0x6)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x128}}, 0x0)
getsockname$packet(r3, &(0x7f00000001c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xa3)
bind$packet(r2, &(0x7f00000000c0)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
sendto$inet6(r2, &(0x7f0000000100)="0503460008003e00000002", 0xb, 0x0, 0x0, 0x0)

0s ago: executing program 5 (id=1617):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="d8000000140081044e81f782db44b9040a1d08020a000000040000a118000200fe80ffff00000e1208000f0100810401a80016ea1f000b400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
mount(&(0x7f00000006c0)=@sr0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='hpfs\x00', 0x204001, 0x0)

kernel console output (not intermixed with test programs):

P-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   80.549134][ T7412] netlink: 'syz.3.497': attribute type 2 has an invalid length.
[   80.648166][ T7426] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   80.815141][ T7445] tmpfs: Unknown parameter 'indo64'
[   80.820496][ T7445] overlay: ./file0 is not a directory
[   80.864399][ T7449] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   80.880012][ T7449] kvm: pic: non byte read
[   80.884057][ T7449] kvm: pic: level sensitive irq not supported
[   80.884986][ T7449] kvm: pic: non byte read
[   80.891868][ T7449] kvm: pic: level sensitive irq not supported
[   80.892577][ T7449] kvm: pic: non byte read
[   81.022833][ T7469] overlayfs: missing 'lowerdir'
[   81.024893][ T7470] overlayfs: missing 'lowerdir'
[   81.269055][ T7487] dlm: plock device version mismatch: kernel (1.2.0), user (4207687471.1574799195.3139252685)
[   81.326896][ T6116] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   81.431796][   T61] cfg80211: failed to load regulatory.db
[   81.445754][ T7490] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   81.471980][ T7490] kvm: pic: non byte read
[   81.476365][ T7490] kvm: pic: level sensitive irq not supported
[   81.478943][ T7490] kvm: pic: level sensitive irq not supported
[   81.496905][ T6116] usb 6-1: Using ep0 maxpacket: 8
[   81.503112][ T6116] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   81.506279][ T6116] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   81.510618][ T6116] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   81.514197][ T6116] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   81.515056][ T7494] tmpfs: Bad value for 'mpol'
[   81.518259][ T6116] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   81.524638][ T6116] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   81.530030][ T6116] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.739643][ T6116] usb 6-1: usb_control_msg returned -32
[   81.741465][ T6116] usbtmc 6-1:16.0: can't read capabilities
[   81.840831][ T7522] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   81.849996][ T7522] kvm: pic: level sensitive irq not supported
[   81.851200][ T7522] kvm: pic: level sensitive irq not supported
[   81.952774][ T7541] evm: overlay not supported
[   82.005265][ T7547] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=7547 comm=syz.3.546
[   82.208219][ T7569] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   82.211322][ T7569] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   82.234620][ T7571] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   82.439064][ T7593] team0: Failed to send port change of device geneve0 via netlink (err -105)
[   82.442961][ T7593] team0: Failed to send options change via netlink (err -105)
[   82.445977][ T7593] team0: Port device geneve0 added
[   82.488690][ T7597] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[   82.543209][ T7601] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[   82.599096][ T7616] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=7616 comm=syz.0.569
[   82.610956][ T7616] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7616 comm=syz.0.569
[   82.769054][ T2301] usb 6-1: USB disconnect, device number 6
[   82.772576][ T7633] __nla_validate_parse: 16 callbacks suppressed
[   82.772592][ T7633] netlink: 666 bytes leftover after parsing attributes in process `syz.2.574'.
[   82.818342][ T7637] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   83.038077][ T7677] xt_CT: You must specify a L4 protocol and not use inversions on it
[   83.043252][ T7679] mac80211_hwsim hwsim8 `ëÿÿ: renamed from wlan1 (while UP)
[   83.096873][ T7687] tipc: Trying to set illegal importance in message
[   83.172871][ T7698] netlink: 12 bytes leftover after parsing attributes in process `syz.1.600'.
[   83.182587][ T7693] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   83.212640][ T7702] validate_nla: 7 callbacks suppressed
[   83.212681][ T7702] netlink: 'syz.2.602': attribute type 10 has an invalid length.
[   83.228477][   T81] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.241755][ T7702] bridge0: port 3(gretap1) entered disabled state
[   83.244101][ T7702] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.247193][ T7702] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.262314][ T7702] bridge0: port 3(gretap1) entered blocking state
[   83.265021][ T7702] bridge0: port 3(gretap1) entered forwarding state
[   83.267295][ T7702] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.269550][ T7702] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.271990][ T7702] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.274305][ T7702] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.279942][ T7702] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   83.280312][ T7706] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7706 comm=syz.1.604
[   83.283652][ T7705] gretap1: left promiscuous mode
[   83.288433][ T7706] netlink: 4 bytes leftover after parsing attributes in process `syz.1.604'.
[   83.289342][ T7705] bridge0: port 3(gretap1) entered disabled state
[   83.295655][ T7705] bridge_slave_1: left allmulticast mode
[   83.298203][ T7705] bridge_slave_1: left promiscuous mode
[   83.300479][ T7705] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.304060][ T7705] bridge_slave_0: left allmulticast mode
[   83.305966][ T7705] bridge_slave_0: left promiscuous mode
[   83.308206][ T7705] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.318862][ T7705] bond0: (slave bridge0): Releasing backup interface
[   83.417844][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   83.419412][   T81] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.422019][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   83.428226][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   83.431681][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   83.436019][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   83.494133][ T7719] netlink: 'syz.0.607': attribute type 25 has an invalid length.
[   83.520598][ T7723] netlink: 'syz.2.609': attribute type 7 has an invalid length.
[   83.523279][ T7723] netlink: 8 bytes leftover after parsing attributes in process `syz.2.609'.
[   83.527559][   T81] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.556946][   T40] kauditd_printk_skb: 28 callbacks suppressed
[   83.556960][   T40] audit: type=1400 audit(1750094824.658:406): avc:  denied  { read } for  pid=7720 comm="syz.1.608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   83.672583][   T81] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.679199][ T7732] 
: renamed from bridge_slave_0 (while UP)
[   83.720529][ T7713] chnl_net:caif_netlink_parms(): no params data found
[   83.813093][ T7713] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.815398][ T7713] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.819166][ T7713] bridge_slave_0: entered allmulticast mode
[   83.823129][ T7713] bridge_slave_0: entered promiscuous mode
[   83.827574][ T7713] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.830510][ T7713] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.833464][ T7713] bridge_slave_1: entered allmulticast mode
[   83.840482][   T40] audit: type=1400 audit(1750094824.948:407): avc:  denied  { read } for  pid=7749 comm="syz.1.615" name="fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   83.841909][ T7713] bridge_slave_1: entered promiscuous mode
[   83.850551][   T40] audit: type=1400 audit(1750094824.948:408): avc:  denied  { open } for  pid=7749 comm="syz.1.615" path="/dev/fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   83.871883][   T40] audit: type=1400 audit(1750094824.948:409): avc:  denied  { ioctl } for  pid=7749 comm="syz.1.615" path="/dev/fb1" dev="devtmpfs" ino=640 ioctlcmd=0x4610 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   83.941047][ T7713] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   83.950438][ T7713] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.024153][ T7764] create_pit_timer: 1 callbacks suppressed
[   84.024169][ T7764] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   84.035639][ T7713] team0: Port device team_slave_0 added
[   84.041955][ T7764] picdev_read: 14 callbacks suppressed
[   84.041972][ T7764] kvm: pic: non byte read
[   84.050722][ T7713] team0: Port device team_slave_1 added
[   84.053135][ T7764] pic_ioport_write: 6 callbacks suppressed
[   84.053150][ T7764] kvm: pic: level sensitive irq not supported
[   84.056083][ T7764] kvm: pic: non byte read
[   84.062538][ T7764] kvm: pic: level sensitive irq not supported
[   84.062981][ T7764] kvm: pic: non byte read
[   84.109344][   T81] bridge_slave_1: left allmulticast mode
[   84.112191][   T81] bridge_slave_1: left promiscuous mode
[   84.115824][   T81] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.122727][   T81] bridge_slave_0: left allmulticast mode
[   84.125119][   T81] bridge_slave_0: left promiscuous mode
[   84.127922][   T81] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.175587][ T7769] netlink: 'syz.0.621': attribute type 7 has an invalid length.
[   84.178311][ T7769] netlink: 8 bytes leftover after parsing attributes in process `syz.0.621'.
[   84.311570][ T7773] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   84.418827][   T40] audit: type=1400 audit(1750094825.528:410): avc:  denied  { getopt } for  pid=7787 comm="syz.1.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   84.574742][ T7801] netlink: 64 bytes leftover after parsing attributes in process `syz.2.630'.
[   84.862817][   T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   84.870428][   T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   84.875990][   T81] bond0 (unregistering): (slave wlan1): Releasing backup interface
[   84.884149][   T81] bond0 (unregistering): Released all slaves
[   84.890770][ T7713] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.893178][ T7713] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.901635][ T7713] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.926888][ T7799] wireguard0: entered promiscuous mode
[   84.928674][ T7799] wireguard0: entered allmulticast mode
[   84.947612][ T7713] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.949815][ T7713] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.962201][ T7713] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.048698][   T40] audit: type=1400 audit(1750094826.158:411): avc:  denied  { append } for  pid=7816 comm="syz.1.636" name="cec1" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   85.052990][ T7819] netlink: 'syz.0.635': attribute type 32 has an invalid length.
[   85.057401][ T7713] hsr_slave_0: entered promiscuous mode
[   85.058693][ T7819] netlink: 8 bytes leftover after parsing attributes in process `syz.0.635'.
[   85.060316][ T7713] hsr_slave_1: entered promiscuous mode
[   85.065151][ T7713] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.067697][ T7713] Cannot create hsr debugfs directory
[   85.090918][ T7819] (unnamed net_device) (uninitialized): option coupled_control: invalid value (71)
[   85.094109][ T7825] netlink: 'syz.1.638': attribute type 7 has an invalid length.
[   85.094128][ T7825] netlink: 8 bytes leftover after parsing attributes in process `syz.1.638'.
[   85.123417][ T1143] Bluetooth: Error in BCSP hdr checksum
[   85.127450][   T40] audit: type=1400 audit(1750094826.228:412): avc:  denied  { map } for  pid=7817 comm="syz.0.635" path="socket:[17865]" dev="sockfs" ino=17865 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   85.136478][   T40] audit: type=1400 audit(1750094826.228:413): avc:  denied  { read } for  pid=7817 comm="syz.0.635" path="socket:[17865]" dev="sockfs" ino=17865 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   85.147755][ T7831] netlink: 'syz.2.641': attribute type 1 has an invalid length.
[   85.173500][ T7831] 8021q: adding VLAN 0 to HW filter on device bond1
[   85.195304][ T7835] netlink: 28 bytes leftover after parsing attributes in process `syz.2.641'.
[   85.347687][ T7847] IPVS: Unknown mcast interface: wlan1
[   85.398783][   T81] hsr_slave_0: left promiscuous mode
[   85.403537][   T81] hsr_slave_1: left promiscuous mode
[   85.405762][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   85.408163][   T81] batman_adv: batadv0: Removing interface: batadv_slave_0
[   85.411392][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   85.412385][ T7854] /dev/nullb0: Can't open blockdev
[   85.413722][   T81] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.440040][   T81] veth1_macvtap: left promiscuous mode
[   85.443094][   T81] veth0_macvtap: left promiscuous mode
[   85.445594][   T81] veth1_vlan: left promiscuous mode
[   85.447756][   T81] veth0_vlan: left promiscuous mode
[   85.455343][ T7857] netlink: 'syz.2.648': attribute type 7 has an invalid length.
[   85.458357][ T7857] netlink: 8 bytes leftover after parsing attributes in process `syz.2.648'.
[   85.534856][ T5303] Bluetooth: hci0: command tx timeout
[   85.687968][ T7872] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7872 comm=syz.1.652
[   85.957582][   T81] team0 (unregistering): Port device team_slave_1 removed
[   86.014005][   T81] team0 (unregistering): Port device team_slave_0 removed
[   86.513346][ T7713] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   86.522053][ T7713] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   86.530299][ T7713] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   86.544366][ T7713] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   86.555927][   T40] audit: type=1400 audit(1750094827.575:414): avc:  denied  { mount } for  pid=7879 comm="syz.2.654" name="/" dev="hugetlbfs" ino=18704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[   86.581277][ T7889] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   86.602211][ T7889] kvm: pic: non byte read
[   86.608197][ T7889] kvm: pic: level sensitive irq not supported
[   86.608905][ T7889] kvm: pic: non byte read
[   86.614714][ T7889] kvm: pic: level sensitive irq not supported
[   86.615184][ T7889] kvm: pic: non byte read
[   86.632297][ T7713] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.660453][ T7713] 8021q: adding VLAN 0 to HW filter on device team0
[   86.666282][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.668673][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.680939][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.683325][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.706758][   T40] audit: type=1400 audit(1750094827.715:415): avc:  denied  { setopt } for  pid=7900 comm="syz.2.658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   86.766062][ T7911] netlink: 'syz.2.660': attribute type 7 has an invalid length.
[   86.792483][   T81] IPVS: stop unused estimator thread 0...
[   86.799401][ T7713] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.951304][ T7713] veth0_vlan: entered promiscuous mode
[   86.957944][ T7713] veth1_vlan: entered promiscuous mode
[   86.973197][ T7713] veth0_macvtap: entered promiscuous mode
[   86.977734][ T7713] veth1_macvtap: entered promiscuous mode
[   86.986166][ T7713] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.993581][ T7713] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.998431][ T7713] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.002014][ T7713] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.004751][ T7713] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.007478][ T7713] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.009917][ T7953] netlink: 'syz.1.671': attribute type 7 has an invalid length.
