last executing test programs:

7.66716424s ago: executing program 0 (id=413):
r0 = syz_io_uring_setup(0x1114, &(0x7f0000000300), &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x10, 0x0, 0x7, 0x0, 0x0})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x14, 0x600, 0x2)

7.487468964s ago: executing program 1 (id=415):
ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, 0x0) (async)
chdir(0x0) (async)
ioperm(0x0, 0x0, 0x0) (async)
syz_emit_ethernet(0x25, &(0x7f0000000800)=ANY=[], 0x0) (async)
r0 = syz_open_dev$vcsu(&(0x7f0000000680), 0xffff, 0x541980) (async)
open(&(0x7f0000000780)='./file0\x00', 0x191000, 0x6) (async)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000700)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000740)=0x14)
syz_emit_ethernet(0x15e, &(0x7f00000003c0)=ANY=[@ANYBLOB="e33110495bfdaaaaaaaaaa0086dd60"], 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000880)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x13000009}, 0xc, &(0x7f0000000840)={&(0x7f00000008c0)=ANY=[@ANYBLOB="a00000007100080027bd7000fbdbdf2507000000", @ANYRES32=r1, @ANYBLOB="0c0001800800010012000300100001800c00048008000100010000001000018071fe048008000100070000000c000180060002000c000000100001800c0004800800010000000100100001800c00048008000200110000000c000180000180060002000e0000000c00018005000300010000000c00018005000600020000000000000000000000008ddb858156b7082c14b463a9c02d50edbd5a31fd2720fecaaa7ad87a262488157c180045ede0431d2f8995e74b7bd201edf0173526daf8a24df12b908244b61fcf649efeeed3ae99ba0ef66955f6c898f78c7434198105ac9145d299141bca762f14f319ca064f6608def8e062"], 0xa0}}, 0x40) (async)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x2, 0x6, 0x5e8, 0x1b0, 0x3f8, 0x1b0, 0x310, 0xd0, 0x518, 0x518, 0x518, 0x518, 0x518, 0x6, 0x0, {[{{@ipv6={@mcast2, @private1, [], [], 'macvlan1\x00', 'erspan0\x00'}, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, [], [], 'syzkaller0\x00', 'team_slave_1\x00'}, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{}, {}, {}, 0xf3dd}}}, {{@uncond, 0x0, 0x138, 0x160, 0x0, {}, [@common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @dev, @local, @empty}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@eui64={{0x28}}]}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x648)

7.381582899s ago: executing program 1 (id=417):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x64, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x38, 0x3, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x28, 0xb, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8}, @NFTA_META_KEY={0x8}]}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe8}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000131000/0x4000)=nil, 0x4000, 0x2, 0x28011, r3, 0x0)
preadv(r3, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000001480), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(r4, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f00000014c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01000000000000000000010000000000000008410000fe2b00180000000069620019a1000000000000000000000000000000000000000000000000000000000002dd00"/98], 0x68}}, 0x0)
sendmsg$TIPC_CMD_GET_LINKS(r3, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r5, 0x100, 0x70bd2c, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0xd84f}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x80)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, 0x10, 0x21, 0x0, 0x0, {0x3}, [@nested={0x18, 0x1, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@mcast2}]}]}, 0x2c}}, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

6.90767219s ago: executing program 0 (id=418):
socket$netlink(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendto$inet6(r1, &(0x7f0000000040)='`', 0x1, 0x0, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x84, &(0x7f0000000380)={0x0, @in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x5}, 0x90)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000300)={0xff, 0x200, 0x4cc4, 0x9}, &(0x7f0000000500)=0x10)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="48000000180001000000000000000000020000000000ff030000000008001e0001"], 0x48}}, 0x0)

6.427419677s ago: executing program 1 (id=421):
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xc3)
connect$ax25(r0, &(0x7f00000000c0)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast]}, 0x48)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$UI_DEV_DESTROY(r1, 0x5502)
r2 = getpid()
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe55}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x10)
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x5a)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x40)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x600900, 0x0)
sendfile(r6, r5, 0x0, 0x80009)
r7 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x25, 0x4, 0x0, 0x0, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1}, {@broadcast}, {@empty}, {@multicast1}, {@multicast2}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote}, {@multicast2}, {@private=0xb010101}, {}, {@empty, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xb, 0x0, [@rand_addr=0x64010102, @multicast1]}]}}}}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_emit_ethernet(0x32, 0x0, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x4000000400000bce)
r11 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r11, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(r10, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r9, 0xae60)
ioctl$USBDEVFS_FREE_STREAMS(r7, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002003100007006000000002000020d3"])
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='loginuid\x00')

5.937948994s ago: executing program 0 (id=425):
syz_open_procfs$namespace(0x0, &(0x7f00000002c0)='ns/time_for_children\x00')
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000340)="23000000010006", 0x7) (fail_nth: 8)

5.547242996s ago: executing program 0 (id=426):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001300), 0x88c}}, 0x0) (async)
sched_setscheduler(0x0, 0x0, 0x0) (async)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0) (async)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) (async)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000200)) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
close(r0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r2=>0x0})
close(r0) (async, rerun: 32)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000001c0)) (async, rerun: 32)
mkdir(&(0x7f0000000480)='./file0\x00', 0x10)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0) (async, rerun: 64)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x13, 0x8, 0x8001, 0x0, 0x0, 0x1}, 0x48) (rerun: 64)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r5, &(0x7f0000000000), &(0x7f0000000040)=@udp}, 0x20) (async)
write$P9_RVERSION(r4, &(0x7f0000000140)=ANY=[@ANYRESDEC=r2], 0x15) (async)
r6 = dup(r4)
write$P9_RLERRORu(r6, &(0x7f0000000100)=ANY=[@ANYBLOB="5300000007000046009ce6e7e68cce736c"], 0x53) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[], [], 0x6b}}) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async, rerun: 64)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x100002, 0x0) (rerun: 64)
close(r7) (async)
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)
writev(r7, &(0x7f0000001380)=[{&(0x7f0000000280)="01", 0x1}], 0x1) (async)
sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="8c0000007000100027bd7000fedbdf2507000000", @ANYRES32=r2, @ANYBLOB="0c00018008000100150005000c00018005000300000000000c000180050003000100c60fb981a51fe9cf98bd8b7c07a7b34e0000100001800c00048008000200110000000c000180a3000300040000000c000180050006004b0000000c000180060002e60b0000000c0001800600020003000000"], 0x8c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000240)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

5.345581522s ago: executing program 0 (id=427):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000400), 0x32918300, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000004c0)=0x6)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x800000001, 0x0, 0x2, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x4)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x15, 0x186, 0x0})
r1 = syz_io_uring_setup(0x7dca, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f0000000140), &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_setup(0x1868, &(0x7f00000007c0), &(0x7f0000000780)=<r3=>0x0, &(0x7f0000000080))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r1, 0x184c, 0x1f000000, 0x0, 0x0, 0x0)

5.077488504s ago: executing program 3 (id=429):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
preadv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/206, 0xce}], 0x1, 0x0, 0x0)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0})

4.477646693s ago: executing program 3 (id=430):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x5b01, 0x0)

2.677380608s ago: executing program 3 (id=433):
socket$netlink(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendto$inet6(r1, &(0x7f0000000040)='`', 0x1, 0x0, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x84, &(0x7f0000000380)={0x0, @in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x5}, 0x90)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000300)={0xff, 0x200, 0x4cc4, 0x9}, &(0x7f0000000500)=0x10)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="48000000180001000000000000000000020000000000ff030000000008001e0001"], 0x48}}, 0x0)

2.215823861s ago: executing program 1 (id=435):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$sock_int(r2, 0x1, 0x20, &(0x7f00000000c0), 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
sendmmsg(r2, &(0x7f0000008dc0)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000840)="229f9a510112e917ce61aa978699f9d866ed2b438f8523aab038d975bc9664a543912569e3e7974b8ea719572413e9ead743f3b5590e595cbc8c4712ac56109b1bfe768a918c38c5ed76f2652ddf0c65c0c268203dbb8e53eb13dfc3d481d1feb1049be0594bd836fc", 0x69}, {&(0x7f0000001e40)="02c8a72dbf45a2267bb266d0a56dfa014d7ba1182d06f9b4e174d07986cc71b71a41a41da19ffd4cf644fb3e531a8dce6b777e08f2c64fdfb7cabe1411312e8d38b341d91d54aa276dc2785d964f935bf56cf24031c099ef66f9ab4094c3e950fab75b242e456ad6f0424d000d50f2aed630e9108ad58ac27724a7890f0e7f0df08be6fa8bec74a1f3c6e4fbfb5d99668e64b3b4ca83ca6fb51affce9df480dcc77e60fc7f88bbfc714258da532e5de087b46f259ee727794505", 0xba}, {&(0x7f0000000740)="4b796d53df07ea702c66ec20493a65902a9b9a65fea32748bdb2e4ad7b028841a524520f9612b57c34d257383f6566c2bc4ba673012cca9a7075e4389f121e26b69eb2514758d5b4e5d68100be55e3a1295ddf0800000059719e01a71e2ac894edf24d6c6975e01910d37e2f0235c854d4ad3f1de901e286ffbef0e01c33adc7eabb6324e5d21b559b362b499cf805cdc6874c577eb9162d019f7291c18ddb", 0x9f}, {&(0x7f0000000a40)="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", 0x1000}, {&(0x7f0000001a40)="34ea407df951fd13ed172ab187c9bae13df795c626ad8f2c796ff21a24b6a92729f86e2843cc678ad9deaee0f3a81eb88f8dee8944ead901154f3e3348bb086d5b5262e486984677cb35ff82241d29c0f5c76e8aedd09f40c3e9683d28a22594322db6b0894cf9137a2daee0b472361cc2dcebced35c6bf63c39e1924c8c440ff3b938405a2c09c474286fb6f3351cd1fea66368d01fb1c1cac325027d1d68b0c36e47b1", 0xa4}, {&(0x7f0000001b00)="1ab3e3b5fbca2f7717db75ed00"/27, 0x1b}, {&(0x7f0000001b40)="9f8d02801390aa5b51f1b221efc67a009cfc841cd54f26aa40784e25df8aa8646b07013ac08bad455e53022607173b54d035791a611d9727f04c59abf3f1b3b28a4931b7ddb8468c770f79e4f9b217cf4caa43ad0110fda50ced6d6dbe087ba62ff011075b27cba8914767d014409b47209f63e4b410c7c536de4f7aa6ad7888211956939e8b8e1a191ef228ed9c0e40f189e2b740ea19fed5c36c02d89e148455a92f8880f8d285fdc2ab713ef6a9a9f26dbd389b9bfb79bdeb3c1f160f8b5f2b89ce981736a2327c785606336d911b6e3c8b3dd27e826f72aa", 0xda}, {&(0x7f0000001c40)="f236d13013f8fef6783637e06aa1a659f55445f6afe90e5af97fa44f1ec58d81b00647ec070236f24243282c1c1d46f9735cc0acd173f338df77a044f5f66bd7441abbc73b556d3d5994eb456c34275a69e8eecbd93ba4954bbb517efdc987c843f67d8c54e7c596d83e79ef4974b79f4d4df2bf6e51cebc4929dd2a19961df88c141585135eb7b9fbdf806dbd8d4e2f60fa5a63da495b51adea630dab33592583273d46d3781103fee514cb30eef6cd1917154003d05563af0f56cebe52dd696a955f", 0xc3}, {&(0x7f0000002440)="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", 0x315}, {&(0x7f0000001d40)="28a4d17f0d300cf3ce9ce29a0b18d65ca5bfac8eaa998e3f1055fa69c805aca4262b6307d7828b5e4e0e3f4415422a6bf0fd61d4674fbee24a4b2b12afdcab29ced89a40003abec91526725910ba97ed539fec87910fe33f2f154ca55dc4cdeb96c5ee33acc64884b7d949f8a9d356fcfd72410a0246b317382d7def5992bef64916e268f2c8d331b3b3e1e3585f676c91880eea67191e3819208dc766b704ff59a9951bcbb369ab33bd1efec6e3dd6311a677feb17f7378fee9f2536dcaa1e744d8ba", 0xc3}, {&(0x7f0000000500)="fa6fa00d0b9a85dded9cd968c1a9f47a9b14ae9ba32ee6f4bbe2b112d93d98190b4478ddf656e8a5f3fd1b977b22d27f8ac866636e2ca3bf75d936ceba1e", 0x3e}], 0xb}}], 0x1, 0x48010)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="21003300d0800000080211000000080211000001505050505050000000000000", @ANYRES8], 0x40}}, 0x0)
r4 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ifreq(0xffffffffffffffff, 0x89a3, &(0x7f0000000000)={'bridge0\x00', @ifru_addrs=@l2={0x1f, 0x0, @fixed}})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r6, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYRESDEC=r7, @ANYRES16=r7, @ANYBLOB="040028530f00fbdbdf2555000000080001005000670ba28478c601041a10d00359795937286b2b0cd5a6d621e21c63810000000000000040004f0000009fb1058f45693499f96b65747bba6b29e8307e5b1bbfe883b52afbf5573855d9f1eb451c6bb0af9eab99c1526346f9116f06f43cff846f28a7608802e9cdebe47e3f92435d91913644320d1ad3a1f71b7419d6a7fca112e207f6f1d9abb183e6c433f80a801b"], 0x28}, 0x1, 0x0, 0x0, 0x4000010}, 0xc854)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_COALESCE(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r10, @ANYBLOB="0c0099000000006ef81e61000800020000000000"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000001fc0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="00022dbd7000fbdbdf251300000008000300", @ANYRES32=r10, @ANYBLOB="05001301000000006bf13f5f86ec0f5ed55fc8523bf66f8c4799b566882ab7e17e967051dd586d113e18bb79f998981f3031384331da12d006196c77e5f021dcf1f36a0814e4370e075a8ebeb04fb743d74810f4623a697ca356e46d8bca37ae4965d80a3da4d55a4d54823a5a53bbe21a3eb62561a3435466fcf448136ed389e8dd0630aa8c12b26345b94f7dc80f5e0cf532101e0283417d6c8ef7007b2bc35d498521b223e948c83c0af3091ee10bf606d7257fac76dd4534f884fb8e3b7e2db538832bf1b3b246d98569ddf3945ab5e67e7dec9334dc7d4015398ea189884d8b9528d33fe2ebaf74b1b428e56093af5c722f"], 0x24}, 0x1, 0x0, 0x0, 0x4041}, 0x40090)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200a000}, 0xc, &(0x7f0000000540)={&(0x7f0000000240)={0x38, r1, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0xffffff31, 0x7e}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x40c0}, 0x800)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r5, &(0x7f0000000480)={&(0x7f0000000380), 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r11, 0x1}, 0x14}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0xb0, r11, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010101}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0xa}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0}]}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x8000}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x38, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x46}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0xb0}}, 0x10004890)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000600)={0x0, 0xd3, "96021509841aa04151ccb93d59a3f1249d32f4e145f2ec9e0f29b96b78165682eabce6a6c7add4f7847f03736f5de703be31046bb616b3d829ed09438bf457b423aa1d8be360fdc52278dd4db92cb66902030a66b74e9881f49f2902f40d5ab85ffdd75f10467ed0f341294ee21374cf42ffe7a1661e75464feeb2e43411c372cbed1ade51c7dd9fe1314b6fcb0cc6881551d2dcf18c7e0a84497d354abc5fe0a340aa2c099265b2423a16b5d95ee7d31d427801d01225cbe87fcb94406b389ea3c9779e68efc1ff6bc9a5485f7e92be705959"}, &(0x7f0000000700)=0xdb)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f00000005c0)={'ip6gre0\x00', &(0x7f0000000140)={'ip6tnl0\x00', <r12=>0x0, 0x4, 0x2, 0x1, 0x9, 0x10, @dev={0xfe, 0x80, '\x00', 0xb}, @loopback, 0x40, 0x80, 0x80000000, 0x8000}})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x18, 0xd540, 0xf87, 0x3, 0x2a, r4, 0x9, '\x00', r12, 0xffffffffffffffff, 0x4, 0x3, 0x3}, 0x48)
r13 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x0, 0x0)
r14 = epoll_create(0x5)
epoll_ctl$EPOLL_CTL_ADD(r14, 0x1, r13, &(0x7f00000000c0))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r13, 0x40046208, 0x0)

2.03682918s ago: executing program 1 (id=437):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000006c0)={'batadv_slave_0\x00'})
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0xe, &(0x7f0000000240)={&(0x7f0000000240)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x20040081}, 0x4000)
r3 = inotify_init1(0x0)
fcntl$setown(r3, 0x8, 0xffffffffffffffff)
fcntl$getownex(r3, 0x10, &(0x7f0000000140)={0x0, <r4=>0x0})
r5 = syz_open_procfs(r4, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r5, 0x8010661b, 0x0)
socket$inet(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="0a0000000000f90000"], 0x50}}, 0x0)
r8 = socket$key(0xf, 0x3, 0x2)
socket(0x0, 0x3, 0x8001)
socket$key(0xf, 0x3, 0x2)
r9 = socket$key(0xf, 0x3, 0x2)
accept(r8, 0x0, 0x0)
sendmsg$key(r9, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x9, 0x7, 0x0, 0x0, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x38}}, 0x0)
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x6)
ioctl$sock_bt_hci(r10, 0x800448d2, &(0x7f0000000000))
socket$can_j1939(0x1d, 0x2, 0x7)
unshare(0x2a020400)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)

2.036004051s ago: executing program 2 (id=438):
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x4, &(0x7f0000000000)=[{}, {0x1}, {}, {0x1, 0x0, 0x9}]}) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r0) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r0, 0x8b1a, &(0x7f0000000000)={'virt_wifi0\x00', @random="0200002000"})

