last executing test programs:

1m5.410282885s ago: executing program 2 (id=984):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r1)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@newlink={0x40, 0x10, 0x401, 0x4000, 0x101, {0x0, 0x0, 0x0, 0x0, 0x20009}, [@IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}}, @IFLA_ALT_IFNAME={0x14, 0x35, 'batadv_slave_0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0xc014}, 0x8010)

1m5.350142276s ago: executing program 2 (id=985):
r0 = socket$kcm(0x29, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x8)
r1 = socket$kcm(0x29, 0x7, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000180)={<r2=>r0})
close(r0)
ioctl$SIOCRSSL2CALL(r2, 0x89e2, &(0x7f0000000380)=@bcast)

1m5.349617086s ago: executing program 2 (id=986):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs(r0, &(0x7f00000003c0)='environ\x00')
syz_usb_disconnect(0xffffffffffffffff)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/llc/socket\x00')
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r4, 0x8923, &(0x7f0000000040)={'vlan0\x00', 0x40})
write$UHID_CREATE2(r3, 0x0, 0x1f3)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x20182)
ioctl$USBDEVFS_ALLOW_SUSPEND(r7, 0x5522)
ioctl$USBDEVFS_BULK(r7, 0x5523, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r5, 0x3ba0, &(0x7f0000000080)={0x48, 0x11})

1m4.579333006s ago: executing program 2 (id=993):
syslog(0x2, &(0x7f0000000440)=""/190, 0xbe)
r0 = socket(0x23, 0x80002, 0x0)
recvmmsg$unix(r0, &(0x7f0000000640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000d40)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
mount(0x0, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x221000d, 0x0)
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x86, &(0x7f0000000180)=ANY=[@ANYBLOB="0180c2000000aaaaa2aaaa0088a8100081"], 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000100)={0x50, 0x0, r2, {0x7, 0x2b, 0x6, 0xffffffffc0414800, 0x0, 0x4, 0x1}}, 0x50)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000740)=@newlink={0x3c, 0x10, 0xffffff1f, 0xee020000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x15208}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8}]}}}]}, 0x3c}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x0)
syz_fuse_handle_req(r1, &(0x7f0000004200)="0aca6c6a1bafd2989666a6014bd5e9e63945bda64c1239d970f0d349110c18fe029ac3e29dc9ff9ead2ed3cef0fe77ef8348a82d3da186ce2140d53dfeb34dc1e128dca5a5225db8052bd348c2d1a3de224233032fff8b85c85885c90e9d0c205001db3dfc55d17a7dab1761c1733c465113c056d3bcbaf6a52dbda820a1db5e7d777f6c716e5f60b04cc1c6a362d891cb08fa109c5a00e427f8636059d934f255021cf13d2bc9cff93f049018b8e48f6480d324f08eb83655d3eb5a379ec18c861f596db17bcc23ada65f26a02c4c0c9e3167cc582e93661cdd0dc7581ac1958d9cd08104af251d87d8b5d82150b8cc4ca6d23475f259a8b7d69839cf728a6c478eec56135bdfc6428a318cf2b838d16984d0498d33ac41fe67361bdf5752db6a5ae32979463b60ad6b99527affdcb2b4a0f23b2f140c981b00c99cd25d563ff6c3308b048371eb2e599880a2b67ef9a2282947dbb23a3f1944193a801187f206587a52ee7a33032a842b31fcc0db079c554c97a09e3812aea45702099ab648888d08ae48a187a5acee7b9a2edbc320c64514554e540286053dd2acb9f9ec83435f43193b45b324c8406cdf976bc7607cf9385e99bf5f5205110d0c27abcac49e7ec7deef560f953d2c64bfd014ddcb1b2cbccbe401a312436799235807f4fdf52a9f894656fcbe1e971163e8d743450c49875379522df77d5e8910df837701d135f4589d4d15355e1638eff568a18a0d6217a11acf8fdf0fed0216635215d248aff37d85b62edbc989bc6d4757e6347ec971ae2b1e0d194e6c11dd8f7c108219569e157eceb7c14a288aad98a24de9a81f9ba1dd5271c17adfdf41f3393789c30f9345f6ad4ad1a6bf46640f69f7c038c4fec6652853a3f4fece3c3d15bfdea15f37e961a03de54181724801808a3a9030ba4650ce6fa9e6822c794d7b9da548a2eab977ab0c08b2d985957d5cd70ec677637219c6ca7c7c4d0a7a7ca38c1862583735b46b3addfd1c72cf7f63f11bd85ed59b9ba94db5c2fbd48461ab735b439a992e3a4462545e042e3c863199c006ef3a3be4473b24b782f86a3c1dca9848283bc47f4322273681efa1c8c413dc81a459e4e755846a094971708eb7f428aa67d0c81ce7f33d856e13a342b05eb403af7b4cab191c4ab9d650158808ec74d04f4b765e513b94f10345322e48485d29eb8b1408d7776f98e3625a20220e94789476affdbd19b44bac6bd2fa2b0ba10e93582178a3ef4938dcda25bc6245621b1ced780ca089010e8e51493c1ac7747e949b67fe6e3858e60a1e45a657c080fdc0bcbfcac2ba9d027f02ce30cc7440ce71eac66bb2eb264dcb1306a6054fde6640ca51ec4ccaf500a87f073b58ab286daeefd8d3ec7ee882551f7b6a36ab79a8e10d1d3c234ffaa33e95026025cc39a057efe7823dcb689131b1e83572b4dd1f49097580976c046424618fd6047d46928087d483df952738448d164c9288b15a4982493bf7ebc1976d0942846c8310556732b4cabff937a51e926caa37ae54dea339c2a2a8d73be2ca3a39edcb4ef8bd58a3c4c98c48b9f37a1424b6a54919921d4429611d0dd585d1d357c3c1ad1cf68f36907f8d9c28a14ec2cf2510fe54510111ddd7a67fb8d2f449227da397c32b8dca19971ab9d76e1f6ce0c54c9de1cb1daa1936b62f838170b8b6e7f34168a099619a113c83347ce2c0f6086855385062b6e074b68391e59430236f9ec687a265072f7a40efbef3cfe5bc1cfb364d87a597507811d2bf6af59e20fcf4703caa63285decabcc367ccfb8e27efecb14db8b1167938f457d4117c62f440d807b5482bb223b4b14e9526f9ede33631cdf9fcab53b3fbebc9344ab130d793dad610f2fe41ef388acaebd6cf26aedf7c7c6aaee956cf92c14583bd45b189d43f7b44419df1e0adecc8fbedb357656b7649721f81c2207ebb37e3ae21bdce8c982cbbdec012c7fe587161ff741610fb8ea5883c758527873ca2197b5f1058083c40203cc4dbdf7f4f1388f2309d22a6a1767137703296ad3aeabdbb3529a290da9c6cc5631b2f1ad25c766e3cbd8d9f588bafd17495f572bf1cfe1e8b5bb22130963cca8832f846300bb6dc0baec85b500e1a48fdd14cf0442fe4d441821d7e46fb5e2220c96bfb16ab8ca883a4477bc756dfc6622f320a648cfb57f9de9aef33f9986c6517d1a7eb59348541d6d3494ebe7bc1ed4a86f06411491d176da36de8c8a8d8ea28928bda63fe863277e4325b756421d4d2042428250ed526e538fb930671e9ad517aac494a58aecbc908b512016fe4d8f60b576e230b3206a0c7bd4fef717a8cda0029d13ecc3c8f8686f717adc1440353c236aa71f842839c5ce92c83fbfb57b221271aa6f4029219c3c2ed7a3a53d8ff065ce30d403c95cf69e7963d5bfb63bccb5b28ca125f0d7094072273ce3108093d0ff83ab98393b8e9a87117f4933a8c8ecf353931da3b8dacb20685a65dd865bd6031cd2b0b7e237901c782c6e6ea8742e89dbb01eb925dd6e74c53bd28d3c424cee35eb29823f2138b92516075e00342fa4dbc5b27675a651032c8ffb3da6c5349d0f9b2779778d0cfa1c8d4cc34d4fe95fc435e4768e93d56d2c142f25df1b9afa7d103486842372b36261b96b7b3acc0e78ff20a535ed515ace0cf3300168a7ef42d6bd511c019d0ccd7599ba70cbabc95f34a052fe9d6f97b49dc1cde40d5ebf305797d7d572a61cd38a0cf85f28c5d018648b769327bd9559722d5422754f26c9e5439b42bedf34e31bbc845b99ce315eeeb0383fb3ae021084cedcd843b86831c78441ccc0d2c23de528e53cff785816a3a3d99b4a4684df9546a285203bb615eb480fa8385e90226b27b39a7d50c83babf5ba890da1a8848ba372971347dc34b76370544feb183b9292043f2ef072b69bcff45b1917c073222d50bd585f2173bdae673198b95b67f8387f6d2b2934597c5ce165fd420ddcc01d29d71d532b5d127afc98657845230e363cbb9ecc05b247996ecbfce0e8215ec7dc5e9be115de2e7ebe8fe3e191f455d244ad1ce75c828a2adbbe509589f389936e62dfd1ecdef105162d357cfb22412b64570dcb04fe18bbbe5518985d7316a75a19a16a482105b7fac923e1eefd780d036ccc39e3cc53d2002ccd10004be1694be4110fb062110e1a44ba88acfa282d9c7cdae0cb55f48f7caa3c324d9f52265d21606a20779accdc9f69dd0fc49e4bc2c49891e526561569abe5673533c8a9b6a3004c809d3f7452b02787047d4442df3f4cc5d47e5aa73b7994c113541ea312970f2e741d4fd50a83f5a0293fbd56d619aa4bb3b491606642fcb922b5ccd6bedb442e450609343e18f61abb3a4b2fc69e06a72edc7bcba0da06da3e80f59b737f088d01f0dbcad89003b505fe29bdc8118e3fbcdb90a4f464e0e70d20f093790ae1b9f6f8a904a268cb4bb116404de1bd4c3f9522c36893a902a3a90f52670b7ff2074815329f3fe2c8ccfabe2d812394e6b0e34741abece71b7db0fbf0a80e6c13bc7bba89a4ee01cad9dd76e49cd91690db6fe402640db8b3523c49bcf611a9da991123edcb64ef505906d8ab4b8586e631828402105f045cff3681f2f36e3713be5bcb6af157278b194a51f04d04507231aa6f4d77b4065f2a97894c201b23f7b5f79b029c74fc4c57fff87c03e01210674417c1297155ca7a7fbe855fdcf65561619ffca0099fa08ddc8ddd7f713b2b0c6af0fcc4bd4cba9e9f47debdc6d9e6e2dce63fec20efc51e15d013fadba2707a449dbfd025f1a7c329282c797b2071afb37a89f8d58c1e3b4f06586f00a433161373548b699fabd92771346a25ff10789ca89cbf00f92248c6b8468f22aa4cf7ba90aea16a3cc2b1ee598609dfbe75fb8e11c5003ad0c9ac7205cd35552a53703f06e465633f9653cd670952feb9e77db960ea18914235af757e75204d1f74de9829dfac217d87aecc1c80066426f12e52883bfcd982e54bfdae8ef55f3b70f78bae9e6a1e24388c642cba3b3215602294bb7d68bb6f8e0b24c0b6e99df504c30beb2a7f47b02f9af6511eda25407c30dfdee39ec8db32d93e1e09472474883a87b7b4664bef06d5c0a43793237187acaaa9654f74e5d3bf1ce389befc139fba61378e7b66b4b0d87334732592ebd0e4989373ca541b92d003e67e0292256c256344dbf03ad24540f11cdc174b45d3781c1da793a460ba671373a0fa082ba63f5418733c9907d360c9bc54ba0e2b374de7965a87316df1c7af17164e1b6dfe32d71fb5ba641bb8d6cd6299473f37e44a69e90a87cd2f8a486a0db4eb104bf87d9f7cc87dc294e6debec7e5819f3f26bdf4cac91f8ee94a826df99da39a4bd6d476943428e3f5009546ee569d6273f7ecb115538c6ce8fe150249c89452c2f0cf0796208a216fc2cb55e1b6c892778f15e7f8b78e6e97093572a29ca3600c72feb4e1ef42a225da695b3111777f3833e306f2a90b8ed6095127b0f13be495a3321bf8201955d40f6b486904a4e1f4c9965563d30277b30cb0d1ef375338a25314fc5abce41f1e95118e89455af9e786cdc460e4e48fda5f21cece9b4e5276523d6919e165df5efe59aff13067d3ef0e82259305942b5f25e831dcb72f5c7fa67ceba7678078d8311aefdc91916f8c1db2ac61188b46825707dd26d29aec734df8bebd7474277908b2ba9e77daea20c395253b3cc876e5dcac960556072bec36e14da26c335b509a38dbf3037d620f4765e63b946ef8ada1729b1323acc8b5e436f3967ab7cc033ccb7d0c9cc74d3a3faa2ff2afb1cd571e3749cb0203e70756273fc6a4d80cf646d551f3a801ca513ac587f0ddc8c58870d817ea2671b2ef30be91a45dc730c6636e7de2ec235044b837ed9861dc89e4df342cff52a29ae6b8d5817fe31bb3a74d0202efca5d94b4d232f3dff885bf52f8d43097d069ce81220e8578c630d496b01fc60562bfbfda22fce6ce68564ab31d1a3d38af2d7b73a970b9b30f6c48dc38991da402491b2d643e0f5e71bb9c0aa834006ddf24b7dbb180f68751535d8cc34823ba3d1ddfbfeb6a15655118d4e1e11b255b998006906017ad9978d6cf4a45a669eabf653363391e77a82a9da14d184a50f1421eeb61411e859cf6f98ab0846ed5345b63e3ad004d1ffd1e48e6574ba7d832f7ad1345b8df27f7707245b335ddff2e4ca1430ec44af208e633c25678b3cfee96424ca026b159bb18c1bdc51db6c66e8788e5aadce1d3e531c9b02edc65b846763ee64113c0cd0d23824c4baf3516e2c8e5192afb9fcd390e51b3bcdcc0a49f932a6907b38713e2229aaa9abc5305420f50a2016429012e835407dee7d8d0b8404655620c3df407e7be2a5a1e668341dd91224509ffd48db6861f558d098954f83aeb6e426099cc4291da311c37bd46c8d80c3ea975e0db6ce12dbdae9116bf08909431fd5483f7cb3076d33a900d56c26d6f151386abb32ea335f5337683201a1ce5d9df25c5df29a375d2680827e182b1aa0813ee7f9d273d7ce1b86194a8cf48d630a5be0b947245c1ee0a0645500ce2ced6dade1b63c0e7572260cce25636778d79ef11ed5e3c42835c8e53a6d26cf85293050cedee2a116e5f38b9cae91a503ec9e0cf784d9cfdccedf95971540ec37926eb43b27cbff1d96b83f80018e6afec70523b6672111a47f9922db34da15d7ca3cc3a77f1abe7221b72d43d2cb4c23fd2bff6cd5ef6b31b6a4c65babcdc918b0d99fad656e471a20a8f4b66d6e37877da1a8b7fb7a8692d6d578ff953b18deebea1353f915102e4d2064dcf8eb0965a2f4c2eeda70b4177dedd7597797ec76bb72ee422ec4d16e494ed77c9bd843ee01885cc3aba1f77806e8f501b856935494918ef83379ac5ae1e06697606053a8c5c880975d1f085c93f2adb1bd2c6ae07c29bbb245cac4726a20a2f61ded013722eee8878933a90319cc8cab7a2bc69dbc79767ba18fcdd8f9ba7de44e9f0575994b28aa9e3e7b4c1f2ce0eee264dfefe3e1600cd969683551894d28b690122093105133b22ee04a50f4883274cb929beb1bb45444ca5d470c0ac611c4990eefea25526f590b269ad40d23842c5b5996c1cb393dbff28a7e2f7cf04ac30fbc2d29ece6708fad830bc523fa52d2ebbfda27379e8c48d085b260a2dfc2e8d7e1a94a245b518612bfc9ca0260c8fdede5298bf584e5d71fc131f5eb6ad2dd7bfd42a77f523eb0aaa787003fb71b9a64fa783e918595af0413fcc0d7818a514c055a48ba9b1bbc6c974f7cb55c3af3edf117835d169e5e2b31e4278d0419b23625ae004171eb2ef8c231a61331886234b402886b4993ca6376f8664134cead1bea142bbed5d46e3bb71b0f8a4cec0c79a9b5f6c823128d02063967a5363b6bd6e242fa3fd21953fdb57725f1eda22984bcff8e40f2076fc0a462706dc2bd95dc447a2aec2a8a4808f2930ff1353348942e28204af42141fa120c8e5fa9c225d16f3624deb2ce178fdf594db504159bbf475e8bee281e3c8ebb29b404b3fbd13dea76df5aee05ad6a85054b838e149d0ebfabe61dcbda6c3494e170e75633843a01e2458b526ac5424177d6bc4706a09694be1c372cc79cf7c4d82ff4e62489d1fc7819d749710035a6fac239d716b57a1af1346c1e8420dc8ae46fd18245160d43a40c564bf11f0232bfd1fed67ba1aebce120ee93a0a000570b808d9fcd60b622c59ad53ef535c1db7de15b52ed2540708eb5baa7195e1a86990b6611ad5c50127f7e876f8031856e9a2c0566f357d6c75e6ca5f217d428602fa7c8f7fb9f3abbefee76d88b3b08c3be2f0d093ce96c6a00f3a157dc0a05e1fc5d8de583c25e09c77348f5825fcd4631396f3e8c26f5c1432784eb8c377fb520d28aedcaa5addfda6eed11da4d2cc91c2e3c3728c763c9d58283af32d00aa1910011a552adabee99d1387d14e582cf68fea46b729eddd0d3ad8eb9125d5fb060f4d6f70a166cc3ce9b02a7bc65200399fc2a47b90039ac23afb853925195e8079da20cbffea72365158fbd94a6e0a654f6c09a8032fb26df99913c2300e03428ab3cd1b3f7aee15460732d445b4797673b47a93a325b2e5157106ade0959be9c4562d5a4292a9ac94940c66375e559f34e57a1158b5d77a5dc9515bdab63799627301f19398d84c7afde812100a65a1642e9515a30434d344b380a92eeb2013a0f63cba648c37095bfd985c607b120f1769a79f1fd7c03f09f966b72945606ade67f9aaa631948bb82f9ae3f89ecf6db12c02d174f62ad6e1b60f4819ae19f4979e0f9dcf51bedf4b1bd1de73bc2adb1923544ede6dbd40ed4c559cf1f079f5dc8986691540e13f5a2505cc0923ca8fe2608ec92b95dbb5facc320e43b2049b79eb02618f6fab08b7e9dbe00fcd69b338b1bb6a9beae531972e16a19d94bd2273c4d042eca34dd7c5aebfbf16552681ad4e243824a9c5d0d8b8d3aba4c102fb76c216c230c2ec34838a0817b03a04480c61c899b2e442bcf2567d4e73000d9c9d4d0acb712df0183fc288634cfde234b94fdbbc0b7e66ea5b6437f312167b1ea93e2a6b2105308d8198a2d4054ba2ff2855250e0e6c952364056e2d3d09e5a2c578837d6521ffb82780f169d07f2f032b34d62f2712a77a56175017257ea1caea41acbbc520b429bd4e3ec3f9a6eafce46731dd3396f1ce1a6198927fd2dbefb3f77c9173be0934747ca47b98c6548c8cd07249d9715414b8a8ddc8430575d8b8903d3923089282a3ccead6e11044c67f3d5d8ed8cc0c0331f2dc09e1bae77ab55307e6445ad382451eff64faca8a4c0cba7cfa2fc9b087afb040e594115c35ce1dbec69ef1e5af8003339afda5faa1be1a3da7c5cb84273009c32d300fba7d222d2dc783241a9414ee30c8bd7e655c09a7f50dfb249ae9b15284b971503f6ce8866a1b36f993acf28d387da88c8defd323d1cd91d4eb46ff87458269a134675556b067a1b71829b7706ba58c93a919884089dc333c9b5d8279dbcc20071991762d2569c8ff5f21783e2961228b2006f8805750c0f9f4f9dc3df86dae1ab98af22122966a6ba04ccbb2bdf90e91e1f2595b979b6934fe132eda34cec0f83132f3867a197a6dfd0d43528bd56613732704bb62b12f4ede7439b2150384fa04db658fda2ddf97ab571f02d150c50c95009d0aa2e553019ac1cf9bbaf15474bf66d69224913b11080badb47d4a085fa13e965de6e95b7aa6e07bb212774d0240738cc07ccc1670d33c100cead3fb99c3f32fdd97c9b16956b1c22a90cd5c7aa0d920dae9e2b149fb5f9870129a0e97d1edba0dbf8fc4fcca6c65c639dd3eaa8803b1e9e601907e086ed1079ff6bc6de941c91df0634ce3730b8035bfdfa699304666920bfb092354da1f0bdd28c9023bd2e152e931e82eeabb86b0323c789daac94422eb7855f18775917e12feb85019e2e017303002ff8e04513ae0fb03f334a76addd8fcbd69ed25931f44044eeffb5d66cab5a22b21e85324946ab15408dd5d68b17727d2e4779bc378750eaa6ef6e943966c0dc4d066c6b8b8945023a0fc49f81a9c15a35d350e3d741652b8a8014b3649dcfd028f25c0b38b7cc14f7e375acfd3960af2eefc49ac6589f38791c9c0b0ea4e55992274052eed15cb8de213794636c4db2385eb9bcfc28f8a97e7c7ac949cd519ab62d1ab10d855a7ac6acda00b78d35d80a9ab4b7099603782384c461dee90abcc14a539779435cf0677eb0b6ff7e47488667788f9b0fd7d5e0cf53aee5ca0071fa30c062da3c44e79096e24594c6e202b7cdbdc49be2ddac8058c7ded15f07d4c413886fdd7017b9fedb86e39917fd1e81b294675bde06c8fac0dbce7f4b90b3859c66f9f6fec640c6781728a8b347da28b4360924ef68c3c740ed5ddbf013720c6de54d9bce5232864f9e80a652cd778641c327876b2a3e1049355a58fb5054aa17064e97142d64be9daf5d1b162566a009c69133f60e3d4c2a53c153185c659d16236fcc1690eed8c6c2e4f8b172eec457a9407003ddad723e3b183e81b17ddbe46ba368ab3e3ff574d9e3fb82e102ab46d7f608e235d064ea963fdf1622ed7278a27fd8210ad39c3acd9069abba71ca051b64561683068ca6a1be906c196ddde1839b3897d5af8fee51614d73e51511b03a5763f3ed3e64bf7293118dc321cf5e940a2829c6b8550083d66d31680fb55af098d9ccebde9882f818c29f4cbb55c26a97c359d8606bff3744ff3efc22e8d34e67b7c97b567483963c574bd1dac8c46c911c48b6e29e73e52f8c9385729a73b70d2ebba9e744247d9003a962fd607686e6c5972b59616acfe327d8b736f38c703832d7690c6474641bf87538e785353c1fd7df1b5ecb1200eed8c5857abd16c26ae72d0147de475b0c4bc98dbff530b334c9c50607bd46ddbcb1ffebf7513cc842e4cdd6c8c00a284e81cb531a04f75210add4f73db3da9783694fc541cd470368c8776973f02835dc355ef54ca90a580a45a2df6137c43b151ade1e51bc879e7fb43141541bfab79b3eaf0eab323c7147ecce6eb3eb3eb02a204755cdcc7405ad903b91fa4d297262cf77fe395a18e269ec36bd534d4939e78719d7c312ce5205979b2fb92fbf9e1d1effb0f663b9361893fcb11bfd66c92af3394e899876990883e9f5374b5642c68e8468498612e3848d367598c2cb0806b7f0c7f4b004dde2b4cc50161a4d293f2ec89c4cd35a767736f9282f848b9d1cdf405f61abcb3e50ff4092d2afb86fdceeec4791d892546e29495f97876cd8015f193113f1b8584a9ff3f32650e29126b81254961e677b6f67023295567f574364b7320313db988616ac123368179beaabb5a56257f0b6df8f6956324ac31d3e8db83dc994425ad80e235051af62ec79a6dc4bfa36283af72af26136c8f5eeb32e1fa1b9e21a228a2a12aed39e717e8f404334d8367ef3edceab1f3e250ab9dc1e89f9b84e658d38806f4d4a09ff07ca539077a5a496699a9d7d4aafa78120eb90f404c2a6ae00aa1c813b25cb6ff9dab8b66b1dd83c80c1225aa24a47df3cbff7f6842d9486bbcd4179150e1bcad3caa604ac1db71aac913c9d3cbc154182187e2aeb852011b22e40b25f9cb31ab7f458a11b1836085c4a99a633215684e7fc70646ee2158faf8329c320a3bc050cdbbac216a18a88af2dd1bb4d648110c5c90f7f5948128eafbe36c01ea709ca8b5fb8ad9eb7384feb7055220aed45690664b0312052792a5b9dfc90a1248995cf68f80b7822fa577724ad143b1d987d2fae7992d3ad270e6b1fc4f1bb3130f134607e8129a6b1442ac05f114062be3604d7cf1595022f49e7cc55282f0f666ad6ff3b03d692c2a66fc2eb5fd0751e4514229861e2343d43162dcbdec156aa5f2c5f9aafaf470f17e5ed688b3516647b9a1a220e843791ddda20fcc444ef63ba31fc27e62fee4676f097f3fecc625755b26ad48dc7ceec1920443c6c466c7bb36e91082f115f4e563a562af1ce5cf37c45bb2da72ab39ecf00e0349eed7e87994b6670e8bde4f4f9142cb99f6bf36eb41bb4dc72b6c6a6686b63fa21c167b1ba5ff481abcc2ca29905d6b75eff932296d75a90080f3a727690eab0e804aa95b545f55107d308f4cd9884d75c28388151a72e82291f79eb52921718903a8bf029a3e7c0ce28f204926dc221f78711a08834a917a0843d8249ca317c7154b88a5a10a09d7477fcf2d6296725bb6a69c2739964a768cd6ae51d7e7de63bb17fe7fabebb0ee46c285c683a41203d059a5c89024a7f3c59915121921000075ed397d30ada6d56e6caa685cb98cc0bf279fa2d96408611ae7e43c3bf70f73148c6615f20060b5c337c6555a3bdb1870bededac9eff951cf1c7fd4f0046d7661789bcfd56fe6198b502e01f90333ad6e9354db449435d0506526bb0c65595dead87be428eb1b988906de152f9a7f126ede6b933c2de1f7d20ec3e64c7468906fba2bdea8b300bab203542dec13a90e4195b3f7da1b669bfe9e8989440b24807ffd44d9e3d61e098caaa029a7063d25604cbacc5f2b3671a163b80a440948230ae90dc3bd7fd46b667cc7d6dba2f53775e9a2180ced0e1cdc6e1275e741607d6dfe40f91ec81602f9bc7c26c322b82114949fd17a9284dd2918326b7880f42db6e468b80f980db98e31ad57be1f131407a0d099cbad9eff25916048e4210c0eb0b68d4d11cc1545cb46114b3969ad0d7a6570b7571c877ed8060cf8b736f8c82ddb64d19fc29af3453f0efe33c68c21c7c8c054707790cf5c056d0ba408d077fb65cef8fb071398ce35cc95c48ba546230f4dd60ad633f81478c87019736044783599a17d4dafd30cc6f4278cae2384763ff2ef395b8e7265ebf0453cef5c98e62a0e48ad422af17a4eee1acc10a51a3fb6e98594309e4976f71027dfe7a9593cdb6860cba745f2346c8d4868b07f381d3c137b396780545e0ea331e586b176821e45f67761fd8b4c6cbbecfd34b72201f6145a6b06eaa8fa9872a54734acbccad497390ff69f676c496258479aa06d9fd1ecec02a01216fd66554afbd5e728608f4572a4d485e57ff5bfc3df", 0x2000, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, 0x0, 0x0, 0x11203}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_NF_CALL_IPTABLES={0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44890}, 0x0)

