last executing test programs:

30.085302309s ago: executing program 2 (id=1991):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
timer_create(0x2, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_gettime(0x0, &(0x7f0000000280))
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r2, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40069}, 0x810)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000021c0), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0205647, &(0x7f0000002240)={0x9d0000, 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x0})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58)
ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

29.919888149s ago: executing program 2 (id=1994):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000580)={0x1c, 0x3, 0x6, 0x5, 0x1c00, 0x0, {0x5, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4000080)

29.91935497s ago: executing program 2 (id=1995):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ac0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000002c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000035000000080001007063690011000200303030303a30303a31302e300000000008008e00000000000c008f0000dc0000000000000c0090000000000000000000"], 0x50}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r2)
accept4(0xffffffffffffffff, &(0x7f0000000040)=@ax25={{0x3, @rose}, [@null, @null, @default, @rose, @rose, @rose, @default, @bcast]}, &(0x7f00000000c0)=0x80, 0x800)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff})
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x5)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0xd}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_TUPDATE={0x8, 0x4, 0x2}]}}]}, 0x3c}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'syztnl0\x00', &(0x7f0000000180)={'syztnl0\x00', 0x0, 0x80, 0x8, 0x6, 0x9, {{0x1c, 0x4, 0x0, 0x37, 0x70, 0x64, 0x0, 0x0, 0x1bcc1e5b39f4d0d8, 0x0, @remote, @broadcast, {[@timestamp_prespec={0x44, 0x4c, 0x61, 0x3, 0xd, [{@broadcast, 0x83}, {@broadcast, 0x3ff}, {@dev={0xac, 0x14, 0x14, 0x16}}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0xfffffff8}, {@loopback, 0xfffffffe}, {@local, 0x7}, {@local, 0x14650000}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x80}, {@broadcast, 0xe05c}]}, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0xb, 0x3, [{0x6, 0x5, "a36e2a"}]}]}}}}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000280)={'wg2\x00'})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000380)={'erspan0\x00', &(0x7f0000000340)={'ip_vti0\x00', 0x0, 0x700, 0x700, 0x1, 0x2, {{0x6, 0x4, 0x1, 0x16, 0x18, 0x65, 0x0, 0x3, 0x29, 0x0, @multicast2, @broadcast, {[@noop]}}}}})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f00000003c0), &(0x7f0000000400)=0x4)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000000229bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="08080000000000001c0012800b000100697036746e6c00000c00028008001400008000006795263af90ede21c35f606e722ed48094ef659f5b661d4ffa8aba306d4efe4c7d61845ecacc8a5cf6c51d8dce0af01cc9d97f345173ae75072dbe0c292c5f6eb442e7d57bc0f8be1548b5a95fa4fb3fb809a0f139d28512fc459e75db1e72bd029c553c4104169a1fecfa7bf9e02386095220beb6bb6fb4a116e4b0b569266af8b9db7e1ddbe22e2538d189336f742022e8323362"], 0x3c}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000004c0)={'gretap0\x00', &(0x7f0000000440)={'ip_vti0\x00', 0x0, 0x8000, 0x10, 0x7f, 0x0, {{0xb, 0x4, 0x3, 0xa, 0x2c, 0x68, 0x0, 0x8, 0x2f, 0x0, @multicast2, @local, {[@generic={0x86, 0x8, "29565fbb9554"}, @end, @generic={0x7, 0xe, "05ac7d08b2a959f6d20eb488"}]}}}}})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000540)=0x14)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000580)={0x0, @broadcast, @broadcast}, &(0x7f00000005c0)=0xc)
r7 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000600)={'team0\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000900)={&(0x7f00000018c0)=@newchain={0xc10, 0x64, 0x400, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0x7, 0xfff2}, {0xd, 0xd}, {0xfff2, 0xfff3}}, [@f_rsvp6={{0xa}, {0x44, 0x2, [@TCA_RSVP_CLASSID={0x8, 0x1, {0xb, 0x4}}, @TCA_RSVP_POLICE={0x10, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xa0}]}, @TCA_RSVP_SRC={0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0xc}}, @TCA_RSVP_SRC={0x14, 0x3, @local}]}}, @f_rsvp6={{0xa}, {0xc, 0x2, [@TCA_RSVP_CLASSID={0x8, 0x1, {0x3, 0xa}}]}}, @f_tcindex={{0xc}, {0x6d0, 0x2, [@TCA_TCINDEX_CLASSID={0x8, 0x5, {0x3, 0x9}}, @TCA_TCINDEX_ACT={0x6bc, 0x7, [@m_csum={0x1b4, 0x72, 0x0, 0x0, {{0x9}, {0x90, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0xffffffff, 0x8, 0x1, 0x80000001, 0x6}, 0x79}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x0, 0x1, 0x80000001, 0xff}, 0x78}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x3, 0x4, 0x5, 0x1, 0x5}, 0x3}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x2, 0x4, 0x10000000, 0x1, 0x7f}, 0x15}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0xfa, 0x1, 0x7ff, 0x53}, 0x32}}]}, {0xfb, 0x6, "e6fb4c642f7c7a937acaf6ed1ab735e2af2dffb888edb0b785c0a3fc8c1c60467fec22fe71015a5b18496887264e15cdcfbf99130d2e0d59e56202301608ea72e8e75f548cdb14f6f4dcf6568f5c0f48fab907f075b5c272651dc0bac3ba5a6fb54488d533b907a11315d6f58133a65fa12f55b295d02156de88f60aecf4d757202fc171f7dfb89c5d0d59b2aa1ca4a9bcb9ade6229b1f9becfd8034a9fbe43985b16f2b1a3254a5c2104d0ed984c67b94e67a1f0436a5e247d3a27674cf8cb8508672b15ced65fbcbddecef1fde663e5532d3d090e7ee9d0618e565d4e08f2b9f7542de2135da137550025f6154829777d02d092e5706"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_gact={0x7c, 0x5, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x1, 0x102e, 0x2}}, @TCA_GACT_PARMS={0x18, 0x2, {0x1, 0x0, 0x4, 0x80000000, 0x10}}]}, {0x2a, 0x6, "4984ba05208a111faba81088990f2be749ee154d1f631d1c096194cc5d047fb61873aed4690c"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_skbmod={0x128, 0xd, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x2}]}, {0xf2, 0x6, "559627bc674050e35b32e790c2890c9364e528a89e4899451c9df8288effefc003748a71e1c8ece40aff49919678803dbff808d984fce515b23a84621218bc6d1fa626f582b7991a8dee124bd4834a8130940a5a58b4f72d433899233d3feb219feb8839d192c621d949202d8c2b65bad51aefabda9d112f5adc60512dc99f8c4be9439eba2d634ce9fd32b6cdd9b90a166c262ac2e7573099fedd1adf24543bef9cffa761603a497c516bc60122c3191720ae78ac0a28b6923dea589f98cb0ffa9b6a860093569c746d79ebecc8faa8d98c11d89b7a75deeb72f6f3a799e3bd92101d07f35f2094a5c8ff60673f"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_connmark={0x168, 0x8, 0x0, 0x0, {{0xd}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xffffffff, 0xb, 0x6, 0x0, 0x1}}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x9, 0x752, 0xffffffffffffffff, 0x7ff, 0x8}}}]}, {0x100, 0x6, "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"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbedit={0x124, 0x0, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0xe0}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x5, 0xffff}}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x3}]}, {0xde, 0x6, "a4e76acb13b34aad74e5850b1c3e4e8bb63a642ab33d23a679d309a6dc6c4787d18b6818c2153ebc1be0f2f56f12f07a852a69edbe87ae48b19164e5b1d236284a4250bb4a9f424d581385973d0b35511b16e7e1e741f6419f71b05334cad39bc2fe4072b8ace1147cae00fd590d9274684c5f556b628fda764b6728b0135d44b755a6d68a91a4a3368010d867d63b670d087587e18f4f78ffaf3d607f963ab8f60ae811da57472f7565da10e8d74295c65b9a366a0d2918ada380e70a054bb59e30a026799f80cccd44f00b6af7c7e83075833e13b5c562579a"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0xbbad22cc6d75586b}}}}, @m_connmark={0xd4, 0x12, 0x0, 0x0, {{0xd}, {0x90, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x2, 0x89ea, 0x1, 0x1000, 0x2d}, 0x7f}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x8, 0xffffffffffffffff, 0x8, 0x6}, 0x10}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x1, 0x4166, 0x0, 0x400, 0x4000000}, 0x7641}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x5, 0x0, 0xffffffffffffffff, 0x2, 0x6}, 0xe7ef}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffe, 0x3, 0x2, 0x7ff, 0x7fff}, 0x7ff}}]}, {0x15, 0x6, "06fe48719d8f706e4e467088d1d83359e8"}, {0xc}, {0xc, 0x8, {0x1}}}}]}, @TCA_TCINDEX_CLASSID={0x8, 0x5, {0x8, 0xb}}]}}, @f_rsvp6={{0xa}, {0x49c, 0x2, [@TCA_RSVP_POLICE={0x410, 0x5, [@TCA_POLICE_RATE={0x404, 0x2, [0x8, 0x2, 0x3, 0x7, 0x1, 0xd, 0x4, 0xe, 0x5, 0x1c, 0x3, 0xa, 0xee, 0xfffffffe, 0x8, 0x7fff, 0x40, 0x40, 0x80000000, 0xd4, 0x9, 0x1ee, 0xfffc0000, 0x60000000, 0x401, 0x6, 0x5, 0x1, 0x5, 0x9, 0x6, 0x2, 0x3, 0x1, 0x0, 0x502a4425, 0x6, 0x6, 0x9, 0x1, 0x8, 0x7, 0x0, 0x10001, 0x80000000, 0x3, 0x9e9, 0xd69a, 0xa23, 0x8000, 0x3, 0xffff8000, 0x0, 0x100, 0x7, 0x4, 0x80000001, 0x3, 0x4, 0x9, 0x3f0, 0x4, 0x3, 0xa68, 0x5, 0x5bd32815, 0x7, 0x9, 0x250, 0x6a53cacb, 0xff, 0x6, 0x7fff, 0x2a, 0x1, 0x4, 0x0, 0x8, 0x0, 0x2b21, 0x9, 0x0, 0x0, 0x1, 0x2, 0x4, 0x81, 0x7f, 0x3ff, 0x2, 0x0, 0xeb9, 0x805, 0x9, 0x10001, 0x2, 0x3, 0x2, 0x8, 0x9, 0x4, 0x9, 0x1, 0x9, 0x8, 0x5, 0x8001, 0xc4, 0x7ff, 0x57747e2f, 0x1, 0x6, 0x8, 0x2, 0x625d, 0x6, 0x1000, 0x8, 0xffffffff, 0x3, 0x200, 0x2, 0x400, 0x4, 0x6, 0x7f, 0x10000, 0x6, 0x0, 0xffffffff, 0x26, 0x6, 0x800, 0x8000, 0x6, 0x0, 0x5, 0x4afb, 0x8, 0x7fff, 0x0, 0x3, 0x6, 0x200, 0xc7, 0xff, 0x5, 0x7, 0xd3, 0x3, 0x0, 0x1, 0x38000100, 0x3, 0x5aaa, 0x8, 0x0, 0x5, 0x9, 0xfffffffd, 0x4, 0x0, 0x8, 0x3, 0xd6dd, 0x10000, 0x8, 0x7, 0x7ffd, 0x98, 0x5, 0x8, 0xa, 0x9, 0x7b, 0x5, 0x8000, 0x100, 0x200, 0x838, 0xfffffc01, 0xffffffff, 0x4, 0x74b9, 0x7fffffff, 0x1, 0x6f6b, 0x1af47383, 0x1, 0x7, 0x0, 0x0, 0x1ff, 0x7ff, 0x8, 0x8, 0x0, 0xcf7b, 0x6, 0x0, 0x4, 0x3, 0xd13, 0x10000, 0x81, 0x0, 0x1, 0x6, 0x6, 0x8, 0x65ab, 0x2, 0x1, 0x9, 0x5, 0xc, 0x0, 0x2, 0xe4c, 0x2, 0x400, 0x80000000, 0x8, 0x207, 0x7fff, 0x1, 0x1, 0x0, 0x9, 0x0, 0xb, 0x8, 0x6, 0x5, 0x3, 0x1, 0xc3b3, 0x6, 0x6, 0x8001, 0x0, 0x9, 0x4, 0x80000001, 0xfffffff7, 0x0, 0x4c1b088b, 0x4feccfd8, 0x4, 0x8, 0xffffffff, 0x59c, 0x0, 0x10000, 0x6, 0x7fffffff]}, @TCA_POLICE_AVRATE={0x8}]}, @TCA_RSVP_SRC={0x14, 0x3, @mcast2}, @TCA_RSVP_POLICE={0x18, 0x5, [@TCA_POLICE_RESULT={0x8, 0x5, 0x663f}, @TCA_POLICE_RATE64={0xc, 0x8, 0xfffffffffffffff7}]}, @TCA_RSVP_PINFO={0x20, 0x4, {{0x4, 0x7ff, 0xfffffffc}, {0x5, 0x0, 0x4}, 0x5c, 0xcc, 0x5}}, @TCA_RSVP_CLASSID={0x8, 0x1, {0xe, 0xe}}, @TCA_RSVP_PINFO={0x20, 0x4, {{0x3, 0xe, 0x7}, {0x6b05, 0x2, 0x4}, 0x5e, 0x7, 0x7}}, @TCA_RSVP_DST={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}]}}]}, 0xc10}}, 0x4004)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0xac, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r8, {0x0, 0x8}, {0xc, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x7c, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0xfffffffc}, @TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x1}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x3f0000}]}]}]}}]}, 0xac}, 0x1, 0x7a00, 0x0, 0x4010041}, 0x0)
r11 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$sock_ifreq(r11, 0x89f0, &(0x7f00000000c0)={'bond0\x00', @ifru_names='gre0\x00'})

29.638001459s ago: executing program 2 (id=1999):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="b90103600040f000009e0ff00800", 0x0, 0x104, 0x6000000000000000, 0xc1, 0x0, &(0x7f0000000400)="9209558f0c5fb25cd57f98113135c3171b8b331fbc04f0e6955a796ff8e3aae3cac46cec3030dfc999058aea01f0e6dcf2f9d480d328655aca003927bd50ed49d4843c8a0a2a4b26ceb747947200bd644c85e7a8a7d7cfce840c02a7d69c9e0bca410f64d43290abbbf3131e1fa8bd8c3e5f19d5a491d3d4c1a0fe47de9eebaf073ac3da6256bdb681d18fbd607c9b0d710442bcf78bc36fd3c035812bde582a262bff0e4d6181c818fccf542868c6e602d97bea23a101955dc76bcc984142ab30", 0x0}, 0x50)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000100)=0xff)
syz_emit_ethernet(0x5e, &(0x7f00000004c0)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd308", 0x28, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x2, 0x7, 0x0, 0xfffe, {[@md5sig={0x13, 0x12, "cfa38d35a6985f98e3c41160dadfca00"}]}}}}}}}}, 0x0)
r2 = syz_clone(0x4000100, &(0x7f0000000000)="316d3a745e77f29f33d72fffc478d92d250eb93da13249eec0cfe340d19652a596ba07d2b71d2583fdc99b933e2e14cd4a74a753e4ad5f647d6a029f20e54b00", 0x40, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="f0537ba732fec7c379fba5e74b158c339c2864b555710890cb83c18b75c1cbf4dc948279d621d9c41a76ebf456df07e0b00556ed38816382aa0202cd1f2ba19d54fcd202ca84a187fe7d529663606eafbae3e34c4ab79877a67ab57c11438c31382f1478b17218bd15498ed4af185ec7c9d85ebce069dc8a1bc7eb68953fd52e5da15b3b8675f2f92e786cfe507ca0a7a934ae7af73946eda6306ca5c0e08098275a")
r3 = syz_open_procfs$namespace(r2, &(0x7f0000000180)='ns/net\x00')
setns(r3, 0x40000000)

18.877100283s ago: executing program 3 (id=2030):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', <r1=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000200))
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
r2 = socket(0xa, 0x2, 0x0)
recvmsg(r2, 0x0, 0x2001)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @hsr={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r1}]}}}]}, 0x38}}, 0x0)

18.790467429s ago: executing program 3 (id=2031):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x4, 0x1, 0x5, 0xf0ff, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x8080)

18.789785066s ago: executing program 3 (id=2033):
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f00000001c0)={0x531, 0x1, 0x401, 0x0, 0x0, 0xfffffffb})
syz_open_procfs$pagemap(0x0, &(0x7f0000000000))
mount$fuse(0x0, 0x0, 0x0, 0x280449c, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x50}}, 0x0)
r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000226aa140070ad0001310010203010902240001000000000904000002bd22f00009050303000000000009058aff30"], 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan0\x00'})
syz_usb_control_io$cdc_ecm(r1, &(0x7f0000000180)={0xfffffffffffffcd2, 0x0, &(0x7f0000000280)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
preadv(r2, &(0x7f0000000580)=[{&(0x7f0000000380)=""/191, 0xbf}], 0x1, 0x1ff, 0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket(0x1, 0x803, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

16.510255133s ago: executing program 1 (id=2053):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100"/52], 0xb8}}, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)

16.510012772s ago: executing program 1 (id=2054):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4000000)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58)
ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x300)

16.450626965s ago: executing program 0 (id=2055):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)={0x60, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x2a, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @val, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x60}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r2=>0xffffffffffffffff})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r3, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="cf0400000000000700001300000008000300", @ANYRES32=r5, @ANYBLOB="0500130092848b000a00060008021100000100000600100080050000060012"], 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

16.405162889s ago: executing program 2 (id=2000):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x7c}, [@ldst={0x6}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2000}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)

16.340395567s ago: executing program 0 (id=2056):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x24, 0x24, 0xf0b, 0x3, 0x25dfdbfe, {0x60, 0x0, 0x0, 0x0, {0xfff3, 0xffff}, {0x2, 0xfff3}, {0xc, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x44045}, 0xc090)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$sock_TIOCINQ(r3, 0x541b, &(0x7f0000000540))
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/image_size', 0x20202, 0x0)
sendfile(r4, r4, 0x0, 0xc3)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000280)={0x5, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB="384900010000000000000000000a008000000000", @ANYRES32=0x0, @ANYBLOB="0000000014000100000000000000000000000000000000010800020000000000"], 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$IPSET_CMD_PROTOCOL(r4, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB="5c00000001ff0300ff000000050001000700000005000100070000000500010007000000050001000700000005040100070000000500010007000000050001000700000005000100070000002bd0ce97158623f26f383fc317b098d6ff4b17d271acbdf31086230bc31cdffe982229d8c149263260e9acd549f9fc4cb00ce38a0a8ffa568eec6d1693464756d1ff258dac6cbc0b060605439fe02624eb2f04761cc353a779f0930704e27e2f8f5f448687000502e959899882d9"], 0x5c}, 0x1, 0x0, 0x0, 0x8400}, 0x4894)
ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000000)="0f01c33e360f01cf0f01c27fa9260f8c69000fc7ac00c00f013cc4c239cf999798640fd2db640fc0dc", 0x29}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r4, 0x84, 0x70, &(0x7f00000002c0)={<r7=>0x0, @in={{0x2, 0x4e20, @empty}}, [0x8, 0xa0db, 0x81, 0xb4, 0xcfcf, 0xce, 0xfffffffffffffbff, 0x7, 0x7, 0x3, 0x7, 0x7, 0xfffffffffffffffc, 0x15, 0x7fff]}, &(0x7f00000000c0)=0x100)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000056000100000000f70000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f0000000240)={r7, 0x4}, 0x8)
r9 = socket$l2tp6(0xa, 0x2, 0x73)
getsockname$l2tp6(r9, 0x0, &(0x7f0000000280))
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16.29049076s ago: executing program 2 (id=2057):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x400, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
writev(r0, &(0x7f0000000040), 0x0)

16.290094058s ago: executing program 1 (id=2058):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/rcu_normal', 0x141a82, 0x12) (async)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/rcu_normal', 0x141a82, 0x12)
dup(r0) (async)
r1 = dup(r0)
sendfile(r1, r0, 0x0, 0x8000fffffffe)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x12, &(0x7f0000000100)=0x7b, 0x4) (async)
setsockopt$inet_tcp_int(r2, 0x6, 0x12, &(0x7f0000000100)=0x7b, 0x4)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
sendto$inet(r2, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0) (async)
sendto$inet(r2, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e23, 0x2, @private1, 0x9}, 0x1c)
listen(r4, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448de, &(0x7f00000001c0)) (async)
ioctl$sock_bt_hci(r5, 0x400448de, &(0x7f00000001c0))
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e22, @multicast2}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x200d01, 0x0)
write$FUSE_DIRENT(0xffffffffffffffff, 0x0, 0x58)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) (async)
bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0))
socket$kcm(0x10, 0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)