[   87.066550][ T7958] ksmbd: Unknown IPC event: 0, ignore.
[   87.071393][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.076923][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.114719][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.118264][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.311588][ T8003] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[   87.332574][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   87.431447][ T8010] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   87.639636][ T8072] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048)
[   87.700466][ T8078] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   87.727881][ T8075] 8021q: adding VLAN 0 to HW filter on device bond3
[   87.731144][ T8075] bond2: (slave bond3): making interface the new active one
[   87.733655][ T8075] bond2: (slave bond3): Enslaving as an active interface with an up link
[   87.757770][ T5303] Bluetooth: hci0: command tx timeout
[   87.770751][ T8076] 8021q: adding VLAN 0 to HW filter on device bond4
[   87.774174][ T8076] bond2: (slave bond4): Enslaving as a backup interface with an up link
[   87.977524][ T8131] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   87.990136][ T8131] kvm: pic: non byte read
[   87.992554][ T8131] kvm: pic: level sensitive irq not supported
[   87.993269][ T8131] kvm: pic: non byte read
[   88.004969][ T8131] kvm: pic: level sensitive irq not supported
[   88.005708][ T8131] kvm: pic: non byte read
[   88.010940][ T8131] kvm: pic: level sensitive irq not supported
[   88.011824][ T8131] kvm: pic: non byte read
[   88.024858][ T8140] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   88.185638][ T5303] Bluetooth: hci1: command 0x0406 tx timeout
[   88.202885][ T8160] __nla_validate_parse: 15 callbacks suppressed
[   88.202896][ T8160] netlink: 8 bytes leftover after parsing attributes in process `syz.1.731'.
[   88.385303][ T8184] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   88.396325][ T8187] input: syz0 as /devices/virtual/input/input11
[   88.423275][ T8184] kvm: pic: level sensitive irq not supported
[   88.428403][ T8184] kvm: pic: level sensitive irq not supported
[   88.434615][ T8184] kvm: pic: level sensitive irq not supported
[   88.526581][ T8197] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   88.550778][ T8202] validate_nla: 10 callbacks suppressed
[   88.550789][ T8202] netlink: 'syz.4.741': attribute type 7 has an invalid length.
[   88.555044][ T8202] netlink: 8 bytes leftover after parsing attributes in process `syz.4.741'.
[   88.634791][ T8211] netlink: 8 bytes leftover after parsing attributes in process `syz.0.744'.
[   88.649637][ T8211] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8211 comm=syz.0.744
[   88.749947][ T8225] netlink: 'syz.0.746': attribute type 1 has an invalid length.
[   88.850129][   T63] Bluetooth: hci0: Received unexpected HCI Event 0x00
[   89.174481][ T8264] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   89.249947][ T8273] nbd: must specify a device to reconfigure
[   89.251976][ T8272] nbd: must specify a device to reconfigure
[   89.255220][   T40] kauditd_printk_skb: 11 callbacks suppressed
[   89.255230][   T40] audit: type=1400 audit(1750094830.101:427): avc:  denied  { getopt } for  pid=8271 comm="syz.1.754" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   89.431785][ T8279] mkiss: ax0: crc mode is auto.
[   89.545146][   T40] audit: type=1400 audit(1750094830.372:428): avc:  denied  { mount } for  pid=8280 comm="syz.0.756" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   89.561264][   T40] audit: type=1400 audit(1750094830.381:429): avc:  denied  { unmount } for  pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   89.624266][   T63] Bluetooth: hci1: unexpected event for opcode 0x0c6d
[   89.624280][ T8287] nbd: must specify at least one socket
[   89.667711][ T8289] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   89.677069][ T8289] picdev_read: 4 callbacks suppressed
[   89.677086][ T8289] kvm: pic: non byte read
[   89.681436][ T8289] kvm: pic: level sensitive irq not supported
[   89.681987][ T8289] kvm: pic: non byte read
[   89.686759][ T8289] kvm: pic: level sensitive irq not supported
[   89.687058][ T8289] kvm: pic: non byte read
[   89.691652][ T8289] kvm: pic: level sensitive irq not supported
[   89.691942][ T8289] kvm: pic: non byte read
[   89.740375][   T40] audit: type=1400 audit(1750094830.550:430): avc:  denied  { name_bind } for  pid=8293 comm="syz.4.760" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   89.826722][ T8304] lo: entered allmulticast mode
[   89.832996][ T8303] lo: left allmulticast mode
[   89.863420][   T40] audit: type=1400 audit(1750094830.662:431): avc:  denied  { create } for  pid=8307 comm="syz.0.765" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   89.867730][ T8306] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   89.873135][   T40] audit: type=1400 audit(1750094830.662:432): avc:  denied  { mounton } for  pid=8307 comm="syz.0.765" path="/188/file0" dev="tmpfs" ino=1028 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   89.920796][   T40] audit: type=1400 audit(1750094830.718:433): avc:  denied  { unlink } for  pid=5940 comm="syz-executor" name="file0" dev="tmpfs" ino=1028 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   89.992327][   T63] Bluetooth: hci0: command tx timeout
[   90.058404][ T8326] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   90.079163][ T8326] kvm: pic: non byte read
[   90.082405][ T8326] kvm: pic: level sensitive irq not supported
[   90.082829][ T8326] kvm: pic: non byte read
[   90.087728][ T8326] kvm: pic: level sensitive irq not supported
[   90.088040][ T8326] kvm: pic: non byte read
[   90.094995][ T8326] kvm: pic: level sensitive irq not supported
[   90.100200][ T8326] kvm: pic: non byte read
[   90.222182][ T8355] pimreg: entered allmulticast mode
[   90.246133][   T40] audit: type=1400 audit(1750094831.017:434): avc:  denied  { ioctl } for  pid=8367 comm="syz.4.782" path="socket:[20099]" dev="sockfs" ino=20099 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   90.255044][   T40] audit: type=1400 audit(1750094831.017:435): avc:  denied  { accept } for  pid=8367 comm="syz.4.782" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   90.394639][ T8389] netlink: 8 bytes leftover after parsing attributes in process `syz.2.791'.
[   90.397972][ T8389] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=568 sclass=netlink_route_socket pid=8389 comm=syz.2.791
[   90.409942][ T8384] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   90.411371][   T40] audit: type=1400 audit(1750094831.176:436): avc:  denied  { create } for  pid=8388 comm="syz.2.791" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   90.423686][ T8384] kvm: pic: non byte read
[   90.427046][ T8384] kvm: pic: level sensitive irq not supported
[   90.427349][ T8384] kvm: pic: non byte read
[   90.434709][ T8384] kvm: pic: level sensitive irq not supported
[   90.436275][ T8384] kvm: pic: level sensitive irq not supported
[   90.526612][ T8405] block device autoloading is deprecated and will be removed.
[   90.538602][ T8408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.798'.
[   90.542552][ T8408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.798'.
[   90.545528][ T8408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.798'.
[   90.549585][ T8408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.798'.
[   90.552388][ T8408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.798'.
[   90.555227][ T8408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.798'.
[   90.666848][ T2301] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[   90.669607][ T2301] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[   90.679492][ T8427] openvswitch: netlink: Message has 3 unknown bytes.
[   90.681705][ T8427] openvswitch: netlink: Actions may not be safe on all matching packets
[   90.782103][ T8434] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   90.797582][ T8442] netlink: 'syz.4.809': attribute type 5 has an invalid length.
[   90.800616][ T8442] netlink: 'syz.4.809': attribute type 7 has an invalid length.
[   90.801183][ T8434] kvm: pic: level sensitive irq not supported
[   90.809102][ T8442] : entered promiscuous mode
[   90.890714][ T8447] kvm: MWAIT instruction emulated as NOP!
[   91.029511][ T8460] netlink: 'syz.2.813': attribute type 1 has an invalid length.
[   91.042003][ T8460] 8021q: adding VLAN 0 to HW filter on device bond2
[   91.091814][ T8460] bond2: (slave gretap2): making interface the new active one
[   91.097302][ T8460] bond2: (slave gretap2): Enslaving as an active interface with an up link
[   91.247921][ T8481] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   91.371228][   T54] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   91.450209][ T8485] 9pnet_fd: p9_fd_create_tcp (8485): problem binding to privport
[   91.526909][ T8493] mkiss: ax0: crc mode is auto.
[   91.553014][   T54] usb 5-1: Using ep0 maxpacket: 8
[   91.563053][   T54] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   91.566611][   T54] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   91.570707][   T54] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   91.575243][   T54] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   91.578535][   T54] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   91.583580][   T54] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   91.587487][   T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.807858][   T54] usb 5-1: usb_control_msg returned -32
[   91.810057][   T54] usbtmc 5-1:16.0: can't read capabilities
[   92.002508][ T8521] overlayfs: failed to resolve './file0::': -2
[   92.082134][ T8540] netlink: 'syz.1.838': attribute type 1 has an invalid length.
[   92.114329][ T8545] XFS (nbd1): no-recovery mounts must be read-only.
[   92.205971][   T63] Bluetooth: hci0: command tx timeout
[   92.284660][ T8552] usbtmc 5-1:16.0: usb_control_msg returned -32
[   92.501579][  T835] usb 5-1: USB disconnect, device number 2
[   92.794726][ T8605] netlink: 'syz.2.858': attribute type 4 has an invalid length.
[   92.842158][ T8605] netlink: 'syz.2.858': attribute type 4 has an invalid length.
[   92.900111][   T63] Bluetooth: hci3: command 0x0c1a tx timeout
[   92.902681][ T2301] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[   92.906184][ T2301] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[   92.922736][ T8623] tmpfs: Bad value for 'mpol'
[   93.068003][ T8655] nbd: must specify a device to reconfigure
[   94.656269][ T8688] IPv6: syztnl0: Disabled Multicast RS
[   94.718035][   T40] kauditd_printk_skb: 13 callbacks suppressed
[   94.718045][   T40] audit: type=1400 audit(1750094835.208:450): avc:  denied  { getopt } for  pid=8692 comm="syz.2.884" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   95.054832][   T40] audit: type=1400 audit(1750094835.517:451): avc:  denied  { ioctl } for  pid=8698 comm="syz.2.886" path="socket:[21929]" dev="sockfs" ino=21929 ioctlcmd=0x8907 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   95.114366][ T2301] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[   95.116436][ T2301] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[   95.117303][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[   95.793852][   T40] audit: type=1400 audit(1750094836.209:452): avc:  denied  { accept } for  pid=8707 comm="syz.2.887" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   95.800259][ T8708] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[   95.873131][ T8712] __nla_validate_parse: 30 callbacks suppressed
[   95.873142][ T8712] netlink: 36 bytes leftover after parsing attributes in process `syz.2.889'.
[   96.136731][    C1] vkms_vblank_simulate: vblank timer overrun
[   96.335159][   T40] audit: type=1400 audit(1750094836.714:453): avc:  denied  { getopt } for  pid=8730 comm="syz.2.894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   96.397864][ T8733] netlink: 44 bytes leftover after parsing attributes in process `syz.2.895'.
[   96.402463][ T8733] netlink: 'syz.2.895': attribute type 6 has an invalid length.
[   96.419039][ T8733] netlink: 'syz.2.895': attribute type 5 has an invalid length.
[   96.422322][ T8733] netlink: 'syz.2.895': attribute type 4 has an invalid length.
[   96.801651][ T8740] netlink: 20 bytes leftover after parsing attributes in process `syz.2.898'.
[   96.879423][ T8742] netlink: 36 bytes leftover after parsing attributes in process `syz.2.899'.
[   96.936749][ T8744] netlink: 12 bytes leftover after parsing attributes in process `syz.2.900'.
[   97.107020][    C1] vkms_vblank_simulate: vblank timer overrun
[   97.339327][   T63] Bluetooth: hci0: command 0x0c1a tx timeout
[   97.339962][ T2301] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[   97.345427][ T2301] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[   97.504677][    C1] vkms_vblank_simulate: vblank timer overrun
[   97.652403][ T8750] @: renamed from vlan0 (while UP)
[   97.678253][ T8752] netlink: 'syz.0.903': attribute type 9 has an invalid length.
[   97.773273][   T40] audit: type=1400 audit(1750094838.061:454): avc:  denied  { remount } for  pid=8756 comm="syz.1.905" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   97.847375][ T8763] Bluetooth: MGMT ver 1.23
[   98.012401][ T8764] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   98.060432][ T8770] netlink: 36 bytes leftover after parsing attributes in process `syz.2.908'.
[   98.143002][ T8772] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   98.317455][   T40] audit: type=1400 audit(1750094838.575:455): avc:  denied  { accept } for  pid=8775 comm="syz.2.910" lport=52159 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   98.361120][   T40] audit: type=1400 audit(1750094838.575:456): avc:  denied  { mount } for  pid=8775 comm="syz.2.910" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   98.362875][ T8776] bond3: entered promiscuous mode
[   98.392031][   T40] audit: type=1400 audit(1750094838.575:457): avc:  denied  { write } for  pid=8775 comm="syz.2.910" lport=52159 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[   98.392780][ T8776] bond3: entered allmulticast mode
[   98.436388][   T40] audit: type=1400 audit(1750094838.575:458): avc:  denied  { setopt } for  pid=8775 comm="syz.2.910" lport=52159 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[   98.485236][ T8776] 8021q: adding VLAN 0 to HW filter on device bond3
[   98.551671][ T8784] loop6: detected capacity change from 0 to 63
[   98.559060][   T40] audit: type=1400 audit(1750094838.800:459): avc:  denied  { map } for  pid=8783 comm="syz.1.913" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   98.579410][ T8784] Buffer I/O error on dev loop6, logical block 0, async page read
[   98.605098][ T8784] Buffer I/O error on dev loop6, logical block 1, async page read
[   98.611411][ T8786] netlink: 'syz.0.912': attribute type 1 has an invalid length.
