last executing test programs:

1.210719755s ago: executing program 0 (id=503):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@ipv4_newroute={0x24, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x25dfdbfe, {0x2, 0x0, 0x10, 0x0, 0xfd, 0x4, 0xfe, 0x2, 0x20000000}, [@RTA_NH_ID={0x8, 0x1e, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4a044}, 0x4010)
mount(&(0x7f0000000200)=@nullb, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='nilfs2\x00', 0x1008001, 0x0)

1.209765461s ago: executing program 0 (id=505):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1, 0x200000005c031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f00009db000/0x3000)=nil, 0x800000})

1.151666477s ago: executing program 0 (id=507):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000001380), r0)
sendmsg$NFC_CMD_DEP_LINK_UP(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000001480)={0x2c, r1, 0x201, 0x70bd26, 0x25dfdbfc, {}, [@NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40004}, 0x40)

1.150747987s ago: executing program 1 (id=508):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x2, 0x9, 0x6, 0x4c}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x0, r1}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r4}, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x926}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0xd}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x980}]]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f00000009c0)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000980)={&(0x7f00000006c0)={0x284, r6, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x48}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xd0}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x9}, @NL80211_ATTR_REG_RULES={0xfc, 0x22, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xcfa}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffffa}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x2306}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x101}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x100}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1ff}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xfffffc00}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x2000000}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x10000}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x8000}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x10000}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x76ee}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x80}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x23}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x8a}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x100}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x10001}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x999}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x158, 0x22, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xfffffffa}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x2a04}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7fff}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x80}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x10000}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x2}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffff9}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x10}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xf}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xfff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x72a}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xfffffff9}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x77f}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xfff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfd5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x8}]}, {0x54, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x12}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x4}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x6}]}]}]}, 0x284}, 0x1, 0x0, 0x0, 0x8014}, 0x8000)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0xc0, r6, 0x0, 0x70bd2b, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x0, 0x71}}}}, [@NL80211_ATTR_TID_CONFIG={0xa0, 0x11d, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0xff}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x2}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x3}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}]}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x40090}, 0x200400c7)
ioctl$FIBMAP(0xffffffffffffffff, 0x401070c9, &(0x7f0000000000))
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000640), 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
keyctl$join(0x1, &(0x7f0000000100)={'syz', 0x0})
ioctl(r8, 0x8b2c, &(0x7f0000000040))
sysinfo(&(0x7f0000000000)=""/196)
sendmsg$NL80211_CMD_SET_MESH_CONFIG(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a80)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000429bd7000fedbdf251d0000000c009900fcffffff3f00000008000100310000000800030025304505e6a5a9833c2b07cb0ab60695aa90a65b1ebfdb079923e8c2ba7147e4ea5b35108614d234fdf406d7f68ce3937b956d866b7ce88abb991b30f4380767ad3f6a1d81c32544394c63cc0f4d206e0429bc81f02490029397fb0393ac8c05af18e866ec1de7c0030458c4d76ef6b9789a51fcc6d281362088322197f8e16ad2d980aa0666e35963cbc4fffb5832e58ea8282a0a5d624358fd27a1b928b2d5710ecf66425d4cabbf29fe4c37a6dd7ea5", @ANYRES32=r7, @ANYBLOB="0c00238008001400cbffffff"], 0x3c}, 0x1, 0x0, 0x0, 0x4000014}, 0x80)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000a00), 0x101002, 0x0)
ioctl$TCSETS(r9, 0x5402, &(0x7f0000000a40)={0xc, 0x0, 0x7, 0x2, 0x4, "7aa726ef16cc780d2e01eb6964d9d20f335bff"})
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), r5)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x50, r10, 0x2, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_DEBUG_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4008000}, 0xc000)

1.150073689s ago: executing program 0 (id=510):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, 0x0, 0x118) (async)
write$UHID_CREATE2(r1, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
mkdirat(r1, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file7\x00', 0x16c) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file7\x00', 0x16c)
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file7\x00', 0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x4)
bind$inet6(r0, &(0x7f00000005c0)={0xa, 0x4e23, 0x8, @mcast2, 0x4}, 0x1c)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r2, 0xc01064bd, &(0x7f00000001c0)={&(0x7f0000000040)="9b2d", 0x2})
close_range(r2, 0xffffffffffffffff, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) (async)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)

1.091539421s ago: executing program 1 (id=511):
r0 = semget$private(0x0, 0x6, 0x3b1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r2, 0x4068aea3, &(0x7f0000000200)={0xbc, 0x0, 0x5})
r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000), 0x202200, 0x0)
ppoll(&(0x7f00000002c0)=[{r3}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000100)={0x3, 0xeeef0000, 0x1, r3, 0x9})
semtimedop(r0, &(0x7f0000003340)=[{0x4, 0x3d, 0x1000}], 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'rose0\x00', <r5=>0x0})
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'vlan0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=@newqdisc={0x40, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r8, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_INTERVAL={0x8, 0x3, 0x5}]}}]}, 0x40}}, 0x44080)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r6)
recvfrom$l2tp(r6, &(0x7f0000000380)=""/255, 0xff, 0x2000, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910000000000000cb041818000100009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x1, 0xc3, &(0x7f0000000280)=""/195, 0x0, 0xe4}, 0x94)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="500000001000ffffe1d836838d865c4f195868fc", @ANYRES32=0x0, @ANYBLOB="15010000000000002800128009000100766c616e000000001800028006000100040000000c000200110000001300000008000500", @ANYRES32=r5], 0x50}, 0x1, 0x0, 0x0, 0x28001}, 0x8000002)

1.091423875s ago: executing program 0 (id=512):
r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000000)=0x6, &(0x7f0000000040)=0x2)
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0xa4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x586f, 0x3], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2000, 0x0, 0x0, 0x3, 0x0, 0x8001]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x2c2a1f44}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0xffffffff}]}}]}, 0xa4}}, 0x0)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd600a843500143200fe8000000000000000000000000000bbfe8000000000000000000000000000aa"], 0x0)
connect(r4, &(0x7f0000000280)=@nfc, 0x80)

961.444518ms ago: executing program 0 (id=513):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue0\x00', 0x200000})
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x120002)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000040)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000100)={0x0, 0x0, {0x3, 0x7, 0x6, 0x2}, 0x9})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01)
write$sndseq(r2, &(0x7f0000000080)=[{0x1e, 0x0, 0x0, 0xfd, @time, {}, {}, @result}], 0x1c)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r3, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=""/3, 0x3}, 0xa}], 0x1, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)=ANY=[@ANYRESOCT=r3], 0x0)
close(0x3)
syz_emit_vhci(&(0x7f0000000380)=ANY=[@ANYBLOB="040e04ec292022"], 0x7)
syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xad, 0x3, 0x0, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0x3, 0xa}, {0x1, 0x6, 0x2, 0x0, 0x400}}}}, 0x17)
socket$inet6(0xa, 0xa, 0xc)

819.260308ms ago: executing program 1 (id=515):
r0 = io_uring_setup(0x5ef6, &(0x7f00000002c0)={0x0, 0xe6c, 0x2, 0x1, 0x2f4})
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000) (async)
r2 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000200)=0x80000) (async, rerun: 64)
r3 = fsmount(r2, 0x0, 0x0)
fchdir(r3) (async, rerun: 32)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, &(0x7f00000000c0)) (async, rerun: 32)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, &(0x7f0000000080)={{@local}, @local, 0x0, 0x0, 0x2}) (async, rerun: 32)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (rerun: 32)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r4}, 0x10) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="05000000040000000800000001"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002a00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r7}, 0x10) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4, 0x0, 0x800000000000000}, 0x18) (rerun: 64)
close(r5)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff8000}]})
close_range(r8, 0xffffffffffffffff, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, &(0x7f0000000000)={{@my=0x1}, @my=0x1, 0x0, 0x0, 0x421})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000400)={0x9, &(0x7f0000000380)=[{0x4, 0x81, 0xc, 0x69}, {0x6296, 0x5, 0x1, 0x7f}, {0x7, 0x8, 0x1, 0x80000000}, {0x8000, 0x9, 0x8}, {0x26f, 0x5, 0x0, 0x1}, {0x8, 0x6, 0x0, 0x5}, {0x0, 0x9, 0xe0, 0x8}, {0x1, 0x9, 0x1, 0x8001}, {0xae4, 0x0, 0x9, 0x9}]}) (async)
fremovexattr(r2, &(0x7f0000000340)=@known='user.incfs.size\x00')
r9 = syz_open_dev$vim2m(&(0x7f0000000100), 0x7, 0x2)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, &(0x7f0000000180)={@my=0x1, 0x2}) (async)
ioctl$vim2m_VIDIOC_ENUM_FMT(r9, 0xc0405602, &(0x7f0000000040)={0x2c, 0x1, 0x3, "fff600f40f000000000000b967351bca40ba3e27ff7eefad00000000ffffffff", 0x47524247}) (async)
setsockopt$IP_VS_SO_SET_DELDEST(r3, 0x0, 0x488, &(0x7f0000000240)={{0x2b, @broadcast, 0x4e20, 0x2, 'lc\x00', 0x20, 0x7, 0x76}, {@rand_addr=0x64010100, 0x4e20, 0x2000, 0x4, 0xf9, 0x3ff}}, 0x44) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

698.128526ms ago: executing program 1 (id=518):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0xcd)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000080)={'syz_tun\x00', 0x1000}) (async)
ioctl$sock_ax25_SIOCDELRT(r0, 0x890c, &(0x7f0000000000)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1, [@default, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) (async)
r2 = syz_io_uring_setup(0x749e, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x2e7}, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x1005c20, &(0x7f0000000240)={0x0, 0xe454, 0x13290, 0x2}, &(0x7f0000000100), &(0x7f00000003c0)) (async)
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) (rerun: 64)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000240)=0x8, r5, 0x0, 0x0, 0x1}}, 0x20) (async)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000400)={0x15, 0x110, 0xfa00, {r5, 0x0, 0x0, 0x0, 0x0, @in6={0xa, 0xfff8, 0x5, @dev={0xfe, 0x80, '\x00', 0x32}}, @in={0x2, 0x4e23, @loopback}}}, 0x118)

601.369879ms ago: executing program 1 (id=522):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd27, 0x25dfdbfe}, 0x1c}, 0x1, 0x0, 0x0, 0xc080}, 0x4004000)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
setsockopt$inet_sctp_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000040)=0xfd2, 0x4)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_clone3(&(0x7f0000000080)={0x2d008400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000001200)=[0x0], 0x1}, 0x58)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000200)={0x0, <r3=>0x0}, &(0x7f0000000240)=0xc)
read$FUSE(r2, &(0x7f0000001240)={0x2020, 0x0, 0x0, 0x0, <r4=>0x0}, 0x2020)
mount$fuse(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x10c00, &(0x7f0000000280)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, r3}, 0x2c, {'group_id', 0x3d, r4}, 0x2c, {[{@allow_other}]}})
socket$inet6_tcp(0xa, 0x1, 0x0)

420.743947ms ago: executing program 2 (id=531):
timer_create(0x0, 0x0, &(0x7f00000002c0)) (async)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) (async)
bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0), 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) (async)
timer_create(0x1, &(0x7f0000000200)={0x0, 0x1a, 0x2, @thr={&(0x7f0000000440)="65ae05482f855f958c462b858c7574c0cf91fc95d9a137f148ceda69621b34e2e9524a22ffb2ab3954c62b6ea59de8d388269773331808a7846f3613597cb1421eb1e6a052e12599a4a7cdb220859a4c915335a4c0b8708ed8c8ef25340fc00c86308701634f31d23d7343ccc8ea32ca2597717fa7e0350d16bda1d6f221dd8351813be9118fad1d90abaaba6ac87d26c082419595a69dd330ba11ccb337e5aaf2d98a9e8e939fde1d2977d5cb3e96e0d679e2a4cd82cb6a20b1e177eeb15859de2576f125f86e04928f9487", &(0x7f0000000180)="ee77c680d8"}}, 0x0) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40000000010800034000000014480000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c0003801800008008000340000000020c0004400000000000000c7f14000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000003080)=ANY=[@ANYBLOB="501a00000d0a010800000000000000000a0000000900020073797a31000000000900010073797a3100000000241a0380180000800c000180060001000000000008000340000000029c"], 0x1a50}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000001240)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000200)={0x34, r4, 0x1, 0x70bd2a, 0x3, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xc0}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x32}]}]}]}, 0x34}}, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r7, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)

351.025975ms ago: executing program 2 (id=533):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, 0x0, &(0x7f0000003500)=0x1e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000002c00070100000000fddbdf25017c000008000180020000001c000280180001"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0xc010)
sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="470d000000000000000000000000080002"], 0x1c}}, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000740)=ANY=[@ANYBLOB="14020000140001002dbd7000000000000a"], 0x214}], 0x1}, 0x0) (async)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='tracefs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@userxattr}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) (async)
listxattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=""/80, 0x50)
r3 = accept$unix(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100)=0x6e)
sendmsg$unix(r3, &(0x7f00000004c0)={&(0x7f00000002c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000340)="d020e430aeb6ed103ee3406b5bc07ddf0d10f696282c06ad7eb68819cc1ebbf6d0388ef910a0bdd5d37133fc729099a4a6ea0dd17b32c6386a85d2323ca1464db46f2c8177150b3e90d617f35d", 0x4d}, {&(0x7f0000000400)="e0b4762a475fbfdb9218b2967e7af6749be5009899d215d620e07b4d2145d57454b224c114dffce6d23924f0142cea434e0b8eefb942aaa0e3887599493f727317e401009cb8179f2967ceebe0c97a685485bdee58431f3c9afa9fcda4ce8c38fc3e8547c65d2da6d2c0ef7fda7f048c6a90a811d837d832c35c719ad44f14", 0x7f}], 0x2, &(0x7f0000000480), 0x0, 0x4001}, 0x0)

320.231457ms ago: executing program 2 (id=535):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000040)={<r1=>0x0, @in={{0x2, 0x4e23, @private=0xa010101}}, 0xff, 0x40}, &(0x7f0000000100)=0x90)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000140)=@sack_info={r1, 0x3}, &(0x7f0000000180)=0xc)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x33, 0x2, @tid=0xffffffffffffffff})

240.011361ms ago: executing program 2 (id=536):
socket$inet_sctp(0x2, 0x1, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
openat$ptp0(0xffffffffffffff9c, &(0x7f0000002040), 0x82401, 0x0)
clock_adjtime(0xffffffd3, &(0x7f0000000000)={0x1, 0x6, 0x4, 0x0, 0x7, 0x8, 0x652, 0x7, 0x8000009658, 0x7, 0x9, 0x0, 0x10, 0x800000000b, 0x80000000000000, 0xcc0, 0x1, 0x1, 0x94d6, 0x10000000000001, 0x0, 0x809, 0x0, 0xfffffffffffffffa, 0x80003, 0xf64d})
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xe, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41100, 0x39, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0xa, 0x200008, 0x5, 0x1ffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r0], 0x4c}}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
sync()
sync()
sync()
sync()