16.169603601s ago: executing program 1 (id=2059):
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000005c0)=ANY=[@ANYBLOB="b9"], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000080), 0x1010410, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
openat$cgroup_ro(r2, &(0x7f0000000140)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r5, 0x4080aebf, &(0x7f0000003680)={{0x3, 0x0, 0x80, {0xeeef0000}}, "cb31455c9ea4288a70a2a6bb8068fd95dd041cf5b177a3bffe992dfbbdf959487337b92336ce1de32e7695c411c0bf9f852d2d71192f33001fd51f5b396a55cb98699a09d21648c4cb30d9d7e3e397c7a3c041c76c72385a46c48c5302848c3696facce956952c2a85822ddf20434ccee5806294ed563ff3a972cddf6ef16ddace933d8a5adea40cd3ad40c9873c29368838e815ff59723519154856b2d5cd9cd79a97dc2fa08dada1175817886e5f9e7aa3dca783a44c667a4806826570ec6acb57d65efc313a384e11fb633dee17ee600145f2cb3103384606140021be766fcb7fa0299fe75684466177ca1068192550bbf4e6f5694aec747a16e27688a988fa595eca1761b8e88a7dbcaeaf97a8b7b53058b1faf880dd6f1b6eb4c7beb0582b4007f1a67db1352407adbe1456bf762c94fd825b9419d74f63cdeb6c6976de1890d773f0c8088d2bd48a838cf5b87f5ddf926352960fb978874b0f175acfa55ddfe84de3fc9f75b58bf7a35f33d3c43ed5e3224e92751fa1b43f94f64b681163ef1360a3f3bb7403afc67a188b2104b45c5814aaa9e218552498bf85f4b221d9acc32a331f5f8c109cc9f335ff4e418ab30b54b99d5376cd928c431fc8211fcbaf64716afdc4b6d0417e04d5723e4675d282b36bef3a3a19e855029ec7c33830a6df19332b63e9d8a0f22d96ac230c67657a4e7f7afab91dc0ce751b68980e5a4f6d9d6d9b98802ba9d8576640eea61b8c308a1745df61560e56108bececa3016d93246fdc8b768634e8319b1ffde103c07378f8f4927baba05e992a4b5af0958a7e495e7ce53f7917451d15a963ca14f5cdc4563775688b6533a4b97e0f84b0a33c30077b20805c1f42cc7815efada97ad59ac486bc9e0ee386b49cb97b47fbf8f919f06c75a49636795054b5ebee3e91602c90d7f4db49220affe56d56b96e4f662b2bf36dae482ffc7ba21cbc55e21b73309d6b7aa5509defcb77c236e43b579c61eae5c8d8f8fa71ad876b96069f2e4352c8aaf16e299d21edf5434c0cd9b25cdc9210fb0de759b1dd3fc7fe4c7118bbde72a5617dff21f7a5036448fba7fe41aaee0c289cd076d757e47b0713b236f6f141ba0112c9312b3ec853aabafdf1eb2cbb517d2d7352725f557214d27d9a340af0128fc960a4ea64c933b0d8dd226b6e024471aaac8a7074b2a8695ab990fabba5bf315d246fbfe4260f1fffe54814e33b6235c5b4095437298858909bcbd40a8a286d1bedb06b7b1775bce0a5bca19b0a5c2fa8dbf87b55ae0a43c5086422e5bacb94047e150451f5996420b0d4a697f59decb49900b2b9c13aade536933e14d672c21a35cb68572c3de02f3147414eff4b8674b91f7aebf35f056a8d388f67f8ef7cfaf6b28fe745831ef41def1839791647016932c70685752851327f1837d2f1e9d8f93443eefed2317119c8152ca451a5d3aeb253fb484283f52e5db9f61f059ad3c217a860ee0571d254483501b00699208c7fa5571cf58b9715c954115bc2db0af28361938bb95ced7370c8cbb6141ef62fdbf369dfc4eccd98ab9886d79a52cbf91a27dd0f4b29940492e860fb94654dea54fad6290570760e3b59a0cf28053732472dc313b5fedfc583fc702a880971dc61286370aaf167810455cce7654dc4325a41d9d1944abcdc4d81378f1e96a8f94cd95b886a01f086e379601504219d57d531ba34e1ba0905785fb629c61f6b940a652cdee9dbef12b7fcde087b92816db3386a5769049ba00788e31de4ddbb8b56de1fbe3a5e671728effda7cfd0b650cf5df2faf22470812efbbb548e47cbf36c64e05a7877820f08948ceedb35e12a4a143ee0101a7bf0a00a4062b50c39020669700adf739a6f75352a45fd1373d3e85c3867170373f0c7a794d8590f4c22ae62d438ec365b0f6a15cb2ffe0fc6f57185e1760761bd4370027c01dfad0502f00b6898115df3c530d0b0b4a64e623fd580b528a733e4c881cf5843a975a97f92a7833527887c79fa8eec82b9526a15c6c5f2972083ce8aec735810580ffa4ea2cef4823aee044dd70927f7c07bba18b930006aa86ae7399ac6b4c24bc9d6a6ab0c5b428d7255d4d983eadf97e10c1b00867da29ac981acb453073a37236e7ae808e7759b2e0cffc3ec43afb1e95cd090a7d4b9225a0e3cbebfe49b93846ab603891e2da7d85a04bf42d12d16a97c965bc4911d3ba7a9ca505794d8744fef00a436089de67aa8b480070230dfb002eb91edaff40100000087afae418dff7ca59aefe1ad8f6935f309fe7985c2310881659c60a66a5e50242497ba1cd5d2bd79496ccd23f9fd901afc6622829cb3701caa50f96e09e3b23bfa3181b74ec7dae2e42c9caab43e49ae1d922a1a1eb3682de026323d9215fcec42c54401a1af81450830a4b784ed1c7922734bf3632409147680dd3fabcef296353705bb5c0e650e12905a05db1e7923923a96ddc783fc1ed46e2010416c37d9d149ad73e808bd6e4464f62893024a8501803b6c88fc55c8bbc1da7cbf580b5a81fb7c61455ae3a8aaec303fba12e0f2b51ed5e8bd31db40e8bdbd00e7b1ddd364766c974d813d86fc88a27bf82bba60c62e5f0f6af6bda3390f8e72a2811baf3d6325e70d9a3b59cab1abe95290ecb87985567e1243504c038de9d4d100ea64eec45208cd8d2474e646f7d81eed6d59b8b0859552b6fc088d874cde3e75ee30243dc9d88ed5b577851a5bd9e2a453287025777fcac19ac33e1c94b4ad272f1055b16b842a6bd6168fb45f1f74ed2467020df5431068a5f2cbeaa6ac1841308c7c9f752aa06927f91fdf18ef9d9e942367e5ecac0abf4db80238c0e7faf2ea7d3f5271028fc558a44799bde63168becc67c5531e843336fb16ab618d37f95a91937b824bf896b044146bc3a5e264a8f23ddd00729cd9aa56d9a9a24b7ab96ae021b193d8874d43ff4b723d86b7564e550378599c3e0c7a2b3d447ad76eb4cd699733d970a5ab218429a1af81df9c8013d6d16a6bcb019f6ace4461cdaa785d20ea027cfa53d521bb91ad2c04aaa6c0f268b14924803977633280c7b7beb14c88fae542b7a13e96253259e7296e37276da88891c14664340e84ae732edbd71e67047e476735b220ca231de31a380ece372db632ec3cb3ef5ac97ec41148febd2acb15cde1ee5e990ea0aaa95c2df39e2111dd1185d14a194e22d34fda8f54e99d3a73e5a231682c726d40816e048c1d059bf3bb9ee2b5f895365d95aa28f6adbf6e16469926b4d8ee7f04c7dbafaa444df5b88596c17874f0efe35e5ada1a69634f4b430f852d33b032f823c5deb54f47a7a4adb1adf56d5440b7a917580004c13e0b36c8e0a203a2be3f8fffd9efef3af19389a12c67859d4381ac0a02da18e25931b41216b731de25e1245482c84d45de1cddbce2109322a3428bff692012573fe9efd02109dbf35c5d3a287dec105cf3f1a2e5f0b1cc08c7b4759766d25d0f7b42c3ea8bf8101e61159a2ba7602e9c24084709fd61d704bbdba7d282aac778b7ec1dcaf984527c8112d56e75ab774d1598d9816abc77b0e693880beca5f330c626774ab5cb6967fb0ea8e14efce120947092c3b6f8a22f07cad22e971418092481fcad36ecf0cfd6bc3864115b8507c13554584f1f6fee5ee07eb6a091638d8e7781c1c006166e0f987f9f4de535e9f3df1db8c9328e9a19a73c76059ab4edfe9eda7f16cc6b869229bafb179d194e20ccc6f9338183b673de8138ddab9a0907278f6eaacc55bf59a450ebc10e0b88c82d9f0deca86ff771f46509250fde94e0c94256b77616d099862ddc9b341838d634a9dc4b55a88fcc6248901135f6aa76365433e7e534e0e5ae8eec2a63df62c3e244a40481189ff54122698c7e2da2c829b2eec9efc9894ee05be04ae6dd48406eaace17827e38bf38b414059aded0343e0711a8d864ff41a8d9ed40fb2aa1a3f4014f691cd0e8af62445a021820ff03afa8a192ee255862f306851df1de96ce36cafb6a60b7069db7aa96fd1ffb2fb01e6247f770304dffe4b1c8d0eeb336dd6806d6ab5d418953b1cae7cbbf53766b61e4aad5cfce8255b78af26f9bd11283a9c7d12cd63b82cd2b506fd4061d1e16fc7c713d80763c3b0aa0faadcd9b7d676101aad80e1ca00369297e1f714003ab8d0b545c335014a522a25a767950963ef821425b79b521076166d0df3ef358c7d60d99cc85463c186e8faf16af79785680382e4cc93f6594f8c4461e0988c08717640df24a5f357db22432fcae21702dc792d201212fb3791e0164bb3d433a8268ec96df73766fdba42965e00e619246cba5d96eb853a7c22c34d2fe5e5d3f3ccf9c627d069517b743cd07f6f7b444074bb9a50269f2e03309c58930e56a9583eb00c37fbcdd391972261f41756c10c8899fcd036e2017e088ef9e6ec31f795d55b3bba214c53c98fc9318e4ade0e7e6fd259aa277fed54c27e5210787a5f6937f56fdbe1da5113f059061ca590ddf536a55cb91ac6ed41cb9c0418b115b29f5e823c1b0ee7c2b3982087763545b34e2c945d587ebce69bbe299a7f52b674f351977370fc700474bc15d7e6ef98c14258ecf401a4f3bba369aa76c5ab0b8819fe6efe3fba1899909e5e48554299150ee272451b56142d12ae2bb4942db430239701d494917f2c939a6fb9d98d4751a6f2c4537ec870342d223343a9bd7b8d8c99aff8cbfa298395551185f35dec120228073a1e496a58b59d9ac5986249a7c6db9398395cbf341c08ee910700e2daa042dba1846fef59c72ce872bba2046a14fcf9a47a5686d62bfba76309a9865c26e5fa41dd872fc749fdc57953105ace4978f9eb788c8d061c853ad0313e51e732c5d7bc05e752443c8e99b8e81c688befdb5b14c3cc2f96eb8ce8290303e483992fcbece1ff278d0dc036ad437b6cbc695c7741ba4556e242146d40843c73deaf8fceba40e4a4acd739b3031848b17a210a1ff0dc1908b77c4bb94543af52e1fe2a090c8f217428d02336303f7952c3ddefa7c81850676e7f4cc3d32c3937281fa5ab279c3fe39f92ba077dadb8c2c3df17cc511bd33c41cb161d24aea154f0f5902c94b56fe072d321a983668bd9f4838878e66ec44cb233d7d0ca908a794c844ff8b3ba4c57f6c5fc2f3a54db448b013f0c4998bbc6ed0409b3368391cb28c6df4a909fff9308ff38c758ff7d8a2920bc221236d89b3b76de44e8ce649b32f5135a0217ba9036a8edddee97d7ba15f2c21fb7d3cae3eb6ef09dd03eed650489c83b5ba5dd9daf7a86cf0544fb8a58e46b860e3e42e10cd6f1c4f81179eb2c3ba611793a32abb4c0768db90e8bdd1694efaa9c2b45c89d203fdfb8b926b6a0d666d91b93065a83184fc2065961f2308056241b66f427c0f0aabc75852c90f0624cf036d537032ca8d73325d2ae2a79a7292c240c34584bb881fe5d468a051cbc0bde061f9eddfb758cd2dfba296eef549e5c4ede097111216a0ec60f90e8d6f5dd843c82e15f505f8c74e854ba9cd386249d552978eb8135a5f8c79c3ceb8dd5828b0218ffe40f375d6cf3ff2f47c276c8169ab98336582a852c1535018fb2306aca6b8c9f9e38d64c66a722762b76c69d4ca6c14bd6992549e4eec17287fce194467f972d9200c3d1ac4fd4a8f2620e2e4281d28c099946ed90789ba122705326390d3e058ceed24044e542efb36416272eadf6304f30efa0b7bc1ae5be92fe50e591ee6f725726e917ec113506920beb2aa53b39f1d76b31500", "cfb220c7d481332f3f1f8079dfe27e23185fd67a407358db7892789f96b7fa9b14daa48617a10d8a91b820ecbaa470ec0bb1f3cbce7f70ec70b19a4cad082229c2788f8611d7dc306d9a45761a97828c36ed87ebde5d4a3e1609c1422a8ae2f7cca428ebdb0dd38b90b9598a353b18a600bf35a369e6e3e5abb0a1c5c0c0e48e014e7ef1b7d768b3c5657f1adfbb7ff2985082b16c99eb83ec3660990dcf1106efa6b7f8a4798fec811c2c85faec0235c83b7093b3d02367421abc40a554e0b0d7fc1bcaece4222c594f8d20e368fe625ca433c75486fe5c94103cd17291349ee12b877602936688666f82ecd8f4f83d50bb1650e08b96cd25ad147c4c956c98649806a3736d072c8d97c6e3a46a7c18535df8d828b86662400d8e9cc861fa1dd5dc193892d3168396c499e07b279fb76c7e289f2fd955691363bc1de74536dc571817615c88b0d594a136966c129e424ccb7ef1c7c7461eac7ca5f03d72ea4c9c3d1156ee4cb1bb70e097357588b5c49f6716bbae1bd118104b42786f09a3b9f7cb80f383cadfd0c462096ff2bb637b7cf79764b6a4b7ffc5d87c1f063fb48e7f08ad5af534c70079f12f28e8921abbd4280801cdf6101ea494768b1274afd0eea5939843d56022a83590920fe446d52dfe699c33977d5592dbf7e0e236b8175d7faae06e0c50f7402174023ce4b996564e945c416fa823f2f9c3213ac50b20bd1fd55bb8d9fe70ee31ea2f404ae0fcbf857bebcc9196c8c622059fea2e248e4058905b69fb98be312d3193ea1d8ff653173e8c2371371b77a5bea45b3cd6fba19b6336f94ec04c8f86d24e9ca959874577d7ca0baf3c4ff30b554bc3ccc06df46d925373fbf7863e2cf684d3bc9603ab72b851ca4728294de87f2dec6f23ca9e43ed2e5cbba662d13137fc1ce0f6ae6aeb974f72f4b750825fafb67715e425f40c7da83b92d4249a0a4e96b789cceb7b07f38cb83f72dd093a345ab3cb8ae760fc14e40ea182a0d7fe1facc62a1ab0902349fd7e27bb0cd349fb5053f4734823abf020739b4b43bb11f5d69b61295068df31177959903c2ea1bb82d24eeaa93d0d4738d5d15b2a401e7ebe0d3cfbd45b2db2882cdb41408aaa718f8320fbb7f9da4f68d0eebeef175442e807e9908132731fe5e268582dcf6dffa4251ebb7121db8e412089fa9d8af9919799547a26b6b8eb44c28f1ce5f9a3021fe30841be204c1b4b3813dccae6baeef9b53fe413cbec46bb0cd95d3793cdc9bfe6cdd96ce0c4aa4a25e1cbbeeee6c9fa558b279048c7e31d07b125bac68d4e1f4253bd4dc7824cf3d722c94cf2b8f61bc8155731f072fd447082b181a13ffb8c08a1d568298c5de2d969fae2bea070a9e2688f294e76b8c200dfb993ec19778eb56ae3127c1116ccc85ef8806fdcb9ee0cb66ff03fbb0fa6c52b9b101b3830fc1650efa859163a264b4059092e5dc9a415ec09bfd1460f142fe5ef00beb6aa9032bd0de97aefc6f65e8cfeea761b3d8174caf528b6627682ff4d4450cb0f34251fc000ed01dd538ef13260984f44703b89dfb511bfb538d0b1c8aded964e1bcc5ca57437468b14a31ec0000a17e4d24369c40500449c37e7dccedba3eceb59d827dace246b5c48afb6a5988e64c560b3dc76c32d831f51cdbc5cfc4364ac8b25372b87c92bacfedc6bc8feb44098dbebc89cda03c59e4c58a31372bd574704b9e788834b9f83c6703f6709efad97c4ce499ea580dae1de282a019247cb3dce5c1906322e6d3ca5157ea6428bc42416936fac194efe136089c07faf7adf1e923003f1dc63fcbc634b389a4f351a6acee785e23c6bb04ca2f265be1e634362b87c6f9fd369bbe62a1db6b286c7ffde6370bb4d6e9e0cc3ec451e1a99d134726c9075e71319d3a683e91e4b900061c0e6d086481069cd32f4cde7816f8e3a0ac6428a7488f31f06ee0da10df3ed0c150d29085879d064f914407f60018bb588735663647bfeda930407d69abef3f72fd461c2b85b00988b412a180fd267fc646a86d297e7e40912607157b6fa873df6442579b1523d8117f0c06c87adf75843b8bff30a5bfb4fe1e9846b7fdd58774641baf9cc9c4e38e53ed24a9d9e9dbc7657aa9b220a8545852b0409f5c0812e953823e841967bf55059acc7a4600818134359e72cfae0d04a0738ac8acca133d6395a455b22cdd6f901d4cdea1cf17415f7d7895a4b65f80d2f7c5c60a0dc04b40c9ae5ffc922e074a82afd704673e1766d19db9f60eab0238fb4a3169a08aded607847e5d752d4e24c4914b95bac3892bcfc2076f16a7f07583f0d418b9dec03afdb2e93335a392e1b1ef2910eb2a4b6a63fe61641f3c02bef73cd7e4a77a6f30ae821598c3160511603541bea89022b54f321c2a55cdeeb19335d78a821ab6ca0f36588a9a79a41e2123905a491d658c2a1caeee998c995bb0f816c92c5dc2b862183f80b9f9786c9c5524723c944d11f6894c7f008ab8194f577e22c03631d2a33205f508ea49653e7600639242dbaba704f700ac227f32dc575c559a0a1f4fe0cf6c22fbf7e1ca2ab4b1e4724e8379021e3c9a7c1509c6a413bd7d9c98938e440762eda2546d636597defa86c1ad31126a1182d365f858927d140fb0a97f80adcc5f4ed5efe11ac503453917a263f1d64692348d30f382e85e464ef7616067a42df5de1a1b622fabefe2ca4ceffa4801f7a02fdef40644cd1d079590d900727628d54b44db7ac700d8d664f7eea12837fcf347360d8e43a354fe51b4c49e8fcda3c322b738ed2b800b5cc06e22c72af2a67ee7bc8ae894e841f2cf2b0a7e381caf944bf4e91ded63b6f82f7474e4f81e986fff7e5339b8e9f60103a1af81833e120f0c88893ecabac044a4a2867cda4fdcb084459a00507aa9e5a8e761a72df3322a1ae8cd918b4994c23bdb1e459b4f21651bd7fa067a00e2a2877bf6b29f289ed8018e0a78f6fb4ded9749640e0e37f6381b320ab72da404f3d70d60152f6fa6738932387b83250cb3148141edb52f109bfd4bda8054959db01f4c550609a63c08cf01ecd110cfc6f0055638c0dde039d2ac2daafe59e561f9f08a8830c3f661e4325de63e98f4a4216ec3b83fd200201ed3f647147611424286ffc6c4a8aca64a6874743242d4feeaa9153de06e51c512d9cab7ae712c6424069f3e5db4ddebe9b48b5f6caa741162edf97674d2368e03a387f798151a4b9b9fa9e3a5838a343133158364a9fe3bb4b9a3c464c0c54a4c64ca774ad200925ac6bf59508c10a8574afde9b821741af43ec64cedc13aa220b39772195283506dfe899dd6a7b37eb21f154056a2df3564ef2bb918a928651de88c3613b84e7960bddd7b46b1304deb30f57b6fe5a3b4788629e91bcc2456a72fabb16b47da71624d2e9081de748b3387f52da4bb094782326dcfde0827e2d674e41bb375247d349cade9c704e5431785009b0e53f1b45c70b237c9432e07e4c7a8464ed11608a3d2184338dd9e6f6ef4b3d751e979667b6a3953c89aff4eead7a978071a912b3de21a85a5849c57933cf53cd74a610f3e60f699766fbc7e0bb8a891a429c77bb6f3b6f9f8eb0b1bd9588ef2ce98fdf0a0838e4b0bed807d8b673093c717feec8d697e32542274887d039db7a2daed5d52c8e9767443229f8003c5d67e907376ea2f393484fa70deee159cb56f8d097b8fe2736e95f540137e20725f0940a8d049068ead4c46bb3771a671bb00de88931e03445a55868de0c220db05cbda9f996d5fe7c1070efe5e718fed4d4cb4ecacad3d6b643bc0ffe9a71b720ba7b5adbbdefe29106ef6a6ffe4547f5d02bec312147df0abe80efb2d5e598fc7c8b268e58b59e0d75728e9a18126f013c963ddc92d251405f857fe3a5cbacf443be7772975b7bf4f6d7ed6f80dfcc47a88c6d19120942adb5385be6ef3c0d7e396bcac5affc8f9276d6cd1a0b069aed72a98cde8ea7aabe6cc091b19efcfaf9368dfeb3087a05a42e3b893dae5ffeb72e6ac06e995a2a75ea0b5f7876247bb4c38cf3f0153f1f7473b522f1c440b632270e2b1d654d3a5ae16cb788482760d34ca79c8951b29c628e21029715683a3e6f8f77c5d89ecdae37e0190f79c4c1dbc9d0160e359cd6c94d6662ed53bb01a83374ff593c823acc59241b11f020902069fc0054a9b26cb320bef4fb1f8cc5bd8ae76eb029afab731b9876bc4e8708a8315512823cff1f9375d284ce66e53d4efad6c76d17bb532fc938b8f80c13ce86b5ba3e540164bc5a5d47cd321c241d8740f453ef95bd3878d578561ad6ce20877ffbd44062dce8df1d048d8d5e4045be647886108cbb1f0b26a8b74b66858afedb830a161bb02bde4c46a688a0ea3a7018ce24666aab0f422ede2f78ea29f77e28d87c744cba0285ce33d0d9ac45774829699de6d725a9b6db6e7d03ad4ec9d075c386e68ca0bcd9e9911d741ed0168cbddb87a7918a964d206629da4e887277b0ef7d3f9c7082f3f15f29a0dfb39f3b0877a5ec3ac4343e0d808f5aee8f1869923aab6dfc3016821c013109f34aece6183994b853d0e9561375c02cdd26b1b55194757341929a8038864cedd6ffffffffffffffff7044c4ebddb190f173969a0ca4cf5d42153763a0b91da0110ae7a25204850927d81b00176d4568a3d444d8029bd010df784e3f673fe855601ec4f1b26b2df58841e6a65f0db66373f63cc14a8b07dfc52ac9957eb542d05ed687c79519609de96df18b63cb294b534ddf7d2e8f41bcc1e5a006191c4db057b6709f0a96f18e7e8f67b8be2a19c015b9c4b0b3f42e4de366b71f8da8888809473c3c7a02a1158e375f29997a43bc7118ca4d1abb8f8f21972fc589aaa3d73a4d40a1e1705e169ac6e56cff50d89fc45b6863c8fc67bb2b5939a7f33072539ba4c24077be5711ba368bf7efd4897931531d388eb5c2e56bef337777150dd59518652145c9594e110e41d2615196c6b197916c88cc2814e13a3a922b4ecb044bf31cc90e0bfe0ce07de29188bbcb0ec1a12b509f52582fbb948c3cbe0c6964f46991cec0704bfac08aec6ad8ddfc36dc68c7f547c5ee6af4a8d55c79e3dc1c49b045379811f81e9a185a92cd37ae4ee32c5d3c82d36d6202a6c84fd231fe467071d42072827fd77afa5d757e6f37247f783ef09bdfd7536b666e84bc4bb878005b7829293a04ba090272dec844f4ef0e934617c08518bdc6b915ac6f3f03e4a6ab88e21c3f21f93b31d95ea3b9228e0031cb69795de5abd19c4cb4a0cf2984e53ca391cc66e33ee0d510151670331fa264753704fea5e4b1760f74890c49a74a47e0da13155c5470013d53dea0f05b5e088f1511c209f5be940232318af2757951d399e32eb862d915784713baa8ba93645caf04ba78fa3cf600ff92b9c5be58ad87438a340bac00a5ea9fb17e39478ba61fe36335e48d8c5a0b25f024cbd2ec7f217d0f260951da396dc13a2a74cd90df4b52db686e3b34d27cfa4cebd7bf59cbcfaf4007dc943a1da6e0bd1799a21ab449d7bb42935e50c839c5b567c59742436af15bc8d46095520dcd9273ae2b6f3c1cc2b4311ac9e5d297f0940b1552c5955adb302022022bb7457978998b56328629b7725dfbe3dedb37f37af0697a4471d1d6ff6bec633a38540adeba903f3eaaec5785fbb3c6a598f49dbd9ff93c67dea1ef39a614331b119fa8efccc8bac01595fb95a2a57eec9fc6c6fe82782aa89ea971866fd9a3bca4010182092ab6d1e2b49b964be9e3bb13bd6b77850e435f55a5d46e5bcb3330c7edefd31c33f61275e516"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000020000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f00000001c0)="0f01df0faeee0f72f400f20f017746660f3881590a66b825018ee80faeed66baf80cb8688f0783ef66bafc0ced66b81a008ed80fc71e", 0x36}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0x7)