1.927127883s ago: executing program 2 (id=439):
syz_clone3(&(0x7f0000000000)={0x285002400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x46)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000380), 0xc1100, 0x0)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_RATE_DEL(r3, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000e40)={0x3c, r2, 0x6ae3e61d32b8160b, 0x0, 0x0, {0x4a}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0xa8, 0x36}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x3c}}, 0x0)
ioctl$DVD_WRITE_STRUCT(r1, 0x5390, &(0x7f00000003c0)=@copyright={0x1, 0x0, 0x9, 0x3})
r4 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
r5 = dup(r4)
r6 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
fsmount(r6, 0x0, 0x0)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000200))
write$binfmt_script(r5, &(0x7f0000000c00)={'#! ', './file0', [{0x20, 'sysfs\x00'}, {0x20, '/dev/kvm\x00'}], 0xa, "091c9a3d674505"}, 0x23)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r6, 0x7, 0x0, 0x0, 0x0)

1.67745859s ago: executing program 3 (id=440):
unshare(0x20000400)
getpid()
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x40086602, 0x0)

1.677192903s ago: executing program 3 (id=441):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff) (async)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r2, 0x7af, &(0x7f0000000100)={@any, 0x2}) (async)
sendmsg$DEVLINK_CMD_SB_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0xb0, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x81}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x10000}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}}]}, 0xb0}}, 0x0) (async)
r3 = socket(0x2b, 0x1, 0x0)
getsockopt$kcm_KCM_RECV_DISABLE(r3, 0x11e, 0x1, 0x0, 0x20000000)

1.60728469s ago: executing program 2 (id=442):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x6b5, 0x41)
r1 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
ioctl$NBD_DO_IT(r1, 0xab03)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="080026bd7000fbdbdf250f00000008000300", @ANYRES32, @ANYBLOB="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"], 0x15c}}, 0x402a000)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
write$uinput_user_dev(r4, &(0x7f0000000800)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x296, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x80000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], [0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x4, 0x0, 0xf, 0x0, 0x0, 0x3, 0x4]}, 0x45c)
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r4, 0x5501)
syz_open_dev$evdev(&(0x7f0000000700), 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.522646276s ago: executing program 3 (id=443):
socket$alg(0x26, 0x5, 0x0)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x200000000000009c, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = syz_open_dev$vbi(&(0x7f00000002c0), 0x0, 0x2)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f0000000500))
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xfffffffffffffed2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b03d25a806c8c6f94f90624fc601000127a0a000600093582c137153e37080c188001ac0f000300", 0x33fe0}], 0x1}, 0x0)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000a40)="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", 0x11b}], 0x1, 0x0, 0x0, 0x8100000}, 0x0)
recvmsg$kcm(r5, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r4, &(0x7f0000000980)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000740)=@can, 0x80, &(0x7f0000000440)=[{&(0x7f0000000100)=""/47, 0x2f}], 0x1, &(0x7f0000000640)=""/49, 0x31}, 0x7}, {{&(0x7f00000005c0)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private2}}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000880)=""/244, 0xf4}], 0x1}, 0xffffffff}], 0x3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=""/25, 0x13}}], 0x1, 0x0, 0x0)
syz_emit_ethernet(0x389, &(0x7f0000000280)=ANY=[], 0x0)
syz_emit_ethernet(0xf9, &(0x7f0000000b80)=ANY=[@ANYBLOB="bbbbbbbbbbbb000000000000810016000800482700e7006800003b0290780a0101000000000000010707a0ffffffff0100001f0390780a010101f41f7611cd40ee3c293a2aeb84db040b53efe5819d15270595a8ef8f205ce5a08bef2b748b430924db49ead8403dbf554d02937d03fce12f8b5c5e1a500589646a5eafbd21d5745c4a8126e4e545fdbb2048a2a1e1b8bcc2741310fcc09b6b56d49b6456b5e3a5e7b526d7ce432544d2fa060cc3e5b5945c8454b572031af423a4d40e073947a46e63a9818f0bdb3afa19e66b3cd23f098582040f36b26cb6a16d751af3155272d869e64334e9d83590c0a50d42a155f06bf1cbbd956148ad"], 0x0)
setpriority(0x2, 0x0, 0x0)

883.960532ms ago: executing program 1 (id=444):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
openat$vimc0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = fsopen(&(0x7f0000000000)='tmpfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6}]})
mount$cgroup(0x20000000, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$setsig(0x4203, r1, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x1})
fsmount(r0, 0x1, 0x88)
pipe(&(0x7f00000001c0))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_sctp(0xa, 0x801, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r2, 0x114, 0x2, 0x0, 0x0)
r3 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x24f9, &(0x7f0000000240)={0x0, 0x4, 0x8, 0x2}, 0x0, 0x0)
pipe2(&(0x7f0000000400)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4ae9, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x3ffffffc, 0x357, 0x0, r3}, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'syztnl0\x00', &(0x7f0000000180)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d, @private0, @remote}})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

602.16895ms ago: executing program 2 (id=445):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000e68000)={0x2, 0x0, @local}, 0x10)
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "5d9bc136c963254c661fb620148b6f72ca6ae2a44829bfa79ec13499f8ec9077d85d879711d98bb1687ad36dfe5f14a7b0ce15c1e6be0e7ecabfdfde0dfa00b1"}, 0x48, 0xffffffffffffffff)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0x0)
pipe2$watch_queue(&(0x7f0000000140)={<r2=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r2, 0x0)
pipe2$watch_queue(&(0x7f0000000100)={<r3=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r3, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0xfffffffdffffffff)
mlockall(0x6)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x35, 0x0, "317f83735b4bb1eadc74dde27798c831eec04c24eeec7ff3d3137a508003d2d5c89ab0220c52ebd4687636457b9822766c1bfea4e81ff23c6a4caeaf049a582a9774d3b882ef0600000000000000025d"}, 0xd8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r6, 0x10e, 0xc, &(0x7f00000005c0)=0x18, 0x4)
sendmsg$netlink(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="280000005f00010600e400004013000018003b"], 0x28}], 0x1}, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f0000000100)={0x0, "ff0f00000000000001a82d866bf4ff0713e4b89c3c00", <r7=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r7, 0x40103e05, &(0x7f00000000c0)={""/32, 0x0, 0x0, 0x0, 0x2, 0x0})
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000000c0)=@ccm_128={{0x303}, "00000000e800", "57289377e5c6dc7659354072fe8b96ee", "ae8de8c8", "7bdfdc71e78a5e0d"}, 0x28)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_notify={{0x3b, 0xa}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0xd)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r8 = syz_open_dev$sndpcmc(&(0x7f0000002200), 0x0, 0x0)
mmap$snddsp_status(&(0x7f0000ffc000/0x4000)=nil, 0x1000, 0x1, 0x13, r8, 0x82000000)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000940)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in6=@local, @in=@dev}, {@in=@remote, 0x0, 0x33}, @in6=@private2, {}, {}, {}, 0x0, 0x0, 0xa, 0x1}, [@algo_auth_trunc={0x4c, 0x14, {{'sha1\x00'}}}]}, 0x13c}}, 0x8010)

296.900564ms ago: executing program 2 (id=446):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$sock_int(r2, 0x1, 0x20, &(0x7f00000000c0), 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
sendmmsg(r2, &(0x7f0000008dc0)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000840)="229f9a510112e917ce61aa978699f9d866ed2b438f8523aab038d975bc9664a543912569e3e7974b8ea719572413e9ead743f3b5590e595cbc8c4712ac56109b1bfe768a918c38c5ed76f2652ddf0c65c0c268203dbb8e53eb13dfc3d481d1feb1049be0594bd836fc", 0x69}, {&(0x7f0000001e40)="02c8a72dbf45a2267bb266d0a56dfa014d7ba1182d06f9b4e174d07986cc71b71a41a41da19ffd4cf644fb3e531a8dce6b777e08f2c64fdfb7cabe1411312e8d38b341d91d54aa276dc2785d964f935bf56cf24031c099ef66f9ab4094c3e950fab75b242e456ad6f0424d000d50f2aed630e9108ad58ac27724a7890f0e7f0df08be6fa8bec74a1f3c6e4fbfb5d99668e64b3b4ca83ca6fb51affce9df480dcc77e60fc7f88bbfc714258da532e5de087b46f259ee727794505", 0xba}, {&(0x7f0000000740)="4b796d53df07ea702c66ec20493a65902a9b9a65fea32748bdb2e4ad7b028841a524520f9612b57c34d257383f6566c2bc4ba673012cca9a7075e4389f121e26b69eb2514758d5b4e5d68100be55e3a1295ddf0800000059719e01a71e2ac894edf24d6c6975e01910d37e2f0235c854d4ad3f1de901e286ffbef0e01c33adc7eabb6324e5d21b559b362b499cf805cdc6874c577eb9162d019f7291c18ddb", 0x9f}, {&(0x7f0000000a40)="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", 0x1000}, {&(0x7f0000001a40)="34ea407df951fd13ed172ab187c9bae13df795c626ad8f2c796ff21a24b6a92729f86e2843cc678ad9deaee0f3a81eb88f8dee8944ead901154f3e3348bb086d5b5262e486984677cb35ff82241d29c0f5c76e8aedd09f40c3e9683d28a22594322db6b0894cf9137a2daee0b472361cc2dcebced35c6bf63c39e1924c8c440ff3b938405a2c09c474286fb6f3351cd1fea66368d01fb1c1cac325027d1d68b0c36e47b1", 0xa4}, {&(0x7f0000001b00)="1ab3e3b5fbca2f7717db75ed00"/27, 0x1b}, {&(0x7f0000001b40)="9f8d02801390aa5b51f1b221efc67a009cfc841cd54f26aa40784e25df8aa8646b07013ac08bad455e53022607173b54d035791a611d9727f04c59abf3f1b3b28a4931b7ddb8468c770f79e4f9b217cf4caa43ad0110fda50ced6d6dbe087ba62ff011075b27cba8914767d014409b47209f63e4b410c7c536de4f7aa6ad7888211956939e8b8e1a191ef228ed9c0e40f189e2b740ea19fed5c36c02d89e148455a92f8880f8d285fdc2ab713ef6a9a9f26dbd389b9bfb79bdeb3c1f160f8b5f2b89ce981736a2327c785606336d911b6e3c8b3dd27e826f72aa", 0xda}, {&(0x7f0000001c40)="f236d13013f8fef6783637e06aa1a659f55445f6afe90e5af97fa44f1ec58d81b00647ec070236f24243282c1c1d46f9735cc0acd173f338df77a044f5f66bd7441abbc73b556d3d5994eb456c34275a69e8eecbd93ba4954bbb517efdc987c843f67d8c54e7c596d83e79ef4974b79f4d4df2bf6e51cebc4929dd2a19961df88c141585135eb7b9fbdf806dbd8d4e2f60fa5a63da495b51adea630dab33592583273d46d3781103fee514cb30eef6cd1917154003d05563af0f56cebe52dd696a955f", 0xc3}, {&(0x7f0000002440)="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", 0x315}, {&(0x7f0000001d40)="28a4d17f0d300cf3ce9ce29a0b18d65ca5bfac8eaa998e3f1055fa69c805aca4262b6307d7828b5e4e0e3f4415422a6bf0fd61d4674fbee24a4b2b12afdcab29ced89a40003abec91526725910ba97ed539fec87910fe33f2f154ca55dc4cdeb96c5ee33acc64884b7d949f8a9d356fcfd72410a0246b317382d7def5992bef64916e268f2c8d331b3b3e1e3585f676c91880eea67191e3819208dc766b704ff59a9951bcbb369ab33bd1efec6e3dd6311a677feb17f7378fee9f2536dcaa1e744d8ba", 0xc3}, {&(0x7f0000000500)="fa6fa00d0b9a85dded9cd968c1a9f47a9b14ae9ba32ee6f4bbe2b112d93d98190b4478ddf656e8a5f3fd1b977b22d27f8ac866636e2ca3bf75d936ceba1e", 0x3e}], 0xb}}], 0x1, 0x48010)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="21003300d0800000080211000000080211000001505050505050000000000000", @ANYRES8], 0x40}}, 0x0)
r4 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ifreq(0xffffffffffffffff, 0x89a3, &(0x7f0000000000)={'bridge0\x00', @ifru_addrs=@l2={0x1f, 0x0, @fixed}})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r6, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYRESDEC=r7, @ANYRES16=r7, @ANYBLOB="040028530f00fbdbdf2555000000080001005000670ba28478c601041a10d00359795937286b2b0cd5a6d621e21c63810000000000000040004f0000009fb1058f45693499f96b65747bba6b29e8307e5b1bbfe883b52afbf5573855d9f1eb451c6bb0af9eab99c1526346f9116f06f43cff846f28a7608802e9cdebe47e3f92435d91913644320d1ad3a1f71b7419d6a7fca112e207f6f1d9abb183e6c433f80a801b"], 0x28}, 0x1, 0x0, 0x0, 0x4000010}, 0xc854)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_COALESCE(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r10, @ANYBLOB="0c0099000000006ef81e61000800020000000000"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000001fc0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="00022dbd7000fbdbdf251300000008000300", @ANYRES32=r10, @ANYBLOB="05001301000000006bf13f5f86ec0f5ed55fc8523bf66f8c4799b566882ab7e17e967051dd586d113e18bb79f998981f3031384331da12d006196c77e5f021dcf1f36a0814e4370e075a8ebeb04fb743d74810f4623a697ca356e46d8bca37ae4965d80a3da4d55a4d54823a5a53bbe21a3eb62561a3435466fcf448136ed389e8dd0630aa8c12b26345b94f7dc80f5e0cf532101e0283417d6c8ef7007b2bc35d498521b223e948c83c0af3091ee10bf606d7257fac76dd4534f884fb8e3b7e2db538832bf1b3b246d98569ddf3945ab5e67e7dec9334dc7d4015398ea189884d8b9528d33fe2ebaf74b1b428e56093af5c722f"], 0x24}, 0x1, 0x0, 0x0, 0x4041}, 0x40090)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200a000}, 0xc, &(0x7f0000000540)={&(0x7f0000000240)={0x38, r1, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0xffffff31, 0x7e}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x40c0}, 0x800)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r5, &(0x7f0000000480)={&(0x7f0000000380), 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r11, 0x1}, 0x14}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0xb0, r11, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010101}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0xa}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0}]}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x8000}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x38, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x46}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0xb0}}, 0x10004890)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000600)={0x0, 0xd3, "96021509841aa04151ccb93d59a3f1249d32f4e145f2ec9e0f29b96b78165682eabce6a6c7add4f7847f03736f5de703be31046bb616b3d829ed09438bf457b423aa1d8be360fdc52278dd4db92cb66902030a66b74e9881f49f2902f40d5ab85ffdd75f10467ed0f341294ee21374cf42ffe7a1661e75464feeb2e43411c372cbed1ade51c7dd9fe1314b6fcb0cc6881551d2dcf18c7e0a84497d354abc5fe0a340aa2c099265b2423a16b5d95ee7d31d427801d01225cbe87fcb94406b389ea3c9779e68efc1ff6bc9a5485f7e92be705959"}, &(0x7f0000000700)=0xdb)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f00000005c0)={'ip6gre0\x00', &(0x7f0000000140)={'ip6tnl0\x00', <r12=>0x0, 0x4, 0x2, 0x1, 0x9, 0x10, @dev={0xfe, 0x80, '\x00', 0xb}, @loopback, 0x40, 0x80, 0x80000000, 0x8000}})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x18, 0xd540, 0xf87, 0x3, 0x2a, r4, 0x9, '\x00', r12, 0xffffffffffffffff, 0x4, 0x3, 0x3}, 0x48)
r13 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x0, 0x0)
r14 = epoll_create(0x5)
epoll_ctl$EPOLL_CTL_ADD(r14, 0x1, r13, &(0x7f00000000c0))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r13, 0x40046208, 0x0)

136.692137ms ago: executing program 0 (id=447):
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x2, 0x200000000000001, 0x106)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x1})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x3, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r3 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000000)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r3, &(0x7f0000000040)={'full', 0x20, 0x8, 0x20, 0x101}, 0x2f)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04130becf764a9435f50f9b55177121903854592e237c76b377bd44333e51c8c7cbda9290a7d65a301004f02f38524"], 0x7)
timer_gettime(0x0, &(0x7f0000000280))
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000002c0)={@cgroup, 0xffffffffffffffff, 0x0, 0x9c8171d3d2d3339b}, 0x20)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x210000000013, &(0x7f0000000300)=0x100000001, 0x4)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$SIOCPNENABLEPIPE(r5, 0x8903, 0xf0ff1f00000000)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, &(0x7f00000000c0)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, &(0x7f0000000780)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000200000002000000e000ff0100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x190)
close(r6)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f00000000c0)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)