1m3.690523807s ago: executing program 2 (id=1001):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000003c0)={'erspan0\x00', &(0x7f0000000340)={'gre0\x00', <r2=>0x0, 0x7, 0x40, 0x6, 0x10, {{0xa, 0x4, 0x1, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2f, 0x0, @empty, @private=0xa010101, {[@generic={0x82, 0x11, "92cfcb43501ba04269c9e387cc7ff6"}, @noop]}}}}}) (async)
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400)=0xffffffffffffffff, 0x4) (async)
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0) (async)
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000680), 0x80000, 0x0) (async)
r6 = creat(0x0, 0x77)
sendto$inet(r6, &(0x7f0000000440), 0x0, 0x4010, 0x0, 0x0) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = dup(r8)
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2) (async)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1f0000000000000000000000001000"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r10}, &(0x7f0000000080), 0x0}, 0x20) (async)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0xf, 0x5, 0x2, 0x5, 0xeb3db9b074e3c828, 0x1, 0xc45c, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3, 0x3, 0x0, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0xb, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x13573961, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @exit, @initr0={0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x200}]}, &(0x7f00000002c0)='GPL\x00', 0x0, 0x2d, &(0x7f0000000300)=""/45, 0x40f00, 0x48, '\x00', r2, 0x25, r3, 0x8, &(0x7f0000000600)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0xc, 0x2, 0xc}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000000740)=[r4, r5, 0xffffffffffffffff, 0x1, r6, r9, r10, r11], &(0x7f0000000780)=[{0x1, 0x4, 0x5, 0xb}, {0x2, 0x3, 0x7, 0x5}, {0x2, 0x5, 0x5, 0x9}, {0x5, 0x4, 0xe, 0x1}, {0x4, 0x3, 0x0, 0xb}], 0x10, 0x7, @void, @value}, 0x94) (async)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newlink={0x48, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x1002, 0x8243}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_SPORT={0x6, 0x11, 0x4e22}, @IFLA_IPTUN_FWMARK={0x8, 0x14, 0x5}, @IFLA_IPTUN_TOS={0x5, 0x5, 0x3}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x0) (async)
r12 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_DROP_PRIVILEGES(r12, 0x4004551e, &(0x7f0000000000)=0x401) (async)
ioctl$USBDEVFS_RESET(r12, 0x5514)
r13 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r13, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r13, 0x400455c8, 0x1) (async)
r14 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r14, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newlink={0x140, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x120, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x110, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0x0, 0x2, {0x0, 0x6}}, @IFLA_VLAN_EGRESS_QOS={0x34, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x8, 0x800}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x5}}]}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x84}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x2, 0x5}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x80000001, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xfffffffffffffe2e, 0x1, {0x0, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x96ce, 0xfff}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xe0000000, 0x7}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfffffffb, 0xffff}}]}, @IFLA_VLAN_EGRESS_QOS={0x0, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0x10000, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0xa8b7, 0x80000001}}, @IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0x2750, 0xff}}, @IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0xff, 0x80000000}}, @IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0x149f, 0x7}}, @IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0x109c8f01, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0x7, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0xe}}, @IFLA_VLAN_QOS_MAPPING={0x0, 0x1, {0x3, 0x8000}}]}, @IFLA_VLAN_INGRESS_QOS={0x10, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffff}}]}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}, @IFLA_VLAN_ID={0x6, 0x1, 0x3}]}}}]}, 0x140}}, 0x4084)

1m3.68797882s ago: executing program 2 (id=1003):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
close(r0)
recvmmsg(r0, 0xfffffffffffffffc, 0x0, 0x2, &(0x7f0000000400)={0x77359400})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1cd)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x42)
r2 = add_key$user(&(0x7f00000002c0), &(0x7f00000023c0)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f1068109e733e1a6876", 0x10, 0xfffffffffffffffe)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r2, r3, r2}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a0101004414050300000000000000000a010101000000008903ce0702"], 0x0)
openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x1c7402, 0x7)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000100)='0.::/', 0x0)
r4 = add_key$user(&(0x7f00000001c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000080)="bc5d", 0x2, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r7 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff9)
add_key$user(&(0x7f0000000180), &(0x7f0000000240)={'syz', 0x1}, &(0x7f0000000480)="66e4135e538a7000e3114903bdd2b3f44564922bd0c9ff5ff8608e10a8a9fdcd6bdff7531017214a90075b0e4f43c40bd51160b4c4928fb4a042939e980490b1b80d28cf54e6fd2b5551fc05bd20be53557a2cabdcd3852628232d745dd5534ea45f11fe89d7553d0e535af3715c6ac77783a289acb031bce1e543729e77bf4dbed01d2249964cb711c2cfaec5dc7073d5cab1c1239b54e0a30ae7c4c5f06751a180521326b3357095d137260a13f8c3e0ace6", 0xb3, r7)
r8 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
dup(r8)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1000002)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r8, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x2, 0x0)
mlock2(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1)
fremovexattr(r1, &(0x7f0000000040)=@random={'osx.', '$\x00'})

1m3.598458516s ago: executing program 32 (id=1003):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
close(r0)
recvmmsg(r0, 0xfffffffffffffffc, 0x0, 0x2, &(0x7f0000000400)={0x77359400})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1cd)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x42)
r2 = add_key$user(&(0x7f00000002c0), &(0x7f00000023c0)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f1068109e733e1a6876", 0x10, 0xfffffffffffffffe)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r2, r3, r2}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a0101004414050300000000000000000a010101000000008903ce0702"], 0x0)
openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x1c7402, 0x7)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000100)='0.::/', 0x0)
r4 = add_key$user(&(0x7f00000001c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000080)="bc5d", 0x2, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r7 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff9)
add_key$user(&(0x7f0000000180), &(0x7f0000000240)={'syz', 0x1}, &(0x7f0000000480)="66e4135e538a7000e3114903bdd2b3f44564922bd0c9ff5ff8608e10a8a9fdcd6bdff7531017214a90075b0e4f43c40bd51160b4c4928fb4a042939e980490b1b80d28cf54e6fd2b5551fc05bd20be53557a2cabdcd3852628232d745dd5534ea45f11fe89d7553d0e535af3715c6ac77783a289acb031bce1e543729e77bf4dbed01d2249964cb711c2cfaec5dc7073d5cab1c1239b54e0a30ae7c4c5f06751a180521326b3357095d137260a13f8c3e0ace6", 0xb3, r7)
r8 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
dup(r8)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1000002)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r8, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x2, 0x0)
mlock2(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1)
fremovexattr(r1, &(0x7f0000000040)=@random={'osx.', '$\x00'})

48.747363848s ago: executing program 0 (id=1225):
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r0, 0xc01064c1, &(0x7f0000000080))
ioctl$USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, &(0x7f0000000000)={0x9, &(0x7f00000000c0)="69120e5d62fbba5e0774723c040088e63b68a78aab76a0b19f055d1302b720269b97406e61d36727bc6d35a6298016c8aa6067ce49fc50bbeda9deaedd10ac6fbdbbfc8c595f8098d5487fb11bd28e9b7fb7bfc39544ef2d4d36b457217a101eacb38ffe3d9731a0de1c11a1da29e60125d5307a19880f01795a64363b8489d28b19a4678bd8b1c9dc1b7322b2c8ce2b4abe2be16bf11eec9c5dc4f9e5b82c73db358b4fb8931673d6bf8226927bcf49da1b919891aab0ba7f5b07af0cb035ec4c42d6414588ab4fd7a0a784ef3c19324190d8e63ca022481f82fa8f2b88a19358698d9653f931409d8fa4dd"})

48.691025399s ago: executing program 0 (id=1226):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0xd9, 0x2}, {0x81}}}}, 0xf)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000000), 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0xc048aec8, &(0x7f0000000080)={0x1, 0x0, @ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{}, {}, {}, {}, {}, {0x0, 0x4}, {}, {}, {}, {0x0, 0x7a}, {}, {}, {0x10}, {0x20}, {0x2}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x40}]}})
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc100565c, &(0x7f0000000040)={0x58de, 0x0, 0x1, {0x1, @raw_data="1af9ebae8a7c18bdc45133f2b6f27ce19a7a6e442c82d3c6f40845c417475e4055f9d27ed1d6872f275b8279a006049501ed4ecb9e91b8e7eb6033e5d7d91d7c3d87741f1d3c2680b191f147476b85951346e98e6e9a1e5a6766e64b84e052a51dd12edf9d1d26e08291f7711bd87195694a9516c4fc0e9151fb774e27670d19589060fe7b98cf9d58d6cc96212f33a1e1705dbb873ca532f70ab81ab53dd1e3d29583773ba1c6696a029febe240371ceab542eaca8ad6703b3a29732094c541999ed04059ce9dd5"}, 0x22}) (async)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000040)="415b7ac700000000", 0x8)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r3)
sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)=ANY=[@ANYBLOB="53010000", @ANYRES16=r6, @ANYBLOB="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"], 0x140}, 0x1, 0x0, 0x0, 0x4000020}, 0x10) (async)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25047c0000100036800c00020007009300000000000c0001800600060008", @ANYRES64=r7], 0x30}, 0x1, 0x0, 0x0, 0x200488d1}, 0xc080) (async)
r8 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x103100, 0x0)
ioctl$DVD_READ_STRUCT(r8, 0x5392, &(0x7f0000000fc0)=@copyright={0x1, 0x1, 0x81, 0x5})

48.520895191s ago: executing program 0 (id=1228):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100), 0x34)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'md5-generic\x00'}, 0x5a)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x76, 0x0, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f00000001c0)={0x9, 0x7})
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000280)={'vcan0\x00', <r9=>0x0})
bind$can_j1939(r8, &(0x7f0000000100)={0x1d, r9}, 0x18)
connect$can_j1939(r8, &(0x7f0000000080)={0x1d, r9, 0x2, {0x0, 0xf0, 0x2}, 0xfe}, 0x18)
sendmsg$can_j1939(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)='.', 0x1a000}}, 0x0)
sendmsg$inet(r8, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x1)
sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)={0x14, 0x3, 0x3, 0x5}, 0x14}}, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r10 = dup(r4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x801, 0x2, 0x10000, @value=r10}, 0x28)
setsockopt$inet_mreq(r10, 0x0, 0x24, &(0x7f0000000180)={@remote, @loopback}, 0x8)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
accept4(r1, 0x0, 0x0, 0x0)

48.370615508s ago: executing program 0 (id=1230):
r0 = socket$packet(0x11, 0x2, 0x300)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x4, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r1 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$dri(&(0x7f0000000140), 0x6, 0x8000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x5, 0x14, 0x0, &(0x7f0000000440)="259a53f271a76d2686dd4c5488a8f4b9ff8a58c1", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4}, 0x50)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_SNDMTU(r3, 0x112, 0xc, &(0x7f0000000340)=0x8, &(0x7f0000000380)=0x2)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x105c42, 0x5)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000001040)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r7, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000200)={0x3c, r6, 0x1, 0x70bd29, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x20, 0x11d, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xc0}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x3c}}, 0x0)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r4, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20010001}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='aP\x00 ', @ANYRES16=r6, @ANYBLOB="080028bd7000fcdbdf25830000000800100101040000080010010900000008001001020000000a00060008021100000000000800100108000000080010010300000008001001949a0000"], 0x50}, 0x1, 0x0, 0x0, 0xc0}, 0x10)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000040)={0x0, <r9=>0x0}, &(0x7f0000000080)=0xc)
mount$tmpfs(0x0, &(0x7f0000000080)='./bus\x00', &(0x7f0000000180), 0x10000, &(0x7f00000004c0)=ANY=[@ANYBLOB='noswap,uid=', @ANYRESHEX=r9])
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
openat$cgroup_ro(r1, &(0x7f00000000c0)='blkio.throttle.io_serviced\x00', 0x0, 0x0)
syz_clone(0x82004000, &(0x7f00000001c0)="1f01d61c4b5e86ebcd70ed8188152de1bd8e217cdb5cccf74f428033647a18ee6164f7ecc1c8856120be077be90a65592793cd2b2d029a73b87a0c6619c9b38e3cfb9dcb175535251261fd81f68a35d60f5d53da97713b0788000db238a402090de32283af86c4e603fe88bc5c9890dc251463651c5c88843d9550717b61a0eddb2f0903530bf7a0a77921e0421961c5048fd7493f9bf297b3414246508b0f3664e464dd1b049fe3610a8f05d9a62c110f95145c1e41f0d5365d9390062d021b145fa8646bddc56665350eaaba59b0853826d69e6401f639b40e2c4a78e180073a868253", 0xe4, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="f93d0704dcdde6e9b4cbf8e749a2db185c")
socket$nl_generic(0x10, 0x3, 0x10)
quotactl_fd$Q_SETQUOTA(r4, 0xffffffff80000800, r9, &(0x7f00000005c0)={0x4, 0x0, 0xfffffffffffff000, 0xf9c, 0xd1b, 0x3, 0x6, 0x2, 0x1})
r10 = open(&(0x7f0000000480)='./file0\x00', 0x385000, 0x1cf)
sendmsg$nl_generic(r10, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)={0x9c, 0x40, 0x107, 0xfffffffc, 0x0, {0x20, 0x7c}, [@generic="bd575fddf537b4c4966025f6f553b6097b494c011ef39fb807ccbbe99f68ffd9177a1d5b372ded5c6e8b020c6201cf", @generic="e136037bba075429345de484fa32221dd26f8f62b8c66ee2c5b8c765dfe8c5c7602e4e17afb86dd9885f94bd3184e834ac08b8f05264fd30ae63d58c5c3985b1304f632358f8f4a98806ffefda8d3c2dc64bee6ed06477620e"]}, 0x9c}, 0x1, 0x0, 0x0, 0x488c0}, 0x20044000)

47.707794698s ago: executing program 0 (id=1244):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
setsockopt$sock_int(r3, 0x1, 0x31, &(0x7f0000001600), 0x4)
r4 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r4, &(0x7f0000000180)=[{&(0x7f0000000700)="580000001500add427323b472545b4560a117ffff4ff81000e220e227f000008925aa80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000df", 0x59}], 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="efff00000000010000002e00000008000300", @ANYRES32=r5, @ANYBLOB="0a003400010101010101000004004c00"], 0x2c}, 0x1, 0x0, 0x0, 0x4090}, 0x4010)

47.20026154s ago: executing program 0 (id=1247):
r0 = socket$inet(0x2, 0x1, 0xa6)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000959800001801006708f2092836002020702500200000002020207b1af8ff00000000bfa1000000000000e6000000f0ffffffb702000005000000b70300170000000085000000730000009567d5a02fdffbfbe36379ec7e2a7d9d6b93f793ae967c95a074b7bb95abe11e7c581492ad8a8cde23da63bf9ef4c278dc4df931b854ba8822918e72b5f81459519c07e85fee92e1bd055e474760e47b46149ad54f344f00eaaadd6860fa19310e240cdfcf6d97"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_local\x00', r1}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_local\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='rxrpc_local\x00', r1}, 0x10) (async)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='rxrpc_local\x00', r1}, 0x10)
socket(0x2000000000000021, 0x2, 0x10000000000002) (async)
r3 = socket(0x2000000000000021, 0x2, 0x10000000000002)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_ecred_conn_req={{0x17, 0x52, 0x8}, {0xa3, 0xbdbd, 0x5, 0x8}}}}, 0x15)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) (async)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0)
sendmmsg(r3, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[], 0x18}}], 0x1, 0x0) (async)
sendmmsg(r3, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[], 0x18}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f0000001980)=""/236, &(0x7f0000000080)=0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$sock_buf(r5, 0x1, 0x4d, 0xffffffffffffffff, &(0x7f0000000000))
lseek(r2, 0x8000, 0x1)

47.167150883s ago: executing program 33 (id=1247):
r0 = socket$inet(0x2, 0x1, 0xa6)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000959800001801006708f2092836002020702500200000002020207b1af8ff00000000bfa1000000000000e6000000f0ffffffb702000005000000b70300170000000085000000730000009567d5a02fdffbfbe36379ec7e2a7d9d6b93f793ae967c95a074b7bb95abe11e7c581492ad8a8cde23da63bf9ef4c278dc4df931b854ba8822918e72b5f81459519c07e85fee92e1bd055e474760e47b46149ad54f344f00eaaadd6860fa19310e240cdfcf6d97"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_local\x00', r1}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_local\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='rxrpc_local\x00', r1}, 0x10) (async)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='rxrpc_local\x00', r1}, 0x10)
socket(0x2000000000000021, 0x2, 0x10000000000002) (async)
r3 = socket(0x2000000000000021, 0x2, 0x10000000000002)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_ecred_conn_req={{0x17, 0x52, 0x8}, {0xa3, 0xbdbd, 0x5, 0x8}}}}, 0x15)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) (async)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0)
sendmmsg(r3, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[], 0x18}}], 0x1, 0x0) (async)
sendmmsg(r3, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[], 0x18}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f0000001980)=""/236, &(0x7f0000000080)=0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$sock_buf(r5, 0x1, 0x4d, 0xffffffffffffffff, &(0x7f0000000000))
lseek(r2, 0x8000, 0x1)

6.546062813s ago: executing program 5 (id=1803):
io_setup(0x0, &(0x7f0000004200))
io_setup(0x3, &(0x7f0000000240))
io_setup(0x3083, &(0x7f0000000000))
io_setup(0xa, &(0x7f0000000040))
io_setup(0x8, &(0x7f00000001c0))

6.390111358s ago: executing program 5 (id=1806):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in6={{0xa, 0x4e21, 0x8, @empty, 0x9}}, 0xffff85e0, 0x0, 0x10403, 0x4, 0x22}, 0x9c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
socket$inet6(0xa, 0x6, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x10, 0x0}}], 0x1, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)=[{0x0}, {&(0x7f0000000280)="fd72c91726872af17284cbbecb2360cff1988314f6cc09c4c07f0b44d9c16a610f294283b780b506b765d798ca8ab5adc7424057689ee5685dc17105c83aa4ed88bbfc7fef38b630105a17b9c6febfaef81e3242f4b460a05490dce8fd165641538fff4d4f46f9e24217a754881ce31e40b204d9126e3103f7aedd9c3194c82a62744ab6"}, {&(0x7f00000000c0)="6eafae9268cbdef2c4610d53e85605490ed6ed506c0b5fbe97b851b9277a5dac0ab88672b8ac5b883cff936f9216ae43f0061ee6421eade3910dc65d94f385486c94"}], 0x100000000000000b, &(0x7f0000000040), 0x4c4dbc2f6118216a}, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01')
mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x8000) (async)
mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x8000)
mount(&(0x7f0000000580)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./file0\x00', &(0x7f0000000380)='xfs\x00', 0x10000, &(0x7f0000000080)='norecovery') (async)
mount(&(0x7f0000000580)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./file0\x00', &(0x7f0000000380)='xfs\x00', 0x10000, &(0x7f0000000080)='norecovery')
syz_emit_vhci(&(0x7f0000001a80)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0x6, 0xa}, {0x101, 0xc, 0x9b, 0x101, 0x1}}}}, 0x17)
mount$9p_tcp(&(0x7f00000007c0), &(0x7f0000000800)='.\x00', &(0x7f0000000000), 0x8010, &(0x7f0000000880)={'trans=tcp,', {'port', 0x3d, 0x4e23}}) (async)
mount$9p_tcp(&(0x7f00000007c0), &(0x7f0000000800)='.\x00', &(0x7f0000000000), 0x8010, &(0x7f0000000880)={'trans=tcp,', {'port', 0x3d, 0x4e23}})

6.27040512s ago: executing program 5 (id=1807):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
accept4$rose(r0, 0x0, 0x0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040), 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$gtp(&(0x7f00000003c0), 0xffffffffffffffff) (async)
syz_init_net_socket$ax25(0x3, 0x3, 0x0) (async)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0) (async)
write(r4, &(0x7f0000000180)="2cd889f0253e14f3d5", 0x9)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
sendmsg$GTP_CMD_NEWPDP(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000000000008000700", @ANYRES32, @ANYBLOB="08000400000000000c0003000000000000000000080005000000000008000100", @ANYRES32=0x0, @ANYBLOB="0800020000000000060006"], 0x50}}, 0x0)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000040001}) (async)
r7 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000000)='\x00', 0x1, 0xfffffffffffffffe) (async)
r8 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000040)={r7, r8, r8}, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={'poly1305-generic\x00'}}) (async)
listen(r1, 0x5) (async)
r9 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r9, &(0x7f0000000080), 0x10)
sendmmsg(r9, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40011}]}}], 0x1, 0x24008094)

6.160651352s ago: executing program 5 (id=1809):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
r1 = timerfd_create(0x8, 0x0)
timerfd_settime(r1, 0x1, &(0x7f00000000c0)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
readv(r1, &(0x7f0000000000)=[{&(0x7f0000001fc0)=""/4095, 0xfff}], 0x1) (async)
readv(r1, &(0x7f0000000000)=[{&(0x7f0000001fc0)=""/4095, 0xfff}], 0x1)
mkdir(&(0x7f0000000140)='./file1\x00', 0x1a0)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000280)='./file1\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x275a, 0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
userfaultfd(0x801) (async)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0)) (async)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
connect$pppl2tp(r2, &(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, r3, 0x0, 0x4, 0x4, 0x4, {0xa, 0x4e21, 0x6e41, @mcast1, 0x101}}}, 0x3a) (async)
connect$pppl2tp(r2, &(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, r3, 0x0, 0x4, 0x4, 0x4, {0xa, 0x4e21, 0x6e41, @mcast1, 0x101}}}, 0x3a)
ioctl$UFFDIO_ZEROPAGE(r4, 0xc020aa04, &(0x7f0000000000)={{&(0x7f000087d000/0x4000)=nil, 0x4000}, 0x1}) (async)
ioctl$UFFDIO_ZEROPAGE(r4, 0xc020aa04, &(0x7f0000000000)={{&(0x7f000087d000/0x4000)=nil, 0x4000}, 0x1})
quotactl_fd$Q_SETQUOTA(r2, 0xffffffff80000800, 0xee01, &(0x7f00000000c0)={0x84, 0x7f, 0x2000200000a95e, 0x0, 0x9, 0x400, 0x48cd, 0x0, 0x800000df})
io_submit(0x0, 0x2, &(0x7f0000000040)=[&(0x7f0000000000)={0x180a, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x3}])
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$setregs(0x1a, r5, 0xc, &(0x7f0000000000))
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x3, 0x6c4ba42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xcd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0xfffffffffffffffb, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x226, 0x0, 0x80003, 0x0, 0x0, 0x0, 0x200, 0x0, 0x40000000000, 0x801, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x100000001]}) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x3, 0x6c4ba42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xcd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0xfffffffffffffffb, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x226, 0x0, 0x80003, 0x0, 0x0, 0x0, 0x200, 0x0, 0x40000000000, 0x801, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x100000001]})