[   98.613844][ T8784] Buffer I/O error on dev loop6, logical block 2, async page read
[   98.617217][ T8786] netlink: 224 bytes leftover after parsing attributes in process `syz.0.912'.
[   98.655321][ T8784] Buffer I/O error on dev loop6, logical block 3, async page read
[   98.662424][ T5952] Buffer I/O error on dev loop6, logical block 0, async page read
[   98.687682][ T5952] Buffer I/O error on dev loop6, logical block 1, async page read
[   98.693406][ T5952] Buffer I/O error on dev loop6, logical block 2, async page read
[   98.699629][ T5952] Buffer I/O error on dev loop6, logical block 3, async page read
[   98.711201][ T8784] Buffer I/O error on dev loop6, logical block 0, async page read
[   98.717761][ T8784] Buffer I/O error on dev loop6, logical block 1, async page read
[   99.042127][ T8797] netlink: 'syz.2.917': attribute type 1 has an invalid length.
[   99.060022][ T8797] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   99.184215][ T8800] netlink: 36 bytes leftover after parsing attributes in process `syz.2.918'.
[   99.832428][ T8816] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   99.950760][ T8832] netlink: 8 bytes leftover after parsing attributes in process `syz.1.926'.
[  100.058122][ T8835] fuseblk: Unknown parameter 'mask'
[  100.077243][ T8837] netlink: 36 bytes leftover after parsing attributes in process `syz.2.927'.
[  100.184767][ T8757] syz.4.904 (8757): drop_caches: 1
[  100.471264][ T8857] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  100.508027][ T8857] ocfs2: Unknown parameter 'grpquota¢¦¨@@@'
[  100.554973][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  100.554989][   T40] audit: type=1400 audit(1750094840.661:462): avc:  denied  { write } for  pid=8859 comm="syz.0.936" name="file0" dev="tmpfs" ino=1152 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  100.566726][    T9] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[  100.589487][   T40] audit: type=1400 audit(1750094840.680:463): avc:  denied  { open } for  pid=8859 comm="syz.0.936" path="/212/file0" dev="tmpfs" ino=1152 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  100.642969][   T40] audit: type=1400 audit(1750094840.680:464): avc:  denied  { ioctl } for  pid=8859 comm="syz.0.936" path="/212/file0" dev="tmpfs" ino=1152 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  100.856614][    T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 32, setting to 8
[  100.861413][    T9] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 is Bulk; changing to Interrupt
[  100.866122][    T9] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 is Bulk; changing to Interrupt
[  100.875169][    T9] usb 6-1: string descriptor 0 read error: -22
[  100.879513][    T9] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  100.884754][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.898126][ T8850] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  101.183992][    T9] cdc_ncm 6-1:1.0: bind() failure
[  101.192698][    T9] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  101.200169][    T9] cdc_ncm 6-1:1.1: bind() failure
[  101.215076][    T9] usb 6-1: USB disconnect, device number 7
[  101.480174][   T40] audit: type=1400 audit(1750094841.531:465): avc:  denied  { wake_alarm } for  pid=8896 comm="syz.2.945" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  101.509192][ T8894] __nla_validate_parse: 6 callbacks suppressed
[  101.509211][ T8894] netlink: 4 bytes leftover after parsing attributes in process `syz.4.943'.
[  101.549846][   T40] audit: type=1400 audit(1750094841.578:466): avc:  denied  { getopt } for  pid=8892 comm="syz.4.943" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  101.560623][   T40] audit: type=1400 audit(1750094841.597:467): avc:  denied  { setopt } for  pid=8892 comm="syz.4.943" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  101.804307][ T8918] netlink: 'syz.4.950': attribute type 7 has an invalid length.
[  101.815024][ T8918] netlink: 8 bytes leftover after parsing attributes in process `syz.4.950'.
[  101.831304][ T8919] overlayfs: failed to resolve './file1/file0': -2
[  102.082079][ T8934] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  102.182642][    C1] hrtimer: interrupt took 8656241 ns
[  102.241436][ T8938] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  102.443672][ T8949] netlink: 20 bytes leftover after parsing attributes in process `syz.0.955'.
[  102.553285][   T40] audit: type=1400 audit(1750094842.532:468): avc:  denied  { read } for  pid=8953 comm="syz.4.956" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  102.564034][   T40] audit: type=1400 audit(1750094842.551:469): avc:  denied  { write } for  pid=8953 comm="syz.4.956" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  102.590886][ T8957] netlink: 44 bytes leftover after parsing attributes in process `syz.2.957'.
[  102.632996][ T8957] netlink: 'syz.2.957': attribute type 6 has an invalid length.
[  102.636293][ T8957] netlink: 'syz.2.957': attribute type 5 has an invalid length.
[  102.644767][ T8957] netlink: 'syz.2.957': attribute type 4 has an invalid length.
[  102.796272][ T8965] netlink: 'syz.2.960': attribute type 7 has an invalid length.
[  102.801077][ T8965] netlink: 8 bytes leftover after parsing attributes in process `syz.2.960'.
[  102.900490][   T40] audit: type=1400 audit(1750094842.859:470): avc:  denied  { read } for  pid=8968 comm="syz.4.961" path="socket:[24805]" dev="sockfs" ino=24805 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  102.995541][ T8974] overlayfs: failed to resolve './file1/file0': -2
[  103.167326][ T8983] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  103.189218][ T8983] pic_ioport_write: 5 callbacks suppressed
[  103.189292][ T8983] kvm: pic: level sensitive irq not supported
[  103.192370][ T8979] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  103.196972][ T8983] picdev_read: 10 callbacks suppressed
[  103.196994][ T8983] kvm: pic: non byte read
[  103.240174][ T8983] kvm: pic: level sensitive irq not supported
[  103.241365][ T8983] kvm: pic: non byte read
[  103.272527][ T8983] kvm: pic: level sensitive irq not supported
[  103.272953][ T8983] kvm: pic: non byte read
[  103.283365][ T8983] kvm: pic: level sensitive irq not supported
[  103.284072][ T8983] kvm: pic: non byte read
[  103.324608][ T8983] kvm: pic: level sensitive irq not supported
[  103.325062][ T8983] kvm: pic: non byte read
[  103.346405][ T8983] kvm: pic: level sensitive irq not supported
[  103.346780][ T8983] kvm: pic: non byte read
[  103.354128][ T8983] kvm: pic: level sensitive irq not supported
[  103.354498][ T8983] kvm: pic: non byte read
[  103.366971][ T8983] kvm: pic: level sensitive irq not supported
[  103.367713][ T8983] kvm: pic: non byte read
[  103.374697][ T8983] kvm: pic: level sensitive irq not supported
[  103.375336][ T8983] kvm: pic: non byte read
[  103.383788][ T8983] kvm: pic: level sensitive irq not supported
[  103.384265][ T8983] kvm: pic: non byte read
[  103.395102][ T8990] netlink: 20 bytes leftover after parsing attributes in process `syz.4.967'.
[  103.858088][ T2301] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[  104.039410][ T2301] usb 9-1: config 0 has no interfaces?
[  104.066046][   T40] audit: type=1400 audit(1750094843.954:471): avc:  denied  { create } for  pid=8995 comm="syz.0.969" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  104.067115][ T2301] usb 9-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.01
[  104.093812][ T8999] netlink: 'syz.2.970': attribute type 7 has an invalid length.
[  104.093840][ T8999] netlink: 8 bytes leftover after parsing attributes in process `syz.2.970'.
[  104.096216][ T8997] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  104.165164][ T2301] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.165187][ T2301] usb 9-1: Product: syz
[  104.165200][ T2301] usb 9-1: Manufacturer: syz
[  104.165212][ T2301] usb 9-1: SerialNumber: syz
[  104.171292][ T2301] usb 9-1: config 0 descriptor??
[  104.430088][ T9012] overlayfs: failed to clone upperpath
[  104.470066][ T9014] overlayfs: failed to resolve './file1/file0': -2
[  104.662897][ T9019] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  104.673526][ T2301] usb 9-1: USB disconnect, device number 2
[  105.368517][ T9026] netlink: 20 bytes leftover after parsing attributes in process `syz.4.979'.
[  105.513100][ T9029] netlink: 'syz.4.980': attribute type 7 has an invalid length.
[  105.519549][ T9029] netlink: 8 bytes leftover after parsing attributes in process `syz.4.980'.
[  105.756761][ T9046] overlayfs: failed to resolve './file1/file0': -2
[  106.187391][ T9069] netlink: 'syz.1.992': attribute type 7 has an invalid length.
[  106.191244][ T9069] netlink: 8 bytes leftover after parsing attributes in process `syz.1.992'.
[  106.391207][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  106.391222][   T40] audit: type=1400 audit(1750094846.124:473): avc:  denied  { read } for  pid=9078 comm="syz.2.997" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  106.434848][ T9081] overlayfs: failed to resolve './file1/file0': -2
[  106.879694][ T9107] __nla_validate_parse: 1 callbacks suppressed
[  106.879711][ T9107] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1006'.
[  106.892827][ T9107] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1006'.
[  106.892960][ T9111] overlayfs: failed to resolve './file1/file0': -2
[  106.921269][   T40] audit: type=1400 audit(1750094846.610:474): avc:  denied  { setopt } for  pid=9108 comm="syz.0.1007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  107.030658][   T40] audit: type=1400 audit(1750094846.695:475): avc:  denied  { listen } for  pid=9112 comm="syz.0.1009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  107.412129][ T9135] xt_socket: unknown flags 0x50
[  107.594611][ T9147] overlayfs: failed to clone upperpath
[  107.654705][   T40] audit: type=1800 audit(1750094847.312:476): pid=9143 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.1018" name="dmabuf" dev="dmabuf" ino=1 res=0 errno=0
[  107.809477][   T40] audit: type=1400 audit(1750094847.452:477): avc:  denied  { unmount } for  pid=5938 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  107.833966][ T2092] IPVS: starting estimator thread 0...
[  107.899465][ T9157] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1023'.
[  107.974130][ T9155] IPVS: using max 30 ests per chain, 72000 per kthread
[  108.159782][    C3] vkms_vblank_simulate: vblank timer overrun
[  108.197875][ T9168] bond0: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  108.223408][ T9171] netlink: 696 bytes leftover after parsing attributes in process `syz.2.1028'.
[  108.281279][ T9175] overlayfs: failed to clone upperpath
[  108.367197][   T40] audit: type=1400 audit(1750094847.967:478): avc:  denied  { read } for  pid=5337 comm="acpid" name="event6" dev="devtmpfs" ino=2902 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  108.403210][   T40] audit: type=1400 audit(1750094847.967:479): avc:  denied  { open } for  pid=5337 comm="acpid" path="/dev/input/event6" dev="devtmpfs" ino=2902 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  108.431696][   T40] audit: type=1400 audit(1750094847.967:480): avc:  denied  { ioctl } for  pid=5337 comm="acpid" path="/dev/input/event6" dev="devtmpfs" ino=2902 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  108.439850][ T9179] xt_hashlimit: size too large, truncated to 1048576
[  108.633924][   T40] audit: type=1400 audit(1750094848.219:481): avc:  denied  { create } for  pid=9186 comm="syz.1.1034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  108.646173][   T40] audit: type=1400 audit(1750094848.219:482): avc:  denied  { write } for  pid=9186 comm="syz.1.1034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  108.807987][ T9195] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1036'.
[  108.941040][ T9207] bond0: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  108.977330][    C3] vkms_vblank_simulate: vblank timer overrun
[  108.984713][ T9209] overlayfs: failed to clone upperpath
[  109.154839][ T9220] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  109.295858][    C3] vkms_vblank_simulate: vblank timer overrun
[  109.477510][ T9240] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1048'.
[  109.610936][ T9243] RDS: rds_bind could not find a transport for ::ffff:10.1.1.0, load rds_tcp or rds_rdma?
[  109.657812][ T9246] bond0: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  109.683358][ T9248] overlayfs: overlapping lowerdir path
[  110.110907][ T9263] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1056'.
[  110.135803][ T9263] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1056'.
[  110.159000][ T9266] netlink: 'syz.1.1057': attribute type 7 has an invalid length.
[  110.162312][ T9266] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1057'.
[  110.210588][ T9261] kvm: apic: phys broadcast and lowest prio
[  110.289461][ T9263] *****************************************************
[  110.292883][ T9263] ORANGEFS Device Error:  You cannot open the device file 
[  110.292898][ T9263] 
[  110.292898][ T9263] /dev/pvfs2-req more than once.  Please make sure that
[  110.292898][ T9263] there are no 
[  110.298807][ T9263] instances of a program using this device
[  110.298807][ T9263] currently running. (You must verify this!)
[  110.315281][ T9263] For example, you can use the lsof program as follows:
[  110.319805][ T9263] 'lsof | grep pvfs2-req' (run this as root)
[  110.323587][ T9263]   open_access_count = 1
[  110.330450][ T9263] *****************************************************
[  110.489866][ T9272] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1059'.
[  110.556825][ T9276] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  110.630452][ T9279] overlayfs: overlapping lowerdir path
[  110.672501][ T9280] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  110.828541][    C3] vkms_vblank_simulate: vblank timer overrun
[  110.868033][ T9285] netlink: 'syz.1.1067': attribute type 7 has an invalid length.
[  110.925917][ T9287] Bluetooth: MGMT ver 1.23
[  110.992485][ T9292] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  110.995804][ T9292] overlayfs: failed to set xattr on upper
[  110.998647][ T9292] overlayfs: ...falling back to redirect_dir=nofollow.
[  111.006967][ T9290] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  111.031225][ T9292] overlayfs: ...falling back to metacopy=off.
[  111.034041][ T9292] overlayfs: ...falling back to index=off.
[  111.037323][ T9292] overlayfs: ...falling back to uuid=null.