0s ago: executing program 2 (id=448):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_wake_idle_without_ipi\x00'}, 0x10)
syz_open_dev$sndctrl(&(0x7f0000001200), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0xc00455d0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x9)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fremovexattr(0xffffffffffffffff, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000), 0xffffff6a)
lseek(0xffffffffffffffff, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x62, 0xfe, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a54981be310aad92ae545b1c961e5f3762a51fe4c736edec6f", &(0x7f0000000440)=""/254, 0x2f00, 0x0, 0x103, 0x194, &(0x7f0000000980)="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", &(0x7f00000007c0)="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", 0x2}, 0x50)
set_mempolicy_home_node(&(0x7f000037b000/0x3000)=nil, 0x3000, 0x0, 0x0)

kernel console output (not intermixed with test programs):

virtual/input/input10
[   89.333049][ T5703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.337085][ T5703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.341813][ T5703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.355125][ T5703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.359691][ T5703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.363923][ T5703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.368248][ T5703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.374565][ T5703] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.417575][ T5703] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.421330][ T5703] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.424775][ T5703] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.428275][ T5703] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.529244][ T1138] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.534566][ T1138] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.580296][ T1096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.583743][ T1096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.779272][ T5210] Bluetooth: hci4: Malformed Event: 0x13
[   90.545868][   T39] kauditd_printk_skb: 1 callbacks suppressed
[   90.545883][   T39] audit: type=1400 audit(1721074979.611:268): avc:  denied  { mounton } for  pid=5745 comm="syz.0.141" path="/1/file0" dev="configfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   90.546060][ T5747] overlayfs: missing 'lowerdir'
[   90.840251][ T5210] Bluetooth: hci4: command tx timeout
[   90.894181][   T39] audit: type=1400 audit(1721074979.961:269): avc:  denied  { name_connect } for  pid=5752 comm="syz.3.143" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   90.912120][   T39] audit: type=1400 audit(1721074979.981:270): avc:  denied  { rename } for  pid=4671 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   90.926409][   T39] audit: type=1400 audit(1721074979.981:271): avc:  denied  { unlink } for  pid=4671 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   90.939232][   T39] audit: type=1400 audit(1721074979.981:272): avc:  denied  { create } for  pid=4671 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   91.549169][   T39] audit: type=1400 audit(1721074980.611:273): avc:  denied  { bind } for  pid=5758 comm="syz.1.145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   91.561864][   T39] audit: type=1400 audit(1721074980.621:274): avc:  denied  { write } for  pid=5758 comm="syz.1.145" path="socket:[8872]" dev="sockfs" ino=8872 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   91.652109][ T5761] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   91.745090][ T5763] FAULT_INJECTION: forcing a failure.
[   91.745090][ T5763] name failslab, interval 1, probability 0, space 0, times 0
[   91.750125][   T39] audit: type=1400 audit(1721074980.811:275): avc:  denied  { create } for  pid=5762 comm="syz.0.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   91.768991][ T5763] CPU: 1 PID: 5763 Comm: syz.0.147 Not tainted 6.10.0-syzkaller #0
[   91.774220][   T39] audit: type=1400 audit(1721074980.811:276): avc:  denied  { listen } for  pid=5762 comm="syz.0.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   91.788737][ T5763] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.788753][ T5763] Call Trace:
[   91.788762][ T5763]  <TASK>
[   91.788789][ T5763]  dump_stack_lvl+0x16c/0x1f0
[   91.788848][ T5763]  should_fail_ex+0x497/0x5b0
[   91.788871][ T5763]  should_failslab+0x9/0x20
[   91.788898][ T5763]  __kmalloc_node_noprof+0xd5/0x440
[   91.788915][ T5763]  ? alloc_slab_obj_exts+0x41/0xa0
[   91.788940][ T5763]  alloc_slab_obj_exts+0x41/0xa0
[   91.788965][ T5763]  new_slab+0x20f/0x260
[   91.788990][ T5763]  ___slab_alloc+0xdac/0x1870
[   91.789016][ T5763]  ? kvmalloc_node_noprof+0x9d/0x1a0
[   91.789043][ T5763]  ? kvmalloc_node_noprof+0x9d/0x1a0
[   91.789065][ T5763]  ? __slab_alloc.constprop.0+0x56/0xb0
[   91.789091][ T5763]  __slab_alloc.constprop.0+0x56/0xb0
[   91.789118][ T5763]  __kmalloc_node_noprof+0x35c/0x440
[   91.789141][ T5763]  ? kvmalloc_node_noprof+0x9d/0x1a0
[   91.789165][ T5763]  kvmalloc_node_noprof+0x9d/0x1a0
[   91.789189][ T5763]  traverse.part.0.constprop.0+0x392/0x640
[   91.789210][ T5763]  seq_read_iter+0x93a/0x12c0
[   91.789229][ T5763]  proc_reg_read_iter+0x223/0x310
[   91.789250][ T5763]  copy_splice_read+0x615/0xb80
[   91.789268][ T5763]  ? __pfx_copy_splice_read+0x10/0x10
[   91.789284][ T5763]  ? __pfx_register_lock_class+0x10/0x10
[   91.800759][   T39] audit: type=1400 audit(1721074980.811:277): avc:  denied  { accept } for  pid=5762 comm="syz.0.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   91.801255][ T5763]  ? __pfx_copy_splice_read+0x10/0x10
[   91.860334][ T5763]  do_splice_read+0x294/0x380
[   91.862325][ T5763]  splice_direct_to_actor+0x2a4/0xa40
[   91.865143][ T5763]  ? __pfx_direct_splice_actor+0x10/0x10
[   91.867424][ T5763]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   91.869937][ T5763]  ? __pfx___might_resched+0x10/0x10
[   91.872203][ T5763]  ? __pfx_lock_release+0x10/0x10
[   91.874370][ T5763]  do_splice_direct+0x17e/0x250
[   91.876467][ T5763]  ? __pfx_do_splice_direct+0x10/0x10
[   91.878476][ T5763]  ? avc_policy_seqno+0x9/0x20
[   91.880428][ T5763]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   91.882937][ T5763]  do_sendfile+0xb1e/0xe50
[   91.884851][ T5763]  ? __pfx_do_sendfile+0x10/0x10
[   91.886927][ T5763]  ? __might_fault+0xe3/0x190
[   91.888872][ T5763]  __x64_sys_sendfile64+0x155/0x220
[   91.891041][ T5763]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[   91.893416][ T5763]  do_syscall_64+0xcd/0x250
[   91.895323][ T5763]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.897804][ T5763] RIP: 0033:0x7f8070375bd9
[   91.899711][ T5763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.907803][ T5763] RSP: 002b:00007f8071157048 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   91.911335][ T5763] RAX: ffffffffffffffda RBX: 00007f8070503f60 RCX: 00007f8070375bd9
[   91.914552][ T5763] RDX: 00000000200000c0 RSI: 0000000000000004 RDI: 0000000000000008
[   91.917843][ T5763] RBP: 00007f80711570a0 R08: 0000000000000000 R09: 0000000000000000
[   91.921113][ T5763] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000002
[   91.924918][ T5763] R13: 000000000000000b R14: 00007f8070503f60 R15: 00007ffc7ff3b8c8
[   91.927886][ T5763]  </TASK>
[   92.920028][ T5210] Bluetooth: hci4: command tx timeout
[   93.460545][ T5781] block nbd1: shutting down sockets
[   93.848891][ T5778] input: syz1 as /devices/virtual/input/input11
[   94.531470][ T5796] bridge_slave_1: left allmulticast mode
[   94.534071][ T5796] bridge_slave_1: left promiscuous mode
[   94.536779][ T5796] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.570315][ T5799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   94.642375][ T5801] netlink: 20 bytes leftover after parsing attributes in process `syz.0.161'.
[   94.647093][ T5801] netlink: 19 bytes leftover after parsing attributes in process `syz.0.161'.
[   95.015134][ T5203] Bluetooth: hci4: command tx timeout
[   95.041103][ T5812] block nbd1: shutting down sockets
[   95.219320][ T5703] cgroup: fork rejected by pids controller in /syz0
[   95.463575][ T5811] input: syz1 as /devices/virtual/input/input12
[   95.703372][   T63] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.783602][   T63] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.874991][   T63] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.968051][ T5203] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   95.974199][ T5203] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   95.977331][ T5203] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   95.982577][ T5203] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   95.986891][ T5203] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   95.990915][ T5203] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   96.049219][   T63] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.231878][ T5829] ip6t_REJECT: TCP_RESET illegal for non-tcp
[   96.245306][   T39] audit: type=1400 audit(1721074985.311:278): avc:  denied  { ioctl } for  pid=5826 comm="syz.3.169" path="socket:[8945]" dev="sockfs" ino=8945 ioctlcmd=0x89a1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   96.257345][   T63] bridge_slave_0: left allmulticast mode
[   96.259697][   T63] bridge_slave_0: left promiscuous mode
[   96.267595][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.656358][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   96.663708][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   96.671395][   T63] bond0 (unregistering): Released all slaves
[   96.751835][   T39] audit: type=1400 audit(1721074985.821:279): avc:  denied  { search } for  pid=4909 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   96.772317][   T39] audit: type=1400 audit(1721074985.821:280): avc:  denied  { read } for  pid=4909 comm="dhcpcd" name="n71" dev="tmpfs" ino=2304 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   96.792361][   T39] audit: type=1400 audit(1721074985.821:281): avc:  denied  { open } for  pid=4909 comm="dhcpcd" path="/run/udev/data/n71" dev="tmpfs" ino=2304 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   96.813589][   T39] audit: type=1400 audit(1721074985.821:282): avc:  denied  { getattr } for  pid=4909 comm="dhcpcd" path="/run/udev/data/n71" dev="tmpfs" ino=2304 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   96.878367][ T5824] chnl_net:caif_netlink_parms(): no params data found
[   96.882442][   T39] audit: type=1326 audit(1721074985.941:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5826 comm="syz.3.169" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8acb375bd9 code=0x7fc00000
[   96.912923][   T39] audit: type=1400 audit(1721074985.981:284): avc:  denied  { read } for  pid=5841 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=1482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   96.925776][   T39] audit: type=1400 audit(1721074985.981:285): avc:  denied  { open } for  pid=5841 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   96.943956][   T39] audit: type=1400 audit(1721074985.981:286): avc:  denied  { getattr } for  pid=5841 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   96.956226][   T39] audit: type=1400 audit(1721074986.011:287): avc:  denied  { write } for  pid=5840 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1481 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   97.338837][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.343730][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.347074][ T5824] bridge_slave_0: entered allmulticast mode
[   97.351826][ T5824] bridge_slave_0: entered promiscuous mode
[   97.356918][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.356957][ T5853] Zero length message leads to an empty skb
[   97.360895][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.366076][ T5824] bridge_slave_1: entered allmulticast mode
[   97.371059][ T5824] bridge_slave_1: entered promiscuous mode
[   97.468318][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   97.476707][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   97.495406][   T63] hsr_slave_0: left promiscuous mode
[   97.499618][   T63] hsr_slave_1: left promiscuous mode
[   97.510536][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   97.518710][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[   97.541155][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   97.544206][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[   97.549345][ T5859] input: syz1 as /devices/virtual/input/input13
[   97.650239][   T63] veth1_macvtap: left promiscuous mode
[   97.653834][   T63] veth0_macvtap: left promiscuous mode
[   97.661293][   T63] veth1_vlan: left promiscuous mode
[   97.663570][   T63] veth0_vlan: left promiscuous mode
[   97.960070][ T5867] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   98.044040][ T5210] Bluetooth: hci4: command tx timeout
[   98.148133][ T5870] Cannot find add_set index 0 as target
[   98.155110][ T5210] Bluetooth: hci0: Malformed Event: 0x13
[   98.487668][ T5203] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   98.498238][ T5203] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   98.507087][ T5203] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   98.515943][ T5203] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   98.520171][ T5203] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   98.535145][ T5203] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   98.776518][   T63] team0 (unregistering): Port device team_slave_1 removed
[   98.853278][   T63] team0 (unregistering): Port device team_slave_0 removed
[   99.592576][ T5883] 9pnet_fd: Insufficient options for proto=fd
[   99.599011][ T5824] team0: Port device team_slave_0 added
[   99.612070][ T5824] team0: Port device team_slave_1 added
[   99.694080][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.697945][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.714578][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.726068][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.730184][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.743063][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.892915][ T5824] hsr_slave_0: entered promiscuous mode
[   99.897980][ T5824] hsr_slave_1: entered promiscuous mode
[   99.916306][ T5824] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   99.919769][ T5824] Cannot create hsr debugfs directory
[   99.930094][  T826] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  100.016938][ T5886] netlink: 20 bytes leftover after parsing attributes in process `syz.3.179'.
[  100.055078][ T5886] netlink: 20 bytes leftover after parsing attributes in process `syz.3.179'.
[  100.112376][  T826] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  100.120284][ T5203] Bluetooth: hci4: command tx timeout
[  100.120554][  T826] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.129478][  T826] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.145847][  T826] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.150268][  T826] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.153871][  T826] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.170428][  T826] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.177741][  T826] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.189520][  T826] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.198429][  T826] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.203087][  T826] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.206912][  T826] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.212006][  T826] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.220230][  T826] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.224338][  T826] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.243720][  T826] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.249401][  T826] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.258771][  T826] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.260245][ T5878] chnl_net:caif_netlink_parms(): no params data found
[  100.263833][  T826] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.271991][  T826] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.275984][  T826] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.286318][  T826] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.301047][  T826] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  100.305178][  T826] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  100.309715][  T826] usb 6-1: config 0 interface 0 has no altsetting 0
[  100.316229][  T826] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  100.325211][  T826] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  100.328732][  T826] usb 6-1: Product: syz
[  100.334767][  T826] usb 6-1: Manufacturer: syz
[  100.337394][  T826] usb 6-1: SerialNumber: syz
[  100.352181][  T826] usb 6-1: config 0 descriptor??
[  100.365140][  T826] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[  100.560153][ T5878] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.566919][ T5878] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.576105][ T5878] bridge_slave_0: entered allmulticast mode
[  100.586984][ T5878] bridge_slave_0: entered promiscuous mode
[  100.610118][ T5203] Bluetooth: hci5: command tx timeout
[  100.621394][    C1] usb 6-1: yurex_control_callback - control failed: -71
[  100.626025][  T826] usb 6-1: USB disconnect, device number 4
[  100.631344][  T826] yurex 6-1:0.0: USB YUREX #0 now disconnected
[  100.650584][ T5878] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.653672][ T5878] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.657179][ T5878] bridge_slave_1: entered allmulticast mode
[  100.661404][ T5878] bridge_slave_1: entered promiscuous mode
[  100.835496][ T5878] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.841995][ T5883] netlink: 336 bytes leftover after parsing attributes in process `syz.1.178'.
[  100.914402][ T5878] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.982801][ T5878] team0: Port device team_slave_0 added
[  100.993535][ T5878] team0: Port device team_slave_1 added
[  101.087024][ T5878] batman_adv: batadv0: Adding interface: batadv_slave_0
[  101.095447][ T5878] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  101.109659][ T5878] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  101.119864][ T5878] batman_adv: batadv0: Adding interface: batadv_slave_1
[  101.125133][ T5878] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  101.139691][ T5878] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  101.332876][ T5878] hsr_slave_0: entered promiscuous mode
[  101.337474][ T5878] hsr_slave_1: entered promiscuous mode
[  101.341186][ T5878] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  101.345272][ T5878] Cannot create hsr debugfs directory