6.099876285s ago: executing program 5 (id=1810):
r0 = fsmount(0xffffffffffffffff, 0x0, 0x80)
r1 = landlock_create_ruleset(&(0x7f0000000000)={0x1008, 0x2, 0x3}, 0x18, 0x3)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1, {0x81e}}, './file0\x00'})
symlinkat(&(0x7f0000000080)='./file0\x00', r0, &(0x7f00000000c0)='./file0\x00')
r3 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000100), 0x82100, 0x0)
read$FUSE(r0, &(0x7f0000000140)={0x2020, 0x0, <r4=>0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r2, 0x4002f516, &(0x7f0000002180)={0x5, 0x9})
r7 = syz_open_dev$rtc(&(0x7f00000021c0), 0x6752, 0x4001)
ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f0000002200)=<r8=>0x0)
lstat(&(0x7f0000002240)='./file0\x00', &(0x7f0000002280)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
lstat(&(0x7f0000002300)='./file1\x00', &(0x7f0000002340)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
write$FUSE_DIRENTPLUS(r3, &(0x7f00000023c0)={0x5e0, 0x0, r4, [{{0x6, 0x1, 0xff00000, 0x8, 0x3, 0x6, {0x4, 0x5, 0x1, 0xc, 0x1, 0x6, 0x6, 0x80000000, 0x1, 0x4000, 0xd1c9, r8, r6, 0x3, 0x4709}}, {0x0, 0x9, 0x6, 0x295e, '{)&\xdc@\\'}}, {{0x6, 0x3, 0x3, 0x7fff, 0x7fffffff, 0x0, {0x3, 0x8000, 0x3, 0x9373, 0x8bc, 0x5, 0x3, 0x2c, 0x2, 0xa000, 0x8, r5, r6, 0x8, 0x5}}, {0x2, 0x863, 0x4, 0x2, '{!!('}}, {{0x5, 0x0, 0xffff, 0xfffffffffffffe01, 0x8, 0x5, {0x6, 0xfffffffffffffff8, 0x2, 0x8, 0x4, 0x8, 0xfffffffd, 0x0, 0xffffffff, 0x6000, 0xb, r5, r6, 0x7, 0x8}}, {0x6, 0x3, 0x13, 0x7, '/dev/ocfs2_control\x00'}}, {{0x1, 0x1, 0x7, 0x1, 0x401, 0xfffffffc, {0x5, 0x6, 0x81, 0x9, 0x800, 0x3bc019f6, 0x2, 0x422, 0xfff, 0x4000, 0x7, r5, r6, 0xc, 0x480000}}, {0x4, 0x5, 0x13, 0xd, '/dev/ocfs2_control\x00'}}, {{0x2, 0x1, 0x9, 0x1000, 0x81, 0xb8, {0x4, 0xfbcf, 0x10001, 0x9, 0x7ff, 0x3, 0x634c, 0x100, 0x3, 0xa000, 0x7, r5, r6, 0xa, 0xd}}, {0x1, 0x4409, 0xa, 0xfffffff7, '/dev/rtc#\x00'}}, {{0x0, 0x3, 0x200, 0x9, 0x8001, 0xd, {0x2, 0x100000001, 0xffff, 0x80, 0x9, 0xe0, 0x80000001, 0x4, 0x4, 0x6000, 0x8, r5, r6, 0x4, 0x100}}, {0x4, 0x5, 0x0, 0x7ff}}, {{0x4, 0x2, 0x7, 0x9, 0x401, 0x3ff, {0x1, 0x3, 0xffffffffffff6b31, 0x7, 0x8000000000000000, 0x8, 0x23, 0x7ff, 0xfffffffb, 0x6000, 0xe46, r9, r6, 0x4}}, {0x4, 0x8001, 0x3, 0x7, '%\'\\'}}, {{0x0, 0x1, 0x8, 0xc, 0x1, 0x3, {0x6, 0x7fffffff, 0x7fffffffffffffff, 0x4, 0xaf, 0x7ff, 0x9, 0xa, 0x3, 0x4000, 0x7, r10, r6, 0x3, 0xe}}, {0x5, 0x4, 0xa, 0x1, '/dev/rtc#\x00'}}, {{0x5, 0x0, 0x8000000000000001, 0xe, 0x4, 0x9, {0x1, 0x9, 0x2, 0x0, 0x7, 0xab, 0x80000001, 0xfffffffa, 0x218e, 0x8000, 0x9, r5, r6, 0x1ff, 0x289}}, {0x1, 0x3, 0xa, 0x7f, '/dev/rtc#\x00'}}]}, 0x5e0)
mkdir(&(0x7f00000029c0)='./file0\x00', 0x20)
write$FUSE_NOTIFY_INVAL_ENTRY(r3, &(0x7f0000002a00)={0x25, 0x3, 0x0, {0x1, 0x4, 0x0, '{!!('}}, 0x25)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000002a40), 0x183000, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
tee(r2, r3, 0x7ff, 0xf)
fchmodat(r2, &(0x7f0000002a80)='./file1\x00', 0x3c)
read$FUSE(r3, &(0x7f0000002ac0)={0x2020}, 0x2020)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000004b00)={0x0, <r12=>0x0, "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", "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"})
ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, &(0x7f0000005b00)={r12, 0xff00000000000000})
r13 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000006b00), 0x0, 0x0)
syz_kvm_setup_cpu$x86(r13, r0, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000006b80)=[@textreal={0x8, &(0x7f0000006b40)="2e0fc76bff440f20c066350f000000440f22c0baa10066b80000000066ef660f3a4204750f01c8660f3838a70b00ba4000ec0f01c5660fc7b100200f01ca", 0x3e}], 0x1, 0x69, &(0x7f0000006bc0), 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000006c00)={0x0, 0x8}, 0x8)
readlink(&(0x7f0000006c40)='./file0\x00', &(0x7f0000006c80)=""/219, 0xdb)
ioctl$F2FS_IOC_GET_COMPRESS_OPTION(r7, 0x8002f515, &(0x7f0000006d80))
writev(r2, &(0x7f0000007200)=[{&(0x7f0000006dc0)="b7547725ab893f213afc34545198e6b1d161e31e417ee099a8161e368bc2d8c26e8ea56d410abc9e865c3c05e309be3dbfb6d985a707746d4324e2ad0e53c909252d0806e5cc3081743860a954459ee4d8ba9e585fab3726e00c17008ff3a5a2c86fd3785185258918480cead2a3d4e6723ec79c9e115c51d8e44a0e74ea17f52405ea3166667551cd3bc0b05e6322621800a29a82591d118aeb926b342e86f1a3638ff3615d50c0af70fdf42f3bc568d962927ce541c5f6dfdba5e774eb087ddfb1a25a260f173ca0add855a2762bbcfcdebbaa64e0e67b", 0xd8}, {&(0x7f0000006ec0)="23c46d71c4da8f27e1272c91e80ef6c9ab6b9c1e2145ab524f65b1a993209cfa3110d8887e1f1b0eb31d5bf96002640c1697da3785853adc22ba9702c867ab567470e2c243b8bddc9232c16e093df9f01f24d569006929afb55adf55357590de0a3a48f1e1ef30243c1b3592626ffafe0838c75d234fd4defbe343e1c00862abee846ce1adf8da6f8c8a37c4bfc95334cfa9ec8fb11c80b5581353e941466ffacded536944f56006d51899e71f014a78d1a81eb1b303560f8c", 0xb9}, {&(0x7f0000006f80)="81a7c38d9468e11f429b4abfd997c8ca045b395ea8a7de0e6175744f70f4a00f0e3ff1f1c98004c4be1af04b94ba096cddfd60dcd5a3241e0b193df6f1bccde3c32e6f8e20c249ec6cb4ffc0bd024193b837ff2d40cf0b40d9dbe9d904398b7967e559f3c24ffdf96a", 0x69}, {&(0x7f0000007000)="d5fb5eecebb169214f63b26d82822f933c2ba50545bf2775056126c7e6cd7bf50b7893d3ec1e55b2739e46e7d1941c02c75523664f7b7068ed929b650219f005d9e1ec1c642f07fa21fb11611d0c609abd1a39aa133c295c1f94e6a01478c6fa898523651cbd3db6fc866b1eb20edcf8b00a6ad06cd6e88abf9281aefd40c2eef762cff2709d8275ddd7ab9028facfe6addc8c072a44e3f7", 0x98}, {&(0x7f00000070c0)}, {&(0x7f0000007100)="0c5cf558bf57ddb9086de1d907c5f8fd39a21f84cfeeab10723aed9c4c81d7d048eda0f51a2928574cdbc46c55ea36fce18de9a6175a45c2486e51c0ba194311046f5d58321fb0ffef1fec84e4ab056d5799421720521da3ca6b626f56fde33d6bdc3b618a4b28d7e34d22fe1565d2cc9c9b7d17c055ccc65751963a6c304c34248aba4c42e1a5f3977d187c8ce3c4c5892559ec5e0e5b9ad87976e00f0bc260bbfe2af4e70b7546451cd489b0bcaaad6b406a8a8a7f3d0129390af9839080391b14b819149aad784840f4f9cb6b264e55e8b42187ebccc813b126df49aed670eb", 0xe1}], 0x6)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000007280)={0x0, 0x8, 0x2, [0x2, 0x1000]}, 0xc)
ioctl$SG_NEXT_CMD_LEN(r3, 0x2283, &(0x7f00000072c0)=0x70)

5.76034147s ago: executing program 5 (id=1818):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
setrlimit(0x40000000000008, &(0x7f0000000000)={0x0, 0x10000})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0500000003f01f00660000007f00000001"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000003c0), 0xfffffffb, r1}, 0x38) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000}) (async)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f00000000c0)={0x5, 0xffffffff, 0x7, 0x3, 0x8801be, 0x0}) (async)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={r1, &(0x7f0000001600), &(0x7f00000001c0)=""/227}, 0x20) (async)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008894) (async)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r3, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)={0x58, 0x1, 0x7, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFACCT_FILTER={0x44, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x43}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x100}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x7}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xdd5a}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x10}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20044800}, 0x8000)

5.721829529s ago: executing program 34 (id=1818):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
setrlimit(0x40000000000008, &(0x7f0000000000)={0x0, 0x10000})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0500000003f01f00660000007f00000001"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000003c0), 0xfffffffb, r1}, 0x38) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000}) (async)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f00000000c0)={0x5, 0xffffffff, 0x7, 0x3, 0x8801be, 0x0}) (async)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={r1, &(0x7f0000001600), &(0x7f00000001c0)=""/227}, 0x20) (async)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008894) (async)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r3, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)={0x58, 0x1, 0x7, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFACCT_FILTER={0x44, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x43}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x100}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x7}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xdd5a}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x10}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20044800}, 0x8000)

5.66994302s ago: executing program 1 (id=1820):
mknod$loop(&(0x7f0000000300)='./file0\x00', 0x100000000000600d, 0x1)
r0 = creat(&(0x7f0000000600)='./file0\x00', 0xc9028ba210c11f09)
syz_open_dev$dri(&(0x7f0000000100), 0x5, 0x4c0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x2, 0x80400, 0x2004, 0x800})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x121000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call={0x85, 0x0, 0x0, 0x7e}, @exit], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0xec)

5.599914459s ago: executing program 1 (id=1821):
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=ANY=[@ANYBLOB="600000001b003b1528bd7000000024000000007f", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468000100000400028008000300000000000500110001"], 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x0)

5.59962356s ago: executing program 1 (id=1822):
syz_io_uring_setup(0xd5, &(0x7f0000000480)={0x0, 0x96b9, 0x1, 0x81000, 0x200}, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000002100)='numa_maps\x00')
read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x28, 0xf0, 0x0, 0xffffefff}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
syz_emit_ethernet(0x6c, &(0x7f0000000080)={@link_local, @link_local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x2, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x6558, 0x0, 0x0, [0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x800, [0x0]}, {}, {}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x7}}}}}}}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000), &(0x7f0000000040)=0x14)
sendto$inet6(r1, &(0x7f0000000080)="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", 0x1b9, 0x0, 0x0, 0x0)

5.530064143s ago: executing program 1 (id=1823):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb2, 0x0, &(0x7f0000000240)="5a5d7f68a90000896ce8e142aeb6aba430976f0281e2bdbbd40363122c7c8a8917bb1093d8599cf965bd5ed01de52a804489e93523b4c3dbf0525378335fd9be8951d0ef6b55e77d27c48f0b05a4b4cecf89d29d55a80550fa6e8274c8659afbbdc09e5b1d1db660b47d3562f8074af494ea1732ec1e507c59c4e83e1156ac4f8366cfeef198d84c8e53e44102b7db73f7362b7256716ff65c124273879e2747dc8aee20a65781dc8651b30b000000000000", 0x0, 0xb}, 0x50)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000440)={&(0x7f0000800000/0x800000)=nil, &(0x7f000051f000/0x4000)=nil, 0x800000, 0x1, 0xfe})
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1400000017000b63d25a80648c2594f90fa3c92b", 0x14}], 0x1}, 0x0)
r1 = syz_io_uring_setup(0x7255, &(0x7f0000000000)={0x0, 0xa832, 0x1000, 0x1, 0x247}, &(0x7f0000000080), &(0x7f00000000c0))
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x1b09, 0x4002, 0x0, 0x0, 0x0, r1}, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x54, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0xc}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x54}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b04, &(0x7f0000000040)={'wlan1\x00', @random="0e0000000300"})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000200)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r5, &(0x7f0000000340)={'b', ' *:* ', 'w\x00'}, 0x8)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000400)=@generic={&(0x7f0000000080)='./file0\x00', r4}, 0x18)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x145001, 0x0)
syz_open_dev$sg(&(0x7f0000000380), 0x1, 0x100)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x8})
r7 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, &(0x7f00000002c0)=<r8=>0x0, &(0x7f0000000080)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000240)=0xffffffff, 0x0, 0x4)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x58}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x30, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r8, r9, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r7, 0x47bc, 0x0, 0x0, 0x0, 0x0)
write$qrtrtun(r6, &(0x7f00000001c0)="16ccc66b8a63a10e", 0x8)

5.440508703s ago: executing program 1 (id=1824):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x0, 0x1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4000)
sendmsg$nl_route_sched(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r6, {0x0, 0xf}, {0x5}, {0xf, 0x9}}}, 0x24}, 0x1, 0x0, 0x0, 0x24000014}, 0x20084084)
sendmsg$inet(r2, &(0x7f0000000100)={0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000140)="600000002e000d190a762d7f089e", 0xfca2}, {&(0x7f0000000280)="68cabf2dfb58fc0a1d6b689866f05d490d010088a8ffff0200258f2e4409b8f9e6aaeb88bea123dc2c6726e89b1ae2f6e8bcb5ee52dcd7298d39093c510293bca0b646a3ce904f6e6b788b3204c233e60ddc", 0x52}], 0x2}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x1, 0x803, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="48000000100001047fff00"/20, @ANYRES32=r9, @ANYBLOB="00000000000000002800128009000100766574680000000018000280140001000000", @ANYRES32=r9], 0x48}}, 0x0)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000017c0)=ANY=[@ANYBLOB="39e05cad1b7de83f2391cfde1e3fab995f7b05dcd41c00000060031a39d28499dde629f431c12d418a94c1f077d55644c4ae583e7a056f7b39938ba0537ae192d52925b4fed6223f33a2089a64ee121789224dab11ecfd90b5778c11fc5217914ba485c254252c820bd466e7a4e096c6ede7331f25e1d03a0e97cc51db1f95557566c80154c07f129f03eab0444933725c8b94ec86204fa87b77cdcfdb9c50f1ae920096", @ANYRES16=r1, @ANYBLOB="01002dbd700000000000010000000500040001000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20048091}, 0x0)
writev(r0, &(0x7f0000000180), 0x100000000000003c)
ioctl$SIOCGETLINKNAME(r4, 0x89e0, &(0x7f0000001880)={0x1, 0x2})
r10 = syz_io_uring_complete(0x0)
writev(r10, &(0x7f0000001740)=[{&(0x7f0000000080)="ba213280a575550790ed8ca489bca8fd082685cb29126fdfa54a642660f2598872bec921eb5d86f757300debf31fd5cfafb89a6c4bc26f0dfbe85c6cea377f41348674cc", 0x44}, {&(0x7f00000004c0)="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", 0x1000}, {&(0x7f0000000100)="acccc4acac22efb5e74a4084ba5f04f25a1516ddad0a2d7f39077fe7769a4368cb5fd6ed27f26f5513ffca4d2dc2298b2e629b71c34ceef83dad807ced55bbd936219dd6b9c7c63f7dbaa1e71eec0cf538bb1f5638b2d628aac90eda00983cfd618138f26d6965a2012d0f10fa7015a4f5adb22cf41c337ca4384551815b89fc50fbfbcff718d3fbc5ce7585da0fafbdc7b12c79432cbcf9a0e621f8bcb75b85241bc5ca21da55e16012bf1ba41f6e0954d5a486e569ee0f3f530ed331108771f8f00dd7d8d3ddc54a0e1660d896abe48d421c", 0xd3}, {&(0x7f00000002c0)="fcb5c64b7183b5881d7102a908be2d53040a1a66a486b0a3ab8db7d55b683d43a2bb833ce672791a65620733b3b578d4fd19b3e85120e42e136891afcc1da9b0d364fa524dbfb03ac585687253b65883962645f00f6fb2f862cd924a530192f339937b8546314b38cca0a11260da98f367b612c60f1ace6104efbe8d6417e08ff7293c2a88e2276e1ce3986c2cb11aad933f45c52d437b591937388a67d8a9a319437bebeae6d652321d17507af2a0e588de3eb2c4290d408dfdfeff93b044812046089fadcf0971a23e09a9bef2cc08dc2bf4b62e8fd752178261e60ad4cef2e3a7376172a879fa534adac092", 0xed}, {&(0x7f00000003c0)="1b88a5284bf9f1b2c025be7bcdcf5a9b1fe887ba816848a5fa8eeed800e37be5826a8c322335203e7d9289062e42b34936cc85a75309d0b022f671c782c43d8478bda5568a1792f41ca1d8fed6bc099219af2cf0e2e9cb0a6f28", 0x5a}, {&(0x7f00000014c0)="c5092d2bf05c7646cbd49dd40edf81bb385cb1c8da1499160fb34545563998b8490f1a5ecc8d9be543da57cf20b5f5f3e874f98fd7cdae7650d74635b0bb83391139d044de747dae43422c6177f9af4ad9bb472ccc46c4ada3debfc2e4960f778eca18f82c42453817a900dd607fb2c23d3f8edec58bbe2fb17ec819c41e9cd64c780ac09e01aa86ccbc1566dbfa2900f6a5a23086f402902f281350790399d8783e3394e4d547726c188e9e49f78ded86e144d7bfc0eb79cd547aae1020b94bc4e8", 0xc2}, {&(0x7f00000015c0)="b6fc3f5b77f862c23f1a52430f37de2250ae2adfec7cc3a2ae4ed04f1c092a96de45c2f7283fb976cc164e672d2b94b710b429bb271a651592e6d5ae90e65764bd4350ba8076eefc6b854334b205e2f13ccefafb54f10fd7b8e740e88b61bce240b820c6b25fd2fc2c9401f58db1d5e209730e5f5d3fb9d75368ab6cbc721343c01ecf5a7feaaec76088a1e3c10c343e30c13c5e7d08b2c9e94c65a25c516e72bd56335f9b408c552fea100a8204ac73b28976845075a07f72df8d5a31a745f18c9ad9fd1382b7d85183b3b6db7033fdc8898cae3bd9f8ff4826da1aa338e2754b22460c", 0xe4}, {&(0x7f00000016c0)="88036a72821b577610cfbf2d49be4babb69a717f8d6b692215728514860de278ad10b36a8f450974a08464cc48cd1a366b6bfe0d1e4beb63d3d87e3d023203fe2588b9239e41ffb061f850", 0x4b}], 0x8)

5.370529226s ago: executing program 1 (id=1825):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0xf0b, 0x70bd2d, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0x7, 0xfff1}, {0xfff1, 0xc}, {0xfff3, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0xb6}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44045}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a04430012000a000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f00000001c0)=@ipv4_delroute={0x24, 0x1a, 0x1, 0x0, 0x0, {0xa}, [@RTA_IIF={0x8, 0x3, r4}]}, 0x24}}, 0x0)
sendto$packet(r1, &(0x7f00000001c0)="092c30b72af74daf1749827e8392647c9b76409d2ae9f95b20aaa3cc4cb49b21732b3f8912db2a863c1cf08e0fe2158efc4f64cf9c40f33869dac7fcf4d0631bb64236e6b4757849c3a7bbf0da60d1dd6b6f2b32f45e85e0198e6b61da78367bb1", 0x61, 0x4004885, &(0x7f0000000040)={0x11, 0xac4950f23b547964, r4, 0x1, 0xfd, 0x6, @link_local}, 0x14)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0xf0b, 0x70bd2d, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0x7, 0xfff1}, {0xfff1, 0xc}, {0xfff3, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0xb6}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44045}, 0x10) (async)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000) (async)
socket(0x10, 0x3, 0x0) (async)
sendto$inet6(r1, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a04430012000a000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (async)
sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f00000001c0)=@ipv4_delroute={0x24, 0x1a, 0x1, 0x0, 0x0, {0xa}, [@RTA_IIF={0x8, 0x3, r4}]}, 0x24}}, 0x0) (async)
sendto$packet(r1, &(0x7f00000001c0)="092c30b72af74daf1749827e8392647c9b76409d2ae9f95b20aaa3cc4cb49b21732b3f8912db2a863c1cf08e0fe2158efc4f64cf9c40f33869dac7fcf4d0631bb64236e6b4757849c3a7bbf0da60d1dd6b6f2b32f45e85e0198e6b61da78367bb1", 0x61, 0x4004885, &(0x7f0000000040)={0x11, 0xac4950f23b547964, r4, 0x1, 0xfd, 0x6, @link_local}, 0x14) (async)

5.30517961s ago: executing program 35 (id=1825):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0xf0b, 0x70bd2d, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0x7, 0xfff1}, {0xfff1, 0xc}, {0xfff3, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0xb6}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44045}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a04430012000a000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f00000001c0)=@ipv4_delroute={0x24, 0x1a, 0x1, 0x0, 0x0, {0xa}, [@RTA_IIF={0x8, 0x3, r4}]}, 0x24}}, 0x0)
sendto$packet(r1, &(0x7f00000001c0)="092c30b72af74daf1749827e8392647c9b76409d2ae9f95b20aaa3cc4cb49b21732b3f8912db2a863c1cf08e0fe2158efc4f64cf9c40f33869dac7fcf4d0631bb64236e6b4757849c3a7bbf0da60d1dd6b6f2b32f45e85e0198e6b61da78367bb1", 0x61, 0x4004885, &(0x7f0000000040)={0x11, 0xac4950f23b547964, r4, 0x1, 0xfd, 0x6, @link_local}, 0x14)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0xf0b, 0x70bd2d, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0x7, 0xfff1}, {0xfff1, 0xc}, {0xfff3, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0xb6}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44045}, 0x10) (async)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000) (async)
socket(0x10, 0x3, 0x0) (async)
sendto$inet6(r1, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a04430012000a000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (async)
sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f00000001c0)=@ipv4_delroute={0x24, 0x1a, 0x1, 0x0, 0x0, {0xa}, [@RTA_IIF={0x8, 0x3, r4}]}, 0x24}}, 0x0) (async)
sendto$packet(r1, &(0x7f00000001c0)="092c30b72af74daf1749827e8392647c9b76409d2ae9f95b20aaa3cc4cb49b21732b3f8912db2a863c1cf08e0fe2158efc4f64cf9c40f33869dac7fcf4d0631bb64236e6b4757849c3a7bbf0da60d1dd6b6f2b32f45e85e0198e6b61da78367bb1", 0x61, 0x4004885, &(0x7f0000000040)={0x11, 0xac4950f23b547964, r4, 0x1, 0xfd, 0x6, @link_local}, 0x14) (async)

2.852446594s ago: executing program 4 (id=1834):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)=ANY=[@ANYBLOB="140100002e00010000000000fcdbdf250401f2800c00180008ac0f0000000000140001"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_clone(0x4090000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00001b4000/0x18000)=nil, &(0x7f00000005c0)=[@text32={0x20, &(0x7f0000000600)="67f30f016efa64660f3a0e810040000000f30f09b8000001000f23d80f21f835c00000300f23f8f20fb51ce3f20f30c4e3614a68a5420f005800c4c3e15fab3000000072c4e1796f17", 0x49}], 0x1, 0x13, 0x0, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4048aecb, &(0x7f0000000680))
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@perf_event={0x4}}, 0x18)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000240)=r6)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000c40)={0x1, 0x0, [{0x0, 0x61, &(0x7f00000008c0)=""/243}]})
ioctl$VHOST_SET_VRING_ERR(r5, 0x4008af22, &(0x7f00000002c0)={0x1, r6})
ioctl$VHOST_GET_VRING_BASE(r5, 0xc008af12, &(0x7f0000000180))
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r7)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000200)={0x80f0f004, 0x1})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r4], 0x60}}, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0x80045500, &(0x7f0000000580))
syz_emit_ethernet(0x4e, &(0x7f00000021c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6002adf700183a0000000000000000000000ffff0a010102ff0200"], 0x0)

2.636604739s ago: executing program 4 (id=1838):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) (async)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r2, 0x0, 0x0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000380), r3)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r3, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000b00)={0x30, r4, 0x503, 0x70bd2a, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x800) (async)
syz_usb_disconnect(r1)
syz_open_procfs(0x0, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

1.180017307s ago: executing program 4 (id=1848):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x34, 0x3c, 0x107, 0x0, 0x0, {0x1, 0x7c}, [@nested={0x4, 0xfc}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x72}]}, @typed={0x8, 0x5, 0x0, 0x0, @fd=r0}]}, 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r3)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)={0x14, r4, 0x2, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000440)={0x10c, r4, 0x300, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0xf8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x2e, 0x4, "82735ce855c280ee14adc66d8237f552a28f0ba803c27d5af93109c798cd51c7f79459a60ac009b715c6"}, @ETHTOOL_A_BITSET_VALUE={0xc2, 0x4, "ce84425a7eda845874e4daebde3a12df24b78339f1a77373231c48d1319f10fefb22cecdec9cfe98c036df94eb6269f3de73f5136a8445cc2ad9b2511696e03905b5a4c51346de25d2dfe6a55a73a67f12eda781afa56c7bd465d83c08dd78af9dc2c8fb6b1d6c91c651ff0b58f9c8ec0d3c28ba5c3fe401ba4ebfde9df11dc3b46fc747c9581300bab4b9b5e36abd87f6b7c495a1f4936da4a4c1e2eb1201d4872c199ffeffd5959c9c151b62f396ce7a7c9b56e48efec0fe963abb3d27"}]}]}, 0x10c}, 0x1, 0x0, 0x0, 0x20000004}, 0x4004001)
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@getnexthop={0x20, 0x6a, 0xe976912f002a1383, 0x70bd25, 0x0, {}, [@NHA_MASTER={0x8, 0xa, 0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x3c, 0x3e, 0x107, 0x70bd2d, 0x25dfdbfc, {0x4, 0x7c}, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x30}}, @nested={0x14, 0x3ffd, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x8, 0x14, 0x0, 0x0, @u32=0x7fffffff}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008001}, 0x0)

878.172048ms ago: executing program 4 (id=1849):
r0 = syz_io_uring_setup(0xde4, &(0x7f0000000500)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000480)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_FADVISE={0x18, 0x5, 0x0, @fd_index=0x7, 0x8000000000000001, 0x0, 0x800005, 0x5})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040))
r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x81, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r3, &(0x7f00000004c0), &(0x7f0000000400)=@udp6=r4}, 0x3f)
bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000100)={r3, &(0x7f0000000000), &(0x7f00000000c0)=@udp6}, 0x20)
r5 = syz_io_uring_setup(0x6301, &(0x7f0000000040)={0x0, 0x4c82, 0x20, 0x2, 0x170, 0x0, r0}, &(0x7f00000000c0), 0x0)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
ppoll(&(0x7f0000000200)=[{r5, 0x492a}, {r5, 0x61b}, {r0, 0xa200}, {r5, 0x9004}, {r5, 0x2001}, {r5, 0x4000}, {r6, 0x400}, {r5, 0x3208}], 0x8, &(0x7f00000002c0)={0x77359400}, &(0x7f0000000300)={[0x1]}, 0x8)
syz_io_uring_setup(0xd55, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f0000000100), &(0x7f0000000280))
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r7=>r0}, './file0\x00'})
r8 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r8, 0xc0045005, &(0x7f0000000080)=0x80)
write$dsp(r8, &(0x7f0000000240)=' ', 0x1)
close(r8)
ioctl$KVM_REGISTER_COALESCED_MMIO(r7, 0x4010ae67, &(0x7f00000001c0)={0x4000})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

800.150387ms ago: executing program 3 (id=1851):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000001700), 0x80b00, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)={0x14, 0x38, 0x301, 0x270bd26, 0x25dfdbfa, {0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x4)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000040)={0x1, "89a156bb93885390d8dab541a0075d6ab727942768af0527eb6cb11eb16cf4b4"})
syz_emit_ethernet(0x7e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6001010000481100fe8000000000000000000000000000bbfe8000000000000000000000000000aa4e004e2100489078030000000200000088c73b21f267636d01fca2712c1c941e1cdafbbb43f09c70e13808ca72381f41e5fbf9620915b6f78670dfaf9a2038083179cf6b7931c9b4"], 0x0)
getsockopt$inet6_int(r1, 0x29, 0xd0, 0x0, &(0x7f0000000000))

695.820531ms ago: executing program 3 (id=1852):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)=ANY=[@ANYBLOB="140100002e00010000000000fcdbdf250401f2800c00180008ac0f0000000000140001"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_clone(0x4090000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00001b4000/0x18000)=nil, &(0x7f00000005c0)=[@text32={0x20, &(0x7f0000000600)="67f30f016efa64660f3a0e810040000000f30f09b8000001000f23d80f21f835c00000300f23f8f20fb51ce3f20f30c4e3614a68a5420f005800c4c3e15fab3000000072c4e1796f17", 0x49}], 0x1, 0x13, 0x0, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4048aecb, &(0x7f0000000680))
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@perf_event={0x4}}, 0x18)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000240)=r6)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000c40)={0x1, 0x0, [{0x0, 0x61, &(0x7f00000008c0)=""/243}]})
ioctl$VHOST_SET_VRING_ERR(r5, 0x4008af22, &(0x7f00000002c0)={0x1, r6})
ioctl$VHOST_GET_VRING_BASE(r5, 0xc008af12, &(0x7f0000000180))
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r7)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000200)={0x80f0f004, 0x1})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r4], 0x60}}, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0x80045500, &(0x7f0000000580))
syz_emit_ethernet(0x4e, &(0x7f00000021c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6002adf700183a0000000000000000000000ffff0a010102ff0200"], 0x0)

616.641318ms ago: executing program 6 (id=1819):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="5c0000002d000100000500000000000004000080460011802fe5af660e49035a45f4bfb9f42cf4a03da9dc13dd24291214b225a0c4824cdc01eaf173584a4f8ccf2725dd06000000937bd001977f139508"], 0x5c}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x5, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000140)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECUREBITS(0x1b, 0x0)
recvmsg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)=""/218, 0xda}], 0x1, &(0x7f0000000280)=""/55, 0x37}, 0x40000120)