[  111.221176][ T9300] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  111.322164][ T9302] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9302 comm=syz.4.1069
[  111.429665][ T9301] delete_channel: no stack
[  111.592118][ T9327] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  111.760508][    C3] vkms_vblank_simulate: vblank timer overrun
[  111.765377][   T40] kauditd_printk_skb: 20 callbacks suppressed
[  111.765394][   T40] audit: type=1400 audit(1750094851.138:503): avc:  denied  { nlmsg_write } for  pid=9331 comm="syz.0.1074" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  112.020582][    C3] vkms_vblank_simulate: vblank timer overrun
[  112.056792][ T9340] overlayfs: failed to clone upperpath
[  112.224463][    C3] vkms_vblank_simulate: vblank timer overrun
[  112.409297][ T9348] netlink: 'syz.2.1079': attribute type 7 has an invalid length.
[  112.413097][ T9348] __nla_validate_parse: 34 callbacks suppressed
[  112.413110][ T9348] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1079'.
[  112.485636][ T9346] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  112.534281][ T9357] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  112.640339][ T9367] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  112.806485][ T9376] netlink: 'syz.0.1085': attribute type 10 has an invalid length.
[  112.879602][ T9376] 8021q: adding VLAN 0 to HW filter on device batadv0
[  112.905722][ T9376] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  113.028300][ T9390] netlink: 'syz.1.1090': attribute type 7 has an invalid length.
[  113.033773][ T9390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1090'.
[  113.236549][    C3] vkms_vblank_simulate: vblank timer overrun
[  113.354731][ T9403] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'.
[  113.371853][   T40] audit: type=1400 audit(1750094852.644:504): avc:  denied  { ioctl } for  pid=9400 comm="syz.4.1094" path="socket:[25330]" dev="sockfs" ino=25330 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  113.447553][    C3] vkms_vblank_simulate: vblank timer overrun
[  113.473108][ T9405] all: renamed from lo (while UP)
[  113.504360][   T40] audit: type=1400 audit(1750094852.784:505): avc:  denied  { ioctl } for  pid=9404 comm="syz.0.1095" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1295 ioctlcmd=0x9422 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  113.757203][    C3] vkms_vblank_simulate: vblank timer overrun
[  113.832517][    C3] vkms_vblank_simulate: vblank timer overrun
[  113.949013][ T9409] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  113.999837][ T9421] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  114.163036][ T9424] netlink: 'syz.2.1101': attribute type 7 has an invalid length.
[  114.203082][ T9424] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1101'.
[  114.354602][ T9430] FAULT_INJECTION: forcing a failure.
[  114.354602][ T9430] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  114.360456][ T9430] CPU: 3 UID: 0 PID: 9430 Comm: syz.4.1103 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(full) 
[  114.360479][ T9430] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.360490][ T9430] Call Trace:
[  114.360497][ T9430]  <TASK>
[  114.360504][ T9430]  dump_stack_lvl+0x16c/0x1f0
[  114.360558][ T9430]  should_fail_ex+0x512/0x640
[  114.360589][ T9430]  _copy_from_user+0x2e/0xd0
[  114.360614][ T9430]  copy_msghdr_from_user+0x98/0x160
[  114.360637][ T9430]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  114.360671][ T9430]  ___sys_sendmsg+0xfe/0x1d0
[  114.360769][ T9430]  ? __pfx____sys_sendmsg+0x10/0x10
[  114.360791][ T9430]  ? __lock_acquire+0x622/0x1c90
[  114.360844][ T9430]  __sys_sendmsg+0x16d/0x220
[  114.360873][ T9430]  ? __pfx___sys_sendmsg+0x10/0x10
[  114.360913][ T9430]  ? fput+0x70/0xf0
[  114.360943][ T9430]  do_syscall_64+0xcd/0x4c0
[  114.360970][ T9430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.360987][ T9430] RIP: 0033:0x7f7e6498e929
[  114.361001][ T9430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.361017][ T9430] RSP: 002b:00007f7e65826038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.361034][ T9430] RAX: ffffffffffffffda RBX: 00007f7e64bb5fa0 RCX: 00007f7e6498e929
[  114.361045][ T9430] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  114.361055][ T9430] RBP: 00007f7e65826090 R08: 0000000000000000 R09: 0000000000000000
[  114.361064][ T9430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.361074][ T9430] R13: 0000000000000000 R14: 00007f7e64bb5fa0 R15: 00007fff337b4dc8
[  114.361097][ T9430]  </TASK>
[  114.450981][    C3] vkms_vblank_simulate: vblank timer overrun
[  114.501669][ T9434] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1105'.
[  114.545248][   T40] audit: type=1400 audit(1750094853.729:506): avc:  denied  { accept } for  pid=9431 comm="syz.1.1104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  114.575868][   T40] audit: type=1400 audit(1750094853.729:507): avc:  denied  { read } for  pid=9431 comm="syz.1.1104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  114.711216][ T9442] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1107'.
[  114.715882][ T9442] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1107'.
[  114.838978][ T9453] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  114.861098][ T9455] netlink: 'syz.0.1113': attribute type 7 has an invalid length.
[  114.864016][ T9455] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1113'.
[  114.928718][   T40] audit: type=1400 audit(1750094854.112:508): avc:  denied  { accept } for  pid=9457 comm="syz.1.1114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  115.033439][ T9462] FAULT_INJECTION: forcing a failure.
[  115.033439][ T9462] name failslab, interval 1, probability 0, space 0, times 1
[  115.039522][ T9462] CPU: 2 UID: 0 PID: 9462 Comm: syz.1.1116 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(full) 
[  115.039552][ T9462] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.039565][ T9462] Call Trace:
[  115.039574][ T9462]  <TASK>
[  115.039583][ T9462]  dump_stack_lvl+0x16c/0x1f0
[  115.039632][ T9462]  should_fail_ex+0x512/0x640
[  115.039660][ T9462]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  115.039690][ T9462]  should_failslab+0xc2/0x120
[  115.039720][ T9462]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  115.039746][ T9462]  ? __alloc_skb+0x2b2/0x380
[  115.039780][ T9462]  __alloc_skb+0x2b2/0x380
[  115.039808][ T9462]  ? __pfx___alloc_skb+0x10/0x10
[  115.039841][ T9462]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  115.039869][ T9462]  netlink_alloc_large_skb+0x69/0x130
[  115.039894][ T9462]  netlink_sendmsg+0x6a1/0xdd0
[  115.039921][ T9462]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.040434][ T9462]  ____sys_sendmsg+0xa95/0xc70
[  115.040466][ T9462]  ? copy_msghdr_from_user+0x10a/0x160
[  115.040496][ T9462]  ? __pfx_____sys_sendmsg+0x10/0x10
[  115.040533][ T9462]  ___sys_sendmsg+0x134/0x1d0
[  115.040565][ T9462]  ? __pfx____sys_sendmsg+0x10/0x10
[  115.040592][ T9462]  ? __lock_acquire+0x622/0x1c90
[  115.040667][ T9462]  __sys_sendmsg+0x16d/0x220
[  115.040699][ T9462]  ? __pfx___sys_sendmsg+0x10/0x10
[  115.040749][ T9462]  do_syscall_64+0xcd/0x4c0
[  115.040784][ T9462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.040805][ T9462] RIP: 0033:0x7fdbee78e929
[  115.040823][ T9462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.040844][ T9462] RSP: 002b:00007fdbef5b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.040870][ T9462] RAX: ffffffffffffffda RBX: 00007fdbee9b5fa0 RCX: 00007fdbee78e929
[  115.040884][ T9462] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  115.040897][ T9462] RBP: 00007fdbef5b4090 R08: 0000000000000000 R09: 0000000000000000
[  115.040910][ T9462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.040922][ T9462] R13: 0000000000000000 R14: 00007fdbee9b5fa0 R15: 00007fff7dcf91a8
[  115.040950][ T9462]  </TASK>
[  115.523638][ T9465] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  115.692505][   T40] audit: type=1400 audit(1750094854.814:509): avc:  denied  { ioctl } for  pid=9471 comm="syz.0.1119" path="socket:[25980]" dev="sockfs" ino=25980 ioctlcmd=0x9365 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  115.709027][   T40] audit: type=1400 audit(1750094854.814:510): avc:  denied  { connect } for  pid=9472 comm="syz.4.1120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  115.725014][   T40] audit: type=1400 audit(1750094854.842:511): avc:  denied  { listen } for  pid=9471 comm="syz.0.1119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  116.046022][ T9491] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1123'.
[  116.046524][ T9489] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  116.269362][ T9495] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  116.302321][   T40] audit: type=1400 audit(1750094855.394:512): avc:  denied  { name_connect } for  pid=9497 comm="syz.1.1125" dest=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[  116.512021][ T9506] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  116.741127][ T9527] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1133'.
[  116.815107][ T9529] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  116.893347][ T9537] FAULT_INJECTION: forcing a failure.
[  116.893347][ T9537] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.914470][ T9537] CPU: 1 UID: 0 PID: 9537 Comm: syz.1.1137 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(full) 
[  116.914499][ T9537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.914510][ T9537] Call Trace:
[  116.914518][ T9537]  <TASK>
[  116.914525][ T9537]  dump_stack_lvl+0x16c/0x1f0
[  116.914558][ T9537]  should_fail_ex+0x512/0x640
[  116.914582][ T9537]  _copy_from_iter+0x29f/0x16f0
[  116.914618][ T9537]  ? __alloc_skb+0x200/0x380
[  116.914643][ T9537]  ? __pfx__copy_from_iter+0x10/0x10
[  116.914669][ T9537]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  116.914697][ T9537]  netlink_sendmsg+0x829/0xdd0
[  116.914720][ T9537]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.914749][ T9537]  ____sys_sendmsg+0xa95/0xc70
[  116.914768][ T9537]  ? copy_msghdr_from_user+0x10a/0x160
[  116.914794][ T9537]  ? __pfx_____sys_sendmsg+0x10/0x10
[  116.914826][ T9537]  ___sys_sendmsg+0x134/0x1d0
[  116.914852][ T9537]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.914875][ T9537]  ? __lock_acquire+0x622/0x1c90
[  116.914936][ T9537]  __sys_sendmsg+0x16d/0x220
[  116.914962][ T9537]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.915004][ T9537]  do_syscall_64+0xcd/0x4c0
[  116.915033][ T9537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.915051][ T9537] RIP: 0033:0x7fdbee78e929
[  116.915066][ T9537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.915083][ T9537] RSP: 002b:00007fdbef5b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.915101][ T9537] RAX: ffffffffffffffda RBX: 00007fdbee9b5fa0 RCX: 00007fdbee78e929
[  116.915112][ T9537] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  116.915123][ T9537] RBP: 00007fdbef5b4090 R08: 0000000000000000 R09: 0000000000000000
[  116.915133][ T9537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.915143][ T9537] R13: 0000000000000000 R14: 00007fdbee9b5fa0 R15: 00007fff7dcf91a8
[  116.915168][ T9537]  </TASK>
[  116.968765][ T9539] xt_bpf: check failed: parse error
[  117.091905][   T12] failed to send hello msg
[  117.095468][   T12] failed while handling packet from 1:-2
[  117.105428][ T1068] failed to send hello msg
[  117.110381][ T1068] failed while handling packet from 1:-2
[  117.218428][ T9560] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  117.228966][ T9560] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  117.361131][ T9564] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  117.387668][ T9569] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  117.721849][ T9581] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  117.797075][ T9583] FAULT_INJECTION: forcing a failure.
[  117.797075][ T9583] name failslab, interval 1, probability 0, space 0, times 0
[  117.806517][ T9583] CPU: 0 UID: 0 PID: 9583 Comm: syz.0.1151 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(full) 
[  117.806611][ T9583] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.806622][ T9583] Call Trace:
[  117.806627][ T9583]  <TASK>
[  117.806666][ T9583]  dump_stack_lvl+0x16c/0x1f0
[  117.806729][ T9583]  should_fail_ex+0x512/0x640
[  117.806824][ T9583]  should_failslab+0xc2/0x120
[  117.806882][ T9583]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  117.806942][ T9583]  ? skb_clone+0x190/0x3f0
[  117.807034][ T9583]  skb_clone+0x190/0x3f0
[  117.807095][ T9583]  netlink_deliver_tap+0xabd/0xd30
[  117.807150][ T9583]  netlink_unicast+0x5df/0x7f0
[  117.807204][ T9583]  ? __pfx_netlink_unicast+0x10/0x10
[  117.807298][ T9583]  netlink_sendmsg+0x8d1/0xdd0
[  117.807354][ T9583]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.807437][ T9583]  ____sys_sendmsg+0xa95/0xc70
[  117.807488][ T9583]  ? copy_msghdr_from_user+0x10a/0x160
[  117.807509][ T9583]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.807535][ T9583]  ___sys_sendmsg+0x134/0x1d0
[  117.807557][ T9583]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.807579][ T9583]  ? __lock_acquire+0x622/0x1c90
[  117.807627][ T9583]  __sys_sendmsg+0x16d/0x220
[  117.807648][ T9583]  ? __pfx___sys_sendmsg+0x10/0x10
[  117.807676][ T9583]  ? fput+0x70/0xf0
[  117.807700][ T9583]  do_syscall_64+0xcd/0x4c0
[  117.807723][ T9583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.807738][ T9583] RIP: 0033:0x7f549018e929
[  117.807750][ T9583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.807765][ T9583] RSP: 002b:00007f5490f6b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.807779][ T9583] RAX: ffffffffffffffda RBX: 00007f54903b5fa0 RCX: 00007f549018e929
[  117.807788][ T9583] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  117.807796][ T9583] RBP: 00007f5490f6b090 R08: 0000000000000000 R09: 0000000000000000
[  117.807805][ T9583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.807813][ T9583] R13: 0000000000000000 R14: 00007f54903b5fa0 R15: 00007ffca88876a8
[  117.807832][ T9583]  </TASK>
[  117.807875][ T9583] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  118.028053][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  118.028072][   T40] audit: type=1400 audit(1750094856.975:514): avc:  denied  { ioctl } for  pid=9584 comm="syz.1.1152" path="/268/file0/file0" dev="9p" ino=38928403 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  118.142793][ T9595] __nla_validate_parse: 6 callbacks suppressed
[  118.142809][ T9595] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1155'.