[  101.487196][ T5824] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  101.519994][ T5824] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  101.528031][ T5824] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  101.540174][ T5824] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  101.763778][ T5878] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.884853][ T5878] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.919863][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.957604][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[  102.014684][ T5203] Bluetooth: hci0: Malformed Event: 0x13
[  102.026178][ T5878] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.085751][  T826] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.089604][  T826] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.095358][  T826] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.098940][  T826] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.161654][ T5878] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.200083][ T5203] Bluetooth: hci4: command tx timeout
[  102.409723][ T5878] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  102.423121][ T5878] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  102.446229][ T5878] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  102.463441][ T5878] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  102.579551][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[  102.626174][ T5878] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.669887][ T5824] veth0_vlan: entered promiscuous mode
[  102.684386][ T5878] 8021q: adding VLAN 0 to HW filter on device team0
[  102.684424][ T5203] Bluetooth: hci5: command tx timeout
[  102.695314][ T5824] veth1_vlan: entered promiscuous mode
[  102.711412][  T977] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.715266][  T977] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.723341][  T977] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.726482][  T977] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.737249][ T5945] input: syz1 as /devices/virtual/input/input14
[  102.800976][ T5824] veth0_macvtap: entered promiscuous mode
[  102.814166][ T5878] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  102.835275][ T5824] veth1_macvtap: entered promiscuous mode
[  102.873963][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  102.879106][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.887096][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  102.894060][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.898588][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  102.905289][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.920172][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  102.924591][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.948863][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[  102.959629][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  102.966812][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.972295][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  102.977134][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.982604][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  102.987313][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.991811][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  102.996518][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.003861][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[  103.012128][ T5824] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.016017][ T5824] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.029969][ T5824] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.033822][ T5824] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.135412][ T5878] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.184180][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.187595][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.238856][ T5819] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.249679][ T5819] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.264764][ T5878] veth0_vlan: entered promiscuous mode
[  103.285951][ T5878] veth1_vlan: entered promiscuous mode
[  103.334307][ T5878] veth0_macvtap: entered promiscuous mode
[  103.340732][ T5878] veth1_macvtap: entered promiscuous mode
[  103.359463][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  103.372607][ T5203] Bluetooth: hci3: Malformed Event: 0x13
[  103.375158][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.381221][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  103.387276][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.395950][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  103.404291][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.408840][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  103.419960][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.424345][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  103.432620][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.450512][ T5878] batman_adv: batadv0: Interface activated: batadv_slave_0
[  103.466517][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  103.478465][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.484305][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  103.489003][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.495176][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  103.499832][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.505422][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  103.511335][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.523167][ T5878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  103.528362][ T5878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  103.528767][ T5962] netlink: 20 bytes leftover after parsing attributes in process `syz.0.187'.
[  103.540668][ T5878] batman_adv: batadv0: Interface activated: batadv_slave_1
[  103.557151][ T5878] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.571324][ T5878] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.575227][ T5878] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.579392][ T5878] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.591143][ T5962] netlink: 20 bytes leftover after parsing attributes in process `syz.0.187'.
[  103.707479][  T170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.714619][  T170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.776499][ T5821] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.789965][ T5821] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.940597][ T5967] bridge_slave_1: left allmulticast mode
[  103.943269][ T5967] bridge_slave_1: left promiscuous mode
[  103.945997][ T5967] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.047626][ T5969] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  104.165666][ T5969] Cannot find add_set index 0 as target
[  104.181030][   T39] kauditd_printk_skb: 6 callbacks suppressed
[  104.181046][   T39] audit: type=1400 audit(1721074993.241:294): avc:  denied  { write } for  pid=5970 comm="syz.1.189" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  104.185821][ T5203] Bluetooth: hci3: unexpected subevent 0x1a length: 10 > 6
[  104.280961][ T5203] Bluetooth: hci4: command tx timeout
[  104.760315][ T5203] Bluetooth: hci5: command tx timeout
[  104.821934][ T5998] usb 1-1: USB disconnect, device number 2
[  104.995369][ T5999] hub 1-0:1.0: USB hub found
[  104.996526][ T6001] input: syz1 as /devices/virtual/input/input15
[  104.997968][ T5999] hub 1-0:1.0: 6 ports detected
[  105.097111][ T5203] Bluetooth: hci5: unexpected event 0x06 length: 10 > 3
[  105.202344][   T39] audit: type=1400 audit(1721074994.271:295): avc:  denied  { watch } for  pid=6003 comm="syz.1.197" path="/58/control" dev="tmpfs" ino=319 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  105.290156][ T1274] usb 1-1: new high-speed USB device number 3 using ehci-pci
[  105.515106][ T1274] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  105.521609][ T1274] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  105.525501][ T1274] usb 1-1: Product: QEMU USB Tablet
[  105.528718][ T1274] usb 1-1: Manufacturer: QEMU
[  105.550246][ T1274] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1
[  105.554014][ T5203] Bluetooth: hci5: Malformed Event: 0x13
[  105.602268][ T1274] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0003/input/input16
[  105.701101][ T1274] hid-generic 0003:0627:0001.0003: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  106.280086][ T5203] Bluetooth: hci3: command tx timeout
[  106.344597][ T6023] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  106.498077][ T6023] Cannot find add_set index 0 as target
[  106.753562][ T6028] ALSA: mixer_oss: invalid OSS volume '@c¥Þ‹4É`¶=ÝR:xÜN¹ý«û,54´¹<ßÒ'
[  107.118453][ T6031] netlink: 'syz.1.205': attribute type 25 has an invalid length.
[  107.122071][ T6031] netlink: 'syz.1.205': attribute type 7 has an invalid length.
[  107.256958][ T6036] bridge_slave_1: left allmulticast mode
[  107.259318][ T6036] bridge_slave_1: left promiscuous mode
[  107.261777][ T6036] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.262228][ T6037] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  107.550027][   T55] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  107.755556][   T55] usb 7-1: too many configurations: 12, using maximum allowed: 8
[  107.787496][   T55] usb 7-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  107.795390][   T55] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.806501][   T55] usb 7-1: config 0 descriptor??
[  108.030375][   T39] audit: type=1400 audit(1721074997.091:296): avc:  denied  { open } for  pid=6041 comm="syz.1.209" path="/dev/ptyq7" dev="devtmpfs" ino=136 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  108.040363][   T39] audit: type=1400 audit(1721074997.091:297): avc:  denied  { ioctl } for  pid=6041 comm="syz.1.209" path="/dev/ptyq7" dev="devtmpfs" ino=136 ioctlcmd=0x4b3a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  108.117276][ T6044] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(9)
[  108.122047][ T6044] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  108.131340][ T6044] vhci_hcd vhci_hcd.0: Device attached
[  108.331644][ T5393] vhci_hcd: vhci_device speed not set
[  108.372470][ T5203] Bluetooth: hci3: unexpected event 0x06 length: 10 > 3
[  108.410146][ T5393] usb 17-2: new full-speed USB device number 2 using vhci_hcd
[  108.665592][   T39] audit: type=1400 audit(1721074997.731:298): avc:  denied  { write } for  pid=6055 comm="syz.1.212" path="socket:[13966]" dev="sockfs" ino=13966 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  109.892603][ T6070] FAULT_INJECTION: forcing a failure.
[  109.892603][ T6070] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  109.899255][ T6070] CPU: 2 PID: 6070 Comm: syz.3.215 Not tainted 6.10.0-syzkaller #0
[  109.902920][ T6070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.907133][ T6070] Call Trace:
[  109.908592][ T6070]  <TASK>
[  109.909874][ T6070]  dump_stack_lvl+0x16c/0x1f0
[  109.912366][ T6070]  should_fail_ex+0x497/0x5b0
[  109.914374][ T6070]  ? fs_reclaim_acquire+0xae/0x160
[  109.916552][ T6070]  __should_fail_alloc_page+0xe7/0x130
[  109.918824][ T6070]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  109.921331][ T6070]  __alloc_pages_noprof+0x194/0x2460
[  109.923537][ T6070]  ? __pfx___lock_acquire+0x10/0x10
[  109.926602][ T6070]  ? hlock_class+0x4e/0x130
[  109.929460][ T6070]  ? __pfx___lock_acquire+0x10/0x10
[  109.931909][ T6070]  ? hlock_class+0x4e/0x130
[  109.933775][ T6070]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  109.936089][ T6070]  ? lock_acquire+0x1b1/0x560
[  109.938002][ T6070]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  109.940440][ T6070]  ? policy_nodemask+0xea/0x4e0
[  109.942645][ T6070]  alloc_pages_mpol_noprof+0x275/0x610
[  109.945008][ T6070]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  109.947831][ T6070]  ? lock_acquire+0x1b1/0x560
[  109.949887][ T6070]  ? __pfx_lock_acquire+0x10/0x10
[  109.952406][ T6070]  ? hlock_class+0x4e/0x130
[  109.954786][ T6070]  pte_alloc_one+0x20/0x370
[  109.957631][ T6070]  __pte_alloc+0x6e/0x3a0
[  109.959598][ T6070]  ? __pfx___pte_alloc+0x10/0x10
[  109.961814][ T6070]  ? find_held_lock+0x2d/0x110
[  109.963890][ T6070]  __handle_mm_fault+0x4883/0x5410
[  109.966059][ T6070]  ? __pfx___handle_mm_fault+0x10/0x10
[  109.968502][ T6070]  ? follow_page_pte+0x3dc/0x1ce0
[  109.970776][ T6070]  ? no_page_table+0xc7/0x230
[  109.972833][ T6070]  handle_mm_fault+0x476/0xa00
[  109.975166][ T6070]  __get_user_pages+0x475/0x15c0
[  109.977421][ T6070]  ? __pfx___get_user_pages+0x10/0x10
[  109.979848][ T6070]  ? down_read_killable+0xcc/0x380
[  109.981918][ T6070]  ? __pfx_down_read_killable+0x10/0x10
[  109.984275][ T6070]  ? __pfx___lock_acquire+0x10/0x10
[  109.986586][ T6070]  __gup_longterm_locked+0x243/0x2790
[  109.989035][ T6070]  ? __pfx_mark_lock+0x10/0x10
[  109.991192][ T6070]  ? find_held_lock+0x2d/0x110
[  109.993316][ T6070]  ? __pfx___gup_longterm_locked+0x10/0x10
[  109.995904][ T6070]  ? gup_fast_fallback+0x846/0x25f0
[  109.997992][ T6070]  ? __pfx_lock_release+0x10/0x10
[  110.000080][ T6070]  ? sanity_check_pinned_pages+0x23/0x11f0
[  110.002592][ T6070]  gup_fast_fallback+0x155b/0x25f0
[  110.004861][ T6070]  ? __pfx_gup_fast_fallback+0x10/0x10
[  110.007253][ T6070]  ? mark_held_locks+0x9f/0xe0
[  110.009321][ T6070]  pin_user_pages_fast+0xa8/0x100
[  110.011515][ T6070]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  110.013868][ T6070]  iov_iter_extract_pages+0x388/0x18a0
[  110.016289][ T6070]  ? nhpoly1305_units+0x2c6/0x3c0
[  110.018492][ T6070]  ? __pfx_iov_iter_extract_pages+0x10/0x10
[  110.021043][ T6070]  ? __pfx_nh_sse2+0x10/0x10
[  110.023061][ T6070]  ? __pfx_nhpoly1305_units+0x10/0x10
[  110.025327][ T6070]  extract_iter_to_sg+0xbd7/0x1950
[  110.027582][ T6070]  ? crypto_nhpoly1305_update_helper+0x166/0x430
[  110.030035][ T6070]  ? sanity_check_pinned_pages+0x372/0x11f0
[  110.032741][ T6070]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  110.034971][ T6070]  ? gup_put_folio+0x71/0x2a0
[  110.036796][ T6070]  ? __pfx_unpin_user_page+0x10/0x10
[  110.038811][ T6070]  ? __pfx___sanitizer_cov_trace_cmp4+0x10/0x10
[  110.041039][ T6070]  hash_sendmsg+0x431/0xf30
[  110.042771][ T6070]  ? security_socket_sendmsg+0x8c/0xc0
[  110.044846][ T6070]  ____sys_sendmsg+0xab5/0xc90
[  110.046469][ T6070]  ? copy_msghdr_from_user+0x10b/0x160
[  110.048960][ T6070]  ? __pfx_____sys_sendmsg+0x10/0x10
[  110.051897][ T6070]  ? __pfx___lock_acquire+0x10/0x10
[  110.054316][ T6070]  ___sys_sendmsg+0x135/0x1e0
[  110.056469][ T6070]  ? __pfx____sys_sendmsg+0x10/0x10
[  110.058701][ T6070]  ? __pfx_lock_release+0x10/0x10
[  110.060881][ T6070]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  110.063428][ T6070]  ? __fget_light+0x173/0x210
[  110.065473][ T6070]  __sys_sendmmsg+0x1a1/0x450
[  110.068018][ T6070]  ? __pfx___sys_sendmmsg+0x10/0x10
[  110.070319][ T6070]  ? vfs_write+0x14d/0x1140
[  110.072392][ T6070]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.075145][ T6070]  ? fput+0x32/0x390
[  110.076910][ T6070]  ? ksys_write+0x1ab/0x260
[  110.078966][ T6070]  ? __pfx_ksys_write+0x10/0x10
[  110.081084][ T6070]  __x64_sys_sendmmsg+0x9c/0x100
[  110.083243][ T6070]  ? lockdep_hardirqs_on+0x7c/0x110
[  110.085470][ T6070]  do_syscall_64+0xcd/0x250
[  110.087448][ T6070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.089790][ T6070] RIP: 0033:0x7f8acb375bd9
[  110.091424][ T6070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.099166][ T6070] RSP: 002b:00007f8acadff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  110.102684][ T6070] RAX: ffffffffffffffda RBX: 00007f8acb504038 RCX: 00007f8acb375bd9
[  110.106064][ T6070] RDX: 0000000000000001 RSI: 0000000020004140 RDI: 0000000000000007
[  110.109430][ T6070] RBP: 00007f8acadff0a0 R08: 0000000000000000 R09: 0000000000000000
[  110.113138][ T6070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.116625][ T6070] R13: 000000000000006e R14: 00007f8acb504038 R15: 00007fff8a7247d8
[  110.120028][ T6070]  </TASK>
[  110.222589][   T39] audit: type=1400 audit(1721074999.281:299): avc:  denied  { setopt } for  pid=6063 comm="syz.0.214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  110.255356][ T5203] Bluetooth: hci3: Malformed Event: 0x13
[  110.890139][ T5241] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  111.070004][ T5241] usb 5-1: Using ep0 maxpacket: 8
[  111.080262][ T5241] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  111.085257][ T5241] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.094846][ T5241] usb 5-1: Product: syz
[  111.097863][ T5241] usb 5-1: Manufacturer: syz
[  111.103511][ T5241] usb 5-1: SerialNumber: syz
[  111.120870][ T5241] usb 5-1: config 0 descriptor??
[  111.350137][ T5241] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  112.232878][   T39] audit: type=1400 audit(1721075001.301:300): avc:  denied  { read write } for  pid=6074 comm="syz.0.218" name="sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  112.253702][ T6075] pim6reg1: entered allmulticast mode
[  112.269644][   T39] audit: type=1400 audit(1721075001.301:301): avc:  denied  { open } for  pid=6074 comm="syz.0.218" path="/dev/sg0" dev="devtmpfs" ino=705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  112.307323][   T39] audit: type=1400 audit(1721075001.301:302): avc:  denied  { ioctl } for  pid=6074 comm="syz.0.218" path="/dev/sg0" dev="devtmpfs" ino=705 ioctlcmd=0x5387 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  112.335340][   T39] audit: type=1400 audit(1721075001.401:303): avc:  denied  { ioctl } for  pid=6074 comm="syz.0.218" path="/dev/nullb0" dev="devtmpfs" ino=691 ioctlcmd=0x125f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  112.388584][ T6089] ALSA: mixer_oss: invalid OSS volume '@c¥Þ‹4É`¶=ÝR:xÜN¹ý«û,54´¹<ßÒ'
[  112.435657][ T6093] 9pnet_fd: Insufficient options for proto=fd
[  112.463801][ T6046] vhci_hcd: connection reset by peer
[  112.470736][   T55] usb 7-1: string descriptor 0 read error: -71
[  112.480070][  T170] vhci_hcd: stop threads
[  112.483028][  T170] vhci_hcd: release socket
[  112.486159][   T55] usb 7-1: USB disconnect, device number 4
[  112.490143][  T170] vhci_hcd: disconnect device
[  112.780023][ T1274] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  112.829755][ T6101] netlink: 20 bytes leftover after parsing attributes in process `syz.2.227'.
[  112.834375][ T6101] netlink: 20 bytes leftover after parsing attributes in process `syz.2.227'.
[  112.970135][ T1274] usb 8-1: too many configurations: 9, using maximum allowed: 8