16.169258845s ago: executing program 0 (id=2060):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000580)={0x1c, 0x3, 0x6, 0x5, 0x3f00, 0x0, {0x5, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4000080)

16.169042903s ago: executing program 0 (id=2061):
r0 = syz_open_dev$sg(&(0x7f0000001b00), 0x0, 0x100)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r0, 0x5386, &(0x7f0000000000))
r1 = socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000111c0)='ext4_sync_fs\x00', r3, 0x0, 0x5}, 0x18) (async, rerun: 64)
r5 = gettid() (rerun: 64)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={r5, r4, 0x0, 0xf, &(0x7f0000000200)='^\\^)]\xc9$)-!{{\xe7$\x00'}, 0x30)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) (async, rerun: 64)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4) (rerun: 64)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) (async, rerun: 32)
sendto$inet6(r6, &(0x7f00000001c0)="a6", 0x1, 0x840, 0x0, 0x0) (rerun: 32)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r6, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000000)=0x40) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1375b7e4", @ANYRES16=r8, @ANYBLOB="01002bbd7000fbdbdf250b0000000c0005800800010065746800"], 0x20}}, 0x4000)
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@acquire={0x174, 0x17, 0x1, 0x0, 0x0, {{@in6=@private0}, @in6=@remote, {@in=@remote, @in6=@private0}, {{@in6=@private2, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee00}}}, [@XFRMA_IF_ID={0x8, 0x1f, 0x2}, @tmpl={0x44, 0x5, [{{@in=@loopback, 0x0, 0x3c}, 0x0, @in6=@private2}]}]}, 0x174}}, 0x0)

16.083196065s ago: executing program 1 (id=2062):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100"/56], 0xb8}}, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)

16.010345982s ago: executing program 0 (id=2063):
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x6, 0x7fff}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
pipe(0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x106, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x30, 0x30, 0x0, @in6={0x1b, 0x0, 0xc6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xcc88}, @ib={0x1b, 0xfffd, 0x0, {"228335c100000000001393000000dd00"}, 0x7, 0x0, 0x7fff}}}, 0x173)

16.010164274s ago: executing program 1 (id=2064):
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x84, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000001, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000240)={'filter\x00', 0x0, 0x0, 0x0, [0xfffffffffffffffb, 0x283, 0x7, 0x619347a8, 0x7, 0x3]}, &(0x7f0000000140)=0x78)

16.010041261s ago: executing program 0 (id=2065):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
bind$can_raw(r1, &(0x7f0000000080)={0x1d, r3}, 0x10)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x190, 0x1, 0x0, 0xd59f80, 0x4, 0x9, 0xfc, 0x8, 0x8, 0x722, 0x13, 0x7, 0x7f, 0x3f, 0x10, {0x0, 0x1}, 0x3, 0xed}})

15.250011645s ago: executing program 3 (id=2066):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x3)
mount$binder(0x700, &(0x7f00000001c0)='./file0\x00', &(0x7f0000002300), 0x1, &(0x7f0000002340)={[{@max={'max', 0x3d, 0x3}}]})

15.249846208s ago: executing program 3 (id=2067):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$loop(&(0x7f0000000100), 0x2000000, 0xe2001)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_test', 0x41e43, 0x8)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x0, 0xfffffffffffffff8]}})
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000240)="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", 0x8c}], 0x1}, 0x44000054)

15.13988981s ago: executing program 3 (id=2068):
syz_open_procfs(0x0, 0x0)
r0 = shmget$private(0x0, 0x1000, 0x40, &(0x7f0000149000/0x1000)=nil)
shmctl$SHM_STAT_ANY(r0, 0xf, &(0x7f0000000180)=""/162)
shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000100)=""/87)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8983, &(0x7f00000000c0)={0x2, 'vlan1\x00', {0x9}, 0x200})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_host_features={{0x3d, 0xe}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0x6b)

1.050120224s ago: executing program 32 (id=2057):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x400, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
writev(r0, &(0x7f0000000040), 0x0)

57.492664ms ago: executing program 33 (id=2065):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
bind$can_raw(r1, &(0x7f0000000080)={0x1d, r3}, 0x10)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x190, 0x1, 0x0, 0xd59f80, 0x4, 0x9, 0xfc, 0x8, 0x8, 0x722, 0x13, 0x7, 0x7f, 0x3f, 0x10, {0x0, 0x1}, 0x3, 0xed}})

62.898µs ago: executing program 34 (id=2064):
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x84, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000001, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000240)={'filter\x00', 0x0, 0x0, 0x0, [0xfffffffffffffffb, 0x283, 0x7, 0x619347a8, 0x7, 0x3]}, &(0x7f0000000140)=0x78)

0s ago: executing program 35 (id=2068):
syz_open_procfs(0x0, 0x0)
r0 = shmget$private(0x0, 0x1000, 0x40, &(0x7f0000149000/0x1000)=nil)
shmctl$SHM_STAT_ANY(r0, 0xf, &(0x7f0000000180)=""/162)
shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000100)=""/87)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8983, &(0x7f00000000c0)={0x2, 'vlan1\x00', {0x9}, 0x200})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_host_features={{0x3d, 0xe}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0x6b)

kernel console output (not intermixed with test programs):