[  118.157188][ T9596] overlayfs: missing 'lowerdir'
[  118.251216][ T9599] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  118.354864][ T9602] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1156'.
[  118.358742][ T9602] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1156'.
[  118.388658][ T9602] netlink: 'syz.1.1156': attribute type 14 has an invalid length.
[  118.448421][ T9607] netlink: 'syz.2.1159': attribute type 1 has an invalid length.
[  118.535744][   T40] audit: type=1400 audit(1750094857.480:515): avc:  denied  { execmem } for  pid=9610 comm="syz.1.1161" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  118.642024][    C3] vkms_vblank_simulate: vblank timer overrun
[  118.675688][ T9606] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  118.874474][ T9623] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1165'.
[  118.952913][   T40] audit: type=1400 audit(1750094857.863:516): avc:  denied  { override_creds } for  pid=9610 comm="syz.1.1161" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  119.067753][ T9631] overlayfs: missing 'lowerdir'
[  119.130326][ T9637] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  119.314312][    C3] vkms_vblank_simulate: vblank timer overrun
[  119.606078][ T9661] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1177'.
[  119.636487][    C3] vkms_vblank_simulate: vblank timer overrun
[  119.684378][   T40] audit: type=1400 audit(1750094858.565:517): avc:  denied  { getopt } for  pid=9657 comm="syz.0.1176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  119.700608][    C3] vkms_vblank_simulate: vblank timer overrun
[  119.783632][ T9667] overlayfs: missing 'lowerdir'
[  119.913811][ T9673] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  119.932846][ T9674] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9674 comm=syz.4.1180
[  120.204412][ T9680] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  120.287735][ T9682] syzkaller1: entered promiscuous mode
[  120.290388][ T9682] syzkaller1: entered allmulticast mode
[  120.408036][ T9687] overlayfs: missing 'lowerdir'
[  120.420846][ T9685] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1186'.
[  120.498675][ T9693] fuse: Bad value for 'user_id'
[  120.501328][ T9693] fuse: Bad value for 'user_id'
[  120.643914][ T9695] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  120.786697][ T9699] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  121.340415][    C3] vkms_vblank_simulate: vblank timer overrun
[  121.347446][ T9715] overlayfs: missing 'lowerdir'
[  121.496749][ T9720] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1199'.
[  121.873430][ T9734] overlayfs: unescaped trailing colons in lowerdir mount option.
[  121.904955][ T9730] bond6 (unregistering): Released all slaves
[  121.935726][ T9728] bridge_slave_1: entered allmulticast mode
[  121.940291][ T9733] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  121.973938][ T1143] bond0: (slave bridge_slave_1): link status definitely down, disabling slave
[  122.181088][ T9741] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.1203'.
[  122.215407][ T9741] fuse: Unknown parameter ''
[  122.230863][ T9743] xt_ecn: cannot match TCP bits for non-tcp packets
[  122.496752][ T9751] overlayfs: missing 'lowerdir'
[  122.592086][    C3] vkms_vblank_simulate: vblank timer overrun
[  122.644924][ T9756] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1209'.
[  122.806200][ T9765] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  123.199773][ T9780] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  123.221406][ T9780] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  123.305938][   T40] audit: type=1400 audit(1750094861.932:518): avc:  denied  { accept } for  pid=9781 comm="syz.2.1218" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  123.416709][ T9788] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1221'.
[  123.533875][ T9794] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  123.815281][ T9804] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1226'.
[  124.124345][ T9814] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  124.128766][   T40] audit: type=1400 audit(1750094862.709:519): avc:  denied  { lock } for  pid=9815 comm="syz.1.1231" path="/dev/vbi5" dev="devtmpfs" ino=1005 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  124.134280][ T9814] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  124.226188][ T9812] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1229'.
[  124.326672][ T9825] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  124.343594][ T9819] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  124.404953][ T9812] pic_ioport_write: 136 callbacks suppressed
[  124.404984][ T9812] kvm: pic: level sensitive irq not supported
[  124.422222][ T9812] picdev_read: 136 callbacks suppressed
[  124.422240][ T9812] kvm: pic: non byte read
[  124.433158][ T9812] kvm: pic: level sensitive irq not supported
[  124.434304][ T9812] kvm: pic: non byte read
[  124.445206][ T9812] kvm: pic: level sensitive irq not supported
[  124.445964][ T9812] kvm: pic: non byte read
[  124.482716][ T9836] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1237'.
[  124.517918][ T9835] sctp: [Deprecated]: syz.2.1236 (pid 9835) Use of struct sctp_assoc_value in delayed_ack socket option.
[  124.517918][ T9835] Use struct sctp_sack_info instead
[  124.518435][   T40] audit: type=1400 audit(1750094863.083:520): avc:  denied  { getopt } for  pid=9834 comm="syz.2.1236" lport=51679 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  124.834745][ T9845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1240'.
[  124.841645][ T9845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1240'.
[  124.896011][ T9854] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  124.906748][ T9854] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  125.041474][   T40] audit: type=1400 audit(1750094863.569:521): avc:  denied  { create } for  pid=9856 comm="syz.2.1243" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  125.080037][   T40] audit: type=1400 audit(1750094863.569:522): avc:  denied  { getopt } for  pid=9856 comm="syz.2.1243" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  125.167106][ T9864] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1246'.
[  125.206313][ T9866] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  125.410066][ T9868] IPVS: set_ctl: invalid protocol: 255 255.255.255.255:20003
[  125.417368][   T40] audit: type=1326 audit(1750094863.915:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9867 comm="syz.2.1248" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc8f498e929 code=0x0
[  125.489608][ T9881] overlayfs: missing 'lowerdir'
[  125.580637][   T40] audit: type=1400 audit(1750094864.028:524): avc:  denied  { read write } for  pid=9882 comm="syz.4.1252" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  125.628827][   T40] audit: type=1400 audit(1750094864.028:525): avc:  denied  { open } for  pid=9882 comm="syz.4.1252" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  125.638495][   T40] audit: type=1400 audit(1750094864.028:526): avc:  denied  { map } for  pid=9882 comm="syz.4.1252" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  125.653720][ T9885] netlink: 'syz.1.1254': attribute type 11 has an invalid length.
[  125.698776][   T40] audit: type=1400 audit(1750094864.028:527): avc:  denied  { execute } for  pid=9882 comm="syz.4.1252" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  125.706382][ T9885] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1254'.
[  125.777306][ T9885] af_packet: tpacket_rcv: packet too big, clamped from 36 to 4294967272. macoff=96
[  125.833735][ T9894] binder: 9890:9894 unknown command 839053828
[  125.837040][ T9894] binder: 9890:9894 ioctl c0306201 200000000080 returned -22
[  126.124476][   T40] audit: type=1400 audit(1750094864.579:528): avc:  denied  { create } for  pid=9897 comm="syz.1.1256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  126.275568][ T9900] netlink: 'syz.1.1257': attribute type 3 has an invalid length.
[  126.279160][ T9900] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1257'.
[  126.415669][ T9905] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1259'.
[  126.512569][ T9909] overlayfs: missing 'lowerdir'
[  126.547021][   T46] Bluetooth: hci4: Frame reassembly failed (-84)
[  126.569661][ T9907] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  126.750131][ T9913] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  127.042263][ T9921] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1266'.
[  127.490547][ T9942] overlayfs: missing 'lowerdir'
[  127.568076][ T9944] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  127.952381][    C2] vkms_vblank_simulate: vblank timer overrun
[  128.440413][    C2] vkms_vblank_simulate: vblank timer overrun
[  128.734934][ T5303] Bluetooth: hci4: command 0x1003 tx timeout
[  128.745600][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  128.894706][ T9966] overlayfs: missing 'workdir'
[  128.991049][ T9972] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  129.369676][ T9994] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61 sclass=netlink_route_socket pid=9994 comm=syz.2.1289
[  129.476908][ T9996] overlayfs: missing 'workdir'
[  129.505442][ T9998] __nla_validate_parse: 6 callbacks suppressed
[  129.505461][ T9998] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1292'.
[  129.758148][T10001] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1295'.
[  129.919527][T10003] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  130.105138][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.297843][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  130.297861][   T40] audit: type=1400 audit(1750094868.489:533): avc:  denied  { create } for  pid=10010 comm="syz.0.1297" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  130.395079][ T5303] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  130.435154][ T5303] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  130.440042][T10021] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2306 sclass=netlink_route_socket pid=10021 comm=syz.4.1299
[  130.468961][    C2] vkms_vblank_simulate: vblank timer overrun
[  130.473758][ T5303] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  130.486901][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.510440][ T5303] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  130.536192][ T5303] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  130.629036][   T63] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  130.647255][   T63] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  130.660158][   T63] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  130.679728][   T63] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  130.689943][   T63] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  130.782513][T10031] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  130.836612][    C2] vkms_vblank_simulate: vblank timer overrun
[  130.852717][   T40] audit: type=1400 audit(1750094868.995:534): avc:  denied  { getopt } for  pid=10032 comm="syz.1.1302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  130.887726][T10025] kvm: pic: non byte read
[  130.911724][T10025] kvm: pic: level sensitive irq not supported
[  130.912723][T10025] kvm: pic: non byte read
[  130.936107][T10025] kvm: pic: level sensitive irq not supported
[  130.937170][T10025] kvm: pic: non byte read
[  131.043437][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.185571][T10039] overlayfs: missing 'workdir'
[  131.203570][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.364372][T10043] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1305'.
[  131.600010][T10053] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  131.675538][T10019] chnl_net:caif_netlink_parms(): no params data found
[  131.967633][T10066] usb usb9: check_ctrlrecip: process 10066 (syz.1.1310) requesting ep 01 but needs 81
[  131.973975][T10066] usb usb9: usbfs: process 10066 (syz.1.1310) did not claim interface 0 before use
[  132.373512][   T13] bond2 (unregistering): (slave gretap2): Releasing active interface
[  132.375060][T10073] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=23 sclass=netlink_route_socket pid=10073 comm=syz.0.1312
[  132.596993][T10075] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  132.622352][T10075] kvm: pic: level sensitive irq not supported
[  132.623169][T10075] kvm: pic: non byte read
[  132.644717][T10075] kvm: pic: level sensitive irq not supported
[  132.645142][T10075] kvm: pic: non byte read
[  132.655272][T10075] kvm: pic: level sensitive irq not supported
[  132.656100][T10075] kvm: pic: non byte read
[  132.676035][T10075] kvm: pic: level sensitive irq not supported
[  132.676853][T10075] kvm: pic: non byte read
[  132.925658][   T63] Bluetooth: hci2: command tx timeout
[  133.112506][   T40] audit: type=1400 audit(1750094871.118:535): avc:  denied  { connect } for  pid=10077 comm="syz.0.1313" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  133.180374][   T40] audit: type=1400 audit(1750094871.183:536): avc:  denied  { bind } for  pid=10077 comm="syz.0.1313" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  133.597915][T10083] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1315'.
[  134.846070][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  134.856566][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  134.865206][   T13] bond0 (unregistering): Released all slaves
[  135.041829][   T13] bond1 (unregistering): Released all slaves
[  135.144535][   T63] Bluetooth: hci2: command tx timeout
[  135.262435][   T13] bond2 (unregistering): Released all slaves
[  135.540505][   T13] bond3 (unregistering): Released all slaves
[  135.651497][T10063] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  135.928289][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  135.960831][T10091] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  136.262003][T10019] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.265493][T10019] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.268568][T10019] bridge_slave_0: entered allmulticast mode
[  136.287853][T10019] bridge_slave_0: entered promiscuous mode
[  136.439384][T10019] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.449737][T10019] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.475240][T10019] bridge_slave_1: entered allmulticast mode
[  136.479190][T10019] bridge_slave_1: entered promiscuous mode
[  136.760356][T10019] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  136.816887][T10019] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  136.967320][T10133] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1325'.
[  137.055598][T10019] team0: Port device team_slave_0 added
[  137.085275][T10019] team0: Port device team_slave_1 added
[  137.154775][   T13] hsr_slave_0: left promiscuous mode
[  137.158109][   T13] hsr_slave_1: left promiscuous mode
[  137.173725][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.177102][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  137.202772][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  137.205931][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  137.258809][   T13] veth1_macvtap: left promiscuous mode
[  137.261908][   T13] veth0_macvtap: left promiscuous mode
[  137.265341][   T13] veth1_vlan: left promiscuous mode
[  137.273021][   T13] veth0_vlan: left promiscuous mode
[  137.274552][T10142] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1326'.
[  137.298074][T10142] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1326'.
[  137.367875][   T63] Bluetooth: hci2: command tx timeout
[  137.521254][   T13] pimreg (unregistering): left allmulticast mode
[  138.550182][T10154] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  139.012255][T10157] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1332'.
[  139.585975][   T63] Bluetooth: hci2: command tx timeout
[  140.571236][   T13] team0 (unregistering): Port device team_slave_1 removed
[  140.750525][   T13] team0 (unregistering): Port device team_slave_0 removed
[  142.516342][T10148] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  142.642586][T10164] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1333'.
[  142.697048][T10019] batman_adv: batadv0: Adding interface: batadv_slave_0
[  142.701908][T10019] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.719716][T10019] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  142.736510][T10158] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  142.746808][T10158] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  142.751673][T10158] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  142.756042][T10158] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  142.853650][T10019] batman_adv: batadv0: Adding interface: batadv_slave_1
[  142.878726][T10019] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.923146][T10019] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  143.259500][T10182] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  143.310326][T10019] hsr_slave_0: entered promiscuous mode
[  143.313879][T10019] hsr_slave_1: entered promiscuous mode
[  143.579444][T10191] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  143.639175][T10191] kvm: pic: non byte read
[  143.646506][T10191] kvm: pic: level sensitive irq not supported
[  143.647181][T10191] kvm: pic: non byte read
[  143.659909][T10196] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  143.670173][T10191] kvm: pic: level sensitive irq not supported
[  143.670590][T10191] kvm: pic: non byte read
[  144.100856][T10207] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1344'.