[  112.989477][ T1274] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  112.994039][ T1274] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  112.998761][ T1274] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.003541][ T1274] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  113.009138][ T1274] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  113.014326][ T1274] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.018525][ T1274] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  113.024841][ T1274] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  113.029619][ T1274] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.035185][ T1274] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  113.038995][ T1274] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  113.043861][ T1274] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.047767][ T1274] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  113.052358][ T1274] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  113.056797][ T1274] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.060400][ T1274] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  113.064146][ T1274] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  113.068353][ T1274] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.072604][ T1274] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  113.076433][ T1274] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  113.081164][ T1274] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.086094][ T1274] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  113.090021][ T1274] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  113.094593][ T1274] usb 8-1: config 0 interface 0 has no altsetting 0
[  113.100483][ T1274] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  113.104291][ T1274] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  113.109065][ T1274] usb 8-1: Product: syz
[  113.111246][ T1274] usb 8-1: Manufacturer: syz
[  113.113592][ T1274] usb 8-1: SerialNumber: syz
[  113.118040][ T1274] usb 8-1: config 0 descriptor??
[  113.125024][ T1274] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0
[  113.402489][    C3] usb 8-1: yurex_control_callback - control failed: -71
[  113.402857][ T6062] usb 8-1: USB disconnect, device number 4
[  113.411806][ T6062] yurex 8-1:0.0: USB YUREX #0 now disconnected
[  113.560513][ T5393] vhci_hcd: vhci_device speed not set
[  113.621092][ T6093] netlink: 336 bytes leftover after parsing attributes in process `syz.3.225'.
[  113.655934][ T5241] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  113.918046][   T56] usb 5-1: USB disconnect, device number 4
[  114.420089][   T56] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  114.610308][   T56] usb 5-1: Using ep0 maxpacket: 8
[  114.614888][   T56] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  114.618667][   T56] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  114.624032][   T56] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  114.628261][   T56] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  114.633014][   T56] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  114.640248][   T56] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  114.645883][   T56] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  114.651075][   T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.660583][   T56] usbtmc 5-1:16.0: probe with driver usbtmc failed with error -22
[  116.973372][ T5241] usb 5-1: USB disconnect, device number 5
[  117.361525][   T39] audit: type=1400 audit(1721075006.431:304): avc:  denied  { create } for  pid=6118 comm="syz.0.232" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  117.394412][   T39] audit: type=1400 audit(1721075006.431:305): avc:  denied  { read } for  pid=6118 comm="syz.0.232" name="ppp" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  117.436554][   T39] audit: type=1400 audit(1721075006.431:306): avc:  denied  { open } for  pid=6118 comm="syz.0.232" path="/dev/ppp" dev="devtmpfs" ino=714 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  117.447243][   T39] audit: type=1400 audit(1721075006.431:307): avc:  denied  { ioctl } for  pid=6118 comm="syz.0.232" path="/dev/ppp" dev="devtmpfs" ino=714 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  117.460187][   T39] audit: type=1400 audit(1721075006.441:308): avc:  denied  { ioctl } for  pid=6118 comm="syz.0.232" path="socket:[13061]" dev="sockfs" ino=13061 ioctlcmd=0x9411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  117.471748][   T39] audit: type=1400 audit(1721075006.441:309): avc:  denied  { connect } for  pid=6118 comm="syz.0.232" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  117.481807][   T39] audit: type=1400 audit(1721075006.441:310): avc:  denied  { read write } for  pid=6118 comm="syz.0.232" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  117.486317][ T6128] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  117.508528][   T39] audit: type=1400 audit(1721075006.441:311): avc:  denied  { open } for  pid=6118 comm="syz.0.232" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  117.526226][   T39] audit: type=1400 audit(1721075006.581:312): avc:  denied  { read write } for  pid=6122 comm="syz.3.235" name="raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  117.550213][   T39] audit: type=1400 audit(1721075006.581:313): avc:  denied  { open } for  pid=6122 comm="syz.3.235" path="/dev/raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  117.705362][ T6123] netlink: 20 bytes leftover after parsing attributes in process `syz.2.234'.
[  117.713347][ T6123] netlink: 20 bytes leftover after parsing attributes in process `syz.2.234'.
[  117.726275][ T6126] netlink: 20 bytes leftover after parsing attributes in process `syz.0.236'.
[  117.755642][ T6126] netlink: 20 bytes leftover after parsing attributes in process `syz.0.236'.
[  117.810091][   T55] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  118.001623][   T55] usb 8-1: too many configurations: 12, using maximum allowed: 8
[  118.059490][   T55] usb 8-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  118.064503][   T55] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.069195][   T55] usb 8-1: config 0 descriptor??
[  118.372864][ T6134] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(9)
[  118.376013][ T6134] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  118.380274][ T6134] vhci_hcd vhci_hcd.0: Device attached
[  118.572888][ T6141] Bluetooth: MGMT ver 1.22
[  118.601022][ T6062] vhci_hcd: vhci_device speed not set
[  118.670514][ T6062] usb 19-2: new full-speed USB device number 2 using vhci_hcd
[  118.736060][ T6143] FAULT_INJECTION: forcing a failure.
[  118.736060][ T6143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.743518][ T6143] CPU: 1 PID: 6143 Comm: syz.2.239 Not tainted 6.10.0-syzkaller #0
[  118.748703][ T6143] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.754536][ T6143] Call Trace:
[  118.756123][ T6143]  <TASK>
[  118.757606][ T6143]  dump_stack_lvl+0x16c/0x1f0
[  118.760058][ T6143]  should_fail_ex+0x497/0x5b0
[  118.763592][ T6143]  _copy_from_iter+0x2a1/0x1140
[  118.765855][ T6143]  ? __pfx__copy_from_iter+0x10/0x10
[  118.768132][ T6143]  ? __virt_addr_valid+0x5e/0x590
[  118.770190][ T6143]  ? __phys_addr_symbol+0x30/0x80
[  118.772371][ T6143]  ? __check_object_size+0x48e/0x720
[  118.774683][ T6143]  hci_sock_sendmsg+0x46d/0x25e0
[  118.776849][ T6143]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  118.779160][ T6143]  sock_write_iter+0x50a/0x5c0
[  118.781511][ T6143]  ? __pfx_sock_write_iter+0x10/0x10
[  118.783726][ T6143]  ? security_file_permission+0x98/0xc0
[  118.786058][ T6143]  vfs_write+0x6b6/0x1140
[  118.787932][ T6143]  ? __pfx_sock_write_iter+0x10/0x10
[  118.790018][  T977] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  118.790173][ T6143]  ? __pfx_vfs_write+0x10/0x10
[  118.796395][ T6143]  ? __fget_files+0x256/0x400
[  118.798544][ T6143]  ? __fget_light+0x173/0x210
[  118.800564][ T6143]  ksys_write+0x1f8/0x260
[  118.802430][ T6143]  ? __pfx_ksys_write+0x10/0x10
[  118.804965][ T6143]  do_syscall_64+0xcd/0x250
[  118.807234][ T6143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.810138][ T6143] RIP: 0033:0x7f5477775bd9
[  118.812256][ T6143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.822392][ T6143] RSP: 002b:00007f547856c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  118.826044][ T6143] RAX: ffffffffffffffda RBX: 00007f5477903f60 RCX: 00007f5477775bd9
[  118.829656][ T6143] RDX: 000000000000000d RSI: 0000000020000080 RDI: 0000000000000019
[  118.833309][ T6143] RBP: 00007f547856c0a0 R08: 0000000000000000 R09: 0000000000000000
[  118.836989][ T6143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.840700][ T6143] R13: 000000000000000b R14: 00007f5477903f60 R15: 00007ffff5ef8948
[  118.844713][ T6143]  </TASK>
[  118.959062][ T6144] ALSA: mixer_oss: invalid OSS volume '@c¥Þ‹4É`¶=ÝR:xÜN¹ý«û,54´¹<ßÒ'
[  118.979984][  T977] usb 6-1: Using ep0 maxpacket: 8
[  118.988237][  T977] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  118.993143][  T977] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.997047][  T977] usb 6-1: Product: syz
[  118.999092][  T977] usb 6-1: Manufacturer: syz
[  119.001325][  T977] usb 6-1: SerialNumber: syz
[  119.017154][  T977] usb 6-1: config 0 descriptor??
[  119.264897][  T977] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  120.142687][ T6139] pim6reg1: entered allmulticast mode
[  120.158791][ T6150] autofs: Unknown parameter 'no9á ‘ýPƒ¹G!8°‰™�…EŸ	'
[  120.201909][ T5203] Bluetooth: Unexpected continuation frame (len 30)
[  120.374546][ T6153] warning: `syz.0.243' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  121.517862][ T6135] vhci_hcd: connection reset by peer
[  121.520499][   T55] usb 8-1: string descriptor 0 read error: -71
[  121.529470][   T55] usb 8-1: USB disconnect, device number 5
[  121.530757][  T170] vhci_hcd: stop threads
[  121.539227][  T170] vhci_hcd: release socket
[  121.547591][  T170] vhci_hcd: disconnect device
[  121.576371][  T977] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  121.672203][ T6164] netlink: 36 bytes leftover after parsing attributes in process `syz.3.247'.
[  121.710073][ T6166] capability: warning: `syz.0.248' uses deprecated v2 capabilities in a way that may be insecure
[  121.761428][ T6168] fuse: Bad value for 'fd'
[  121.780115][ T6169] futex_wake_op: syz.0.248 tries to shift op by -1; fix this program
[  121.892668][   T55] usb 6-1: USB disconnect, device number 5
[  122.191397][ T5203] Bluetooth: hci5: Malformed Event: 0x13
[  122.215119][ T6184] dccp_close: ABORT with 52 bytes unread
[  122.313833][ T6186] autofs: Unknown parameter 'no9á ‘ýPƒ¹G!8°‰™�…EŸ	'
[  122.384683][ T5203] Bluetooth: Unexpected continuation frame (len 30)
[  122.611002][ T6189] netlink: 'syz.0.256': attribute type 1 has an invalid length.
[  123.066456][ T6219] FAULT_INJECTION: forcing a failure.
[  123.066456][ T6219] name fail_futex, interval 1, probability 0, space 0, times 1
[  123.071304][ T6219] CPU: 3 PID: 6219 Comm: syz.2.262 Not tainted 6.10.0-syzkaller #0
[  123.074277][ T6219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.078506][ T6219] Call Trace:
[  123.079940][ T6219]  <TASK>
[  123.080099][   T55] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  123.081189][ T6219]  dump_stack_lvl+0x16c/0x1f0
[  123.086203][ T6219]  should_fail_ex+0x497/0x5b0
[  123.088102][ T6219]  get_futex_key+0x1b1/0x1090
[  123.090189][ T6219]  ? __pfx_get_futex_key+0x10/0x10
[  123.092258][ T6219]  ? kasan_save_track+0x14/0x30
[  123.094356][ T6219]  ? __kasan_kmalloc+0xaa/0xb0
[  123.096398][ T6219]  futex_lock_pi+0x258/0x710
[  123.098334][ T6219]  ? __pfx_futex_lock_pi+0x10/0x10
[  123.100524][ T6219]  ? find_held_lock+0x2d/0x110
[  123.102319][ T6219]  ? __pfx_futex_wake_mark+0x10/0x10
[  123.104609][ T6219]  ? vfs_write+0x14d/0x1140
[  123.106741][ T6219]  do_futex+0x11b/0x350
[  123.108784][ T6219]  ? __pfx_do_futex+0x10/0x10
[  123.111369][ T6219]  __x64_sys_futex+0x1e1/0x4c0
[  123.113388][ T6219]  ? fput+0x32/0x390
[  123.115023][ T6219]  ? __pfx___x64_sys_futex+0x10/0x10
[  123.117240][ T6219]  ? ksys_write+0x1ab/0x260
[  123.119916][ T6219]  ? __pfx_ksys_write+0x10/0x10
[  123.122917][ T6219]  do_syscall_64+0xcd/0x250
[  123.125690][ T6219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.128498][ T6219] RIP: 0033:0x7f5477775bd9
[  123.130491][ T6219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.139112][ T6219] RSP: 002b:00007f547854b048 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  123.142742][ T6219] RAX: ffffffffffffffda RBX: 00007f5477904038 RCX: 00007f5477775bd9
[  123.146431][ T6219] RDX: 0000000000000000 RSI: 0000800000000006 RDI: 000000002000cffc
[  123.149889][ T6219] RBP: 00007f547854b0a0 R08: 0000000000000000 R09: 0000000000000000
[  123.153565][ T6219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.157069][ T6219] R13: 000000000000006e R14: 00007f5477904038 R15: 00007ffff5ef8948
[  123.160629][ T6219]  </TASK>
[  123.251576][ T5203] Bluetooth: hci0: Malformed Event: 0x13
[  123.370046][   T55] usb 5-1: Using ep0 maxpacket: 8
[  123.428880][   T55] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  123.433731][   T55] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.438955][   T55] usb 5-1: Product: syz
[  123.442262][   T55] usb 5-1: Manufacturer: syz
[  123.447587][   T55] usb 5-1: SerialNumber: syz
[  123.456478][   T55] usb 5-1: config 0 descriptor??
[  123.511968][ T5203] Bluetooth: hci3: Malformed Event: 0x13
[  123.695423][   T55] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  123.816692][ T6062] vhci_hcd: vhci_device speed not set
[  124.121444][ T5203] Bluetooth: unknown link type 32
[  124.124566][ T5203] Bluetooth: hci0: connection err: -111
[  124.402839][   T39] kauditd_printk_skb: 16 callbacks suppressed
[  124.402856][   T39] audit: type=1400 audit(1721075013.471:330): avc:  denied  { bind } for  pid=6229 comm="syz.2.267" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.435184][   T39] audit: type=1400 audit(1721075013.491:331): avc:  denied  { connect } for  pid=6229 comm="syz.2.267" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.465498][   T39] audit: type=1400 audit(1721075013.501:332): avc:  denied  { read } for  pid=6229 comm="syz.2.267" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.704007][ T6198] pim6reg1: entered allmulticast mode
[  124.968139][ T6240] netlink: 'syz.3.269': attribute type 10 has an invalid length.
[  124.972928][   T39] audit: type=1400 audit(1721075014.031:333): avc:  denied  { read } for  pid=6235 comm="syz.3.269" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  124.983592][ T6240] bridge0: port 2(team0) entered blocking state
[  125.014397][ T6240] bridge0: port 2(team0) entered disabled state
[  125.017237][ T6240] team0: entered allmulticast mode
[  125.019452][ T6240] team_slave_0: entered allmulticast mode
[  125.062234][   T39] audit: type=1400 audit(1721075014.031:334): avc:  denied  { open } for  pid=6235 comm="syz.3.269" path="/dev/ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  125.082751][   T39] audit: type=1400 audit(1721075014.031:335): avc:  denied  { ioctl } for  pid=6235 comm="syz.3.269" path="/dev/ndctl0" dev="devtmpfs" ino=109 ioctlcmd=0x640a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  125.090122][ T6240] team_slave_1: entered allmulticast mode
[  125.119690][ T6240] team0: entered promiscuous mode
[  125.129320][ T6240] team_slave_0: entered promiscuous mode
[  125.139004][ T6240] team_slave_1: entered promiscuous mode
[  125.144184][ T6240] bridge0: port 2(team0) entered blocking state
[  125.148133][ T6240] bridge0: port 2(team0) entered forwarding state
[  125.229351][ T6243] netlink: 4 bytes leftover after parsing attributes in process `syz.3.271'.
[  125.382666][ T6247] netlink: 185408 bytes leftover after parsing attributes in process `syz.2.270'.
[  126.117337][ T5203] Bluetooth: hci3: Malformed Event: 0x13
[  126.210210][   T55] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  126.620260][  T826] usb 5-1: USB disconnect, device number 6
[  126.775096][ T6265] mmap: syz.2.276 (6265) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  126.788531][ T6262] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  126.804479][ T6265] netlink: 40 bytes leftover after parsing attributes in process `syz.2.276'.
[  126.849808][ T6267] FAULT_INJECTION: forcing a failure.
[  126.849808][ T6267] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  126.858083][ T6267] CPU: 3 PID: 6267 Comm: syz.2.277 Not tainted 6.10.0-syzkaller #0
[  126.861491][ T6267] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.865669][ T6267] Call Trace:
[  126.867137][ T6267]  <TASK>
[  126.868523][ T6267]  dump_stack_lvl+0x16c/0x1f0
[  126.870739][ T6267]  should_fail_ex+0x497/0x5b0
[  126.872609][ T6267]  ? fs_reclaim_acquire+0xae/0x160
[  126.874606][ T6267]  __should_fail_alloc_page+0xe7/0x130
[  126.876672][ T6267]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  126.879018][ T6267]  ? ioctl_standard_iw_point+0x3c6/0xc10
[  126.881404][ T6267]  __alloc_pages_noprof+0x194/0x2460
[  126.883600][ T6267]  ? __lock_acquire+0xc5d/0x3b30
[  126.885746][ T6267]  ? hlock_class+0x4e/0x130
[  126.887576][ T6267]  ? mark_lock+0xb5/0xc60
[  126.889532][ T6267]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  126.892393][ T6267]  ? hlock_class+0x4e/0x130
[  126.894646][ T6267]  ? __lock_acquire+0x14f4/0x3b30
[  126.897045][ T6267]  ? __pfx___lock_acquire+0x10/0x10
[  126.899475][ T6267]  ? hlock_class+0x4e/0x130
[  126.901416][ T6267]  ? ioctl_standard_iw_point+0x3c6/0xc10
[  126.903651][ T6267]  __kmalloc_large_node+0x7f/0x1a0
[  126.905777][ T6267]  ? lock_acquire+0x1b1/0x560
[  126.907903][ T6267]  __kmalloc_noprof.cold+0xc/0x61
[  126.912108][ T6267]  ioctl_standard_iw_point+0x3c6/0xc10
[  126.914756][ T6267]  ? __pfx_cfg80211_wext_giwscan+0x10/0x10
[  126.917213][ T6267]  ? __pfx_ioctl_standard_iw_point+0x10/0x10
[  126.919763][ T6267]  ? __mutex_lock+0x1a6/0x9c0
[  126.921771][ T6267]  ? wext_handle_ioctl+0x155/0x2c0
[  126.924298][ T6267]  ? __pfx___mutex_lock+0x10/0x10
[  126.926959][ T6267]  ? __pfx_cfg80211_wext_giwscan+0x10/0x10
[  126.930009][ T6267]  ioctl_standard_call+0x191/0x210
[  126.932403][ T6267]  ? __pfx_ioctl_private_call+0x10/0x10
[  126.934925][ T6267]  ? __pfx_ioctl_standard_call+0x10/0x10
[  126.938478][ T6267]  ? __pfx_cfg80211_wext_giwscan+0x10/0x10
[  126.941314][ T6267]  wireless_process_ioctl+0x4e3/0x5e0
[  126.943902][ T6267]  wext_handle_ioctl+0x177/0x2c0
[  126.946057][ T6267]  ? __pfx_wext_handle_ioctl+0x10/0x10
[  126.948277][ T6267]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  126.951340][ T6267]  sock_ioctl+0x3ac/0x6c0
[  126.953241][ T6267]  ? __pfx_sock_ioctl+0x10/0x10
[  126.955352][ T6267]  ? selinux_file_ioctl+0x180/0x270
[  126.957695][ T6267]  ? selinux_file_ioctl+0xb4/0x270
[  126.959999][ T6267]  ? __pfx_sock_ioctl+0x10/0x10
[  126.962031][ T6267]  __x64_sys_ioctl+0x193/0x220
[  126.964602][ T6267]  do_syscall_64+0xcd/0x250
[  126.967113][ T6267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.970623][ T6267] RIP: 0033:0x7f5477775bd9