239.196091ms ago: executing program 3 (id=537):
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/3:0:0:0\x00', 0x214400, 0x0)
ioctl$BSG_GET_RESERVED_SIZE(r0, 0x2272, &(0x7f0000000040))
r1 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000080)={0x28, 0x0, 0xffffffff, @hyper}, 0x10, 0x80800)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r1, 0x28, 0x6, &(0x7f00000000c0), 0x10)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0xffffffff, @local}, 0x10)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x4000, 0x18)
faccessat2(r2, &(0x7f0000000180)='./file0\x00', 0x140, 0x100)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r4 = geteuid()
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000002580)={0x0, <r5=>0x0}, &(0x7f00000025c0)=0xc)
getgroups(0x2, &(0x7f0000002600)=[0xee00, <r6=>0xee00])
stat(&(0x7f0000002800)='./file0\x00', &(0x7f0000002840)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
fstat(r0, &(0x7f00000028c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000002940)={0x6, 0x9, {0xffffffffffffffff}, {<r9=>0xee00}, 0xffffffff, 0x8})
r10 = getgid()
r11 = getgid()
read$FUSE(0xffffffffffffffff, &(0x7f0000002c00)={0x2020, 0x0, 0x0, <r12=>0x0}, 0x2020)
getgroups(0x1, &(0x7f0000004c40)=[<r13=>0xee00])
syz_fuse_handle_req(r3, &(0x7f0000000200)="e23b1bca311df31a54746cba948094c1c3fa3e8ef1c57536f15d89c16f79eaa4df3f4072ef6d6ccbfe6273914acc43ead52c93fcf8536e5f658cfd1d58e5db1c430eeecf38f462cee96e40b621d235900d67825944b942a2973fafbb131cd8b0e3d7bc87d594077d69a3229bd97da3b564f1400e161e7017cf94c9236edf99fa5caf5f6c8c84c7b203cb7ddb376a02eb2403184857f5b4a9dcf3be11207a02e922af6e9b830f709029a1077b05fd2b0a5213157062d8913515c6347fb3ce30a87ea26dd9bfc8b28e1d3b7a3082d329c9465ad9c0b00e51c5edb7c145c3db71660d7fad7d88cce88a34725539551d07d9216a27ad073822dd624aac357dfd7e9df43cc911f4b95769fa48fa4d1687f906158c3da3a3512f7bf04a31cb542d449ee11a883628f5672c196fe7deea6ed5160cb5d9dcef46e79548ac4fbf857eaf78ae6f6388b96b7dc61692b63c79e85fcc3ac942cffae370c8fe8c3aa9d5943cbbe6569dd73df0c8741d700c1323d0f509c11c82b53df4e5494fa05e8d7eb7434c2eadf8dccd9d5a38d618b8f1c433b475e444556f028b6ea92f4dc22546803726b34d59356d1ad5a4f04ac56a85f054aaa6c3e093b4b1de5de66a650e4173e1c1055cfc71af51a01a51b9ca782e96a1e93a5bc0bb1a480a34c04702081f592bdd72c6f7d1131b012225659a05de22519dd5b6e855c66c68c5c1bc2c419a9c17389bd33d954812b673cc9a7dbfaac4620ba014e155ac7786b8e1cb838af5a59d081b0445186bbf30d62152f1bfbdec5e8338aada22936a95a4fabd3686021c507b94bc85981a47e368bc5986fce380cf60017062143e08e800e6f377df2fce634207559374ecedfec43d6a47ce296a55ffb524e48e9cb326bad2a7327b8d0d74d448028e7223aac0e3abc331a95ac1a11879c1a9f1303bfdbfc5d43610d6a04ff784d2138d63655957177003e3f87c10458e36a79defafbc6de49f05d8875da03781624bb627bc2f480108063e8be42945b2466b138f1f696fae1bdd3858c791fe989ac84c3fe1fb0dff3d223a7221454fe18b0f4fc6c8c4de15e377ba7fe10c734c44526b6436fd9166c938313fc5a66a4bb0449f6eda48cb3a011a308dda6de1ae0eeea01d5f05a4f35bfb055d1f6ee363f4c5f626bd851e8ee298b49b2e536b02e52762ef7cf5c9174ff68ca40af671e6bc6a8dd03c2446b3698e03fa621dc49cca8257ce9671e248e0418d6729d479ce45f937c61c68ee0f6e359bfb6e0937193e5b0d8303df4029b9851ce96224808922df7eb80a3f0890fb83b7280a3a5088dd4a635cae0214527c11aff9366c8ac0c6a20e71d42d57e35219d9773437f69c2b0de48eb724dadef1b228a97c666254041888aa0c057ee9609685f6ce3158f2ab2338b0ea584088670ca16b0c3d7542ee09cad8ad8a2b5bc26369baa948f89c3ac07c699c6cb528da4efcabd48bb2362dd7061d4394e3fcccd779a52086acc74721f3f10ef49a84057948c72ec4a83d6fc908e92893c6ebf6631b5f88fce1aa5ac5d91128dfaa8428e877d7eccc2921ea3aeecf5841b68543919028bc4291452451b2a086b0f1e0302838c85d6ebed87d202fce544f53adcb6b37330531f07d145e65f6f6f38a41002ef38859f141e1f461ef7719a8d9fd5f4088393addb83c0fbaf9c59c73fc6216f86737f76b3cc0ebf2896b45aee807ca5c407d5d7873e0533b8ffb70996bc22b214343cd34ed1b80b9aa98b471f682106c40361d51af64e3763c336af0b1421b09f14797e7aa199c9c5373aeaa1d14be78e241bb03c148557c6d2f3105a29b5ea55be5caefd62f43d8af2b260a51542db3d6594c0c0d1582e3ffc34c8b96ec020b635dce6638f3325ab1135b7ea3b5623ed10f582c5c4205bc08e9e53693030e31d53da4d8de6cb9aa8ca1d606f58dfbe26758e460196d73559e25cce9a880be75d156cf268d428ac3c08de852eaf2fa61b613363e1cccc71e3d8ed4f942aea9d1c856a2e894e5430a84227b15816ddab5ca21dbc5f3260957516b6de2bf29f4ebe49330abc374a79c8b35eae22665f01af3c955bc07064242c01fdd27f6c94957c36952d646b9d98a01ab645fa8d9f7c61db14d044e2b768d3dad77f49ab0072d56a25a9edad243612f47727280acc5d331fb81e76f8764fff80175c2fc9a256d7118ad46c388ea64ed425d89e9f4b5371c8f1dc18b023c2866674f01e84207565c52c0ae61112e0a8d0cc8cb74f6838701328f2659e3166a0b9b6b9b060ac104a9de4dce6e4a4cd094b6741091556777eb7f859d74182d3513290e8b2ed0dcf88d3ce4969746447a73e1bab0e57457371af2dc7ceed5637eb5cf8283d7f06b4229e5d7de7b8c95cf0765219be43912c43051538392efaa1d1bad022699a955518cb7ed04e7de60f726a9ad246803bb8513a0d5c1f1e7c65a3d12e5dbc2578e29e35037149485277211156e31d5c234808bc89b42545a173e81f89fefa0a907ea4e77a38ee5428d6505565651f2faf09066917f13daea8c3d27ccba6fd597a52c0b2966bda85a79ee6b3eb05ecac6f666eacf90212617c479605edbc84b1415f97beac30bdc0cbbe7c01bd84683f9af478c7aa4701344886a3df7fc7a0d8fff74ce98193940f5806adeba4588b0c582a44565e10e17c4c6baffc6bb16aceffac25db66f5cccb8f0dd613a3360e05c83b251da48f1ac1929443ebf6d509de77fbb95e859156f212f1591114d2539392e3d528212342180499eb9ec9cb59ef26ae801d42931f04c9937bef1b4f7b4958bbdaa701706715b34ff1df39255a426788ddbe2c763047bab87e72564d0cebdb8453d1a8e54e05ca46400e60eb1df7e93fdd72db1302798659c61fd0d205c7a5fd10c293c96b5ef99ded17339157be7e5d523963c43888287187212aee0d5c6b298f660e56ec4eb9d3a0d4966a627131ebad03da6d7daffa1c525c4bd84a242da33aac8ee1237539af994380f73f68b2606eae7187e4257a6b8b1b06a7d27d3623170508089c1a4f5796c547d4223d632f4bcf3aba5970129b4fc5d4fa40b622717527a77fa5e09e15644b03c1ba2e8b3e0051288a903da24b650068ae146206f80ed240fb2f9858c3bb0fcad5430fa3dd71ba050817f6d51dd542dfd2d0b0669566787719e4a1d81ad60cd7de3c7908d19f98e07ae4db6d5a7e0d7a378cafc5e927fb85eb63868f9615669a93bc03a00e12a15f80ae1762cabca2281f3ebf243c34e2ab0441fd2b580496323a6c9b2cceb88fa2e237515e7c0877e97a118376cf975f9582d2b4edcc42a58ee713764ef95e92e757af4eb5dae4f7c7a3b695b94a9836b7ffb32f13e23bdc4b45e2ea92d28aa4e57d454c4b8a04fea8a026ee61b8d976afaf369ce94ce846b203f14ccff6d5ad60e28e43b9261b71cb24709193c1dc44d15d1bc5b7b8913d7269ab9215ba301168554071af0a2721df6bf1552303f5ba9829cee8c4562ae4d81977146953d19075e4fa879ef6af5f5855d19b39f833dfdaf6846462850a41044a91c05c8c60dd6e33e573afbe2e8942d5d3f4b43dff3417fb4c876fa14664d2740604ab7f47bd9ceced7687d8a72a48fe275ee7753643d491a8b2a14e59866d720e556da4498785ca190b90a7372fd5ad73b556f765ca0019f7ea91504b31ad43bc891c447dc3d5d5da8d6d6c3ea8f29bc2ef0a92daf788356d698505d945e2e5abafc586cd7349ba793978e9f20cbe410d98d7b3a52e6e40cc3eea28a13880005e953bc3f24d4ad8275f0e707e0334cf505c665f6ce3f45d2138176a0aa1dc3d95b27d30c5a6b25f0d15e21a04dd05bc8dd9354066bf028bda7a11385db8291ed4b3b591a277428c4f49444f61219caa86ad477058e999020f39ef25cbf7238a8334ca85b77e9a2466a6ffb24aef3b54f0b441d1a4184d1424839913f9324b0cf46f22c48f17ceb838fec2d4b1af02f6e60cfcba4188a8bc75363a42e8720f8bfddb3c693f3b5bec988dc0869139594e2264fad42cb0917a6be12676b41efe12268c86f6904634f4e565451f6db57929f38262444003bf396c5a2382c2c93cae9f62ed2d443a88264cc02441b7f1651194cfdbfa7968879bb794918d7024471aec3a578043580095a21aaaf2a09ab2a193d564d31397d02d8d151b41160cea48359f55c4e2443ba39be7030c61d24592c34f0d15678da6757e20f82df65022f89720bbcfe54c2c47c81604163706584ffd467c9f084216791938962c9623259df746a42d1dc9cc2745c86ffaa7871ba41c2706a6da98cba5fa2e5f80efbd48d6e7066e71f31c7d9d85d38db035d8ae4c522763288f27319d90fd44edc989c88a1b4f60de4ac77d9344143ce9a230c7d12737c360490a21d040fb02dac7a583fb0e8ef16ba19af486fe1b9f54fff6e4d206eaba763ab841817c55068b7440397f3e9ef1a9f1dce09cbff432cabd0bb7640d86e8136118cc30d8fe1e8dc825736377027425720f329097484bd8bd55d1cad04331cd5a53720880437ae6244dde7f2aa019d296f97daaaafa7159ea0898ad37403230cc6a79a90d10fcec4244b7e13288d5ca88b1381faef70aea3aa49120817ee460ee439ce886b24ea55ec716b6e5390a7eec532a4dd817a9142fcae285fa6d9601111216fd5f6d226a9c73c4a1669957dc5d8ce7c8cbec38646de579c6b02c46d530f5984807a70beb785ef772f017b915afc1a380d6e54cb61f56344f3762bfb9b7e3c97cdd2349f8d0d5cb5b15f1bd8aded33e887730ad4db9f2fa74af5060a583feaf190a872f98974af3e93139bf499df9607a704f39c83a87371f8c2b594332aa9965c2ea371b3cbc97b53f39f0174ebcf564bea974bfc72163a5c871d690d61379ae71cdceffe7ab6808475749c2039f48676dc552d8ab9d77d1f19cf469e65622da04ce8d341326b73800146d766b5480c6693152b4edb7665cb11e834f33104cefb440748b1e71bf8d6ae90f27b8fee93f0321a4ff300178aa8c4a1c2e06bc70b752f368bf111a132815402278555cb5b2d46269843ce20687f063becf5a03f265e9b40a2eb480ee10f76bec2c116d4d506e0bcd42f1c0aee4b96cb6c167b63accc97d01d2d934f42b85eb8fdd83740b1f453d1de18ffc79d7722ca88823aa8928b6d6b18d0b02d9e17b1dc263b2018c34ec984765713587560094623e60df870167b53cf341f311525eed09940ab03ddd7a0fd3d95c049dceed02aa3911709d465fb1744c555b2c7234b9ed782bdaaa77ba1122bee6cc8d7ee301dd748a5510c4bc7440d718d51cb670f346e646c6e2d2ce47993a4fca8ab4cee837de9f378569b487cf2aea611aed5f2544054e75a0e437f01931e0e04c8fd09ca6598b2af769728e17d94d1e70935aa62cb31784671bb1c44d52c7a9b74a684780fee2cef5c2c3d15ebbd8f4d34910c63e47808223a15cf4ae34d355b16f8fdbccda7fae55c412bca12c1a0887842dc3eb9314820412e4628131adbbcaee892beca0ef9a716a8c67a7ba65449de060d9f8f6150b734504ff4b1f7284d99a0dc1f2f3594a4993ebf873bfc468b8876dc9aa01f014506de6b47b4c59863258b51ea6c187d43d1b00c408b4bf175fa3c09a9d891c4ff90476fd0f2e4f5fcfdbc2955f7166dae3a4fee9a9ba09eaa5ceb8a25b7b6dfacf9103e63c7b6e5fe498e1ca367980e02cb5cd0552d5e6e78fc9febf0f868b949c44033947965c5e06e36f25c61a28c81412b1f6fff0ed58e883e71a6eb9e8c382652ed556b376b4e062305f1003094a5e7bea3f0850797ee1c76ed5cdec5373956f0426963c634f418467a4056157cd71d7e1d17fbcb682e31c589f0385d958ed58f5b7abd12d82b303de39e1e25f854957064d21924bb0e3d03ebba441fda55d45cce5ebe49c7bdc9e542fa942fa07716d091f2e0fa050a5c0f5f9ee0450a6aab79fa94b6570635d61f4248b01c83ad119daf88744814db1c83444ec2a4582f372582eb588a138eec1d06922b1339578bfeb288a1a3129414af994f91172f31fd03d364f2aef9130b6532ae0bc4af4fc374630d98e6e7fb23385eb6e4139cecda6b5a0eeaeda74a66ccc98f820f718daec0577859ce178c03bad5cade1f4c33fce33d4b5e6bd6ac7db95c48ee90f09984ed97fac7f88837b6155773566d9ec2d2cb38369582af433a0bf96a45d13e8dd59e6d351709d8e3c90b9aba953e6f8b1b9d80b0350acf312c3b8fee88eb0d0b26fe70d80e8ffae261dba0aecf966b6a0fb2b439fe94c02fb4c27bfba8710e37811271ba1c4d97fc4ed54826729d52db8ce51b753f16551c0359cc2c46db2a67abd6440d5557df7f77b35dfb79f93cc5db58c5c2a35004c3c3ae410e5dbc4b6ed7fda0fd91add4f195f9bc96f37cca6ea8daf2647fc9f0ab34f0cec98525bcc86fbd8b0e613839818ae700d3ce0d0ab62d2fbc18d3304a0c867422cace62566d9ce6abe559db62a2877075a221460f02d41e904a5c4fcb14492d10cce14ccd8682ea7ed8ebfc16329808de13ffcd3de9a9c2505eb0adf7d2c5d2b9bf0c646f691ea320659503faace326fbf2d3fe1b02ce0932e79adcea461abc67fc5c21bfb1b63b0c7fbe0a9958709de17b8d1424335e1453dc107add010566cca1de633c5329b3a33a409682dca6a21e5ac0dfaa6428c47bd5815042b042c8169f3bef746f5aa9fd1740a84487e18c490489db6a00f60750021f2e8210bd5b517c20724ed235402adfe75e5e41c6af68862d371120cba65c5e47586a9dd6d7f451c694f3e13f39ccd25f85d34cbb938fae0f908f67416a524266676d10a1cc30b1ef52ba1b53ddb73060e70b668fcbc3e56e26918d931fd104706c6a4fbf8d03a1b55b9e9b0187a631ed6fe3dfc3e37ca1e4107ecb8a564f7086e4102198cab6ead7ae1d015e0dd0e84598a81b0b23889ed2a95049d479b10b523c4e6178adb67d02458bc9c226818cb6b269ed00ef87461ba854bb94f3866beb94b71612cde5d00c7eada821f50e1bd599b193175dda220e7d250f1e61e938bdf0dabde8a00c642cff6d7f0395f993df59330cbbdd83abddaa7a900dda59332110da71c2717bd1f097e791ff67e05f911a10e4eb5d0a20138cdc5e84ea7a2973a88e130442ab11f73c6e93323c6178acde55b9721ffe66ee186f7fc75aae0ce9b4a2d6a587c0d58a3af73b3e8677a89946e7e5c3ffc8aaab2c17967419a05a8064aacf14d1d920a1ba95698a331c62b2445e00497c24f61d7fc94675f3ec26fadd1a18d091ac02c6a0d8ee891665b0a9c0669b09999d84f7e2654b301a25a41990a52f902eee57002817ed30805e0ae7b5dfd6d2ee4fd7c4124860e75370dedc81c6b31b11bc6893e92fd7a613cc726701c74f1ff0e0e59d4a67576b7154bfc8cc6b7666d11ce6867ee644b23fc77f3cb89cbee3e492df6347013b89357d946fc9a04dc923d9dfcd9d5c31cb1a59183dbb684a0ea4ed08e614ca46a55344f0d96f1b154ab8fee88450df06112825bbc0f68534b5239c6cf1a1a09657ae12e2c9ee8e988289bf39556388ca29c472efb42e3b8362ef8c4ab1f53bed428f8997d61c57a541147be81cf9ff4dd69ff887b9dea6717f7d570757b3da600fe79264bb1ce134d83dcdea8b1061098042c64babce2ad5ac5f40bb9256081a58db59cc1816d00768394b8dd6b2fdb928e84a868b24f634fa53135d7d92b6aa0c0185ce7752049f64d58f043263ad49e78e855e4dc0618a9698b2a07811b5ba2ef583525678235f1ad5dbb894bb4cc6653c5a9a5771e7779aef6fef8fd7c7bbbd634a1abb8b1a156b9a629525ef11c4610ac23346d9b7a13d506af5872158f025528545adf5d27a18f474fa8794bceb3cb36e19898a03327224da0d66aa5ffd68fb60e3ab9bb36dd4c187c86b5e21a42c5141f13cfdfb4a7505349de4d0f396a483f794ff8e9ffef5ddc07ce198863a5522ee1ab1e60043024b358f74f957843851c86c3048f1aab32a8e4e43c6460c9c71603e4311d65454d6a3bb03fb9028642f4eaf004da4d05c6d35cbf5899147a0d084f21300fc940730e3f6baee4972d2c843cbea36f40b06d473b51712fb40dd29643712d5524d1b88cbac84fcaa223cd3b4803c68d9311c429a794150ff3ed093a62c13bd132df9b75ad39af9067de08ae0742afda078a589467017a6c5f83c1c6e31cf9b61ec04bb7126a76d4ff818d2e99eb50c8cd2b2fab8fedeb7f9fe03f1c4ed467444f16bf8d91244eeeb285d917337e6f50169038f0b618b4cef113c2f7a9d9c485a975167a1eb106d9aaadaa9e5b1badd4bc46e4fe4013a4002bfb0fe9b354f68d9ada2e3e6a791acdf2b8d9912c78acdfc4bfb0134b9df53ff69ac5e0c8962b57da6ce50977ff0e45d9ebbae53292dd2a958dd1410f91f8bc5b9ecd61e03dd3cd107bfe9b7e6c03077d4d629685a0f6aa53da9831900f0b93b2011cb50fdaa91a873885edbcb69f1720b286f8d2054f40a2b8ae87356bde5052a65031f604e663d85915cfd2dcf4a6a581a2a60be43e4c47c664445308598b22e652b106c9921319bcbb8e6c303cd51d1f9c2ebe683d43ac5c193c0a48a54b636879d31375f1697226a659b3110947128f487441b656ad45ec647b16dcd90b55164b82bcba8ce6c9b58737e9b395308ac7586493628b65ec631b3fcc6da2132fcb59cdd2c8a717e8914d9446c23933027113643482a21e2f1a117dd6d3b4e971bdffbb29c528dff6f70d50e9a643f5168640c41b72416225268561903de11898af0fca09027281c1e5e11b1f4ca1221693ce46a1e927c3ac7e58066987f476accf6c5441a400fada788de128dfa483d7371d93880459b3c5c9e16ad1f91affe0f7d88aed1312b485f022ea476524d0e6a5ab4b21fadf2369af2c728f3b761920b299e1c73be4078cbac4a3aff1fce0a85f7a9f6fba38d2c386f3e6efed6ff0e2efb5ef9febbd622554e8d4045a13476f20a3b1d6d9f3848b36405dedd810fd242bc9ab457d87997cd16201a4c66d30e95dc442c56c8484611259fe39642fe4b44c9e4b819d18aa26281a3daa433291a4ace9e3b923916443183cdd723241d913419d5248abd6f134eea7b29225c2776f5ac5232989153f602fe7c3799e653518d97deaadd007fae74b90a41297078bc6333d6ad5a6d72ec8b6d4313ec34ccd1d267d819ba866b2addaacb27f7455f72f765098ccee73d5ba8a9bc98f2e1f9b1e9d27d639b35c3420aac36969d04ef4eb9bed1b1dba3da8426731227c3011706fa4079b7905b7ffaf583aaaee9232e35693591f92bde637d224ec54b2ab85aee1b5147a7a08c4b01b4964b09d7f0490a369e897f4ef2c501ad3ec1e3fe2ba75fdcf6299b6bd3dcbeda106233ad27ec68ed6c1c59f83b9df5fe115b519fe5190273c1ecb1c578fae311ca0b62e66493d04506b4ca3bee0c4f63f6424865f8e960a1e7ffd59aa9d038af961efee7b7964586bc5df189f491cdd9959ce8f7b21178dbadd81ddb66feef4f767c1770ecef00c614e115d2935e45e028b6d01b4ba27471ff110237ccecfb0164b2b0367f65f3e308aa2043db695dcbf488396345dc7a52f318a5df5be6accb7eb756fc31326115f6133588b25815ab60c53974af8e793fb65e61d804c0f9e2382507f2d6228143dfab97490d9646df75ea432e308efb2b2e79ac3a3b8b0b060061534572f6ce5ff589c8ed3cc9a79fcb446b9b87ee5988bf4d5ab17a3b2504dbe337364b3911b990a949495e0a77b0a13855ea0fbaf7918c89901738b469a2494c5a706eef9ef91db8e85453a4325350380a39e572c2cca400b3851210619ef03787e9996fdc6add046d74d3f2839cb574fb80f78ad9012070b4c9038c5ee4faafe84fcac0a75420da2fe623ad0f14ee5912596f3833c9abccfbe65d36c1c684035a044565ed430f3ba43b4d111d7fce3cd5d454119a0db92c35deb3efb848471daa968abcd127a526b0363352e9aa47b5513d5083c0f9f4a1f1350760cccfb5a1efaaec6bf1ad1563b9cf4bf04b67264b113cbea8f5e81bf8651db53773f1ab9de1888da3866034bb4893779634b4c39953343e23e0a0dc5925feb07fd354d661e2708ad6a818597029fd8cfe61981603a7384d523351324739a4c85800fa5b4f21791944232d2385b56e7bb6d6b767947613cb5c0bf041c45875a05458c99e5a10fa83f0a96155234fa54b13bda05fd435b290f84bd294796f415191cc93ffe822236c6078451e7968f066f88b703f4c4fce69cd346841d19fa7e007beda20514076ec3f7d3a7e7508e9f2ad9ab808cc6853eda507d443e4d64d0b86c0b49dcc248d6a9997576aaab6296f80c84de430145da803977fffc301173422a15f275e263e2c504ad4da097485944c40f48685bd3a4d61dcf0be179b86bb47f1b019d68290a2b28bfe933c3c41871303677ae400276408f57978da9aa37a2362b36c1a968567a039d7b411e1d756c52a34190fd691fe04155e76ba492dbd85e199bd1ef57d5bce9513fcc991463a0f3876e59e7e5208147051a6cfbff1fa87bdd719bbd9e90a9abc01790ab1953e47f4240e09f597e9dc7868aeb0d4c9e171179884960a81eba1b2db7bddc2ce4bc8426ecc55d331dd64f104cfae91a1a4cf9ad4bc99bdbdbe07c752202a26f34b125a0f132b8b26e9af0c213b31fb1af9544b8bf090b601c2ca0fe4d8b059a9408f237529984d1c18439bb7c71f74b9b6ce64c3fdcd80df1e4f58b7592fa925c5443790b939b895766019f5a1d6f0d1bb5612c4f7e18a02a03aa5ec2c6253e997d9c6c0edefaad6a13cbf442bc81aef303f5b4a85247b8ae3362f9ba02910cdf664cea968be58e608279a2d78a547e8372395e0d509b9c3fdefb12ac13089941d09ec07e5cf5ab32551b7b00b61e7477dae00e313c6260bf58e75a40cee6336872f3c80706df0180dea3a995a9f086215129bca86f07a806d91f4d2d9d7ad60c743092e9c2bcf58d31ff3e423b5828b264bc39dbeedceec760091158a851d0c577b87026933ad881ac9f70917799fc647a4dcf86923250e16931061458ad7472eb6f5aa5f254246fa0d9da45d48f2aa3a0c23225e4bbcb97c9089ba313010dab2413fa4104c9be9ad53b89988f9d6892c831e58e1f9b0a5d5f49b986aaabfe27e550e1b91603477a7a70ee8d102b05f6f578d638c127d156f38932aefe1f28a70f98d407a9a81238e7ab62f5ea14145f097c4f5088ffc843752fc7536ec2adc3478181b6693430624dae070425db645dc0fba06dd6760fc66b04f4aed48a26f5a80167ac813ee8b13eb08ee7fa792dd5ae9e2a89a07f357b947c2efaa3b765f274046b5d95c82788482ef6b8c23046be6a8ddc74c91a82b266832f0aeb4fbbd9a5ec1a83b3c3fd601e65138e54a7618941452a1bd421db722d6cb7113c90fde0e3bc9ea025ebb0feb8ffcbe111954b8b8464f79416aa62ee8ace9198220163d727c7bef77317d991e6e955969c2d1b5aa4d16fb3ecd0a59f074a5d8c3aeec229c879231836c1f9a54e115d6c966c5b837c9e0feac4761f642b78be7992aabf0ef93cdb6fcd92e95590bf05b49639b", 0x2000, &(0x7f0000004dc0)={&(0x7f0000002200)={0x50, 0x0, 0x2, {0x7, 0x2b, 0x6, 0x100, 0x401, 0x4, 0x5, 0x7, 0x0, 0x0, 0x20, 0x1000}}, &(0x7f0000002280)={0x18, 0x0, 0x7, {0x9898}}, &(0x7f00000022c0)={0x18, 0xffffffffffffffea, 0x8000000000000000, {0x2}}, &(0x7f0000002300)={0x18, 0x0, 0x0, {0x80}}, &(0x7f0000002340)={0x18, 0x0, 0x1, {0x5}}, &(0x7f0000002380)={0x28, 0xffffffffffffffda, 0x6000000000000000, {{0x7ff, 0x7, 0x1}}}, &(0x7f00000023c0)={0x60, 0x0, 0x1000, {{0xd, 0x3, 0x3, 0x3, 0x6, 0xfffffffa, 0x7, 0x80000000}}}, &(0x7f0000002440)={0x18, 0x0, 0x5, {0x7}}, &(0x7f0000002480)={0x14, 0x0, 0x6, {'(@{\x00'}}, &(0x7f00000024c0)={0x20, 0x0, 0x4, {0x0, 0x1d}}, &(0x7f0000002500)={0x78, 0x0, 0x7, {0x0, 0x8, 0x0, {0x2, 0x4, 0x7ff, 0xffffffffffffffff, 0x8, 0x4, 0x2, 0xe3, 0x2, 0xa000, 0x781d, r4, 0xee00, 0x40, 0x9}}}, &(0x7f0000002640)={0x90, 0x0, 0xd59, {0x3, 0x1, 0x4, 0x75, 0x3, 0xb6e, {0x2, 0x400, 0x8, 0x2, 0x0, 0x7fff, 0x3, 0xeadb, 0xea4, 0xc000, 0x40, r5, r6, 0x2, 0x4}}}, &(0x7f0000002700)={0xd8, 0x0, 0x7fff, [{0x0, 0x1, 0x11, 0x800, '/dev/bsg/3:0:0:0\x00'}, {0x6, 0x2, 0x11, 0xffffffff, '/dev/bsg/3:0:0:0\x00'}, {0x3, 0xf, 0x11, 0x401, '/dev/bsg/3:0:0:0\x00'}, {0x5, 0x5, 0x5, 0x4, '-*:@^'}, {0x0, 0x7, 0x0, 0x7}]}, &(0x7f0000002980)={0x148, 0x0, 0x2, [{{0x8001, 0x2, 0x5, 0x5, 0x1, 0x5, {0x5, 0x2, 0xc17, 0x4, 0xfffffffffffffff9, 0x6, 0x697, 0x4, 0x101, 0x4000, 0x8000, r7, r8, 0x6717, 0x3}}, {0x2, 0x1000, 0x0, 0x100}}, {{0x0, 0x3, 0x1, 0x40, 0x7, 0x1, {0x2, 0xfff, 0x9, 0x1ff, 0x1, 0x6, 0x2, 0x30, 0x9, 0x1000, 0x9, r9, r10, 0x6, 0x101}}, {0x0, 0x4, 0x1, 0x9, '*'}}]}, &(0x7f0000002b00)={0xa0, 0x0, 0xa, {{0x3, 0x0, 0x6, 0x3, 0x24fa, 0x5, {0x0, 0x5, 0x20, 0xfffffffffffffff9, 0x5, 0x3, 0x6, 0x4, 0x9, 0x2000, 0x3, 0xffffffffffffffff, r11, 0x6, 0x3f}}, {0x0, 0x8}}}, &(0x7f0000002bc0)={0x20, 0x0, 0x5576, {0x8000, 0x4, 0xcd4f}}, &(0x7f0000004c80)={0x130, 0x0, 0x1, {0x53db, 0x0, 0x0, '\x00', {0x1, 0x1, 0x8, 0x897, r12, r13, 0x2000, '\x00', 0x4, 0x0, 0x5, 0x3, {0x80000000, 0x9}, {0x0, 0x1000}, {0x9, 0x3}, {0x2, 0x6}, 0x8, 0x8, 0x1, 0x3}}}})
r14 = openat$nmem0(0xffffffffffffff9c, &(0x7f0000004e80), 0x400, 0x0)
ioctl$SNAPSHOT_FREE(r14, 0x3305)
fsopen(&(0x7f0000004ec0)='squashfs\x00', 0x0)
io_uring_setup(0x60e8, &(0x7f0000004f00)={0x0, 0x2d17, 0x0, 0x2, 0x99, 0x0, r14})
write$FUSE_NOTIFY_DELETE(r14, &(0x7f0000004f80)={0x2a, 0x6, 0x0, {0x3, 0x5, 0x1, 0x0, '$'}}, 0x2a)
connect$vsock_stream(r14, &(0x7f0000004fc0)={0x28, 0x0, 0xffffffff, @host}, 0x10)
r15 = request_key(&(0x7f0000005000)='rxrpc\x00', &(0x7f0000005040)={'syz', 0x2}, &(0x7f0000005080)='!)\x00', 0xfffffffffffffffc)
r16 = add_key$keyring(&(0x7f00000050c0), &(0x7f0000005100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff8)
r17 = request_key(&(0x7f0000005140)='asymmetric\x00', &(0x7f0000005180)={'syz', 0x0}, &(0x7f00000051c0)='(@{\x00', 0xfffffffffffffff9)
keyctl$KEYCTL_MOVE(0x1e, r15, r16, r17, 0x0)
read$snddsp(r14, &(0x7f0000005200)=""/165, 0xa5)