[  144.302947][T10019] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  144.340603][   T13] IPVS: stop unused estimator thread 0...
[  144.354474][T10214] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  144.371652][T10019] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  144.399043][T10019] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  144.428649][T10019] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  144.634688][T10019] 8021q: adding VLAN 0 to HW filter on device bond0
[  144.695419][T10019] 8021q: adding VLAN 0 to HW filter on device team0
[  144.772530][T10231] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1349'.
[  144.772768][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  144.802420][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  144.832836][T10233] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  144.839935][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  144.843262][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  145.295961][T10261] netlink: 'syz.0.1353': attribute type 7 has an invalid length.
[  145.299875][T10261] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1353'.
[  145.328635][T10019] 8021q: adding VLAN 0 to HW filter on device batadv0
[  145.647716][   T40] audit: type=1400 audit(1750094882.838:537): avc:  denied  { listen } for  pid=10265 comm="syz.0.1354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  145.738700][T10019] veth0_vlan: entered promiscuous mode
[  145.748862][T10019] veth1_vlan: entered promiscuous mode
[  145.825536][T10019] veth0_macvtap: entered promiscuous mode
[  145.846718][T10019] veth1_macvtap: entered promiscuous mode
[  145.868429][T10019] batman_adv: batadv0: Interface activated: batadv_slave_0
[  145.879856][T10019] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.896644][T10019] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.901795][T10019] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.905983][T10019] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.909375][T10019] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.020349][   T40] audit: type=1400 audit(1750094883.194:538): avc:  denied  { listen } for  pid=10283 comm="syz.1.1357" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  146.029085][T10284] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1357'.
[  146.090928][ T1147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.104759][ T1147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.189740][T10286] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  146.222817][ T1068] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.226681][T10292] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  146.232109][T10282] kvm: pic: non byte read
[  146.242648][ T1068] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.306528][T10282] kvm: pic: level sensitive irq not supported
[  146.309201][T10282] kvm: pic: non byte read
[  146.358170][   T40] audit: type=1400 audit(1750094883.484:539): avc:  denied  { mounton } for  pid=10019 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  146.492593][T10304] netlink: 'syz.1.1361': attribute type 7 has an invalid length.
[  146.497579][T10304] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1361'.
[  146.649014][   T40] audit: type=1400 audit(1750094883.774:540): avc:  denied  { append } for  pid=10311 comm="syz.1.1363" name="ptp0" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  146.697120][   T40] audit: type=1400 audit(1750094883.830:541): avc:  denied  { connect } for  pid=10306 comm="syz.5.1296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  146.710741][   T40] audit: type=1400 audit(1750094883.830:542): avc:  denied  { accept } for  pid=10306 comm="syz.5.1296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  146.750967][   T40] audit: type=1400 audit(1750094883.886:543): avc:  denied  { read } for  pid=10308 comm="syz.4.1362" name="file0" dev="fuse" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  146.770745][T10310] lo: entered allmulticast mode
[  146.787110][T10308] lo: left allmulticast mode
[  146.818474][   T40] audit: type=1400 audit(1750094883.886:544): avc:  denied  { open } for  pid=10308 comm="syz.4.1362" path="/159/file0/file0" dev="fuse" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  146.961163][   T40] audit: type=1400 audit(1750094884.073:545): avc:  denied  { lock } for  pid=10328 comm="syz.0.1367" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  147.322758][T10344] netlink: 'syz.0.1371': attribute type 7 has an invalid length.
[  147.326037][T10344] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1371'.
[  147.994114][T10354] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  148.032268][T10354] kvm: pic: level sensitive irq not supported
[  148.032693][T10354] kvm: pic: non byte read
[  148.089004][T10354] kvm: pic: level sensitive irq not supported
[  148.089744][T10354] kvm: pic: non byte read
[  148.126132][   T40] audit: type=1400 audit(1750094885.158:546): avc:  denied  { connect } for  pid=10370 comm="syz.4.1377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  148.147566][T10354] kvm: pic: level sensitive irq not supported
[  148.193162][T10354] kvm: pic: non byte read
[  148.196524][T10371] nbd: couldn't find device at index -1140850688
[  148.480625][T10379] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  148.510275][T10384] netlink: 'syz.4.1380': attribute type 7 has an invalid length.
[  148.515218][T10384] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1380'.
[  149.148579][T10411] dvmrp1: entered allmulticast mode
[  149.200912][T10415] netlink: 'syz.1.1390': attribute type 7 has an invalid length.
[  149.204955][T10415] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1390'.
[  149.363152][T10422] input: syz1 as /devices/virtual/input/input15
[  149.561588][T10425] program syz.5.1392 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  149.583359][T10425] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  149.693562][T10430] netlink: 196 bytes leftover after parsing attributes in process `syz.1.1394'.
[  149.715993][T10430] netlink: 196 bytes leftover after parsing attributes in process `syz.1.1394'.
[  149.751877][    C0] vkms_vblank_simulate: vblank timer overrun
[  149.759373][T10430] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1394'.
[  149.792149][    C0] vkms_vblank_simulate: vblank timer overrun
[  150.020469][ T6026] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  150.106080][T10441] netlink: 'syz.1.1399': attribute type 7 has an invalid length.
[  150.129763][    C0] vkms_vblank_simulate: vblank timer overrun
[  150.136160][T10441] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1399'.
[  150.182070][ T6026] usb 5-1: Using ep0 maxpacket: 32
[  150.192424][ T6026] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  150.196502][ T6026] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  150.236818][ T6026] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  150.253054][T10449] /dev/nullb0: Can't open blockdev
[  150.276443][ T6026] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  150.306585][ T6026] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  150.346085][ T6026] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  150.358682][ T6026] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  150.367214][ T6026] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.440419][T10455] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  150.466825][ T6026] usb 5-1: config 0 descriptor??
[  150.556120][    C0] vkms_vblank_simulate: vblank timer overrun
[  150.585395][T10461] netlink: 292 bytes leftover after parsing attributes in process `syz.4.1405'.
[  150.743348][ T6026] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  150.809302][    C0] vkms_vblank_simulate: vblank timer overrun
[  150.814148][ T6026] usb 5-1: USB disconnect, device number 3
[  150.850643][ T6026] usblp0: removed
[  150.912093][T10465] support for cryptoloop has been removed.  Use dm-crypt instead.
[  151.313599][ T6026] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  151.324253][   T54] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  151.452189][    C0] vkms_vblank_simulate: vblank timer overrun
[  151.470982][T10474] netlink: 'syz.5.1410': attribute type 7 has an invalid length.
[  151.474945][T10474] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1410'.
[  151.485652][ T6026] usb 5-1: Using ep0 maxpacket: 32
[  151.499404][ T6026] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  151.507136][ T6026] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  151.513347][ T6026] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  151.518170][   T54] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  151.522628][ T6026] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  151.543200][ T6026] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  151.549474][   T54] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  151.552724][ T6026] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  151.564760][   T54] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  151.564790][   T54] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  151.564832][   T54] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  151.564854][   T54] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.582373][   T54] usb 6-1: config 0 descriptor??
[  151.606118][    C0] vkms_vblank_simulate: vblank timer overrun
[  151.610618][ T6026] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  151.684191][ T6026] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.698392][ T6026] usb 5-1: config 0 descriptor??
[  151.748959][    C0] vkms_vblank_simulate: vblank timer overrun
[  151.886914][T10487] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  151.943840][   T54] usbhid 6-1:0.0: can't add hid device: -71
[  151.948101][   T54] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  151.983532][ T6026] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  151.999274][   T54] usb 6-1: USB disconnect, device number 8
[  152.171702][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  152.171722][   T40] audit: type=1400 audit(1750094888.937:552): avc:  denied  { read write } for  pid=10432 comm="syz.0.1395" name="lp0" dev="devtmpfs" ino=2921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  152.184853][T10494] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1415'.
[  152.213266][   T40] audit: type=1400 audit(1750094888.937:553): avc:  denied  { open } for  pid=10432 comm="syz.0.1395" path="/dev/usb/lp0" dev="devtmpfs" ino=2921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  152.232176][    C0] vkms_vblank_simulate: vblank timer overrun
[  152.234603][    C0] usblp0: nonzero read bulk status received: -71
[  152.235015][ T6026] usb 5-1: USB disconnect, device number 4
[  152.306279][    C0] vkms_vblank_simulate: vblank timer overrun
[  152.461434][    C0] vkms_vblank_simulate: vblank timer overrun
[  152.558014][    C0] vkms_vblank_simulate: vblank timer overrun
[  152.759253][T10507] netlink: 'syz.5.1419': attribute type 7 has an invalid length.
[  152.763485][T10507] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1419'.
[  152.946141][T10432] usblp0: removed
[  153.038859][    C0] vkms_vblank_simulate: vblank timer overrun
[  153.640645][T10519] tmpfs: Bad value for 'mpol'
[  153.653586][T10517] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  153.774572][    C0] vkms_vblank_simulate: vblank timer overrun
[  153.948204][    C0] vkms_vblank_simulate: vblank timer overrun
[  154.130448][T10534] netlink: 'syz.1.1428': attribute type 7 has an invalid length.
[  154.135005][T10534] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1428'.
[  154.392615][ T6026] usb 5-1: new low-speed USB device number 5 using dummy_hcd
[  154.481014][T10543] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1430'.
[  154.523278][   T40] audit: type=1400 audit(1750094891.154:554): avc:  denied  { bind } for  pid=10550 comm="syz.1.1432" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  154.539757][   T40] audit: type=1400 audit(1750094891.163:555): avc:  denied  { listen } for  pid=10550 comm="syz.1.1432" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  154.586731][ T6026] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  154.590508][ T6026] usb 5-1: config 0 has no interface number 0
[  154.594115][ T6026] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  154.613043][ T6026] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  154.618090][ T6026] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  154.624900][ T6026] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.636453][ T6026] usb 5-1: config 0 descriptor??
[  154.652636][ T6026] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  154.706705][T10551] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10551 comm=syz.1.1432
[  154.788786][T10561] netlink: 'syz.1.1434': attribute type 1 has an invalid length.
[  154.794455][T10561] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1434'.
[  154.812047][T10561] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1434'.
[  154.849660][T10565] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1435'.
[  154.912065][T10536] iowarrior 5-1:0.1: Error -90 while submitting URB
[  154.919722][T10536] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  154.924530][T10536] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  154.936487][  T836] usb 5-1: USB disconnect, device number 5
[  155.022089][T10571] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  155.192751][T10579] netlink: 'syz.5.1440': attribute type 7 has an invalid length.
[  155.196885][T10579] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1440'.
[  155.237897][T10582] overlayfs: failed to resolve './file0': -2
[  155.271057][T10582] overlayfs: missing 'lowerdir'
[  155.747671][T10604] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  155.932641][T10617] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  155.979554][T10614] netlink: 'syz.1.1449': attribute type 7 has an invalid length.
[  155.993676][T10614] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1449'.
[  156.014561][T10619] usb usb8: usbfs: process 10619 (syz.4.1448) did not claim interface 0 before use
[  156.344573][T10637] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1455'.
[  156.475871][   T40] audit: type=1400 audit(1750094892.978:556): avc:  denied  { mounton } for  pid=10630 comm="syz.1.1452" path="/proc/944/task" dev="proc" ino=34041 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  156.741552][T10653] FAULT_INJECTION: forcing a failure.
[  156.741552][T10653] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.760067][T10653] CPU: 3 UID: 0 PID: 10653 Comm: syz.1.1458 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(full) 
[  156.760091][T10653] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.760100][T10653] Call Trace:
[  156.760107][T10653]  <TASK>
[  156.760114][T10653]  dump_stack_lvl+0x16c/0x1f0
[  156.760163][T10653]  should_fail_ex+0x512/0x640
[  156.760190][T10653]  _copy_to_user+0x32/0xd0
[  156.760212][T10653]  simple_read_from_buffer+0xcb/0x170
[  156.760233][T10653]  proc_fail_nth_read+0x197/0x270
[  156.760252][T10653]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  156.760274][T10653]  ? rw_verify_area+0xcf/0x680
[  156.760290][T10653]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  156.760308][T10653]  vfs_read+0x1e1/0xc60
[  156.760328][T10653]  ? __pfx___mutex_lock+0x10/0x10
[  156.760350][T10653]  ? __pfx_vfs_read+0x10/0x10
[  156.760372][T10653]  ? __fget_files+0x20e/0x3c0
[  156.760396][T10653]  ksys_read+0x12a/0x250
[  156.760413][T10653]  ? __pfx_ksys_read+0x10/0x10
[  156.760435][T10653]  do_syscall_64+0xcd/0x4c0
[  156.760458][T10653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.760473][T10653] RIP: 0033:0x7fdbee78d33c
[  156.760485][T10653] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  156.760498][T10653] RSP: 002b:00007fdbef593030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  156.760513][T10653] RAX: ffffffffffffffda RBX: 00007fdbee9b6080 RCX: 00007fdbee78d33c
[  156.760523][T10653] RDX: 000000000000000f RSI: 00007fdbef5930a0 RDI: 0000000000000004
[  156.760531][T10653] RBP: 00007fdbef593090 R08: 0000000000000000 R09: 0000000000000000
[  156.760540][T10653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.760548][T10653] R13: 0000000000000001 R14: 00007fdbee9b6080 R15: 00007fff7dcf91a8
[  156.760567][T10653]  </TASK>
[  157.054368][T10659] netlink: 'syz.1.1460': attribute type 7 has an invalid length.