[  126.972659][ T6267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.980984][ T6267] RSP: 002b:00007f547856c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  126.984752][ T6267] RAX: ffffffffffffffda RBX: 00007f5477903f60 RCX: 00007f5477775bd9
[  126.988675][ T6267] RDX: 0000000020000000 RSI: 0000000000008b19 RDI: 0000000000000003
[  126.992363][ T6267] RBP: 00007f547856c0a0 R08: 0000000000000000 R09: 0000000000000000
[  126.995894][ T6267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.999392][ T6267] R13: 000000000000000b R14: 00007f5477903f60 R15: 00007ffff5ef8948
[  127.002885][ T6267]  </TASK>
[  127.110151][ T6262] Cannot find add_set index 0 as target
[  127.234019][ T6279] netlink: 'syz.1.279': attribute type 10 has an invalid length.
[  127.238240][ T6279] bridge0: port 2(team0) entered blocking state
[  127.249385][ T6279] bridge0: port 2(team0) entered disabled state
[  127.254296][ T6279] team0: entered allmulticast mode
[  127.257207][ T6279] team_slave_0: entered allmulticast mode
[  127.265287][ T6279] team_slave_1: entered allmulticast mode
[  127.275959][ T6279] team0: entered promiscuous mode
[  127.278296][ T6279] team_slave_0: entered promiscuous mode
[  127.285683][ T6279] team_slave_1: entered promiscuous mode
[  127.289414][ T6279] bridge0: port 2(team0) entered blocking state
[  127.293439][ T6279] bridge0: port 2(team0) entered forwarding state
[  127.837906][   T39] audit: type=1400 audit(1721075016.901:336): avc:  denied  { mounton } for  pid=6304 comm="syz.0.285" path="/proc/67/task" dev="proc" ino=15383 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  127.857746][ T6305] netlink: 64 bytes leftover after parsing attributes in process `syz.0.285'.
[  128.040556][ T5393] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  128.220305][ T5393] usb 7-1: Using ep0 maxpacket: 8
[  128.229601][ T6311] netlink: 68 bytes leftover after parsing attributes in process `syz.0.287'.
[  128.230552][ T5393] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  128.250011][ T5393] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.254160][ T5393] usb 7-1: Product: syz
[  128.299978][ T5393] usb 7-1: Manufacturer: syz
[  128.302012][ T5393] usb 7-1: SerialNumber: syz
[  128.305991][ T5393] usb 7-1: config 0 descriptor??
[  128.461077][ T5203] Bluetooth: hci0: Malformed Event: 0x13
[  128.493163][    C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  128.555517][ T5393] usb 7-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  129.423856][ T6303] pim6reg1: entered allmulticast mode
[  129.853339][ T6331] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  130.083462][ T6333] Cannot find add_set index 0 as target
[  130.674487][ T6337] netlink: 20 bytes leftover after parsing attributes in process `syz.3.294'.
[  130.681744][ T6337] netlink: 20 bytes leftover after parsing attributes in process `syz.3.294'.
[  130.741446][   T39] audit: type=1400 audit(1721075019.811:337): avc:  denied  { map } for  pid=6340 comm="syz.0.295" path="socket:[14627]" dev="sockfs" ino=14627 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  130.752450][   T39] audit: type=1400 audit(1721075019.811:338): avc:  denied  { read } for  pid=6340 comm="syz.0.295" path="socket:[14627]" dev="sockfs" ino=14627 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  130.926037][ T5393] dvb_usb_rtl28xxu 7-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  131.216884][ T5244] usb 7-1: USB disconnect, device number 5
[  131.507855][ T6349] input: syz1 as /devices/virtual/input/input17
[  131.585133][ T6352] netlink: 36 bytes leftover after parsing attributes in process `syz.2.299'.
[  131.855888][ T5203] Bluetooth: hci3: Malformed Event: 0x13
[  132.189216][   T39] audit: type=1400 audit(1721075021.251:339): avc:  denied  { shutdown } for  pid=6358 comm="syz.0.302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  132.415684][ T6362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  132.568040][ T6362] Cannot find add_set index 0 as target
[  132.800079][ T5393] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  132.980106][ T5393] usb 7-1: Using ep0 maxpacket: 32
[  132.992476][ T5393] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  132.995874][ T5393] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  133.005693][ T5393] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  133.009544][ T5393] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.019997][ T5393] usb 7-1: Product: syz
[  133.021922][ T5393] usb 7-1: Manufacturer: syz
[  133.024022][ T5393] usb 7-1: SerialNumber: syz
[  133.283636][ T5393] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  133.297941][ T6371] netlink: 185408 bytes leftover after parsing attributes in process `syz.0.305'.
[  133.490782][   T39] audit: type=1400 audit(1721075022.561:340): avc:  denied  { read write } for  pid=6363 comm="syz.2.304" name="lp0" dev="devtmpfs" ino=2481 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  133.492855][ T6364] FAULT_INJECTION: forcing a failure.
[  133.492855][ T6364] name failslab, interval 1, probability 0, space 0, times 0
[  133.506985][ T6364] CPU: 3 PID: 6364 Comm: syz.2.304 Not tainted 6.10.0-syzkaller #0
[  133.510051][   T39] audit: type=1400 audit(1721075022.561:341): avc:  denied  { open } for  pid=6363 comm="syz.2.304" path="/dev/usb/lp0" dev="devtmpfs" ino=2481 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  133.510469][ T6364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.525614][ T6364] Call Trace:
[  133.527183][ T6364]  <TASK>
[  133.528511][ T6364]  dump_stack_lvl+0x116/0x1f0
[  133.530616][ T6364]  should_fail_ex+0x497/0x5b0
[  133.532657][ T6364]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  133.535025][ T6364]  should_failslab+0x9/0x20
[  133.537042][ T6364]  __kmalloc_noprof+0xcf/0x410
[  133.539162][ T6364]  raw_event_queue_add+0x82/0x220
[  133.541370][ T6364]  ? __pfx_gadget_suspend+0x10/0x10
[  133.543463][ T6364]  gadget_suspend+0x5a/0x130
[  133.545455][ T6364]  ? __pfx_gadget_suspend+0x10/0x10
[  133.547494][ T6364]  set_link_state+0xa23/0xee0
[  133.549331][ T6364]  dummy_pullup+0x11f/0x270
[  133.551332][ T6364]  ? __pfx_dummy_pullup+0x10/0x10
[  133.553551][ T6364]  usb_gadget_disconnect_locked+0x13f/0x4e0
[  133.555985][ T6364]  gadget_unbind_driver+0xd7/0x4e0
[  133.558231][ T6364]  ? kernfs_remove_by_name_ns+0xe8/0x130
[  133.560741][ T6364]  ? __pfx_gadget_unbind_driver+0x10/0x10
[  133.563161][ T6364]  device_remove+0xc8/0x170
[  133.565110][ T6364]  device_release_driver_internal+0x44a/0x610
[  133.567830][ T6364]  driver_detach+0xd8/0x1b0
[  133.569851][ T6364]  ? __pfx_raw_release+0x10/0x10
[  133.572042][ T6364]  bus_remove_driver+0x13b/0x2c0
[  133.574038][ T6364]  driver_unregister+0x76/0xb0
[  133.575955][ T6364]  usb_gadget_unregister_driver+0x49/0x70
[  133.578402][ T6364]  raw_release+0x1a9/0x2f0
[  133.580398][ T6364]  __fput+0x408/0xbb0
[  133.581931][ T6364]  task_work_run+0x14e/0x250
[  133.583534][ T6364]  ? __pfx_task_work_run+0x10/0x10
[  133.585218][ T6364]  ? ksys_write+0x1ab/0x260
[  133.586996][ T6364]  ? __pfx_ksys_write+0x10/0x10
[  133.588913][ T6364]  syscall_exit_to_user_mode+0x275/0x2a0
[  133.591389][ T6364]  do_syscall_64+0xda/0x250
[  133.593066][ T6364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.595240][ T6364] RIP: 0033:0x7f5477775bd9
[  133.596845][ T6364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.604346][ T6364] RSP: 002b:00007f547856c048 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  133.607457][ T6364] RAX: 0000000000000000 RBX: 00007f5477903f60 RCX: 00007f5477775bd9
[  133.610382][ T6364] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000003
[  133.612900][ T6364] RBP: 00007f547856c0a0 R08: 0000000000000000 R09: 0000000000000000
[  133.615638][ T6364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.618342][ T6364] R13: 000000000000000b R14: 00007f5477903f60 R15: 00007ffff5ef8948
[  133.621491][ T6364]  </TASK>
[  133.622787][ T6364] raw-gadget.0 gadget.2: failed to queue suspend event
[  133.669229][   T35] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  133.754503][ T5244] usb 7-1: USB disconnect, device number 6
[  133.759303][ T5244] usblp0: removed
[  133.880219][   T35] usb 6-1: Using ep0 maxpacket: 8
[  133.916487][   T35] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  133.921299][   T35] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.925539][   T35] usb 6-1: Product: syz
[  133.927447][   T35] usb 6-1: Manufacturer: syz
[  133.929490][   T35] usb 6-1: SerialNumber: syz
[  133.943102][   T35] usb 6-1: config 0 descriptor??
[  134.189026][   T35] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  134.377290][ T6382] FAULT_INJECTION: forcing a failure.
[  134.377290][ T6382] name failslab, interval 1, probability 0, space 0, times 0
[  134.407973][ T6382] CPU: 2 PID: 6382 Comm: syz.0.309 Not tainted 6.10.0-syzkaller #0
[  134.425632][ T6382] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.430222][ T6382] Call Trace:
[  134.431553][ T6382]  <TASK>
[  134.432714][ T6382]  dump_stack_lvl+0x16c/0x1f0
[  134.434583][ T6382]  should_fail_ex+0x497/0x5b0
[  134.438599][ T6382]  should_failslab+0x9/0x20
[  134.441112][ T6382]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  134.443996][ T6382]  ? skb_clone+0x190/0x3f0
[  134.446393][ T6382]  skb_clone+0x190/0x3f0
[  134.449340][ T6382]  netlink_deliver_tap+0xab3/0xd90
[  134.452055][ T6382]  netlink_unicast+0x604/0x820
[  134.454623][ T6382]  ? __pfx_netlink_unicast+0x10/0x10
[  134.457420][ T6382]  netlink_sendmsg+0x8b8/0xd70
[  134.459982][ T6382]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.462727][ T6382]  ? __import_iovec+0x1fd/0x6e0
[  134.465191][ T6382]  ____sys_sendmsg+0xab5/0xc90
[  134.467522][ T6382]  ? copy_msghdr_from_user+0x10b/0x160
[  134.470172][ T6382]  ? __pfx_____sys_sendmsg+0x10/0x10
[  134.473002][ T6382]  ? find_held_lock+0x2d/0x110
[  134.475327][ T6382]  ? __pfx___lock_acquire+0x10/0x10
[  134.477800][ T6382]  ___sys_sendmsg+0x135/0x1e0
[  134.479730][ T6382]  ? __pfx____sys_sendmsg+0x10/0x10
[  134.482179][ T6382]  ? ksys_write+0x21c/0x260
[  134.484349][ T6382]  ? __fget_light+0x173/0x210
[  134.487089][ T6382]  __sys_sendmsg+0x117/0x1f0
[  134.489027][ T6382]  ? __pfx___sys_sendmsg+0x10/0x10
[  134.491099][ T6382]  do_syscall_64+0xcd/0x250
[  134.494397][ T6382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.497540][ T6382] RIP: 0033:0x7fad9bb75bd9
[  134.499679][ T6382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.507465][ T6382] RSP: 002b:00007fad9c9ac048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.511148][ T6382] RAX: ffffffffffffffda RBX: 00007fad9bd03f60 RCX: 00007fad9bb75bd9
[  134.514420][ T6382] RDX: 0000000000000000 RSI: 0000000020000c80 RDI: 0000000000000003
[  134.517442][ T6382] RBP: 00007fad9c9ac0a0 R08: 0000000000000000 R09: 0000000000000000
[  134.520458][ T6382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.523526][ T6382] R13: 000000000000000b R14: 00007fad9bd03f60 R15: 00007ffc5f2d8778
[  134.526759][ T6382]  </TASK>
[  134.755548][ T5203] Bluetooth: hci4: Malformed Event: 0x13
[  134.784017][ T5203] Bluetooth: hci0: Malformed Event: 0x13
[  135.045553][ T6391] netlink: 36 bytes leftover after parsing attributes in process `syz.2.312'.
[  135.093794][ T6373] pim6reg1: entered allmulticast mode
[  135.352398][ T6394] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.877284][   T39] audit: type=1400 audit(1721075024.941:342): avc:  denied  { create } for  pid=6401 comm="syz.2.316" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  136.444991][   T35] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  136.872693][   T56] usb 6-1: USB disconnect, device number 6
[  136.926992][   T39] audit: type=1400 audit(1721075025.991:343): avc:  denied  { block_suspend } for  pid=6420 comm="syz.1.322" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  137.080551][ T6428] netlink: 'syz.3.325': attribute type 1 has an invalid length.
[  137.100736][ T6430] netlink: 36 bytes leftover after parsing attributes in process `syz.0.324'.
[  137.373097][    C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  137.831407][   T39] audit: type=1400 audit(1721075026.901:344): avc:  denied  { watch_reads } for  pid=6443 comm="syz.3.328" path="/proc/293" dev="proc" ino=16531 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  137.942755][   T39] audit: type=1400 audit(1721075027.001:345): avc:  denied  { mount } for  pid=6450 comm="syz.0.330" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  137.948986][ T6451] =======================================================
[  137.948986][ T6451] WARNING: The mand mount option has been deprecated and
[  137.948986][ T6451]          and is ignored by this kernel. Remove the mand
[  137.948986][ T6451]          option from the mount to silence this warning.
[  137.948986][ T6451] =======================================================
[  137.979412][   T39] audit: type=1400 audit(1721075027.011:346): avc:  denied  { mounton } for  pid=6450 comm="syz.0.330" path="/39/file0/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1
[  138.118431][   T39] audit: type=1400 audit(1721075027.181:347): avc:  denied  { create } for  pid=6450 comm="syz.0.330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  138.240073][   T39] audit: type=1400 audit(1721075027.191:348): avc:  denied  { write } for  pid=6450 comm="syz.0.330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  138.261173][   T39] audit: type=1400 audit(1721075027.191:349): avc:  denied  { setopt } for  pid=6450 comm="syz.0.330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  138.290973][   T39] audit: type=1400 audit(1721075027.351:350): avc:  denied  { unmount } for  pid=5824 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  138.700200][   T56] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  138.763110][ T1358] ieee802154 phy0 wpan0: encryption failed: -22
[  138.765681][ T1358] ieee802154 phy1 wpan1: encryption failed: -22
[  138.803567][   T39] audit: type=1400 audit(1721075027.871:351): avc:  denied  { execute } for  pid=6474 comm="syz-executor" name="syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  138.829296][ T5822] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.900049][   T56] usb 8-1: Using ep0 maxpacket: 8
[  138.904488][   T56] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  138.908423][   T56] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  138.913269][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  138.918524][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  138.929548][   T56] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  138.940013][   T56] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  138.944046][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.952292][ T5822] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.032136][ T5822] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.071047][ T5210] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  139.076602][ T5210] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  139.080448][ T5210] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  139.095507][ T5210] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  139.100839][ T5210] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  139.104834][ T5210] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  139.142503][ T5822] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.162372][   T56] usb 8-1: usb_control_msg returned -32
[  139.164971][   T56] usbtmc 8-1:16.0: can't read capabilities
[  139.173874][   T56] usb 8-1: USB disconnect, device number 6
[  139.478465][ T5822] bridge_slave_0: left allmulticast mode
[  139.490065][ T5822] bridge_slave_0: left promiscuous mode
[  139.501871][ T5822] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.134999][ T5822] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  140.137592][ T6503] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  140.183552][ T5822] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  140.191693][ T5822] bond0 (unregistering): Released all slaves
[  140.440266][ T1274] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  140.493100][ T6482] chnl_net:caif_netlink_parms(): no params data found
[  140.660718][ T1274] usb 7-1: too many configurations: 12, using maximum allowed: 8
[  140.797968][ T1274] usb 7-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  140.801942][ T1274] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.807421][ T1274] usb 7-1: config 0 descriptor??
[  141.120290][ T6520] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(9)
[  141.123138][ T6520] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  141.130727][ T6520] vhci_hcd vhci_hcd.0: Device attached
[  141.180626][ T5203] Bluetooth: hci4: command tx timeout
[  141.330135][ T5244] vhci_hcd: vhci_device speed not set
[  141.400599][ T5244] usb 17-2: new full-speed USB device number 3 using vhci_hcd
[  141.574180][ T6482] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.577696][ T6482] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.581568][ T6482] bridge_slave_0: entered allmulticast mode
[  141.594015][ T6482] bridge_slave_0: entered promiscuous mode
[  141.608895][ T6482] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.617749][ T6482] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.621266][ T6482] bridge_slave_1: entered allmulticast mode
[  141.642179][ T6482] bridge_slave_1: entered promiscuous mode
[  141.760578][ T5822] hsr_slave_0: left promiscuous mode
[  141.792644][ T5822] hsr_slave_1: left promiscuous mode
[  141.812377][ T5822] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.816126][ T5822] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.840867][ T5822] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.844817][ T5822] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.926607][ T5822] veth1_macvtap: left promiscuous mode
[  141.929520][ T5822] veth0_macvtap: left promiscuous mode
[  141.933244][ T5822] veth1_vlan: left promiscuous mode
[  141.935923][ T5822] veth0_vlan: left promiscuous mode
[  142.797695][ T6543] xt_l2tp: v2 doesn't support IP mode
[  143.250053][ T5203] Bluetooth: hci4: command tx timeout
[  143.310496][ T5822] team0 (unregistering): Port device team_slave_1 removed
[  143.495565][ T5822] team0 (unregistering): Port device team_slave_0 removed
[  144.649272][ T6482] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  144.681869][ T6482] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  144.752237][ T6550] FAULT_INJECTION: forcing a failure.
[  144.752237][ T6550] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.770041][ T6550] CPU: 0 PID: 6550 Comm: syz.3.353 Not tainted 6.10.0-syzkaller #0
[  144.773528][ T6550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.778078][ T6550] Call Trace:
[  144.779709][ T6550]  <TASK>
[  144.780964][ T6550]  dump_stack_lvl+0x16c/0x1f0
[  144.782718][ T6550]  should_fail_ex+0x497/0x5b0
[  144.784123][ T6550]  _copy_to_user+0x30/0xc0
[  144.786437][ T6550]  simple_read_from_buffer+0xd0/0x160