40
[   87.899414][ T7977] netlink: 'syz.1.747': attribute type 27 has an invalid length.
[   87.971508][ T7977] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.974213][ T7977] bridge0: port 3(vlan2) entered blocking state
[   87.976163][ T7977] bridge0: port 3(vlan2) entered listening state
[   87.980217][ T7977] 8021q: adding VLAN 0 to HW filter on device team0
[   87.984100][ T7977] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   88.139973][ T7999] netlink: 4 bytes leftover after parsing attributes in process `syz.1.753'.
[   88.160571][ T7999] netlink: 20 bytes leftover after parsing attributes in process `syz.1.753'.
[   88.421146][ T8022] netlink: 36 bytes leftover after parsing attributes in process `syz.3.763'.
[   88.574536][ T8040] netlink: 'syz.3.767': attribute type 11 has an invalid length.
[   88.700911][ T8055] netlink: 'syz.0.772': attribute type 27 has an invalid length.
[   88.788959][ T8059] netlink: 4 bytes leftover after parsing attributes in process `syz.3.775'.
[   88.808069][ T8063] netlink: 12 bytes leftover after parsing attributes in process `syz.2.777'.
[   89.049766][ T8083] netlink: 'syz.2.785': attribute type 27 has an invalid length.
[   89.169496][ T8094] dns_resolver: Unsupported content type (234)
[   89.805338][ T8143] binder: 8142:8143 ioctl c0306201 2000000003c0 returned -14
[   89.885098][   T40] kauditd_printk_skb: 18 callbacks suppressed
[   89.885115][   T40] audit: type=1400 audit(1747076780.966:414): avc:  denied  { setattr } for  pid=8153 comm="syz.3.811" name="/" dev="9p" ino=35913812 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   89.945642][   T40] audit: type=1400 audit(1747076781.026:415): avc:  denied  { watch } for  pid=8161 comm="syz.0.814" path="pipe:[20310]" dev="pipefs" ino=20310 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   90.031067][   T40] audit: type=1326 audit(1747076781.116:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8167 comm="syz.3.815" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd38b58e969 code=0x0
[   90.047636][    C3] bridge0: port 3(vlan2) entered learning state
[   90.062186][ T8174] Failed to get privilege flags for destination (handle=0x2:0x0)
[   90.235476][ T8183] binder: 8182:8183 ioctl c0306201 2000000003c0 returned -14
[   90.354117][   T40] audit: type=1400 audit(1747076781.436:417): avc:  denied  { block_suspend } for  pid=8205 comm="syz.2.829" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   90.396302][ T8210] netlink: 'syz.2.831': attribute type 1 has an invalid length.
[   90.440352][ T8210] 8021q: adding VLAN 0 to HW filter on device bond6
[   90.443283][ T8210] bond0: (slave bond6): making interface the new active one
[   90.445892][ T8210] bond0: (slave bond6): Enslaving as an active interface with an up link
[   90.542046][ T8228] netlink: 'syz.0.839': attribute type 27 has an invalid length.
[   90.578675][ T8230] netlink: 'syz.2.840': attribute type 10 has an invalid length.
[   90.581107][ T8230] hsr0: entered promiscuous mode
[   90.660325][ T8238] binder: Unknown parameter 'pcr'
[   90.697095][   T40] audit: type=1400 audit(1747076781.776:418): avc:  denied  { write } for  pid=8241 comm="syz.1.844" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   90.704871][   T40] audit: type=1400 audit(1747076781.786:419): avc:  denied  { setattr } for  pid=8241 comm="syz.1.844" path="pipe:[23577]" dev="pipefs" ino=23577 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   90.735652][   T40] audit: type=1400 audit(1747076781.816:420): avc:  denied  { mount } for  pid=8246 comm="syz.0.846" name="/" dev="autofs" ino=22706 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[   90.740106][ T8248] netlink: 'syz.0.846': attribute type 2 has an invalid length.
[   90.743155][   T40] audit: type=1400 audit(1747076781.816:421): avc:  denied  { accept } for  pid=8245 comm="syz.2.847" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   90.794833][   T40] audit: type=1400 audit(1747076781.876:422): avc:  denied  { unmount } for  pid=5944 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[   90.797739][ T8254] xt_CHECKSUM: unsupported CHECKSUM operation f4
[   90.845968][ T8250] binder: 8249:8250 ioctl c0306201 2000000003c0 returned -14
[   90.855023][ T8262] binder: Unknown parameter 'pcr'
[   90.886685][   T40] audit: type=1400 audit(1747076781.966:423): avc:  denied  { connect } for  pid=8266 comm="syz.1.856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   91.257585][ T8285] loop2: detected capacity change from 0 to 7
[   91.269402][ T8285] Dev loop2: unable to read RDB block 7
[   91.271388][ T8285]  loop2: unable to read partition table
[   91.273488][ T8285] loop2: partition table beyond EOD, truncated
[   91.276655][ T8285] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[   91.740542][ T8291] sp0: Synchronizing with TNC
[   91.947193][ T8296] binder: 8295:8296 ioctl c0306201 2000000003c0 returned -14
[   92.126578][    C3] bridge0: port 3(vlan2) entered forwarding state
[   92.128924][    C3] bridge0: topology change detected, propagating
[   92.134462][ T8328] nbd: must specify an index to disconnect
[   92.418776][ T8373] __nla_validate_parse: 6 callbacks suppressed
[   92.418791][ T8373] netlink: 8 bytes leftover after parsing attributes in process `syz.0.894'.
[   92.425277][ T8373] netlink: 8 bytes leftover after parsing attributes in process `syz.0.894'.
[   92.653071][ T8386] netlink: 8 bytes leftover after parsing attributes in process `syz.2.895'.
[   92.656806][ T8386] netlink: 'syz.2.895': attribute type 5 has an invalid length.
[   92.659955][ T8386] netlink: 28 bytes leftover after parsing attributes in process `syz.2.895'.
[   92.673820][ T8386] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 256 - 0
[   92.677855][ T8386] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 256 - 0
[   92.681358][ T8386] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 256 - 0
[   92.684814][ T8386] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 256 - 0
[   92.688542][ T8386] geneve2: entered promiscuous mode
[   92.690692][ T8386] geneve2: entered allmulticast mode
[   92.994600][ T8414] ptrace attach of "/syz-executor exec"[5938] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                €       
"[8414]
[   93.345663][ T8425] netlink: 'syz.1.915': attribute type 1 has an invalid length.
[   93.363960][ T8425] 8021q: adding VLAN 0 to HW filter on device bond8
[   93.388718][ T8430] overlay: ./bus is not a directory
[   93.399617][ T8425] bond8: (slave veth5): Enslaving as an active interface with a down link
[   93.417414][ T8425] vlan3: entered allmulticast mode
[   93.419693][ T8425] bond8: entered allmulticast mode
[   93.423130][ T8425] bond8: (slave vlan3): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[   93.678664][ T8445] netlink: 320 bytes leftover after parsing attributes in process `syz.3.922'.
[   93.744705][ T8451] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   93.748707][ T8451] overlayfs: missing 'lowerdir'
[   93.882155][ T8454] tipc: Started in network mode
[   93.883778][ T8454] tipc: Node identity 4, cluster identity 4711
[   93.885716][ T8454] tipc: Node number set to 4
[   93.990129][ T8463] binder: 8462:8463 ioctl c0306201 2000000003c0 returned -14
[   94.031808][ T8471] Cannot find del_set index 128 as target
[   94.109604][ T8479] netlink: 16 bytes leftover after parsing attributes in process `syz.1.934'.
[   94.371850][ T8492] netlink: 4 bytes leftover after parsing attributes in process `syz.3.939'.
[   94.644533][ T8513] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   94.890190][   T40] kauditd_printk_skb: 9 callbacks suppressed
[   94.890207][   T40] audit: type=1800 audit(1747076785.976:433): pid=8529 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.0.952" name="/newroot/212/file0" dev="tmpfs" ino=1143 res=0 errno=0
[   94.996495][   T40] audit: type=1400 audit(1747076786.076:434): avc:  denied  { setopt } for  pid=8534 comm="syz.0.954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   95.035083][   T40] audit: type=1400 audit(1747076786.116:435): avc:  denied  { bind } for  pid=8534 comm="syz.0.954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   95.080913][ T8538] libceph: resolve '40' (ret=-3): failed
[   95.216629][   T40] audit: type=1804 audit(1747076786.296:436): pid=8545 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.958" name="/newroot/213/file0" dev="tmpfs" ino=1169 res=1 errno=0
[   95.226721][   T40] audit: type=1800 audit(1747076786.296:437): pid=8545 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.958" name="file0" dev="tmpfs" ino=1169 res=0 errno=0
[   95.405019][ T8554] netlink: 28 bytes leftover after parsing attributes in process `syz.0.961'.
[   95.592751][ T8555] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2237473361 (71599147552 ns) > initial count (25867660576 ns). Using initial count to start timer.
[   95.650976][ T8562] netlink: 161716 bytes leftover after parsing attributes in process `syz.3.964'.
[   95.653868][ T8562] netlink: zone id is out of range
[   95.655466][ T8562] netlink: zone id is out of range
[   95.657889][ T8562] netlink: zone id is out of range
[   95.659569][ T8562] netlink: zone id is out of range
[   95.661242][ T8562] netlink: zone id is out of range
[   95.662995][ T8562] netlink: zone id is out of range
[   95.664623][ T8562] netlink: zone id is out of range
[   95.666153][ T8562] netlink: zone id is out of range
[   95.669109][ T8562] netlink: zone id is out of range
[   95.693398][ T8564] netlink: 24 bytes leftover after parsing attributes in process `syz.0.965'.
[   95.785640][ T8568] binder: 8567:8568 ioctl c0306201 2000000003c0 returned -14
[   96.031995][   T40] audit: type=1400 audit(1747076787.116:438): avc:  denied  { append } for  pid=8585 comm="syz.3.975" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   96.044598][   T40] audit: type=1400 audit(1747076787.126:439): avc:  denied  { remount } for  pid=8585 comm="syz.3.975" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[   96.052181][   T40] audit: type=1400 audit(1747076787.136:440): avc:  denied  { mounton } for  pid=8585 comm="syz.3.975" path="/287/file0" dev="pstore" ino=1554 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=dir permissive=1
[   96.055509][ T8586] syz.3.975: attempt to access beyond end of device
[   96.055509][ T8586] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[   96.066441][ T8586] syz.3.975: attempt to access beyond end of device
[   96.066441][ T8586] nbd3: rw=0, sector=120, nr_sectors = 8 limit=0
[   96.072473][ T8586] Mount JFS Failure: -5
[   96.074127][ T8586] jfs_mount failed w/return code = -5
[   96.356600][   T58] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   96.403235][   T40] audit: type=1400 audit(1747076787.486:441): avc:  denied  { mount } for  pid=8597 comm="syz.1.980" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   96.419915][   T40] audit: type=1400 audit(1747076787.506:442): avc:  denied  { mounton } for  pid=8601 comm="syz.3.981" path="/289/file0/file0" dev="9p" ino=35913823 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   96.514263][   T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[   96.518970][   T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   96.522930][   T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[   96.530040][   T58] usb 5-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[   96.536795][   T58] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.540259][   T58] usb 5-1: Product: syz
[   96.542053][   T58] usb 5-1: Manufacturer: syz
[   96.542069][   T58] usb 5-1: SerialNumber: syz
[   96.544423][   T58] usb 5-1: config 0 descriptor??
[   96.763925][ T8621] bridge0: port 1(vlan3) entered blocking state
[   96.766011][ T8621] bridge0: port 1(vlan3) entered disabled state
[   96.768156][ T8621] vlan3: entered allmulticast mode
[   96.769787][ T8621] bond0: entered allmulticast mode
[   96.772798][ T8621] vlan3: entered promiscuous mode
[   96.774420][ T8621] bond0: entered promiscuous mode
[   96.804016][   T58] adutux 5-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[   97.481491][ T8663] tc_dump_action: action bad kind
[   97.520166][ T8667] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57 sclass=netlink_route_socket pid=8667 comm=syz.1.1005
[   97.651799][ T8681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   97.707810][ T8681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   97.763740][ T8681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   97.767141][ T8681] __nla_validate_parse: 3 callbacks suppressed
[   97.767150][ T8681] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1011'.
[   97.772038][ T8681] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1011'.
[   97.970074][ T8693] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1013'.
[   98.069888][ T8703] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1017'.
[   98.074563][ T8704] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=8704 comm=syz.1.1017
[   98.348859][ T8718] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1020'.
[   98.351618][ T8718] netlink: 'syz.3.1020': attribute type 5 has an invalid length.
[   98.353966][ T8718] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1020'.
[   98.360083][ T8718] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 256 - 0
[   98.362876][ T8718] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 256 - 0
[   98.365550][ T8718] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 256 - 0
[   98.368327][ T8718] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 256 - 0
[   98.371076][ T8718] geneve2: entered promiscuous mode
[   98.372203][ T8715] syz.1.1021 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   98.372725][ T8718] geneve2: entered allmulticast mode
[   98.380756][ T8720] netlink: 'syz.2.1023': attribute type 1 has an invalid length.
[   98.399311][ T8720] 8021q: adding VLAN 0 to HW filter on device bond8
[   98.430235][ T8720] bond8: (slave veth5): Enslaving as an active interface with a down link
[   98.442473][ T8720] vlan2: entered allmulticast mode
[   98.444287][ T8720] bond8: entered allmulticast mode
[   98.447319][ T8720] bond8: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[   98.963879][ T8753] netlink: 'syz.2.1038': attribute type 23 has an invalid length.
[   99.078254][   T58] usb 5-1: USB disconnect, device number 3
[   99.166302][ T8774] pim6reg: entered allmulticast mode
[   99.191906][ T8779] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1045'.
[   99.221283][ T8777] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1047'.
[   99.240366][ T8774] pim6reg: left allmulticast mode
[   99.601705][ T8808] netlink: 4388 bytes leftover after parsing attributes in process `syz.2.1060'.
[   99.627297][ T8812] netlink: 'syz.0.1062': attribute type 1 has an invalid length.
[   99.642324][ T8817] overlayfs: failed to clone upperpath
[   99.702228][ T8825] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1068'.
[   99.806924][ T8830] Cannot find del_set index 85 as target
[   99.814156][ T8833] ªªªªªª: renamed from lo
[   99.981422][ T8860] net_ratelimit: 46 callbacks suppressed
[   99.981434][ T8860] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  100.074058][   T40] kauditd_printk_skb: 19 callbacks suppressed
[  100.074075][   T40] audit: type=1400 audit(1747076791.156:462): avc:  denied  { connect } for  pid=8869 comm="syz.3.1084" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  100.083930][   T40] audit: type=1400 audit(1747076791.166:463): avc:  denied  { write } for  pid=8869 comm="syz.3.1084" path="socket:[26230]" dev="sockfs" ino=26230 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  100.229737][   T40] audit: type=1400 audit(1747076791.316:464): avc:  denied  { sqpoll } for  pid=8882 comm="syz.2.1089" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  100.283809][   T40] audit: type=1400 audit(1747076791.366:465): avc:  denied  { create } for  pid=8887 comm="syz.3.1092" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  100.297337][   T40] audit: type=1400 audit(1747076791.386:466): avc:  denied  { ioctl } for  pid=8887 comm="syz.3.1092" path="socket:[26247]" dev="sockfs" ino=26247 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  100.305650][   T40] audit: type=1400 audit(1747076791.386:467): avc:  denied  { bind } for  pid=8887 comm="syz.3.1092" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  100.308137][ T8892] batadv_slave_1: entered promiscuous mode
[  100.319392][   T40] audit: type=1400 audit(1747076791.406:468): avc:  denied  { ioctl } for  pid=8886 comm="syz.1.1091" path="socket:[25455]" dev="sockfs" ino=25455 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  100.322511][ T8886] batadv_slave_1: left promiscuous mode
[  100.631708][   T40] audit: type=1400 audit(1747076791.706:469): avc:  denied  { ioctl } for  pid=8911 comm="syz.2.1099" path="socket:[27689]" dev="sockfs" ino=27689 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  100.643827][ T8915] dlm: no locking on control device
[  100.646019][   T40] audit: type=1400 audit(1747076791.726:470): avc:  denied  { append } for  pid=8914 comm="syz.0.1100" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  100.646297][ T8915] random: crng reseeded on system resumption
[  100.665908][   T40] audit: type=1400 audit(1747076791.726:471): avc:  denied  { open } for  pid=8914 comm="syz.0.1100" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  100.675425][ T8916] vivid-007: =================  START STATUS  =================
[  100.705833][ T8916] vivid-007: Enable Output Cropping: true
[  100.717973][ T8916] vivid-007: Enable Output Composing: true
[  100.723300][ T8916] vivid-007: Enable Output Scaler: true
[  100.732179][ T8916] vivid-007: Tx RGB Quantization Range: Automatic
[  100.734349][ T8916] vivid-007: Transmit Mode: HDMI
[  100.735942][ T8916] vivid-007: Hotplug Present: 0x00000000
[  100.738036][ T8916] vivid-007: RxSense Present: 0x00000000
[  100.739734][ T8916] vivid-007: EDID Present: 0x00000000
[  100.741389][ T8916] vivid-007: ==================  END STATUS  ==================
[  101.048830][ T8917] syz.1.1098 (8917) used greatest stack depth: 19912 bytes left
[  101.668998][ T8984] FAULT_INJECTION: forcing a failure.
[  101.668998][ T8984] name failslab, interval 1, probability 0, space 0, times 0
[  101.674603][ T8984] CPU: 2 UID: 0 PID: 8984 Comm: syz.3.1112 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  101.674627][ T8984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  101.674638][ T8984] Call Trace:
[  101.674644][ T8984]  <TASK>
[  101.674651][ T8984]  dump_stack_lvl+0x16c/0x1f0
[  101.674698][ T8984]  should_fail_ex+0x512/0x640
[  101.674731][ T8984]  should_failslab+0xc2/0x120
[  101.674750][ T8984]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  101.674767][ T8984]  ? __lock_acquire+0x5ca/0x1ba0
[  101.674792][ T8984]  ? setup_arg_pages+0x1c0/0xbc0
[  101.674815][ T8984]  ? dst_alloc+0x99/0x1a0
[  101.674835][ T8984]  dst_alloc+0x99/0x1a0
[  101.674852][ T8984]  rt_dst_alloc+0x35/0x3a0
[  101.674876][ T8984]  ip_route_output_key_hash_rcu+0x87a/0x28f0
[  101.674911][ T8984]  ip_route_output_key_hash+0x137/0x2e0
[  101.674938][ T8984]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  101.674967][ T8984]  ? __pfx_stack_trace_save+0x10/0x10
[  101.674989][ T8984]  ? stack_depot_save_flags+0x28/0xa50
[  101.675019][ T8984]  ip_route_output_flow+0x27/0x150
[  101.675047][ T8984]  tcp_v4_connect+0x85f/0x1ba0
[  101.675069][ T8984]  ? inet_sendmsg+0xb9/0x140
[  101.675110][ T8984]  ? __pfx_tcp_v4_connect+0x10/0x10
[  101.675142][ T8984]  __inet_stream_connect+0x3c5/0x1020
[  101.675173][ T8984]  ? __pfx___inet_stream_connect+0x10/0x10
[  101.675211][ T8984]  tcp_sendmsg_fastopen+0x3ed/0x750
[  101.675242][ T8984]  tcp_sendmsg_locked+0x203a/0x3930
[  101.675270][ T8984]  ? avc_has_perm+0x11a/0x1c0
[  101.675291][ T8984]  ? __lock_acquire+0xaa4/0x1ba0
[  101.675326][ T8984]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  101.675352][ T8984]  ? do_raw_spin_lock+0x12c/0x2b0
[  101.675372][ T8984]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  101.675397][ T8984]  ? __local_bh_enable_ip+0xa4/0x120
[  101.675424][ T8984]  tcp_sendmsg+0x2e/0x50
[  101.675445][ T8984]  ? __pfx_tcp_sendmsg+0x10/0x10
[  101.675468][ T8984]  inet_sendmsg+0xb9/0x140
[  101.675493][ T8984]  __sys_sendto+0x431/0x510
[  101.675511][ T8984]  ? __pfx___sys_sendto+0x10/0x10
[  101.675552][ T8984]  ? ksys_write+0x1b9/0x240
[  101.675599][ T8984]  ? __pfx_ksys_write+0x10/0x10
[  101.675622][ T8984]  ? rcu_is_watching+0x12/0xc0
[  101.675645][ T8984]  __x64_sys_sendto+0xe0/0x1c0
[  101.675661][ T8984]  ? do_syscall_64+0x91/0x260
[  101.675684][ T8984]  ? lockdep_hardirqs_on+0x7c/0x110
[  101.675706][ T8984]  do_syscall_64+0xcd/0x260
[  101.675732][ T8984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.675749][ T8984] RIP: 0033:0x7fd38b58e969
[  101.675763][ T8984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.675783][ T8984] RSP: 002b:00007fd38c39c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  101.675800][ T8984] RAX: ffffffffffffffda RBX: 00007fd38b7b5fa0 RCX: 00007fd38b58e969
[  101.675815][ T8984] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  101.675825][ T8984] RBP: 00007fd38c39c090 R08: 0000200000e68000 R09: 0000000000000010
[  101.675836][ T8984] R10: 000000002000077d R11: 0000000000000246 R12: 0000000000000001
[  101.675845][ T8984] R13: 0000000000000000 R14: 00007fd38b7b5fa0 R15: 00007ffd497c98d8
[  101.675870][ T8984]  </TASK>
[  101.830487][ T8995] ªªªªªª: renamed from lo (while UP)
[  101.864273][ T8998] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=8998 comm=syz.3.1121
[  101.995963][ T9021] netlink: 'syz.1.1125': attribute type 1 has an invalid length.
[  102.043537][ T9021] veth7: entered promiscuous mode
[  102.049194][ T9021] bond9: (slave veth7): Enslaving as a backup interface with a down link
[  102.223993][ T9054] FAULT_INJECTION: forcing a failure.
[  102.223993][ T9054] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.232261][ T9054] CPU: 1 UID: 0 PID: 9054 Comm: syz.3.1131 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  102.232278][ T9054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  102.232285][ T9054] Call Trace:
[  102.232303][ T9054]  <TASK>
[  102.232308][ T9054]  dump_stack_lvl+0x16c/0x1f0
[  102.232338][ T9054]  should_fail_ex+0x512/0x640
[  102.232358][ T9054]  _copy_from_user+0x2e/0xd0
[  102.232375][ T9054]  memdup_user+0x6b/0xe0
[  102.232387][ T9054]  strndup_user+0x78/0xe0
[  102.232399][ T9054]  __x64_sys_mount+0x137/0x310
[  102.232412][ T9054]  ? __pfx___x64_sys_mount+0x10/0x10
[  102.232427][ T9054]  do_syscall_64+0xcd/0x260
[  102.232443][ T9054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.232454][ T9054] RIP: 0033:0x7fd38b58e969
[  102.232466][ T9054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.232477][ T9054] RSP: 002b:00007fd38c39c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  102.232487][ T9054] RAX: ffffffffffffffda RBX: 00007fd38b7b5fa0 RCX: 00007fd38b58e969
[  102.232494][ T9054] RDX: 0000200000002300 RSI: 00002000000001c0 RDI: 0000000000000000
[  102.232500][ T9054] RBP: 00007fd38c39c090 R08: 0000200000002340 R09: 0000000000000000
[  102.232507][ T9054] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  102.232513][ T9054] R13: 0000000000000000 R14: 00007fd38b7b5fa0 R15: 00007ffd497c98d8
[  102.232526][ T9054]  </TASK>
[  102.750802][ T9066] netlink: zone id is out of range
[  102.752555][ T9066] netlink: get zone limit has 8 unknown bytes
[  103.702125][ T9101] __nla_validate_parse: 5 callbacks suppressed
[  103.702137][ T9101] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1153'.
[  103.732371][ T9104] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1154'.
[  103.771658][ T9107] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1156'.
[  103.845050][ T9119] netlink: 229 bytes leftover after parsing attributes in process `syz.0.1159'.
[  103.918000][ T9133] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1164'.
[  104.039651][ T9143] netlink: 'syz.2.1169': attribute type 10 has an invalid length.
[  104.142588][ T9150] tmpfs: Bad value for 'mpol'
[  104.204530][ T9155] xt_hashlimit: size too large, truncated to 1048576
[  104.254716][ T9158] ip6_tunnel: non-ECT from fc02:0000:0000:0000:0000:0000:2000:0000 with DS=0x1
[  104.338793][ T9164] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1176'.
[  104.343500][ T9164] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1176'.
[  104.386096][ T9164] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9164 comm=syz.2.1176
[  104.439221][ T9166] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1177'.
[  104.969719][ T9187] loop2: detected capacity change from 0 to 7
[  104.981038][ T9187]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  104.982829][ T9187] loop2: partition table partially beyond EOD, truncated
[  104.986337][ T9187] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  105.020368][ T5952] udevd[5952]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  105.037334][ T9192] binder: 9190:9192 ioctl c0306201 2000000003c0 returned -14
[  105.112586][ T9202] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1190'.
[  105.161715][   T40] kauditd_printk_skb: 27 callbacks suppressed
[  105.161732][   T40] audit: type=1800 audit(1747076796.246:499): pid=9169 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.1177" name="/" dev="fuse" ino=1 res=0 errno=0
[  105.194961][   T40] audit: type=1400 audit(1747076796.276:500): avc:  denied  { ioctl } for  pid=9204 comm="syz.3.1191" path="socket:[28067]" dev="sockfs" ino=28067 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  105.196445][ T9208] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1192'.
[  105.426576][   T40] audit: type=1400 audit(1747076796.506:501): avc:  denied  { execmem } for  pid=9225 comm="syz.3.1197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  105.684590][ T9249] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20003 - 0
[  105.688823][ T9249] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20003 - 0