350.080893ms ago: executing program 6 (id=1853):
r0 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(r2, 0x4068aea3, &(0x7f00000001c0)={0xa3, 0x0, &(0x7f0000000040)}) (async)
r3 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
r4 = fsopen(&(0x7f0000000100)='debugfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000040)='context', &(0x7f0000000080)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) (async)
ioctl$BLKRRPART(r3, 0x125f, 0x0) (async)
pwrite64(r3, &(0x7f0000000000)="a5", 0xfffffe8c, 0x2)

244.445428ms ago: executing program 7 (id=1826):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000440)={'#! ', './cgroup.cpu/cgroup.procs/file0'}, 0x23)
ftruncate(r0, 0x3)
ioctl$PPPIOCATTACH(r0, 0x4004743d, &(0x7f0000000000)=0x1)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000080), 0x0, 0x2)
ioctl$SNDRV_PCM_IOCTL_DRAIN(r1, 0x4144, 0x0)

156.499577ms ago: executing program 7 (id=1854):
r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r1 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, &(0x7f00000001c0)="a6", 0x1, r1)
keyctl$KEYCTL_MOVE(0x1e, r0, 0xffffffffffffffff, r1, 0x0)
add_key(&(0x7f0000000000)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0xffffffffffffffc0, r1)

156.134512ms ago: executing program 3 (id=1855):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r1, 0x5421, &(0x7f0000000240)=0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r3, 0x80de02bd3ca0bfdb}, 0x14}}, 0x800)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r4)
sendmsg$IEEE802154_START_REQ(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x54, r5, 0x1, 0x70bd31, 0x0, {}, [@IEEE802154_ATTR_CHANNEL={0x5}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x1}, @IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0xfe}, @IEEE802154_ATTR_BCN_ORD={0x5}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x2}, @IEEE802154_ATTR_PAN_COORD={0x5, 0x19, 0x4}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0xb}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa2}]}, 0x54}, 0x1, 0x0, 0x0, 0x18000}, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r6, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r6, &(0x7f0000001000)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000100)="90", 0x1}], 0x1}}], 0x1, 0x20008050)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r6, 0x84, 0x77, &(0x7f0000000180)=ANY=[], 0x1000f)
listen(r0, 0x1)
shutdown(r1, 0x0)
poll(&(0x7f0000000180)=[{r1}], 0x1, 0x2)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="3400000021000100000000000000000002000000faff00000000000008001800"], 0x34}}, 0x0)

80.656327ms ago: executing program 3 (id=1856):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = dup(r1)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r2, 0xc0e05403, &(0x7f0000000800)={{0xffffffffffffffff, 0x2, 0xffffffff, 0x0, 0x405}, 0x200, 0x3, 'id1\x00', 'timer0\x00', 0x0, 0x6, 0xee3, 0x400, 0x77c1907c})
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000000), 0x4)

80.216266ms ago: executing program 7 (id=1857):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000700)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYRESHEX=r0], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000680)=ANY=[@ANYBLOB="050000000000000007000000000000008510000002000000850000000500000095000000000000009500a50500000000", @ANYRESOCT=0x0], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000000)={'team0\x00', &(0x7f0000000400)=@ethtool_channels={0x3d, 0x54, 0x5, 0x8, 0x2, 0x9, 0x6, 0x1, 0x189843df}}) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x2}}, './file0\x00'})
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw-camellia-aesni-avx2\x00'}, 0x58) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) (async)
r5 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x10, 0x0) (async)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r5, 0x1, &(0x7f0000000780)={0x186, r6}, 0x0)
close(r5) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="21593bc59c749294fe06e351c9834700", @ANYRES16=r7, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r8, @ANYBLOB="0800050008000000"], 0x24}}, 0x48000)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r9, 0x2, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", ""]}, 0xe}}, 0x8001)
r10 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r10, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10) (async)
sendmsg$nl_generic(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB="1c0000001a00010a00000000000000000200000008"], 0x1c}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r4) (async)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3) (async)
setgroups(0x0, 0x0)
socket(0x10, 0x3, 0x0) (async)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000540)={0x0, 0x0, <r11=>0x0}, &(0x7f0000000580)=0x4f)
setregid(0xffffffffffffffff, r11)

79.841079ms ago: executing program 7 (id=1858):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r0, 0x6, 0x6, &(0x7f0000003d80)=0x6, 0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x9, [@volatile={0x0, 0x0, 0x0, 0x9, 0x5}, @var={0x7, 0x0, 0x0, 0xe, 0x1}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x2}, @func_proto, @union={0x0, 0x0, 0x0, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f]}}, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b03000000000000300012800b00010067656e6576650000200002800800010001000000140007000000000000000005000000000000000108000a00", @ANYRES32], 0x58}}, 0x0)

79.566929ms ago: executing program 3 (id=1859):
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={[], [], 0x3a})
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r1}, 0x10)
r2 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_CTRL(r2, 0xc008561b, &(0x7f00000000c0)={0x9909cb, 0x9})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="4000000010001304000000000000000000000c00", @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800b00010067656e65766500001000b780040006000500080040000000"], 0x40}}, 0x0)

518.24µs ago: executing program 4 (id=1860):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0xb)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_ENUMOUTPUT(r1, 0xc0485630, &(0x7f00000018c0)={0x0, "4397146ada3c1a625ed01717883e509c938229309b4f368c8300c49bed277a5d", 0x1, 0xde3, 0x7, 0x20, 0x4})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf) (async)
ioctl$TCFLSH(r0, 0x400455c8, 0xb) (async)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) (async)
ioctl$VIDIOC_ENUMOUTPUT(r1, 0xc0485630, &(0x7f00000018c0)={0x0, "4397146ada3c1a625ed01717883e509c938229309b4f368c8300c49bed277a5d", 0x1, 0xde3, 0x7, 0x20, 0x4}) (async)

99.717µs ago: executing program 3 (id=1861):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="5c0000002d000100000600000000000004000080460011802fe5af660e49035a45f4bfb9f42cf4a03da9dc13dd24291214b225a0c4824cdc01eaf173584a4f8ccf2725dd06000000937bd001977f139508"], 0x5c}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x5, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000140)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECUREBITS(0x1b, 0x0)
recvmsg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)=""/218, 0xda}], 0x1, &(0x7f0000000280)=""/55, 0x37}, 0x40000120)

0s ago: executing program 4 (id=1862):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0x20, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000140)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000140)={<r2=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc03064ca, &(0x7f0000000380)={&(0x7f0000000000)=[r2], &(0x7f0000000340)=[0x100000000], 0x9608, 0x1})
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x28, 0x1, 0x2, "4f80ff6f426ebb117c0caba25f00000000000000000000000000f3ff00", 0x31303553})

kernel console output (not intermixed with test programs):

USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.838522][T11253] netlink: 'syz.1.1613': attribute type 1 has an invalid length.
[  175.843727][   T63] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  175.966932][   T65] usb 9-1: GET_CAPABILITIES returned 0
[  175.968926][   T65] usbtmc 9-1:16.0: can't read capabilities
[  175.987828][   T65] usb 9-1: USB disconnect, device number 9
[  176.009345][   T63] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  176.013759][T11268] netlink: 'syz.4.1616': attribute type 10 has an invalid length.
[  176.014073][   T63] usb 10-1: config 0 interface 0 has no altsetting 0
[  176.016267][T11268] lo: entered promiscuous mode
[  176.020618][T11268] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  176.021066][   T63] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  176.030167][   T63] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  176.033486][   T63] usb 10-1: Product: syz
[  176.037294][   T63] usb 10-1: Manufacturer: syz
[  176.039307][   T63] usb 10-1: SerialNumber: syz
[  176.044636][   T63] usb 10-1: config 0 descriptor??
[  176.050973][   T63] usb 10-1: selecting invalid altsetting 0
[  176.106880][T11281] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  176.124794][T11281] CPU: 0 UID: 0 PID: 11281 Comm: syz.3.1619 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  176.124813][T11281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.124820][T11281] Call Trace:
[  176.124824][T11281]  <TASK>
[  176.124830][T11281]  dump_stack_lvl+0x16c/0x1f0
[  176.124849][T11281]  sysfs_warn_dup+0x7f/0xa0
[  176.124862][T11281]  sysfs_do_create_link_sd+0x124/0x140
[  176.124875][T11281]  sysfs_create_link+0x61/0xc0
[  176.124887][T11281]  device_add+0x62c/0x1a70
[  176.124904][T11281]  ? __pfx_device_add+0x10/0x10
[  176.124917][T11281]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  176.124930][T11281]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  176.124952][T11281]  wiphy_register+0x1c9c/0x2850
[  176.124963][T11281]  ? netdev_run_todo+0x864/0x1320
[  176.124977][T11281]  ? __dev_printk+0x220/0x270
[  176.124990][T11281]  ? __pfx_wiphy_register+0x10/0x10
[  176.125042][T11281]  ieee80211_register_hw+0x2432/0x4020
[  176.125059][T11281]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  176.125085][T11281]  ? find_held_lock+0x2b/0x80
[  176.125100][T11281]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  176.125112][T11281]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  176.125124][T11281]  ? __hrtimer_setup+0x176/0x280
[  176.125137][T11281]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  176.125161][T11281]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  176.125176][T11281]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  176.125194][T11281]  ? __asan_memcpy+0x3c/0x60
[  176.125214][T11281]  hwsim_new_radio_nl+0xb51/0x12c0
[  176.125232][T11281]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  176.125253][T11281]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  176.125270][T11281]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  176.125291][T11281]  genl_family_rcv_msg_doit+0x209/0x2f0
[  176.125309][T11281]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  176.125330][T11281]  ? bpf_lsm_capable+0x9/0x10
[  176.125340][T11281]  ? security_capable+0x7e/0x260
[  176.125354][T11281]  ? ns_capable+0xd7/0x110
[  176.125369][T11281]  genl_rcv_msg+0x55c/0x800
[  176.125387][T11281]  ? __pfx_genl_rcv_msg+0x10/0x10
[  176.125402][T11281]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  176.125419][T11281]  ? __lock_acquire+0xaa4/0x1ba0
[  176.125439][T11281]  netlink_rcv_skb+0x16a/0x440
[  176.125452][T11281]  ? __pfx_genl_rcv_msg+0x10/0x10
[  176.125468][T11281]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  176.125490][T11281]  ? __pfx_down_read+0x10/0x10
[  176.125508][T11281]  ? netlink_deliver_tap+0x1ae/0xd30
[  176.125524][T11281]  genl_rcv+0x28/0x40
[  176.125541][T11281]  netlink_unicast+0x53d/0x7f0
[  176.125558][T11281]  ? __pfx_netlink_unicast+0x10/0x10
[  176.125576][T11281]  netlink_sendmsg+0x8d1/0xdd0
[  176.125592][T11281]  ? __pfx_netlink_sendmsg+0x10/0x10
[  176.125612][T11281]  ____sys_sendmsg+0xa98/0xc70
[  176.125628][T11281]  ? copy_msghdr_from_user+0x10a/0x160
[  176.125642][T11281]  ? __pfx_____sys_sendmsg+0x10/0x10
[  176.125661][T11281]  ? try_to_wake_up+0xa2f/0x1680
[  176.125678][T11281]  ___sys_sendmsg+0x134/0x1d0
[  176.125692][T11281]  ? __pfx____sys_sendmsg+0x10/0x10
[  176.125723][T11281]  __sys_sendmsg+0x16d/0x220
[  176.125735][T11281]  ? __pfx___sys_sendmsg+0x10/0x10
[  176.125747][T11281]  ? __x64_sys_futex+0x1e0/0x4c0
[  176.125766][T11281]  ? rcu_is_watching+0x12/0xc0
[  176.125784][T11281]  do_syscall_64+0xcd/0x260
[  176.125801][T11281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.125813][T11281] RIP: 0033:0x7f40ad78e969
[  176.125823][T11281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.125833][T11281] RSP: 002b:00007f40ae653038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  176.125844][T11281] RAX: ffffffffffffffda RBX: 00007f40ad9b5fa0 RCX: 00007f40ad78e969
[  176.125851][T11281] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  176.125858][T11281] RBP: 00007f40ad810ab1 R08: 0000000000000000 R09: 0000000000000000
[  176.125864][T11281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  176.125870][T11281] R13: 0000000000000000 R14: 00007f40ad9b5fa0 R15: 00007ffc51da8e18
[  176.125884][T11281]  </TASK>
[  176.254248][   T63] usb 10-1: USB disconnect, device number 6
[  176.265550][T11288] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  176.296424][T11288] fuse: Bad value for 'group_id'
[  176.297984][T11288] fuse: Bad value for 'group_id'
[  176.801106][T11309] __nla_validate_parse: 12 callbacks suppressed
[  176.801118][T11309] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1626'.
[  176.803195][T11309] 9pnet_virtio: no channels available for device syz
[  176.898462][T11318] netlink: 'syz.5.1629': attribute type 1 has an invalid length.
[  176.898482][T11318] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1629'.
[  177.130525][T11322] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  177.130562][T11322] CPU: 0 UID: 0 PID: 11322 Comm: syz.5.1630 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  177.130579][T11322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  177.130589][T11322] Call Trace:
[  177.130594][T11322]  <TASK>
[  177.130601][T11322]  dump_stack_lvl+0x16c/0x1f0
[  177.130630][T11322]  sysfs_warn_dup+0x7f/0xa0
[  177.130643][T11322]  sysfs_do_create_link_sd+0x124/0x140
[  177.130657][T11322]  sysfs_create_link+0x61/0xc0
[  177.130668][T11322]  device_add+0x62c/0x1a70
[  177.130684][T11322]  ? __pfx_device_add+0x10/0x10
[  177.130697][T11322]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  177.130710][T11322]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  177.130731][T11322]  wiphy_register+0x1c9c/0x2850
[  177.130743][T11322]  ? netdev_run_todo+0x864/0x1320
[  177.130757][T11322]  ? __dev_printk+0x220/0x270
[  177.130770][T11322]  ? __pfx_wiphy_register+0x10/0x10
[  177.130789][T11322]  ieee80211_register_hw+0x2432/0x4020
[  177.130806][T11322]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  177.130819][T11322]  ? find_held_lock+0x2b/0x80
[  177.130833][T11322]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  177.130845][T11322]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  177.130857][T11322]  ? __hrtimer_setup+0x176/0x280
[  177.130872][T11322]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  177.130896][T11322]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  177.130909][T11322]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  177.130926][T11322]  ? __asan_memcpy+0x3c/0x60
[  177.130945][T11322]  hwsim_new_radio_nl+0xb51/0x12c0
[  177.130962][T11322]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  177.130982][T11322]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  177.130999][T11322]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  177.131019][T11322]  genl_family_rcv_msg_doit+0x209/0x2f0
[  177.131036][T11322]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  177.131057][T11322]  ? bpf_lsm_capable+0x9/0x10
[  177.131067][T11322]  ? security_capable+0x7e/0x260
[  177.131082][T11322]  ? ns_capable+0xd7/0x110
[  177.131100][T11322]  genl_rcv_msg+0x55c/0x800
[  177.131118][T11322]  ? __pfx_genl_rcv_msg+0x10/0x10
[  177.131134][T11322]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  177.131151][T11322]  ? __lock_acquire+0xaa4/0x1ba0
[  177.131170][T11322]  netlink_rcv_skb+0x16a/0x440
[  177.131191][T11322]  ? __pfx_genl_rcv_msg+0x10/0x10
[  177.131208][T11322]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  177.131231][T11322]  ? __pfx_down_read+0x10/0x10
[  177.131250][T11322]  ? netlink_deliver_tap+0x1ae/0xd30
[  177.131266][T11322]  genl_rcv+0x28/0x40
[  177.131281][T11322]  netlink_unicast+0x53d/0x7f0
[  177.131298][T11322]  ? __pfx_netlink_unicast+0x10/0x10
[  177.131316][T11322]  netlink_sendmsg+0x8d1/0xdd0
[  177.131334][T11322]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.131354][T11322]  ____sys_sendmsg+0xa98/0xc70
[  177.131391][T11322]  ? copy_msghdr_from_user+0x10a/0x160
[  177.131403][T11322]  ? __pfx_____sys_sendmsg+0x10/0x10
[  177.131421][T11322]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  177.131443][T11322]  ___sys_sendmsg+0x134/0x1d0
[  177.131457][T11322]  ? __pfx____sys_sendmsg+0x10/0x10
[  177.131489][T11322]  __sys_sendmsg+0x16d/0x220
[  177.131501][T11322]  ? __pfx___sys_sendmsg+0x10/0x10
[  177.131513][T11322]  ? __x64_sys_futex+0x1e0/0x4c0
[  177.131532][T11322]  ? rcu_is_watching+0x12/0xc0
[  177.131550][T11322]  do_syscall_64+0xcd/0x260
[  177.131567][T11322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.131579][T11322] RIP: 0033:0x7f466578e969
[  177.131589][T11322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.131599][T11322] RSP: 002b:00007f4666606038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  177.131611][T11322] RAX: ffffffffffffffda RBX: 00007f46659b5fa0 RCX: 00007f466578e969
[  177.131618][T11322] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  177.131624][T11322] RBP: 00007f4665810ab1 R08: 0000000000000000 R09: 0000000000000000
[  177.131630][T11322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.131637][T11322] R13: 0000000000000000 R14: 00007f46659b5fa0 R15: 00007fffbf19b648
[  177.131651][T11322]  </TASK>
[  177.462355][T11337] geneve2: entered promiscuous mode
[  177.465338][T11337] geneve2: entered allmulticast mode
[  177.502311][T11344] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1638'.
[  177.552183][T11346] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  177.555954][T11346] CPU: 3 UID: 0 PID: 11346 Comm: syz.1.1640 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  177.555971][T11346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  177.555978][T11346] Call Trace:
[  177.555983][T11346]  <TASK>
[  177.555988][T11346]  dump_stack_lvl+0x16c/0x1f0
[  177.556009][T11346]  sysfs_warn_dup+0x7f/0xa0
[  177.556021][T11346]  sysfs_do_create_link_sd+0x124/0x140
[  177.556033][T11346]  sysfs_create_link+0x61/0xc0
[  177.556045][T11346]  device_add+0x62c/0x1a70
[  177.556062][T11346]  ? __pfx_device_add+0x10/0x10
[  177.556076][T11346]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  177.556089][T11346]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  177.556110][T11346]  wiphy_register+0x1c9c/0x2850
[  177.556121][T11346]  ? netdev_run_todo+0x864/0x1320
[  177.556134][T11346]  ? __dev_printk+0x220/0x270
[  177.556147][T11346]  ? __pfx_wiphy_register+0x10/0x10
[  177.556166][T11346]  ieee80211_register_hw+0x2432/0x4020
[  177.556183][T11346]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  177.556196][T11346]  ? find_held_lock+0x2b/0x80
[  177.556211][T11346]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  177.556222][T11346]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  177.556235][T11346]  ? __hrtimer_setup+0x176/0x280
[  177.556257][T11346]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  177.556282][T11346]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  177.556296][T11346]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  177.556314][T11346]  ? __asan_memcpy+0x3c/0x60
[  177.556332][T11346]  hwsim_new_radio_nl+0xb51/0x12c0
[  177.556350][T11346]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  177.556371][T11346]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  177.556389][T11346]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  177.556408][T11346]  genl_family_rcv_msg_doit+0x209/0x2f0
[  177.556425][T11346]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  177.556451][T11346]  ? bpf_lsm_capable+0x9/0x10
[  177.556462][T11346]  ? security_capable+0x7e/0x260
[  177.556478][T11346]  ? ns_capable+0xd7/0x110
[  177.556494][T11346]  genl_rcv_msg+0x55c/0x800
[  177.556512][T11346]  ? __pfx_genl_rcv_msg+0x10/0x10
[  177.556529][T11346]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  177.556547][T11346]  ? __lock_acquire+0xaa4/0x1ba0
[  177.556567][T11346]  netlink_rcv_skb+0x16a/0x440
[  177.556582][T11346]  ? __pfx_genl_rcv_msg+0x10/0x10
[  177.556598][T11346]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  177.556619][T11346]  ? __pfx_down_read+0x10/0x10
[  177.556636][T11346]  ? netlink_deliver_tap+0x1ae/0xd30
[  177.556651][T11346]  genl_rcv+0x28/0x40
[  177.556665][T11346]  netlink_unicast+0x53d/0x7f0
[  177.556680][T11346]  ? __pfx_netlink_unicast+0x10/0x10
[  177.556698][T11346]  netlink_sendmsg+0x8d1/0xdd0
[  177.556714][T11346]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.556733][T11346]  ____sys_sendmsg+0xa98/0xc70
[  177.556750][T11346]  ? copy_msghdr_from_user+0x10a/0x160
[  177.556761][T11346]  ? __pfx_____sys_sendmsg+0x10/0x10
[  177.556779][T11346]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  177.556796][T11346]  ___sys_sendmsg+0x134/0x1d0
[  177.556810][T11346]  ? __pfx____sys_sendmsg+0x10/0x10
[  177.556840][T11346]  __sys_sendmsg+0x16d/0x220
[  177.556853][T11346]  ? __pfx___sys_sendmsg+0x10/0x10
[  177.556865][T11346]  ? __x64_sys_futex+0x1e0/0x4c0
[  177.556884][T11346]  ? rcu_is_watching+0x12/0xc0
[  177.556901][T11346]  do_syscall_64+0xcd/0x260
[  177.556918][T11346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.556929][T11346] RIP: 0033:0x7fd9b818e969
[  177.556938][T11346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.556948][T11346] RSP: 002b:00007fd9b9001038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  177.556997][T11346] RAX: ffffffffffffffda RBX: 00007fd9b83b5fa0 RCX: 00007fd9b818e969
[  177.557005][T11346] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  177.557012][T11346] RBP: 00007fd9b8210ab1 R08: 0000000000000000 R09: 0000000000000000
[  177.557018][T11346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.557025][T11346] R13: 0000000000000000 R14: 00007fd9b83b5fa0 R15: 00007ffe738087a8
[  177.557041][T11346]  </TASK>
[  177.787616][T11352] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  177.952816][T11356] netlink: 1 bytes leftover after parsing attributes in process `syz.3.1644'.
[  178.042377][   T40] kauditd_printk_skb: 19 callbacks suppressed
[  178.042389][   T40] audit: type=1400 audit(1747356092.538:3175): avc:  denied  { create } for  pid=11359 comm="syz.5.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  178.051611][   T40] audit: type=1400 audit(1747356092.548:3176): avc:  denied  { sys_admin } for  pid=11359 comm="syz.5.1645" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  178.130316][T11369] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  178.168844][T11373] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  178.171277][T11364] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1646'.
[  178.172685][T11373] CPU: 3 UID: 0 PID: 11373 Comm: syz.3.1649 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  178.172702][T11373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.172710][T11373] Call Trace:
[  178.172714][T11373]  <TASK>
[  178.172719][T11373]  dump_stack_lvl+0x16c/0x1f0
[  178.172739][T11373]  sysfs_warn_dup+0x7f/0xa0
[  178.172752][T11373]  sysfs_do_create_link_sd+0x124/0x140
[  178.172765][T11373]  sysfs_create_link+0x61/0xc0
[  178.172777][T11373]  device_add+0x62c/0x1a70
[  178.172793][T11373]  ? __pfx_device_add+0x10/0x10
[  178.172806][T11373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  178.172820][T11373]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  178.172840][T11373]  wiphy_register+0x1c9c/0x2850
[  178.172852][T11373]  ? netdev_run_todo+0x864/0x1320
[  178.172865][T11373]  ? __dev_printk+0x220/0x270
[  178.172878][T11373]  ? __pfx_wiphy_register+0x10/0x10
[  178.172897][T11373]  ieee80211_register_hw+0x2432/0x4020
[  178.172914][T11373]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  178.172927][T11373]  ? find_held_lock+0x2b/0x80
[  178.172941][T11373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  178.172953][T11373]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  178.172966][T11373]  ? __hrtimer_setup+0x176/0x280
[  178.173008][T11373]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  178.173032][T11373]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  178.173045][T11373]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  178.173062][T11373]  ? __asan_memcpy+0x3c/0x60
[  178.173080][T11373]  hwsim_new_radio_nl+0xb51/0x12c0
[  178.173098][T11373]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  178.173117][T11373]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  178.173135][T11373]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  178.173154][T11373]  genl_family_rcv_msg_doit+0x209/0x2f0
[  178.173172][T11373]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  178.173193][T11373]  ? bpf_lsm_capable+0x9/0x10
[  178.173203][T11373]  ? security_capable+0x7e/0x260
[  178.173217][T11373]  ? ns_capable+0xd7/0x110
[  178.173231][T11373]  genl_rcv_msg+0x55c/0x800
[  178.173248][T11373]  ? __pfx_genl_rcv_msg+0x10/0x10
[  178.173264][T11373]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  178.173281][T11373]  ? __lock_acquire+0xaa4/0x1ba0
[  178.173300][T11373]  netlink_rcv_skb+0x16a/0x440
[  178.173314][T11373]  ? __pfx_genl_rcv_msg+0x10/0x10
[  178.173331][T11373]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  178.173351][T11373]  ? __pfx_down_read+0x10/0x10
[  178.173370][T11373]  ? netlink_deliver_tap+0x1ae/0xd30
[  178.173385][T11373]  genl_rcv+0x28/0x40
[  178.173398][T11373]  netlink_unicast+0x53d/0x7f0
[  178.173414][T11373]  ? __pfx_netlink_unicast+0x10/0x10
[  178.173437][T11373]  netlink_sendmsg+0x8d1/0xdd0
[  178.173454][T11373]  ? __pfx_netlink_sendmsg+0x10/0x10
[  178.173475][T11373]  ____sys_sendmsg+0xa98/0xc70
[  178.173492][T11373]  ? copy_msghdr_from_user+0x10a/0x160
[  178.173506][T11373]  ? __pfx_____sys_sendmsg+0x10/0x10
[  178.173529][T11373]  ___sys_sendmsg+0x134/0x1d0
[  178.173543][T11373]  ? __pfx____sys_sendmsg+0x10/0x10
[  178.173587][T11373]  __sys_sendmsg+0x16d/0x220
[  178.173602][T11373]  ? __pfx___sys_sendmsg+0x10/0x10
[  178.173613][T11373]  ? __x64_sys_futex+0x1e0/0x4c0
[  178.173633][T11373]  ? rcu_is_watching+0x12/0xc0
[  178.173652][T11373]  do_syscall_64+0xcd/0x260
[  178.173670][T11373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.173682][T11373] RIP: 0033:0x7f40ad78e969
[  178.173692][T11373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.173702][T11373] RSP: 002b:00007f40ae653038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  178.173713][T11373] RAX: ffffffffffffffda RBX: 00007f40ad9b5fa0 RCX: 00007f40ad78e969
[  178.173720][T11373] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  178.173726][T11373] RBP: 00007f40ad810ab1 R08: 0000000000000000 R09: 0000000000000000
[  178.173733][T11373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  178.173739][T11373] R13: 0000000000000000 R14: 00007f40ad9b5fa0 R15: 00007ffc51da8e18
[  178.173753][T11373]  </TASK>
[  178.265479][T11383] validate_nla: 2 callbacks suppressed
[  178.265489][T11383] netlink: 'syz.3.1652': attribute type 1 has an invalid length.
[  178.278498][T11364] xfrm1: entered promiscuous mode
[  178.279925][T11383] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1652'.
[  178.281337][T11364] xfrm1: entered allmulticast mode
[  178.337589][   T40] audit: type=1400 audit(1747356092.838:3177): avc:  denied  { connect } for  pid=11363 comm="syz.5.1646" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  178.561368][T11405] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  178.570181][T11405] CPU: 2 UID: 0 PID: 11405 Comm: syz.1.1658 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  178.570202][T11405] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.570209][T11405] Call Trace:
[  178.570214][T11405]  <TASK>
[  178.570219][T11405]  dump_stack_lvl+0x16c/0x1f0
[  178.570239][T11405]  sysfs_warn_dup+0x7f/0xa0
[  178.570257][T11405]  sysfs_do_create_link_sd+0x124/0x140
[  178.570284][T11405]  sysfs_create_link+0x61/0xc0
[  178.570302][T11405]  device_add+0x62c/0x1a70
[  178.570324][T11405]  ? __pfx_device_add+0x10/0x10
[  178.570338][T11405]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  178.570351][T11405]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  178.570383][T11405]  wiphy_register+0x1c9c/0x2850
[  178.570400][T11405]  ? netdev_run_todo+0x864/0x1320
[  178.570421][T11405]  ? __dev_printk+0x220/0x270
[  178.570443][T11405]  ? __pfx_wiphy_register+0x10/0x10
[  178.570465][T11405]  ieee80211_register_hw+0x2432/0x4020
[  178.570489][T11405]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  178.570510][T11405]  ? find_held_lock+0x2b/0x80
[  178.570531][T11405]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  178.570550][T11405]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  178.570568][T11405]  ? __hrtimer_setup+0x176/0x280
[  178.570586][T11405]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  178.570620][T11405]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  178.570641][T11405]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  178.570667][T11405]  ? __asan_memcpy+0x3c/0x60
[  178.570695][T11405]  hwsim_new_radio_nl+0xb51/0x12c0
[  178.570717][T11405]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  178.570750][T11405]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  178.570775][T11405]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  178.570806][T11405]  genl_family_rcv_msg_doit+0x209/0x2f0
[  178.570828][T11405]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  178.570861][T11405]  ? bpf_lsm_capable+0x9/0x10
[  178.570875][T11405]  ? security_capable+0x7e/0x260
[  178.570898][T11405]  ? ns_capable+0xd7/0x110
[  178.570921][T11405]  genl_rcv_msg+0x55c/0x800
[  178.570944][T11405]  ? __pfx_genl_rcv_msg+0x10/0x10
[  178.570967][T11405]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  178.570992][T11405]  ? __lock_acquire+0xaa4/0x1ba0
[  178.571023][T11405]  netlink_rcv_skb+0x16a/0x440
[  178.571044][T11405]  ? __pfx_genl_rcv_msg+0x10/0x10
[  178.571065][T11405]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  178.571099][T11405]  ? __pfx_down_read+0x10/0x10
[  178.571126][T11405]  ? netlink_deliver_tap+0x1ae/0xd30
[  178.571145][T11405]  genl_rcv+0x28/0x40
[  178.571165][T11405]  netlink_unicast+0x53d/0x7f0
[  178.571188][T11405]  ? __pfx_netlink_unicast+0x10/0x10
[  178.571218][T11405]  netlink_sendmsg+0x8d1/0xdd0
[  178.571242][T11405]  ? __pfx_netlink_sendmsg+0x10/0x10
[  178.571274][T11405]  ____sys_sendmsg+0xa98/0xc70
[  178.571298][T11405]  ? copy_msghdr_from_user+0x10a/0x160
[  178.571316][T11405]  ? __pfx_____sys_sendmsg+0x10/0x10
[  178.571344][T11405]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  178.571368][T11405]  ___sys_sendmsg+0x134/0x1d0
[  178.571390][T11405]  ? __pfx____sys_sendmsg+0x10/0x10
[  178.571443][T11405]  __sys_sendmsg+0x16d/0x220
[  178.571462][T11405]  ? __pfx___sys_sendmsg+0x10/0x10
[  178.571475][T11405]  ? __x64_sys_futex+0x1e0/0x4c0
[  178.571515][T11405]  do_syscall_64+0xcd/0x260
[  178.571542][T11405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.571558][T11405] RIP: 0033:0x7fd9b818e969
[  178.571572][T11405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.571587][T11405] RSP: 002b:00007fd9b9001038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  178.571598][T11405] RAX: ffffffffffffffda RBX: 00007fd9b83b5fa0 RCX: 00007fd9b818e969
[  178.571628][T11405] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  178.571639][T11405] RBP: 00007fd9b8210ab1 R08: 0000000000000000 R09: 0000000000000000
[  178.571651][T11405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  178.571661][T11405] R13: 0000000000000000 R14: 00007fd9b83b5fa0 R15: 00007ffe738087a8
[  178.571686][T11405]  </TASK>
[  178.608743][T11413] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1660'.
[  178.610120][    C2] vkms_vblank_simulate: vblank timer overrun
[  178.634637][   T40] audit: type=1400 audit(1747356093.128:3178): avc:  denied  { getopt } for  pid=11410 comm="syz.5.1661" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  178.726667][   T40] audit: type=1400 audit(1747356094.170:3179): avc:  denied  { mounton } for  pid=11411 comm="syz.3.1660" path="/398/file0" dev="9p" ino=35913915 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  178.761054][   T40] audit: type=1400 audit(1747356094.260:3180): avc:  denied  { read } for  pid=11423 comm="syz.1.1664" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  178.772848][T11427] netlink: 'syz.5.1665': attribute type 1 has an invalid length.
[  178.775469][T11427] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1665'.
[  178.800941][T11429] pim6reg: entered allmulticast mode
[  178.848040][T11430] netlink: 'syz.1.1664': attribute type 4 has an invalid length.
[  178.864189][T11430] netlink: 'syz.1.1664': attribute type 4 has an invalid length.
[  178.869499][T11430] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1664'.
[  178.908513][T11424] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  178.911761][T11424] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  178.914533][T11424] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  178.916548][T11424] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  178.920568][T11424] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  178.926858][T11424] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  178.928841][T11424] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  178.932440][T11424] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  179.041447][T11453] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  179.046648][T11453] CPU: 0 UID: 0 PID: 11453 Comm: syz.1.1671 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  179.046675][T11453] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.046687][T11453] Call Trace:
[  179.046695][T11453]  <TASK>
[  179.046703][T11453]  dump_stack_lvl+0x16c/0x1f0
[  179.046736][T11453]  sysfs_warn_dup+0x7f/0xa0
[  179.046755][T11453]  sysfs_do_create_link_sd+0x124/0x140
[  179.046776][T11453]  sysfs_create_link+0x61/0xc0
[  179.046795][T11453]  device_add+0x62c/0x1a70
[  179.046825][T11453]  ? __pfx_device_add+0x10/0x10
[  179.046847][T11453]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  179.046870][T11453]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  179.046907][T11453]  wiphy_register+0x1c9c/0x2850
[  179.046924][T11453]  ? netdev_run_todo+0x864/0x1320
[  179.046946][T11453]  ? __dev_printk+0x220/0x270
[  179.046970][T11453]  ? __pfx_wiphy_register+0x10/0x10
[  179.047006][T11453]  ieee80211_register_hw+0x2432/0x4020
[  179.047037][T11453]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  179.047060][T11453]  ? find_held_lock+0x2b/0x80
[  179.047083][T11453]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  179.047103][T11453]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  179.047121][T11453]  ? __hrtimer_setup+0x176/0x280
[  179.047143][T11453]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  179.047183][T11453]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  179.047204][T11453]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  179.047231][T11453]  ? __asan_memcpy+0x3c/0x60
[  179.047260][T11453]  hwsim_new_radio_nl+0xb51/0x12c0
[  179.047289][T11453]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  179.047324][T11453]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  179.047352][T11453]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  179.047386][T11453]  genl_family_rcv_msg_doit+0x209/0x2f0
[  179.047413][T11453]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  179.047449][T11453]  ? bpf_lsm_capable+0x9/0x10
[  179.047472][T11453]  ? security_capable+0x7e/0x260
[  179.047497][T11453]  ? ns_capable+0xd7/0x110
[  179.047522][T11453]  genl_rcv_msg+0x55c/0x800
[  179.047551][T11453]  ? __pfx_genl_rcv_msg+0x10/0x10
[  179.047578][T11453]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  179.047606][T11453]  ? __lock_acquire+0xaa4/0x1ba0
[  179.047639][T11453]  netlink_rcv_skb+0x16a/0x440
[  179.047662][T11453]  ? __pfx_genl_rcv_msg+0x10/0x10
[  179.047689][T11453]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  179.047726][T11453]  ? __pfx_down_read+0x10/0x10
[  179.047754][T11453]  ? netlink_deliver_tap+0x1ae/0xd30
[  179.047782][T11453]  genl_rcv+0x28/0x40
[  179.047805][T11453]  netlink_unicast+0x53d/0x7f0
[  179.047832][T11453]  ? __pfx_netlink_unicast+0x10/0x10
[  179.047863][T11453]  netlink_sendmsg+0x8d1/0xdd0
[  179.047890][T11453]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.047923][T11453]  ____sys_sendmsg+0xa98/0xc70
[  179.047947][T11453]  ? copy_msghdr_from_user+0x10a/0x160
[  179.047966][T11453]  ? __pfx_____sys_sendmsg+0x10/0x10
[  179.047994][T11453]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  179.048026][T11453]  ___sys_sendmsg+0x134/0x1d0
[  179.048048][T11453]  ? __pfx____sys_sendmsg+0x10/0x10
[  179.048102][T11453]  __sys_sendmsg+0x16d/0x220
[  179.048123][T11453]  ? __pfx___sys_sendmsg+0x10/0x10
[  179.048143][T11453]  ? __x64_sys_futex+0x1e0/0x4c0
[  179.048183][T11453]  do_syscall_64+0xcd/0x260
[  179.048211][T11453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.048229][T11453] RIP: 0033:0x7fd9b818e969
[  179.048246][T11453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.048265][T11453] RSP: 002b:00007fd9b9001038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  179.048284][T11453] RAX: ffffffffffffffda RBX: 00007fd9b83b5fa0 RCX: 00007fd9b818e969
[  179.048297][T11453] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  179.048308][T11453] RBP: 00007fd9b8210ab1 R08: 0000000000000000 R09: 0000000000000000
[  179.048321][T11453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  179.048333][T11453] R13: 0000000000000000 R14: 00007fd9b83b5fa0 R15: 00007ffe738087a8
[  179.048357][T11453]  </TASK>
[  179.329380][   T40] audit: type=1400 audit(1747356094.830:3181): avc:  denied  { read } for  pid=11454 comm="syz.5.1672" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  179.389560][   T40] audit: type=1400 audit(1747356094.890:3182): avc:  denied  { mount } for  pid=11471 comm="syz.1.1676" name="/" dev="hugetlbfs" ino=41750 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  179.411130][   T40] audit: type=1400 audit(1747356094.910:3183): avc:  denied  { unmount } for  pid=5939 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  179.488675][T11477] netlink: 'syz.4.1678': attribute type 1 has an invalid length.
[  179.495908][T11477] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1678'.
[  179.825944][   T40] audit: type=1400 audit(1747356095.330:3184): avc:  denied  { unlink } for  pid=11480 comm="syz.1.1679" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  179.926914][T11488] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  179.930528][T11488] CPU: 1 UID: 0 PID: 11488 Comm: syz.1.1681 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  179.930545][T11488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.930552][T11488] Call Trace:
[  179.930557][T11488]  <TASK>
[  179.930562][T11488]  dump_stack_lvl+0x16c/0x1f0
[  179.930582][T11488]  sysfs_warn_dup+0x7f/0xa0
[  179.930595][T11488]  sysfs_do_create_link_sd+0x124/0x140
[  179.930608][T11488]  sysfs_create_link+0x61/0xc0
[  179.930620][T11488]  device_add+0x62c/0x1a70
[  179.930637][T11488]  ? __pfx_device_add+0x10/0x10
[  179.930649][T11488]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  179.930663][T11488]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  179.930683][T11488]  wiphy_register+0x1c9c/0x2850
[  179.930695][T11488]  ? netdev_run_todo+0x864/0x1320
[  179.930708][T11488]  ? __dev_printk+0x220/0x270
[  179.930721][T11488]  ? __pfx_wiphy_register+0x10/0x10
[  179.930740][T11488]  ieee80211_register_hw+0x2432/0x4020
[  179.930757][T11488]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  179.930771][T11488]  ? find_held_lock+0x2b/0x80
[  179.930785][T11488]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  179.930796][T11488]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  179.930808][T11488]  ? __hrtimer_setup+0x176/0x280
[  179.930821][T11488]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  179.930844][T11488]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  179.930859][T11488]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  179.930875][T11488]  ? __asan_memcpy+0x3c/0x60
[  179.930893][T11488]  hwsim_new_radio_nl+0xb51/0x12c0
[  179.930910][T11488]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  179.930930][T11488]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  179.930948][T11488]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  179.930967][T11488]  genl_family_rcv_msg_doit+0x209/0x2f0
[  179.930984][T11488]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  179.931004][T11488]  ? bpf_lsm_capable+0x9/0x10
[  179.931014][T11488]  ? security_capable+0x7e/0x260
[  179.931028][T11488]  ? ns_capable+0xd7/0x110
[  179.931043][T11488]  genl_rcv_msg+0x55c/0x800
[  179.931060][T11488]  ? __pfx_genl_rcv_msg+0x10/0x10
[  179.931079][T11488]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  179.931099][T11488]  ? __lock_acquire+0xaa4/0x1ba0
[  179.931118][T11488]  netlink_rcv_skb+0x16a/0x440
[  179.931133][T11488]  ? __pfx_genl_rcv_msg+0x10/0x10
[  179.931149][T11488]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  179.931170][T11488]  ? __pfx_down_read+0x10/0x10
[  179.931187][T11488]  ? netlink_deliver_tap+0x1ae/0xd30
[  179.931203][T11488]  genl_rcv+0x28/0x40
[  179.931223][T11488]  netlink_unicast+0x53d/0x7f0
[  179.931239][T11488]  ? __pfx_netlink_unicast+0x10/0x10
[  179.931258][T11488]  netlink_sendmsg+0x8d1/0xdd0
[  179.931275][T11488]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.931296][T11488]  ____sys_sendmsg+0xa98/0xc70
[  179.931313][T11488]  ? copy_msghdr_from_user+0x10a/0x160
[  179.931326][T11488]  ? __pfx_____sys_sendmsg+0x10/0x10
[  179.931349][T11488]  ___sys_sendmsg+0x134/0x1d0
[  179.931362][T11488]  ? __pfx____sys_sendmsg+0x10/0x10
[  179.931393][T11488]  __sys_sendmsg+0x16d/0x220
[  179.931405][T11488]  ? __pfx___sys_sendmsg+0x10/0x10
[  179.931416][T11488]  ? __x64_sys_futex+0x1e0/0x4c0
[  179.931435][T11488]  ? rcu_is_watching+0x12/0xc0
[  179.931452][T11488]  do_syscall_64+0xcd/0x260
[  179.931470][T11488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.931481][T11488] RIP: 0033:0x7fd9b818e969
[  179.931491][T11488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.931502][T11488] RSP: 002b:00007fd9b9001038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  179.931513][T11488] RAX: ffffffffffffffda RBX: 00007fd9b83b5fa0 RCX: 00007fd9b818e969
[  179.931520][T11488] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  179.931526][T11488] RBP: 00007fd9b8210ab1 R08: 0000000000000000 R09: 0000000000000000
[  179.931533][T11488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  179.931539][T11488] R13: 0000000000000000 R14: 00007fd9b83b5fa0 R15: 00007ffe738087a8
[  179.931553][T11488]  </TASK>
[  179.940406][T11490] fuse: Bad value for 'fd'
[  180.232925][T11508] netlink: 'syz.5.1689': attribute type 30 has an invalid length.
[  180.243042][T11510] xt_CT: You must specify a L4 protocol and not use inversions on it
[  180.256218][T11512] netlink: 'syz.4.1690': attribute type 1 has an invalid length.
[  180.280649][T11514] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  180.285594][T11514] CPU: 1 UID: 0 PID: 11514 Comm: syz.5.1691 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  180.285610][T11514] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.285617][T11514] Call Trace:
[  180.285621][T11514]  <TASK>
[  180.285625][T11514]  dump_stack_lvl+0x16c/0x1f0
[  180.285646][T11514]  sysfs_warn_dup+0x7f/0xa0
[  180.285658][T11514]  sysfs_do_create_link_sd+0x124/0x140
[  180.285672][T11514]  sysfs_create_link+0x61/0xc0
[  180.285683][T11514]  device_add+0x62c/0x1a70
[  180.285700][T11514]  ? __pfx_device_add+0x10/0x10
[  180.285713][T11514]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.285726][T11514]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  180.285747][T11514]  wiphy_register+0x1c9c/0x2850
[  180.285758][T11514]  ? netdev_run_todo+0x864/0x1320
[  180.285772][T11514]  ? __dev_printk+0x220/0x270
[  180.285785][T11514]  ? __pfx_wiphy_register+0x10/0x10
[  180.285805][T11514]  ieee80211_register_hw+0x2432/0x4020
[  180.285821][T11514]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  180.285834][T11514]  ? find_held_lock+0x2b/0x80
[  180.285848][T11514]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.285860][T11514]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  180.285873][T11514]  ? __hrtimer_setup+0x176/0x280
[  180.285887][T11514]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  180.285910][T11514]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  180.285924][T11514]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  180.285941][T11514]  ? __asan_memcpy+0x3c/0x60
[  180.285959][T11514]  hwsim_new_radio_nl+0xb51/0x12c0
[  180.285977][T11514]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  180.285997][T11514]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  180.286031][T11514]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  180.286051][T11514]  genl_family_rcv_msg_doit+0x209/0x2f0
[  180.286070][T11514]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  180.286092][T11514]  ? bpf_lsm_capable+0x9/0x10
[  180.286104][T11514]  ? security_capable+0x7e/0x260
[  180.286119][T11514]  ? ns_capable+0xd7/0x110
[  180.286134][T11514]  genl_rcv_msg+0x55c/0x800
[  180.286151][T11514]  ? __pfx_genl_rcv_msg+0x10/0x10
[  180.286172][T11514]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  180.286189][T11514]  ? __lock_acquire+0xaa4/0x1ba0
[  180.286208][T11514]  netlink_rcv_skb+0x16a/0x440
[  180.286222][T11514]  ? __pfx_genl_rcv_msg+0x10/0x10
[  180.286240][T11514]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  180.286263][T11514]  ? __pfx_down_read+0x10/0x10
[  180.286282][T11514]  ? netlink_deliver_tap+0x1ae/0xd30
[  180.286299][T11514]  genl_rcv+0x28/0x40
[  180.286312][T11514]  netlink_unicast+0x53d/0x7f0
[  180.286328][T11514]  ? __pfx_netlink_unicast+0x10/0x10
[  180.286346][T11514]  netlink_sendmsg+0x8d1/0xdd0
[  180.286362][T11514]  ? __pfx_netlink_sendmsg+0x10/0x10
[  180.286382][T11514]  ____sys_sendmsg+0xa98/0xc70
[  180.286399][T11514]  ? copy_msghdr_from_user+0x10a/0x160
[  180.286410][T11514]  ? __pfx_____sys_sendmsg+0x10/0x10
[  180.286433][T11514]  ___sys_sendmsg+0x134/0x1d0
[  180.286446][T11514]  ? __pfx____sys_sendmsg+0x10/0x10
[  180.286476][T11514]  __sys_sendmsg+0x16d/0x220
[  180.286488][T11514]  ? __pfx___sys_sendmsg+0x10/0x10
[  180.286500][T11514]  ? __x64_sys_futex+0x1e0/0x4c0
[  180.286519][T11514]  ? rcu_is_watching+0x12/0xc0
[  180.286537][T11514]  do_syscall_64+0xcd/0x260
[  180.286554][T11514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.286565][T11514] RIP: 0033:0x7f466578e969
[  180.286575][T11514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.286586][T11514] RSP: 002b:00007f4666606038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.286597][T11514] RAX: ffffffffffffffda RBX: 00007f46659b5fa0 RCX: 00007f466578e969
[  180.286604][T11514] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  180.286610][T11514] RBP: 00007f4665810ab1 R08: 0000000000000000 R09: 0000000000000000
[  180.286616][T11514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  180.286623][T11514] R13: 0000000000000000 R14: 00007f46659b5fa0 R15: 00007fffbf19b648
[  180.286637][T11514]  </TASK>
[  180.454170][T11518] xt_hashlimit: size too large, truncated to 1048576
[  180.588461][T11528] IPVS: sync thread started: state = BACKUP, mcast_ifn = team_slave_1, syncid = 0, id = 0
[  180.863718][   T67] Bluetooth: hci2: command 0x040f tx timeout
[  180.943721][   T67] Bluetooth: hci0: command 0x0c1a tx timeout
[  180.943778][ T5945] Bluetooth: hci3: command 0x040f tx timeout
[  180.947677][ T5941] Bluetooth: hci1: command 0x0c1a tx timeout
[  181.490574][T11546] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  181.494815][T11546] CPU: 1 UID: 0 PID: 11546 Comm: syz.4.1700 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  181.494832][T11546] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  181.494839][T11546] Call Trace:
[  181.494844][T11546]  <TASK>
[  181.494848][T11546]  dump_stack_lvl+0x16c/0x1f0
[  181.494884][T11546]  sysfs_warn_dup+0x7f/0xa0
[  181.494896][T11546]  sysfs_do_create_link_sd+0x124/0x140
[  181.494911][T11546]  sysfs_create_link+0x61/0xc0
[  181.494923][T11546]  device_add+0x62c/0x1a70
[  181.494945][T11546]  ? __pfx_device_add+0x10/0x10
[  181.494958][T11546]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  181.494971][T11546]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  181.494993][T11546]  wiphy_register+0x1c9c/0x2850
[  181.495005][T11546]  ? netdev_run_todo+0x864/0x1320
[  181.495019][T11546]  ? __dev_printk+0x220/0x270
[  181.495032][T11546]  ? __pfx_wiphy_register+0x10/0x10
[  181.495060][T11546]  ieee80211_register_hw+0x2432/0x4020
[  181.495087][T11546]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  181.495108][T11546]  ? find_held_lock+0x2b/0x80