170.604263ms ago: executing program 3 (id=538):
r0 = fsopen(&(0x7f0000000140)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x3)
r2 = openat$cgroup(r1, &(0x7f0000000100)='syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000080)={0x201800000, 0x0, 0x0, 0x0, {0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58)

166.7686ms ago: executing program 2 (id=539):
r0 = socket$pppoe(0x18, 0x1, 0x0) (async)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x48c, &(0x7f0000000040)={0x0, 'netpci0\x00', 0x1}, 0x18) (async)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x2, @broadcast, 'macvlan1\x00'}}, 0x1e) (async)
write$binfmt_aout(r0, 0x0, 0x5ea)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0, <r2=>0x0}, &(0x7f00000000c0)=0xc)
quotactl_fd$Q_GETFMT(r1, 0xffffffff80000400, r2, &(0x7f0000000100))

166.020183ms ago: executing program 3 (id=540):
r0 = syz_io_uring_setup(0x3009, &(0x7f0000000000)={0x0, 0xd00b, 0x2000, 0x3, 0x23f}, &(0x7f0000000080), &(0x7f00000000c0))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000000)={{r3, <r4=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000680)='%pI4   \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000380)={r4, <r5=>0xffffffffffffffff}, 0x4)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000540)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1159b}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_FWMARK={0x8, 0x14, 0x200}]}}}]}, 0x44}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xa, 0x1c, &(0x7f00000003c0)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}], {{0x6, 0x1, 0xd, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r7, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000500)="b9ffe4306844ebe99b554e0fe9ad", 0x0, 0x4, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r2, @ANYRES64=r1], 0x118)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="a800000010000104000002000000000000000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000440012800b0001006970766c616e00003400028006000200000000000600020007000000060002000100000006000100030000000600010002000000060002000200000008000500", @ANYRES32=r9], 0xa8}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4004050)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x6, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000015000200071b1750bd030100000000009500000000000000bc26080000000000bf67000000000000070300000fff0700670200000300000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x94)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x28}, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @random="3958d82a1736", @loopback, @multicast, @private=0x1}}}}, 0x0)
r10 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_LINK={0x8}]}}}]}, 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x6, 0x1, &(0x7f0000000140)=@raw=[@exit], &(0x7f00000004c0)='GPL\x00', 0x7, 0x1000, &(0x7f00000009c0)=""/4096, 0x40f00, 0x60, '\x00', 0x0, 0x25, r2, 0x8, &(0x7f0000000540)={0x5, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=[r10], 0x0, 0x10, 0x9}, 0x94)
ioctl$UI_SET_RELBIT(r2, 0x40045566, 0xd)
r12 = io_uring_setup(0x3423, &(0x7f0000000300)={0x0, 0x4, 0x2, 0xff7ffffd, 0x21, 0x0, r0})
io_uring_register$IORING_REGISTER_FILES2(r12, 0xd, &(0x7f00000003c0)={0x1, 0x1, 0x0, &(0x7f0000000300)=[{0x0}], 0x0}, 0x20)

165.866337ms ago: executing program 2 (id=541):
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181) (async)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1c, &(0x7f0000000200)={0x2, &(0x7f0000000000)=[{0x7}, {0x6, 0x8d, 0x0, 0x1}]})
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000080)={0x7, &(0x7f0000000040)=[{0x9, 0x3, 0x0, 0x8}, {0x1000, 0xf1, 0x1, 0x3}, {0x0, 0x4, 0xfa, 0x2}, {0xfff, 0x7f, 0x9, 0x6901}, {0x2, 0xc2, 0xf, 0x1000}, {0x9, 0x4, 0x5, 0x2}, {0x6, 0x6, 0xa, 0x9}]})

61.649982ms ago: executing program 3 (id=542):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_G_FMT(r1, 0xc0d05604, &(0x7f00000002c0)={0x9, @win={{0x8, 0x8, 0x1, 0xe2}, 0x1, 0x7, 0x0, 0x6, 0x0, 0x6}})
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000800000fbdbdf25250000000e696d0000000f0002006e657464657673696d3000002aebce0e96d70c65995b5ebca63332739d5c567792cf5917d25bf6664dc34803242d36685d99a7aafc8744c1921368f7c3f5d46ba09da0d8abddfb5dc252491845b304a8840e668d91f4f8ba60fd4b8d974a55ef6c8d6a8981501425febea4d8b6480900"/145], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

61.220502ms ago: executing program 3 (id=543):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
pipe2$watch_queue(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25GSUBSCRIP(r2, 0x5411, &(0x7f0000000100)={'erspan0\x00', 0xfffffffffffffffc, 0x2})
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r1, 0x5761, &(0x7f00000001c0)={0x6, 0x0, [{0x9, 0x80, 0x6d, [0x8, 0x6, 0xf451, 0xc30, 0x2, 0x7, 0x1000, 0x81]}, {0xffffff2c, 0x5, 0x4c7, [0x6, 0xcdf, 0x2, 0x4, 0x7, 0x1000, 0x9, 0x3]}, {0xffff41e6, 0x5f14, 0x2, [0x5, 0x5, 0x200, 0x7fff, 0x8, 0x7, 0x6, 0x7fff]}, {0xe, 0x7fffffff, 0x2, [0x5, 0xf, 0x53, 0xfff, 0x6, 0x100, 0x7, 0xffff]}, {0x8, 0x8, 0x4, [0x68e, 0x3, 0x9, 0x4901, 0x0, 0x8, 0x7, 0x9]}, {0x7, 0x7f, 0x4, [0x9d, 0x2, 0xbbcf, 0x27f, 0xc3d, 0x73c4, 0xffffff9f, 0x100]}]})
add_key(&(0x7f0000000100)='ceph\x00', 0x0, &(0x7f0000000340)="010001000000000000001000015b097ead8584780aed42abbad05dd5", 0x1c, r0)

957.398µs ago: executing program 1 (id=544):
setsockopt$TIPC_DEST_DROPPABLE(0xffffffffffffffff, 0x10f, 0x81, &(0x7f0000000000)=0x1, 0x4)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
socket(0x1d, 0x2, 0x6)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x3c, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0x0, 0x49200}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vcan={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x3c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f00000001c0)='macvlan1\x00', 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x1ff, 0x5c, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe}, 0x50)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x581, 0x70bd2c, 0x2ddfdbfc, {0x0, 0x0, 0x0, 0x0, 0x5db42, 0x29880}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20004002}, 0x20040090)

0s ago: executing program 3 (id=545):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x1}, 0x1c)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000005300)=[{0x28, 0x0, 0xfb, 0xfffff034}, {0x80000006, 0x66, 0x0, 0x8}]}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000540)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x2c, 0x28, 0x65, 0x0, 0x3, 0x6, 0x0, @dev={0xac, 0x14, 0x14, 0x2e}, @initdev={0xac, 0x1e, 0x1, 0x0}}, {{0x4624, 0x4e20, 0x41424344, 0x41424344, 0x1, 0x0, 0x5, 0xc2, 0xfffd, 0x0, 0xfff7}}}}}}, 0x0)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x0, @local}, 0x2}}, 0x26)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c000025372aec07a4c3a089430a9931c94370adf5da1665a39564425efe8543680cdbbb953ee35e13edbca06ad2aa7bd1e272f5337fafe07932d7c04704963a7e5517ee23dcd7fb070ca964400443bf685edd58dd97f0bc86ea5a9ffc0be94bafd39e26e3c8a3aae475769f6b2062c0ddd72e87cf010000001f4db2add1bb0f382b4d9aed58133b51d8f6ed7d0e904d870f514ba1205d8e22510922349170b37d25faf3568f70cfb810510000000000000000000000000000b5864fde6989c35766077600"/206, @ANYRES16=r3, @ANYBLOB="01002cbd70000400000005000000080009000200000008000c00a80a0000060001000700000008000b00003f00000500130009000000"], 0x3c}, 0x1, 0x0, 0x0, 0xc080}, 0x0)

0s ago: executing program 3 (id=546):
r0 = fsopen(&(0x7f0000000500)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000014c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000000000ffdbdf254400000008000300", @ANYRES32=r3, @ANYBLOB="0a00180003036c09000005002400ec00"/28], 0x38}}, 0x0)
r4 = fsmount(r0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000001c0)='./bus\x00', 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r5, &(0x7f0000000000)={0xa, {"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", 0x1000}}, 0x1006)
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000140), 0x200800, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@volatile}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x1a4)
ioctl$TCSETSF2(r4, 0x402c542d, &(0x7f0000000040)={0x92, 0x3, 0x0, 0x717e387b, 0x3d, "1a004e0078768000", 0x4, 0x2})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000010c0), 0x60080, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000020000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000300)=@generic={&(0x7f0000001080)='./file0\x00', r7}, 0x18)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r6, 0x404c4701, &(0x7f0000000040)={0x4, 0x0, 0x0, 0x400000, 0x0, "3eccd8000000000100000000000000040100"})
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000001140)=0x9)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x13, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000140)=0xff)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f00000001c0)=0x28)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000180)=0x7)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000100)=0x1)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000240)=0x7)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000200))
r8 = fsopen(&(0x7f0000001100)='bfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f0000000040)='context', &(0x7f0000000080)='ramfs\x00', 0x0)

kernel console output (not intermixed with test programs):