[  105.691525][ T9249] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20003 - 0
[  105.694386][ T9249] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20003 - 0
[  105.698229][ T9249] geneve3: entered promiscuous mode
[  105.700138][ T9249] geneve3: entered allmulticast mode
[  105.868101][ T9265] fuse: Bad value for 'fd'
[  105.879485][   T40] audit: type=1400 audit(1747076796.966:502): avc:  denied  { create } for  pid=9264 comm="syz.1.1211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  105.885802][   T40] audit: type=1400 audit(1747076796.966:503): avc:  denied  { write } for  pid=9264 comm="syz.1.1211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  105.892236][   T40] audit: type=1400 audit(1747076796.966:504): avc:  denied  { nlmsg_write } for  pid=9264 comm="syz.1.1211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  106.051043][ T9272] vivid-007: =================  START STATUS  =================
[  106.053687][ T9272] vivid-007: Enable Output Cropping: true
[  106.055736][ T9272] vivid-007: Enable Output Composing: true
[  106.057789][ T9272] vivid-007: Enable Output Scaler: true
[  106.059564][ T9272] vivid-007: Tx RGB Quantization Range: Automatic
[  106.061557][ T9272] vivid-007: Transmit Mode: HDMI
[  106.063182][ T9272] vivid-007: Hotplug Present: 0x00000000
[  106.065053][ T9272] vivid-007: RxSense Present: 0x00000000
[  106.066949][ T9272] vivid-007: EDID Present: 0x00000000
[  106.068768][ T9272] vivid-007: ==================  END STATUS  ==================
[  106.437215][   T40] audit: type=1400 audit(1747076797.526:505): avc:  denied  { setopt } for  pid=9293 comm="syz.2.1223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  106.445083][ T9265] syz.1.1211 (9265): drop_caches: 2
[  106.513515][ T9306] random: crng reseeded on system resumption
[  106.522264][   T40] audit: type=1400 audit(1747076797.606:506): avc:  denied  { ioctl } for  pid=9298 comm="syz.1.1224" path="socket:[29108]" dev="sockfs" ino=29108 ioctlcmd=0xf507 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  106.665216][   T40] audit: type=1400 audit(1747076797.746:507): avc:  denied  { setopt } for  pid=9310 comm="syz.3.1229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  106.685537][ T9306] Unrecognized hibernate image header format!
[  106.687745][ T9306] PM: hibernation: Image mismatch: architecture specific data
[  106.753137][ T9315] vivid-007: =================  START STATUS  =================
[  106.756341][ T9315] vivid-007: Enable Output Cropping: true
[  106.758967][ T9315] vivid-007: Enable Output Composing: true
[  106.761475][ T9315] vivid-007: Enable Output Scaler: true
[  106.763872][ T9315] vivid-007: Tx RGB Quantization Range: Automatic
[  106.767371][ T9315] vivid-007: Transmit Mode: HDMI
[  106.769869][ T9315] vivid-007: Hotplug Present: 0x00000000
[  106.772969][ T9315] vivid-007: RxSense Present: 0x00000000
[  106.775616][ T9315] vivid-007: EDID Present: 0x00000000
[  106.779220][ T9315] vivid-007: ==================  END STATUS  ==================
[  106.959175][   T58] hid-generic 0005:16C0:5505.0003: item fetching failed at offset 0/2
[  106.962554][   T58] hid-generic 0005:16C0:5505.0003: probe with driver hid-generic failed with error -22
[  107.114951][   T68] Bluetooth: hci2: connection err: -111
[  107.228667][ T9352] tmpfs: Unknown parameter 'grpquot	'
[  107.487593][ T9368] netlink: 'syz.1.1246': attribute type 1 has an invalid length.
[  107.561022][ T9368] veth9: entered promiscuous mode
[  107.565233][ T9368] bond10: (slave veth9): Enslaving as a backup interface with a down link
[  107.914873][ T9396] input: syz0 as /devices/virtual/input/input9
[  108.416222][   T40] audit: type=1400 audit(1747076799.496:508): avc:  denied  { map } for  pid=9419 comm="syz.3.1263" path="/dev/vcs" dev="devtmpfs" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  108.563077][ T9429] IPVS: length: 184 != 24
[  108.590333][ T9428] vivid-007: =================  START STATUS  =================
[  108.592753][ T9428] vivid-007: Enable Output Cropping: true
[  108.594565][ T9428] vivid-007: Enable Output Composing: true
[  108.598890][ T9428] vivid-007: Enable Output Scaler: true
[  108.600625][ T9428] vivid-007: Tx RGB Quantization Range: Automatic
[  108.602615][ T9428] vivid-007: Transmit Mode: HDMI
[  108.604203][ T9428] vivid-007: Hotplug Present: 0x00000000
[  108.605864][ T9428] vivid-007: RxSense Present: 0x00000000
[  108.608059][ T9428] vivid-007: EDID Present: 0x00000000
[  108.609742][ T9428] vivid-007: ==================  END STATUS  ==================
[  108.661303][ T9435] netlink: 'syz.2.1269': attribute type 1 has an invalid length.
[  108.753463][ T9442] netlink: 'syz.2.1272': attribute type 1 has an invalid length.
[  108.775473][ T9442] 8021q: adding VLAN 0 to HW filter on device bond9
[  108.804801][ T9442] bond9: (slave veth7): Enslaving as an active interface with a down link
[  108.810038][ T9445] __nla_validate_parse: 15 callbacks suppressed
[  108.810049][ T9445] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1273'.
[  108.813722][ T9442] vlan2: entered allmulticast mode
[  108.816329][ T9445] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1273'.
[  108.817977][ T9442] bond9: entered allmulticast mode
[  108.818644][ T9442] bond9: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  108.821570][ T9445] netlink: 'syz.1.1273': attribute type 18 has an invalid length.
[  109.037666][ T9457] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1278'.
[  109.073137][ T9462] SELinux: syz.1.1280 (9462) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  109.640210][ T9474] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1283'.
[  111.784592][   T68] Bluetooth: hci2: Received unexpected HCI Event 0x00
[  111.805780][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  111.805794][   T40] audit: type=1400 audit(1747076802.886:513): avc:  denied  { write } for  pid=9499 comm="syz.3.1292" name="btrfs-control" dev="devtmpfs" ino=1335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  111.889393][ T9510] netlink: 'syz.1.1296': attribute type 1 has an invalid length.
[  111.918751][ T9517] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1298'.
[  111.919779][ T9510] 8021q: adding VLAN 0 to HW filter on device bond11
[  111.934980][ T9510] bond11: (slave gretap1): making interface the new active one
[  111.938731][ T9510] bond11: (slave gretap1): Enslaving as an active interface with an up link
[  111.980348][ T9523] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1300'.
[  111.988276][ T9523] program syz.1.1300 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  112.016342][   T40] audit: type=1400 audit(1747076803.096:514): avc:  denied  { create } for  pid=9526 comm="syz.0.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  112.026181][ T9530] FAULT_INJECTION: forcing a failure.
[  112.026181][ T9530] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.031630][ T9530] CPU: 3 UID: 0 PID: 9530 Comm: syz.1.1304 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  112.031645][ T9530] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.031651][ T9530] Call Trace:
[  112.031655][ T9530]  <TASK>
[  112.031659][ T9530]  dump_stack_lvl+0x16c/0x1f0
[  112.031696][ T9530]  should_fail_ex+0x512/0x640
[  112.031717][ T9530]  _copy_to_user+0x32/0xd0
[  112.031734][ T9530]  simple_read_from_buffer+0xcb/0x170
[  112.031752][ T9530]  proc_fail_nth_read+0x197/0x270
[  112.031768][ T9530]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  112.031785][ T9530]  ? rw_verify_area+0xcf/0x680
[  112.031799][ T9530]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  112.031815][ T9530]  vfs_read+0x1de/0xc70
[  112.031832][ T9530]  ? __pfx___mutex_lock+0x10/0x10
[  112.031847][ T9530]  ? __pfx_vfs_read+0x10/0x10
[  112.031866][ T9530]  ? __fget_files+0x20e/0x3c0
[  112.031879][ T9530]  ksys_read+0x12a/0x240
[  112.031894][ T9530]  ? __pfx_ksys_read+0x10/0x10
[  112.031908][ T9530]  ? rcu_is_watching+0x12/0xc0
[  112.031929][ T9530]  do_syscall_64+0xcd/0x260
[  112.031946][ T9530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.031957][ T9530] RIP: 0033:0x7faa6cd8d37c
[  112.031967][ T9530] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  112.031977][ T9530] RSP: 002b:00007faa6dbe9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  112.031987][ T9530] RAX: ffffffffffffffda RBX: 00007faa6cfb5fa0 RCX: 00007faa6cd8d37c
[  112.031994][ T9530] RDX: 000000000000000f RSI: 00007faa6dbe90a0 RDI: 0000000000000004
[  112.032000][ T9530] RBP: 00007faa6dbe9090 R08: 0000000000000000 R09: 0000000000000010
[  112.032006][ T9530] R10: 000000002000077d R11: 0000000000000246 R12: 0000000000000001
[  112.032012][ T9530] R13: 0000000000000000 R14: 00007faa6cfb5fa0 R15: 00007ffe5387abe8
[  112.032025][ T9530]  </TASK>
[  112.091907][    C3] vkms_vblank_simulate: vblank timer overrun
[  112.128137][ T9538] netlink: 'syz.1.1308': attribute type 39 has an invalid length.
[  112.139450][ T9539] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  112.143029][ T9539] SELinux: failed to load policy
[  112.168821][ T9541] tmpfs: Unknown parameter 'gg-'
[  112.199260][ T9545] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1311'.
[  112.493244][ T9561] bond0: entered promiscuous mode
[  112.495666][ T9561] bond4: entered promiscuous mode
[  112.505129][ T9561] batadv0: entered promiscuous mode
[  112.509336][ T9561] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  112.512428][ T9561] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  112.516011][ T9561] 8021q: adding VLAN 0 to HW filter on device hsr1
[  112.523518][ T9561] bond0: left promiscuous mode
[  112.525081][ T9561] bond4: left promiscuous mode
[  112.528615][ T9561] batadv0: left promiscuous mode
[  112.533064][ T9572] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1320'.
[  112.537459][ T9572] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1320'.
[  112.626299][ T9580] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1322'.
[  112.876918][ T6664] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  112.909719][ T9597] netlink: 'syz.3.1327': attribute type 1 has an invalid length.
[  112.913239][ T9597] tipc: Can't bind to reserved service type 2
[  113.048445][ T6664] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  113.052916][ T6664] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  113.056989][ T6664] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  113.060790][ T6664] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.072758][ T9576] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  113.081663][ T6664] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  113.281648][ T1333] usb 6-1: USB disconnect, device number 4
[  113.610106][ T9602] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  113.613750][ T9602] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  113.812736][ T9609] syz.0.1331 (9609): drop_caches: 2
[  113.869377][   T40] audit: type=1400 audit(1747076804.956:515): avc:  denied  { ioctl } for  pid=9610 comm="syz.0.1333" path="socket:[28421]" dev="sockfs" ino=28421 ioctlcmd=0x4947 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  113.885165][ T9611] netlink: 'syz.0.1333': attribute type 7 has an invalid length.
[  113.888890][ T9611] __nla_validate_parse: 1 callbacks suppressed
[  113.888898][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1333'.
[  113.921939][   T40] audit: type=1400 audit(1747076805.006:516): avc:  denied  { ioctl } for  pid=9610 comm="syz.0.1333" path="mnt:[4026533293]" dev="nsfs" ino=4026533293 ioctlcmd=0x940c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  113.952346][   T40] audit: type=1400 audit(1747076805.036:517): avc:  denied  { append } for  pid=9615 comm="syz.3.1334" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  114.061261][    C3] hrtimer: interrupt took 72460 ns
[  114.066220][ T9622] netlink: 260 bytes leftover after parsing attributes in process `syz.2.1336'.
[  114.102468][ T9629] netlink: 'syz.2.1338': attribute type 4 has an invalid length.
[  114.309360][ T9640] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1343'.
[  114.406054][ T9643] netlink: 'syz.0.1344': attribute type 1 has an invalid length.
[  114.427018][   T40] audit: type=1400 audit(1747076805.516:518): avc:  denied  { read } for  pid=9645 comm="syz.1.1345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  114.429226][ T9643] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1344'.
[  114.442721][ T9643] 8021q: adding VLAN 0 to HW filter on device batadv1
[  114.446057][ T9643] bond6: (slave batadv1): Enslaving as a backup interface with an up link
[  114.933980][   T29] IPVS: starting estimator thread 0...
[  114.989773][ T9666] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1354'.
[  115.036705][ T9668] IPVS: using max 43 ests per chain, 103200 per kthread
[  115.255360][   T40] audit: type=1400 audit(1747076806.336:519): avc:  denied  { write } for  pid=9688 comm="syz.3.1361" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  115.257561][ T9689] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  115.265622][   T40] audit: type=1400 audit(1747076806.336:520): avc:  denied  { read } for  pid=9688 comm="syz.3.1361" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  115.381897][ T9697] batadv0: entered promiscuous mode
[  115.385099][ T9697] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  115.390093][ T9697] 8021q: adding VLAN 0 to HW filter on device hsr1
[  115.393902][ T9697] batadv0: left promiscuous mode
[  115.604343][ T9706] netlink: 'syz.1.1367': attribute type 1 has an invalid length.
[  115.627427][ T9709] syz_tun: entered allmulticast mode
[  115.649668][ T9706] 8021q: adding VLAN 0 to HW filter on device bond13
[  115.653968][ T9706] bond12: (slave bond13): making interface the new active one
[  115.657499][ T9706] bond12: (slave bond13): Enslaving as an active interface with an up link
[  115.661780][ T9709] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1368'.
[  115.728028][ T9709] syz_tun (unregistering): left allmulticast mode
[  115.804924][ T9718] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1370'.
[  116.327177][   T40] audit: type=1400 audit(1747076807.416:521): avc:  denied  { listen } for  pid=9765 comm="syz.3.1386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  116.513993][ T9773] overlayfs: failed to get inode (-116)
[  116.516317][ T9773] overlayfs: failed to get inode (-116)
[  116.739308][ T9783] vivid-007: =================  START STATUS  =================
[  116.740622][ T9781] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1392'.
[  116.742651][ T9783] vivid-007: Enable Output Cropping: true
[  116.748106][ T9783] vivid-007: Enable Output Composing: true
[  116.750458][ T9783] vivid-007: Enable Output Scaler: true
[  116.752263][ T9783] vivid-007: Tx RGB Quantization Range: Automatic
[  116.754969][ T9783] vivid-007: Transmit Mode: HDMI
[  116.757082][ T9783] vivid-007: Hotplug Present: 0x00000000
[  116.759109][ T9783] vivid-007: RxSense Present: 0x00000000
[  116.761359][ T9783] vivid-007: EDID Present: 0x00000000
[  116.763492][ T9783] vivid-007: ==================  END STATUS  ==================
[  116.817444][ T9783] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1391'.
[  116.821357][ T9783] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1391'.
[  117.173819][ T9813] vlan2: entered allmulticast mode
[  117.176619][ T9813] bond0: entered allmulticast mode
[  117.178270][ T9813] bond6: entered allmulticast mode
[  117.330807][ T9824] bond0: (slave vcan1): refused to change device type
[  117.340152][   T40] audit: type=1326 audit(1747076808.426:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9825 comm="syz.2.1409" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f00cef8e969 code=0x0
[  117.446680][   T40] audit: type=1400 audit(1747076808.526:523): avc:  denied  { bind } for  pid=9825 comm="syz.2.1409" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  117.456585][   T40] audit: type=1400 audit(1747076808.526:524): avc:  denied  { name_bind } for  pid=9825 comm="syz.2.1409" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  117.463042][   T40] audit: type=1400 audit(1747076808.526:525): avc:  denied  { node_bind } for  pid=9825 comm="syz.2.1409" saddr=172.20.20.49 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  117.470362][   T40] audit: type=1400 audit(1747076808.536:526): avc:  denied  { ioctl } for  pid=9825 comm="syz.2.1409" path="socket:[31750]" dev="sockfs" ino=31750 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  117.510361][ T9834] FAULT_INJECTION: forcing a failure.
[  117.510361][ T9834] name failslab, interval 1, probability 0, space 0, times 0
[  117.514679][ T9834] CPU: 1 UID: 0 PID: 9834 Comm: syz.3.1413 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  117.514693][ T9834] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.514700][ T9834] Call Trace:
[  117.514704][ T9834]  <TASK>
[  117.514708][ T9834]  dump_stack_lvl+0x16c/0x1f0
[  117.514727][ T9834]  should_fail_ex+0x512/0x640
[  117.514742][ T9834]  ? fs_reclaim_acquire+0xae/0x150
[  117.514757][ T9834]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  117.514773][ T9834]  should_failslab+0xc2/0x120
[  117.514785][ T9834]  __kmalloc_noprof+0xd2/0x510
[  117.514799][ T9834]  tomoyo_realpath_from_path+0xc2/0x6e0
[  117.514815][ T9834]  ? tomoyo_profile+0x47/0x60
[  117.514827][ T9834]  tomoyo_path_number_perm+0x245/0x580
[  117.514839][ T9834]  ? tomoyo_path_number_perm+0x237/0x580
[  117.514854][ T9834]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  117.514868][ T9834]  ? find_held_lock+0x2b/0x80
[  117.514897][ T9834]  ? find_held_lock+0x2b/0x80
[  117.514909][ T9834]  ? hook_file_ioctl_common+0x145/0x410
[  117.514923][ T9834]  ? __fget_files+0x20e/0x3c0
[  117.514935][ T9834]  security_file_ioctl+0x9b/0x240
[  117.514951][ T9834]  __x64_sys_ioctl+0xb7/0x200
[  117.514967][ T9834]  do_syscall_64+0xcd/0x260
[  117.514983][ T9834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.514994][ T9834] RIP: 0033:0x7fd38b58e969
[  117.515003][ T9834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.515013][ T9834] RSP: 002b:00007fd38c39c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  117.515023][ T9834] RAX: ffffffffffffffda RBX: 00007fd38b7b5fa0 RCX: 00007fd38b58e969
[  117.515029][ T9834] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  117.515035][ T9834] RBP: 00007fd38c39c090 R08: 0000000000000000 R09: 0000000000000000
[  117.515041][ T9834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.515047][ T9834] R13: 0000000000000000 R14: 00007fd38b7b5fa0 R15: 00007ffd497c98d8
[  117.515061][ T9834]  </TASK>
[  117.515065][ T9834] ERROR: Out of memory at tomoyo_realpath_from_path.
[  117.838441][ T9853] netlink: zone id is out of range
[  117.840217][ T9853] netlink: get zone limit has 8 unknown bytes
[  117.884788][   T40] audit: type=1400 audit(1747076808.966:527): avc:  denied  { setattr } for  pid=9854 comm="syz.3.1420" name="vcsa" dev="devtmpfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  118.304974][   T40] audit: type=1400 audit(1747076809.386:528): avc:  denied  { watch } for  pid=9859 comm="syz.2.1422" path="/397/file0" dev="tmpfs" ino=2134 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  118.313742][   T40] audit: type=1400 audit(1747076809.386:529): avc:  denied  { watch_sb } for  pid=9859 comm="syz.2.1422" path="/397/file0" dev="tmpfs" ino=2134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  118.445450][   T40] audit: type=1400 audit(1747076809.526:530): avc:  denied  { write } for  pid=9866 comm="syz.1.1424" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  118.745559][ T9890] vivid-007: =================  START STATUS  =================
[  118.748260][ T9890] vivid-007: Enable Output Cropping: true
[  118.750118][ T9890] vivid-007: Enable Output Composing: true
[  118.752216][ T9890] vivid-007: Enable Output Scaler: true
[  118.754498][ T9890] vivid-007: Tx RGB Quantization Range: Automatic
[  118.757096][   T40] audit: type=1400 audit(1747076809.846:531): avc:  denied  { nlmsg_write } for  pid=9886 comm="syz.2.1431" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  118.757475][ T9890] vivid-007: Transmit Mode: HDMI
[  118.765587][ T9890] vivid-007: Hotplug Present: 0x00000000
[  118.768423][ T9890] vivid-007: RxSense Present: 0x00000000
[  118.771020][ T9890] vivid-007: EDID Present: 0x00000000
[  118.774524][ T9890] vivid-007: ==================  END STATUS  ==================
[  118.908092][ T9906] __nla_validate_parse: 7 callbacks suppressed
[  118.908106][ T9906] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1436'.
[  119.105094][ T9915] ªªªªªª: renamed from lo (while UP)
[  119.188358][ T9923] netlink: 'syz.1.1442': attribute type 1 has an invalid length.
[  119.209841][ T9923] 8021q: adding VLAN 0 to HW filter on device bond14
[  119.251490][ T9923] bond14: (slave veth11): Enslaving as an active interface with a down link
[  119.252856][ T9929] 9pnet_fd: Insufficient options for proto=fd
[  119.252892][ T9930] 9pnet_fd: Insufficient options for proto=fd
[  119.264906][ T9923] vlan3: entered allmulticast mode
[  119.267437][ T9923] bond14: entered allmulticast mode
[  119.270158][ T9931] vivid-007: =================  START STATUS  =================
[  119.271558][ T9923] bond14: (slave vlan3): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  119.272616][ T9931] vivid-007: Enable Output Cropping: true
[  119.281292][ T9931] vivid-007: Enable Output Composing: true
[  119.283361][ T9931] vivid-007: Enable Output Scaler: true
[  119.285186][ T9931] vivid-007: Tx RGB Quantization Range: Automatic
[  119.290549][ T9931] vivid-007: Transmit Mode: HDMI
[  119.292417][ T9931] vivid-007: Hotplug Present: 0x00000000
[  119.294234][ T9931] vivid-007: RxSense Present: 0x00000000
[  119.296159][ T9931] vivid-007: EDID Present: 0x00000000
[  119.298210][ T9931] vivid-007: ==================  END STATUS  ==================
[  119.396338][ T9924] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1443'.
[  119.401093][ T9924] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1443'.
[  119.573851][ T9972] 9pnet_virtio: no channels available for device syz
[  119.611006][ T9975] /dev/sg0: Can't lookup blockdev
[  119.682989][ T9979] vivid-007: =================  START STATUS  =================
[  119.685516][ T9979] vivid-007: Enable Output Cropping: true
[  119.687699][ T9979] vivid-007: Enable Output Composing: true
[  119.690570][ T9979] vivid-007: Enable Output Scaler: true
[  119.692433][ T9979] vivid-007: Tx RGB Quantization Range: Automatic
[  119.694482][ T9979] vivid-007: Transmit Mode: HDMI
[  119.696082][ T9979] vivid-007: Hotplug Present: 0x00000000
[  119.698330][ T9979] vivid-007: RxSense Present: 0x00000000
[  119.700170][ T9979] vivid-007: EDID Present: 0x00000000
[  119.701939][ T9979] vivid-007: ==================  END STATUS  ==================
[  119.778546][ T9979] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1457'.
[  119.781378][ T9979] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1457'.
[  119.877561][ T9992] netlink: 'syz.1.1461': attribute type 1 has an invalid length.
[  119.906004][ T9992] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1461'.
[  119.920050][ T9992] 8021q: adding VLAN 0 to HW filter on device batadv3
[  119.925650][ T9992] bond15: (slave batadv3): Enslaving as a backup interface with an up link
[  120.062611][T10003] binder: 9997:10003 ioctl c0306201 200000000640 returned -22
[  120.165800][T10010] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1467'.
[  120.281185][T10013] vivid-007: =================  START STATUS  =================
[  120.284285][T10013] vivid-007: Enable Output Cropping: true
[  120.286091][T10013] vivid-007: Enable Output Composing: true
[  120.288571][T10013] vivid-007: Enable Output Scaler: true
[  120.290826][T10013] vivid-007: Tx RGB Quantization Range: Automatic
[  120.293426][T10013] vivid-007: Transmit Mode: HDMI
[  120.295368][T10013] vivid-007: Hotplug Present: 0x00000000
[  120.297331][T10013] vivid-007: RxSense Present: 0x00000000
[  120.299184][T10013] vivid-007: EDID Present: 0x00000000
[  120.301082][T10013] vivid-007: ==================  END STATUS  ==================
[  120.375796][T10012] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1468'.
[  120.378884][T10012] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1468'.
[  120.540349][T10033] nfs4: Unknown parameter 'nat'
[  120.759879][T10045] FAULT_INJECTION: forcing a failure.
[  120.759879][T10045] name failslab, interval 1, probability 0, space 0, times 0
[  120.763999][T10045] CPU: 1 UID: 0 PID: 10045 Comm: syz.3.1477 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  120.764014][T10045] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.764020][T10045] Call Trace:
[  120.764025][T10045]  <TASK>
[  120.764029][T10045]  dump_stack_lvl+0x16c/0x1f0
[  120.764063][T10045]  should_fail_ex+0x512/0x640
[  120.764081][T10045]  ? fs_reclaim_acquire+0xae/0x150
[  120.764096][T10045]  ? tomoyo_encode2+0x100/0x3e0
[  120.764111][T10045]  should_failslab+0xc2/0x120
[  120.764123][T10045]  __kmalloc_noprof+0xd2/0x510
[  120.764133][T10045]  ? d_absolute_path+0x136/0x1a0
[  120.764149][T10045]  tomoyo_encode2+0x100/0x3e0
[  120.764165][T10045]  tomoyo_encode+0x29/0x50
[  120.764180][T10045]  tomoyo_realpath_from_path+0x18f/0x6e0
[  120.764199][T10045]  tomoyo_path_number_perm+0x245/0x580
[  120.764212][T10045]  ? tomoyo_path_number_perm+0x237/0x580
[  120.764227][T10045]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  120.764241][T10045]  ? find_held_lock+0x2b/0x80
[  120.764266][T10045]  ? find_held_lock+0x2b/0x80
[  120.764278][T10045]  ? hook_file_ioctl_common+0x145/0x410
[  120.764292][T10045]  ? __fget_files+0x20e/0x3c0
[  120.764304][T10045]  security_file_ioctl+0x9b/0x240
[  120.764320][T10045]  __x64_sys_ioctl+0xb7/0x200
[  120.764335][T10045]  do_syscall_64+0xcd/0x260
[  120.764351][T10045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.764362][T10045] RIP: 0033:0x7fd38b58e969