[  181.495132][T11546]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  181.495145][T11546]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  181.495157][T11546]  ? __hrtimer_setup+0x176/0x280
[  181.495170][T11546]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  181.495193][T11546]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  181.495208][T11546]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  181.495232][T11546]  ? __asan_memcpy+0x3c/0x60
[  181.495262][T11546]  hwsim_new_radio_nl+0xb51/0x12c0
[  181.495288][T11546]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  181.495320][T11546]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  181.495347][T11546]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  181.495373][T11546]  genl_family_rcv_msg_doit+0x209/0x2f0
[  181.495390][T11546]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  181.495410][T11546]  ? bpf_lsm_capable+0x9/0x10
[  181.495421][T11546]  ? security_capable+0x7e/0x260
[  181.495436][T11546]  ? ns_capable+0xd7/0x110
[  181.495465][T11546]  genl_rcv_msg+0x55c/0x800
[  181.495497][T11546]  ? __pfx_genl_rcv_msg+0x10/0x10
[  181.495524][T11546]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  181.495551][T11546]  ? __lock_acquire+0xaa4/0x1ba0
[  181.495583][T11546]  netlink_rcv_skb+0x16a/0x440
[  181.495607][T11546]  ? __pfx_genl_rcv_msg+0x10/0x10
[  181.495632][T11546]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  181.495659][T11546]  ? __pfx_down_read+0x10/0x10
[  181.495677][T11546]  ? netlink_deliver_tap+0x1ae/0xd30
[  181.495692][T11546]  genl_rcv+0x28/0x40
[  181.495706][T11546]  netlink_unicast+0x53d/0x7f0
[  181.495722][T11546]  ? __pfx_netlink_unicast+0x10/0x10
[  181.495740][T11546]  netlink_sendmsg+0x8d1/0xdd0
[  181.495756][T11546]  ? __pfx_netlink_sendmsg+0x10/0x10
[  181.495776][T11546]  ____sys_sendmsg+0xa98/0xc70
[  181.495792][T11546]  ? copy_msghdr_from_user+0x10a/0x160
[  181.495804][T11546]  ? __pfx_____sys_sendmsg+0x10/0x10
[  181.495821][T11546]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  181.495840][T11546]  ___sys_sendmsg+0x134/0x1d0
[  181.495853][T11546]  ? __pfx____sys_sendmsg+0x10/0x10
[  181.495882][T11546]  __sys_sendmsg+0x16d/0x220
[  181.495894][T11546]  ? __pfx___sys_sendmsg+0x10/0x10
[  181.495906][T11546]  ? __x64_sys_futex+0x1e0/0x4c0
[  181.495930][T11546]  do_syscall_64+0xcd/0x260
[  181.495947][T11546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.495959][T11546] RIP: 0033:0x7f9b0498e969
[  181.495968][T11546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.495979][T11546] RSP: 002b:00007f9b057d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  181.495989][T11546] RAX: ffffffffffffffda RBX: 00007f9b04bb5fa0 RCX: 00007f9b0498e969
[  181.495996][T11546] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  181.496003][T11546] RBP: 00007f9b04a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  181.496009][T11546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  181.496015][T11546] R13: 0000000000000000 R14: 00007f9b04bb5fa0 R15: 00007ffc92983ce8
[  181.496029][T11546]  </TASK>
[  181.656126][T11548] netlink: 'syz.4.1701': attribute type 1 has an invalid length.
[  181.710161][T11557] binder: 11556:11557 ioctl c0306201 200000000480 returned -22
[  181.710266][T11558] binder: 11556:11558 ioctl c0306201 200000000480 returned -22
[  181.809121][T11561] kvm: pic: non byte read
[  181.812641][T11561] kvm: pic: non byte read
[  181.816632][T11561] kvm: pic: single mode not supported
[  181.816763][T11561] kvm: pic: level sensitive irq not supported
[  181.819735][T11561] kvm: pic: non byte read
[  181.826296][T11561] kvm: pic: single mode not supported
[  181.826311][T11561] kvm: pic: level sensitive irq not supported
[  181.828926][T11561] kvm: pic: non byte read
[  181.829805][T11568] __nla_validate_parse: 4 callbacks suppressed
[  181.829814][T11568] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1708'.
[  181.831874][T11561] kvm: pic: level sensitive irq not supported
[  181.839335][T11561] kvm: pic: non byte read
[  181.851401][T11561] kvm: pic: non byte read
[  181.853002][T11569] net_ratelimit: 83 callbacks suppressed
[  181.853016][T11569] openvswitch: netlink: IP tunnel dst address not specified
[  181.855148][T11561] kvm: pic: non byte read
[  181.856439][T11561] kvm: pic: non byte read
[  181.866808][ T5941] Bluetooth: hci2: unexpected event for opcode 0x2060
[  181.932929][T11579] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  181.945123][T11579] CPU: 0 UID: 0 PID: 11579 Comm: syz.4.1710 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  181.945142][T11579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  181.945150][T11579] Call Trace:
[  181.945155][T11579]  <TASK>
[  181.945160][T11579]  dump_stack_lvl+0x16c/0x1f0
[  181.945209][T11579]  sysfs_warn_dup+0x7f/0xa0
[  181.945228][T11579]  sysfs_do_create_link_sd+0x124/0x140
[  181.945242][T11579]  sysfs_create_link+0x61/0xc0
[  181.945254][T11579]  device_add+0x62c/0x1a70
[  181.945277][T11579]  ? __pfx_device_add+0x10/0x10
[  181.945290][T11579]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  181.945304][T11579]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  181.945327][T11579]  wiphy_register+0x1c9c/0x2850
[  181.945339][T11579]  ? netdev_run_todo+0x864/0x1320
[  181.945353][T11579]  ? __dev_printk+0x220/0x270
[  181.945367][T11579]  ? __pfx_wiphy_register+0x10/0x10
[  181.945387][T11579]  ieee80211_register_hw+0x2432/0x4020
[  181.945406][T11579]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  181.945420][T11579]  ? find_held_lock+0x2b/0x80
[  181.945440][T11579]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  181.945452][T11579]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  181.945469][T11579]  ? __hrtimer_setup+0x176/0x280
[  181.945491][T11579]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  181.945526][T11579]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  181.945546][T11579]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  181.945571][T11579]  ? __asan_memcpy+0x3c/0x60
[  181.945591][T11579]  hwsim_new_radio_nl+0xb51/0x12c0
[  181.945609][T11579]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  181.945630][T11579]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  181.945651][T11579]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  181.945683][T11579]  genl_family_rcv_msg_doit+0x209/0x2f0
[  181.945707][T11579]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  181.945728][T11579]  ? bpf_lsm_capable+0x9/0x10
[  181.945739][T11579]  ? security_capable+0x7e/0x260
[  181.945753][T11579]  ? ns_capable+0xd7/0x110
[  181.945772][T11579]  genl_rcv_msg+0x55c/0x800
[  181.945797][T11579]  ? __pfx_genl_rcv_msg+0x10/0x10
[  181.945823][T11579]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  181.945869][T11579]  ? __lock_acquire+0xaa4/0x1ba0
[  181.945899][T11579]  netlink_rcv_skb+0x16a/0x440
[  181.945922][T11579]  ? __pfx_genl_rcv_msg+0x10/0x10
[  181.945949][T11579]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  181.945978][T11579]  ? __pfx_down_read+0x10/0x10
[  181.946010][T11579]  ? netlink_deliver_tap+0x1ae/0xd30
[  181.946032][T11579]  genl_rcv+0x28/0x40
[  181.946104][T11579]  netlink_unicast+0x53d/0x7f0
[  181.946122][T11579]  ? __pfx_netlink_unicast+0x10/0x10
[  181.946142][T11579]  netlink_sendmsg+0x8d1/0xdd0
[  181.946159][T11579]  ? __pfx_netlink_sendmsg+0x10/0x10
[  181.946179][T11579]  ____sys_sendmsg+0xa98/0xc70
[  181.946201][T11579]  ? copy_msghdr_from_user+0x10a/0x160
[  181.946218][T11579]  ? __pfx_____sys_sendmsg+0x10/0x10
[  181.946245][T11579]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  181.946272][T11579]  ___sys_sendmsg+0x134/0x1d0
[  181.946286][T11579]  ? __pfx____sys_sendmsg+0x10/0x10
[  181.946317][T11579]  __sys_sendmsg+0x16d/0x220
[  181.946329][T11579]  ? __pfx___sys_sendmsg+0x10/0x10
[  181.946341][T11579]  ? __x64_sys_futex+0x1e0/0x4c0
[  181.946360][T11579]  ? rcu_is_watching+0x12/0xc0
[  181.946378][T11579]  do_syscall_64+0xcd/0x260
[  181.946396][T11579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.946407][T11579] RIP: 0033:0x7f9b0498e969
[  181.946417][T11579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.946433][T11579] RSP: 002b:00007f9b057d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  181.946443][T11579] RAX: ffffffffffffffda RBX: 00007f9b04bb5fa0 RCX: 00007f9b0498e969
[  181.946450][T11579] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  181.946457][T11579] RBP: 00007f9b04a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  181.946464][T11579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  181.946471][T11579] R13: 0000000000000000 R14: 00007f9b04bb5fa0 R15: 00007ffc92983ce8
[  181.946486][T11579]  </TASK>
[  182.038654][T11580] fuse: Unknown parameter '0x0000000000000006'
[  182.115767][T11580] netlink: 144 bytes leftover after parsing attributes in process `syz.3.1711'.
[  182.119752][T11580] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1711'.
[  182.123036][T11585] syz.4.1712: attempt to access beyond end of device
[  182.123036][T11585] nbd4: rw=2048, sector=0, nr_sectors = 8 limit=0
[  182.128845][T11585] SQUASHFS error: Failed to read block 0x0: -5
[  182.130832][T11585] unable to read squashfs_super_block
[  182.148495][T11589] /dev/nullb0: Can't open blockdev
[  182.235655][T11595] netlink: 'syz.1.1715': attribute type 10 has an invalid length.
[  182.408746][T11603] netlink: 'syz.1.1718': attribute type 1 has an invalid length.
[  182.411975][T11603] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1718'.
[  182.453684][   T65] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  182.569760][T11609] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  182.577195][T11609] CPU: 3 UID: 0 PID: 11609 Comm: syz.4.1720 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  182.577224][T11609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  182.577235][T11609] Call Trace:
[  182.577242][T11609]  <TASK>
[  182.577250][T11609]  dump_stack_lvl+0x16c/0x1f0
[  182.577283][T11609]  sysfs_warn_dup+0x7f/0xa0
[  182.577303][T11609]  sysfs_do_create_link_sd+0x124/0x140
[  182.577325][T11609]  sysfs_create_link+0x61/0xc0
[  182.577345][T11609]  device_add+0x62c/0x1a70
[  182.577371][T11609]  ? __pfx_device_add+0x10/0x10
[  182.577392][T11609]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  182.577415][T11609]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  182.577448][T11609]  wiphy_register+0x1c9c/0x2850
[  182.577467][T11609]  ? netdev_run_todo+0x864/0x1320
[  182.577490][T11609]  ? __dev_printk+0x220/0x270
[  182.577512][T11609]  ? __pfx_wiphy_register+0x10/0x10
[  182.577546][T11609]  ieee80211_register_hw+0x2432/0x4020
[  182.577575][T11609]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  182.577593][T11609]  ? find_held_lock+0x2b/0x80
[  182.577612][T11609]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  182.577628][T11609]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  182.577643][T11609]  ? __hrtimer_setup+0x176/0x280
[  182.577663][T11609]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  182.577705][T11609]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  182.577727][T11609]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  182.577756][T11609]  ? __asan_memcpy+0x3c/0x60
[  182.577784][T11609]  hwsim_new_radio_nl+0xb51/0x12c0
[  182.577809][T11609]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  182.577841][T11609]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  182.577870][T11609]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  182.577904][T11609]  genl_family_rcv_msg_doit+0x209/0x2f0
[  182.577933][T11609]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  182.577968][T11609]  ? bpf_lsm_capable+0x9/0x10
[  182.577984][T11609]  ? security_capable+0x7e/0x260
[  182.578008][T11609]  ? ns_capable+0xd7/0x110
[  182.578032][T11609]  genl_rcv_msg+0x55c/0x800
[  182.578062][T11609]  ? __pfx_genl_rcv_msg+0x10/0x10
[  182.578088][T11609]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  182.578124][T11609]  ? __lock_acquire+0xaa4/0x1ba0
[  182.578159][T11609]  netlink_rcv_skb+0x16a/0x440
[  182.578182][T11609]  ? __pfx_genl_rcv_msg+0x10/0x10
[  182.578208][T11609]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  182.578267][T11609]  ? __pfx_down_read+0x10/0x10
[  182.578296][T11609]  ? netlink_deliver_tap+0x1ae/0xd30
[  182.578322][T11609]  genl_rcv+0x28/0x40
[  182.578345][T11609]  netlink_unicast+0x53d/0x7f0
[  182.578369][T11609]  ? __pfx_netlink_unicast+0x10/0x10
[  182.578400][T11609]  netlink_sendmsg+0x8d1/0xdd0
[  182.578426][T11609]  ? __pfx_netlink_sendmsg+0x10/0x10
[  182.578454][T11609]  ____sys_sendmsg+0xa98/0xc70
[  182.578476][T11609]  ? copy_msghdr_from_user+0x10a/0x160
[  182.578491][T11609]  ? __pfx_____sys_sendmsg+0x10/0x10
[  182.578521][T11609]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  182.578553][T11609]  ___sys_sendmsg+0x134/0x1d0
[  182.578574][T11609]  ? __pfx____sys_sendmsg+0x10/0x10
[  182.578630][T11609]  __sys_sendmsg+0x16d/0x220
[  182.578652][T11609]  ? __pfx___sys_sendmsg+0x10/0x10
[  182.578672][T11609]  ? __x64_sys_futex+0x1e0/0x4c0
[  182.578706][T11609]  ? rcu_is_watching+0x12/0xc0
[  182.578736][T11609]  do_syscall_64+0xcd/0x260
[  182.578765][T11609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.578781][T11609] RIP: 0033:0x7f9b0498e969
[  182.578795][T11609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.578808][T11609] RSP: 002b:00007f9b057d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  182.578826][T11609] RAX: ffffffffffffffda RBX: 00007f9b04bb5fa0 RCX: 00007f9b0498e969
[  182.578837][T11609] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  182.578848][T11609] RBP: 00007f9b04a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  182.578860][T11609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  182.578870][T11609] R13: 0000000000000000 R14: 00007f9b04bb5fa0 R15: 00007ffc92983ce8
[  182.578898][T11609]  </TASK>
[  182.807034][   T65] usb 10-1: config 1 has an invalid interface number: 4 but max is 2
[  182.809619][   T65] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  182.810439][T11613] cgroup: subsys name conflicts with all
[  182.812724][   T65] usb 10-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  182.812739][   T65] usb 10-1: config 1 has no interface number 1
[  182.812759][   T65] usb 10-1: too many endpoints for config 1 interface 4 altsetting 247: 212, using maximum allowed: 30
[  182.824394][   T65] usb 10-1: config 1 interface 4 altsetting 247 has 0 endpoint descriptors, different from the interface descriptor's value: 212
[  182.828516][   T65] usb 10-1: config 1 interface 4 has no altsetting 0
[  182.838320][   T65] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  182.841160][   T65] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.843713][   T65] usb 10-1: Product: Д
[  182.845115][   T65] usb 10-1: Manufacturer: �蒫熇⓰堶ᑡ徤뾣ⱃ₡�鼛魬毞�纫ྷ쬴稼⋉登㳲蘂垘耨퓠�㱠ꒄ繋䀤꞊拄ꒅ闃鋞뮽�⮅�ꓵ�㇟ゆӻ�䱀轚ป
[  182.850858][   T65] usb 10-1: SerialNumber: у
[  182.915383][T11615] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  182.924531][T11615] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  183.025208][ T5941] Bluetooth: hci1: command 0x0c1a tx timeout
[  183.027223][ T5941] Bluetooth: hci0: command 0x0c1a tx timeout
[  183.073726][   T65] usb 10-1: 0:2 : does not exist
[  183.098607][   T65] usb 10-1: USB disconnect, device number 7
[  183.122345][ T5941] Bluetooth: hci2: unexpected event for opcode 0x0c24
[  183.122533][T11633] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1727'.
[  183.128768][T11631] hpfs: hpfs_map_sector(): read error
[  183.133456][T11631] binder: 11630:11631 ioctl c0306201 200000000000 returned -22
[  183.136013][ T6502] udevd[6502]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  183.141492][T11631] binder: 11630:11631 ioctl 8918 200000000540 returned -22
[  183.175251][T11637] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  183.178770][T11637] CPU: 0 UID: 0 PID: 11637 Comm: syz.4.1729 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  183.178791][T11637] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  183.178804][T11637] Call Trace:
[  183.178811][T11637]  <TASK>
[  183.178817][T11637]  dump_stack_lvl+0x16c/0x1f0
[  183.178847][T11637]  sysfs_warn_dup+0x7f/0xa0
[  183.178858][T11637]  sysfs_do_create_link_sd+0x124/0x140
[  183.178871][T11637]  sysfs_create_link+0x61/0xc0
[  183.178881][T11637]  device_add+0x62c/0x1a70
[  183.178898][T11637]  ? __pfx_device_add+0x10/0x10
[  183.178911][T11637]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  183.178924][T11637]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  183.178944][T11637]  wiphy_register+0x1c9c/0x2850
[  183.178956][T11637]  ? netdev_run_todo+0x864/0x1320
[  183.178969][T11637]  ? __dev_printk+0x220/0x270
[  183.178982][T11637]  ? __pfx_wiphy_register+0x10/0x10
[  183.179001][T11637]  ieee80211_register_hw+0x2432/0x4020
[  183.179018][T11637]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  183.179032][T11637]  ? find_held_lock+0x2b/0x80
[  183.179046][T11637]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  183.179057][T11637]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  183.179069][T11637]  ? __hrtimer_setup+0x176/0x280
[  183.179082][T11637]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  183.179105][T11637]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  183.179118][T11637]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  183.179141][T11637]  ? __asan_memcpy+0x3c/0x60
[  183.179161][T11637]  hwsim_new_radio_nl+0xb51/0x12c0
[  183.179179][T11637]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  183.179200][T11637]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  183.179218][T11637]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  183.179240][T11637]  genl_family_rcv_msg_doit+0x209/0x2f0
[  183.179258][T11637]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  183.179279][T11637]  ? bpf_lsm_capable+0x9/0x10
[  183.179289][T11637]  ? security_capable+0x7e/0x260
[  183.179303][T11637]  ? ns_capable+0xd7/0x110
[  183.179318][T11637]  genl_rcv_msg+0x55c/0x800
[  183.179335][T11637]  ? __pfx_genl_rcv_msg+0x10/0x10
[  183.179352][T11637]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  183.179369][T11637]  ? __lock_acquire+0xaa4/0x1ba0
[  183.179388][T11637]  netlink_rcv_skb+0x16a/0x440
[  183.179402][T11637]  ? __pfx_genl_rcv_msg+0x10/0x10
[  183.179418][T11637]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  183.179441][T11637]  ? __pfx_down_read+0x10/0x10
[  183.179460][T11637]  ? netlink_deliver_tap+0x1ae/0xd30
[  183.179476][T11637]  genl_rcv+0x28/0x40
[  183.179490][T11637]  netlink_unicast+0x53d/0x7f0
[  183.179506][T11637]  ? __pfx_netlink_unicast+0x10/0x10
[  183.179524][T11637]  netlink_sendmsg+0x8d1/0xdd0
[  183.179541][T11637]  ? __pfx_netlink_sendmsg+0x10/0x10
[  183.179560][T11637]  ____sys_sendmsg+0xa98/0xc70
[  183.179576][T11637]  ? copy_msghdr_from_user+0x10a/0x160
[  183.179588][T11637]  ? __pfx_____sys_sendmsg+0x10/0x10
[  183.179610][T11637]  ___sys_sendmsg+0x134/0x1d0
[  183.179623][T11637]  ? __pfx____sys_sendmsg+0x10/0x10
[  183.179653][T11637]  __sys_sendmsg+0x16d/0x220
[  183.179665][T11637]  ? __pfx___sys_sendmsg+0x10/0x10
[  183.179677][T11637]  ? __x64_sys_futex+0x1e0/0x4c0
[  183.179696][T11637]  ? rcu_is_watching+0x12/0xc0
[  183.179713][T11637]  do_syscall_64+0xcd/0x260
[  183.179730][T11637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.179741][T11637] RIP: 0033:0x7f9b0498e969
[  183.179751][T11637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.179762][T11637] RSP: 002b:00007f9b057d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  183.179772][T11637] RAX: ffffffffffffffda RBX: 00007f9b04bb5fa0 RCX: 00007f9b0498e969
[  183.179779][T11637] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  183.179785][T11637] RBP: 00007f9b04a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  183.179792][T11637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  183.179798][T11637] R13: 0000000000000000 R14: 00007f9b04bb5fa0 R15: 00007ffc92983ce8
[  183.179812][T11637]  </TASK>
[  183.396390][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  183.396405][   T40] audit: type=1400 audit(1747356098.900:3207): avc:  denied  { setopt } for  pid=11643 comm="syz.4.1732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  183.439094][T11648] xt_hashlimit: size too large, truncated to 1048576
[  183.462123][T11651] netlink: 'syz.4.1734': attribute type 1 has an invalid length.
[  183.464877][T11651] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1734'.
[  183.490602][T11652] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1733'.
[  183.633691][   T65] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  183.642410][ T5941] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  183.692202][T11659] hfsplus: unable to find HFS+ superblock
[  183.743068][   T40] audit: type=1400 audit(1747356099.240:3208): avc:  denied  { name_bind } for  pid=11660 comm="syz.4.1738" path="socket:[42721]" dev="sockfs" ino=42721 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  183.780898][T11665] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  183.785589][T11665] CPU: 0 UID: 0 PID: 11665 Comm: syz.1.1739 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  183.785607][T11665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  183.785614][T11665] Call Trace:
[  183.785618][T11665]  <TASK>
[  183.785623][T11665]  dump_stack_lvl+0x16c/0x1f0
[  183.785644][T11665]  sysfs_warn_dup+0x7f/0xa0
[  183.785656][T11665]  sysfs_do_create_link_sd+0x124/0x140
[  183.785669][T11665]  sysfs_create_link+0x61/0xc0
[  183.785681][T11665]  device_add+0x62c/0x1a70
[  183.785698][T11665]  ? __pfx_device_add+0x10/0x10
[  183.785711][T11665]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  183.785725][T11665]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  183.785746][T11665]  wiphy_register+0x1c9c/0x2850
[  183.785758][T11665]  ? netdev_run_todo+0x864/0x1320
[  183.785772][T11665]  ? __dev_printk+0x220/0x270
[  183.785786][T11665]  ? __pfx_wiphy_register+0x10/0x10
[  183.785805][T11665]  ieee80211_register_hw+0x2432/0x4020
[  183.785821][T11665]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  183.785835][T11665]  ? find_held_lock+0x2b/0x80
[  183.785850][T11665]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  183.785862][T11665]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  183.785874][T11665]  ? __hrtimer_setup+0x176/0x280
[  183.785888][T11665]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  183.785911][T11665]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  183.785925][T11665]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  183.785942][T11665]  ? __asan_memcpy+0x3c/0x60
[  183.785960][T11665]  hwsim_new_radio_nl+0xb51/0x12c0
[  183.785990][T11665]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  183.786010][T11665]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  183.786027][T11665]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  183.786047][T11665]  genl_family_rcv_msg_doit+0x209/0x2f0
[  183.786064][T11665]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  183.786086][T11665]  ? bpf_lsm_capable+0x9/0x10
[  183.786097][T11665]  ? security_capable+0x7e/0x260
[  183.786112][T11665]  ? ns_capable+0xd7/0x110
[  183.786128][T11665]  genl_rcv_msg+0x55c/0x800
[  183.786145][T11665]  ? __pfx_genl_rcv_msg+0x10/0x10
[  183.786161][T11665]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  183.786177][T11665]  ? __lock_acquire+0xaa4/0x1ba0
[  183.786201][T11665]  netlink_rcv_skb+0x16a/0x440
[  183.786215][T11665]  ? __pfx_genl_rcv_msg+0x10/0x10
[  183.786232][T11665]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  183.786255][T11665]  ? __pfx_down_read+0x10/0x10
[  183.786274][T11665]  ? netlink_deliver_tap+0x1ae/0xd30
[  183.786290][T11665]  genl_rcv+0x28/0x40
[  183.786305][T11665]  netlink_unicast+0x53d/0x7f0
[  183.786321][T11665]  ? __pfx_netlink_unicast+0x10/0x10
[  183.786342][T11665]  netlink_sendmsg+0x8d1/0xdd0
[  183.786358][T11665]  ? __pfx_netlink_sendmsg+0x10/0x10
[  183.786378][T11665]  ____sys_sendmsg+0xa98/0xc70
[  183.786394][T11665]  ? copy_msghdr_from_user+0x10a/0x160
[  183.786406][T11665]  ? __pfx_____sys_sendmsg+0x10/0x10
[  183.786423][T11665]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  183.786441][T11665]  ___sys_sendmsg+0x134/0x1d0
[  183.786454][T11665]  ? __pfx____sys_sendmsg+0x10/0x10
[  183.786484][T11665]  __sys_sendmsg+0x16d/0x220
[  183.786496][T11665]  ? __pfx___sys_sendmsg+0x10/0x10
[  183.786508][T11665]  ? __x64_sys_futex+0x1e0/0x4c0
[  183.786532][T11665]  do_syscall_64+0xcd/0x260
[  183.786550][T11665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.786561][T11665] RIP: 0033:0x7fd9b818e969
[  183.786570][T11665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.786581][T11665] RSP: 002b:00007fd9b9001038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  183.786592][T11665] RAX: ffffffffffffffda RBX: 00007fd9b83b5fa0 RCX: 00007fd9b818e969
[  183.786598][T11665] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  183.786605][T11665] RBP: 00007fd9b8210ab1 R08: 0000000000000000 R09: 0000000000000000
[  183.786611][T11665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  183.786617][T11665] R13: 0000000000000000 R14: 00007fd9b83b5fa0 R15: 00007ffe738087a8
[  183.786631][T11665]  </TASK>
[  183.805546][   T65] usb 10-1: config 1 has an invalid interface number: 4 but max is 2
[  183.837396][   T40] audit: type=1400 audit(1747356099.340:3209): avc:  denied  { nlmsg_write } for  pid=11666 comm="syz.1.1740" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  183.839129][   T65] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  183.900544][   T40] audit: type=1400 audit(1747356099.400:3210): avc:  denied  { listen } for  pid=11666 comm="syz.1.1740" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  183.905722][   T65] usb 10-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  183.949266][   T65] usb 10-1: config 1 has no interface number 1
[  183.949630][T11669] tty tty1: ldisc open failed (-12), clearing slot 0
[  183.951212][   T65] usb 10-1: too many endpoints for config 1 interface 4 altsetting 247: 212, using maximum allowed: 30
[  183.951234][   T65] usb 10-1: config 1 interface 4 altsetting 247 has 0 endpoint descriptors, different from the interface descriptor's value: 212
[  183.960976][   T65] usb 10-1: config 1 interface 4 has no altsetting 0
[  183.966320][   T65] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  183.969219][   T65] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.971738][   T65] usb 10-1: Product: syz
[  183.973140][   T65] usb 10-1: Manufacturer: syz
[  183.975104][   T65] usb 10-1: SerialNumber: syz
[  183.990496][T11673] tipc: Started in network mode
[  183.992139][T11673] tipc: Node identity ac1414aa, cluster identity 4711
[  183.997931][T11673] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  184.166070][T11679] netlink: 'syz.1.1743': attribute type 1 has an invalid length.
[  184.168515][T11679] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1743'.
[  184.187783][   T65] usb 10-1: 0:2 : does not exist
[  184.202987][   T65] usb 10-1: USB disconnect, device number 8
[  184.219763][ T6502] udevd[6502]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  184.377514][T11684] openvswitch: netlink: Duplicate or invalid key (type 0).
[  184.380221][T11684] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  184.485745][   T40] audit: type=1400 audit(1747356099.990:3211): avc:  denied  { map } for  pid=11689 comm="syz.1.1747" path="socket:[42807]" dev="sockfs" ino=42807 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  184.493547][   T40] audit: type=1400 audit(1747356099.990:3212): avc:  denied  { accept } for  pid=11689 comm="syz.1.1747" path="socket:[42807]" dev="sockfs" ino=42807 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  184.617746][T11693] batadv_slave_1: entered promiscuous mode
[  184.619875][T11692] batadv_slave_1: left promiscuous mode
[  184.654786][T11696] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  184.659549][T11696] CPU: 1 UID: 0 PID: 11696 Comm: syz.4.1749 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  184.659574][T11696] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  184.659585][T11696] Call Trace:
[  184.659591][T11696]  <TASK>
[  184.659598][T11696]  dump_stack_lvl+0x16c/0x1f0
[  184.659629][T11696]  sysfs_warn_dup+0x7f/0xa0
[  184.659650][T11696]  sysfs_do_create_link_sd+0x124/0x140
[  184.659670][T11696]  sysfs_create_link+0x61/0xc0
[  184.659687][T11696]  device_add+0x62c/0x1a70
[  184.659713][T11696]  ? __pfx_device_add+0x10/0x10
[  184.659734][T11696]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  184.659756][T11696]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  184.659790][T11696]  wiphy_register+0x1c9c/0x2850
[  184.659808][T11696]  ? netdev_run_todo+0x864/0x1320
[  184.659830][T11696]  ? __dev_printk+0x220/0x270
[  184.659852][T11696]  ? __pfx_wiphy_register+0x10/0x10
[  184.659886][T11696]  ieee80211_register_hw+0x2432/0x4020
[  184.659915][T11696]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  184.659939][T11696]  ? find_held_lock+0x2b/0x80
[  184.659964][T11696]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  184.659986][T11696]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  184.660005][T11696]  ? __hrtimer_setup+0x176/0x280
[  184.660027][T11696]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  184.660066][T11696]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  184.660088][T11696]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  184.660115][T11696]  ? __asan_memcpy+0x3c/0x60
[  184.660155][T11696]  hwsim_new_radio_nl+0xb51/0x12c0
[  184.660185][T11696]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  184.660217][T11696]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  184.660245][T11696]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  184.660277][T11696]  genl_family_rcv_msg_doit+0x209/0x2f0
[  184.660301][T11696]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  184.660331][T11696]  ? bpf_lsm_capable+0x9/0x10
[  184.660345][T11696]  ? security_capable+0x7e/0x260
[  184.660364][T11696]  ? ns_capable+0xd7/0x110
[  184.660384][T11696]  genl_rcv_msg+0x55c/0x800
[  184.660409][T11696]  ? __pfx_genl_rcv_msg+0x10/0x10
[  184.660432][T11696]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  184.660455][T11696]  ? __lock_acquire+0xaa4/0x1ba0
[  184.660483][T11696]  netlink_rcv_skb+0x16a/0x440
[  184.660502][T11696]  ? __pfx_genl_rcv_msg+0x10/0x10
[  184.660525][T11696]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  184.660555][T11696]  ? __pfx_down_read+0x10/0x10
[  184.660580][T11696]  ? netlink_deliver_tap+0x1ae/0xd30
[  184.660602][T11696]  genl_rcv+0x28/0x40
[  184.660622][T11696]  netlink_unicast+0x53d/0x7f0
[  184.660644][T11696]  ? __pfx_netlink_unicast+0x10/0x10
[  184.660670][T11696]  netlink_sendmsg+0x8d1/0xdd0
[  184.660695][T11696]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.660729][T11696]  ____sys_sendmsg+0xa98/0xc70
[  184.660751][T11696]  ? copy_msghdr_from_user+0x10a/0x160
[  184.660763][T11696]  ? __pfx_____sys_sendmsg+0x10/0x10
[  184.660780][T11696]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  184.660799][T11696]  ___sys_sendmsg+0x134/0x1d0
[  184.660812][T11696]  ? __pfx____sys_sendmsg+0x10/0x10
[  184.660841][T11696]  __sys_sendmsg+0x16d/0x220
[  184.660853][T11696]  ? __pfx___sys_sendmsg+0x10/0x10
[  184.660865][T11696]  ? __x64_sys_futex+0x1e0/0x4c0
[  184.660889][T11696]  do_syscall_64+0xcd/0x260
[  184.660906][T11696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.660946][T11696] RIP: 0033:0x7f9b0498e969
[  184.660961][T11696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.660980][T11696] RSP: 002b:00007f9b057d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  184.660998][T11696] RAX: ffffffffffffffda RBX: 00007f9b04bb5fa0 RCX: 00007f9b0498e969
[  184.661010][T11696] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  184.661021][T11696] RBP: 00007f9b04a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  184.661031][T11696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.661042][T11696] R13: 0000000000000000 R14: 00007f9b04bb5fa0 R15: 00007ffc92983ce8
[  184.661067][T11696]  </TASK>
[  185.083754][   T65] usb 9-1: new full-speed USB device number 10 using dummy_hcd
[  185.093849][ T5945] Bluetooth: hci1: command 0x0c1a tx timeout
[  185.096509][ T5941] Bluetooth: hci0: command 0x0c1a tx timeout
[  185.245411][   T65] usb 9-1: config 7 has an invalid interface number: 101 but max is 0
[  185.248847][   T65] usb 9-1: config 7 has no interface number 0
[  185.253294][   T65] usb 9-1: New USB device found, idVendor=0fd9, idProduct=002c, bcdDevice= 6.6b
[  185.259164][   T65] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.262589][   T65] usb 9-1: Product: syz
[  185.264730][   T65] usb 9-1: Manufacturer: syz
[  185.266708][   T65] usb 9-1: SerialNumber: syz
[  185.289998][T11703] netlink: 'syz.5.1752': attribute type 1 has an invalid length.
[  185.293361][T11703] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1752'.
[  185.364189][ T5941] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  185.365130][   T40] audit: type=1400 audit(1747356100.870:3213): avc:  denied  { getopt } for  pid=11704 comm="syz.1.1753" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  185.484149][   T65] as10x_usb: device has been detected
[  185.486355][   T65] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT Deluxe)
[  185.498241][   T65] usb 9-1: DVB: registering adapter 1 frontend 0 (Elgato EyeTV DTT Deluxe)...
[  185.511377][   T65] as10x_usb: error during firmware upload part1
[  185.513917][   T65] Registered device Elgato EyeTV DTT Deluxe
[  185.518146][   T65] usb 9-1: USB disconnect, device number 10
[  185.540588][   T65] Unregistered device Elgato EyeTV DTT Deluxe
[  185.543925][   T65] as10x_usb: device has been disconnected
[  185.646491][T11720] overlayfs: failed to resolve './file0': -2
[  185.686754][T11725] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  185.690404][T11725] CPU: 3 UID: 0 PID: 11725 Comm: syz.5.1759 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  185.690421][T11725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.690427][T11725] Call Trace:
[  185.690432][T11725]  <TASK>
[  185.690437][T11725]  dump_stack_lvl+0x16c/0x1f0
[  185.690458][T11725]  sysfs_warn_dup+0x7f/0xa0
[  185.690471][T11725]  sysfs_do_create_link_sd+0x124/0x140
[  185.690484][T11725]  sysfs_create_link+0x61/0xc0
[  185.690496][T11725]  device_add+0x62c/0x1a70
[  185.690514][T11725]  ? __pfx_device_add+0x10/0x10
[  185.690527][T11725]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.690541][T11725]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  185.690562][T11725]  wiphy_register+0x1c9c/0x2850
[  185.690573][T11725]  ? netdev_run_todo+0x864/0x1320
[  185.690587][T11725]  ? __dev_printk+0x220/0x270
[  185.690600][T11725]  ? __pfx_wiphy_register+0x10/0x10
[  185.690619][T11725]  ieee80211_register_hw+0x2432/0x4020
[  185.690636][T11725]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  185.690649][T11725]  ? find_held_lock+0x2b/0x80
[  185.690663][T11725]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.690675][T11725]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  185.690689][T11725]  ? __hrtimer_setup+0x176/0x280
[  185.690702][T11725]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  185.690726][T11725]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  185.690740][T11725]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  185.690758][T11725]  ? __asan_memcpy+0x3c/0x60
[  185.690775][T11725]  hwsim_new_radio_nl+0xb51/0x12c0
[  185.690793][T11725]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  185.690813][T11725]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  185.690830][T11725]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  185.690850][T11725]  genl_family_rcv_msg_doit+0x209/0x2f0
[  185.690866][T11725]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  185.690887][T11725]  ? bpf_lsm_capable+0x9/0x10
[  185.690897][T11725]  ? security_capable+0x7e/0x260
[  185.690912][T11725]  ? ns_capable+0xd7/0x110
[  185.690926][T11725]  genl_rcv_msg+0x55c/0x800
[  185.690943][T11725]  ? __pfx_genl_rcv_msg+0x10/0x10
[  185.690959][T11725]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  185.690976][T11725]  ? __lock_acquire+0xaa4/0x1ba0
[  185.690996][T11725]  netlink_rcv_skb+0x16a/0x440
[  185.691010][T11725]  ? __pfx_genl_rcv_msg+0x10/0x10
[  185.691026][T11725]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  185.691047][T11725]  ? __pfx_down_read+0x10/0x10
[  185.691065][T11725]  ? netlink_deliver_tap+0x1ae/0xd30
[  185.691080][T11725]  genl_rcv+0x28/0x40
[  185.691094][T11725]  netlink_unicast+0x53d/0x7f0
[  185.691109][T11725]  ? __pfx_netlink_unicast+0x10/0x10
[  185.691127][T11725]  netlink_sendmsg+0x8d1/0xdd0
[  185.691143][T11725]  ? __pfx_netlink_sendmsg+0x10/0x10
[  185.691162][T11725]  ____sys_sendmsg+0xa98/0xc70
[  185.691187][T11725]  ? copy_msghdr_from_user+0x10a/0x160
[  185.691200][T11725]  ? __pfx_____sys_sendmsg+0x10/0x10
[  185.691220][T11725]  ? try_to_wake_up+0xa2f/0x1680
[  185.691236][T11725]  ___sys_sendmsg+0x134/0x1d0
[  185.691250][T11725]  ? __pfx____sys_sendmsg+0x10/0x10
[  185.691282][T11725]  __sys_sendmsg+0x16d/0x220
[  185.691294][T11725]  ? __pfx___sys_sendmsg+0x10/0x10
[  185.691306][T11725]  ? __x64_sys_futex+0x1e0/0x4c0
[  185.691326][T11725]  ? rcu_is_watching+0x12/0xc0
[  185.691343][T11725]  do_syscall_64+0xcd/0x260
[  185.691360][T11725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.691373][T11725] RIP: 0033:0x7f466578e969
[  185.691383][T11725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.691394][T11725] RSP: 002b:00007f4666606038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.691405][T11725] RAX: ffffffffffffffda RBX: 00007f46659b5fa0 RCX: 00007f466578e969
[  185.691412][T11725] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  185.691418][T11725] RBP: 00007f4665810ab1 R08: 0000000000000000 R09: 0000000000000000
[  185.691424][T11725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  185.691431][T11725] R13: 0000000000000000 R14: 00007f46659b5fa0 R15: 00007fffbf19b648
[  185.691445][T11725]  </TASK>
[  185.866201][T11729] binder: 11728:11729 ioctl c0306201 200000000540 returned -22
[  185.905879][T11729] binder: 11728:11729 ioctl c0306201 2000000000c0 returned -14
[  185.909001][T11729] binder: 11728:11729 ioctl c0306201 200000000640 returned -14
[  185.936560][T11739] netlink: 'syz.5.1763': attribute type 1 has an invalid length.
[  185.939734][T11739] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1763'.
[  186.160195][T11756] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  186.165209][T11756] CPU: 0 UID: 0 PID: 11756 Comm: syz.5.1769 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  186.165237][T11756] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.165249][T11756] Call Trace:
[  186.165256][T11756]  <TASK>
[  186.165265][T11756]  dump_stack_lvl+0x16c/0x1f0
[  186.165297][T11756]  sysfs_warn_dup+0x7f/0xa0
[  186.165318][T11756]  sysfs_do_create_link_sd+0x124/0x140
[  186.165340][T11756]  sysfs_create_link+0x61/0xc0
[  186.165359][T11756]  device_add+0x62c/0x1a70
[  186.165387][T11756]  ? __pfx_device_add+0x10/0x10
[  186.165416][T11756]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  186.165439][T11756]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  186.165474][T11756]  wiphy_register+0x1c9c/0x2850
[  186.165494][T11756]  ? netdev_run_todo+0x864/0x1320
[  186.165516][T11756]  ? __dev_printk+0x220/0x270
[  186.165541][T11756]  ? __pfx_wiphy_register+0x10/0x10
[  186.165572][T11756]  ieee80211_register_hw+0x2432/0x4020
[  186.165603][T11756]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  186.165627][T11756]  ? find_held_lock+0x2b/0x80
[  186.165650][T11756]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  186.165671][T11756]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  186.165691][T11756]  ? __hrtimer_setup+0x176/0x280
[  186.165713][T11756]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  186.165755][T11756]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  186.165778][T11756]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  186.165807][T11756]  ? __asan_memcpy+0x3c/0x60
[  186.165836][T11756]  hwsim_new_radio_nl+0xb51/0x12c0
[  186.165865][T11756]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  186.165899][T11756]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  186.165928][T11756]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  186.165977][T11756]  genl_family_rcv_msg_doit+0x209/0x2f0
[  186.166006][T11756]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  186.166039][T11756]  ? bpf_lsm_capable+0x9/0x10
[  186.166054][T11756]  ? security_capable+0x7e/0x260
[  186.166076][T11756]  ? ns_capable+0xd7/0x110
[  186.166099][T11756]  genl_rcv_msg+0x55c/0x800
[  186.166128][T11756]  ? __pfx_genl_rcv_msg+0x10/0x10
[  186.166152][T11756]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  186.166179][T11756]  ? __lock_acquire+0xaa4/0x1ba0
[  186.166211][T11756]  netlink_rcv_skb+0x16a/0x440
[  186.166232][T11756]  ? __pfx_genl_rcv_msg+0x10/0x10
[  186.166257][T11756]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  186.166292][T11756]  ? __pfx_down_read+0x10/0x10
[  186.166321][T11756]  ? netlink_deliver_tap+0x1ae/0xd30
[  186.166346][T11756]  genl_rcv+0x28/0x40
[  186.166369][T11756]  netlink_unicast+0x53d/0x7f0
[  186.166400][T11756]  ? __pfx_netlink_unicast+0x10/0x10
[  186.166430][T11756]  netlink_sendmsg+0x8d1/0xdd0
[  186.166458][T11756]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.166491][T11756]  ____sys_sendmsg+0xa98/0xc70
[  186.166517][T11756]  ? copy_msghdr_from_user+0x10a/0x160
[  186.166536][T11756]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.166564][T11756]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  186.166594][T11756]  ___sys_sendmsg+0x134/0x1d0