king state
[   53.834427][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.836976][ T5932] bridge_slave_0: entered allmulticast mode
[   53.839923][ T5932] bridge_slave_0: entered promiscuous mode
[   53.869879][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.874464][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.877620][ T5939] bridge_slave_1: entered allmulticast mode
[   53.881415][ T5939] bridge_slave_1: entered promiscuous mode
[   53.904819][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.907817][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.910889][ T5932] bridge_slave_1: entered allmulticast mode
[   53.915043][ T5932] bridge_slave_1: entered promiscuous mode
[   53.942892][ T5931] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.945659][ T5931] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.948148][ T5931] bridge_slave_0: entered allmulticast mode
[   53.950884][ T5931] bridge_slave_0: entered promiscuous mode
[   53.990023][ T5931] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.993316][ T5931] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.996484][ T5931] bridge_slave_1: entered allmulticast mode
[   54.000502][ T5931] bridge_slave_1: entered promiscuous mode
[   54.049590][ T5932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.056513][ T5932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.088931][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.095025][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.098289][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.100667][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.103481][ T5944] bridge_slave_0: entered allmulticast mode
[   54.106274][ T5944] bridge_slave_0: entered promiscuous mode
[   54.126842][ T5931] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.146075][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.148502][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.150852][ T5944] bridge_slave_1: entered allmulticast mode
[   54.154216][ T5944] bridge_slave_1: entered promiscuous mode
[   54.183897][ T5931] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.202438][ T5939] team0: Port device team_slave_0 added
[   54.205790][ T5939] team0: Port device team_slave_1 added
[   54.248540][ T5932] team0: Port device team_slave_0 added
[   54.303624][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.307710][ T5932] team0: Port device team_slave_1 added
[   54.311123][ T5931] team0: Port device team_slave_0 added
[   54.315815][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.318120][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.326564][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.333585][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.350576][ T5931] team0: Port device team_slave_1 added
[   54.367847][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.370199][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.378846][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.438184][ T5931] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.441136][ T5931] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.449851][ T5931] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.478603][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.480938][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.490374][ T5932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.495261][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.497533][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.506151][ T5932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.513866][ T5931] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.516838][ T5931] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.527422][ T5931] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.533589][ T5944] team0: Port device team_slave_0 added
[   54.569380][ T5944] team0: Port device team_slave_1 added
[   54.588772][ T5939] hsr_slave_0: entered promiscuous mode
[   54.591222][ T5939] hsr_slave_1: entered promiscuous mode
[   54.654800][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.657211][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.665658][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.725953][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.728279][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.736795][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.747700][ T5932] hsr_slave_0: entered promiscuous mode
[   54.750754][ T5932] hsr_slave_1: entered promiscuous mode
[   54.753616][ T5932] debugfs: 'hsr0' already exists in 'hsr'
[   54.756047][ T5932] Cannot create hsr debugfs directory
[   54.785500][ T5931] hsr_slave_0: entered promiscuous mode
[   54.788339][ T5931] hsr_slave_1: entered promiscuous mode
[   54.790500][ T5931] debugfs: 'hsr0' already exists in 'hsr'
[   54.792631][ T5931] Cannot create hsr debugfs directory
[   54.913260][ T5944] hsr_slave_0: entered promiscuous mode
[   54.916122][ T5944] hsr_slave_1: entered promiscuous mode
[   54.918276][ T5944] debugfs: 'hsr0' already exists in 'hsr'
[   54.920174][ T5944] Cannot create hsr debugfs directory
[   55.232327][ T5938] Bluetooth: hci0: command tx timeout
[   55.236070][ T5931] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   55.245839][ T5931] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   55.251133][ T5931] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.263824][ T5931] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.311193][ T5939] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   55.315237][ T5938] Bluetooth: hci2: command tx timeout
[   55.319894][ T5939] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   55.321641][ T5938] Bluetooth: hci1: command tx timeout
[   55.321973][ T5941] Bluetooth: hci3: command tx timeout
[   55.330862][ T5939] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   55.335552][ T5939] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   55.395431][ T5932] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.401859][ T5932] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.407500][ T5932] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   55.413929][ T5932] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   55.479696][ T5931] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.483535][ T5944] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   55.492536][ T5944] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   55.500058][ T5944] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   55.507688][ T5944] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   55.530773][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.540635][ T5931] 8021q: adding VLAN 0 to HW filter on device team0
[   55.551933][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.555079][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.573502][   T73] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.576214][   T73] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.581634][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[   55.597346][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.599816][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.616978][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.619512][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.671380][ T5932] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.693441][   T40] audit: type=1400 audit(1763586652.030:89): avc:  denied  { sys_module } for  pid=5931 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   55.713045][ T5932] 8021q: adding VLAN 0 to HW filter on device team0
[   55.717834][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.729485][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   55.736317][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.738783][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.746610][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.749318][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.756051][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.758684][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.772756][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.775707][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.828053][ T5931] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.860376][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.909927][ T5931] veth0_vlan: entered promiscuous mode
[   55.919279][ T5939] veth0_vlan: entered promiscuous mode
[   55.926257][ T5931] veth1_vlan: entered promiscuous mode
[   55.933889][ T5939] veth1_vlan: entered promiscuous mode
[   55.949613][ T5931] veth0_macvtap: entered promiscuous mode
[   55.953668][ T5931] veth1_macvtap: entered promiscuous mode
[   55.967996][ T5931] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.970789][ T5939] veth0_macvtap: entered promiscuous mode
[   55.979289][ T5931] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.994672][ T5939] veth1_macvtap: entered promiscuous mode
[   55.999332][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.004614][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.014866][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.018568][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.044931][ T5932] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.049035][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.053722][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.075764][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.101435][   T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.102647][ T1146] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.104275][   T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.108050][ T1146] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.122740][ T1146] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.125752][ T1146] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.147498][ T5944] veth0_vlan: entered promiscuous mode
[   56.166996][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.168904][ T5944] veth1_vlan: entered promiscuous mode
[   56.170283][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.181162][ T5932] veth0_vlan: entered promiscuous mode
[   56.200134][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.204532][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.205772][ T5932] veth1_vlan: entered promiscuous mode
[   56.208485][ T5931] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   56.249979][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.252104][ T5944] veth0_macvtap: entered promiscuous mode
[   56.253151][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.257192][ T5944] veth1_macvtap: entered promiscuous mode
[   56.280490][ T5932] veth0_macvtap: entered promiscuous mode
[   56.305693][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.314261][ T5932] veth1_macvtap: entered promiscuous mode
[   56.319080][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.335015][   T73] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.344897][   T73] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.352505][   T73] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.355599][   T73] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.370542][ T6021] vlan2: entered promiscuous mode
[   56.373897][ T6021] vlan2: entered allmulticast mode
[   56.376139][ T6021] hsr_slave_1: entered allmulticast mode
[   56.382548][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.390167][ T6024] usb usb8: usbfs: process 6024 (syz.0.6) did not claim interface 0 before use
[   56.398339][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.412560][   T73] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.416262][   T73] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.423787][   T73] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.426826][ T1149] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.448439][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.451277][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.477517][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.480129][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.496075][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.498622][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.517007][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.520008][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.578054][ T6032] netlink: 'syz.1.2': attribute type 21 has an invalid length.
[   56.581370][ T6032] netlink: 128 bytes leftover after parsing attributes in process `syz.1.2'.
[   56.586129][ T6032] netlink: 'syz.1.2': attribute type 4 has an invalid length.
[   56.589191][ T6032] netlink: 'syz.1.2': attribute type 5 has an invalid length.
[   56.591292][ T6037] binder: 6036:6037 unknown command 0
[   56.594150][ T6037] binder: 6036:6037 ioctl c0306201 200000000080 returned -22
[   56.594580][ T6032] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2'.
[   56.665246][ T6040] warning: `syz.1.9' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   56.761940][   T29] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[   56.791637][ T6052] netlink: 'syz.3.12': attribute type 13 has an invalid length.
[   56.794473][ T6052] netlink: 'syz.3.12': attribute type 17 has an invalid length.
[   56.835185][ T6052] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   56.888066][ T6050] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13'.
[   56.923934][   T29] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 39, changing to 4
[   56.928367][   T29] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023
[   56.933761][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[   56.954703][ T6062] input: syz0 as /devices/virtual/input/input5
[   56.954823][   T29] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   56.960842][   T29] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   56.968143][   T29] usb 5-1: Product: syz
[   56.969999][   T29] usb 5-1: Manufacturer: syz
[   56.972329][   T29] usb 5-1: SerialNumber: syz
[   56.979189][   T29] usb 5-1: config 0 descriptor??
[   56.997880][   T29] usb 5-1: selecting invalid altsetting 0
[   57.033138][ T6066] bond0: (slave wg0): Error: Device can not be enslaved while up
[   57.040074][ T6066] netlink: 'syz.2.16': attribute type 10 has an invalid length.
[   57.045629][ T6066] netlink: 40 bytes leftover after parsing attributes in process `syz.2.16'.
[   57.056224][ T6066] dummy0: entered promiscuous mode
[   57.062330][ T6066] bridge0: port 3(dummy0) entered blocking state
[   57.065530][ T6066] bridge0: port 3(dummy0) entered disabled state
[   57.081664][ T6066] dummy0: entered allmulticast mode
[   57.085034][ T6066] bridge0: port 3(dummy0) entered blocking state
[   57.087409][ T6066] bridge0: port 3(dummy0) entered forwarding state
[   57.178126][ T6067] netlink: 'syz.3.15': attribute type 64 has an invalid length.
[   57.186321][ T6067] netlink: 'syz.3.15': attribute type 4 has an invalid length.
[   57.188836][ T6067] netlink: 152 bytes leftover after parsing attributes in process `syz.3.15'.
[   57.194461][ T6067] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6028 sclass=netlink_route_socket pid=6067 comm=syz.3.15
[   57.211015][ T6026] usb 5-1: cannot submit urb 0, error -2: endpoint not enabled
[   57.219938][ T6069] usb 5-1: USB disconnect, device number 2
[   57.311955][ T5938] Bluetooth: hci0: command tx timeout
[   57.391759][ T5938] Bluetooth: hci3: command tx timeout
[   57.392178][ T5941] Bluetooth: hci1: command tx timeout
[   57.402025][ T5941] Bluetooth: hci2: command tx timeout
[   57.463346][ T6086] 9pnet_fd: Insufficient options for proto=fd
[   57.562656][ T6096] FAULT_INJECTION: forcing a failure.
[   57.562656][ T6096] name failslab, interval 1, probability 0, space 0, times 1
[   57.566802][ T6096] CPU: 3 UID: 0 PID: 6096 Comm: syz.2.26 Not tainted syzkaller #0 PREEMPT(full) 
[   57.566818][ T6096] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.566824][ T6096] Call Trace:
[   57.566828][ T6096]  <TASK>
[   57.566832][ T6096]  dump_stack_lvl+0x16c/0x1f0
[   57.566845][ T6096]  should_fail_ex+0x512/0x640
[   57.566859][ T6096]  ? fs_reclaim_acquire+0xae/0x150
[   57.566872][ T6096]  should_failslab+0xc2/0x120
[   57.566885][ T6096]  __kmalloc_noprof+0xdd/0x880
[   57.566904][ T6096]  ? tomoyo_encode2+0x100/0x3e0
[   57.566918][ T6096]  ? tomoyo_encode2+0x100/0x3e0
[   57.566929][ T6096]  tomoyo_encode2+0x100/0x3e0
[   57.566942][ T6096]  tomoyo_encode+0x29/0x50
[   57.566970][ T6096]  tomoyo_realpath_from_path+0x18f/0x6e0
[   57.566984][ T6096]  ? tomoyo_profile+0x47/0x60
[   57.566999][ T6096]  tomoyo_path_number_perm+0x245/0x580
[   57.567008][ T6096]  ? tomoyo_path_number_perm+0x237/0x580
[   57.567019][ T6096]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   57.567030][ T6096]  ? find_held_lock+0x2b/0x80
[   57.567054][ T6096]  ? find_held_lock+0x2b/0x80
[   57.567066][ T6096]  ? hook_file_ioctl_common+0x145/0x410
[   57.567082][ T6096]  ? __fget_files+0x20e/0x3c0
[   57.567095][ T6096]  security_file_ioctl+0x9b/0x240
[   57.567108][ T6096]  __x64_sys_ioctl+0xb7/0x210
[   57.567123][ T6096]  do_syscall_64+0xcd/0xfa0
[   57.567134][ T6096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.567145][ T6096] RIP: 0033:0x7f2fe3f8f34b
[   57.567153][ T6096] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   57.567163][ T6096] RSP: 002b:00007f2fe4d54490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.567173][ T6096] RAX: ffffffffffffffda RBX: 00007f2fe4d54be0 RCX: 00007f2fe3f8f34b
[   57.567179][ T6096] RDX: 00007f2fe4d54be0 RSI: 000000004020ae46 RDI: 0000000000000004
[   57.567185][ T6096] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   57.567191][ T6096] R10: 0000000000000004 R11: 0000000000000246 R12: 000000000000000d
[   57.567196][ T6096] R13: 0000200000ff5000 R14: 0000200000fe8000 R15: 00000000fec00000
[   57.567209][ T6096]  </TASK>
[   57.567219][ T6096] ERROR: Out of memory at tomoyo_realpath_from_path.
[   57.572913][ T6094] Zero length message leads to an empty skb
[   57.712136][ T6106] process 'syz.1.30' launched '/dev/fd/4' with NULL argv: empty string added
[   57.736389][ T6108] capability: warning: `syz.2.31' uses deprecated v2 capabilities in a way that may be insecure
[   57.939037][ T6131] (syz.0.40,6131,2):ocfs2_get_sector:1714 ERROR: status = -5
[   57.941669][ T6131] (syz.0.40,6131,2):ocfs2_sb_probe:753 ERROR: status = -5
[   57.944598][ T6131] (syz.0.40,6131,2):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   57.947363][ T6131] (syz.0.40,6131,2):ocfs2_fill_super:1177 ERROR: status = -5
[   57.979696][   T40] kauditd_printk_skb: 100 callbacks suppressed
[   57.979706][   T40] audit: type=1400 audit(1763586654.310:190): avc:  denied  { append } for  pid=6132 comm="syz.0.41" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   57.987692][ T5941] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[   57.989776][   T40] audit: type=1400 audit(1763586654.310:191): avc:  denied  { open } for  pid=6132 comm="syz.0.41" path="/dev/ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   57.994116][ T5941] CPU: 1 UID: 0 PID: 5941 Comm: kworker/u33:4 Not tainted syzkaller #0 PREEMPT(full) 
[   57.994139][ T5941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.994150][ T5941] Workqueue: hci0 hci_rx_work
[   57.994170][ T5941] Call Trace:
[   57.994176][ T5941]  <TASK>
[   57.994183][ T5941]  dump_stack_lvl+0x16c/0x1f0
[   57.994202][ T5941]  sysfs_warn_dup+0x7f/0xa0
[   57.994224][ T5941]  sysfs_create_dir_ns+0x24b/0x2b0
[   57.994244][ T5941]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   57.994262][ T5941]  ? find_held_lock+0x2b/0x80
[   57.994287][ T5941]  ? do_raw_spin_unlock+0x172/0x230
[   57.994306][ T5941]  kobject_add_internal+0x2c4/0x9b0
[   57.994327][ T5941]  kobject_add+0x16e/0x240
[   57.994344][ T5941]  ? __pfx_kobject_add+0x10/0x10
[   57.994363][ T5941]  ? do_raw_spin_unlock+0x172/0x230
[   57.994380][ T5941]  ? kobject_put+0xab/0x5a0
[   57.994404][ T5941]  device_add+0x288/0x1aa0
[   57.994424][ T5941]  ? __pfx_dev_set_name+0x10/0x10
[   57.994554][ T5941]  ? __pfx_device_add+0x10/0x10
[   57.994577][ T5941]  ? mgmt_send_event_skb+0x2fb/0x460
[   57.994608][ T5941]  hci_conn_add_sysfs+0x17e/0x230
[   57.994625][ T5941]  le_conn_complete_evt+0x1260/0x2150
[   57.994652][ T5941]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   57.994673][ T5941]  ? hci_event_packet+0x459/0x11c0
[   57.994701][ T5941]  hci_le_conn_complete_evt+0x23c/0x370
[   57.994730][ T5941]  hci_le_meta_evt+0x357/0x5e0
[   57.994744][ T5941]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   57.994770][ T5941]  hci_event_packet+0x685/0x11c0
[   57.994792][ T5941]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   57.994808][ T5941]  ? __pfx_hci_event_packet+0x10/0x10
[   57.994832][ T5941]  ? kcov_remote_start+0x3c9/0x6d0
[   57.994851][ T5941]  ? lockdep_hardirqs_on+0x7c/0x110
[   57.994873][ T5941]  hci_rx_work+0x2c5/0x16b0
[   57.994896][ T5941]  ? rcu_is_watching+0x12/0xc0
[   57.994920][ T5941]  process_one_work+0x9cf/0x1b70
[   57.994967][ T5941]  ? __pfx_process_one_work+0x10/0x10
[   57.994995][ T5941]  ? assign_work+0x1a0/0x250
[   57.995014][ T5941]  worker_thread+0x6c8/0xf10
[   57.995043][ T5941]  ? __pfx_worker_thread+0x10/0x10
[   57.995059][ T5941]  kthread+0x3c5/0x780
[   57.995075][ T5941]  ? __pfx_kthread+0x10/0x10
[   57.995091][ T5941]  ? rcu_is_watching+0x12/0xc0
[   57.995110][ T5941]  ? __pfx_kthread+0x10/0x10
[   57.995126][ T5941]  ret_from_fork+0x675/0x7d0
[   57.995140][ T5941]  ? __pfx_kthread+0x10/0x10
[   57.995156][ T5941]  ret_from_fork_asm+0x1a/0x30
[   57.995192][ T5941]  </TASK>
[   57.995214][ T5941] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   58.001893][   T34] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   58.003085][   T40] audit: type=1400 audit(1763586654.320:192): avc:  denied  { create } for  pid=6132 comm="syz.0.41" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   58.008123][ T5941] Bluetooth: hci0: failed to register connection device
[   58.013370][   T40] audit: type=1400 audit(1763586654.320:193): avc:  denied  { bind } for  pid=6132 comm="syz.0.41" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   58.094791][ T6137] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   58.138557][   T40] audit: type=1400 audit(1763586654.470:194): avc:  denied  { unlink } for  pid=6136 comm="syz.2.42" name="#1" dev="tmpfs" ino=75 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   58.143487][ T6137] evm: overlay not supported
[   58.148601][   T40] audit: type=1400 audit(1763586654.470:195): avc:  denied  { mount } for  pid=6136 comm="syz.2.42" name="/" dev="overlay" ino=71 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   58.160072][   T40] audit: type=1400 audit(1763586654.490:196): avc:  denied  { connect } for  pid=6136 comm="syz.2.42" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   58.172705][   T34] usb 6-1: too many configurations: 9, using maximum allowed: 8
[   58.177591][   T34] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   58.181364][   T34] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   58.185798][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[   58.189363][   T34] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   58.195697][   T34] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   58.199806][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[   58.205342][   T34] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   58.208307][   T34] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   58.212664][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[   58.216395][   T34] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   58.219394][   T34] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   58.223331][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[   58.226307][   T34] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   58.229257][   T34] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   58.233330][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[   58.236476][   T34] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   58.239441][   T34] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   58.243252][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[   58.243679][ T6135] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.246498][   T34] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   58.249682][ T6135] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.251656][   T34] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   58.258159][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[   58.261161][   T34] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   58.264923][   T34] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   58.268708][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[   58.273782][   T34] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   58.276891][   T34] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   58.279650][   T34] usb 6-1: Product: syz
[   58.281017][   T34] usb 6-1: Manufacturer: syz
[   58.282630][   T34] usb 6-1: SerialNumber: syz
[   58.285672][   T34] usb 6-1: config 0 descriptor??
[   58.306566][   T34] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[   58.317727][   T40] audit: type=1400 audit(1763586654.650:197): avc:  denied  { create } for  pid=6143 comm="syz.2.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   58.324275][   T40] audit: type=1400 audit(1763586654.650:198): avc:  denied  { write } for  pid=6143 comm="syz.2.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   58.324885][ T6135] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.343149][ T6135] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.449400][   T13] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.452984][   T13] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.456550][   T13] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.460040][   T13] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.518096][   T40] audit: type=1400 audit(1763586654.850:199): avc:  denied  { bind } for  pid=6112 comm="syz.1.32" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   58.523390][ T6069] usb 6-1: USB disconnect, device number 2
[   58.529768][ T6069] yurex 6-1:0.0: USB YUREX #0 now disconnected
[   58.684928][ T6154] netlink: 36 bytes leftover after parsing attributes in process `syz.2.47'.
[   58.917851][ T6171] netlink: 8 bytes leftover after parsing attributes in process `syz.2.53'.
[   59.378085][ T6193] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   59.391584][ T5938] Bluetooth: hci0: command tx timeout
[   59.471855][ T5941] Bluetooth: hci3: command tx timeout
[   59.471890][ T5936] Bluetooth: hci1: command tx timeout
[   59.471918][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.1.62'.
[   59.473305][ T5938] Bluetooth: hci2: command tx timeout
[   59.477368][ T6195] bridge0: entered promiscuous mode
[   59.484930][ T6195] macsec1: entered allmulticast mode
[   59.486721][ T6195] bridge0: entered allmulticast mode
[   59.490748][ T6195] bridge0: port 3(macsec1) entered blocking state
[   59.493545][ T6195] bridge0: port 3(macsec1) entered disabled state
[   59.500060][ T6195] bridge0: left allmulticast mode
[   59.502318][ T6195] bridge0: left promiscuous mode
[   59.520745][ T6197] netlink: 8 bytes leftover after parsing attributes in process `syz.3.63'.
[   59.524287][ T6197] netlink: 24 bytes leftover after parsing attributes in process `syz.3.63'.
[   59.680177][ T6205] FAULT_INJECTION: forcing a failure.
[   59.680177][ T6205] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   59.685124][ T6205] CPU: 1 UID: 0 PID: 6205 Comm: syz.3.67 Not tainted syzkaller #0 PREEMPT(full) 
[   59.685139][ T6205] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.685145][ T6205] Call Trace:
[   59.685149][ T6205]  <TASK>
[   59.685154][ T6205]  dump_stack_lvl+0x16c/0x1f0
[   59.685167][ T6205]  should_fail_ex+0x512/0x640
[   59.685182][ T6205]  _copy_from_user+0x2e/0xd0
[   59.685195][ T6205]  kvm_vm_ioctl+0x1480/0x3fd0
[   59.685212][ T6205]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   59.685231][ T6205]  ? kasan_quarantine_put+0x10a/0x240
[   59.685241][ T6205]  ? lockdep_hardirqs_on+0x7c/0x110
[   59.685252][ T6205]  ? find_held_lock+0x2b/0x80
[   59.685266][ T6205]  ? tomoyo_path_number_perm+0x295/0x580
[   59.685279][ T6205]  ? tomoyo_path_number_perm+0x18d/0x580
[   59.685289][ T6205]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   59.685300][ T6205]  ? find_held_lock+0x2b/0x80
[   59.685314][ T6205]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   59.685336][ T6205]  ? hook_file_ioctl_common+0x145/0x410
[   59.685353][ T6205]  ? selinux_file_ioctl+0x180/0x270
[   59.685364][ T6205]  ? selinux_file_ioctl+0xb4/0x270
[   59.685376][ T6205]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   59.685387][ T6205]  __x64_sys_ioctl+0x18e/0x210
[   59.685403][ T6205]  do_syscall_64+0xcd/0xfa0
[   59.685413][ T6205]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.685423][ T6205] RIP: 0033:0x7f2c6258f34b
[   59.685433][ T6205] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   59.685442][ T6205] RSP: 002b:00007f2c6346e490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   59.685452][ T6205] RAX: ffffffffffffffda RBX: 00007f2c6346ebe0 RCX: 00007f2c6258f34b
[   59.685458][ T6205] RDX: 00007f2c6346ebe0 RSI: 000000004020ae46 RDI: 0000000000000004
[   59.685464][ T6205] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   59.685470][ T6205] R10: 0000000000000004 R11: 0000000000000246 R12: 000000000000000e
[   59.685475][ T6205] R13: 0000200000ff6000 R14: 0000200000fe8000 R15: 00000000fec00000
[   59.685488][ T6205]  </TASK>
[   59.820277][ T6215] random: crng reseeded on system resumption
[   59.874105][ T6221] JFS: discard option not supported on device
[   59.877531][ T6221] Mount JFS Failure: -5
[   59.931181][ T6230] netlink: 'syz.1.74': attribute type 29 has an invalid length.
[   59.934948][ T6228] netlink: 'syz.1.74': attribute type 29 has an invalid length.
[   60.011987][ T6232] delete_channel: no stack
[   60.386544][ T6255] FAULT_INJECTION: forcing a failure.
[   60.386544][ T6255] name failslab, interval 1, probability 0, space 0, times 0
[   60.390650][ T6255] CPU: 0 UID: 0 PID: 6255 Comm: syz.2.83 Not tainted syzkaller #0 PREEMPT(full) 
[   60.390664][ T6255] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.390670][ T6255] Call Trace:
[   60.390674][ T6255]  <TASK>
[   60.390678][ T6255]  dump_stack_lvl+0x16c/0x1f0