[  157.057829][T10659] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1460'.
[  157.105962][T10661] overlayfs: missing 'workdir'
[  157.346676][T10668] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  157.648900][ T6115] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  157.782191][T10686] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  157.867736][ T6115] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  157.871601][ T6115] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  157.886593][T10686] kvm: pic: level sensitive irq not supported
[  157.887025][T10686] kvm: pic: non byte read
[  157.888334][ T6115] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  157.921173][ T6115] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  157.921246][ T6274] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  157.925109][ T6115] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.958726][ T6115] usbtmc 5-1:16.0: probe with driver usbtmc failed with error -22
[  157.973813][    C0] vkms_vblank_simulate: vblank timer overrun
[  158.120191][ T6274] usb 10-1: Using ep0 maxpacket: 8
[  158.145877][ T6274] usb 10-1: config index 0 descriptor too short (expected 301, got 45)
[  158.180808][    C0] vkms_vblank_simulate: vblank timer overrun
[  158.185467][ T6274] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  158.190074][ T6274] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  158.194863][ T6274] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  158.212934][ T6274] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  158.218978][ T6274] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  158.236811][ T6274] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.302121][T10695] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1470'.
[  158.364151][    C0] vkms_vblank_simulate: vblank timer overrun
[  158.441930][T10698] netlink: 'syz.1.1471': attribute type 7 has an invalid length.
[  158.485870][ T6274] usb 10-1: usb_control_msg returned -32
[  158.506601][    C0] vkms_vblank_simulate: vblank timer overrun
[  158.527102][ T6274] usbtmc 10-1:16.0: can't read capabilities
[  158.623263][   T54] usb 5-1: USB disconnect, device number 6
[  158.772171][    C0] vkms_vblank_simulate: vblank timer overrun
[  158.830083][T10708] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  159.038124][   T40] audit: type=1400 audit(1750094895.345:557): avc:  denied  { read } for  pid=10714 comm="syz.1.1476" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  159.224880][   T29] usb 10-1: USB disconnect, device number 2
[  159.671807][T10738] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  159.747795][T10744] netlink: 'syz.4.1480': attribute type 7 has an invalid length.
[  159.751644][T10744] __nla_validate_parse: 2 callbacks suppressed
[  159.751657][T10744] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1480'.
[  159.900338][    C0] vkms_vblank_simulate: vblank timer overrun
[  160.050945][T10751] tmpfs: Bad value for 'mpol'
[  160.068405][T10751] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1482'.
[  160.749298][   T40] audit: type=1400 audit(1750094896.972:558): avc:  denied  { ioctl } for  pid=10772 comm="syz.4.1486" path="socket:[34190]" dev="sockfs" ino=34190 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  160.922008][T10784] netlink: 'syz.5.1489': attribute type 7 has an invalid length.
[  160.935653][T10784] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1489'.
[  161.017680][   T40] audit: type=1400 audit(1750094897.197:559): avc:  denied  { associate } for  pid=10785 comm="syz.1.1488" name="pids.current" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  161.043634][T10786] netfs: Couldn't get user pages (rc=-14)
[  161.084613][   T40] audit: type=1400 audit(1750094897.234:560): avc:  denied  { read append open } for  pid=10785 comm="syz.1.1488" path="/356/file0/pids.current" dev="9p" ino=38928461 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  161.104548][   T40] audit: type=1400 audit(1750094897.244:561): avc:  denied  { map } for  pid=10785 comm="syz.1.1488" path="/356/file0/pids.current" dev="9p" ino=38928461 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  161.124003][   T40] audit: type=1400 audit(1750094897.244:562): avc:  denied  { write } for  pid=10785 comm="syz.1.1488" path="/356/file0/pids.current" dev="9p" ino=38928461 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  161.160376][T10797] 9pnet_virtio: no channels available for device syz
[  161.228679][T10800] binder: 10799:10800 ioctl d000941e 200000002a00 returned -22
[  161.233258][T10800] binder: 10799:10800 ioctl c400941b 200000000a40 returned -22
[  161.244198][   T40] audit: type=1400 audit(1750094897.431:563): avc:  denied  { call } for  pid=10799 comm="syz.5.1493" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  161.245586][T10800] binder: 10799:10800 ioctl c0306201 200000000a00 returned -11
[  161.277227][    C0] vkms_vblank_simulate: vblank timer overrun
[  161.288595][   T40] audit: type=1400 audit(1750094897.440:564): avc:  denied  { transfer } for  pid=10799 comm="syz.5.1493" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  161.417945][T10808] netlink: 'syz.4.1495': attribute type 3 has an invalid length.
[  161.421339][T10808] netlink: 'syz.4.1495': attribute type 1 has an invalid length.
[  162.006865][T10833] netlink: 'syz.4.1501': attribute type 7 has an invalid length.
[  162.023557][T10833] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1501'.
[  162.045998][T10837] netlink: 'syz.0.1499': attribute type 1 has an invalid length.
[  162.053522][T10837] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1499'.
[  162.224030][T10847] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  162.292513][T10850] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1503'.
[  162.764075][    C0] vkms_vblank_simulate: vblank timer overrun
[  162.798418][T10864] overlay: filesystem on ./bus not supported as upperdir
[  162.886227][   T40] audit: type=1400 audit(1750094898.965:565): avc:  denied  { append } for  pid=10871 comm="syz.5.1510" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  162.941161][    C0] vkms_vblank_simulate: vblank timer overrun
[  162.965423][    C0] vkms_vblank_simulate: vblank timer overrun
[  162.971206][   T40] audit: type=1400 audit(1750094898.965:566): avc:  denied  { mounton } for  pid=10871 comm="syz.5.1510" path="/41/file0" dev="tmpfs" ino=238 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  162.994482][T10875] netlink: 'syz.0.1511': attribute type 7 has an invalid length.
[  163.003418][    C0] vkms_vblank_simulate: vblank timer overrun
[  163.031195][T10875] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1511'.
[  163.413974][T10892] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  163.436830][T10892] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  163.462972][T10892] overlayfs: conflicting lowerdir path
[  163.479348][    C0] vkms_vblank_simulate: vblank timer overrun
[  163.687077][    C0] vkms_vblank_simulate: vblank timer overrun
[  164.385907][T10917] netlink: 'syz.1.1522': attribute type 7 has an invalid length.
[  164.393889][T10917] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1522'.
[  164.438154][T10915] overlay: filesystem on ./bus not supported as upperdir
[  164.883072][T10930] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  164.958339][T10930] kvm: pic: non byte read
[  164.985618][T10930] kvm: pic: level sensitive irq not supported
[  164.986590][T10930] kvm: pic: non byte read
[  165.116733][    C0] vkms_vblank_simulate: vblank timer overrun
[  165.140065][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  165.140086][   T40] audit: type=1400 audit(1750094901.060:569): avc:  denied  { write } for  pid=10941 comm="syz.0.1530" name="renderD128" dev="devtmpfs" ino=634 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  165.205113][    C0] vkms_vblank_simulate: vblank timer overrun
[  165.288233][T10944] GUP no longer grows the stack in syz.0.1531 (10944): 200000004000-20000000a000 (200000002000)
[  165.298347][T10944] CPU: 2 UID: 0 PID: 10944 Comm: syz.0.1531 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(full) 
[  165.298414][T10944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.298426][T10944] Call Trace:
[  165.298444][T10944]  <TASK>
[  165.298454][T10944]  dump_stack_lvl+0x16c/0x1f0
[  165.298547][T10944]  gup_vma_lookup+0x1d2/0x220
[  165.298622][T10944]  __get_user_pages+0x271/0x3b80
[  165.298693][T10944]  ? __pfx___get_user_pages+0x10/0x10
[  165.298729][T10944]  get_user_pages_remote+0x258/0xb20
[  165.298795][T10944]  ? __pfx_mtree_load+0x10/0x10
[  165.298828][T10944]  ? __pfx_get_user_pages_remote+0x10/0x10
[  165.298904][T10944]  __access_remote_vm+0x246/0x810
[  165.299133][T10944]  ? do_raw_spin_lock+0x12c/0x2b0
[  165.299165][T10944]  ? __pfx___access_remote_vm+0x10/0x10
[  165.299200][T10944]  proc_pid_cmdline_read+0x4de/0x900
[  165.299239][T10944]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  165.299267][T10944]  ? rw_verify_area+0xcf/0x680
[  165.299292][T10944]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  165.299314][T10944]  vfs_readv+0x5be/0x8b0
[  165.299342][T10944]  ? __pfx_vfs_readv+0x10/0x10
[  165.299365][T10944]  ? kmem_cache_free+0x2d1/0x4d0
[  165.299400][T10944]  ? __fget_files+0x20e/0x3c0
[  165.299431][T10944]  ? do_preadv+0x1a6/0x270
[  165.299449][T10944]  do_preadv+0x1a6/0x270
[  165.299471][T10944]  ? __pfx_do_preadv+0x10/0x10
[  165.299501][T10944]  do_syscall_64+0xcd/0x4c0
[  165.299531][T10944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.299552][T10944] RIP: 0033:0x7f549018e929
[  165.299568][T10944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.299587][T10944] RSP: 002b:00007f5490f6b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  165.299605][T10944] RAX: ffffffffffffffda RBX: 00007f54903b5fa0 RCX: 00007f549018e929
[  165.299617][T10944] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000004
[  165.299628][T10944] RBP: 00007f5490210b39 R08: 0000000000000000 R09: 0000000000000000
[  165.299640][T10944] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  165.299651][T10944] R13: 0000000000000000 R14: 00007f54903b5fa0 R15: 00007ffca88876a8
[  165.299677][T10944]  </TASK>
[  165.754949][T10954] netlink: 'syz.0.1534': attribute type 7 has an invalid length.
[  165.758975][T10954] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1534'.
[  165.868002][    C0] vkms_vblank_simulate: vblank timer overrun
[  165.994257][T10956] overlay: filesystem on ./bus not supported as upperdir
[  166.106554][T10969] ip6t_REJECT: ECHOREPLY is not supported
[  166.161351][   T40] audit: type=1400 audit(1750094902.033:570): avc:  denied  { setopt } for  pid=10971 comm="syz.5.1539" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  166.164915][T10973] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1539'.
[  166.170040][   T40] audit: type=1400 audit(1750094902.042:571): avc:  denied  { read } for  pid=10971 comm="syz.5.1539" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  166.421443][T10983] Invalid source name
[  166.432564][T10983] UBIFS error (pid: 10983): cannot open "/dev/sg0", error -22
[  166.507244][T10983] tty tty30: ldisc open failed (-12), clearing slot 29
[  166.521400][T10985] tty tty30: ldisc open failed (-12), clearing slot 29
[  166.584147][T10975] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  166.625801][T10995] netlink: 'syz.5.1546': attribute type 7 has an invalid length.
[  166.654453][T10995] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1546'.
[  166.949932][T11000] overlay: filesystem on ./bus not supported as upperdir
[  167.491844][T11022] netlink: 'syz.4.1555': attribute type 7 has an invalid length.
[  167.510366][T11022] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1555'.
[  167.879112][    C0] vkms_vblank_simulate: vblank timer overrun
[  167.959045][    C0] vkms_vblank_simulate: vblank timer overrun
[  168.307957][    C0] vkms_vblank_simulate: vblank timer overrun
[  168.727071][   T40] audit: type=1400 audit(1750094904.437:572): avc:  denied  { ioctl } for  pid=11055 comm="syz.1.1564" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x70c9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  168.754910][    C0] vkms_vblank_simulate: vblank timer overrun
[  168.877737][T11064] netlink: 'syz.1.1566': attribute type 7 has an invalid length.
[  168.890527][   T40] audit: type=1400 audit(1750094904.586:573): avc:  denied  { watch_sb } for  pid=11061 comm="syz.5.1565" path="/53" dev="tmpfs" ino=314 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  168.903605][T11064] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1566'.
[  169.167987][    C0] vkms_vblank_simulate: vblank timer overrun
[  169.783040][T11084] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1568'.
[  169.821575][    C0] vkms_vblank_simulate: vblank timer overrun
[  169.856724][    C0] vkms_vblank_simulate: vblank timer overrun
[  169.919735][T11092] netlink: 'syz.0.1572': attribute type 5 has an invalid length.
[  169.922739][T11093] netlink: 'syz.4.1575': attribute type 7 has an invalid length.
[  169.943129][T11093] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1575'.
[  170.022795][T11096] netlink: 'syz.1.1573': attribute type 4 has an invalid length.
[  170.038145][T11096] netlink: 348 bytes leftover after parsing attributes in process `syz.1.1573'.
[  170.171084][T11104] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1578'.
[  170.175214][T11104] netlink: 'syz.1.1578': attribute type 7 has an invalid length.
[  170.181065][T11104] netlink: 'syz.1.1578': attribute type 8 has an invalid length.
[  170.189169][T11104] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1578'.
[  170.230012][T11108] tipc: Trying to set illegal importance in message
[  170.482968][T11119] sock: sock_timestamping_bind_phc: sock not bind to device
[  170.650757][   T40] audit: type=1400 audit(1750094906.233:574): avc:  denied  { read } for  pid=11125 comm="syz.5.1583" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  170.735335][T11128] netlink: 'syz.0.1584': attribute type 7 has an invalid length.
[  170.934226][T11132] netlink: 'syz.0.1587': attribute type 2 has an invalid length.
[  170.941965][   T40] audit: type=1400 audit(1750094906.504:575): avc:  denied  { relabelfrom } for  pid=11134 comm="syz.1.1588" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  170.977628][   T40] audit: type=1400 audit(1750094906.513:576): avc:  denied  { relabelto } for  pid=11134 comm="syz.1.1588" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  171.141749][T11148] __nla_validate_parse: 2 callbacks suppressed
[  171.141767][T11148] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1591'.