[  186.166615][T11756]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.166669][T11756]  __sys_sendmsg+0x16d/0x220
[  186.166688][T11756]  ? __pfx___sys_sendmsg+0x10/0x10
[  186.166707][T11756]  ? __x64_sys_futex+0x1e0/0x4c0
[  186.166748][T11756]  do_syscall_64+0xcd/0x260
[  186.166776][T11756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.166794][T11756] RIP: 0033:0x7f466578e969
[  186.166809][T11756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.166826][T11756] RSP: 002b:00007f4666606038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.166846][T11756] RAX: ffffffffffffffda RBX: 00007f46659b5fa0 RCX: 00007f466578e969
[  186.166858][T11756] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  186.166868][T11756] RBP: 00007f4665810ab1 R08: 0000000000000000 R09: 0000000000000000
[  186.166880][T11756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  186.166891][T11756] R13: 0000000000000000 R14: 00007f46659b5fa0 R15: 00007fffbf19b648
[  186.166915][T11756]  </TASK>
[  186.349388][T11764] x_tables: duplicate underflow at hook 2
[  186.354950][   T40] audit: type=1400 audit(1747356101.860:3214): avc:  denied  { accept } for  pid=11763 comm="syz.1.1772" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  186.364668][   T40] audit: type=1400 audit(1747356101.860:3215): avc:  denied  { execute } for  pid=11763 comm="syz.1.1772" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=45541 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  186.397983][T11770] tmpfs: Bad value for 'mpol'
[  186.439853][   T40] audit: type=1400 audit(1747356101.940:3216): avc:  denied  { read } for  pid=11773 comm="syz.5.1774" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  186.477062][T11779] netlink: 'syz.4.1777': attribute type 1 has an invalid length.
[  186.482919][T11781] nft_compat: unsupported protocol 0
[  186.709105][T11801] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  186.712800][T11801] CPU: 2 UID: 0 PID: 11801 Comm: syz.4.1782 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  186.712816][T11801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.712823][T11801] Call Trace:
[  186.712827][T11801]  <TASK>
[  186.712832][T11801]  dump_stack_lvl+0x16c/0x1f0
[  186.712853][T11801]  sysfs_warn_dup+0x7f/0xa0
[  186.712866][T11801]  sysfs_do_create_link_sd+0x124/0x140
[  186.712879][T11801]  sysfs_create_link+0x61/0xc0
[  186.712890][T11801]  device_add+0x62c/0x1a70
[  186.712935][T11801]  ? __pfx_device_add+0x10/0x10
[  186.712949][T11801]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  186.712963][T11801]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  186.712985][T11801]  wiphy_register+0x1c9c/0x2850
[  186.712998][T11801]  ? netdev_run_todo+0x864/0x1320
[  186.713011][T11801]  ? __dev_printk+0x220/0x270
[  186.713024][T11801]  ? __pfx_wiphy_register+0x10/0x10
[  186.713043][T11801]  ieee80211_register_hw+0x2432/0x4020
[  186.713060][T11801]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  186.713073][T11801]  ? find_held_lock+0x2b/0x80
[  186.713088][T11801]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  186.713099][T11801]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  186.713113][T11801]  ? __hrtimer_setup+0x176/0x280
[  186.713126][T11801]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  186.713149][T11801]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  186.713163][T11801]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  186.713180][T11801]  ? __asan_memcpy+0x3c/0x60
[  186.713203][T11801]  hwsim_new_radio_nl+0xb51/0x12c0
[  186.713221][T11801]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  186.713241][T11801]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  186.713260][T11801]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  186.713282][T11801]  genl_family_rcv_msg_doit+0x209/0x2f0
[  186.713300][T11801]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  186.713322][T11801]  ? bpf_lsm_capable+0x9/0x10
[  186.713333][T11801]  ? security_capable+0x7e/0x260
[  186.713347][T11801]  ? ns_capable+0xd7/0x110
[  186.713362][T11801]  genl_rcv_msg+0x55c/0x800
[  186.713379][T11801]  ? __pfx_genl_rcv_msg+0x10/0x10
[  186.713395][T11801]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  186.713412][T11801]  ? __lock_acquire+0xaa4/0x1ba0
[  186.713431][T11801]  netlink_rcv_skb+0x16a/0x440
[  186.713446][T11801]  ? __pfx_genl_rcv_msg+0x10/0x10
[  186.713463][T11801]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  186.713484][T11801]  ? __pfx_down_read+0x10/0x10
[  186.713503][T11801]  ? netlink_deliver_tap+0x1ae/0xd30
[  186.713518][T11801]  genl_rcv+0x28/0x40
[  186.713532][T11801]  netlink_unicast+0x53d/0x7f0
[  186.713547][T11801]  ? __pfx_netlink_unicast+0x10/0x10
[  186.713579][T11801]  netlink_sendmsg+0x8d1/0xdd0
[  186.713597][T11801]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.713616][T11801]  ____sys_sendmsg+0xa98/0xc70
[  186.713633][T11801]  ? copy_msghdr_from_user+0x10a/0x160
[  186.713645][T11801]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.713665][T11801]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  186.713683][T11801]  ___sys_sendmsg+0x134/0x1d0
[  186.713697][T11801]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.713730][T11801]  __sys_sendmsg+0x16d/0x220
[  186.713747][T11801]  ? __pfx___sys_sendmsg+0x10/0x10
[  186.713764][T11801]  ? __x64_sys_futex+0x1e0/0x4c0
[  186.713792][T11801]  ? rcu_is_watching+0x12/0xc0
[  186.713821][T11801]  do_syscall_64+0xcd/0x260
[  186.713849][T11801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.713867][T11801] RIP: 0033:0x7f9b0498e969
[  186.713883][T11801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.713900][T11801] RSP: 002b:00007f9b057d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.713912][T11801] RAX: ffffffffffffffda RBX: 00007f9b04bb5fa0 RCX: 00007f9b0498e969
[  186.713920][T11801] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  186.713928][T11801] RBP: 00007f9b04a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  186.713935][T11801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  186.713943][T11801] R13: 0000000000000000 R14: 00007f9b04bb5fa0 R15: 00007ffc92983ce8
[  186.713958][T11801]  </TASK>
[  186.859531][T11814] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1025 sclass=netlink_route_socket pid=11814 comm=syz.5.1785
[  186.939594][T11821] __nla_validate_parse: 3 callbacks suppressed
[  186.939603][T11821] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1786'.
[  187.092105][T11833] netlink: 'syz.5.1791': attribute type 1 has an invalid length.
[  187.101378][T11833] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1791'.
[  187.187514][T11835] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=58873 sclass=netlink_route_socket pid=11835 comm=syz.1.1792
[  187.337683][T11846] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  187.342140][T11846] CPU: 0 UID: 0 PID: 11846 Comm: syz.3.1795 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  187.342165][T11846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.342177][T11846] Call Trace:
[  187.342184][T11846]  <TASK>
[  187.342191][T11846]  dump_stack_lvl+0x16c/0x1f0
[  187.342221][T11846]  sysfs_warn_dup+0x7f/0xa0
[  187.342239][T11846]  sysfs_do_create_link_sd+0x124/0x140
[  187.342262][T11846]  sysfs_create_link+0x61/0xc0
[  187.342280][T11846]  device_add+0x62c/0x1a70
[  187.342306][T11846]  ? __pfx_device_add+0x10/0x10
[  187.342326][T11846]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  187.342347][T11846]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  187.342380][T11846]  wiphy_register+0x1c9c/0x2850
[  187.342399][T11846]  ? netdev_run_todo+0x864/0x1320
[  187.342420][T11846]  ? __dev_printk+0x220/0x270
[  187.342442][T11846]  ? __pfx_wiphy_register+0x10/0x10
[  187.342475][T11846]  ieee80211_register_hw+0x2432/0x4020
[  187.342504][T11846]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  187.342526][T11846]  ? find_held_lock+0x2b/0x80
[  187.342550][T11846]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  187.342569][T11846]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  187.342589][T11846]  ? __hrtimer_setup+0x176/0x280
[  187.342610][T11846]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  187.342649][T11846]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  187.342671][T11846]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  187.342698][T11846]  ? __asan_memcpy+0x3c/0x60
[  187.342728][T11846]  hwsim_new_radio_nl+0xb51/0x12c0
[  187.342757][T11846]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  187.342791][T11846]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  187.342817][T11846]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  187.342848][T11846]  genl_family_rcv_msg_doit+0x209/0x2f0
[  187.342876][T11846]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  187.342910][T11846]  ? bpf_lsm_capable+0x9/0x10
[  187.342925][T11846]  ? security_capable+0x7e/0x260
[  187.342947][T11846]  ? ns_capable+0xd7/0x110
[  187.342970][T11846]  genl_rcv_msg+0x55c/0x800
[  187.342996][T11846]  ? __pfx_genl_rcv_msg+0x10/0x10
[  187.343021][T11846]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  187.343050][T11846]  ? __lock_acquire+0xaa4/0x1ba0
[  187.343081][T11846]  netlink_rcv_skb+0x16a/0x440
[  187.343101][T11846]  ? __pfx_genl_rcv_msg+0x10/0x10
[  187.343127][T11846]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  187.343167][T11846]  ? __pfx_down_read+0x10/0x10
[  187.343193][T11846]  ? netlink_deliver_tap+0x1ae/0xd30
[  187.343218][T11846]  genl_rcv+0x28/0x40
[  187.343240][T11846]  netlink_unicast+0x53d/0x7f0
[  187.343265][T11846]  ? __pfx_netlink_unicast+0x10/0x10
[  187.343295][T11846]  netlink_sendmsg+0x8d1/0xdd0
[  187.343322][T11846]  ? __pfx_netlink_sendmsg+0x10/0x10
[  187.343355][T11846]  ____sys_sendmsg+0xa98/0xc70
[  187.343380][T11846]  ? copy_msghdr_from_user+0x10a/0x160
[  187.343398][T11846]  ? __pfx_____sys_sendmsg+0x10/0x10
[  187.343425][T11846]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  187.343454][T11846]  ___sys_sendmsg+0x134/0x1d0
[  187.343474][T11846]  ? __pfx____sys_sendmsg+0x10/0x10
[  187.343528][T11846]  __sys_sendmsg+0x16d/0x220
[  187.343547][T11846]  ? __pfx___sys_sendmsg+0x10/0x10
[  187.343586][T11846]  ? __x64_sys_futex+0x1e0/0x4c0
[  187.343620][T11846]  ? rcu_is_watching+0x12/0xc0
[  187.343651][T11846]  do_syscall_64+0xcd/0x260
[  187.343680][T11846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.343699][T11846] RIP: 0033:0x7f40ad78e969
[  187.343714][T11846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.343731][T11846] RSP: 002b:00007f40ae653038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.343763][T11846] RAX: ffffffffffffffda RBX: 00007f40ad9b5fa0 RCX: 00007f40ad78e969
[  187.343776][T11846] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  187.343787][T11846] RBP: 00007f40ad810ab1 R08: 0000000000000000 R09: 0000000000000000
[  187.343798][T11846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  187.343809][T11846] R13: 0000000000000000 R14: 00007f40ad9b5fa0 R15: 00007ffc51da8e18
[  187.343836][T11846]  </TASK>
[  187.562509][T11854] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  187.606934][T11858] netlink: 'syz.3.1800': attribute type 3 has an invalid length.
[  187.610659][T11858] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1800'.
[  187.758645][T11869] netlink: 'syz.4.1804': attribute type 1 has an invalid length.
[  187.761096][T11869] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1804'.
[  187.887720][T11873] XFS (nbd5): no-recovery mounts must be read-only.
[  187.897104][T11877] XFS (nbd5): no-recovery mounts must be read-only.
[  187.904146][ T5945] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  187.908515][T11877] 9pnet_fd: p9_fd_create_tcp (11877): problem connecting socket to 127.0.0.1
[  187.908604][T11873] 9pnet_fd: p9_fd_create_tcp (11873): problem connecting socket to 127.0.0.1
[  187.990242][T11883] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  187.994280][T11883] CPU: 0 UID: 0 PID: 11883 Comm: syz.4.1808 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  187.994296][T11883] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.994303][T11883] Call Trace:
[  187.994308][T11883]  <TASK>
[  187.994312][T11883]  dump_stack_lvl+0x16c/0x1f0
[  187.994333][T11883]  sysfs_warn_dup+0x7f/0xa0
[  187.994345][T11883]  sysfs_do_create_link_sd+0x124/0x140
[  187.994365][T11883]  sysfs_create_link+0x61/0xc0
[  187.994377][T11883]  device_add+0x62c/0x1a70
[  187.994394][T11883]  ? __pfx_device_add+0x10/0x10
[  187.994408][T11883]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  187.994423][T11883]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  187.994445][T11883]  wiphy_register+0x1c9c/0x2850
[  187.994456][T11883]  ? netdev_run_todo+0x864/0x1320
[  187.994470][T11883]  ? __dev_printk+0x220/0x270
[  187.994483][T11883]  ? __pfx_wiphy_register+0x10/0x10
[  187.994502][T11883]  ieee80211_register_hw+0x2432/0x4020
[  187.994519][T11883]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  187.994532][T11883]  ? find_held_lock+0x2b/0x80
[  187.994546][T11883]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  187.994558][T11883]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  187.994571][T11883]  ? __hrtimer_setup+0x176/0x280
[  187.994584][T11883]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  187.994608][T11883]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  187.994622][T11883]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  187.994639][T11883]  ? __asan_memcpy+0x3c/0x60
[  187.994657][T11883]  hwsim_new_radio_nl+0xb51/0x12c0
[  187.994674][T11883]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  187.994694][T11883]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  187.994711][T11883]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  187.994735][T11883]  genl_family_rcv_msg_doit+0x209/0x2f0
[  187.994757][T11883]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  187.994788][T11883]  ? bpf_lsm_capable+0x9/0x10
[  187.994805][T11883]  ? security_capable+0x7e/0x260
[  187.994825][T11883]  ? ns_capable+0xd7/0x110
[  187.994841][T11883]  genl_rcv_msg+0x55c/0x800
[  187.994858][T11883]  ? __pfx_genl_rcv_msg+0x10/0x10
[  187.994875][T11883]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  187.994892][T11883]  ? __lock_acquire+0xaa4/0x1ba0
[  187.994911][T11883]  netlink_rcv_skb+0x16a/0x440
[  187.994925][T11883]  ? __pfx_genl_rcv_msg+0x10/0x10
[  187.994941][T11883]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  187.994962][T11883]  ? __pfx_down_read+0x10/0x10
[  187.994980][T11883]  ? netlink_deliver_tap+0x1ae/0xd30
[  187.994995][T11883]  genl_rcv+0x28/0x40
[  187.995008][T11883]  netlink_unicast+0x53d/0x7f0
[  187.995024][T11883]  ? __pfx_netlink_unicast+0x10/0x10
[  187.995042][T11883]  netlink_sendmsg+0x8d1/0xdd0
[  187.995058][T11883]  ? __pfx_netlink_sendmsg+0x10/0x10
[  187.995078][T11883]  ____sys_sendmsg+0xa98/0xc70
[  187.995094][T11883]  ? copy_msghdr_from_user+0x10a/0x160
[  187.995109][T11883]  ? __pfx_____sys_sendmsg+0x10/0x10
[  187.995126][T11883]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  187.995144][T11883]  ___sys_sendmsg+0x134/0x1d0
[  187.995157][T11883]  ? __pfx____sys_sendmsg+0x10/0x10
[  187.995187][T11883]  __sys_sendmsg+0x16d/0x220
[  187.995199][T11883]  ? __pfx___sys_sendmsg+0x10/0x10
[  187.995211][T11883]  ? __x64_sys_futex+0x1e0/0x4c0
[  187.995235][T11883]  do_syscall_64+0xcd/0x260
[  187.995252][T11883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.995264][T11883] RIP: 0033:0x7f9b0498e969
[  187.995273][T11883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.995284][T11883] RSP: 002b:00007f9b057d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.995294][T11883] RAX: ffffffffffffffda RBX: 00007f9b04bb5fa0 RCX: 00007f9b0498e969
[  187.995301][T11883] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  187.995307][T11883] RBP: 00007f9b04a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  187.995314][T11883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  187.995320][T11883] R13: 0000000000000000 R14: 00007f9b04bb5fa0 R15: 00007ffc92983ce8
[  187.995334][T11883]  </TASK>
[  188.270336][T11899] dlm: no locking on control device
[  188.367314][T11904] netlink: 'syz.1.1817': attribute type 1 has an invalid length.
[  188.370596][T11904] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1817'.
[  188.543272][ T7059] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.656158][ T7059] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.657343][ T5945] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  188.663728][ T5945] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  188.667513][ T5945] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  188.671887][ T5945] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  188.677591][ T5945] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  188.735856][ T7059] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.829985][ T7059] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.842427][T11912] chnl_net:caif_netlink_parms(): no params data found
[  188.918046][T11912] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.920372][T11912] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.922654][T11912] bridge_slave_0: entered allmulticast mode
[  188.925727][T11912] bridge_slave_0: entered promiscuous mode
[  188.928806][T11912] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.931029][T11912] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.933295][T11912] bridge_slave_1: entered allmulticast mode
[  188.938457][T11912] bridge_slave_1: entered promiscuous mode
[  188.978119][T11912] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  188.991365][T11912] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  189.048560][T11912] team0: Port device team_slave_0 added
[  189.052157][T11912] team0: Port device team_slave_1 added
[  189.057185][ T7059] bridge_slave_1: left allmulticast mode
[  189.059404][ T7059] bridge_slave_1: left promiscuous mode
[  189.061456][ T7059] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.067721][ T7059] bridge_slave_0: left allmulticast mode
[  189.069515][ T7059] bridge_slave_0: left promiscuous mode
[  189.071317][ T7059] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.093269][ T5945] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  189.096931][ T5945] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  189.100407][ T5945] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  189.105992][ T5945] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  189.108694][ T5945] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  189.146361][T11930] netlink: 'syz.4.1827': attribute type 1 has an invalid length.
[  189.149092][T11930] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1827'.
[  189.516629][ T7059] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  189.520934][ T7059] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  189.525908][ T7059] bond0 (unregistering): Released all slaves
[  189.533338][ T7059] bond1 (unregistering): left allmulticast mode
[  189.535429][ T7059] bond2 (unregistering): left allmulticast mode
[  189.537392][ T7059] bond1 (unregistering): left promiscuous mode
[  189.539288][ T7059] bond2 (unregistering): left promiscuous mode
[  189.550706][ T7059] bond1 (unregistering): (slave bond2): Releasing backup interface
[  189.553697][ T7059] bond1 (unregistering): Released all slaves
[  189.641185][ T7059] bond2 (unregistering): Released all slaves
[  189.651905][ T7059] bond3 (unregistering): Released all slaves
[  189.688993][T11933] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1828'.
[  189.704854][T11912] batman_adv: batadv0: Adding interface: batadv_slave_0
[  189.707102][T11912] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  189.716922][T11912] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  189.732133][T11912] batman_adv: batadv0: Adding interface: batadv_slave_1
[  189.739353][T11912] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  189.747704][T11912] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  189.843542][T11912] hsr_slave_0: entered promiscuous mode
[  189.847274][T11912] hsr_slave_1: entered promiscuous mode
[  189.850336][T11912] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  189.853279][T11912] Cannot create hsr debugfs directory
[  189.970930][T11948] netlink: 277 bytes leftover after parsing attributes in process `syz.4.1831'.
[  190.032264][T11953] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  190.060722][ T7059] hsr_slave_0: left promiscuous mode
[  190.062848][ T7059] hsr_slave_1: left promiscuous mode
[  190.066172][ T7059] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  190.068525][ T7059] batman_adv: batadv0: Removing interface: batadv_slave_0
[  190.072285][ T7059] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  190.075130][ T7059] batman_adv: batadv0: Removing interface: batadv_slave_1
[  190.100575][ T7059] veth1_macvtap: left promiscuous mode
[  190.102548][ T7059] veth0_macvtap: left promiscuous mode
[  190.105517][ T7059] veth1_vlan: left promiscuous mode
[  190.107244][ T7059] veth0_vlan: left promiscuous mode
[  190.705776][ T5941] Bluetooth: hci0: command tx timeout
[  190.719756][ T7059] team0 (unregistering): Port device team_slave_1 removed
[  190.807423][ T7059] team0 (unregistering): Port device team_slave_0 removed
[  191.174515][ T5941] Bluetooth: hci3: command tx timeout
[  191.331768][T11954] netlink: 124 bytes leftover after parsing attributes in process `syz.4.1832'.
[  191.368412][T11961] netlink: 'syz.4.1834': attribute type 1 has an invalid length.
[  191.371646][T11961] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1834'.
[  191.394942][T11927] chnl_net:caif_netlink_parms(): no params data found
[  191.409700][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  191.409710][   T40] audit: type=1400 audit(1747356106.910:3223): avc:  denied  { mounton } for  pid=11963 comm="syz.3.1835" path="/419/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[  191.537327][T11912] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  191.553235][T11912] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  191.563853][T11927] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.566148][T11927] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.575296][T11927] bridge_slave_0: entered allmulticast mode
[  191.578040][T11927] bridge_slave_0: entered promiscuous mode
[  191.580982][T11912] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  191.586217][T11912] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  191.590159][T11978] ip6t_rpfilter: unknown options
[  191.590221][T11927] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.596659][T11927] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.598945][T11927] bridge_slave_1: entered allmulticast mode
[  191.601578][T11927] bridge_slave_1: entered promiscuous mode
[  191.628657][T11983] tls_set_device_offload: netdev not found
[  191.687990][T11927] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  191.692774][T11927] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  191.736598][T11927] team0: Port device team_slave_0 added
[  191.740632][T11927] team0: Port device team_slave_1 added
[  191.786328][T11927] batman_adv: batadv0: Adding interface: batadv_slave_0
[  191.788575][T11927] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.797528][T11927] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  191.806682][T11927] batman_adv: batadv0: Adding interface: batadv_slave_1
[  191.808926][T11927] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.818439][T11927] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.863712][   T24] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  191.878509][T11927] hsr_slave_0: entered promiscuous mode
[  191.880803][T11927] hsr_slave_1: entered promiscuous mode
[  191.882934][T11927] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  191.885846][T11927] Cannot create hsr debugfs directory
[  192.011991][T11912] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.044085][   T24] usb 9-1: Using ep0 maxpacket: 32
[  192.049415][   T24] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  192.075753][   T24] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  192.079515][   T24] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  192.080327][ T7059] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  192.082928][   T24] usb 9-1: Product: syz
[  192.087531][ T7059] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.088377][T12010] netlink: 'syz.3.1844': attribute type 21 has an invalid length.
[  192.088592][   T24] usb 9-1: Manufacturer: syz
[  192.097263][   T24] usb 9-1: SerialNumber: syz
[  192.103731][   T24] usb 9-1: config 0 descriptor??
[  192.106722][T11981] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  192.110221][   T24] hub 9-1:0.0: bad descriptor, ignoring hub
[  192.112095][   T24] hub 9-1:0.0: probe with driver hub failed with error -5
[  192.118582][T12010] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1844'.
[  192.160091][T11927] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  192.164538][T11927] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  192.178747][ T7059] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  192.182006][ T7059] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.191242][T11912] 8021q: adding VLAN 0 to HW filter on device team0
[  192.195841][T11927] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  192.201800][T11927] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  192.213267][ T7078] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.215607][ T7078] bridge0: port 1(bridge_slave_0) entered forwarding state
[  192.235463][ T7060] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.237713][ T7060] bridge0: port 2(bridge_slave_1) entered forwarding state
[  192.245295][T12013] netlink: 'syz.3.1845': attribute type 1 has an invalid length.
[  192.247732][T12013] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1845'.
[  192.283094][ T7059] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  192.288513][ T7059] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.300533][T11912] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  192.304291][T11912] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  192.329687][T11927] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.339890][T11927] 8021q: adding VLAN 0 to HW filter on device team0
[  192.356580][ T7065] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.358768][ T7065] bridge0: port 1(bridge_slave_0) entered forwarding state
[  192.377454][ T7059] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  192.381553][ T7059] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.401045][ T7065] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.403345][ T7065] bridge0: port 2(bridge_slave_1) entered forwarding state
[  192.433806][  T834] usb 9-1: USB disconnect, device number 11
[  192.464910][T11912] 8021q: adding VLAN 0 to HW filter on device batadv0
[  192.509554][T12030] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1846'.
[  192.544480][ T7059] team0: left allmulticast mode
[  192.546086][ T7059] team_slave_0: left allmulticast mode
[  192.547995][ T7059] team_slave_1: left allmulticast mode
[  192.549768][ T7059] geneve0: left allmulticast mode
[  192.552324][ T7059] bridge0: port 3(team0) entered disabled state
[  192.564284][ T7059] bridge_slave_1: left allmulticast mode
[  192.566125][ T7059] bridge_slave_1: left promiscuous mode
[  192.567959][ T7059] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.572694][ T7059] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.730064][ T7059] geneve0 (unregistering): left promiscuous mode
[  192.737887][ T7059] team0: Port device geneve0 removed
[  192.783851][ T5941] Bluetooth: hci0: command tx timeout
[  193.000649][ T7059] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  193.005213][ T7059] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  193.008965][ T7059] bond0 (unregistering): Released all slaves
[  193.092396][ T7059] bond1 (unregistering): (slave dummy0): Releasing active interface
[  193.100568][ T7059] bond1 (unregistering): Released all slaves
[  193.107474][ T7059] bond2 (unregistering): (slave bond3): Releasing backup interface
[  193.110456][ T7059] bond2 (unregistering): Released all slaves
[  193.187191][ T7059] bond3 (unregistering): Released all slaves
[  193.212777][T12050] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1848'.
[  193.216330][T12050] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  193.253780][ T5941] Bluetooth: hci3: command tx timeout
[  193.265159][ T7059] bond4 (unregistering): (slave veth7): Releasing active interface
[  193.268738][ T7059] bond4 (unregistering): Released all slaves
[  193.275140][ T7059] bond5 (unregistering): Released all slaves
[  193.292515][T12048] : entered promiscuous mode
[  193.317838][T11927] 8021q: adding VLAN 0 to HW filter on device batadv0
[  193.382188][T11912] veth0_vlan: entered promiscuous mode
[  193.400039][T11912] veth1_vlan: entered promiscuous mode
[  193.443369][T11912] veth0_macvtap: entered promiscuous mode
[  193.448611][T11912] veth1_macvtap: entered promiscuous mode
[  193.470986][T11912] batman_adv: batadv0: Interface activated: batadv_slave_0
[  193.479108][T11912] batman_adv: batadv0: Interface activated: batadv_slave_1
[  193.486003][T11912] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  193.488902][T11912] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  193.491896][T11912] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  193.495349][T11912] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  193.558101][T12075] netlink: 'syz.3.1852': attribute type 1 has an invalid length.
[  193.561768][T12075] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1852'.
[  193.569521][ T7073] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.571976][ T7073] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.586819][T11927] veth0_vlan: entered promiscuous mode
[  193.598623][T11927] veth1_vlan: entered promiscuous mode
[  193.601049][ T7073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.603510][ T7073] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.626690][T11927] veth0_macvtap: entered promiscuous mode
[  193.630502][T11927] veth1_macvtap: entered promiscuous mode
[  193.646658][T11927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  193.650026][T11927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.656364][T11927] batman_adv: batadv0: Interface activated: batadv_slave_0
[  193.665115][T11927] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.668410][T11927] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.673340][T11927] batman_adv: batadv0: Interface activated: batadv_slave_1
[  193.677331][T12080] sysfs: cannot create duplicate filename '/class/ieee80211/!å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý'
[  193.681962][T12080] CPU: 1 UID: 0 PID: 12080 Comm: syz.6.1819 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  193.681984][T12080] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.681995][T12080] Call Trace:
[  193.682001][T12080]  <TASK>
[  193.682008][T12080]  dump_stack_lvl+0x16c/0x1f0
[  193.682039][T12080]  sysfs_warn_dup+0x7f/0xa0
[  193.682058][T12080]  sysfs_do_create_link_sd+0x124/0x140
[  193.682079][T12080]  sysfs_create_link+0x61/0xc0
[  193.682099][T12080]  device_add+0x62c/0x1a70
[  193.682127][T12080]  ? __pfx_device_add+0x10/0x10
[  193.682149][T12080]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  193.682172][T12080]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  193.682207][T12080]  wiphy_register+0x1c9c/0x2850
[  193.682228][T12080]  ? netdev_run_todo+0x864/0x1320
[  193.682250][T12080]  ? __dev_printk+0x220/0x270
[  193.682282][T12080]  ? __pfx_wiphy_register+0x10/0x10
[  193.682311][T12080]  ieee80211_register_hw+0x2432/0x4020
[  193.682342][T12080]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  193.682367][T12080]  ? find_held_lock+0x2b/0x80
[  193.682389][T12080]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  193.682408][T12080]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  193.682428][T12080]  ? __hrtimer_setup+0x176/0x280
[  193.682451][T12080]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  193.682491][T12080]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  193.682510][T12080]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  193.682528][T12080]  ? __asan_memcpy+0x3c/0x60
[  193.682547][T12080]  hwsim_new_radio_nl+0xb51/0x12c0
[  193.682565][T12080]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  193.682586][T12080]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  193.682604][T12080]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  193.682624][T12080]  genl_family_rcv_msg_doit+0x209/0x2f0
[  193.682642][T12080]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  193.682664][T12080]  ? bpf_lsm_capable+0x9/0x10
[  193.682674][T12080]  ? security_capable+0x7e/0x260
[  193.682688][T12080]  ? ns_capable+0xd7/0x110
[  193.682704][T12080]  genl_rcv_msg+0x55c/0x800
[  193.682722][T12080]  ? __pfx_genl_rcv_msg+0x10/0x10
[  193.682738][T12080]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  193.682756][T12080]  ? __lock_acquire+0xaa4/0x1ba0
[  193.682776][T12080]  netlink_rcv_skb+0x16a/0x440
[  193.682795][T12080]  ? __pfx_genl_rcv_msg+0x10/0x10
[  193.682820][T12080]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  193.682857][T12080]  ? __pfx_down_read+0x10/0x10
[  193.682887][T12080]  ? netlink_deliver_tap+0x1ae/0xd30
[  193.682913][T12080]  genl_rcv+0x28/0x40
[  193.682933][T12080]  netlink_unicast+0x53d/0x7f0
[  193.682957][T12080]  ? __pfx_netlink_unicast+0x10/0x10
[  193.682984][T12080]  netlink_sendmsg+0x8d1/0xdd0
[  193.683009][T12080]  ? __pfx_netlink_sendmsg+0x10/0x10
[  193.683040][T12080]  ____sys_sendmsg+0xa98/0xc70
[  193.683067][T12080]  ? copy_msghdr_from_user+0x10a/0x160
[  193.683084][T12080]  ? __pfx_____sys_sendmsg+0x10/0x10
[  193.683103][T12080]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  193.683123][T12080]  ___sys_sendmsg+0x134/0x1d0
[  193.683137][T12080]  ? __pfx____sys_sendmsg+0x10/0x10
[  193.683170][T12080]  __sys_sendmsg+0x16d/0x220
[  193.683184][T12080]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.683196][T12080]  ? __x64_sys_futex+0x1e0/0x4c0
[  193.683217][T12080]  ? rcu_is_watching+0x12/0xc0
[  193.683235][T12080]  do_syscall_64+0xcd/0x260
[  193.683252][T12080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.683264][T12080] RIP: 0033:0x7f5e70d8e969
[  193.683280][T12080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.683291][T12080] RSP: 002b:00007f5e71cbc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  193.683302][T12080] RAX: ffffffffffffffda RBX: 00007f5e70fb5fa0 RCX: 00007f5e70d8e969
[  193.683310][T12080] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  193.683317][T12080] RBP: 00007f5e70e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  193.683325][T12080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  193.683332][T12080] R13: 0000000000000000 R14: 00007f5e70fb5fa0 R15: 00007ffd958c3758
[  193.683347][T12080]  </TASK>
[  193.837847][T11927] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  193.840738][T11927] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  193.845463][T11927] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  193.848215][T11927] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  193.892151][T12088] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22
[  193.904951][   T40] audit: type=1400 audit(1747356109.400:3224): avc:  denied  { mount } for  pid=12087 comm="syz.6.1853" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  193.944724][ T7062] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.950454][ T7062] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.975417][ T7073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.977952][ T7073] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.069311][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  194.091304][   T40] audit: type=1400 audit(1747356109.590:3225): avc:  denied  { listen } for  pid=12099 comm="syz.3.1855" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  194.099062][T12100] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1855'.
[  194.137353][   T40] audit: type=1400 audit(1747356109.640:3226): avc:  denied  { setopt } for  pid=12105 comm="syz.3.1856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  194.178436][T12113] geneve2: entered promiscuous mode
[  194.180119][T12113] geneve2: entered allmulticast mode
[  194.281690][T12129] Oops: general protection fault, probably for non-canonical address 0xffff11012966e400: 0000 [#1] SMP KASAN NOPTI
[  194.284006][T12125] ieee80211 !å¯fIZEô¿¹ô,ô =©ÜÝ$)²% Ä‚LÜ
êñsXJOŒÏ'%Ý: Selected rate control algorithm 'minstrel_ht'
[  194.285453][T12129] KASAN: maybe wild-memory-access in range [0xfff8a8094b372000-0xfff8a8094b372007]
[  194.293370][T12129] CPU: 0 UID: 0 PID: 12129 Comm: dhcpcd-run-hook Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) 
[  194.293672][   T40] audit: type=1400 audit(1747356109.780:3227): avc:  denied  { write } for  pid=5913 comm="syz-executor" path="pipe:[5372]" dev="pipefs" ino=5372 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  194.297195][T12129] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  194.297204][T12129] RIP: 0010:refill_obj_stock+0x1e1/0x7d0
[  194.297220][T12129] Code: 02 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 80 3c 02 00 0f 85 96 05 00 00 49 8b 04 24 a8 03 0f 85 23 03 00 00 <65> 48 ff 00 e8 86 40 ff ff 49 8d 7c 24 18 be 04 00 00 00 48 89 7c
[  194.297231][T12129] RSP: 0018:ffffc9000669f688 EFLAGS: 00010046
[  194.297241][T12129] RAX: ffff888052c8f400 RBX: ffffffff93a55cc0 RCX: 00000000044fde6d
[  194.297248][T12129] RDX: 1ffff11008442600 RSI: ffffffff8bf48a20 RDI: ffffffff8dceed20
[  194.297255][T12129] RBP: ffffffff908530b4 R08: 285806afc3f7d22a R09: 0000000000000000
[  194.297262][T12129] R10: 0000000000000004 R11: 0000000000000000 R12: ffff888042213000
[  194.297269][T12129] R13: 0000000000000078 R14: ffff88806a434cc0 R15: ffff88806a434d08
[  194.297276][T12129] FS:  0000000000000000(0000) GS:ffff8880d69df000(0000) knlGS:0000000000000000
[  194.297298][T12129] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  194.297308][T12129] CR2: 00007f4c17d04286 CR3: 0000000048594000 CR4: 0000000000352ef0
[  194.297315][T12129] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  194.297321][T12129] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  194.297328][T12129] Call Trace:
[  194.297332][T12129]  <TASK>
[  194.297338][T12129]  __memcg_slab_free_hook+0x226/0x5b0
[  194.297353][T12129]  kmem_cache_free+0x381/0x4d0
[  194.297376][T12129]  ? unlink_anon_vmas+0x458/0x820
[  194.297394][T12129]  unlink_anon_vmas+0x458/0x820
[  194.297412][T12129]  free_pgtables+0x2d4/0x810
[  194.297427][T12129]  ? __pfx_free_pgtables+0x10/0x10
[  194.297439][T12129]  ? mas_next_slot+0x12d3/0x21b0
[  194.297458][T12129]  ? __pfx_down_write+0x10/0x10
[  194.297477][T12129]  exit_mmap+0x3fb/0xb90
[  194.297492][T12129]  ? __pfx_exit_mmap+0x10/0x10
[  194.297513][T12129]  __mmput+0x12a/0x410
[  194.297528][T12129]  mmput+0x62/0x70
[  194.297545][T12129]  begin_new_exec+0x15a7/0x38b0
[  194.297564][T12129]  load_elf_binary+0x88c/0x4eb0
[  194.297576][T12129]  ? find_held_lock+0x2b/0x80
[  194.297591][T12129]  ? __pfx_load_elf_binary+0x10/0x10
[  194.297601][T12129]  ? find_held_lock+0x2b/0x80
[  194.297614][T12129]  ? bprm_execve+0x8a2/0x1650
[  194.297630][T12129]  bprm_execve+0x8c3/0x1650
[  194.297647][T12129]  ? __pfx_bprm_execve+0x10/0x10
[  194.297663][T12129]  ? copy_strings.isra.0+0x443/0x8d0
[  194.297680][T12129]  do_execveat_common.isra.0+0x4a5/0x610
[  194.297698][T12129]  __x64_sys_execve+0x8e/0xb0
[  194.297715][T12129]  do_syscall_64+0xcd/0x260
[  194.297731][T12129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.297743][T12129] RIP: 0033:0x7f4c17c4a107
[  194.297756][T12129] Code: Unable to access opcode bytes at 0x7f4c17c4a0dd.
[  194.297761][T12129] RSP: 002b:00007fff3960e108 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  194.297772][T12129] RAX: ffffffffffffffda RBX: 00005616e65a7da0 RCX: 00007f4c17c4a107
[  194.297779][T12129] RDX: 00005616e65a7dc0 RSI: 00005616e65a7da0 RDI: 00005616e65a7e48
[  194.297786][T12129] RBP: 00005616e65a7e48 R08: 00007fff39610e34 R09: 0000000000000000
[  194.297793][T12129] R10: 0000000000000008 R11: 0000000000000246 R12: 00005616e65a7dc0
[  194.297799][T12129] R13: 00007f4c17e0fe8b R14: 00005616e65a7dc0 R15: 0000000000000000
[  194.297809][T12129]  </TASK>
[  194.297813][T12129] Modules linked in:
[  194.297822][T12129] ---[ end trace 0000000000000000 ]---
[  194.297827][T12129] RIP: 0010:refill_obj_stock+0x1e1/0x7d0
[  194.297837][T12129] Code: 02 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 80 3c 02 00 0f 85 96 05 00 00 49 8b 04 24 a8 03 0f 85 23 03 00 00 <65> 48 ff 00 e8 86 40 ff ff 49 8d 7c 24 18 be 04 00 00 00 48 89 7c
[  194.297848][T12129] RSP: 0018:ffffc9000669f688 EFLAGS: 00010046
[  194.297856][T12129] RAX: ffff888052c8f400 RBX: ffffffff93a55cc0 RCX: 00000000044fde6d
[  194.297863][T12129] RDX: 1ffff11008442600 RSI: ffffffff8bf48a20 RDI: ffffffff8dceed20
[  194.297870][T12129] RBP: ffffffff908530b4 R08: 285806afc3f7d22a R09: 0000000000000000
[  194.297877][T12129] R10: 0000000000000004 R11: 0000000000000000 R12: ffff888042213000
[  194.297884][T12129] R13: 0000000000000078 R14: ffff88806a434cc0 R15: ffff88806a434d08
[  194.297891][T12129] FS:  0000000000000000(0000) GS:ffff8880d69df000(0000) knlGS:0000000000000000
[  194.297901][T12129] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  194.297908][T12129] CR2: 00007f4c17c4a0dd CR3: 0000000048594000 CR4: 0000000000352ef0
[  194.297915][T12129] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  194.297922][T12129] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  194.297929][T12129] Kernel panic - not syncing: Fatal exception
[  194.298607][T12129] Kernel Offset: disabled