[   60.390692][ T6255]  should_fail_ex+0x512/0x640
[   60.390705][ T6255]  ? fs_reclaim_acquire+0xae/0x150
[   60.390718][ T6255]  should_failslab+0xc2/0x120
[   60.390730][ T6255]  __kmalloc_noprof+0xdd/0x880
[   60.390745][ T6255]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   60.390761][ T6255]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   60.390772][ T6255]  tomoyo_realpath_from_path+0xc2/0x6e0
[   60.390785][ T6255]  ? tomoyo_profile+0x47/0x60
[   60.390800][ T6255]  tomoyo_path_number_perm+0x245/0x580
[   60.390809][ T6255]  ? tomoyo_path_number_perm+0x237/0x580
[   60.390820][ T6255]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   60.390830][ T6255]  ? find_held_lock+0x2b/0x80
[   60.390856][ T6255]  ? find_held_lock+0x2b/0x80
[   60.390868][ T6255]  ? hook_file_ioctl_common+0x145/0x410
[   60.390884][ T6255]  ? __fget_files+0x20e/0x3c0
[   60.390897][ T6255]  security_file_ioctl+0x9b/0x240
[   60.390909][ T6255]  __x64_sys_ioctl+0xb7/0x210
[   60.390940][ T6255]  do_syscall_64+0xcd/0xfa0
[   60.390952][ T6255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.390963][ T6255] RIP: 0033:0x7f2fe3f8f34b
[   60.390971][ T6255] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   60.390980][ T6255] RSP: 002b:00007f2fe4d54490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   60.390990][ T6255] RAX: ffffffffffffffda RBX: 00007f2fe4d54be0 RCX: 00007f2fe3f8f34b
[   60.390997][ T6255] RDX: 00007f2fe4d54be0 RSI: 000000004020ae46 RDI: 0000000000000004
[   60.391003][ T6255] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   60.391008][ T6255] R10: 0000000000000004 R11: 0000000000000246 R12: 000000000000000f
[   60.391014][ T6255] R13: 0000200000ff7000 R14: 0000200000fe8000 R15: 00000000fec00000
[   60.391027][ T6255]  </TASK>
[   60.391031][ T6255] ERROR: Out of memory at tomoyo_realpath_from_path.
[   60.444813][ T6259] overlayfs: failed to resolve './file0': -2
[   60.481021][ T6259] xt_ecn: cannot match TCP bits for non-tcp packets
[   60.484940][ T6261] sp0: Synchronizing with TNC
[   60.488617][ T6261] sp0: Found TNC
[   60.496719][ T6261] batman_adv: batadv0: Adding interface: dummy0
[   60.498748][ T6261] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   60.509200][ T6261] batman_adv: batadv0: Interface activated: dummy0
[   60.528095][ T6261] batadv0: mtu less than device minimum
[   60.531316][ T6261] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   60.535434][ T6261] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   60.539384][ T6261] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   60.544027][ T6261] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   60.549302][ T6261] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   60.553460][ T6261] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   60.557868][ T6261] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   60.570313][ T6260] [U] �`
[   60.757798][ T6277] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[   60.767407][ T6277] CIFS: Unable to determine destination address
[   60.905052][ T6294] FAULT_INJECTION: forcing a failure.
[   60.905052][ T6294] name failslab, interval 1, probability 0, space 0, times 0
[   60.909183][ T6294] CPU: 2 UID: 0 PID: 6294 Comm: syz.3.96 Not tainted syzkaller #0 PREEMPT(full) 
[   60.909198][ T6294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.909204][ T6294] Call Trace:
[   60.909208][ T6294]  <TASK>
[   60.909213][ T6294]  dump_stack_lvl+0x16c/0x1f0
[   60.909227][ T6294]  should_fail_ex+0x512/0x640
[   60.909240][ T6294]  ? fs_reclaim_acquire+0xae/0x150
[   60.909254][ T6294]  should_failslab+0xc2/0x120
[   60.909266][ T6294]  __kmalloc_noprof+0xdd/0x880
[   60.909281][ T6294]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   60.909297][ T6294]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   60.909308][ T6294]  tomoyo_realpath_from_path+0xc2/0x6e0
[   60.909321][ T6294]  ? tomoyo_profile+0x47/0x60
[   60.909336][ T6294]  tomoyo_path_number_perm+0x245/0x580
[   60.909345][ T6294]  ? tomoyo_path_number_perm+0x237/0x580
[   60.909356][ T6294]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   60.909365][ T6294]  ? __handle_mm_fault+0x5a8/0x2aa0
[   60.909392][ T6294]  ? find_held_lock+0x2b/0x80
[   60.909405][ T6294]  ? hook_file_ioctl_common+0x145/0x410
[   60.909424][ T6294]  ? __fget_files+0x20e/0x3c0
[   60.909437][ T6294]  security_file_ioctl+0x9b/0x240
[   60.909450][ T6294]  __x64_sys_ioctl+0xb7/0x210
[   60.909466][ T6294]  do_syscall_64+0xcd/0xfa0
[   60.909477][ T6294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.909487][ T6294] RIP: 0033:0x7f2c6258f34b
[   60.909495][ T6294] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   60.909505][ T6294] RSP: 002b:00007f2c6344d490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   60.909514][ T6294] RAX: ffffffffffffffda RBX: 00007f2c6344dbe0 RCX: 00007f2c6258f34b
[   60.909521][ T6294] RDX: 00007f2c6344dbe0 RSI: 000000004020ae46 RDI: 0000000000000004
[   60.909527][ T6294] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   60.909533][ T6294] R10: 0000000000000004 R11: 0000000000000246 R12: 000000000000000e
[   60.909538][ T6294] R13: 0000200000ff6000 R14: 0000200000fe8000 R15: 00000000fec00000
[   60.909551][ T6294]  </TASK>
[   60.909556][ T6294] ERROR: Out of memory at tomoyo_realpath_from_path.
[   60.973863][ T6299] random: crng reseeded on system resumption
[   61.041433][ T6299] syzkaller0: entered promiscuous mode
[   61.043888][ T6299] syzkaller0: entered allmulticast mode
[   61.105235][ T6309] 9pnet_fd: Insufficient options for proto=fd
[   61.172310][ T6317] syz.0.109 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   61.205345][ T5936] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[   61.208481][ T5936] CPU: 1 UID: 0 PID: 5936 Comm: kworker/u33:2 Not tainted syzkaller #0 PREEMPT(full) 
[   61.208497][ T5936] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.208506][ T5936] Workqueue: hci2 hci_rx_work
[   61.208519][ T5936] Call Trace:
[   61.208524][ T5936]  <TASK>
[   61.208529][ T5936]  dump_stack_lvl+0x16c/0x1f0
[   61.208541][ T5936]  sysfs_warn_dup+0x7f/0xa0
[   61.208556][ T5936]  sysfs_create_dir_ns+0x24b/0x2b0
[   61.208569][ T5936]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   61.208581][ T5936]  ? find_held_lock+0x2b/0x80
[   61.208600][ T5936]  ? do_raw_spin_unlock+0x172/0x230
[   61.208613][ T5936]  kobject_add_internal+0x2c4/0x9b0
[   61.208628][ T5936]  kobject_add+0x16e/0x240
[   61.208640][ T5936]  ? __pfx_kobject_add+0x10/0x10
[   61.208653][ T5936]  ? do_raw_spin_unlock+0x172/0x230
[   61.208665][ T5936]  ? kobject_put+0xab/0x5a0
[   61.208680][ T5936]  device_add+0x288/0x1aa0
[   61.208694][ T5936]  ? __pfx_dev_set_name+0x10/0x10
[   61.208707][ T5936]  ? __pfx_device_add+0x10/0x10
[   61.208720][ T5936]  ? mgmt_send_event_skb+0x2fb/0x460
[   61.208738][ T5936]  hci_conn_add_sysfs+0x17e/0x230
[   61.208749][ T5936]  le_conn_complete_evt+0x1260/0x2150
[   61.208766][ T5936]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   61.208780][ T5936]  ? hci_event_packet+0x459/0x11c0
[   61.208798][ T5936]  hci_le_conn_complete_evt+0x23c/0x370
[   61.208816][ T5936]  hci_le_meta_evt+0x357/0x5e0
[   61.208825][ T5936]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   61.208841][ T5936]  hci_event_packet+0x685/0x11c0
[   61.208856][ T5936]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   61.208870][ T5936]  ? __pfx_hci_event_packet+0x10/0x10
[   61.208886][ T5936]  ? kcov_remote_start+0x3c9/0x6d0
[   61.208899][ T5936]  ? lockdep_hardirqs_on+0x7c/0x110
[   61.208912][ T5936]  hci_rx_work+0x2c5/0x16b0
[   61.208923][ T5936]  ? rcu_is_watching+0x12/0xc0
[   61.208940][ T5936]  process_one_work+0x9cf/0x1b70
[   61.208959][ T5936]  ? __pfx_process_one_work+0x10/0x10
[   61.208974][ T5936]  ? assign_work+0x1a0/0x250
[   61.208985][ T5936]  worker_thread+0x6c8/0xf10
[   61.209000][ T5936]  ? __kthread_parkme+0x19e/0x250
[   61.209014][ T5936]  ? __pfx_worker_thread+0x10/0x10
[   61.209025][ T5936]  kthread+0x3c5/0x780
[   61.209035][ T5936]  ? __pfx_kthread+0x10/0x10
[   61.209045][ T5936]  ? rcu_is_watching+0x12/0xc0
[   61.209058][ T5936]  ? __pfx_kthread+0x10/0x10
[   61.209068][ T5936]  ret_from_fork+0x675/0x7d0
[   61.209077][ T5936]  ? __pfx_kthread+0x10/0x10
[   61.209086][ T5936]  ret_from_fork_asm+0x1a/0x30
[   61.209108][ T5936]  </TASK>
[   61.209121][ T5936] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   61.297577][ T5936] Bluetooth: hci2: failed to register connection device
[   61.328360][ T6326] QAT: failed to copy from user cfg_data.
[   61.460910][ T6338] bond1: (slave geneve2): making interface the new active one
[   61.464963][ T6338] bond1: (slave geneve2): Enslaving as an active interface with an up link
[   61.468149][   T12] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20004 - 0
[   61.471084][   T12] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20004 - 0
[   61.471893][ T5936] Bluetooth: hci0: command tx timeout
[   61.476018][   T12] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20004 - 0
[   61.476038][   T12] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20004 - 0
[   61.552236][ T5936] Bluetooth: hci2: command tx timeout
[   61.554026][ T5936] Bluetooth: hci3: command tx timeout
[   61.554210][ T5941] Bluetooth: hci1: command tx timeout
[   61.582826][ T6349] bond2: entered promiscuous mode
[   61.584812][ T6349] 8021q: adding VLAN 0 to HW filter on device bond2
[   61.588697][ T6349] __nla_validate_parse: 11 callbacks suppressed
[   61.588709][ T6349] netlink: 28 bytes leftover after parsing attributes in process `syz.3.121'.
[   61.596205][ T6349] bond2: entered allmulticast mode
[   61.600552][ T6350] netlink: 28 bytes leftover after parsing attributes in process `syz.3.121'.
[   61.614698][ T6355] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.716750][ T6368] overlay: ./file0 is not a directory
[   61.746482][ T6371] netlink: 8 bytes leftover after parsing attributes in process `syz.3.131'.
[   61.753107][ T6372] capability: warning: `syz.0.130' uses 32-bit capabilities (legacy support in use)
[   61.877202][ T6392] netlink: 8 bytes leftover after parsing attributes in process `syz.3.141'.
[   62.191713][  T840] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   62.266542][ T6424] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6424 comm=syz.0.153
[   62.288303][ T6426] xt_bpf: check failed: parse error
[   62.345041][  T840] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.348685][  T840] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   62.352086][  T840] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   62.356248][  T840] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   62.359260][  T840] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.364185][  T840] usb 8-1: config 0 descriptor??
[   62.405577][ T6434] loop6: detected capacity change from 0 to 63
[   62.420669][ T5946] Buffer I/O error on dev loop6, logical block 0, async page read
[   62.424239][ T5946] Buffer I/O error on dev loop6, logical block 0, async page read
[   62.427179][ T5946] Buffer I/O error on dev loop6, logical block 0, async page read
[   62.431247][ T5946] Buffer I/O error on dev loop6, logical block 0, async page read
[   62.434851][ T5946] Buffer I/O error on dev loop6, logical block 0, async page read
[   62.437865][ T5946] Buffer I/O error on dev loop6, logical block 0, async page read
[   62.440862][ T5946] Buffer I/O error on dev loop6, logical block 3, async page read
[   62.653872][ T6444] netlink: 44 bytes leftover after parsing attributes in process `syz.1.160'.
[   62.668213][ T6444] netlink: 8 bytes leftover after parsing attributes in process `syz.1.160'.
[   62.671466][ T6444] validate_nla: 3 callbacks suppressed
[   62.673667][ T6444] netlink: 'syz.1.160': attribute type 9 has an invalid length.
[   62.771829][  T840] plantronics 0003:047F:FFFF.0002: reserved main item tag 0xe
[   62.775496][  T840] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   62.786612][  T840] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   62.981082][ T6462] SELinux: failed to load policy
[   63.043342][ T6404] netlink: 'syz.3.144': attribute type 2 has an invalid length.
[   63.046509][ T6404] netlink: 'syz.3.144': attribute type 1 has an invalid length.
[   63.049468][ T6404] netlink: 'syz.3.144': attribute type 2 has an invalid length.
[   63.052720][ T6404] netlink: 'syz.3.144': attribute type 1 has an invalid length.
[   63.055404][ T6404] netlink: 'syz.3.144': attribute type 1 has an invalid length.
[   63.062290][  T840] usb 8-1: USB disconnect, device number 2
[   63.075785][   T40] kauditd_printk_skb: 92 callbacks suppressed
[   63.075796][   T40] audit: type=1400 audit(1763586659.410:292): avc:  denied  { read write } for  pid=6467 comm="syz.1.168" name="vmci" dev="devtmpfs" ino=708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   63.086505][   T40] audit: type=1400 audit(1763586659.410:293): avc:  denied  { open } for  pid=6467 comm="syz.1.168" path="/dev/vmci" dev="devtmpfs" ino=708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   63.095527][   T40] audit: type=1400 audit(1763586659.410:294): avc:  denied  { ioctl } for  pid=6467 comm="syz.1.168" path="/dev/vmci" dev="devtmpfs" ino=708 ioctlcmd=0x7a7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   63.156133][ T6470] netlink: 'syz.2.169': attribute type 1 has an invalid length.
[   63.159292][ T6470] netlink: 228 bytes leftover after parsing attributes in process `syz.2.169'.
[   63.163289][ T6470] netlink: 8 bytes leftover after parsing attributes in process `syz.2.169'.
[   63.167725][   T40] audit: type=1326 audit(1763586659.500:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6469 comm="syz.2.169" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2fe3f8f749 code=0x0
[   63.264472][   T40] audit: type=1400 audit(1763586659.600:296): avc:  denied  { wake_alarm } for  pid=6471 comm="syz.1.170" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   63.350830][ T6476] FAULT_INJECTION: forcing a failure.
[   63.350830][ T6476] name failslab, interval 1, probability 0, space 0, times 0
[   63.355487][ T6476] CPU: 0 UID: 0 PID: 6476 Comm: syz.0.171 Not tainted syzkaller #0 PREEMPT(full) 
[   63.355501][ T6476] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.355507][ T6476] Call Trace:
[   63.355521][ T6476]  <TASK>
[   63.355525][ T6476]  dump_stack_lvl+0x16c/0x1f0
[   63.355566][ T6476]  should_fail_ex+0x512/0x640
[   63.355586][ T6476]  ? fs_reclaim_acquire+0xae/0x150
[   63.355600][ T6476]  should_failslab+0xc2/0x120
[   63.355612][ T6476]  __kmalloc_noprof+0xdd/0x880
[   63.355627][ T6476]  ? tomoyo_encode2+0x100/0x3e0
[   63.355641][ T6476]  ? tomoyo_encode2+0x100/0x3e0
[   63.355652][ T6476]  tomoyo_encode2+0x100/0x3e0
[   63.355665][ T6476]  tomoyo_encode+0x29/0x50
[   63.355676][ T6476]  tomoyo_realpath_from_path+0x18f/0x6e0
[   63.355689][ T6476]  ? tomoyo_profile+0x47/0x60
[   63.355704][ T6476]  tomoyo_path_number_perm+0x245/0x580
[   63.355713][ T6476]  ? tomoyo_path_number_perm+0x237/0x580
[   63.355724][ T6476]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   63.355735][ T6476]  ? find_held_lock+0x2b/0x80
[   63.355761][ T6476]  ? find_held_lock+0x2b/0x80
[   63.355773][ T6476]  ? hook_file_ioctl_common+0x145/0x410
[   63.355789][ T6476]  ? __fget_files+0x20e/0x3c0
[   63.355803][ T6476]  security_file_ioctl+0x9b/0x240
[   63.355815][ T6476]  __x64_sys_ioctl+0xb7/0x210
[   63.355831][ T6476]  do_syscall_64+0xcd/0xfa0
[   63.355842][ T6476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.355853][ T6476] RIP: 0033:0x7f6b98d8f34b
[   63.355862][ T6476] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   63.355871][ T6476] RSP: 002b:00007f6b99cf1490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   63.355886][ T6476] RAX: ffffffffffffffda RBX: 00007f6b99cf1be0 RCX: 00007f6b98d8f34b
[   63.355893][ T6476] RDX: 00007f6b99cf1be0 RSI: 000000004020ae46 RDI: 0000000000000004
[   63.355899][ T6476] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   63.355904][ T6476] R10: 0000000000000004 R11: 0000000000000246 R12: 000000000000000f
[   63.355910][ T6476] R13: 0000200000ff7000 R14: 0000200000fe8000 R15: 00000000fec00000
[   63.355923][ T6476]  </TASK>
[   63.355966][ T6476] ERROR: Out of memory at tomoyo_realpath_from_path.
[   63.501674][ T6479] netlink: 8 bytes leftover after parsing attributes in process `syz.0.172'.
[   63.600206][ T6486] netlink: 'syz.3.174': attribute type 1 has an invalid length.
[   63.616999][ T6486] bond3: entered promiscuous mode
[   63.618963][ T6486] 8021q: adding VLAN 0 to HW filter on device bond3
[   63.624193][ T6486] netlink: 28 bytes leftover after parsing attributes in process `syz.3.174'.
[   63.627233][ T6486] bond3: entered allmulticast mode
[   63.637851][ T6486] bond3: (slave bridge1): making interface the new active one
[   63.640436][ T6486] bridge1: entered promiscuous mode
[   63.642380][ T6486] bridge1: entered allmulticast mode
[   63.644903][ T6486] bond3: (slave bridge1): Enslaving as an active interface with an up link
[   63.763424][   T40] audit: type=1400 audit(1763586660.100:297): avc:  denied  { execmod } for  pid=6490 comm="syz.0.176" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=10984 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   63.765234][ T6492] serio: Serial port ptm0
[   63.773489][ T5941] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[   63.778235][ T5941] CPU: 3 UID: 0 PID: 5941 Comm: kworker/u33:4 Not tainted syzkaller #0 PREEMPT(full) 
[   63.778251][ T5941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.778259][ T5941] Workqueue: hci3 hci_rx_work
[   63.778274][ T5941] Call Trace:
[   63.778278][ T5941]  <TASK>
[   63.778283][ T5941]  dump_stack_lvl+0x16c/0x1f0
[   63.778296][ T5941]  sysfs_warn_dup+0x7f/0xa0
[   63.778310][ T5941]  sysfs_create_dir_ns+0x24b/0x2b0
[   63.778324][ T5941]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   63.778337][ T5941]  ? find_held_lock+0x2b/0x80
[   63.778353][ T5941]  ? do_raw_spin_unlock+0x172/0x230
[   63.778367][ T5941]  kobject_add_internal+0x2c4/0x9b0
[   63.778382][ T5941]  kobject_add+0x16e/0x240
[   63.778394][ T5941]  ? __pfx_kobject_add+0x10/0x10
[   63.778407][ T5941]  ? do_raw_spin_unlock+0x172/0x230
[   63.778419][ T5941]  ? kobject_put+0xab/0x5a0
[   63.778433][ T5941]  device_add+0x288/0x1aa0
[   63.778447][ T5941]  ? __pfx_dev_set_name+0x10/0x10
[   63.778460][ T5941]  ? __pfx_device_add+0x10/0x10
[   63.778473][ T5941]  ? mgmt_send_event_skb+0x2fb/0x460
[   63.778491][ T5941]  hci_conn_add_sysfs+0x17e/0x230
[   63.778502][ T5941]  le_conn_complete_evt+0x1260/0x2150
[   63.778520][ T5941]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   63.778534][ T5941]  ? hci_event_packet+0x459/0x11c0
[   63.778552][ T5941]  hci_le_conn_complete_evt+0x23c/0x370
[   63.778569][ T5941]  hci_le_meta_evt+0x357/0x5e0
[   63.778578][ T5941]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   63.778594][ T5941]  hci_event_packet+0x685/0x11c0
[   63.778609][ T5941]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   63.778618][ T5941]  ? __pfx_hci_event_packet+0x10/0x10
[   63.778634][ T5941]  ? kcov_remote_start+0x3c9/0x6d0
[   63.778647][ T5941]  ? lockdep_hardirqs_on+0x7c/0x110
[   63.778660][ T5941]  hci_rx_work+0x2c5/0x16b0
[   63.778669][ T5941]  ? rcu_is_watching+0x12/0xc0
[   63.778684][ T5941]  process_one_work+0x9cf/0x1b70
[   63.778701][ T5941]  ? __pfx_process_one_work+0x10/0x10
[   63.778715][ T5941]  ? assign_work+0x1a0/0x250
[   63.778726][ T5941]  worker_thread+0x6c8/0xf10
[   63.778742][ T5941]  ? __pfx_worker_thread+0x10/0x10
[   63.778753][ T5941]  kthread+0x3c5/0x780
[   63.778763][ T5941]  ? __pfx_kthread+0x10/0x10
[   63.778773][ T5941]  ? rcu_is_watching+0x12/0xc0
[   63.778786][ T5941]  ? __pfx_kthread+0x10/0x10
[   63.778796][ T5941]  ret_from_fork+0x675/0x7d0
[   63.778805][ T5941]  ? __pfx_kthread+0x10/0x10
[   63.778815][ T5941]  ret_from_fork_asm+0x1a/0x30
[   63.778836][ T5941]  </TASK>
[   63.778849][ T5941] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   63.819908][ T5936] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[   63.820315][ T5941] Bluetooth: hci3: failed to register connection device
[   63.953893][ T6510] FAULT_INJECTION: forcing a failure.
[   63.953893][ T6510] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.958225][ T6510] CPU: 0 UID: 0 PID: 6510 Comm: syz.0.181 Not tainted syzkaller #0 PREEMPT(full) 
[   63.958240][ T6510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.958246][ T6510] Call Trace:
[   63.958252][ T6510]  <TASK>
[   63.958257][ T6510]  dump_stack_lvl+0x16c/0x1f0
[   63.958271][ T6510]  should_fail_ex+0x512/0x640
[   63.958286][ T6510]  _copy_from_user+0x2e/0xd0
[   63.958299][ T6510]  kvm_vm_ioctl+0x1480/0x3fd0
[   63.958317][ T6510]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   63.958336][ T6510]  ? kasan_quarantine_put+0x10a/0x240
[   63.958347][ T6510]  ? lockdep_hardirqs_on+0x7c/0x110
[   63.958358][ T6510]  ? find_held_lock+0x2b/0x80
[   63.958372][ T6510]  ? tomoyo_path_number_perm+0x295/0x580
[   63.958385][ T6510]  ? tomoyo_path_number_perm+0x18d/0x580
[   63.958396][ T6510]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   63.958406][ T6510]  ? find_held_lock+0x2b/0x80
[   63.958421][ T6510]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   63.958442][ T6510]  ? hook_file_ioctl_common+0x145/0x410
[   63.958459][ T6510]  ? selinux_file_ioctl+0x180/0x270
[   63.958471][ T6510]  ? selinux_file_ioctl+0xb4/0x270
[   63.958483][ T6510]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   63.958494][ T6510]  __x64_sys_ioctl+0x18e/0x210
[   63.958510][ T6510]  do_syscall_64+0xcd/0xfa0
[   63.958521][ T6510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.958531][ T6510] RIP: 0033:0x7f6b98d8f34b
[   63.958539][ T6510] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   63.958549][ T6510] RSP: 002b:00007f6b99cf1490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   63.958559][ T6510] RAX: ffffffffffffffda RBX: 00007f6b99cf1be0 RCX: 00007f6b98d8f34b
[   63.958565][ T6510] RDX: 00007f6b99cf1be0 RSI: 000000004020ae46 RDI: 0000000000000004
[   63.958571][ T6510] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   63.958577][ T6510] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000010
[   63.958582][ T6510] R13: 0000200000ff8000 R14: 0000200000fe8000 R15: 00000000fec00000
[   63.958595][ T6510]  </TASK>
[   64.139742][ T5941] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[   64.198710][   T40] audit: type=1400 audit(1763586660.530:298): avc:  denied  { getopt } for  pid=6525 comm="syz.0.188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   64.200432][ T5936] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   64.229609][ T6527] vxlan0: entered promiscuous mode
[   64.231430][ T6527] vxlan0: entered allmulticast mode
[   64.234274][ T1146] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   64.239114][ T1146] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   64.247074][ T1146] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   64.250974][ T1146] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   64.359768][ T6554] FAULT_INJECTION: forcing a failure.
[   64.359768][ T6554] name failslab, interval 1, probability 0, space 0, times 0
[   64.365529][ T6554] CPU: 1 UID: 0 PID: 6554 Comm: syz.1.196 Not tainted syzkaller #0 PREEMPT(full) 
[   64.365551][ T6554] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.365562][ T6554] Call Trace:
[   64.365568][ T6554]  <TASK>
[   64.365574][ T6554]  dump_stack_lvl+0x16c/0x1f0
[   64.365595][ T6554]  should_fail_ex+0x512/0x640
[   64.365614][ T6554]  ? fs_reclaim_acquire+0xae/0x150
[   64.365637][ T6554]  should_failslab+0xc2/0x120
[   64.365656][ T6554]  __kmalloc_noprof+0xdd/0x880
[   64.365681][ T6554]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   64.365707][ T6554]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   64.365725][ T6554]  tomoyo_realpath_from_path+0xc2/0x6e0
[   64.365746][ T6554]  ? tomoyo_profile+0x47/0x60
[   64.365770][ T6554]  tomoyo_path_number_perm+0x245/0x580
[   64.365785][ T6554]  ? tomoyo_path_number_perm+0x237/0x580
[   64.365803][ T6554]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   64.365821][ T6554]  ? find_held_lock+0x2b/0x80
[   64.365872][ T6554]  ? find_held_lock+0x2b/0x80
[   64.365891][ T6554]  ? hook_file_ioctl_common+0x145/0x410
[   64.365919][ T6554]  ? __fget_files+0x20e/0x3c0
[   64.365941][ T6554]  security_file_ioctl+0x9b/0x240
[   64.365962][ T6554]  __x64_sys_ioctl+0xb7/0x210
[   64.365988][ T6554]  do_syscall_64+0xcd/0xfa0
[   64.366007][ T6554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.366023][ T6554] RIP: 0033:0x7fba2398f34b
[   64.366037][ T6554] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   64.366051][ T6554] RSP: 002b:00007fba247b3490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.366069][ T6554] RAX: ffffffffffffffda RBX: 00007fba247b3be0 RCX: 00007fba2398f34b
[   64.366079][ T6554] RDX: 00007fba247b3be0 RSI: 000000004020ae46 RDI: 0000000000000004
[   64.366089][ T6554] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   64.366098][ T6554] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000011
[   64.366108][ T6554] R13: 0000200000ff9000 R14: 0000200000fe8000 R15: 00000000fec00000
[   64.366133][ T6554]  </TASK>
[   64.366141][ T6554] ERROR: Out of memory at tomoyo_realpath_from_path.
[   64.367045][   T40] audit: type=1400 audit(1763586660.700:299): avc:  denied  { watch watch_reads } for  pid=6549 comm="syz.3.195" path="/proc/119/gid_map" dev="proc" ino=11894 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[   64.601659][  T840] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   64.610277][ T5936] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[   64.614163][ T5936] CPU: 3 UID: 0 PID: 5936 Comm: kworker/u33:2 Not tainted syzkaller #0 PREEMPT(full) 
[   64.614179][ T5936] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.614187][ T5936] Workqueue: hci1 hci_rx_work
[   64.614200][ T5936] Call Trace:
[   64.614205][ T5936]  <TASK>
[   64.614210][ T5936]  dump_stack_lvl+0x16c/0x1f0
[   64.614222][ T5936]  sysfs_warn_dup+0x7f/0xa0
[   64.614237][ T5936]  sysfs_create_dir_ns+0x24b/0x2b0
[   64.614251][ T5936]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   64.614264][ T5936]  ? find_held_lock+0x2b/0x80
[   64.614282][ T5936]  ? do_raw_spin_unlock+0x172/0x230
[   64.614296][ T5936]  kobject_add_internal+0x2c4/0x9b0
[   64.614309][ T5936]  kobject_add+0x16e/0x240
[   64.614320][ T5936]  ? __pfx_kobject_add+0x10/0x10
[   64.614333][ T5936]  ? do_raw_spin_unlock+0x172/0x230
[   64.614346][ T5936]  ? kobject_put+0xab/0x5a0
[   64.614361][ T5936]  device_add+0x288/0x1aa0
[   64.614374][ T5936]  ? __pfx_dev_set_name+0x10/0x10
[   64.614388][ T5936]  ? __pfx_device_add+0x10/0x10
[   64.614400][ T5936]  ? mgmt_send_event_skb+0x2fb/0x460
[   64.614419][ T5936]  hci_conn_add_sysfs+0x17e/0x230
[   64.614429][ T5936]  le_conn_complete_evt+0x1260/0x2150
[   64.614447][ T5936]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   64.614461][ T5936]  ? hci_event_packet+0x459/0x11c0
[   64.614479][ T5936]  hci_le_conn_complete_evt+0x23c/0x370
[   64.614497][ T5936]  hci_le_meta_evt+0x357/0x5e0
[   64.614505][ T5936]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   64.614522][ T5936]  hci_event_packet+0x685/0x11c0
[   64.614536][ T5936]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   64.614545][ T5936]  ? __pfx_hci_event_packet+0x10/0x10
[   64.614561][ T5936]  ? kcov_remote_start+0x3c9/0x6d0
[   64.614574][ T5936]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.614587][ T5936]  hci_rx_work+0x2c5/0x16b0
[   64.614596][ T5936]  ? rcu_is_watching+0x12/0xc0
[   64.614611][ T5936]  process_one_work+0x9cf/0x1b70
[   64.614627][ T5936]  ? __pfx_process_one_work+0x10/0x10
[   64.614642][ T5936]  ? assign_work+0x1a0/0x250
[   64.614653][ T5936]  worker_thread+0x6c8/0xf10
[   64.614668][ T5936]  ? __kthread_parkme+0x19e/0x250
[   64.614683][ T5936]  ? __pfx_worker_thread+0x10/0x10
[   64.614693][ T5936]  kthread+0x3c5/0x780
[   64.614703][ T5936]  ? __pfx_kthread+0x10/0x10
[   64.614713][ T5936]  ? rcu_is_watching+0x12/0xc0
[   64.614726][ T5936]  ? __pfx_kthread+0x10/0x10
[   64.614736][ T5936]  ret_from_fork+0x675/0x7d0
[   64.614745][ T5936]  ? __pfx_kthread+0x10/0x10
[   64.614755][ T5936]  ret_from_fork_asm+0x1a/0x30
[   64.614776][ T5936]  </TASK>
[   64.614788][ T5936] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   64.706422][ T5936] Bluetooth: hci1: failed to register connection device
[   64.754312][  T840] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   64.758001][  T840] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   64.761308][  T840] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   64.765701][  T840] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   64.768881][  T840] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.773954][  T840] usb 7-1: config 0 descriptor??
[   65.111670][  T841] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   65.115410][ T6565] =======================================================
[   65.115410][ T6565] WARNING: The mand mount option has been deprecated and
[   65.115410][ T6565]          and is ignored by this kernel. Remove the mand
[   65.115410][ T6565]          option from the mount to silence this warning.
[   65.115410][ T6565] =======================================================
[   65.143603][   T40] audit: type=1400 audit(1763586661.480:300): avc:  denied  { setattr } for  pid=6564 comm="syz.0.201" name="/" dev="9p" ino=71827783 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   65.177683][   T40] audit: type=1400 audit(1763586661.510:301): avc:  denied  { read } for  pid=6566 comm="syz.3.202" name="hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   65.186746][  T840] plantronics 0003:047F:FFFF.0003: reserved main item tag 0xe
[   65.189227][  T840] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   65.197481][  T840] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   65.275593][  T841] usb 6-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[   65.279338][  T841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   65.287384][  T841] usb 6-1: Product: syz
[   65.288790][  T841] usb 6-1: Manufacturer: syz
[   65.290403][  T841] usb 6-1: SerialNumber: syz
[   65.453404][ T6556] bond1: ARP target 4.0.0.0 is already present
[   65.455450][ T6556] bond1: option arp_ip_target: invalid value (4)