[  120.764371][T10045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.764381][T10045] RSP: 002b:00007fd38c39c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  120.764392][T10045] RAX: ffffffffffffffda RBX: 00007fd38b7b5fa0 RCX: 00007fd38b58e969
[  120.764398][T10045] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 000000000000000f
[  120.764404][T10045] RBP: 00007fd38c39c090 R08: 0000000000000000 R09: 0000000000000000
[  120.764410][T10045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.764416][T10045] R13: 0000000000000000 R14: 00007fd38b7b5fa0 R15: 00007ffd497c98d8
[  120.764429][T10045]  </TASK>
[  120.764444][T10045] ERROR: Out of memory at tomoyo_realpath_from_path.
[  120.940838][T10052] netlink: 'syz.3.1480': attribute type 21 has an invalid length.
[  121.151501][T10068] binder: 10067:10068 ioctl c0306201 0 returned -14
[  121.420691][T10082] netlink: 'syz.3.1491': attribute type 1 has an invalid length.
[  121.424315][T10082] netlink: 'syz.3.1491': attribute type 3 has an invalid length.
[  121.431151][T10082] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1491'.
[  121.573359][T10087] vivid-007: =================  START STATUS  =================
[  121.575794][T10087] vivid-007: Enable Output Cropping: true
[  121.577799][T10087] vivid-007: Enable Output Composing: true
[  121.579640][T10087] vivid-007: Enable Output Scaler: true
[  121.581403][T10087] vivid-007: Tx RGB Quantization Range: Automatic
[  121.583696][T10087] vivid-007: Transmit Mode: HDMI
[  121.585161][T10087] vivid-007: Hotplug Present: 0x00000000
[  121.587106][T10087] vivid-007: RxSense Present: 0x00000000
[  121.588891][T10087] vivid-007: EDID Present: 0x00000000
[  121.602667][T10087] vivid-007: ==================  END STATUS  ==================
[  121.702681][T10098] netlink: 'syz.2.1496': attribute type 1 has an invalid length.
[  121.778912][T10103] 8021q: adding VLAN 0 to HW filter on device bond11
[  121.782827][T10103] bond10: (slave bond11): making interface the new active one
[  121.785507][T10103] bond10: (slave bond11): Enslaving as an active interface with an up link
[  121.841806][T10113] can0: slcan on ptm0.
[  122.096732][   T58] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  122.266640][   T58] usb 5-1: Using ep0 maxpacket: 8
[  122.285072][   T58] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  122.288372][   T58] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  122.291747][   T58] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  122.294906][   T58] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  122.302230][   T58] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  122.305373][   T58] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.402797][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  122.402808][   T40] audit: type=1400 audit(1747076813.486:541): avc:  denied  { map } for  pid=10137 comm="syz.1.1507" path="/proc/867/net/tcp" dev="proc" ino=4026532916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  122.442024][   T40] audit: type=1400 audit(1747076813.526:542): avc:  denied  { write } for  pid=10135 comm="syz.3.1506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  122.511926][   T58] usb 5-1: GET_CAPABILITIES returned 0
[  122.514224][   T58] usbtmc 5-1:16.0: can't read capabilities
[  122.581866][T10150] bridge0: entered promiscuous mode
[  122.584284][T10150] ip6gretap0: entered promiscuous mode
[  122.586838][T10150] hsr1: Slave A (bridge0) is not up; please bring it up to get a fully working HSR network
[  122.591647][T10151] openvswitch: netlink: Flow key attr not present in new flow.
[  122.689324][T10160] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2237473361 (71599147552 ns) > initial count (25867660576 ns). Using initial count to start timer.
[  122.709190][T10162] netlink: 'syz.2.1515': attribute type 10 has an invalid length.
[  122.715660][ T1333] usb 5-1: USB disconnect, device number 4
[  122.957983][   T68] Bluetooth: unknown link type 255
[  122.960781][   T68] Bluetooth: hci2: connection err: -111
[  123.429470][T10162] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  123.434715][T10163] mac80211_hwsim hwsim3 `ëÿÿ: renamed from wlan1
[  123.629410][T10112] can0 (unregistered): slcan off ptm0.
[  123.647567][T10187] 8021q: adding VLAN 0 to HW filter on device bond16
[  123.663333][T10187] vlan3: entered allmulticast mode
[  123.664973][T10187] bond16: entered allmulticast mode
[  123.988721][T10202] 9pnet_fd: Insufficient options for proto=fd
[  124.030602][T10206] __nla_validate_parse: 7 callbacks suppressed
[  124.030615][T10206] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1526'.
[  124.111671][   T40] audit: type=1400 audit(1747076815.186:543): avc:  denied  { mount } for  pid=10207 comm="syz.1.1527" name="/" dev="configfs" ino=2163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  124.122833][   T40] audit: type=1400 audit(1747076815.206:544): avc:  denied  { search } for  pid=10207 comm="syz.1.1527" name="/" dev="configfs" ino=2163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  124.133021][T10208] tmpfs: Unknown parameter 'grpquota_in'WGh-Xq7'
[  124.136849][   T40] audit: type=1400 audit(1747076815.206:545): avc:  denied  { mounton } for  pid=10207 comm="syz.1.1527" path="/" dev="configfs" ino=2163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  124.146319][   T40] audit: type=1400 audit(1747076815.226:546): avc:  denied  { unmount } for  pid=5938 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  124.352000][   T40] audit: type=1400 audit(1747076815.436:547): avc:  denied  { create } for  pid=10237 comm="syz.1.1538" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  124.354486][T10236] xt_bpf: check failed: parse error
[  124.400104][T10240] netlink: 412 bytes leftover after parsing attributes in process `syz.0.1539'.
[  124.403186][   T40] audit: type=1400 audit(1747076815.486:548): avc:  denied  { unlink } for  pid=5938 comm="syz-executor" name="file0" dev="tmpfs" ino=1915 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  124.452321][T10244] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1539'.
[  124.457389][   T40] audit: type=1400 audit(1747076815.546:549): avc:  denied  { connect } for  pid=10239 comm="syz.0.1539" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  125.080822][T10270] overlayfs: failed to clone upperpath
[  125.124978][T10275] netlink: 'syz.2.1550': attribute type 58 has an invalid length.
[  125.127630][T10275] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1550'.
[  125.225498][T10278] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1551'.
[  125.380052][T10284] vivid-007: =================  START STATUS  =================
[  125.382623][T10284] vivid-007: Enable Output Cropping: true
[  125.384440][T10284] vivid-007: Enable Output Composing: true
[  125.386282][T10284] vivid-007: Enable Output Scaler: true
[  125.388452][T10284] vivid-007: Tx RGB Quantization Range: Automatic
[  125.390475][T10284] vivid-007: Transmit Mode: HDMI
[  125.392141][T10284] vivid-007: Hotplug Present: 0x00000000
[  125.394040][T10284] vivid-007: RxSense Present: 0x00000000
[  125.395809][T10284] vivid-007: EDID Present: 0x00000000
[  125.397868][T10284] vivid-007: ==================  END STATUS  ==================
[  125.418498][T10284] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1553'.
[  125.425251][T10284] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1553'.
[  125.461163][T10286] vivid-007: =================  START STATUS  =================
[  125.465249][T10286] vivid-007: Enable Output Cropping: true
[  125.468655][T10286] vivid-007: Enable Output Composing: true
[  125.471177][T10286] vivid-007: Enable Output Scaler: true
[  125.473526][T10286] vivid-007: Tx RGB Quantization Range: Automatic
[  125.476259][T10286] vivid-007: Transmit Mode: HDMI
[  125.478125][T10286] vivid-007: Hotplug Present: 0x00000000
[  125.479929][T10286] vivid-007: RxSense Present: 0x00000000
[  125.482947][T10286] vivid-007: EDID Present: 0x00000000
[  125.485241][T10286] vivid-007: ==================  END STATUS  ==================
[  125.578449][T10286] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1554'.
[  125.582214][T10286] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1554'.
[  125.622646][T10297] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1557'.
[  125.649532][T10301] netlink: 'syz.3.1559': attribute type 1 has an invalid length.
[  125.682740][T10301] 8021q: adding VLAN 0 to HW filter on device bond1
[  125.711442][T10301] bond1: (slave veth5): Enslaving as an active interface with a down link
[  125.726432][T10304] mkiss: ax0: crc mode is auto.
[  125.731327][T10301] vlan4: entered allmulticast mode
[  125.733320][T10301] bond1: entered allmulticast mode
[  125.735906][T10301] bond1: (slave vlan4): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  125.900189][T10313] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  126.146322][   T40] audit: type=1400 audit(1747076817.226:550): avc:  denied  { setopt } for  pid=10335 comm="syz.2.1573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  126.156251][T10338] netlink: 'syz.0.1574': attribute type 12 has an invalid length.
[  126.338082][T10344] netlink: 'syz.2.1577': attribute type 1 has an invalid length.
[  126.361995][T10344] 8021q: adding VLAN 0 to HW filter on device batadv2
[  126.365723][T10344] bond12: (slave batadv2): Enslaving as a backup interface with an up link
[  126.541551][T10361] PKCS7: Unknown OID: [4] 5.25.43204.122
[  126.543359][T10361] PKCS7: Only support pkcs7_signedData type
[  126.546714][T10361] ªªªªªª: renamed from lo (while UP)
[  126.586615][ T2300] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  126.612969][T10365] unknown channel width for channel at 909000KHz?
[  126.696647][ T1333] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  126.756679][ T2300] usb 8-1: Using ep0 maxpacket: 16
[  126.759851][ T2300] usb 8-1: config 0 has no interfaces?
[  126.762531][ T2300] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  126.765353][ T2300] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  126.767985][ T2300] usb 8-1: SerialNumber: syz
[  126.771494][ T2300] usb 8-1: config 0 descriptor??
[  126.856621][ T1333] usb 5-1: Using ep0 maxpacket: 8
[  126.860508][ T1333] usb 5-1: config 0 has no interfaces?
[  126.862824][ T1333] usb 5-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  126.866727][ T1333] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.877087][ T1333] usb 5-1: config 0 descriptor??
[  126.981891][T10332] overlayfs: failed to set uuid (425/file1, err=-1); falling back to uuid=null.
[  126.985767][T10332] overlayfs: failed to verify upper root origin
[  126.998222][T10332] netlink: 'syz.3.1571': attribute type 2 has an invalid length.
[  127.002314][ T2300] usb 8-1: USB disconnect, device number 3
[  127.750206][   T24] usb 5-1: USB disconnect, device number 5
[  127.769888][T10393] 9pnet_fd: Insufficient options for proto=fd
[  128.134889][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  128.134904][   T40] audit: type=1400 audit(1747076819.216:553): avc:  denied  { mount } for  pid=10414 comm="syz.3.1601" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  128.681069][   T40] audit: type=1400 audit(1747076819.766:554): avc:  denied  { read } for  pid=10450 comm="syz.0.1615" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  128.691707][   T40] audit: type=1400 audit(1747076819.766:555): avc:  denied  { open } for  pid=10450 comm="syz.0.1615" path="/342/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  128.698950][T10463] block device autoloading is deprecated and will be removed.
[  128.712530][   T40] audit: type=1400 audit(1747076819.796:556): avc:  denied  { ioctl } for  pid=10450 comm="syz.0.1615" path="/342/file0/file0" dev="fuse" ino=64 ioctlcmd=0x932 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  128.717229][T10451] md: md2 stopped.
[  128.887589][T10473] ip6t_srh: unknown srh invflags 7863
[  128.915700][T10468] binder: 10467:10468 ioctl c0306201 0 returned -14
[  129.183221][T10485] __nla_validate_parse: 14 callbacks suppressed
[  129.183239][T10485] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1627'.
[  129.205035][T10485] syz.1.1627: attempt to access beyond end of device
[  129.205035][T10485] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  129.211335][T10485] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  129.364571][T10498] netlink: 14601 bytes leftover after parsing attributes in process `syz.1.1631'.
[  129.370845][T10498] 9p: Unknown access argument 18446744073709551615: -34
[  129.410533][T10503] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1634'.
[  129.414403][T10503] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1634'.
[  129.626090][T10519] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1641'.
[  129.651238][   T40] audit: type=1400 audit(1747076820.736:557): avc:  denied  { map } for  pid=10520 comm="syz.0.1642" path="socket:[34771]" dev="sockfs" ino=34771 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  129.659296][   T40] audit: type=1400 audit(1747076820.736:558): avc:  denied  { read } for  pid=10520 comm="syz.0.1642" path="socket:[34771]" dev="sockfs" ino=34771 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  129.679735][T10523] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1641'.
[  129.737230][   T29] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  129.775416][   T40] audit: type=1400 audit(129.709:559): avc:  denied  { getopt } for  pid=10529 comm="syz.2.1644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  129.884051][T10536] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[  129.886587][   T29] usb 8-1: Using ep0 maxpacket: 8
[  129.890669][   T40] audit: type=1400 audit(129.819:560): avc:  denied  { relabelto } for  pid=10535 comm="syz.2.1647" name="488" dev="tmpfs" ino=2604 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  129.898116][   T29] usb 8-1: config 0 has no interfaces?
[  129.900601][   T29] usb 8-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  129.903259][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.910372][   T40] audit: type=1400 audit(129.819:561): avc:  denied  { associate } for  pid=10535 comm="syz.2.1647" name="488" dev="tmpfs" ino=2604 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:crond_var_run_t:s0"
[  129.918247][   T29] usb 8-1: config 0 descriptor??
[  129.969301][   T40] audit: type=1400 audit(129.899:562): avc:  denied  { write } for  pid=5939 comm="syz-executor" name="488" dev="tmpfs" ino=2604 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  130.008242][T10543] vlan2: entered allmulticast mode
[  130.010671][T10543] bridge0: port 1(vlan2) entered blocking state
[  130.013523][T10543] bridge0: port 1(vlan2) entered disabled state
[  130.019274][T10543] vlan2: entered promiscuous mode
[  130.021459][T10543] bond0: entered promiscuous mode
[  130.023630][T10543] bond6: entered promiscuous mode
[  130.090324][T10547] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1649'.
[  130.094184][T10547] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1649'.
[  130.300287][    T9] usb 8-1: USB disconnect, device number 4
[  130.701676][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1656'.
[  130.705314][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1656'.
[  130.782572][T10566] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1657' sets config #1
[  130.938422][T10574] FAULT_INJECTION: forcing a failure.
[  130.938422][T10574] name failslab, interval 1, probability 0, space 0, times 0
[  130.942724][T10574] CPU: 3 UID: 0 PID: 10574 Comm: syz.1.1661 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  130.942740][T10574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.942746][T10574] Call Trace:
[  130.942751][T10574]  <TASK>
[  130.942755][T10574]  dump_stack_lvl+0x16c/0x1f0
[  130.942790][T10574]  should_fail_ex+0x512/0x640
[  130.942813][T10574]  ? fs_reclaim_acquire+0xae/0x150
[  130.942842][T10574]  ? tomoyo_encode2+0x100/0x3e0
[  130.942865][T10574]  should_failslab+0xc2/0x120
[  130.942883][T10574]  __kmalloc_noprof+0xd2/0x510
[  130.942901][T10574]  ? d_absolute_path+0x136/0x1a0
[  130.942918][T10574]  tomoyo_encode2+0x100/0x3e0
[  130.942935][T10574]  tomoyo_encode+0x29/0x50
[  130.942949][T10574]  tomoyo_realpath_from_path+0x18f/0x6e0
[  130.942969][T10574]  tomoyo_path_number_perm+0x245/0x580
[  130.942982][T10574]  ? tomoyo_path_number_perm+0x237/0x580
[  130.942996][T10574]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  130.943010][T10574]  ? find_held_lock+0x2b/0x80
[  130.943036][T10574]  ? find_held_lock+0x2b/0x80
[  130.943047][T10574]  ? hook_file_ioctl_common+0x145/0x410
[  130.943061][T10574]  ? __fget_files+0x20e/0x3c0
[  130.943073][T10574]  security_file_ioctl+0x9b/0x240
[  130.943090][T10574]  __x64_sys_ioctl+0xb7/0x200
[  130.943106][T10574]  do_syscall_64+0xcd/0x260
[  130.943122][T10574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.943132][T10574] RIP: 0033:0x7faa6cd8e969
[  130.943142][T10574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.943152][T10574] RSP: 002b:00007faa6dbe9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  130.943162][T10574] RAX: ffffffffffffffda RBX: 00007faa6cfb5fa0 RCX: 00007faa6cd8e969
[  130.943169][T10574] RDX: 0000200000000040 RSI: 00000000c008561c RDI: 0000000000000003
[  130.943175][T10574] RBP: 00007faa6dbe9090 R08: 0000000000000000 R09: 0000000000000000
[  130.943182][T10574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.943188][T10574] R13: 0000000000000000 R14: 00007faa6cfb5fa0 R15: 00007ffe5387abe8
[  130.943201][T10574]  </TASK>
[  130.943211][T10574] ERROR: Out of memory at tomoyo_realpath_from_path.
[  131.257212][T10578] 8021q: adding VLAN 0 to HW filter on device bond17
[  131.263393][T10579] vlan3: entered allmulticast mode
[  131.266955][T10579] bond17: entered allmulticast mode
[  131.294646][T10587] syz.3.1667: attempt to access beyond end of device
[  131.294646][T10587] nbd3: rw=0, sector=2, nr_sectors = 2 limit=0
[  131.300064][T10587] syz.3.1667: attempt to access beyond end of device
[  131.300064][T10587] nbd3: rw=0, sector=16, nr_sectors = 2 limit=0
[  131.497133][T10608] netlink: 'syz.2.1674': attribute type 1 has an invalid length.
[  131.535068][T10608] 8021q: adding VLAN 0 to HW filter on device bond14
[  131.603429][T10608] bond14: (slave gretap1): making interface the new active one
[  131.607877][T10608] bond14: (slave gretap1): Enslaving as an active interface with an up link
[  132.625671][T10673] vivid-007: =================  START STATUS  =================
[  132.629446][T10673] vivid-007: Enable Output Cropping: true
[  132.631882][T10673] vivid-007: Enable Output Composing: true
[  132.634340][T10673] vivid-007: Enable Output Scaler: true
[  132.641755][T10673] vivid-007: Tx RGB Quantization Range: Automatic
[  132.644983][T10673] vivid-007: Transmit Mode: HDMI
[  132.647579][T10673] vivid-007: Hotplug Present: 0x00000000
[  132.649855][T10673] vivid-007: RxSense Present: 0x00000000
[  132.652195][T10673] vivid-007: EDID Present: 0x00000000
[  132.654410][T10673] vivid-007: ==================  END STATUS  ==================
[  132.680706][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  132.683537][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  133.033861][T10706] netlink: 'syz.2.1706': attribute type 1 has an invalid length.
[  133.069287][T10706] 8021q: adding VLAN 0 to HW filter on device batadv0
[  133.075317][T10706] bond15: (slave batadv0): Enslaving as a backup interface with an up link
[  133.414825][T10748] batadv0: entered promiscuous mode
[  133.417042][T10748] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  133.420510][T10748] Cannot create hsr debugfs directory
[  133.422281][T10748] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  133.425682][T10748] 8021q: adding VLAN 0 to HW filter on device hsr1
[  133.429026][T10748] batadv0: left promiscuous mode
[  133.434134][T10750] overlayfs: failed to clone upperpath
[  133.892302][T10774] netdevsim netdevsim2 netdevsim0: set [1, 2] type 2 family 0 port 20000 - 0
[  133.895142][T10774] netdevsim netdevsim2 netdevsim1: set [1, 2] type 2 family 0 port 20000 - 0
[  133.898405][T10774] netdevsim netdevsim2 netdevsim2: set [1, 2] type 2 family 0 port 20000 - 0
[  133.902070][T10774] netdevsim netdevsim2 netdevsim3: set [1, 2] type 2 family 0 port 20000 - 0
[  133.904918][T10774] geneve4: entered promiscuous mode
[  133.906766][T10774] geneve4: entered allmulticast mode
[  134.144115][T10786] FAULT_INJECTION: forcing a failure.
[  134.144115][T10786] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.154457][T10786] CPU: 3 UID: 0 PID: 10786 Comm: syz.3.1731 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  134.154484][T10786] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.154495][T10786] Call Trace:
[  134.154501][T10786]  <TASK>
[  134.154508][T10786]  dump_stack_lvl+0x16c/0x1f0
[  134.154565][T10786]  should_fail_ex+0x512/0x640
[  134.154598][T10786]  _copy_from_user+0x2e/0xd0
[  134.154625][T10786]  drm_ioctl+0x4fb/0xc30
[  134.154647][T10786]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  134.154672][T10786]  ? __pfx_drm_ioctl+0x10/0x10
[  134.154700][T10786]  ? selinux_file_ioctl+0x180/0x270
[  134.154728][T10786]  ? selinux_file_ioctl+0xb4/0x270
[  134.154756][T10786]  ? __pfx_drm_ioctl+0x10/0x10
[  134.154774][T10786]  __x64_sys_ioctl+0x190/0x200
[  134.154801][T10786]  do_syscall_64+0xcd/0x260
[  134.154827][T10786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.154845][T10786] RIP: 0033:0x7fd38b58e969
[  134.154860][T10786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.154877][T10786] RSP: 002b:00007fd38c39c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  134.154894][T10786] RAX: ffffffffffffffda RBX: 00007fd38b7b5fa0 RCX: 00007fd38b58e969
[  134.154905][T10786] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 000000000000000e
[  134.154916][T10786] RBP: 00007fd38c39c090 R08: 0000000000000000 R09: 0000000000000000
[  134.154926][T10786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.154936][T10786] R13: 0000000000000000 R14: 00007fd38b7b5fa0 R15: 00007ffd497c98d8
[  134.154959][T10786]  </TASK>
[  134.610565][T10795] binder: 10794:10795 ioctl c00c620f 200000000080 returned -22
[  134.626809][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  134.626819][   T40] audit: type=1400 audit(134.559:568): avc:  granted  { setsecparam } for  pid=10794 comm="syz.1.1735" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  134.812786][T10806] __nla_validate_parse: 14 callbacks suppressed
[  134.812799][T10806] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1739'.
[  134.921077][T10815] netlink: 'syz.1.1743': attribute type 2 has an invalid length.
[  134.932434][   T40] audit: type=1400 audit(134.859:569): avc:  denied  { setopt } for  pid=10814 comm="syz.1.1743" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  134.985825][T10819] syzkaller0: entered promiscuous mode
[  134.990514][T10819] syzkaller0: entered allmulticast mode
[  134.998647][   T40] audit: type=1400 audit(134.929:571): avc:  denied  { write } for  pid=10820 comm="syz.0.1745" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  135.004940][T10821] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  135.006302][   T40] audit: type=1400 audit(134.929:570): avc:  denied  { setattr } for  pid=10818 comm="syz.1.1744" name="/" dev="configfs" ino=2163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  135.008295][T10821] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  135.008668][T10821] vhci_hcd vhci_hcd.0: Device attached
[  135.031614][T10821] vhci_hcd vhci_hcd.0: port 0 already used
[  135.035973][T10822] vhci_hcd: connection closed
[  135.037443][   T84] vhci_hcd: stop threads
[  135.041219][   T84] vhci_hcd: release socket
[  135.043065][   T84] vhci_hcd: disconnect device
[  135.235429][T10830] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.1747'.
[  135.239471][T10830] netlink: zone id is out of range
[  135.241714][T10830] netlink: get zone limit has 8 unknown bytes
[  135.313716][T10837] FAULT_INJECTION: forcing a failure.
[  135.313716][T10837] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.317927][T10837] CPU: 1 UID: 0 PID: 10837 Comm: syz.3.1750 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  135.317942][T10837] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.317948][T10837] Call Trace:
[  135.317952][T10837]  <TASK>
[  135.317956][T10837]  dump_stack_lvl+0x16c/0x1f0
[  135.317975][T10837]  should_fail_ex+0x512/0x640
[  135.317993][T10837]  _copy_from_user+0x2e/0xd0
[  135.318009][T10837]  video_usercopy+0xedd/0x1720
[  135.318024][T10837]  ? __pfx___video_do_ioctl+0x10/0x10
[  135.318036][T10837]  ? selinux_bprm_creds_for_exec+0xbe0/0xc60
[  135.318054][T10837]  ? __pfx_video_usercopy+0x10/0x10
[  135.318076][T10837]  v4l2_ioctl+0x1ba/0x250
[  135.318088][T10837]  ? __pfx_v4l2_ioctl+0x10/0x10
[  135.318100][T10837]  __x64_sys_ioctl+0x190/0x200
[  135.318116][T10837]  do_syscall_64+0xcd/0x260
[  135.318134][T10837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.318144][T10837] RIP: 0033:0x7fd38b58e969
[  135.318153][T10837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.318164][T10837] RSP: 002b:00007fd38c39c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  135.318174][T10837] RAX: ffffffffffffffda RBX: 00007fd38b7b5fa0 RCX: 00007fd38b58e969
[  135.318180][T10837] RDX: 0000200000000040 RSI: 00000000c008561c RDI: 0000000000000003
[  135.318187][T10837] RBP: 00007fd38c39c090 R08: 0000000000000000 R09: 0000000000000000
[  135.318193][T10837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.318199][T10837] R13: 0000000000000000 R14: 00007fd38b7b5fa0 R15: 00007ffd497c98d8
[  135.318223][T10837]  </TASK>
[  135.342346][   T40] audit: type=1400 audit(135.269:572): avc:  denied  { read write } for  pid=10839 comm="syz.3.1751" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  135.387559][   T40] audit: type=1400 audit(135.269:573): avc:  denied  { open } for  pid=10839 comm="syz.3.1751" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  135.395072][   T40] audit: type=1400 audit(135.269:574): avc:  denied  { ioctl } for  pid=10839 comm="syz.3.1751" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  135.631578][T10858] trusted_key: encrypted_key: keyword 'new0default' not recognized