[  144.788730][ T6550]  proc_fail_nth_read+0x1b0/0x290
[  144.791170][ T6550]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  144.793648][ T6550]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  144.795937][ T6550]  vfs_read+0x1d4/0xbd0
[  144.797742][ T6550]  ? __fdget_pos+0xeb/0x180
[  144.800298][ T6550]  ? __pfx_vfs_read+0x10/0x10
[  144.803202][ T6550]  ? __pfx___mutex_lock+0x10/0x10
[  144.805829][ T6550]  ? __fget_files+0x256/0x400
[  144.807934][ T6550]  ksys_read+0x12f/0x260
[  144.809809][ T6550]  ? __pfx_ksys_read+0x10/0x10
[  144.812185][ T6550]  do_syscall_64+0xcd/0x250
[  144.814163][ T6550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.816693][ T6550] RIP: 0033:0x7f8acb3746bc
[  144.818777][ T6550] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  144.827155][ T6550] RSP: 002b:00007f8acc066040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  144.831151][ T6550] RAX: ffffffffffffffda RBX: 00007f8acb503f60 RCX: 00007f8acb3746bc
[  144.834942][ T6550] RDX: 000000000000000f RSI: 00007f8acc0660b0 RDI: 0000000000000004
[  144.838428][ T6550] RBP: 00007f8acc0660a0 R08: 0000000000000000 R09: 0000000000000000
[  144.841822][ T6550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.845275][ T6550] R13: 000000000000000b R14: 00007f8acb503f60 R15: 00007fff8a7247d8
[  144.848994][ T6550]  </TASK>
[  144.923539][ T6482] team0: Port device team_slave_0 added
[  144.943504][ T6482] team0: Port device team_slave_1 added
[  145.058144][ T6559] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  145.091062][ T6482] batman_adv: batadv0: Adding interface: batadv_slave_0
[  145.094271][ T6482] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.129609][ T6482] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  145.150704][ T6482] batman_adv: batadv0: Adding interface: batadv_slave_1
[  145.154109][ T6482] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.189975][ T6482] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.318986][ T6482] hsr_slave_0: entered promiscuous mode
[  145.326283][ T6482] hsr_slave_1: entered promiscuous mode
[  145.330002][ T5203] Bluetooth: hci4: command tx timeout
[  145.342393][ T6482] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  145.346018][ T6482] Cannot create hsr debugfs directory
[  145.550131][   T55] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  145.791660][   T55] usb 8-1: too many configurations: 12, using maximum allowed: 8
[  145.856430][   T55] usb 8-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  145.880184][   T55] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.888549][ T6522] vhci_hcd: connection reset by peer
[  145.895565][ T5817] vhci_hcd: stop threads
[  145.897334][ T5817] vhci_hcd: release socket
[  145.899656][ T5817] vhci_hcd: disconnect device
[  145.903969][ T1274] usb 7-1: string descriptor 0 read error: -32
[  145.911125][ T1274] usb 7-1: USB disconnect, device number 7
[  145.926132][   T55] usb 8-1: config 0 descriptor??
[  146.258758][ T6577] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(9)
[  146.261638][ T6577] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  146.267408][ T6577] vhci_hcd vhci_hcd.0: Device attached
[  146.417625][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  146.417640][   T39] audit: type=1400 audit(1721075035.481:357): avc:  denied  { setrlimit } for  pid=6583 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1
[  146.472947][ T5393] vhci_hcd: vhci_device speed not set
[  146.520533][ T5244] vhci_hcd: vhci_device speed not set
[  146.555871][ T5393] usb 19-2: new full-speed USB device number 3 using vhci_hcd
[  146.557384][ T6587] netlink: 4 bytes leftover after parsing attributes in process `syz.1.358'.
[  146.847551][ T6482] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  146.862391][ T6482] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  146.883253][ T6482] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  146.890098][ T6482] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  147.199259][ T6482] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.292558][ T6482] 8021q: adding VLAN 0 to HW filter on device team0
[  147.313587][  T826] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.317075][  T826] bridge0: port 1(bridge_slave_0) entered forwarding state
[  147.345234][   T56] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.348327][   T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[  147.410465][ T5203] Bluetooth: hci4: command tx timeout
[  147.437688][ T6482] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  148.295468][ T6482] 8021q: adding VLAN 0 to HW filter on device batadv0
[  148.386178][ T6482] veth0_vlan: entered promiscuous mode
[  148.422747][ T6482] veth1_vlan: entered promiscuous mode
[  148.483222][ T6614] netlink: 'syz.1.361': attribute type 1 has an invalid length.
[  148.487449][ T6614] netlink: 'syz.1.361': attribute type 2 has an invalid length.
[  148.498029][ T6482] veth0_macvtap: entered promiscuous mode
[  148.556256][ T6482] veth1_macvtap: entered promiscuous mode
[  148.631546][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.640095][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.644720][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.649524][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.659978][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.665349][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.671803][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.677315][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.686357][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.691146][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.699884][ T6482] batman_adv: batadv0: Interface activated: batadv_slave_0
[  148.729669][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.735461][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.741367][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.746687][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.752146][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.756517][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.760743][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.765956][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.770335][ T6482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.774944][ T6482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.797332][ T6482] batman_adv: batadv0: Interface activated: batadv_slave_1
[  148.811467][ T6482] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.815377][ T6482] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.819149][ T6482] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.825154][ T6482] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.996234][ T6627] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  149.069542][ T5817] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.075564][  T170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.078620][   T39] audit: type=1400 audit(1721075038.151:358): avc:  denied  { create } for  pid=6620 comm="syz.1.362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  149.087630][ T5817] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.092216][  T170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.169410][  T170] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.174147][  T170] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.282375][ T6634] netlink: 32 bytes leftover after parsing attributes in process `syz.1.364'.
[  149.322257][ T6638] netlink: 8 bytes leftover after parsing attributes in process `syz.0.339'.
[  149.331299][ T6062] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  149.551694][ T6062] usb 7-1: too many configurations: 12, using maximum allowed: 8
[  149.583970][ T6580] vhci_hcd: connection reset by peer
[  149.587473][   T55] usb 8-1: string descriptor 0 read error: -71
[  149.590009][ T5821] vhci_hcd: stop threads
[  149.597995][ T5821] vhci_hcd: release socket
[  149.620277][   T55] usb 8-1: USB disconnect, device number 7
[  149.624244][ T5821] vhci_hcd: disconnect device
[  149.654913][ T6062] usb 7-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  149.665490][ T6062] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.672141][ T6062] usb 7-1: config 0 descriptor??
[  149.965768][ T6665] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(9)
[  149.968613][ T6665] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  149.975182][ T6665] vhci_hcd vhci_hcd.0: Device attached
[  150.170047][ T5244] vhci_hcd: vhci_device speed not set
[  150.240008][ T5244] usb 17-2: new full-speed USB device number 4 using vhci_hcd
[  150.661398][ T6677] netlink: 4 bytes leftover after parsing attributes in process `syz.0.372'.
[  150.668302][ T6677] vcan0: entered promiscuous mode
[  150.674671][ T6677] vcan0: entered allmulticast mode
[  150.759153][   T39] audit: type=1400 audit(1721075039.821:359): avc:  denied  { create } for  pid=6680 comm="syz.0.373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  150.790035][   T39] audit: type=1400 audit(1721075039.821:360): avc:  denied  { ioctl } for  pid=6680 comm="syz.0.373" path="socket:[18468]" dev="sockfs" ino=18468 ioctlcmd=0x89e9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  150.802801][ T6680] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  151.511588][ T6688] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=6688 comm=syz.0.374
[  151.517292][   T39] audit: type=1400 audit(1721075040.581:361): avc:  denied  { nlmsg_read } for  pid=6687 comm="syz.0.374" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  151.534368][ T6688] netlink: 'syz.0.374': attribute type 1 has an invalid length.
[  151.730447][ T5393] vhci_hcd: vhci_device speed not set
[  151.861858][   T39] audit: type=1400 audit(1721075040.931:362): avc:  denied  { mount } for  pid=6689 comm="syz.1.376" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  151.870011][ T6692] capability: warning: `syz.1.376' uses 32-bit capabilities (legacy support in use)
[  151.889623][   T39] audit: type=1400 audit(1721075040.951:363): avc:  denied  { map } for  pid=6689 comm="syz.1.376" path="/dev/video3" dev="devtmpfs" ino=880 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  152.389466][ T5210] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  152.396207][ T5210] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  152.402485][ T5210] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  152.408420][ T5210] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  152.413594][ T5210] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  152.417953][ T5210] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  152.766042][ T6702] chnl_net:caif_netlink_parms(): no params data found
[  153.065492][ T6702] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.068918][ T6702] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.073692][ T6702] bridge_slave_0: entered allmulticast mode
[  153.077908][ T6702] bridge_slave_0: entered promiscuous mode
[  153.084524][ T6711] bridge_slave_1: left allmulticast mode
[  153.087372][ T6711] bridge_slave_1: left promiscuous mode
[  153.110225][ T6711] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.135482][ T6702] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.138877][ T6702] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.146806][ T6702] bridge_slave_1: entered allmulticast mode
[  153.151760][ T6702] bridge_slave_1: entered promiscuous mode
[  153.239646][ T6702] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.247472][ T6702] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.367515][ T6702] team0: Port device team_slave_0 added
[  153.380836][ T6714] team0: Port device virt_wifi0 added
[  153.391518][ T6702] team0: Port device team_slave_1 added
[  153.561700][ T5210] Bluetooth: hci4: Malformed Event: 0x13
[  153.565262][ T6702] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.568342][ T6702] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.580829][ T6702] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.590125][ T6702] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.593735][ T6702] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.605154][ T6702] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.713575][ T6702] hsr_slave_0: entered promiscuous mode
[  153.717747][ T6702] hsr_slave_1: entered promiscuous mode
[  153.724902][ T6702] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  153.728830][ T6702] Cannot create hsr debugfs directory
[  154.056234][ T6702] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.099056][ T6666] vhci_hcd: connection reset by peer
[  154.102436][   T45] vhci_hcd: stop threads
[  154.104366][   T45] vhci_hcd: release socket
[  154.111493][   T45] vhci_hcd: disconnect device
[  154.118396][ T6062] usb 7-1: string descriptor 0 read error: -71
[  154.148575][ T6062] usb 7-1: USB disconnect, device number 8
[  154.174918][ T6719] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  154.177851][ T6719] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  154.182883][ T6719] vhci_hcd vhci_hcd.0: Device attached
[  154.194785][   T39] audit: type=1400 audit(1721075043.261:364): avc:  denied  { connect } for  pid=6718 comm="syz.2.383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  154.201979][ T6720] vhci_hcd: cannot find a urb of seqnum 3 max seqnum 3
[  154.212414][ T6702] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.221145][ T5817] vhci_hcd: stop threads
[  154.224251][ T5817] vhci_hcd: release socket
[  154.226648][ T5817] vhci_hcd: disconnect device
[  154.341570][   T39] audit: type=1400 audit(1721075043.411:365): avc:  denied  { read } for  pid=6725 comm="syz.0.384" dev="sockfs" ino=17903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  154.342098][ T6728] 9pnet_fd: Insufficient options for proto=fd
[  154.360172][ T6702] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.364792][ T6728] input: syz0 as /devices/virtual/input/input18
[  154.467756][ T6702] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.509966][   T39] audit: type=1400 audit(1721075043.571:366): avc:  denied  { lock } for  pid=6736 comm="syz.0.386" path="socket:[18528]" dev="sockfs" ino=18528 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  154.530862][ T5210] Bluetooth: hci3: command tx timeout
[  154.617522][ T6702] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  154.644239][ T6702] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  154.655317][ T6702] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  154.664632][ T6702] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  154.749211][ T6702] 8021q: adding VLAN 0 to HW filter on device bond0
[  154.768684][ T6702] 8021q: adding VLAN 0 to HW filter on device team0
[  154.782166][ T6062] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.785821][ T6062] bridge0: port 1(bridge_slave_0) entered forwarding state
[  154.803096][ T6062] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.807069][ T6062] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.062620][ T6772] netlink: 4 bytes leftover after parsing attributes in process `syz.3.390'.
[  155.074656][ T6702] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.154706][ T6702] veth0_vlan: entered promiscuous mode
[  155.177674][ T6702] veth1_vlan: entered promiscuous mode
[  155.212420][ T6702] veth0_macvtap: entered promiscuous mode
[  155.221463][ T6702] veth1_macvtap: entered promiscuous mode
[  155.239117][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.247802][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.256959][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.276526][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.283129][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.287768][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.294264][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.299609][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.306205][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.312192][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.316529][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.322713][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.333417][ T6702] batman_adv: batadv0: Interface activated: batadv_slave_0
[  155.350208][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.361833][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.366074][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.381831][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.386142][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.391504][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.396422][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.401853][ T5244] vhci_hcd: vhci_device speed not set
[  155.405241][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.409567][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.414354][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.418986][ T6702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.423334][ T6702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.428461][ T5210] Bluetooth: hci0: Malformed Event: 0x13
[  155.432116][ T6702] batman_adv: batadv0: Interface activated: batadv_slave_1
[  155.441063][ T6702] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.444937][ T6702] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.448997][ T6702] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.453011][ T6702] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.475245][ T5210] Bluetooth: hci4: Malformed Event: 0x13
[  155.561855][ T5210] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  155.566082][ T5210] Bluetooth: hci4: Injecting HCI hardware error event
[  155.571958][ T5210] Bluetooth: hci4: hardware error 0x00
[  155.577012][ T5822] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.582962][ T5822] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.624222][ T5822] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.628321][ T5822] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.370303][   T39] audit: type=1326 audit(1721075045.431:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6818 comm="syz.0.398" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f775a375bd9 code=0x0
[  156.436449][ T6823] input: syz1 as /devices/virtual/input/input19
[  156.610160][ T5203] Bluetooth: hci3: command tx timeout
[  156.975992][    C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  157.057043][ T6836] bridge_slave_1: left allmulticast mode
[  157.059503][ T6836] bridge_slave_1: left promiscuous mode
[  157.062943][ T6836] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.170693][ T6839] netlink: 16 bytes leftover after parsing attributes in process `syz.2.401'.
[  157.183915][   T39] audit: type=1400 audit(1721075046.251:368): avc:  denied  { write } for  pid=6838 comm="syz.2.401" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  157.196438][ T6839] team0: Port device virt_wifi0 added