[   65.459500][ T6556] bond1 (unregistering): Released all slaves
[   65.522493][ T6057] usb 7-1: USB disconnect, device number 2
[   65.709550][ T6562] 8021q: adding VLAN 0 to HW filter on device bond1
[   65.728167][  T841] net_ratelimit: 12 callbacks suppressed
[   65.728233][  T841] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO
[   65.734829][  T841] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPROTO
[   65.738735][  T841] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPROTO
[   65.742703][  T841] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[   65.747102][  T841] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[   65.754164][  T841] lan78xx 6-1:1.0: probe with driver lan78xx failed with error -71
[   65.761453][  T841] usb 6-1: USB disconnect, device number 3
[   66.106768][ T6585] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[   66.154944][ T6590] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   66.208646][ T6594] FAULT_INJECTION: forcing a failure.
[   66.208646][ T6594] name failslab, interval 1, probability 0, space 0, times 0
[   66.213244][ T6594] CPU: 0 UID: 0 PID: 6594 Comm: syz.3.210 Not tainted syzkaller #0 PREEMPT(full) 
[   66.213266][ T6594] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.213276][ T6594] Call Trace:
[   66.213293][ T6594]  <TASK>
[   66.213299][ T6594]  dump_stack_lvl+0x16c/0x1f0
[   66.213338][ T6594]  should_fail_ex+0x512/0x640
[   66.213365][ T6594]  ? fs_reclaim_acquire+0xae/0x150
[   66.213386][ T6594]  should_failslab+0xc2/0x120
[   66.213406][ T6594]  __kmalloc_noprof+0xdd/0x880
[   66.213429][ T6594]  ? tomoyo_encode2+0x100/0x3e0
[   66.213454][ T6594]  ? tomoyo_encode2+0x100/0x3e0
[   66.213472][ T6594]  tomoyo_encode2+0x100/0x3e0
[   66.213567][ T6594]  tomoyo_encode+0x29/0x50
[   66.213586][ T6594]  tomoyo_realpath_from_path+0x18f/0x6e0
[   66.213609][ T6594]  ? tomoyo_profile+0x47/0x60
[   66.213634][ T6594]  tomoyo_path_number_perm+0x245/0x580
[   66.213649][ T6594]  ? tomoyo_path_number_perm+0x237/0x580
[   66.213668][ T6594]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   66.213686][ T6594]  ? find_held_lock+0x2b/0x80
[   66.213730][ T6594]  ? find_held_lock+0x2b/0x80
[   66.213751][ T6594]  ? hook_file_ioctl_common+0x145/0x410
[   66.213788][ T6594]  ? __fget_files+0x20e/0x3c0
[   66.213812][ T6594]  security_file_ioctl+0x9b/0x240
[   66.213834][ T6594]  __x64_sys_ioctl+0xb7/0x210
[   66.213856][ T6594]  do_syscall_64+0xcd/0xfa0
[   66.213873][ T6594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.213889][ T6594] RIP: 0033:0x7f2c6258f34b
[   66.213903][ T6594] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   66.213919][ T6594] RSP: 002b:00007f2c6346e490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   66.213935][ T6594] RAX: ffffffffffffffda RBX: 00007f2c6346ebe0 RCX: 00007f2c6258f34b
[   66.213945][ T6594] RDX: 00007f2c6346ebe0 RSI: 000000004020ae46 RDI: 0000000000000004
[   66.213955][ T6594] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   66.213964][ T6594] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000010
[   66.213973][ T6594] R13: 0000200000ff8000 R14: 0000200000fe8000 R15: 00000000fec00000
[   66.213998][ T6594]  </TASK>
[   66.214015][ T6594] ERROR: Out of memory at tomoyo_realpath_from_path.
[   66.298855][ T6601] CIFS: Unable to determine destination address
[   66.402630][ T6605] program syz.1.214 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   66.476486][ T6612] netlink: 'syz.3.217': attribute type 1 has an invalid length.
[   66.489732][ T6612] bond4: entered promiscuous mode
[   66.491598][ T6612] bond4: entered allmulticast mode
[   66.493887][ T6612] 8021q: adding VLAN 0 to HW filter on device bond4
[   66.654105][ T6636] [syz.3.] <== rxrpc_preparse_xdr_yfs_rxgk() = -EKEYREJECTED [d9c19884!=bc, 2c,d9c19820]
[   66.758839][ T6644] FAULT_INJECTION: forcing a failure.
[   66.758839][ T6644] name failslab, interval 1, probability 0, space 0, times 0
[   66.763265][ T6644] CPU: 2 UID: 0 PID: 6644 Comm: syz.3.225 Not tainted syzkaller #0 PREEMPT(full) 
[   66.763284][ T6644] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.763290][ T6644] Call Trace:
[   66.763294][ T6644]  <TASK>
[   66.763298][ T6644]  dump_stack_lvl+0x16c/0x1f0
[   66.763312][ T6644]  should_fail_ex+0x512/0x640
[   66.763325][ T6644]  ? fs_reclaim_acquire+0xae/0x150
[   66.763338][ T6644]  should_failslab+0xc2/0x120
[   66.763351][ T6644]  __kmalloc_noprof+0xdd/0x880
[   66.763365][ T6644]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   66.763380][ T6644]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   66.763392][ T6644]  tomoyo_realpath_from_path+0xc2/0x6e0
[   66.763405][ T6644]  ? tomoyo_profile+0x47/0x60
[   66.763420][ T6644]  tomoyo_path_number_perm+0x245/0x580
[   66.763429][ T6644]  ? tomoyo_path_number_perm+0x237/0x580
[   66.763440][ T6644]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   66.763450][ T6644]  ? find_held_lock+0x2b/0x80
[   66.763475][ T6644]  ? find_held_lock+0x2b/0x80
[   66.763487][ T6644]  ? hook_file_ioctl_common+0x145/0x410
[   66.763504][ T6644]  ? __fget_files+0x20e/0x3c0
[   66.763517][ T6644]  security_file_ioctl+0x9b/0x240
[   66.763529][ T6644]  __x64_sys_ioctl+0xb7/0x210
[   66.763545][ T6644]  do_syscall_64+0xcd/0xfa0
[   66.763556][ T6644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.763567][ T6644] RIP: 0033:0x7f2c6258f34b
[   66.763576][ T6644] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   66.763585][ T6644] RSP: 002b:00007f2c6346e490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   66.763596][ T6644] RAX: ffffffffffffffda RBX: 00007f2c6346ebe0 RCX: 00007f2c6258f34b
[   66.763602][ T6644] RDX: 00007f2c6346ebe0 RSI: 000000004020ae46 RDI: 0000000000000004
[   66.763608][ T6644] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   66.763614][ T6644] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000012
[   66.763619][ T6644] R13: 0000200000ffa000 R14: 0000200000fe8000 R15: 00000000fec00000
[   66.763632][ T6644]  </TASK>
[   66.763636][ T6644] ERROR: Out of memory at tomoyo_realpath_from_path.
[   66.790738][ T6652] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   66.842921][ T6655] program syz.0.229 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   66.844007][ T6652] IPv6: NLM_F_CREATE should be set when creating new route
[   66.858820][ T6652] IPv6: NLM_F_CREATE should be set when creating new route
[   66.862021][ T6652] IPv6: NLM_F_CREATE should be set when creating new route
[   66.865718][ T6655] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   66.872559][ T6652] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57 sclass=netlink_route_socket pid=6652 comm=syz.0.229
[   66.878124][ T6652] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57 sclass=netlink_route_socket pid=6652 comm=syz.0.229
[   66.909628][ T6660] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2579 sclass=netlink_route_socket pid=6660 comm=syz.1.231
[   67.065420][ T6693] __nla_validate_parse: 7 callbacks suppressed
[   67.065432][ T6693] netlink: 8 bytes leftover after parsing attributes in process `syz.3.239'.
[   67.168323][ T6711] netlink: 4 bytes leftover after parsing attributes in process `syz.0.241'.
[   67.175995][ T6711] input: syz1 as /devices/virtual/input/input6
[   67.189372][ T6713] netlink: 48 bytes leftover after parsing attributes in process `syz.1.246'.
[   67.239036][   T54] IPVS: starting estimator thread 0...
[   67.241307][ T6716] IPVS: set_ctl: invalid protocol: 59 172.20.20.170:20003
[   67.256659][ T6716] netlink: 536 bytes leftover after parsing attributes in process `syz.1.247'.
[   67.262597][ T6716] IPVS: ovf: FWM 3 0x00000003 - no destination available
[   67.269193][ T6721] random: crng reseeded on system resumption
[   67.276635][ T6721] PM: hibernation: Image mismatch: memory size
[   67.321455][ T6725] netlink: 8 bytes leftover after parsing attributes in process `syz.3.251'.
[   67.333558][ T6718] IPVS: using max 46 ests per chain, 110400 per kthread
[   67.353457][ T6728] ISOFS: Unable to identify CD-ROM format.
[   67.361234][ T6731] ipvlan2: entered allmulticast mode
[   67.363172][ T6731] team0: entered allmulticast mode
[   67.364863][ T6731] team_slave_0: entered allmulticast mode
[   67.366592][ T6731] team_slave_1: entered allmulticast mode
[   67.369180][ T6731] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[   67.406314][ T6734] i2c i2c-1: Invalid block write size 34
[   67.514507][ T6758] netlink: 'syz.1.262': attribute type 64 has an invalid length.
[   67.517093][ T6758] netlink: 152 bytes leftover after parsing attributes in process `syz.1.262'.
[   67.543943][ T6758] netlink: 64138 bytes leftover after parsing attributes in process `syz.1.262'.
[   67.566520][ T6768] netlink: 8 bytes leftover after parsing attributes in process `syz.3.265'.
[   67.569540][ T6768] netlink: 12 bytes leftover after parsing attributes in process `syz.3.265'.
[   67.581276][ T6768] netlink: 8 bytes leftover after parsing attributes in process `syz.3.265'.
[   67.585742][ T1149] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   67.589136][ T1149] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   67.592430][ T1149] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   67.595326][ T1149] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   67.619616][ T6773] FAULT_INJECTION: forcing a failure.
[   67.619616][ T6773] name failslab, interval 1, probability 0, space 0, times 0
[   67.624056][ T6773] CPU: 0 UID: 0 PID: 6773 Comm: syz.0.258 Not tainted syzkaller #0 PREEMPT(full) 
[   67.624070][ T6773] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.624076][ T6773] Call Trace:
[   67.624080][ T6773]  <TASK>
[   67.624084][ T6773]  dump_stack_lvl+0x16c/0x1f0
[   67.624098][ T6773]  should_fail_ex+0x512/0x640
[   67.624110][ T6773]  ? fs_reclaim_acquire+0xae/0x150
[   67.624124][ T6773]  should_failslab+0xc2/0x120
[   67.624136][ T6773]  __kmalloc_noprof+0xdd/0x880
[   67.624151][ T6773]  ? tomoyo_encode2+0x100/0x3e0
[   67.624165][ T6773]  ? tomoyo_encode2+0x100/0x3e0
[   67.624176][ T6773]  tomoyo_encode2+0x100/0x3e0
[   67.624189][ T6773]  tomoyo_encode+0x29/0x50
[   67.624200][ T6773]  tomoyo_realpath_from_path+0x18f/0x6e0
[   67.624213][ T6773]  ? tomoyo_profile+0x47/0x60
[   67.624227][ T6773]  tomoyo_path_number_perm+0x245/0x580
[   67.624237][ T6773]  ? tomoyo_path_number_perm+0x237/0x580
[   67.624247][ T6773]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   67.624258][ T6773]  ? find_held_lock+0x2b/0x80
[   67.624283][ T6773]  ? find_held_lock+0x2b/0x80
[   67.624295][ T6773]  ? hook_file_ioctl_common+0x145/0x410
[   67.624311][ T6773]  ? __fget_files+0x20e/0x3c0
[   67.624324][ T6773]  security_file_ioctl+0x9b/0x240
[   67.624337][ T6773]  __x64_sys_ioctl+0xb7/0x210
[   67.624352][ T6773]  do_syscall_64+0xcd/0xfa0
[   67.624363][ T6773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.624374][ T6773] RIP: 0033:0x7f6b98d8f34b
[   67.624382][ T6773] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   67.624392][ T6773] RSP: 002b:00007f6b99cf1490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   67.624402][ T6773] RAX: ffffffffffffffda RBX: 00007f6b99cf1be0 RCX: 00007f6b98d8f34b
[   67.624408][ T6773] RDX: 00007f6b99cf1be0 RSI: 000000004020ae46 RDI: 0000000000000004
[   67.624414][ T6773] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   67.624420][ T6773] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000011
[   67.624425][ T6773] R13: 0000200000ff9000 R14: 0000200000fe8000 R15: 00000000fec00000
[   67.624438][ T6773]  </TASK>
[   67.624447][ T6773] ERROR: Out of memory at tomoyo_realpath_from_path.
[   67.700322][ T6789] FAULT_INJECTION: forcing a failure.
[   67.700322][ T6789] name failslab, interval 1, probability 0, space 0, times 0
[   67.707339][ T6789] CPU: 3 UID: 0 PID: 6789 Comm: syz.3.272 Not tainted syzkaller #0 PREEMPT(full) 
[   67.707353][ T6789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.707360][ T6789] Call Trace:
[   67.707363][ T6789]  <TASK>
[   67.707367][ T6789]  dump_stack_lvl+0x16c/0x1f0
[   67.707381][ T6789]  should_fail_ex+0x512/0x640
[   67.707393][ T6789]  ? fs_reclaim_acquire+0xae/0x150
[   67.707407][ T6789]  should_failslab+0xc2/0x120
[   67.707419][ T6789]  __kmalloc_noprof+0xdd/0x880
[   67.707433][ T6789]  ? find_held_lock+0x2b/0x80
[   67.707447][ T6789]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   67.707462][ T6789]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   67.707474][ T6789]  tomoyo_realpath_from_path+0xc2/0x6e0
[   67.707487][ T6789]  ? tomoyo_profile+0x47/0x60
[   67.707502][ T6789]  tomoyo_path_number_perm+0x245/0x580
[   67.707512][ T6789]  ? tomoyo_path_number_perm+0x237/0x580
[   67.707523][ T6789]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   67.707532][ T6789]  ? __handle_mm_fault+0x5a8/0x2aa0
[   67.707559][ T6789]  ? find_held_lock+0x2b/0x80
[   67.707571][ T6789]  ? hook_file_ioctl_common+0x145/0x410
[   67.707588][ T6789]  ? __fget_files+0x20e/0x3c0
[   67.707601][ T6789]  security_file_ioctl+0x9b/0x240
[   67.707614][ T6789]  __x64_sys_ioctl+0xb7/0x210
[   67.707629][ T6789]  do_syscall_64+0xcd/0xfa0
[   67.707641][ T6789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.707651][ T6789] RIP: 0033:0x7f2c6258f34b
[   67.707660][ T6789] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   67.707669][ T6789] RSP: 002b:00007f2c6346e490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   67.707680][ T6789] RAX: ffffffffffffffda RBX: 00007f2c6346ebe0 RCX: 00007f2c6258f34b
[   67.707686][ T6789] RDX: 00007f2c6346eaa0 RSI: 000000008138ae83 RDI: 0000000000000005
[   67.707692][ T6789] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000000000000000
[   67.707697][ T6789] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000018
[   67.707703][ T6789] R13: 0000200001000000 R14: 0000200000fe8000 R15: 00000000fec00000
[   67.707717][ T6789]  </TASK>
[   67.707721][ T6789] ERROR: Out of memory at tomoyo_realpath_from_path.
[   67.973226][ T6818] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[   67.988703][ T6818] validate_nla: 3 callbacks suppressed
[   67.988718][ T6818] netlink: 'syz.0.280': attribute type 1 has an invalid length.
[   67.994280][ T6818] netlink: 'syz.0.280': attribute type 1 has an invalid length.
[   68.092845][ T6824] autofs: Bad value for 'fd'
[   68.591277][ T6834] FAULT_INJECTION: forcing a failure.
[   68.591277][ T6834] name failslab, interval 1, probability 0, space 0, times 0
[   68.597537][ T6834] CPU: 2 UID: 0 PID: 6834 Comm: syz.2.286 Not tainted syzkaller #0 PREEMPT(full) 
[   68.597561][ T6834] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.597571][ T6834] Call Trace:
[   68.597577][ T6834]  <TASK>
[   68.597584][ T6834]  dump_stack_lvl+0x16c/0x1f0
[   68.597606][ T6834]  should_fail_ex+0x512/0x640
[   68.597626][ T6834]  ? fs_reclaim_acquire+0xae/0x150
[   68.597649][ T6834]  should_failslab+0xc2/0x120
[   68.597670][ T6834]  __kmalloc_noprof+0xdd/0x880
[   68.597694][ T6834]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   68.597720][ T6834]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   68.597739][ T6834]  tomoyo_realpath_from_path+0xc2/0x6e0
[   68.597762][ T6834]  ? tomoyo_profile+0x47/0x60
[   68.597787][ T6834]  tomoyo_path_number_perm+0x245/0x580
[   68.597803][ T6834]  ? tomoyo_path_number_perm+0x237/0x580
[   68.597822][ T6834]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   68.597840][ T6834]  ? find_held_lock+0x2b/0x80
[   68.597883][ T6834]  ? find_held_lock+0x2b/0x80
[   68.597904][ T6834]  ? hook_file_ioctl_common+0x145/0x410
[   68.597934][ T6834]  ? __fget_files+0x20e/0x3c0
[   68.597956][ T6834]  security_file_ioctl+0x9b/0x240
[   68.597978][ T6834]  __x64_sys_ioctl+0xb7/0x210
[   68.598004][ T6834]  do_syscall_64+0xcd/0xfa0
[   68.598023][ T6834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.598040][ T6834] RIP: 0033:0x7f2fe3f8f34b
[   68.598054][ T6834] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   68.598069][ T6834] RSP: 002b:00007f2fe4d54490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   68.598086][ T6834] RAX: ffffffffffffffda RBX: 00007f2fe4d54be0 RCX: 00007f2fe3f8f34b
[   68.598096][ T6834] RDX: 00007f2fe4d54be0 RSI: 000000004020ae46 RDI: 0000000000000004
[   68.598106][ T6834] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000070
[   68.598121][ T6834] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000013
[   68.598131][ T6834] R13: 0000200000ffb000 R14: 0000200000fe8000 R15: 00000000fec00000
[   68.598156][ T6834]  </TASK>
[   68.598163][ T6834] ERROR: Out of memory at tomoyo_realpath_from_path.
[   68.709030][   T40] kauditd_printk_skb: 32 callbacks suppressed
[   68.709049][   T40] audit: type=1400 audit(1763586665.040:334): avc:  denied  { read write } for  pid=6835 comm="syz.3.287" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   68.720826][   T40] audit: type=1400 audit(1763586665.040:335): avc:  denied  { open } for  pid=6835 comm="syz.3.287" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   68.730600][   T40] audit: type=1400 audit(1763586665.040:336): avc:  denied  { ioctl } for  pid=6835 comm="syz.3.287" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x937a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   68.788247][   T40] audit: type=1400 audit(1763586665.120:337): avc:  denied  { bind } for  pid=6837 comm="syz.3.288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   68.798453][ T6842] FAULT_INJECTION: forcing a failure.
[   68.798453][ T6842] name failslab, interval 1, probability 0, space 0, times 0
[   68.802947][ T6842] CPU: 2 UID: 0 PID: 6842 Comm: syz.2.290 Not tainted syzkaller #0 PREEMPT(full) 
[   68.802961][ T6842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.802967][ T6842] Call Trace:
[   68.802970][ T6842]  <TASK>
[   68.802974][ T6842]  dump_stack_lvl+0x16c/0x1f0
[   68.802988][ T6842]  should_fail_ex+0x512/0x640
[   68.803000][ T6842]  ? fs_reclaim_acquire+0xae/0x150
[   68.803014][ T6842]  should_failslab+0xc2/0x120
[   68.803026][ T6842]  __kmalloc_noprof+0xdd/0x880
[   68.803041][ T6842]  ? tomoyo_encode2+0x100/0x3e0
[   68.803055][ T6842]  ? tomoyo_encode2+0x100/0x3e0
[   68.803066][ T6842]  tomoyo_encode2+0x100/0x3e0
[   68.803079][ T6842]  tomoyo_encode+0x29/0x50
[   68.803090][ T6842]  tomoyo_realpath_from_path+0x18f/0x6e0
[   68.803103][ T6842]  ? tomoyo_profile+0x47/0x60
[   68.803119][ T6842]  tomoyo_path_number_perm+0x245/0x580
[   68.803128][ T6842]  ? tomoyo_path_number_perm+0x237/0x580
[   68.803139][ T6842]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   68.803148][ T6842]  ? __handle_mm_fault+0x5a8/0x2aa0
[   68.803175][ T6842]  ? find_held_lock+0x2b/0x80
[   68.803188][ T6842]  ? hook_file_ioctl_common+0x145/0x410
[   68.803205][ T6842]  ? __fget_files+0x20e/0x3c0
[   68.803217][ T6842]  security_file_ioctl+0x9b/0x240
[   68.803230][ T6842]  __x64_sys_ioctl+0xb7/0x210
[   68.803246][ T6842]  do_syscall_64+0xcd/0xfa0
[   68.803257][ T6842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.803267][ T6842] RIP: 0033:0x7f2fe3f8f34b
[   68.803276][ T6842] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   68.803285][ T6842] RSP: 002b:00007f2fe4d54490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   68.803295][ T6842] RAX: ffffffffffffffda RBX: 00007f2fe4d54be0 RCX: 00007f2fe3f8f34b
[   68.803301][ T6842] RDX: 00007f2fe4d54aa0 RSI: 000000008138ae83 RDI: 0000000000000005
[   68.803307][ T6842] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000000000000000
[   68.803312][ T6842] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000018
[   68.803318][ T6842] R13: 0000200001000000 R14: 0000200000fe8000 R15: 00000000fec00000
[   68.803332][ T6842]  </TASK>
[   68.803341][ T6842] ERROR: Out of memory at tomoyo_realpath_from_path.
[   68.948166][   T40] audit: type=1400 audit(1763586665.280:338): avc:  denied  { remove_name } for  pid=5931 comm="syz-executor" name="binderfs" dev="tmpfs" ino=376 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[   68.957071][   T40] audit: type=1400 audit(1763586665.280:339): avc:  denied  { rmdir } for  pid=5931 comm="syz-executor" name="69" dev="tmpfs" ino=372 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[   69.065166][   T40] audit: type=1400 audit(1763586665.400:340): avc:  denied  { append } for  pid=6858 comm="syz.2.295" name="uinput" dev="devtmpfs" ino=943 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   69.074589][   T40] audit: type=1400 audit(1763586665.400:341): avc:  denied  { read } for  pid=6858 comm="syz.2.295" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   69.082966][   T40] audit: type=1400 audit(1763586665.400:342): avc:  denied  { open } for  pid=6858 comm="syz.2.295" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   69.112570][   T40] audit: type=1400 audit(1763586665.440:343): avc:  denied  { name_connect } for  pid=6862 comm="syz.2.297" dest=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[   69.171393][ T6865] bridge0: port 3(veth0_to_bridge) entered blocking state
[   69.174145][ T6865] bridge0: port 3(veth0_to_bridge) entered disabled state
[   69.177009][ T6865] veth0_to_bridge: entered allmulticast mode
[   69.180262][ T6865] veth0_to_bridge: entered promiscuous mode
[   69.255323][ T6871] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   69.333286][ T6875] FAULT_INJECTION: forcing a failure.
[   69.333286][ T6875] name failslab, interval 1, probability 0, space 0, times 0
[   69.341005][ T6875] CPU: 0 UID: 0 PID: 6875 Comm: syz.1.303 Not tainted syzkaller #0 PREEMPT(full) 
[   69.341029][ T6875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.341040][ T6875] Call Trace:
[   69.341045][ T6875]  <TASK>
[   69.341053][ T6875]  dump_stack_lvl+0x16c/0x1f0
[   69.341080][ T6875]  should_fail_ex+0x512/0x640
[   69.341100][ T6875]  ? __kmalloc_cache_noprof+0x5f/0x780
[   69.341127][ T6875]  should_failslab+0xc2/0x120
[   69.341146][ T6875]  __kmalloc_cache_noprof+0x72/0x780
[   69.341171][ T6875]  ? kvm_vcpu_ioctl+0x728/0x1690
[   69.341198][ T6875]  ? kvm_vcpu_ioctl+0x728/0x1690
[   69.341219][ T6875]  kvm_vcpu_ioctl+0x728/0x1690
[   69.341245][ T6875]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   69.341268][ T6875]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   69.341292][ T6875]  ? do_vfs_ioctl+0x128/0x14f0
[   69.341316][ T6875]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   69.341339][ T6875]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   69.341367][ T6875]  ? hook_file_ioctl_common+0x145/0x410
[   69.341398][ T6875]  ? selinux_file_ioctl+0x180/0x270
[   69.341415][ T6875]  ? selinux_file_ioctl+0xb4/0x270
[   69.341434][ T6875]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   69.341473][ T6875]  __x64_sys_ioctl+0x18e/0x210
[   69.341499][ T6875]  do_syscall_64+0xcd/0xfa0
[   69.341511][ T6875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.341522][ T6875] RIP: 0033:0x7fba2398f34b
[   69.341531][ T6875] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[   69.341542][ T6875] RSP: 002b:00007fba247b3490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   69.341553][ T6875] RAX: ffffffffffffffda RBX: 00007fba247b3be0 RCX: 00007fba2398f34b
[   69.341560][ T6875] RDX: 00007fba247b3aa0 RSI: 000000008138ae83 RDI: 0000000000000005
[   69.341567][ T6875] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000000000000000
[   69.341573][ T6875] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000018
[   69.341583][ T6875] R13: 0000200001000000 R14: 0000200000fe8000 R15: 00000000fec00000
[   69.341608][ T6875]  </TASK>
[   69.600510][ T6895] xt_cluster: you have exceeded the maximum number of cluster nodes (205 > 32)
[   69.671680][ T6057] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   69.707043][ T6907] FAULT_INJECTION: forcing a failure.
[   69.707043][ T6907] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.714237][ T6907] CPU: 1 UID: 0 PID: 6907 Comm: syz.3.313 Not tainted syzkaller #0 PREEMPT(full) 
[   69.714261][ T6907] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.714270][ T6907] Call Trace:
[   69.714276][ T6907]  <TASK>
[   69.714282][ T6907]  dump_stack_lvl+0x16c/0x1f0
[   69.714305][ T6907]  should_fail_ex+0x512/0x640
[   69.714329][ T6907]  _copy_from_user+0x2e/0xd0
[   69.714353][ T6907]  io_register_rsrc+0xcd/0x250
[   69.714371][ T6907]  ? __pfx_io_register_rsrc+0x10/0x10
[   69.714391][ T6907]  ? __mutex_lock+0x1c5/0x1060
[   69.714415][ T6907]  __io_uring_register+0x1043/0x2150
[   69.714436][ T6907]  ? __pfx___io_uring_register+0x10/0x10
[   69.714457][ T6907]  ? __fget_files+0x20e/0x3c0
[   69.714483][ T6907]  __x64_sys_io_uring_register+0x169/0x280
[   69.714503][ T6907]  do_syscall_64+0xcd/0xfa0
[   69.714521][ T6907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.714539][ T6907] RIP: 0033:0x7f2c6258f749
[   69.714551][ T6907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.714564][ T6907] RSP: 002b:00007f2c63470038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   69.714578][ T6907] RAX: ffffffffffffffda RBX: 00007f2c627e5fa0 RCX: 00007f2c6258f749
[   69.714590][ T6907] RDX: 00002000000003c0 RSI: 000000000000000d RDI: 0000000000000003
[   69.714600][ T6907] RBP: 00007f2c63470090 R08: 0000000000000000 R09: 0000000000000000
[   69.714610][ T6907] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   69.714620][ T6907] R13: 00007f2c627e6038 R14: 00007f2c627e5fa0 R15: 00007ffee80ea0e8
[   69.714643][ T6907]  </TASK>
[   69.852776][ T6918] netlink: 'syz.3.318': attribute type 11 has an invalid length.
[   69.855994][ T6918] netlink: 'syz.3.318': attribute type 13 has an invalid length.
[   69.861946][ T6057] usb 5-1: device descriptor read/64, error -71
[   69.953136][ T6926] ip6t_REJECT: ECHOREPLY is not supported
[   70.111572][ T6057] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   70.251788][ T6057] usb 5-1: device descriptor read/64, error -71
[   70.251830][ T6936] netlink: 'syz.1.325': attribute type 1 has an invalid length.
[   70.361891][ T6057] usb usb5-port1: attempt power cycle
[   70.597466][ T5936] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   70.669834][ T5936] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   70.721596][ T6057] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   70.742304][ T6057] usb 5-1: device descriptor read/8, error -71
[   70.841161][ T6960] qnx4: no qnx4 filesystem (no root dir).
[   71.001643][ T6057] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   71.022209][ T6057] usb 5-1: device descriptor read/8, error -71
[   71.131873][ T6057] usb usb5-port1: unable to enumerate USB device
[   71.330100][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[   71.487305][ T6970] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2570 sclass=netlink_route_socket pid=6970 comm=syz.1.337
[   71.964519][ T6972] netlink: 'syz.1.338': attribute type 1 has an invalid length.
[   71.987199][ T6972] bond3: (slave bridge1): making interface the new active one
[   71.990963][ T6972] bond3: (slave bridge1): Enslaving as an active interface with an up link
[   72.179400][ T6983] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6983 comm=syz.1.341
[   72.184641][ T6983] __nla_validate_parse: 15 callbacks suppressed
[   72.184657][ T6983] netlink: 4 bytes leftover after parsing attributes in process `syz.1.341'.
[   72.191156][ T6983] netlink: 12 bytes leftover after parsing attributes in process `syz.1.341'.
[   72.328255][ T6994] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[   72.425254][ T6990] syzkaller0: entered promiscuous mode
[   72.427890][ T6990] syzkaller0: entered allmulticast mode
[   72.444204][ T6990] netlink: 72 bytes leftover after parsing attributes in process `syz.1.345'.
[   72.451513][ T6990] netlink: 76 bytes leftover after parsing attributes in process `syz.1.345'.
[   72.472199][ T7001] syzkaller1: entered promiscuous mode
[   72.474542][ T7001] syzkaller1: entered allmulticast mode
[   72.477195][ T7001] No source specified
[   72.478000][ T7002] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT
[   73.738279][   T40] kauditd_printk_skb: 30 callbacks suppressed
[   73.738294][   T40] audit: type=1400 audit(1763586670.070:374): avc:  denied  { write } for  pid=7019 comm="syz.1.355" name="card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   73.751586][   T40] audit: type=1400 audit(1763586670.080:375): avc:  denied  { map } for  pid=7019 comm="syz.1.355" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   73.759013][   T40] audit: type=1400 audit(1763586670.080:376): avc:  denied  { execute } for  pid=7019 comm="syz.1.355" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   73.800815][ T5941] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[   73.866272][   T40] audit: type=1400 audit(1763586670.200:377): avc:  denied  { setopt } for  pid=7039 comm="syz.1.360" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   73.909372][   T40] audit: type=1400 audit(1763586670.240:378): avc:  denied  { setopt } for  pid=7041 comm="syz.1.361" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   73.915734][   T40] audit: type=1400 audit(1763586670.240:379): avc:  denied  { map } for  pid=7041 comm="syz.1.361" path="socket:[17731]" dev="sockfs" ino=17731 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   73.924424][   T40] audit: type=1400 audit(1763586670.240:380): avc:  denied  { read accept } for  pid=7041 comm="syz.1.361" path="socket:[17731]" dev="sockfs" ino=17731 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   73.948492][ T7047] netlink: 8 bytes leftover after parsing attributes in process `syz.0.362'.
[   73.957598][ T7047] netlink: 16 bytes leftover after parsing attributes in process `syz.0.362'.
[   74.115386][ T7069] bond2 (unregistering): Released all slaves
[   74.191365][   T40] audit: type=1400 audit(1763586670.520:381): avc:  denied  { connect } for  pid=7074 comm="syz.1.371" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   74.198131][   T40] audit: type=1400 audit(1763586670.530:382): avc:  denied  { setopt } for  pid=7074 comm="syz.1.371" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   74.234229][   T40] audit: type=1400 audit(1763586670.570:383): avc:  denied  { read } for  pid=7079 comm="syz.0.372" lport=46180 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   74.732061][ T7100] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5390 sclass=netlink_route_socket pid=7100 comm=syz.0.378
[   74.775709][ T7102] kAFS: No cell specified
[   74.778570][ T7102] netlink: 112 bytes leftover after parsing attributes in process `syz.0.379'.