[  135.636105][   T40] audit: type=1800 audit(135.559:575): pid=10859 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.1758" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[  136.693074][T10872] 9pnet_fd: p9_fd_create_tcp (10872): problem connecting socket to 127.0.0.1
[  147.556416][T10881] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1764'.
[  147.588690][T10888] fuse: Unknown parameter '0x000000000000000300000000000000000006'
[  147.656787][T10886] nbd0: detected capacity change from 0 to 4294967296
[  147.658528][T10898] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  147.658528][T10898] The task syz.2.1770 (10898) triggered the difference, watch for misbehavior.
[  147.674964][T10900] block nbd0: shutting down sockets
[  147.688911][    C0] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.691969][    C0] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.694604][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.699932][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.703359][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.706672][T10899] vivid-007: =================  START STATUS  =================
[  147.706931][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.710138][T10899] vivid-007: Enable Output Cropping: true
[  147.713381][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.714845][T10899] vivid-007: Enable Output Composing: true
[  147.718950][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.720388][T10899] vivid-007: Enable Output Scaler: true
[  147.723889][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.725577][T10899] vivid-007: Tx RGB Quantization Range: Automatic
[  147.729637][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.732249][T10899] vivid-007: Transmit Mode: 
[  147.735360][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.735412][T10899] HDMI
[  147.743014][T10899] vivid-007: Hotplug Present: 0x00000000
[  147.743890][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.745589][T10899] vivid-007: RxSense Present: 0x00000000
[  147.748967][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.751483][T10899] vivid-007: EDID Present: 
[  147.754990][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.755137][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.757388][T10899] 0x00000000
[  147.757407][T10899] vivid-007: ==================  END STATUS  ==================
[  147.770521][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.773309][T10897] ldm_validate_partition_table(): Disk read failed.
[  147.775624][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.778852][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.781389][T10897] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  147.784197][T10897] Buffer I/O error on dev nbd0, logical block 0, async page read
[  147.786891][T10897] Dev nbd0: unable to read RDB block 0
[  147.789004][T10897]  nbd0: unable to read partition table
[  147.795046][T10886] ldm_validate_partition_table(): Disk read failed.
[  147.798983][T10886] Dev nbd0: unable to read RDB block 0
[  147.803996][T10886]  nbd0: unable to read partition table
[  147.809910][T10897] ldm_validate_partition_table(): Disk read failed.
[  147.813088][T10897] Dev nbd0: unable to read RDB block 0
[  147.815852][T10897]  nbd0: unable to read partition table
[  147.827869][T10903] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1771'.
[  147.831417][T10903] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1771'.
[  147.879426][T10908] netlink: 'syz.0.1773': attribute type 1 has an invalid length.
[  147.947671][T10908] veth5: entered promiscuous mode
[  147.951077][T10908] bond7: (slave veth5): Enslaving as a backup interface with a down link
[  148.019722][T10917] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1777'.
[  148.022608][T10917] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1777'.
[  148.025522][T10917] netlink: 'syz.0.1777': attribute type 20 has an invalid length.
[  148.234348][T10927] tmpfs: Unknown parameter 'usrquota
'
[  148.285984][T10931] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1782'.
[  148.289362][T10931] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1782'.
[  148.356900][T10934] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1783'.
[  148.360193][   T40] audit: type=1400 audit(148.289:576): avc:  denied  { read append } for  pid=10933 comm="syz.3.1783" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  148.360535][T10934] autofs4:pid:10934:validate_dev_ioctl: path string terminator missing for cmd(0xc018937d)
[  148.369751][   T40] audit: type=1400 audit(148.289:577): avc:  denied  { open } for  pid=10933 comm="syz.3.1783" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  148.382338][   T40] audit: type=1400 audit(148.289:578): avc:  denied  { ioctl } for  pid=10933 comm="syz.3.1783" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x937d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  148.479938][T10943] overlayfs: failed to clone upperpath
[  148.528143][   T40] audit: type=1400 audit(148.459:579): avc:  denied  { mount } for  pid=10946 comm="syz.2.1788" name="/" dev="9p" ino=35913812 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  148.532097][T10949] xt_bpf: check failed: parse error
[  148.566222][T10952] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  148.570443][T10952] mmap: syz.3.1790 (10952): VmData 37462016 exceed data ulimit 4. Update limits or use boot option ignore_rlimit_data.
[  148.571079][   T40] audit: type=1400 audit(148.499:580): avc:  denied  { listen } for  pid=10946 comm="syz.2.1788" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  148.625274][   T40] audit: type=1400 audit(148.549:581): avc:  denied  { map } for  pid=10956 comm="syz.3.1792" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  148.908229][T10963] netlink: 'syz.1.1794': attribute type 4 has an invalid length.
[  148.911592][T10963] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1794'.
[  148.929815][T10963] : renamed from bond0 (while UP)
[  148.938499][T10963] bridge0: port 3(vlan2) entered disabled state
[  148.944887][T10961] tipc: Started in network mode
[  148.946572][T10961] tipc: Node identity 4, cluster identity 4711
[  148.948598][T10961] tipc: Node number set to 4
[  148.971280][ T5945] Bluetooth: hci1: unexpected event 0x3d length: 104 > 14
[  149.001601][T10969] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1796'.
[  149.168200][T10981] netlink: 'syz.3.1801': attribute type 1 has an invalid length.
[  149.191169][T10981] 8021q: adding VLAN 0 to HW filter on device bond2
[  149.229095][T10981] bond2: (slave veth7): Enslaving as an active interface with a down link
[  149.240817][T10981] vlan4: entered allmulticast mode
[  149.242916][T10981] bond2: entered allmulticast mode
[  149.246299][T10981] bond2: (slave vlan4): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  149.550189][T11025] netlink: 'syz.1.1814': attribute type 6 has an invalid length.
[  149.554858][T11025] netlink: 'syz.1.1814': attribute type 5 has an invalid length.
[  149.558349][T11025] netlink: 'syz.1.1814': attribute type 4 has an invalid length.
[  149.588733][T11026] netdevsim netdevsim0: loading /lib/firmware// failed with error -22
[  149.591627][T11026] netdevsim netdevsim0: Direct firmware load for / failed with error -22
[  149.596897][   T40] audit: type=1400 audit(149.519:582): avc:  denied  { firmware_load } for  pid=11019 comm="syz.0.1813" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  149.597040][T11026] netdevsim netdevsim0: Falling back to sysfs fallback for: /
[  150.427976][T11088] netlink: 'syz.3.1837': attribute type 1 has an invalid length.
[  150.461799][T11088] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.466432][T11088] bond3: (slave batadv0): Enslaving as a backup interface with an up link
[  150.471609][T11088] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7953 sclass=netlink_route_socket pid=11088 comm=syz.3.1837
[  150.607041][T11101] vivid-007: =================  START STATUS  =================
[  150.609757][T11101] vivid-007: Enable Output Cropping: true
[  150.612214][T11101] vivid-007: Enable Output Composing: true
[  150.614788][T11101] vivid-007: Enable Output Scaler: true
[  150.620866][T11101] vivid-007: Tx RGB Quantization Range: Automatic
[  150.623693][T11101] vivid-007: Transmit Mode: HDMI
[  150.625863][T11101] vivid-007: Hotplug Present: 0x00000000
[  150.629552][T11101] vivid-007: RxSense Present: 0x00000000
[  150.631882][T11101] vivid-007: EDID Present: 0x00000000
[  150.633621][T11101] vivid-007: ==================  END STATUS  ==================
[  150.790132][   T40] audit: type=1800 audit(150.719:583): pid=11113 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.1845" name="nullb0" dev="tmpfs" ino=849 res=0 errno=0
[  150.801922][   T40] audit: type=1400 audit(150.729:584): avc:  denied  { execute } for  pid=11112 comm="syz.2.1845" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=38522 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  150.856798][   T58] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  150.876279][T11118] netlink: 'syz.2.1847': attribute type 13 has an invalid length.
[  150.899283][T11118] gretap0: refused to change device tx_queue_len
[  150.901958][T11118] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  151.018740][   T58] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  151.022412][   T58] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  151.025539][   T58] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  151.035945][   T58] usb 8-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  151.039797][   T58] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.044054][   T58] usb 8-1: Product: syz
[  151.045836][   T58] usb 8-1: Manufacturer: syz
[  151.047837][   T58] usb 8-1: SerialNumber: syz
[  151.052002][   T58] usb 8-1: config 0 descriptor??
[  151.155982][T11141] SET target dimension over the limit!
[  151.324961][   T58] adutux 8-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  151.921761][T11167] netlink: 'syz.0.1866': attribute type 1 has an invalid length.
[  151.955273][T11171] vivid-007: =================  START STATUS  =================
[  151.958517][T11171] vivid-007: Enable Output Cropping: true
[  151.960445][T11171] vivid-007: Enable Output Composing: true
[  151.962292][T11171] vivid-007: Enable Output Scaler: true
[  151.964102][T11171] vivid-007: Tx RGB Quantization Range: Automatic
[  151.966199][T11171] vivid-007: Transmit Mode: HDMI
[  151.968548][T11171] vivid-007: Hotplug Present: 0x00000000
[  151.968896][T11167] 8021q: adding VLAN 0 to HW filter on device bond9
[  151.970661][T11171] vivid-007: RxSense Present: 0x00000000
[  151.970685][T11171] vivid-007: EDID Present: 0x00000000
[  151.970709][T11171] vivid-007: ==================  END STATUS  ==================
[  151.974615][T11167] bond8: (slave bond9): making interface the new active one
[  151.983050][T11167] bond8: (slave bond9): Enslaving as an active interface with an up link
[  152.053841][T11182] overlayfs: failed to clone upperpath
[  152.742926][T11221] vivid-007: =================  START STATUS  =================
[  152.746211][T11221] vivid-007: Enable Output Cropping: true
[  152.748824][T11221] vivid-007: Enable Output Composing: true
[  152.751333][T11221] vivid-007: Enable Output Scaler: true
[  152.753625][T11221] vivid-007: Tx RGB Quantization Range: Automatic
[  152.756327][T11221] vivid-007: Transmit Mode: HDMI
[  152.758970][T11221] vivid-007: Hotplug Present: 0x00000000
[  152.761397][T11221] vivid-007: RxSense Present: 0x00000000
[  152.763653][T11221] vivid-007: EDID Present: 0x00000000
[  152.765310][T11221] vivid-007: ==================  END STATUS  ==================
[  152.823968][T11220] __nla_validate_parse: 13 callbacks suppressed
[  152.823980][T11220] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1883'.
[  152.830073][T11220] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1883'.
[  153.205108][T11234] cgroup: fork rejected by pids controller in /syz2
[  153.441263][T11290] program syz.1.1892 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  153.444588][T11292] program syz.1.1892 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  153.553812][T11313] syz_tun: entered allmulticast mode
[  153.559299][   T24] usb 8-1: USB disconnect, device number 5
[  153.874901][T11339] vivid-007: =================  START STATUS  =================
[  153.878320][T11339] vivid-007: Enable Output Cropping: true
[  153.880690][T11339] vivid-007: Enable Output Composing: true
[  153.882633][T11339] vivid-007: Enable Output Scaler: true
[  153.884411][T11339] vivid-007: Tx RGB Quantization Range: Automatic
[  153.886611][T11339] vivid-007: Transmit Mode: HDMI
[  153.888208][T11339] vivid-007: Hotplug Present: 0x00000000
[  153.889868][T11339] vivid-007: RxSense Present: 0x00000000
[  153.891633][T11339] vivid-007: EDID Present: 0x00000000
[  153.893211][T11339] vivid-007: ==================  END STATUS  ==================
[  154.002421][T11335] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1898'.
[  154.005298][T11335] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1898'.
[  154.071069][   T40] audit: type=1400 audit(153.999:585): avc:  denied  { read } for  pid=11344 comm="syz.0.1900" name="file0" dev="tmpfs" ino=2137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  154.077760][   T40] audit: type=1400 audit(153.999:586): avc:  denied  { open } for  pid=11344 comm="syz.0.1900" path="/401/file0" dev="tmpfs" ino=2137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  154.084755][   T40] audit: type=1400 audit(153.999:587): avc:  denied  { ioctl } for  pid=11344 comm="syz.0.1900" path="/401/file0" dev="tmpfs" ino=2137 ioctlcmd=0x1286 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  154.312901][   T40] audit: type=1400 audit(154.239:588): avc:  denied  { unmount } for  pid=5938 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  154.343533][T11353] veth1_to_team: entered promiscuous mode
[  154.345370][T11353] veth1_to_team: entered allmulticast mode
[  154.820135][T11381] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1915'.
[  154.823023][T11381] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1915'.
[  154.934952][T11384] vivid-007: =================  START STATUS  =================
[  154.937966][T11384] vivid-007: Enable Output Cropping: true
[  154.939821][T11384] vivid-007: Enable Output Composing: true
[  154.941722][T11384] vivid-007: Enable Output Scaler: true
[  154.943515][T11384] vivid-007: Tx RGB Quantization Range: Automatic
[  154.945538][T11384] vivid-007: Transmit Mode: HDMI
[  154.947807][T11384] vivid-007: Hotplug Present: 0x00000000
[  154.949696][T11384] vivid-007: RxSense Present: 0x00000000
[  154.951538][T11384] vivid-007: EDID Present: 0x00000000
[  154.953325][T11384] vivid-007: ==================  END STATUS  ==================
[  155.009033][T11383] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1916'.
[  155.011957][T11383] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1916'.
[  155.046421][   T40] audit: type=1400 audit(154.969:589): avc:  denied  { create } for  pid=11387 comm="syz.1.1917" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  155.120387][T11393] netlink: 'syz.1.1919': attribute type 1 has an invalid length.
[  155.135553][T11393] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1919'.
[  155.145053][T11393] 8021q: adding VLAN 0 to HW filter on device batadv4
[  155.149426][T11393] bond0: (slave batadv4): Enslaving as a backup interface with an up link
[  155.153556][T11393] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=24593 sclass=netlink_route_socket pid=11393 comm=syz.1.1919
[  155.290273][T11408] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1925'.
[  155.325698][T11413] tipc: Enabled bearer <eth:gre0>, priority 0
[  155.408334][T11418] overlayfs: failed to clone upperpath
[  155.519802][T11426] syz.1.1933: attempt to access beyond end of device
[  155.519802][T11426] nbd1: rw=4096, sector=2, nr_sectors = 2 limit=0
[  155.524035][T11426] EXT4-fs (nbd1): unable to read superblock
[  155.946617][   T24] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  155.993820][T11437] bridge2: entered promiscuous mode
[  155.995518][T11437] bridge2: entered allmulticast mode
[  156.078138][   T24] usb 8-1: device descriptor read/64, error -71
[  156.103016][T11448] IPv6: Can't replace route, no match found
[  156.116741][   T68] Bluetooth: hci4: command 0x1003 tx timeout
[  156.117051][ T5945] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  156.316943][   T24] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  156.447135][   T24] usb 8-1: device descriptor read/64, error -71
[  156.574442][   T24] usb usb8-port1: attempt power cycle
[  156.694298][T11486] overlayfs: failed to clone upperpath
[  156.916713][   T24] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  156.949824][   T24] usb 8-1: device descriptor read/8, error -71
[  157.103341][T11520] fuse: Bad value for 'group_id'
[  157.105381][T11520] fuse: Bad value for 'group_id'
[  157.145715][ T6348] libceph: connect (1)[b::]:6789 error -101
[  157.148310][ T6348] libceph: mon0 (1)[b::]:6789 connect error
[  157.196798][   T24] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  157.220644][T11534] netlink: 'syz.1.1969': attribute type 1 has an invalid length.
[  157.224364][T11534] netlink: 'syz.1.1969': attribute type 2 has an invalid length.
[  157.229232][T11534] netlink: 'syz.1.1969': attribute type 2 has an invalid length.
[  157.231726][   T24] usb 8-1: device descriptor read/8, error -71
[  157.232872][T11535] xt_bpf: check failed: parse error
[  157.348120][   T24] usb usb8-port1: unable to enumerate USB device
[  157.359108][T11545] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  157.367867][T11545] ntfs3(nbd1): try to read out of volume at offset 0x0
[  157.369786][   T40] audit: type=1400 audit(157.299:590): avc:  denied  { mounton } for  pid=11544 comm="syz.1.1972" path="/476/bus" dev="tmpfs" ino=2550 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  157.415248][ T6348] libceph: connect (1)[b::]:6789 error -101
[  157.423990][ T6348] libceph: mon0 (1)[b::]:6789 connect error
[  157.665988][T11555] xt_connbytes: Forcing CT accounting to be enabled
[  157.671434][T11555] xt_bpf: check failed: parse error
[  157.936889][ T6348] libceph: connect (1)[b::]:6789 error -101
[  157.939453][ T6348] libceph: mon0 (1)[b::]:6789 connect error
[  157.949124][T11522] ceph: No mds server is up or the cluster is laggy
[  158.031887][T11574] __nla_validate_parse: 6 callbacks suppressed
[  158.031905][T11574] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1984'.
[  158.301224][T11585] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1989'.
[  158.312453][T11585] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1989'.
[  158.406836][ T6664] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  158.459519][T11577] syz.0.1985 (11577): drop_caches: 1
[  158.542387][T11595] netlink: 'syz.0.1993': attribute type 1 has an invalid length.
[  158.563350][T11595] 8021q: adding VLAN 0 to HW filter on device bond10
[  158.578432][ T6664] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  158.582861][ T6664] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  158.587154][ T6664] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  158.594184][ T6664] usb 6-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  158.598277][ T6664] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.601683][ T6664] usb 6-1: Product: syz
[  158.603436][ T6664] usb 6-1: Manufacturer: syz
[  158.605358][ T6664] usb 6-1: SerialNumber: syz
[  158.606186][T11595] bond10: (slave veth7): Enslaving as an active interface with a down link
[  158.611241][ T6664] usb 6-1: config 0 descriptor??
[  158.634777][T11595] vlan0: entered allmulticast mode
[  158.637437][T11595] bond10: entered allmulticast mode
[  158.641097][T11595] bond10: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  158.686730][T11602] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1995'.
[  158.690562][T11602] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1995'.
[  158.822414][ T6664] adutux 6-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  158.896997][   T40] audit: type=1400 audit(158.829:591): avc:  denied  { mounton } for  pid=11611 comm="syz.0.1998" path="/418/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  158.934797][   T40] audit: type=1400 audit(158.859:592): avc:  denied  { execute } for  pid=11617 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  158.967631][   T40] audit: type=1400 audit(158.869:593): avc:  denied  { execute_no_trans } for  pid=11617 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  159.138102][   T68] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  159.141788][   T68] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  159.144563][   T68] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  159.163027][   T68] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  159.165660][   T68] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  159.516743][   T58] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  159.521216][T11622] chnl_net:caif_netlink_parms(): no params data found
[  159.639675][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  159.642989][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20003 - 0
[  159.646125][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 2] type 2 family 0 port 20000 - 0
[  159.667200][   T58] usb 8-1: Using ep0 maxpacket: 8
[  159.670845][   T58] usb 8-1: config 0 has no interfaces?
[  159.673201][   T58] usb 8-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  159.676641][   T58] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.678900][T11622] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.683688][T11622] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.687224][T11622] bridge_slave_0: entered allmulticast mode
[  159.693930][T11622] bridge_slave_0: entered promiscuous mode
[  159.698627][   T58] usb 8-1: config 0 descriptor??
[  159.703585][T11622] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.707167][T11622] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.709954][T11622] bridge_slave_1: entered allmulticast mode
[  159.712566][T11622] bridge_slave_1: entered promiscuous mode
[  159.792507][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  159.797854][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20003 - 0
[  159.801499][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 2] type 2 family 0 port 20000 - 0
[  159.833118][T11622] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  159.838605][T11622] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  159.908633][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  159.912138][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20003 - 0
[  159.915909][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 2] type 2 family 0 port 20000 - 0
[  159.930138][T11622] team0: Port device team_slave_0 added
[  159.934927][T11622] team0: Port device team_slave_1 added
[  159.977866][T11622] batman_adv: batadv0: Adding interface: batadv_slave_0
[  159.980616][T11622] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.990500][T11622] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  159.995641][T11622] batman_adv: batadv0: Adding interface: batadv_slave_1
[  159.998494][T11622] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  160.008307][T11622] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  160.058741][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  160.062735][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20003 - 0
[  160.066910][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 2] type 2 family 0 port 20000 - 0
[  160.072273][    T9] usb 8-1: USB disconnect, device number 10
[  160.130358][T11622] hsr_slave_0: entered promiscuous mode
[  160.133340][T11622] hsr_slave_1: entered promiscuous mode
[  160.135866][T11622] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  160.138467][T11622] Cannot create hsr debugfs directory
[  160.303981][   T12] vlan2: left promiscuous mode
[  160.305877][   T12] bond0: left promiscuous mode
[  160.309451][   T12] bond6: left promiscuous mode
[  160.312137][   T12] bridge0: port 1(vlan2) entered disabled state
[  160.363259][T11660] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2010'.
[  161.079159][   T58] usb 6-1: USB disconnect, device number 5
[  161.188403][   T12] bond14 (unregistering): (slave gretap1): Releasing active interface
[  161.236704][ T5945] Bluetooth: hci4: command tx timeout
[  161.307849][   T12] tipc: Disabling bearer <eth:gre0>
[  162.541523][   T12] bond1 (unregistering): Released all slaves
[  163.316949][ T5945] Bluetooth: hci4: command tx timeout
[  163.337639][   T12] bond2 (unregistering): Released all slaves
[  163.344483][   T12] bond3 (unregistering): Released all slaves
[  163.357786][   T12] bond4 (unregistering): Released all slaves
[  164.220695][   T12] bond5 (unregistering): Released all slaves
[  164.234607][   T12] bond0 (unregistering): (slave bond6): Releasing backup interface
[  164.237081][   T12] bond6 (unregistering): left allmulticast mode
[  164.309911][   T12] bond0 (unregistering): Released all slaves
[  165.124316][   T12] bond6 (unregistering): Released all slaves
[  165.134925][   T12] bond7 (unregistering): Released all slaves
[  165.396711][ T5945] Bluetooth: hci4: command tx timeout
[  165.917966][   T12] bond8 (unregistering): (slave veth5): Releasing active interface
[  165.970840][   T12] bond8 (unregistering): Released all slaves
[  166.719147][   T12] bond9 (unregistering): (slave veth7): Releasing active interface
[  166.758642][   T12] bond9 (unregistering): Released all slaves
[  166.769197][   T12] bond10 (unregistering): (slave bond11): Releasing backup interface
[  166.827542][   T12] bond10 (unregistering): Released all slaves