VM DIAGNOSIS:
00:41:47  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000050 RCX=ffffffff819b27e2 RDX=ffff88805a5a4880
RSI=ffffffff819b27d0 RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc9000669f398
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=6567203a73706f4f
R12=1ffff92000cd3e75 R13=0000000000000000 R14=ffff888029c20000 R15=ffffc9000669f460
RIP=ffffffff819b27d9 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69df000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4c17d04286 CR3=0000000048594000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c4c0c004 Opmask01=0000000000000000 Opmask02=0000000011000303 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0f0e 0d0c0b0a09080706
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002a2e 2573257325003a25
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0f0e 0d0c0b0a09080706
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005616e65a7ce8
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6970006e69622f72 73752f3a6e69622f
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 00007f4c17bff42d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005616e6599520 00005616e6599520
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005616e65a44d0 00005616e65972c0
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005616e600662d 00005616e65a7ce8 00005616e65a7d08 665f65676e006d72
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005616e600662d 00005616e65a7ce8 00005616e65a7d08 665f65676e006d72
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005616c9004902 00005616c95a53c7 00005616c95a5208 495f4a484100425d
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005616e65a40b8 0000000000000000 000000000000000f 00005616e600873d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005616e659e918 0000000000000000 000000000000000f 0000000000875d81
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffffc9000714fb40 RCX=ffffffff8236a90f RDX=ffff88802da48000
RSI=0000000000000000 RDI=0000000000000005 RBP=ffffc9000714fa88 RSP=ffffc9000714f9d8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e016740 R14=0000000000000000 R15=0000000000000100
RIP=ffffffff81bb4640 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f26b0d7d880 ffffffff 00c00000
GS =0000 ffff8880d6adf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000032d65000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0d00000 Opmask01=0000000000008211 Opmask02=000000007ffeffff Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f68637461772f76 6564752f6e75722f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f68637461772f76 6564752f6e75722f
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 0000559a1e000f40
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f26b0d937f0 00007f26b0d937e0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f26b07f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ff00000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f05040405196946 45585e4445490519
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e584b49054e445f 4559051a041a101b
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f26b069ff75 00007f0035303231 2f68637461772f76 6564752f6e75722f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 520a534041500a4b 50570a0041494a0b 4d465144520a5340 41500a4b50570a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 0000000000000000 0000559a1e000f40
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030333938313435 38313d44455a494c 414954494e495f43 455355006373696d
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4479666f7d753408 7c786812001e4909 0506191f0b0d5f0e 101d044530731c01
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f7f7f7f7f7f7f1f 7f7d7f737f7f7f7f 7f7f7f7f1b1d5f7f 3d7f7f7f757f1e5f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559a1ddc2d20 0000559a1ddc2ca0 0000559a1e0005c0 0000559a1e000540
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 494d003038313d52 4f4a003338003330 303132313d444551 454c00303d494e49
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030003038313435 3831000030003030 303132313d444543 003700003d494e49
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000001 RCX=0000000000000002 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8dceed30 RBP=ffffc90006cd6d10 RSP=ffffc90006cd6c48
R8 =0000000000000000 R9 =0000000000000000 R10=ffffc90006cd6cc8 R11=000000000000a70c
R12=ffffffff81a70900 R13=ffffc90006cd6cc8 R14=0000000000000000 R15=ffff888050888000
RIP=ffffffff8b6cf690 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f26b0d7d880 ffffffff 00c00000
GS =0000 ffff8880d6bdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f26b0417000 CR3=000000004e83e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0d00000 Opmask01=000000000000000f Opmask02=000000000000000f Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559a1e002fd8 0000559a1e002fd8
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559a1e008790
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559a1e005ce8
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559a1e012298
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f26b07f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff00000000 ffffffffffffffff
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffffffff000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a2a3a2a 2a2a2a2a2a2a3a2a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a2a2a2a 2a2a2a2a2a2a2a2a
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20676e6964616572 004b4f2034366f66 6e695f706f6f6c20 676e696461657200
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000064a50030
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313030495043412f 30303a5355425953 584e4c2f30303a4d 54535953584e4c2f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001c1 6c2f00730006dd25 0006dd2527cf8c00 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 656c6f736e6f6320 6164732f7665642f 3d746f6f7220313d 6e7261775f6e6f5f
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 63696e6170203233 3d78616d5f736462 6e2032333d706f6f 6c5f78616d203233
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d6d756e2e646368 5f796d6d75642030 34313d736365735f 74756f656d69745f
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 332f393d0050494c 0000330030363232 32393100362d3331 0030312f3237322f
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854f7b75 RDI=ffffffff9adf9560 RBP=ffffffff9adf9520 RSP=ffffc90006eaeb00
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000065656569
R12=0000000000000000 R13=000000000000006c R14=ffffffff9adf9520 R15=ffffffff854f7b10
RIP=ffffffff854f7b9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f40ae6536c0 ffffffff 00c00000
GS =0000 ffff8880d6cdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3c6c42 CR3=000000004b249000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000004010010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000a000801000000 0000000005000000 0000000000070014 0000000100010008
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000