[   74.819888][ T7104] MTD: Couldn't look up '/dev/sg0': -15
[   74.821944][ T7104] /dev/sg0: Can't lookup blockdev
[   74.824372][ T7105] blktrace: Concurrent blktraces are not allowed on sg0
[   74.824514][ T7104] MTD: Couldn't look up '/dev/sg0': -15
[   74.829531][ T7104] /dev/sg0: Can't lookup blockdev
[   74.949097][ T7114] netlink: 20 bytes leftover after parsing attributes in process `syz.0.383'.
[   75.059165][ T7125] netlink: 8 bytes leftover after parsing attributes in process `syz.1.387'.
[   75.374040][ T5936] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[   75.823882][ T7158] netlink: 28 bytes leftover after parsing attributes in process `syz.3.398'.
[   75.873329][ T5941] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   76.052804][ T7168] block nbd3: NBD_DISCONNECT
[   76.055098][ T7168] block nbd3: Disconnected due to user request.
[   76.057963][ T7168] block nbd3: shutting down sockets
[   76.081363][ T7168] bond5: option downdelay: invalid value (18446744073709551615)
[   76.085652][ T7168] bond5: option downdelay: allowed values 0 - 2147483647
[   76.090764][ T7168] bond5 (unregistering): Released all slaves
[   76.328811][ T7176] netlink: 'syz.0.405': attribute type 1 has an invalid length.
[   76.333419][ T7176] netlink: 'syz.0.405': attribute type 2 has an invalid length.
[   76.590131][ T7183] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   76.815181][ T7195] bpf: Bad value for 'gid'
[   77.077143][ T7211] FAULT_INJECTION: forcing a failure.
[   77.077143][ T7211] name failslab, interval 1, probability 0, space 0, times 0
[   77.081425][ T7211] CPU: 2 UID: 0 PID: 7211 Comm: syz.3.420 Not tainted syzkaller #0 PREEMPT(full) 
[   77.081442][ T7211] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.081448][ T7211] Call Trace:
[   77.081472][ T7211]  <TASK>
[   77.081478][ T7211]  dump_stack_lvl+0x16c/0x1f0
[   77.081505][ T7211]  should_fail_ex+0x512/0x640
[   77.081526][ T7211]  ? __lock_acquire+0x622/0x1c90
[   77.081536][ T7211]  should_failslab+0xc2/0x120
[   77.081549][ T7211]  kmem_cache_alloc_noprof+0x75/0x6e0
[   77.081566][ T7211]  ? dst_alloc+0x99/0x1a0
[   77.081581][ T7211]  ? dst_alloc+0x99/0x1a0
[   77.081591][ T7211]  ? find_held_lock+0x2b/0x80
[   77.081602][ T7211]  dst_alloc+0x99/0x1a0
[   77.081615][ T7211]  rt_dst_alloc+0x35/0x3a0
[   77.081626][ T7211]  ip_route_input_slow+0x16cb/0x3fa0
[   77.081641][ T7211]  ? __pfx_ip_route_input_slow+0x10/0x10
[   77.081661][ T7211]  ? __pfx_ipt_do_table+0x10/0x10
[   77.081684][ T7211]  ? __pfx_iptable_mangle_hook+0x10/0x10
[   77.081699][ T7211]  ip_route_input_noref+0x120/0x2e0
[   77.081712][ T7211]  ? __pfx_ip_route_input_noref+0x10/0x10
[   77.081728][ T7211]  ? __pfx_nf_hook.constprop.0+0x10/0x10
[   77.081744][ T7211]  ip_rcv_finish_core+0x46f/0x2290
[   77.081761][ T7211]  ip_rcv+0x1c0/0x600
[   77.081774][ T7211]  ? __pfx_ip_rcv+0x10/0x10
[   77.081787][ T7211]  __netif_receive_skb_one_core+0x197/0x1e0
[   77.081800][ T7211]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   77.081813][ T7211]  ? lock_acquire+0x179/0x350
[   77.081824][ T7211]  ? __phys_addr+0xe8/0x180
[   77.081839][ T7211]  __netif_receive_skb+0x1d/0x160
[   77.081851][ T7211]  netif_receive_skb+0x137/0x7b0
[   77.081865][ T7211]  ? __pfx_netif_receive_skb+0x10/0x10
[   77.081881][ T7211]  tun_rx_batched.isra.0+0x3ee/0x740
[   77.081897][ T7211]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   77.081914][ T7211]  ? tun_get_user+0x1ded/0x3cc0
[   77.081927][ T7211]  ? rcu_is_watching+0x12/0xc0
[   77.081943][ T7211]  tun_get_user+0x28b2/0x3cc0
[   77.081963][ T7211]  ? __pfx_tun_get_user+0x10/0x10
[   77.081978][ T7211]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   77.081996][ T7211]  ? find_held_lock+0x2b/0x80
[   77.082009][ T7211]  ? tun_get+0x191/0x370
[   77.082024][ T7211]  tun_chr_write_iter+0xdc/0x210
[   77.082039][ T7211]  vfs_write+0x7d3/0x11d0
[   77.082050][ T7211]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   77.082065][ T7211]  ? __pfx_vfs_write+0x10/0x10
[   77.082074][ T7211]  ? find_held_lock+0x2b/0x80
[   77.082094][ T7211]  ksys_write+0x12a/0x250
[   77.082103][ T7211]  ? __pfx_ksys_write+0x10/0x10
[   77.082118][ T7211]  do_syscall_64+0xcd/0xfa0
[   77.082130][ T7211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.082141][ T7211] RIP: 0033:0x7f2c6258e1ff
[   77.082150][ T7211] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   77.082160][ T7211] RSP: 002b:00007f2c63470000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   77.082171][ T7211] RAX: ffffffffffffffda RBX: 00007f2c627e5fa0 RCX: 00007f2c6258e1ff
[   77.082177][ T7211] RDX: 0000000000000046 RSI: 0000200000000000 RDI: 00000000000000c8
[   77.082183][ T7211] RBP: 00007f2c63470090 R08: 0000000000000000 R09: 0000000000000000
[   77.082189][ T7211] R10: 0000000000000046 R11: 0000000000000293 R12: 0000000000000001
[   77.082195][ T7211] R13: 00007f2c627e6038 R14: 00007f2c627e5fa0 R15: 00007ffee80ea0e8
[   77.082208][ T7211]  </TASK>
[   77.103632][ T7175] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[   77.244728][ T7221] __nla_validate_parse: 2 callbacks suppressed
[   77.244739][ T7221] netlink: 20 bytes leftover after parsing attributes in process `syz.0.423'.
[   77.282553][ T7223] binder: 7222:7223 ioctl c0306201 200000000300 returned -22
[   77.295953][ T7225] netlink: 16 bytes leftover after parsing attributes in process `syz.1.426'.
[   77.300715][ T7225] trusted_key: syz.1.426 sent an empty control message without MSG_MORE.
[   77.324868][ T7225] 9pnet: Could not find request transport: virtiBK%�������
[   77.420622][ T7238] FAULT_INJECTION: forcing a failure.
[   77.420622][ T7238] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.425140][ T7238] CPU: 2 UID: 0 PID: 7238 Comm: syz.0.430 Not tainted syzkaller #0 PREEMPT(full) 
[   77.425154][ T7238] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.425161][ T7238] Call Trace:
[   77.425165][ T7238]  <TASK>
[   77.425170][ T7238]  dump_stack_lvl+0x16c/0x1f0
[   77.425184][ T7238]  should_fail_ex+0x512/0x640
[   77.425198][ T7238]  _copy_from_user+0x2e/0xd0
[   77.425213][ T7238]  kstrtouint_from_user+0xd6/0x1d0
[   77.425228][ T7238]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   77.425244][ T7238]  ? __lock_acquire+0xb8a/0x1c90
[   77.425260][ T7238]  proc_fail_nth_write+0x83/0x220
[   77.425273][ T7238]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   77.425288][ T7238]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   77.425299][ T7238]  vfs_write+0x2a0/0x11d0
[   77.425312][ T7238]  ? __pfx___mutex_lock+0x10/0x10
[   77.425322][ T7238]  ? __pfx_vfs_write+0x10/0x10
[   77.425336][ T7238]  ? __fget_files+0x20e/0x3c0
[   77.425350][ T7238]  ksys_write+0x12a/0x250
[   77.425360][ T7238]  ? __pfx_ksys_write+0x10/0x10
[   77.425373][ T7238]  do_syscall_64+0xcd/0xfa0
[   77.425385][ T7238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.425395][ T7238] RIP: 0033:0x7f6b98d8e1ff
[   77.425404][ T7238] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   77.425414][ T7238] RSP: 002b:00007f6b99cf3030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   77.425423][ T7238] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6b98d8e1ff
[   77.425430][ T7238] RDX: 0000000000000001 RSI: 00007f6b99cf30a0 RDI: 0000000000000003
[   77.425436][ T7238] RBP: 00007f6b99cf3090 R08: 0000000000000000 R09: 0000000000000000
[   77.425442][ T7238] R10: 0000000000000046 R11: 0000000000000293 R12: 0000000000000001
[   77.425448][ T7238] R13: 00007f6b98fe6038 R14: 00007f6b98fe5fa0 R15: 00007fff13461a68
[   77.425461][ T7238]  </TASK>
[   77.552258][ T7244] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[   77.557988][ T7244] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[   77.562415][ T7244] overlayfs: failed to set uuid (133/file0, err=-13); falling back to uuid=null.
[   77.569490][ T7244] mmap: syz.1.432 (7244) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   77.608340][ T7248] netlink: 20 bytes leftover after parsing attributes in process `syz.3.434'.
[   77.641134][ T7253] erofs (device nbd3): cannot find valid erofs superblock
[   77.709888][ T7259] openvswitch: netlink: Missing key (keys=40, expected=100)
[   77.715478][ T7259] netlink: 20 bytes leftover after parsing attributes in process `syz.3.438'.
[   77.718734][ T7258] : entered promiscuous mode
[   77.724647][ T7258] binder: 7257:7258 unknown command 0
[   77.727160][ T7258] binder: 7257:7258 ioctl c0306201 200000000080 returned -22
[   77.764236][ T5941] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   77.781762][   T54] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   77.784634][ T7262] binder: 7257:7262 ioctl c0306201 2000000003c0 returned -14
[   77.941595][   T54] usb 5-1: Using ep0 maxpacket: 16
[   77.945519][   T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   77.950282][   T54] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   77.956203][   T54] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   77.960070][   T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.967353][   T54] usb 5-1: config 0 descriptor??
[   78.013753][ T7269] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[   78.016734][ T7269] overlayfs: missing 'lowerdir'
[   78.022129][ T5997] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   78.054361][ T7275] geneve3: entered promiscuous mode
[   78.056209][ T7275] geneve3: entered allmulticast mode
[   78.175689][ T5997] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[   78.178654][ T5997] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   78.181401][ T5997] usb 6-1: Product: syz
[   78.184673][ T5997] usb 6-1: Manufacturer: syz
[   78.186865][ T5997] usb 6-1: SerialNumber: syz
[   78.194815][ T5997] usb 6-1: config 0 descriptor??
[   78.401233][ T5936] Bluetooth: hci1: unknown advertising packet type: 0x17
[   78.401269][ T5936] Bluetooth: hci1: Dropping invalid advertising data
[   78.402300][ T5997] usb-storage 6-1:0.0: USB Mass Storage device detected
[   78.404893][ T5936] Bluetooth: hci1: Malformed LE Event: 0x02
[   78.496322][ T5997] usb 6-1: USB disconnect, device number 4
[   78.578021][ T7242] exFAT-fs (nbd0): unable to read boot sector
[   78.580481][ T7242] exFAT-fs (nbd0): failed to read boot sector
[   78.583054][ T7242] exFAT-fs (nbd0): failed to recognize exfat type
[   78.616417][   T54] usbhid 5-1:0.0: can't add hid device: -71
[   78.620284][   T54] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[   78.635051][   T54] usb 5-1: USB disconnect, device number 7
[   78.901594][ T1027] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[   79.022477][ T7314] block nbd1: NBD_DISCONNECT
[   79.024479][ T7314] block nbd1: Disconnected due to user request.
[   79.027153][ T7314] block nbd1: shutting down sockets
[   79.063163][ T1027] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   79.066992][ T1027] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[   79.070638][ T1027] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[   79.075506][ T1027] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   79.079234][ T1027] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.087123][ T7310] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   79.092202][ T1027] hub 7-1:1.0: bad descriptor, ignoring hub
[   79.095017][ T1027] hub 7-1:1.0: probe with driver hub failed with error -5
[   79.098822][ T1027] cdc_wdm 7-1:1.0: skipping garbage
[   79.101130][ T1027] cdc_wdm 7-1:1.0: skipping garbage
[   79.108254][ T1027] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   79.110940][ T1027] cdc_wdm 7-1:1.0: Unknown control protocol
[   79.162026][ T7321] ip6erspan0: entered promiscuous mode
[   79.227831][   T40] kauditd_printk_skb: 25 callbacks suppressed
[   79.227848][   T40] audit: type=1800 audit(1763586675.560:409): pid=7325 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.463" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0
[   79.272820][ T7327] tc_dump_action: action bad kind
[   79.275169][ T7327] netlink: 8 bytes leftover after parsing attributes in process `syz.0.464'.
[   79.300806][ T7327] netlink: 256 bytes leftover after parsing attributes in process `syz.0.464'.
[   79.304029][ T7327] netlink: 56 bytes leftover after parsing attributes in process `syz.0.464'.
[   79.309967][ T7327] netlink: 212924 bytes leftover after parsing attributes in process `syz.0.464'.
[   79.411745][ T6140] usb 7-1: USB disconnect, device number 3
[   79.497395][ T7310] hugetlbfs: Bad value for 'uid'
[   79.499295][ T7310] hugetlbfs: Bad value for 'uid'
[   79.986614][   T40] audit: type=1400 audit(1763586676.320:410): avc:  denied  { write } for  pid=7333 comm="syz.1.467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   79.989205][ T7334] netlink: 12 bytes leftover after parsing attributes in process `syz.1.467'.
[   80.021446][   T40] audit: type=1400 audit(1763586676.350:411): avc:  denied  { write } for  pid=7333 comm="syz.1.467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   80.029496][   T40] audit: type=1400 audit(1763586676.360:412): avc:  denied  { read } for  pid=7333 comm="syz.1.467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   80.143090][   T40] audit: type=1400 audit(1763586676.480:413): avc:  denied  { bind } for  pid=7337 comm="syz.2.468" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   80.210224][ T7342] Invalid source name
[   80.212034][ T7342] UBIFS error (pid: 7342): cannot open "/dev/sg0", error -22
[   80.290092][ T7349] netlink: 8 bytes leftover after parsing attributes in process `syz.1.473'.
[   80.326533][ T7351] cgroup: none used incorrectly
[   80.332425][   T40] audit: type=1400 audit(1763586676.660:414): avc:  denied  { getopt } for  pid=7350 comm="syz.0.474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   80.551655][ T5941] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[   80.625510][   T40] audit: type=1400 audit(1763586676.960:415): avc:  denied  { connect } for  pid=7385 comm="syz.0.485" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   80.632480][   T40] audit: type=1400 audit(1763586676.960:416): avc:  denied  { ioctl } for  pid=7385 comm="syz.0.485" path="socket:[19521]" dev="sockfs" ino=19521 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   80.643658][   T40] audit: type=1400 audit(1763586676.960:417): avc:  denied  { write } for  pid=7385 comm="syz.0.485" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   80.646778][ T5936] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[   80.655655][ T5936] CPU: 1 UID: 0 PID: 5936 Comm: kworker/u33:2 Not tainted syzkaller #0 PREEMPT(full) 
[   80.655688][ T5936] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.655702][ T5936] Workqueue: hci2 hci_rx_work
[   80.655752][ T5936] Call Trace:
[   80.655758][ T5936]  <TASK>
[   80.655765][ T5936]  dump_stack_lvl+0x16c/0x1f0
[   80.655785][ T5936]  sysfs_warn_dup+0x7f/0xa0
[   80.655812][ T5936]  sysfs_create_dir_ns+0x24b/0x2b0
[   80.655835][ T5936]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   80.655853][ T5936]  ? find_held_lock+0x2b/0x80
[   80.655882][ T5936]  ? do_raw_spin_unlock+0x172/0x230
[   80.655905][ T5936]  kobject_add_internal+0x2c4/0x9b0
[   80.655929][ T5936]  kobject_add+0x16e/0x240
[   80.655949][ T5936]  ? __pfx_kobject_add+0x10/0x10
[   80.655968][ T5936]  ? do_raw_spin_unlock+0x172/0x230
[   80.655989][ T5936]  ? kobject_put+0xab/0x5a0
[   80.656014][ T5936]  device_add+0x288/0x1aa0
[   80.656049][ T5936]  ? __pfx_dev_set_name+0x10/0x10
[   80.656075][ T5936]  ? __pfx_device_add+0x10/0x10
[   80.656099][ T5936]  ? mgmt_send_event_skb+0x2fb/0x460
[   80.656135][ T5936]  hci_conn_add_sysfs+0x17e/0x230
[   80.656152][ T5936]  le_conn_complete_evt+0x1260/0x2150
[   80.656186][ T5936]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   80.656209][ T5936]  ? hci_event_packet+0x459/0x11c0
[   80.656242][ T5936]  hci_le_conn_complete_evt+0x23c/0x370
[   80.656275][ T5936]  hci_le_meta_evt+0x357/0x5e0
[   80.656291][ T5936]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   80.656321][ T5936]  hci_event_packet+0x685/0x11c0
[   80.656344][ T5936]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   80.656361][ T5936]  ? __pfx_hci_event_packet+0x10/0x10
[   80.656387][ T5936]  ? kcov_remote_start+0x3c9/0x6d0
[   80.656408][ T5936]  ? lockdep_hardirqs_on+0x7c/0x110
[   80.656433][ T5936]  hci_rx_work+0x2c5/0x16b0
[   80.656451][ T5936]  ? rcu_is_watching+0x12/0xc0
[   80.656478][ T5936]  process_one_work+0x9cf/0x1b70
[   80.656509][ T5936]  ? __pfx_process_one_work+0x10/0x10
[   80.656533][ T5936]  ? assign_work+0x1a0/0x250
[   80.656553][ T5936]  worker_thread+0x6c8/0xf10
[   80.656580][ T5936]  ? __kthread_parkme+0x19e/0x250
[   80.656607][ T5936]  ? __pfx_worker_thread+0x10/0x10
[   80.656627][ T5936]  kthread+0x3c5/0x780
[   80.656645][ T5936]  ? __pfx_kthread+0x10/0x10
[   80.656665][ T5936]  ? rcu_is_watching+0x12/0xc0
[   80.656694][ T5936]  ? __pfx_kthread+0x10/0x10
[   80.656716][ T5936]  ret_from_fork+0x675/0x7d0
[   80.656733][ T5936]  ? __pfx_kthread+0x10/0x10
[   80.656752][ T5936]  ret_from_fork_asm+0x1a/0x30
[   80.656790][ T5936]  </TASK>
[   80.656813][ T5936] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   80.686647][ T7397] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14 sclass=netlink_route_socket pid=7397 comm=syz.2.490
[   80.691570][ T5936] Bluetooth: hci2: failed to register connection device
[   80.693792][ T7397] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   80.753694][ T7399] SELinux: security_context_str_to_sid (s@) failed with errno=-22
[   80.829203][   T40] audit: type=1400 audit(1763586677.160:418): avc:  denied  { write } for  pid=7402 comm="syz.2.492" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   80.852558][ T5941] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[   81.040826][ T7420] vimc link validate: Sensor B:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 1:snk:640x480 (0x33424752, 8, 0, 0, 0)
[   81.173185][ T7430] NILFS (nullb0): couldn't find nilfs on the device
[   81.271443][ T7440] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7440 comm=syz.1.508
[   81.291766][ T7443] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   81.348877][ T7452] tmpfs: Bad value for 'mpol'
[   81.372178][ T7452] kvm: user requested TSC rate below hardware speed
[   81.419209][ T7444] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4261517534 (8523035068 ns) > initial count (7554138186 ns). Using initial count to start timer.
[   81.554720][   T53] cfg80211: failed to load regulatory.db
[   81.636188][ T5936] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   81.697186][ T7468] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[   81.731952][ T5941] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[   81.735468][ T5941] CPU: 1 UID: 0 PID: 5941 Comm: kworker/u33:4 Not tainted syzkaller #0 PREEMPT(full) 
[   81.735484][ T5941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.735492][ T5941] Workqueue: hci3 hci_rx_work
[   81.735531][ T5941] Call Trace:
[   81.735536][ T5941]  <TASK>
[   81.735541][ T5941]  dump_stack_lvl+0x16c/0x1f0
[   81.735555][ T5941]  sysfs_warn_dup+0x7f/0xa0
[   81.735570][ T5941]  sysfs_create_dir_ns+0x24b/0x2b0
[   81.735584][ T5941]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   81.735597][ T5941]  ? find_held_lock+0x2b/0x80
[   81.735614][ T5941]  ? do_raw_spin_unlock+0x172/0x230
[   81.735628][ T5941]  kobject_add_internal+0x2c4/0x9b0
[   81.735643][ T5941]  kobject_add+0x16e/0x240
[   81.735655][ T5941]  ? __pfx_kobject_add+0x10/0x10
[   81.735668][ T5941]  ? do_raw_spin_unlock+0x172/0x230
[   81.735679][ T5941]  ? kobject_put+0xab/0x5a0
[   81.735694][ T5941]  device_add+0x288/0x1aa0
[   81.735720][ T5941]  ? __pfx_dev_set_name+0x10/0x10
[   81.735736][ T5941]  ? __pfx_device_add+0x10/0x10
[   81.735754][ T5941]  ? mgmt_send_event_skb+0x2fb/0x460
[   81.735784][ T5941]  hci_conn_add_sysfs+0x17e/0x230
[   81.735804][ T5941]  le_conn_complete_evt+0x1260/0x2150
[   81.735834][ T5941]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   81.735858][ T5941]  ? hci_event_packet+0x459/0x11c0
[   81.735889][ T5941]  hci_le_conn_complete_evt+0x23c/0x370
[   81.735921][ T5941]  hci_le_meta_evt+0x357/0x5e0
[   81.735937][ T5941]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   81.735965][ T5941]  hci_event_packet+0x685/0x11c0
[   81.735990][ T5941]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   81.736006][ T5941]  ? __pfx_hci_event_packet+0x10/0x10
[   81.736027][ T5941]  ? __sanitizer_cov_trace_const_cmp2+0x20/0x20
[   81.736041][ T5941]  ? kfree_skbmem+0xae/0x1f0
[   81.736052][ T5941]  ? sk_skb_reason_drop+0x136/0x1a0
[   81.736070][ T5941]  hci_rx_work+0x2c5/0x16b0
[   81.736080][ T5941]  ? rcu_is_watching+0x12/0xc0
[   81.736095][ T5941]  process_one_work+0x9cf/0x1b70
[   81.736117][ T5941]  ? __pfx_process_one_work+0x10/0x10
[   81.736143][ T5941]  ? assign_work+0x1a0/0x250
[   81.736162][ T5941]  worker_thread+0x6c8/0xf10
[   81.736191][ T5941]  ? __pfx_worker_thread+0x10/0x10
[   81.736205][ T5941]  kthread+0x3c5/0x780
[   81.736215][ T5941]  ? __pfx_kthread+0x10/0x10
[   81.736227][ T5941]  ? rcu_is_watching+0x12/0xc0
[   81.736239][ T5941]  ? __pfx_kthread+0x10/0x10
[   81.736249][ T5941]  ret_from_fork+0x675/0x7d0
[   81.736259][ T5941]  ? __pfx_kthread+0x10/0x10
[   81.736269][ T5941]  ret_from_fork_asm+0x1a/0x30
[   81.736290][ T5941]  </TASK>
[   81.736309][ T5941] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   81.785001][ T7483] netlink: 'syz.3.521': attribute type 1 has an invalid length.
[   81.785471][ T5941] Bluetooth: hci3: failed to register connection device
[   81.788007][ T7483] block nbd0: not configured, cannot reconfigure
[   81.845121][ T7489] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[   81.854119][ T7489] fuse: Unknown parameter '!��%����B��fd'
[   81.883821][   T10] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   81.893604][ T5941] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[   81.952739][ T7500] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   82.021640][   T10] usb 5-1: device descriptor read/64, error -71
[   82.078037][ T7519] netlink: 'syz.2.533': attribute type 1 has an invalid length.
[   82.162815][ T5936] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[   82.271904][   T10] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   82.285912][ T7544] ip6erspan0: entered promiscuous mode
[   82.293044][ T7544] __nla_validate_parse: 8 callbacks suppressed
[   82.293057][ T7544] netlink: 60 bytes leftover after parsing attributes in process `syz.3.540'.
[   82.339106][ T7547] netlink: 32 bytes leftover after parsing attributes in process `syz.3.542'.
[   82.408026][   T10] usb 5-1: device descriptor read/64, error -71
[   82.431704][ T5936] Bluetooth: hci2: command tx timeout
[   82.454251][ T7555] netlink: 16 bytes leftover after parsing attributes in process `syz.3.546'.
[   82.463745][ T7555] ==================================================================
[   82.463758][ T7555] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0
[   82.463793][ T7555] Write of size 8 at addr ffffc90005479000 by task syz.3.546/7555
[   82.463807][ T7555] 
[   82.463816][ T7555] CPU: 2 UID: 0 PID: 7555 Comm: syz.3.546 Not tainted syzkaller #0 PREEMPT(full) 
[   82.463835][ T7555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.463848][ T7555] Call Trace:
[   82.463855][ T7555]  <TASK>
[   82.463862][ T7555]  dump_stack_lvl+0x116/0x1f0
[   82.463882][ T7555]  print_report+0xcd/0x630
[   82.463902][ T7555]  ? __virt_addr_valid+0x81/0x610
[   82.463934][ T7555]  ? sys_fillrect+0x15d4/0x17b0
[   82.463958][ T7555]  kasan_report+0xe0/0x110
[   82.463982][ T7555]  ? sys_fillrect+0x15d4/0x17b0
[   82.464011][ T7555]  sys_fillrect+0x15d4/0x17b0
[   82.464040][ T7555]  ? __pfx_sys_fillrect+0x10/0x10
[   82.464068][ T7555]  ? __pfx_bit_putcs+0x10/0x10
[   82.464086][ T7555]  ? bit_cursor+0xeca/0x17e0
[   82.464109][ T7555]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[   82.464138][ T7555]  bit_clear+0x17d/0x220
[   82.464159][ T7555]  ? __pfx_bit_clear+0x10/0x10
[   82.464181][ T7555]  ? __pfx___might_resched+0x10/0x10
[   82.464199][ T7555]  ? fb_get_color_depth+0x120/0x250
[   82.464217][ T7555]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   82.464240][ T7555]  ? __pfx_bit_clear+0x10/0x10
[   82.464259][ T7555]  __fbcon_clear+0x603/0x720
[   82.464280][ T7555]  fbcon_scroll+0x48b/0x640
[   82.464299][ T7555]  con_scroll+0x45f/0x690
[   82.464322][ T7555]  do_con_write+0x5575/0x8290
[   82.464347][ T7555]  ? exit_tasks_rcu_finish+0x170/0x440
[   82.464379][ T7555]  ? __pfx___mutex_lock+0x10/0x10
[   82.464398][ T7555]  ? __pfx_do_con_write+0x10/0x10
[   82.464421][ T7555]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   82.464440][ T7555]  con_write+0x23/0xb0
[   82.464465][ T7555]  n_tty_write+0x41e/0x11e0
[   82.464488][ T7555]  ? __pfx_n_tty_write+0x10/0x10
[   82.464505][ T7555]  ? trace_kmalloc+0x2b/0xd0
[   82.464523][ T7555]  ? __pfx_woken_wake_function+0x10/0x10
[   82.464542][ T7555]  ? kfree+0x252/0x6d0
[   82.464563][ T7555]  ? __pfx_n_tty_write+0x10/0x10
[   82.464581][ T7555]  file_tty_write.constprop.0+0x503/0x9b0
[   82.464609][ T7555]  vfs_write+0x7d3/0x11d0
[   82.464627][ T7555]  ? __pfx_tty_write+0x10/0x10
[   82.464651][ T7555]  ? __pfx_vfs_write+0x10/0x10
[   82.464663][ T7555]  ? find_held_lock+0x2b/0x80
[   82.464688][ T7555]  ksys_write+0x12a/0x250
[   82.464704][ T7555]  ? __pfx_ksys_write+0x10/0x10
[   82.464723][ T7555]  do_syscall_64+0xcd/0xfa0
[   82.464740][ T7555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.464758][ T7555] RIP: 0033:0x7f2c6258f749
[   82.464772][ T7555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.464786][ T7555] RSP: 002b:00007f2c63470038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   82.464805][ T7555] RAX: ffffffffffffffda RBX: 00007f2c627e5fa0 RCX: 00007f2c6258f749
[   82.464817][ T7555] RDX: 0000000000001006 RSI: 0000200000000000 RDI: 0000000000000006
[   82.464831][ T7555] RBP: 00007f2c62613f91 R08: 0000000000000000 R09: 0000000000000000
[   82.464842][ T7555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   82.464854][ T7555] R13: 00007f2c627e6038 R14: 00007f2c627e5fa0 R15: 00007ffee80ea0e8
[   82.464872][ T7555]  </TASK>
[   82.464878][ T7555] 
[   82.464884][ T7555] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc90005179000 allocated at drm_gem_shmem_vmap_locked+0x561/0x7e0
[   82.464918][ T7555] Memory state around the buggy address:
[   82.464928][ T7555]  ffffc90005478f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   82.464947][ T7555]  ffffc90005478f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   82.464960][ T7555] >ffffc90005479000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   82.464970][ T7555]                    ^
[   82.464980][ T7555]  ffffc90005479080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   82.464993][ T7555]  ffffc90005479100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   82.465002][ T7555] ==================================================================
[   82.465037][ T7555] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   82.465050][ T7555] CPU: 2 UID: 0 PID: 7555 Comm: syz.3.546 Not tainted syzkaller #0 PREEMPT(full) 
[   82.465074][ T7555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.465085][ T7555] Call Trace:
[   82.465091][ T7555]  <TASK>
[   82.465098][ T7555]  dump_stack_lvl+0x3d/0x1f0
[   82.465111][ T7555]  vpanic+0x640/0x6f0
[   82.465140][ T7555]  panic+0xca/0xd0
[   82.465166][ T7555]  ? __pfx_panic+0x10/0x10
[   82.465194][ T7555]  ? sys_fillrect+0x15d4/0x17b0
[   82.465217][ T7555]  ? preempt_schedule_common+0x44/0xc0
[   82.465243][ T7555]  ? preempt_schedule_thunk+0x16/0x30
[   82.465272][ T7555]  check_panic_on_warn+0xab/0xb0
[   82.465289][ T7555]  end_report+0x107/0x170
[   82.465308][ T7555]  kasan_report+0xee/0x110
[   82.465327][ T7555]  ? sys_fillrect+0x15d4/0x17b0
[   82.465352][ T7555]  sys_fillrect+0x15d4/0x17b0
[   82.465380][ T7555]  ? __pfx_sys_fillrect+0x10/0x10
[   82.465406][ T7555]  ? __pfx_bit_putcs+0x10/0x10
[   82.465426][ T7555]  ? bit_cursor+0xeca/0x17e0
[   82.465445][ T7555]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[   82.465469][ T7555]  bit_clear+0x17d/0x220
[   82.465491][ T7555]  ? __pfx_bit_clear+0x10/0x10
[   82.465511][ T7555]  ? __pfx___might_resched+0x10/0x10
[   82.465533][ T7555]  ? fb_get_color_depth+0x120/0x250
[   82.465551][ T7555]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   82.465573][ T7555]  ? __pfx_bit_clear+0x10/0x10
[   82.465592][ T7555]  __fbcon_clear+0x603/0x720
[   82.465614][ T7555]  fbcon_scroll+0x48b/0x640
[   82.465635][ T7555]  con_scroll+0x45f/0x690
[   82.465660][ T7555]  do_con_write+0x5575/0x8290
[   82.465681][ T7555]  ? exit_tasks_rcu_finish+0x170/0x440
[   82.465711][ T7555]  ? __pfx___mutex_lock+0x10/0x10
[   82.465730][ T7555]  ? __pfx_do_con_write+0x10/0x10
[   82.465782][ T7555]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   82.465804][ T7555]  con_write+0x23/0xb0
[   82.465830][ T7555]  n_tty_write+0x41e/0x11e0
[   82.465855][ T7555]  ? __pfx_n_tty_write+0x10/0x10
[   82.465874][ T7555]  ? trace_kmalloc+0x2b/0xd0
[   82.465895][ T7555]  ? __pfx_woken_wake_function+0x10/0x10
[   82.465911][ T7555]  ? kfree+0x252/0x6d0
[   82.465940][ T7555]  ? __pfx_n_tty_write+0x10/0x10
[   82.465959][ T7555]  file_tty_write.constprop.0+0x503/0x9b0
[   82.465988][ T7555]  vfs_write+0x7d3/0x11d0
[   82.466005][ T7555]  ? __pfx_tty_write+0x10/0x10
[   82.466027][ T7555]  ? __pfx_vfs_write+0x10/0x10
[   82.466042][ T7555]  ? find_held_lock+0x2b/0x80
[   82.466071][ T7555]  ksys_write+0x12a/0x250
[   82.466087][ T7555]  ? __pfx_ksys_write+0x10/0x10
[   82.466107][ T7555]  do_syscall_64+0xcd/0xfa0
[   82.466125][ T7555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.466139][ T7555] RIP: 0033:0x7f2c6258f749
[   82.466152][ T7555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.466171][ T7555] RSP: 002b:00007f2c63470038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   82.466189][ T7555] RAX: ffffffffffffffda RBX: 00007f2c627e5fa0 RCX: 00007f2c6258f749
[   82.466202][ T7555] RDX: 0000000000001006 RSI: 0000200000000000 RDI: 0000000000000006
[   82.466214][ T7555] RBP: 00007f2c62613f91 R08: 0000000000000000 R09: 0000000000000000
[   82.466226][ T7555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   82.466238][ T7555] R13: 00007f2c627e6038 R14: 00007f2c627e5fa0 R15: 00007ffee80ea0e8
[   82.466254][ T7555]  </TASK>
[   82.467087][ T7555] Kernel Offset: disabled