[  167.476882][ T5945] Bluetooth: hci4: command tx timeout
[  167.598078][   T12] bond11 (unregistering): Released all slaves
[  167.610141][   T12] bond12 (unregistering): (slave batadv2): Releasing backup interface
[  167.678378][   T12] bond12 (unregistering): Released all slaves
[  167.684874][   T12] bond13 (unregistering): Released all slaves
[  168.488219][   T12] bond14 (unregistering): Released all slaves
[  168.499874][   T12] bond15 (unregistering): (slave batadv0): Releasing backup interface
[  168.571426][   T12] bond15 (unregistering): Released all slaves
[  168.577728][   T12] bond16 (unregistering): Released all slaves
[  168.635059][   T40] audit: type=1400 audit(168.559:594): avc:  denied  { map } for  pid=11676 comm="syz.0.2013" path="socket:[42130]" dev="sockfs" ino=42130 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  168.678773][   T12] tipc: Left network mode
[  168.709920][   T40] audit: type=1400 audit(168.639:595): avc:  denied  { associate } for  pid=11683 comm="syz.1.2015" name="cpuset.effective_cpus" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  168.721070][   T40] audit: type=1400 audit(168.649:596): avc:  denied  { read append open } for  pid=11683 comm="syz.1.2015" path="/487/bus/cpuset.effective_cpus" dev="9p" ino=35913997 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  168.725514][T11684] tmpfs: Bad value for 'mpol'
[  168.736456][   T40] audit: type=1400 audit(168.649:597): avc:  denied  { lock } for  pid=11683 comm="syz.1.2015" path="/487/bus/cpuset.effective_cpus" dev="9p" ino=35913997 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  168.757645][   T40] audit: type=1400 audit(168.649:598): avc:  denied  { mounton } for  pid=11683 comm="syz.1.2015" path="/487/bus/file0" dev="9p" ino=35913823 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  168.794449][   T40] audit: type=1400 audit(168.719:599): avc:  denied  { create } for  pid=11690 comm="syz.0.2018" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  168.823056][T11691] vxfs: WRONG superblock magic 00000000 at 1
[  168.826076][T11691] vxfs: WRONG superblock magic 00000000 at 8
[  168.828641][T11691] vxfs: can't find superblock.
[  168.833266][   T40] audit: type=1400 audit(168.759:600): avc:  denied  { ioctl } for  pid=11690 comm="syz.0.2018" path="socket:[39179]" dev="sockfs" ino=39179 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  168.947720][   T40] audit: type=1400 audit(168.879:601): avc:  denied  { bind } for  pid=11690 comm="syz.0.2018" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  169.092005][   T40] audit: type=1400 audit(169.019:602): avc:  denied  { accept } for  pid=11690 comm="syz.0.2018" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  169.388719][T11622] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  169.394794][T11622] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  169.402745][T11622] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  169.413541][T11622] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  169.431743][T11728] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2023'.
[  169.526352][T11622] 8021q: adding VLAN 0 to HW filter on device bond0
[  169.537011][   T40] audit: type=1400 audit(169.469:603): avc:  denied  { read } for  pid=11735 comm="syz.1.2025" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  169.555212][T11622] 8021q: adding VLAN 0 to HW filter on device team0
[  169.563242][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.565696][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  169.632112][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.634347][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  169.812290][T11622] 8021q: adding VLAN 0 to HW filter on device batadv0
[  169.852882][T11622] veth0_vlan: entered promiscuous mode
[  169.869384][T11622] veth1_vlan: entered promiscuous mode
[  169.938626][T11622] veth0_macvtap: entered promiscuous mode
[  169.944426][T11622] veth1_macvtap: entered promiscuous mode
[  169.956208][T11622] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.970529][T11622] batman_adv: batadv0: Interface activated: batadv_slave_1
[  169.975411][T11622] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.978867][T11622] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.979493][T11785] xt_nat: multiple ranges no longer supported
[  169.981553][T11622] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.986208][T11622] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.999406][T11785] openvswitch: netlink: IPv4 tun info is not correct
[  170.037469][ T6348] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  170.157140][T11801] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2045'.
[  170.198181][ T6348] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  170.201989][ T6348] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  170.205113][ T6348] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  170.212133][ T6348] usb 8-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  170.214831][ T6348] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.218372][ T6348] usb 8-1: Product: syz
[  170.219809][ T6348] usb 8-1: Manufacturer: syz
[  170.221614][ T6348] usb 8-1: SerialNumber: syz
[  170.226273][ T6348] usb 8-1: config 0 descriptor??
[  170.433921][ T6348] adutux 8-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  171.945609][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.949210][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.044651][ T1231] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.048461][ T1231] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.184176][T11829] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2056'.
[  172.189934][T11829] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2056'.
[  172.302150][T11836] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[  172.305143][T11835] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[  172.345126][   T12] hsr_slave_0: left promiscuous mode
[  172.348960][   T12] hsr_slave_1: left promiscuous mode
[  172.691943][   T29] usb 8-1: USB disconnect, device number 11
[  173.300658][T11864] loop2: detected capacity change from 0 to 7
[  173.313205][T11765] Dev loop2: unable to read RDB block 7
[  173.315116][T11765]  loop2: unable to read partition table
[  173.317200][T11765] loop2: partition table beyond EOD, truncated
[  173.327691][T11864] Dev loop2: unable to read RDB block 7
[  173.330201][T11864]  loop2: unable to read partition table
[  173.332781][T11864] loop2: partition table beyond EOD, truncated
[  173.335404][T11864] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  173.821744][ T1231] smc: removing ib device syz1
[  174.357055][   T68] Bluetooth: hci0: command tx timeout
[  175.726991][   T68] Bluetooth: hci1: command 0x0406 tx timeout
[  187.616221][   T68] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  187.621243][   T68] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  187.624498][   T68] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  187.627965][   T68] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  187.630574][   T68] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  188.648878][   T68] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  188.654618][   T68] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  188.659301][   T68] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  188.662837][   T68] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  188.666733][   T68] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  188.675316][ T5937] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  188.688576][ T5937] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  188.692249][ T5945] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  188.694282][ T5937] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  188.696994][ T5945] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  188.699304][ T5937] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  188.701311][ T5945] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  188.704305][ T5937] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  188.713051][ T5945] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  188.716140][   T68] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  189.716860][ T5949] Bluetooth: hci2: command tx timeout
[  190.686747][ T5949] Bluetooth: hci5: command tx timeout
[  190.756707][ T5949] Bluetooth: hci6: command tx timeout
[  190.766784][ T5949] Bluetooth: hci7: command tx timeout
[  191.796721][ T5949] Bluetooth: hci2: command tx timeout
[  192.766697][ T5949] Bluetooth: hci5: command tx timeout
[  192.836773][ T5949] Bluetooth: hci7: command tx timeout
[  192.836820][   T68] Bluetooth: hci6: command tx timeout
[  193.876897][   T68] Bluetooth: hci2: command tx timeout
[  194.129398][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  194.132047][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  194.836671][   T68] Bluetooth: hci5: command tx timeout
[  194.916687][   T68] Bluetooth: hci6: command tx timeout
[  194.916733][ T5949] Bluetooth: hci7: command tx timeout
[  195.956791][   T68] Bluetooth: hci2: command tx timeout
[  196.916693][   T68] Bluetooth: hci5: command tx timeout
[  196.996711][   T68] Bluetooth: hci7: command tx timeout
[  197.006672][   T68] Bluetooth: hci6: command tx timeout
[  197.304826][ T1333] ==================================================================
[  197.307446][ T1333] BUG: KASAN: slab-use-after-free in __ethtool_get_link_ksettings+0x1bf/0x200
SYZFAIL: failed to recv rpc
[  197.310212][ T1333] Read of size 8 at addr ffff888037ce42e8 by task kworker/0:3/1333
[  197.314758][ T1333] 
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  197.316103][ T1333] CPU: 0 UID: 0 PID: 1333 Comm: kworker/0:3 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  197.316119][ T1333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.316127][ T1333] Workqueue: events smc_ib_port_event_work
[  197.316146][ T1333] Call Trace:
[  197.316150][ T1333]  <TASK>
[  197.316154][ T1333]  dump_stack_lvl+0x116/0x1f0
[  197.316171][ T1333]  print_report+0xc3/0x670
[  197.316182][ T1333]  ? __virt_addr_valid+0x5e/0x590
[  197.316197][ T1333]  ? __phys_addr+0xc6/0x150
[  197.316211][ T1333]  ? __ethtool_get_link_ksettings+0x1bf/0x200
[  197.316234][ T1333]  kasan_report+0xe0/0x110
[  197.316244][ T1333]  ? __ethtool_get_link_ksettings+0x1bf/0x200
[  197.316261][ T1333]  __ethtool_get_link_ksettings+0x1bf/0x200
[  197.316277][ T1333]  __ethtool_get_link_ksettings+0x145/0x200
[  197.316293][ T1333]  ib_get_eth_speed+0x122/0xb50
[  197.316308][ T1333]  ? __pfx_ib_get_eth_speed+0x10/0x10
[  197.316322][ T1333]  ? __pfx___mutex_lock+0x10/0x10
[  197.316339][ T1333]  ? do_raw_spin_unlock+0x172/0x230
[  197.316352][ T1333]  rxe_query_port+0x108/0x330
[  197.316367][ T1333]  ib_query_port+0x441/0x8a0
[  197.316382][ T1333]  smc_ib_port_event_work+0x12f/0xbf0
[  197.316397][ T1333]  ? rcu_is_watching+0x12/0xc0
[  197.316411][ T1333]  process_one_work+0x9cf/0x1b70
[  197.316425][ T1333]  ? __pfx_process_one_work+0x10/0x10
[  197.316438][ T1333]  ? assign_work+0x1a0/0x250
[  197.316448][ T1333]  worker_thread+0x6c8/0xf10
[  197.316461][ T1333]  ? __kthread_parkme+0x19e/0x250
[  197.316476][ T1333]  ? __pfx_worker_thread+0x10/0x10
[  197.316487][ T1333]  kthread+0x3c2/0x780
[  197.316497][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.316506][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.316515][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.316525][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.316534][ T1333]  ? rcu_is_watching+0x12/0xc0
[  197.316545][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.316555][ T1333]  ret_from_fork+0x45/0x80
[  197.316565][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.316575][ T1333]  ret_from_fork_asm+0x1a/0x30
[  197.316593][ T1333]  </TASK>
[  197.316596][ T1333] 
[  197.383881][ T1333] Allocated by task 5939:
[  197.385305][ T1333]  kasan_save_stack+0x33/0x60
[  197.386810][ T1333]  kasan_save_track+0x14/0x30
[  197.388297][ T1333]  __kasan_kmalloc+0xaa/0xb0
[  197.389767][ T1333]  __kvmalloc_node_noprof+0x279/0x600
[  197.391465][ T1333]  alloc_netdev_mqs+0xd2/0x1570
[  197.393022][ T1333]  rtnl_create_link+0xc10/0xfa0
[  197.395020][ T1333]  rtnl_newlink+0xb69/0x2000
[  197.396970][ T1333]  rtnetlink_rcv_msg+0x95b/0xe90
[  197.399086][ T1333]  netlink_rcv_skb+0x16a/0x440
[  197.401131][ T1333]  netlink_unicast+0x53d/0x7f0
[  197.403178][ T1333]  netlink_sendmsg+0x8d1/0xdd0
[  197.404744][ T1333]  __sys_sendto+0x495/0x510
[  197.406170][ T1333]  __x64_sys_sendto+0xe0/0x1c0
[  197.407708][ T1333]  do_syscall_64+0xcd/0x260
[  197.409141][ T1333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.410996][ T1333] 
[  197.411768][ T1333] Freed by task 12:
[  197.412974][ T1333]  kasan_save_stack+0x33/0x60
[  197.414875][ T1333]  kasan_save_track+0x14/0x30
[  197.416880][ T1333]  kasan_save_free_info+0x3b/0x60
[  197.419039][ T1333]  __kasan_slab_free+0x51/0x70
[  197.421083][ T1333]  kfree+0x2b6/0x4d0
[  197.422777][ T1333]  device_release+0xa4/0x240
[  197.424755][ T1333]  kobject_put+0x1e7/0x5a0
[  197.426199][ T1333]  netdev_run_todo+0x7e9/0x1320
[  197.427743][ T1333]  default_device_exit_batch+0x858/0xaf0
[  197.429497][ T1333]  ops_exit_list+0x128/0x180
[  197.430965][ T1333]  cleanup_net+0x5c1/0xb30
[  197.432370][ T1333]  process_one_work+0x9cf/0x1b70
[  197.434144][ T1333]  worker_thread+0x6c8/0xf10
[  197.436099][ T1333]  kthread+0x3c2/0x780
[  197.437822][ T1333]  ret_from_fork+0x45/0x80
[  197.439723][ T1333]  ret_from_fork_asm+0x1a/0x30
[  197.441769][ T1333] 
[  197.442817][ T1333] The buggy address belongs to the object at ffff888037ce4000
[  197.442817][ T1333]  which belongs to the cache kmalloc-cg-4k of size 4096
[  197.447343][ T1333] The buggy address is located 744 bytes inside of
[  197.447343][ T1333]  freed 4096-byte region [ffff888037ce4000, ffff888037ce5000)
[  197.451793][ T1333] 
[  197.452834][ T1333] The buggy address belongs to the physical page:
[  197.455504][ T1333] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x37ce0
[  197.459183][ T1333] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  197.462730][ T1333] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  197.465233][ T1333] page_type: f5(slab)
[  197.466519][ T1333] raw: 00fff00000000040 ffff88801b44c280 dead000000000122 0000000000000000
[  197.469195][ T1333] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  197.471856][ T1333] head: 00fff00000000040 ffff88801b44c280 dead000000000122 0000000000000000
[  197.474941][ T1333] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  197.478516][ T1333] head: 00fff00000000003 ffffea0000df3801 00000000ffffffff 00000000ffffffff
[  197.482104][ T1333] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  197.485099][ T1333] page dumped because: kasan: bad access detected
[  197.487126][ T1333] page_owner tracks the page as allocated
[  197.488868][ T1333] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5939, tgid 5939 (syz-executor), ts 54327085801, free_ts 54200370406
[  197.496007][ T1333]  post_alloc_hook+0x181/0x1b0
[  197.498065][ T1333]  get_page_from_freelist+0x135c/0x3920
[  197.500406][ T1333]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  197.502868][ T1333]  alloc_pages_mpol+0x1fb/0x550
[  197.504535][ T1333]  new_slab+0x244/0x340
[  197.505854][ T1333]  ___slab_alloc+0xd9c/0x1940
[  197.507365][ T1333]  __slab_alloc.constprop.0+0x56/0xb0
[  197.509028][ T1333]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  197.511023][ T1333]  kmemdup_noprof+0x29/0x60
[  197.512454][ T1333]  __addrconf_sysctl_register+0xbb/0x360
[  197.514510][ T1333]  addrconf_sysctl_register+0x15f/0x1f0
[  197.516852][ T1333]  ipv6_add_dev+0xb39/0x15f0
[  197.518824][ T1333]  addrconf_notify+0x53e/0x19e0
[  197.520898][ T1333]  notifier_call_chain+0xbc/0x410
[  197.523041][ T1333]  call_netdevice_notifiers_info+0xbe/0x140
[  197.524974][ T1333]  register_netdevice+0x182e/0x2270
[  197.526639][ T1333] page last free pid 5938 tgid 5938 stack trace:
[  197.529212][ T1333]  __free_frozen_pages+0x69d/0xff0
[  197.531392][ T1333]  __put_partials+0x16d/0x1c0
[  197.533383][ T1333]  qlist_free_all+0x4e/0x120
[  197.535325][ T1333]  kasan_quarantine_reduce+0x195/0x1e0
[  197.537630][ T1333]  __kasan_slab_alloc+0x69/0x90
[  197.539709][ T1333]  __kmalloc_cache_noprof+0x1f1/0x3e0
[  197.541989][ T1333]  ref_tracker_alloc+0x18e/0x5b0
[  197.544110][ T1333]  net_rx_queue_update_kobjects+0x32e/0x770
[  197.546628][ T1333]  netdev_register_kobject+0x269/0x3a0
[  197.548933][ T1333]  register_netdevice+0x13dc/0x2270
[  197.551142][ T1333]  veth_newlink+0x446/0xa00
[  197.552948][ T1333]  rtnl_newlink+0xc45/0x2000
[  197.554707][ T1333]  rtnetlink_rcv_msg+0x95b/0xe90
[  197.556263][ T1333]  netlink_rcv_skb+0x16a/0x440
[  197.558064][ T1333]  netlink_unicast+0x53d/0x7f0
[  197.559691][ T1333]  netlink_sendmsg+0x8d1/0xdd0
[  197.561281][ T1333] 
[  197.562042][ T1333] Memory state around the buggy address:
[  197.563854][ T1333]  ffff888037ce4180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  197.566381][ T1333]  ffff888037ce4200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  197.568964][ T1333] >ffff888037ce4280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  197.571799][ T1333]                                                           ^
[  197.574178][ T1333]  ffff888037ce4300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  197.576838][ T1333]  ffff888037ce4380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  197.579484][ T1333] ==================================================================
[  197.588500][ T1333] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  197.591563][ T1333] CPU: 0 UID: 0 PID: 1333 Comm: kworker/0:3 Not tainted 6.15.0-rc6-syzkaller-00025-g627277ba7c23 #0 PREEMPT(full) 
[  197.596485][ T1333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.600819][ T1333] Workqueue: events smc_ib_port_event_work
[  197.603270][ T1333] Call Trace:
[  197.604675][ T1333]  <TASK>
[  197.605935][ T1333]  dump_stack_lvl+0x3d/0x1f0
[  197.607918][ T1333]  panic+0x71c/0x800
[  197.609588][ T1333]  ? __pfx_panic+0x10/0x10
[  197.611476][ T1333]  ? irqentry_exit+0x3b/0x90
[  197.613428][ T1333]  ? lockdep_hardirqs_on+0x7c/0x110
[  197.615634][ T1333]  ? preempt_schedule_thunk+0x16/0x30
[  197.617912][ T1333]  ? __ethtool_get_link_ksettings+0x1bf/0x200
[  197.620017][ T1333]  ? preempt_schedule_common+0x44/0xc0
[  197.621832][ T1333]  ? check_panic_on_warn+0x1f/0xb0
[  197.623463][ T1333]  ? __ethtool_get_link_ksettings+0x1bf/0x200
[  197.625638][ T1333]  check_panic_on_warn+0xab/0xb0
[  197.627743][ T1333]  end_report+0x107/0x170
[  197.629478][ T1333]  kasan_report+0xee/0x110
[  197.631388][ T1333]  ? __ethtool_get_link_ksettings+0x1bf/0x200
[  197.634003][ T1333]  __ethtool_get_link_ksettings+0x1bf/0x200
[  197.636478][ T1333]  __ethtool_get_link_ksettings+0x145/0x200
[  197.639000][ T1333]  ib_get_eth_speed+0x122/0xb50
[  197.641082][ T1333]  ? __pfx_ib_get_eth_speed+0x10/0x10
[  197.642945][ T1333]  ? __pfx___mutex_lock+0x10/0x10
[  197.644885][ T1333]  ? do_raw_spin_unlock+0x172/0x230
[  197.647134][ T1333]  rxe_query_port+0x108/0x330
[  197.649114][ T1333]  ib_query_port+0x441/0x8a0
[  197.651102][ T1333]  smc_ib_port_event_work+0x12f/0xbf0
[  197.653352][ T1333]  ? rcu_is_watching+0x12/0xc0
[  197.655420][ T1333]  process_one_work+0x9cf/0x1b70
[  197.657498][ T1333]  ? __pfx_process_one_work+0x10/0x10
[  197.659792][ T1333]  ? assign_work+0x1a0/0x250
[  197.661604][ T1333]  worker_thread+0x6c8/0xf10
[  197.663076][ T1333]  ? __kthread_parkme+0x19e/0x250
[  197.664663][ T1333]  ? __pfx_worker_thread+0x10/0x10
[  197.666274][ T1333]  kthread+0x3c2/0x780
[  197.667607][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.669068][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.670753][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.672587][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.674051][ T1333]  ? rcu_is_watching+0x12/0xc0
[  197.675570][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.677074][ T1333]  ret_from_fork+0x45/0x80
[  197.678478][ T1333]  ? __pfx_kthread+0x10/0x10
[  197.680016][ T1333]  ret_from_fork_asm+0x1a/0x30
[  197.681709][ T1333]  </TASK>
[  197.683363][ T1333] Kernel Offset: disabled
[  197.684731][ T1333] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:08:08  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff854f79b0 RDI=ffffffff9adf9560 RBP=ffffffff9adf9520 RSP=ffffc90006cbf3f0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3330383838666666
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35bf2fe R15=dffffc0000000000
RIP=ffffffff854f79d7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69df000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f32be118310 CR3=000000000e180000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000097 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000f8420000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005650af123600 00005650af123600
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe7d14f450 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 756c42205d383654 2020205b5d333936 3631392e36393120 205b203a6c656e72
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 37206f7420676e69 676e616863202c30 206c61767265746e 49622064696c6176
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e69206e61207361 6820413878302074 6e696f70646e6520 3020676e69747465
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73746c6120302065 6361667265746e69 2030206769666e6f 63203a312d382062
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7375205d38343336 54205b5d33313135 30322e3037312020 5b203a6c656e7265
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff888021fa53e8 RCX=0000000000020000 RDX=0000000000000000
RSI=ffff888021fa53c0 RDI=ffff888021fa53e8 RBP=ffff888021fa5370 RSP=ffffc9000406f658
R8 =0000000000000000 R9 =0000000000000001 R10=0000000000000000 R11=ffffffff8e3bfc00
R12=0000000000000000 R13=0000000000020007 R14=ffff888021fa4880 R15=0000000000000000
RIP=ffffffff8197b540 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6adf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f6b15ce7d60 CR3=00000000280fe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000007fff Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6b151836a3 00007f6b151836a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdd83f7a80 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000300000014 0000000200000021
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000500000007 0000000400000017
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000011
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555691cb4c8 00005555691cb2f0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6ff6001000168004 010800060167b800 0000000400000017 16d0030000000001
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0128100000040100 1000078004010000 000806060167b800 080007e000000007
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 07d0030000000000 0302100007b00302 f01000069003e900 1300000000000006
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300040600000000 0407a00300080007 90030fffffffffff 0000000500000007
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0610002000000001 6ff6001000168004 010800060167b800 0000000400000017
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88806a63afc0 RCX=ffffffff81af544e RDX=ffff88801d2d4880
RSI=ffffffff81af5428 RDI=0000000000000005 RBP=ffffc90000157d10 RSP=ffffc90000157c40
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c79546
R12=1ffff9200002af8c R13=0000000000000003 R14=0000000000000001 R15=ffffed100d4c75f9
RIP=ffffffff81af542a RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe6021d16a8 CR3=000000000e180000 CR4=00352ef0
DR0=0000000000005918 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000088400000 Opmask01=0000000000000000 Opmask02=00000000ffff7fdf Opmask03=0000000001041000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fb0c46bed0 0000000000002e6a
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fb0c46bed0 0000000000002e6a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fb0c463fe0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fb0c467ba0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73001605121f0073 431e161e035c1810
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fb0c467ba0 000055fb0c463fe0 000055fb0c225770 000055fb0c476e50
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000004d 4554535953425553 0000000000000021 000000000000302e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000012e51 0000000000007974 00736576616c7300 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000020000 RBX=ffff8880504b5398 RCX=0000000000020000 RDX=0000000000000000
RSI=ffff8880504b5370 RDI=ffff8880504b5398 RBP=ffff8880504b5370 RSP=ffffc90022e0f098
R8 =0000000000000000 R9 =0000000000000001 R10=0000000000000000 R11=ffffffff8e3bfc00
R12=0000000000000000 R13=0000000000000000 R14=ffff8880504b4880 R15=0000000000000000
RIP=ffffffff81980416 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6cdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055fb0c46bf10 CR3=0000000028442000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000104080 Opmask01=0000000000000889 Opmask02=000000007ffeffff Opmask03=0000000001041000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 746e65696c635f73 666e2f74656e2f73
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fb0c476e50
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe601bf1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73001605121f0073 431e161e035c1810
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 54003d534b4e494c 564544003d4d4554 535953425553003d 4854415056454400
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 540018534b4e494c 56454400184d4554 5359534255530018 4854415056454400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7361647c2a737369 63637c2a65686361 63627c2a6476787c 2a64767c2a64737c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000012e51 0000000000007974 00736576616c7300 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000