[  171.421359][T11154] usb 2-1: USB disconnect, device number 2
[  171.495420][T11157] netlink: 'syz.5.1595': attribute type 21 has an invalid length.
[  171.564520][T11159] netlink: 'syz.1.1596': attribute type 7 has an invalid length.
[  171.568782][T11159] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1596'.
[  171.758539][T11167] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  171.808171][    C0] vkms_vblank_simulate: vblank timer overrun
[  171.859182][T11172] SELinux:  policydb version 0 does not match my version range 15-34
[  171.867571][   T40] audit: type=1400 audit(1750094907.365:577): avc:  denied  { load_policy } for  pid=11165 comm="syz.5.1597" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  171.891995][T11172] SELinux: failed to load policy
[  172.301080][   T40] audit: type=1800 audit(1750094907.776:578): pid=11191 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.1603" name="dmabuf" dev="dmabuf" ino=2 res=0 errno=0
[  172.471703][T11195] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1604'.
[  172.630807][ T6115] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  172.777690][    C0] vkms_vblank_simulate: vblank timer overrun
[  172.811412][T11199] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1606'.
[  172.816145][ T6115] usb 9-1: Using ep0 maxpacket: 32
[  172.828895][ T6115] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  172.841526][ T6115] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  172.845592][T11201] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1607'.
[  172.846946][ T6115] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  172.854459][T11201] overlayfs: failed to resolve './file1/file0': -20
[  172.854670][ T6115] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  172.862213][ T6115] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  172.867241][ T6115] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  172.875158][ T6115] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  172.881218][ T6115] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.918430][ T6115] usb 9-1: config 0 descriptor??
[  173.041797][T11203] rtc_cmos 00:05: Alarms can be up to one day in the future
[  173.161165][T11207] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1610'.
[  173.200509][   T40] audit: type=1400 audit(1750094908.618:579): avc:  denied  { connect } for  pid=11208 comm="syz.0.1611" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  173.210572][ T6115] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  173.223519][ T6115] usb 9-1: USB disconnect, device number 3
[  173.296843][ T6115] usblp0: removed
[  173.471404][T11219] vim2m vim2m.0: vidioc_s_fmt queue busy
[  173.512037][    C0] vkms_vblank_simulate: vblank timer overrun
[  173.598707][T11228] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1617'.
[  173.616655][T11227] 9p: Unknown uid 00000000004294967295
[  173.618846][T11227] 9pnet: Tag 65535 still in use
[  173.622174][T11227] ------------[ cut here ]------------
[  173.626062][T11227] refcount_t: underflow; use-after-free.
[  173.637662][T11227] WARNING: CPU: 1 PID: 11227 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210
[  173.642088][T11227] Modules linked in:
[  173.644819][T11227] CPU: 1 UID: 0 PID: 11227 Comm: syz.0.1615 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(full) 
[  173.650224][T11230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1616'.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  173.663891][T11227] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.663918][T11227] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  173.663954][T11227] Code: ff 89 de e8 48 f5 df fc 84 db 0f 85 66 ff ff ff e8 5b fa df fc c6 05 50 58 b4 0b 01 90 48 c7 c7 60 24 15 8c e8 07 bf 9e fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 38 fa df fc 0f b6 1d 2b 58 b4 0b 31
[  173.663973][T11227] RSP: 0018:ffffc900060579e0 EFLAGS: 00010282
[  173.663990][T11227] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90006fa1000
[  173.664002][T11227] RDX: 0000000000080000 RSI: ffffffff817ae255 RDI: 0000000000000001
[  173.664014][T11227] RBP: ffff888026b40888 R08: 0000000000000001 R09: 0000000000000000
[  173.664037][T11227] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888026b40888
[  173.664049][T11227] R13: ffff888055656400 R14: dffffc0000000000 R15: 1ffff92000c0af47
[  173.664062][T11227] FS:  00007f5490f6b6c0(0000) GS:ffff8880d6853000(0000) knlGS:0000000000000000
[  173.664102][T11227] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  173.664117][T11227] CR2: 0000200000001000 CR3: 000000004f045000 CR4: 0000000000352ef0
[  173.664132][T11227] DR0: 0000000000000007 DR1: 0000000000004e6a DR2: 0000000000000007
[  173.664144][T11227] DR3: 00000000000002d5 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  173.664156][T11227] Call Trace:
[  173.664164][T11227]  <TASK>
[  173.664174][T11227]  p9_req_put+0x1ec/0x250
[  173.664217][T11227]  p9_client_destroy+0x22b/0x480
[  173.664245][T11227]  ? __pfx_p9_client_destroy+0x10/0x10
[  173.664270][T11227]  ? rcu_is_watching+0x12/0xc0
[  173.664293][T11227]  ? v9fs_session_init+0xd30/0x1a80
[  173.664323][T11227]  v9fs_session_init+0xbab/0x1a80
[  173.664361][T11227]  ? __pfx_v9fs_session_init+0x10/0x10
[  173.664408][T11227]  v9fs_mount+0xc5/0xa30
[  173.664430][T11227]  ? __pfx_v9fs_mount+0x10/0x10
[  173.664453][T11227]  ? cap_capable+0xb3/0x250
[  173.664477][T11227]  ? __pfx_v9fs_mount+0x10/0x10
[  173.664498][T11227]  legacy_get_tree+0x10c/0x220
[  173.713825][T11228] hpfs: hpfs_map_sector(): read error
[  173.725999][T11227]  vfs_get_tree+0x8b/0x340
[  173.899893][T11227]  path_mount+0x1414/0x2020
[  173.903233][T11227]  ? kmem_cache_free+0x2d1/0x4d0
[  173.905864][T11227]  ? __pfx_path_mount+0x10/0x10
[  173.908205][T11227]  ? putname+0x154/0x1a0
[  173.911274][T11227]  __x64_sys_mount+0x28d/0x310
[  173.914463][T11227]  ? __pfx___x64_sys_mount+0x10/0x10
[  173.917870][T11227]  do_syscall_64+0xcd/0x4c0
[  173.920648][T11227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.925121][T11227] RIP: 0033:0x7f549018e929
[  173.927994][T11227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.940883][T11227] RSP: 002b:00007f5490f6b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  173.946467][T11227] RAX: ffffffffffffffda RBX: 00007f54903b5fa0 RCX: 00007f549018e929
[  173.951945][T11227] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 0000200000000040
[  173.972566][T11227] RBP: 00007f5490210b39 R08: 0000200000000400 R09: 0000000000000000
[  173.976960][T11227] R10: 0000000002000000 R11: 0000000000000246 R12: 0000000000000000
[  173.981332][T11227] R13: 0000000000000000 R14: 00007f54903b5fa0 R15: 00007ffca88876a8
[  173.985359][T11227]  </TASK>
[  174.000584][T11227] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  174.005931][T11227] CPU: 1 UID: 0 PID: 11227 Comm: syz.0.1615 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(full) 
[  174.012563][T11227] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.018507][T11227] Call Trace:
[  174.033427][T11227]  <TASK>
[  174.035369][T11227]  dump_stack_lvl+0x3d/0x1f0
[  174.038267][T11227]  panic+0x71c/0x800
[  174.040331][T11227]  ? __pfx_panic+0x10/0x10
[  174.042657][T11227]  ? show_trace_log_lvl+0x29b/0x3e0
[  174.045291][T11227]  ? refcount_warn_saturate+0x14a/0x210
[  174.048748][T11227]  check_panic_on_warn+0xab/0xb0
[  174.051946][T11227]  __warn+0xf6/0x3c0
[  174.054773][T11227]  ? preempt_schedule_notrace+0x62/0xe0
[  174.059664][T11227]  ? refcount_warn_saturate+0x14a/0x210
[  174.063236][T11227]  report_bug+0x3c3/0x580
[  174.066029][T11227]  ? refcount_warn_saturate+0x14a/0x210
[  174.069551][T11227]  handle_bug+0x184/0x210
[  174.072206][T11227]  exc_invalid_op+0x17/0x50
[  174.074904][T11227]  asm_exc_invalid_op+0x1a/0x20
[  174.077521][T11227] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  174.081105][T11227] Code: ff 89 de e8 48 f5 df fc 84 db 0f 85 66 ff ff ff e8 5b fa df fc c6 05 50 58 b4 0b 01 90 48 c7 c7 60 24 15 8c e8 07 bf 9e fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 38 fa df fc 0f b6 1d 2b 58 b4 0b 31
[  174.094367][T11227] RSP: 0018:ffffc900060579e0 EFLAGS: 00010282
[  174.098645][T11227] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90006fa1000
[  174.103610][T11227] RDX: 0000000000080000 RSI: ffffffff817ae255 RDI: 0000000000000001
[  174.109092][T11227] RBP: ffff888026b40888 R08: 0000000000000001 R09: 0000000000000000
[  174.114092][T11227] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888026b40888
[  174.119202][T11227] R13: ffff888055656400 R14: dffffc0000000000 R15: 1ffff92000c0af47
[  174.123680][T11227]  ? __warn_printk+0x1a5/0x350
[  174.126485][T11227]  p9_req_put+0x1ec/0x250
[  174.129296][T11227]  p9_client_destroy+0x22b/0x480
[  174.132539][T11227]  ? __pfx_p9_client_destroy+0x10/0x10
[  174.135055][T11227]  ? rcu_is_watching+0x12/0xc0
[  174.137244][T11227]  ? v9fs_session_init+0xd30/0x1a80
[  174.139613][T11227]  v9fs_session_init+0xbab/0x1a80
[  174.141895][T11227]  ? __pfx_v9fs_session_init+0x10/0x10
[  174.144690][T11227]  v9fs_mount+0xc5/0xa30
[  174.147274][T11227]  ? __pfx_v9fs_mount+0x10/0x10
[  174.150643][T11227]  ? cap_capable+0xb3/0x250
[  174.153636][T11227]  ? __pfx_v9fs_mount+0x10/0x10
[  174.156502][T11227]  legacy_get_tree+0x10c/0x220
[  174.158674][T11227]  vfs_get_tree+0x8b/0x340
[  174.160974][T11227]  path_mount+0x1414/0x2020
[  174.163377][T11227]  ? kmem_cache_free+0x2d1/0x4d0
[  174.165914][T11227]  ? __pfx_path_mount+0x10/0x10
[  174.168088][T11227]  ? putname+0x154/0x1a0
[  174.169992][T11227]  __x64_sys_mount+0x28d/0x310
[  174.172274][T11227]  ? __pfx___x64_sys_mount+0x10/0x10
[  174.175238][T11227]  do_syscall_64+0xcd/0x4c0
[  174.178273][T11227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.181618][T11227] RIP: 0033:0x7f549018e929
[  174.183631][T11227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.195814][T11227] RSP: 002b:00007f5490f6b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  174.201225][T11227] RAX: ffffffffffffffda RBX: 00007f54903b5fa0 RCX: 00007f549018e929
[  174.206505][T11227] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 0000200000000040
[  174.211669][T11227] RBP: 00007f5490210b39 R08: 0000200000000400 R09: 0000000000000000
[  174.216861][T11227] R10: 0000000002000000 R11: 0000000000000246 R12: 0000000000000000
[  174.221617][T11227] R13: 0000000000000000 R14: 00007f54903b5fa0 R15: 00007ffca88876a8
[  174.226942][T11227]  </TASK>
[  174.233648][T11227] Kernel Offset: disabled
[  174.236806][T11227] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:28:34  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000011 RCX=ffffffff81b014f7 RDX=ffff88802436c880
RSI=ffffffff81b014e2 RDI=0000000000000005 RBP=ffffc90005b9fbb8 RSP=ffffc90005b9fa60
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=1ffff92000b73f54 R13=0000000000000000 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff81b014eb RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6753000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055555563c808 CR3=00000000513de000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff7dcf9530 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000c4
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 00000000000000c4
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855ba255 RDI=ffffffff9b0893a0 RBP=ffffffff9b089360 RSP=ffffc90006057350
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000031 R14=ffffffff9b089360 R15=ffffffff855ba1f0
RIP=ffffffff855ba27f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f5490f6b6c0 ffffffff 00c00000
GS =0000 ffff8880d6853000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001000 CR3=000000004f045000 CR4=00352ef0
DR0=0000000000000007 DR1=0000000000004e6a DR2=0000000000000007 DR3=00000000000002d5 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffca8887a30 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5490211b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5490211b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5490211b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5490211b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5490211bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5490211c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855ba255 RDI=ffffffff9b0893a0 RBP=ffffffff9b089360 RSP=ffffc9000690ee48
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b089360 R15=ffffffff855ba1f0
RIP=ffffffff855ba27f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fdbef5b46c0 ffffffff 00c00000
GS =0000 ffff8880d6953000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000056817000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee984488 00007fdbee984480 00007fdbee984478 00007fdbee984450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbef4ed100 00007fdbee984440 00007fdbee984458 00007fdbee9844a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee984498 00007fdbee984490 00007fdbee984488 00007fdbee984480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 00000000000000c4
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000130e35 RBX=0000000000000003 RCX=ffffffff8b801c19 RDX=0000000000000000
RSI=ffffffff8de19dd8 RDI=ffffffff8c1578a0 RBP=ffffed1003c54000 RSP=ffffc90000197df8
R8 =0000000000000001 R9 =ffffed100d4e6645 R10=ffff88806a73322b R11=0000000000000001
R12=0000000000000003 R13=ffff88801e2a0000 R14=ffffffff90a81450 R15=0000000000000000
RIP=ffffffff8b80077f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a53000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2afa9d CR3=000000005e8ac000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000e39fff0d365c fb07100004010010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee811c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007000800020014 0e00656764697262 0001000c00120024 0000000000000001
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a00070008000200 140e006567646972 620001000c001200 2400000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbef4ed100 00007fdbee984440 00007fdbee980004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdbee984498 00007fdbee984490 00007fdbee984488 00007fdbee984480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 00000000000000c4
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000