VM DIAGNOSIS:
21:11:18  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81615943 RDX=ffffffff8e097a00
RSI=ffffffff8161598b RDI=ffffffff93a6cfe0 RBP=ffff88806a420000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff274d9fc R10=ffffffff93a6cfe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161598c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005555567fd808 CR3=0000000054308000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffee80ea470 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c62615050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c6261505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c62615057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c6261506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c626150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c626151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81615943 RDX=ffff88801f6e4900
RSI=ffffffff8161598b RDI=ffffffff93a6cfe0 RBP=ffff88806a520000 RSP=ffffc900006a0fd0
R8 =0000000000000001 R9 =fffffbfff274d9fc R10=ffffffff93a6cfe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161598c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6b05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2c625753c0 CR3=00000000500aa000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff11a57e50 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba23a15050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba23a1505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba23a15057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba23a1506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba23a150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba23a151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000ab4
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 0000000000000000 0000000000000000 0000000000000ab4
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000074 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85297215 RDI=ffffffff9addb780 RBP=ffffffff9addb740 RSP=ffffc90004bcf150
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=666f206574697257
R12=0000000000000000 R13=0000000000000074 R14=ffffffff9addb740 R15=ffffffff852971b0
RIP=ffffffff8529723f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f2c634706c0 ffffffff 00c00000
GS =0000 ffff8880d6c05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3c539f CR3=0000000063d2b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020100001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c6346fbf0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c62615050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c6261505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c62615057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c6261506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c626150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c626151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a732520656c6261 7462650064656c69 61662029736e7465 6e28736e74657300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1f56000540494744 514740004140494c 4443050c564b5140 4b0d564b51405600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81615943 RDX=ffff88801deb0000
RSI=ffffffff8161598b RDI=ffffffff93a6cfe0 RBP=ffff88806a720000 RSP=ffffc900006f8fd0
R8 =0000000000000001 R9 =fffffbfff274d9fc R10=ffffffff93a6cfe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161598c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6d05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2be177 CR3=0000000063d2b000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ec0024
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c62615050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c6261505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c62615057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c6261506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c626150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c626151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c627ba4a8 00007f2c627ba4a0 00007f2c627ba498 00007f2c627ba470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c6331d100 00007f2c627ba460 00007f2c627b0004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c627ba4b8 00007f2c627ba4b0 00007f2c627ba4a8 00007f2c627ba4a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000