[  157.206474][   T39] audit: type=1400 audit(1721075046.251:369): avc:  denied  { nlmsg_read } for  pid=6838 comm="syz.2.401" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  157.343409][ T5203] Bluetooth: hci3: Malformed Event: 0x13
[  157.640112][ T5210] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  157.642468][ T6858] FAULT_INJECTION: forcing a failure.
[  157.642468][ T6858] name failslab, interval 1, probability 0, space 0, times 0
[  157.662424][ T6858] CPU: 1 PID: 6858 Comm: syz.3.408 Not tainted 6.10.0-syzkaller #0
[  157.665953][ T6858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  157.670645][ T6858] Call Trace:
[  157.672328][ T6858]  <TASK>
[  157.673692][ T6858]  dump_stack_lvl+0x16c/0x1f0
[  157.675808][ T6858]  should_fail_ex+0x497/0x5b0
[  157.677875][ T6858]  should_failslab+0x9/0x20
[  157.679938][ T6858]  __kmalloc_noprof+0xcf/0x410
[  157.682033][ T6858]  ? bitmap_find_next_zero_area_off+0xb0/0xd0
[  157.684927][ T6858]  __vb2_queue_alloc+0x237/0x1220
[  157.687189][ T6858]  ? vid_out_queue_setup+0x894/0xba0
[  157.689551][ T6858]  vb2_core_reqbufs+0xa73/0xfb0
[  157.691802][ T6858]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  157.694236][ T6858]  __vb2_init_fileio+0x3f3/0x1110
[  157.696506][ T6858]  ? trace_contention_end+0xea/0x140
[  157.699189][ T6858]  ? __mutex_lock+0x1a6/0x9c0
[  157.701273][ T6858]  __vb2_perform_fileio+0x9e7/0x1620
[  157.703665][ T6858]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  157.706362][ T6858]  vb2_fop_write+0x20e/0x400
[  157.708432][ T6858]  v4l2_write+0x22c/0x360
[  157.710593][ T6858]  ? __pfx_v4l2_write+0x10/0x10
[  157.713942][ T6858]  vfs_writev+0x6ec/0xde0
[  157.716176][ T6858]  ? __pfx_vfs_writev+0x10/0x10
[  157.718419][ T6858]  ? __fget_files+0x24c/0x400
[  157.720765][ T6858]  ? do_writev+0x137/0x370
[  157.722772][ T6858]  do_writev+0x137/0x370
[  157.724679][ T6858]  ? __pfx_do_writev+0x10/0x10
[  157.726815][ T6858]  do_syscall_64+0xcd/0x250
[  157.728832][ T6858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.731852][ T6858] RIP: 0033:0x7f8acb375bd9
[  157.733838][ T6858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.742333][ T6858] RSP: 002b:00007f8acc066048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  157.745553][ T6858] RAX: ffffffffffffffda RBX: 00007f8acb503f60 RCX: 00007f8acb375bd9
[  157.749250][ T6858] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000004
[  157.752682][ T6858] RBP: 00007f8acc0660a0 R08: 0000000000000000 R09: 0000000000000000
[  157.756289][ T6858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.759785][ T6858] R13: 000000000000000b R14: 00007f8acb503f60 R15: 00007fff8a7247d8
[  157.762897][ T6858]  </TASK>
[  157.900110][ T6864] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  157.903046][ T6864] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  157.911628][ T6864] vhci_hcd vhci_hcd.0: Device attached
[  157.927498][   T39] audit: type=1400 audit(1721075046.981:370): avc:  denied  { create } for  pid=6863 comm="syz.3.410" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  157.943431][   T39] audit: type=1400 audit(1721075046.981:371): avc:  denied  { read } for  pid=6863 comm="syz.3.410" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  158.004241][ T6856] FAULT_INJECTION: forcing a failure.
[  158.004241][ T6856] name failslab, interval 1, probability 0, space 0, times 0
[  158.019994][ T6856] CPU: 1 PID: 6856 Comm: syz.2.407 Not tainted 6.10.0-syzkaller #0
[  158.023454][ T6856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.028053][ T6856] Call Trace:
[  158.029442][ T6856]  <TASK>
[  158.030729][ T6856]  dump_stack_lvl+0x16c/0x1f0
[  158.032651][ T6856]  should_fail_ex+0x497/0x5b0
[  158.034562][ T6856]  should_failslab+0x9/0x20
[  158.036392][ T6856]  kmem_cache_alloc_node_noprof+0x71/0x310
[  158.038725][ T6856]  ? __alloc_skb+0x2b1/0x380
[  158.040636][ T6856]  __alloc_skb+0x2b1/0x380
[  158.042554][ T6856]  ? __pfx___alloc_skb+0x10/0x10
[  158.042644][   T39] audit: type=1400 audit(1721075047.091:372): avc:  denied  { create } for  pid=6867 comm="syz.0.411" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  158.044666][ T6856]  ? rtnl_prop_list_size+0x220/0x2d0
[  158.059370][ T6856]  ? if_nlmsg_size+0x606/0x9f0
[  158.059639][   T39] audit: type=1400 audit(1721075047.091:373): avc:  denied  { ioctl } for  pid=6867 comm="syz.0.411" path="socket:[16379]" dev="sockfs" ino=16379 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  158.061292][ T6856]  rtmsg_ifinfo_build_skb+0x81/0x280
[  158.061321][ T6856]  rtnetlink_event+0xf3/0x1f0
[  158.061343][ T6856]  notifier_call_chain+0xb9/0x410
[  158.061363][ T6856]  ? __pfx_rtnetlink_event+0x10/0x10
[  158.061385][ T6856]  call_netdevice_notifiers_info+0xbe/0x140
[  158.061414][ T6856]  dev_set_mac_address+0x370/0x4a0
[  158.061433][ T6856]  ? __pfx_dev_set_mac_address+0x10/0x10
[  158.061450][ T6856]  ? __pfx___might_resched+0x10/0x10
[  158.061469][ T6856]  ? rcu_is_watching+0x12/0xc0
[  158.061487][ T6856]  dev_set_mac_address_user+0x30/0x50
[  158.061503][ T6856]  do_setlink+0x901/0x3ff0
[  158.061523][ T6856]  ? __pfx_do_setlink+0x10/0x10
[  158.061542][ T6856]  ? __orc_find+0x104/0x130
[  158.061566][ T6856]  ? stack_access_ok+0xf9/0x270
[  158.061590][ T6856]  ? __module_address+0x55/0x3c0
[  158.061607][ T6856]  ? is_module_text_address+0x145/0x1a0
[  158.061624][ T6856]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  158.061645][ T6856]  ? kernel_text_address+0x6e/0xe0
[  158.061661][ T6856]  ? __kernel_text_address+0xd/0x40
[  158.112838][ T6856]  ? unwind_get_return_address+0x45/0xe0
[  158.115203][ T6856]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  158.117660][ T6856]  ? __nla_validate_parse+0x601/0x2880
[  158.119941][ T6856]  ? __pfx___nla_validate_parse+0x10/0x10
[  158.122321][ T6856]  ? stack_trace_save+0x95/0xd0
[  158.124397][ T6856]  ? __pfx_stack_trace_save+0x10/0x10
[  158.126591][ T6856]  ? stack_depot_save_flags+0x28/0x8f0
[  158.128658][ T6856]  ? __nla_parse+0x40/0x60
[  158.130583][ T6856]  __rtnl_newlink+0xc35/0x1960
[  158.132664][ T6856]  ? __pfx___rtnl_newlink+0x10/0x10
[  158.134852][ T6856]  rtnl_newlink+0x67/0xa0
[  158.136619][ T6856]  ? __pfx_rtnl_newlink+0x10/0x10
[  158.138583][ T6856]  rtnetlink_rcv_msg+0x3c7/0xea0
[  158.140803][ T6856]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  158.143031][ T6856]  netlink_rcv_skb+0x16b/0x440
[  158.145045][ T6856]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  158.147219][ T6856]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  158.149401][ T6856]  ? netlink_deliver_tap+0x1ae/0xd90
[  158.151581][ T6856]  netlink_unicast+0x542/0x820
[  158.153537][ T6856]  ? __pfx_netlink_unicast+0x10/0x10
[  158.155806][ T6856]  netlink_sendmsg+0x8b8/0xd70
[  158.157954][ T6856]  ? __pfx_netlink_sendmsg+0x10/0x10
[  158.160185][ T6856]  ? __import_iovec+0x1fd/0x6e0
[  158.162184][ T6856]  ____sys_sendmsg+0xab5/0xc90
[  158.164157][ T6856]  ? copy_msghdr_from_user+0x10b/0x160
[  158.166388][ T6856]  ? __pfx_____sys_sendmsg+0x10/0x10
[  158.168704][ T6856]  ? find_held_lock+0x2d/0x110
[  158.170743][ T6856]  ? __pfx___lock_acquire+0x10/0x10
[  158.172857][ T6856]  ___sys_sendmsg+0x135/0x1e0
[  158.174519][ T6856]  ? __pfx____sys_sendmsg+0x10/0x10
[  158.176292][ T6856]  ? ksys_write+0x21c/0x260
[  158.178006][ T6856]  ? __fget_light+0x173/0x210
[  158.180045][ T6856]  __sys_sendmsg+0x117/0x1f0
[  158.182018][ T6856]  ? __pfx___sys_sendmsg+0x10/0x10
[  158.184136][ T6856]  do_syscall_64+0xcd/0x250
[  158.185868][ T6856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.187852][ T6856] RIP: 0033:0x7f5477775bd9
[  158.189337][ T6856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.195853][ T6856] RSP: 002b:00007f547856c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  158.199541][ T6856] RAX: ffffffffffffffda RBX: 00007f5477903f60 RCX: 00007f5477775bd9
[  158.203028][ T6856] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000007
[  158.208364][ T6856] RBP: 00007f547856c0a0 R08: 0000000000000000 R09: 0000000000000000
[  158.211729][ T6856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  158.215180][ T6856] R13: 000000000000000b R14: 00007f5477903f60 R15: 00007ffff5ef8948
[  158.218714][ T6856]  </TASK>
[  158.400197][  T826] usb 20-1: SetAddress Request (2) to port 0
[  158.408312][  T826] usb 20-1: new SuperSpeed USB device number 2 using vhci_hcd
[  158.690419][ T5210] Bluetooth: hci3: command tx timeout
[  158.710390][ T6865] vhci_hcd: connection reset by peer
[  158.713313][ T5822] vhci_hcd: stop threads
[  158.715265][ T5822] vhci_hcd: release socket
[  158.717329][ T5822] vhci_hcd: disconnect device
[  158.719004][ T6891] Cannot find add_set index 0 as target
[  159.034196][ T6903] netlink: 'syz.1.417': attribute type 1 has an invalid length.
[  159.339230][ T6906] sp0: Synchronizing with TNC
[  159.383797][ T6910] netlink: 36 bytes leftover after parsing attributes in process `syz.0.418'.
[  159.390013][   T39] audit: type=1400 audit(1721075048.451:374): avc:  denied  { ioctl } for  pid=6905 comm="syz.3.419" path="socket:[20561]" dev="sockfs" ino=20561 ioctlcmd=0x8b28 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  159.413083][   T39] audit: type=1400 audit(1721075048.481:375): avc:  denied  { setopt } for  pid=6905 comm="syz.3.419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  159.440436][ T6906] sp0: Found TNC
[  159.847345][ T6917] ax25_connect(): syz.1.421 uses autobind, please contact jreuter@yaina.de
[  160.081274][   T39] audit: type=1400 audit(1721075049.151:376): avc:  denied  { getopt } for  pid=6923 comm="syz.3.424" laddr=127.0.0.1 lport=48992 faddr=127.0.0.2 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  160.294317][   T39] audit: type=1400 audit(1721075049.361:377): avc:  denied  { bind } for  pid=6923 comm="syz.3.424" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  160.314961][ T6931] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  160.352796][ T6932] Bluetooth: MGMT ver 1.22
[  160.360626][ T6932] FAULT_INJECTION: forcing a failure.
[  160.360626][ T6932] name failslab, interval 1, probability 0, space 0, times 0
[  160.378049][ T6932] CPU: 2 PID: 6932 Comm: syz.0.425 Not tainted 6.10.0-syzkaller #0
[  160.383444][ T6932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.388053][ T6932] Call Trace:
[  160.389509][ T6932]  <TASK>
[  160.390850][ T6932]  dump_stack_lvl+0x16c/0x1f0
[  160.403867][ T6932]  should_fail_ex+0x497/0x5b0
[  160.405892][ T6932]  should_failslab+0x9/0x20
[  160.412132][ T6932]  kmem_cache_alloc_node_noprof+0x71/0x310
[  160.414810][ T6932]  ? __alloc_skb+0x2b1/0x380
[  160.416794][ T6932]  __alloc_skb+0x2b1/0x380
[  160.434716][ T6932]  ? __pfx___alloc_skb+0x10/0x10
[  160.436633][ T6932]  ? __alloc_skb+0x1fe/0x380
[  160.438667][ T6932]  ? __pfx___alloc_skb+0x10/0x10
[  160.441223][ T6932]  create_monitor_ctrl_event+0x3b/0x450
[  160.443856][ T6932]  mgmt_cmd_complete+0x2d6/0x540
[  160.446114][ T6932]  start_discovery_internal+0x731/0x870
[  160.449891][ T6932]  ? __pfx_start_discovery_internal+0x10/0x10
[  160.452941][ T6932]  ? do_init_timer+0xc9/0x110
[  160.455596][ T6932]  ? __pfx_mgmt_init_hdev+0x10/0x10
[  160.458330][ T6932]  hci_sock_sendmsg+0x1526/0x25e0
[  160.460716][ T6932]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  160.463101][ T6932]  sock_write_iter+0x50a/0x5c0
[  160.465202][ T6932]  ? __pfx_sock_write_iter+0x10/0x10
[  160.467558][ T6932]  ? security_file_permission+0x98/0xc0
[  160.470044][ T6932]  vfs_write+0x6b6/0x1140
[  160.472260][ T6932]  ? __pfx_sock_write_iter+0x10/0x10
[  160.474484][ T6932]  ? __pfx_vfs_write+0x10/0x10
[  160.476630][ T6932]  ? __fget_files+0x256/0x400
[  160.478871][ T6932]  ? __fget_light+0x173/0x210
[  160.481048][ T6932]  ksys_write+0x1f8/0x260
[  160.483369][ T6932]  ? __pfx_ksys_write+0x10/0x10
[  160.486101][ T6932]  do_syscall_64+0xcd/0x250
[  160.488365][ T6932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.491215][ T6932] RIP: 0033:0x7f775a375bd9
[  160.493178][ T6932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.502291][ T6932] RSP: 002b:00007f775b099048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  160.506110][ T6932] RAX: ffffffffffffffda RBX: 00007f775a503f60 RCX: 00007f775a375bd9
[  160.510288][ T6932] RDX: 0000000000000007 RSI: 0000000020000340 RDI: 0000000000000005
[  160.514358][ T6932] RBP: 00007f775b0990a0 R08: 0000000000000000 R09: 0000000000000000
[  160.518027][ T6932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.521923][ T6932] R13: 000000000000000b R14: 00007f775a503f60 R15: 00007ffcc27ba698
[  160.525379][ T6932]  </TASK>
[  160.680616][ T6936] usb 1-1: USB disconnect, device number 3
[  160.772372][ T5210] Bluetooth: hci3: command tx timeout
[  161.990071][   T56] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  162.171467][   T56] usb 8-1: Using ep0 maxpacket: 8
[  162.175661][   T56] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  162.179720][   T56] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  162.189986][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  162.194575][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  162.199011][   T56] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  162.209977][   T56] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  162.213960][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.239123][   T39] audit: type=1400 audit(1721075051.301:378): avc:  denied  { read } for  pid=6950 comm="syz.2.431" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  162.268737][   T39] audit: type=1400 audit(1721075051.321:379): avc:  denied  { open } for  pid=6950 comm="syz.2.431" path="/51/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  162.288584][   T39] audit: type=1400 audit(1721075051.351:380): avc:  denied  { ioctl } for  pid=6950 comm="syz.2.431" path="/51/file0/file0" dev="fuse" ino=0 ioctlcmd=0x5393 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  162.460432][   T56] usb 8-1: usb_control_msg returned -32
[  162.463380][   T56] usbtmc 8-1:16.0: can't read capabilities
[  162.828642][ T6958] usbtmc 8-1:16.0: usb_control_msg returned -32
[  162.849280][   T56] usb 8-1: USB disconnect, device number 8
[  163.480285][  T826] usb 20-1: device descriptor read/8, error -110
[  163.878999][ T6961] netlink: 36 bytes leftover after parsing attributes in process `syz.3.433'.
[  163.971783][ T6963] netlink: 4 bytes leftover after parsing attributes in process `syz.2.434'.
[  164.105511][  T826] usb usb20-port1: attempt power cycle
[  164.341659][   T39] audit: type=1400 audit(1721075053.401:381): avc:  denied  { accept } for  pid=6971 comm="syz.1.437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  164.475241][   T39] audit: type=1400 audit(1721075053.541:382): avc:  denied  { setattr } for  pid=6985 comm="syz.3.440" path="/dev/vhost-vsock" dev="devtmpfs" ino=1116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  164.569612][ T6992] input: syz1 as /devices/virtual/input/input21
[  164.751174][  T826] usb usb20-port1: unable to enumerate USB device
[  165.530673][   T39] audit: type=1326 audit(1721075054.601:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6998 comm="syz.1.444" exe="/syz-executor" sig=31 arch=c000003e syscall=15 compat=0 ip=0x7f96459115d9 code=0x0
[  165.572827][   T39] audit: type=1400 audit(1721075054.641:384): avc:  denied  { write } for  pid=6998 comm="syz.1.444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  165.629173][   T39] audit: type=1400 audit(1721075054.691:385): avc:  denied  { setopt } for  pid=6998 comm="syz.1.444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  166.204636][   T45] ------------[ cut here ]------------
[  166.207706][   T45] WARNING: CPU: 1 PID: 45 at net/wireless/sme.c:846 __cfg80211_connect_result+0x2967/0x2ac0
[  166.212750][   T45] Modules linked in:
[  166.213996][   T45] CPU: 1 PID: 45 Comm: kworker/u32:2 Not tainted 6.10.0-syzkaller #0
[  166.219055][   T45] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.224026][   T45] Workqueue: cfg80211 cfg80211_event_work
[  166.226539][   T45] RIP: 0010:__cfg80211_connect_result+0x2967/0x2ac0
[  166.231187][   T45] Code: ff ff 41 8b 1f 31 ff 4c 89 95 68 ff ff ff 89 de e8 de 0e 4c f7 85 db 4c 8b 95 68 ff ff ff 0f 85 f3 e6 ff ff e8 ca 13 4c f7 90 <0f> 0b 90 4c 89 fe 4c 89 f7 e8 bb 60 ff ff e9 06 d9 ff ff e8 d1 f5
[  166.241396][   T45] RSP: 0018:ffffc900009d7b20 EFLAGS: 00010293
[  166.244479][   T45] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8a41d6a2
[  166.248422][   T45] RDX: ffff888015f9a440 RSI: ffffffff8a41d6b6 RDI: 0000000000000005
[  166.253049][   T45] RBP: ffffc900009d7c00 R08: 0000000000000005 R09: 0000000000000000
[  166.257771][   T45] R10: ffff88801fda0486 R11: ffff88804ef0d898 R12: 0000000000000000
[  166.263131][   T45] R13: ffff88804ef0d818 R14: ffff88801fda0000 R15: ffff88804ef0d818
[  166.266645][   T45] FS:  0000000000000000(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000
[  166.270766][   T45] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  166.273818][   T45] CR2: 00000000200a0000 CR3: 000000002e996000 CR4: 0000000000350ef0
[  166.277377][   T45] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  166.280069][   T39] audit: type=1400 audit(1721075055.341:386): avc:  denied  { write } for  pid=4671 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  166.281128][   T45] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  166.293582][   T45] Call Trace:
[  166.295087][   T45]  <TASK>
[  166.296422][   T45]  ? show_regs+0x8c/0xa0
[  166.298299][   T45]  ? __warn+0xe5/0x3c0
[  166.300264][   T45]  ? __cfg80211_connect_result+0x2967/0x2ac0
[  166.302890][   T45]  ? report_bug+0x3c0/0x580
[  166.304844][   T45]  ? handle_bug+0x3d/0x70
[  166.306712][   T39] audit: type=1400 audit(1721075055.341:387): avc:  denied  { remove_name } for  pid=4671 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  166.306755][   T45]  ? exc_invalid_op+0x17/0x50
[  166.319097][   T45]  ? asm_exc_invalid_op+0x1a/0x20
[  166.321277][   T45]  ? __cfg80211_connect_result+0x2952/0x2ac0
[  166.323907][   T45]  ? __cfg80211_connect_result+0x2966/0x2ac0
[  166.326503][   T45]  ? __cfg80211_connect_result+0x2967/0x2ac0
[  166.328810][   T45]  ? __pfx___cfg80211_connect_result+0x10/0x10
[  166.331409][   T45]  ? mark_held_locks+0x9f/0xe0
[  166.334067][   T45]  ? cfg80211_process_wdev_events+0x391/0x5d0
[  166.337084][   T45]  cfg80211_process_wdev_events+0x391/0x5d0
[  166.340798][   T45]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  166.343373][   T45]  cfg80211_process_rdev_events+0x9f/0x130
[  166.345995][   T45]  cfg80211_event_work+0x2b/0x40
[  166.348239][   T45]  process_one_work+0x9c5/0x1b40
[  166.350533][   T45]  ? __pfx_lock_acquire+0x10/0x10
[  166.352476][   T45]  ? __pfx_process_one_work+0x10/0x10
[  166.354562][   T45]  ? assign_work+0x1a0/0x250
[  166.356392][   T45]  worker_thread+0x6c8/0xf30
[  166.358208][   T45]  ? __pfx_worker_thread+0x10/0x10
[  166.360615][   T45]  kthread+0x2c1/0x3a0
[  166.362689][   T45]  ? _raw_spin_unlock_irq+0x23/0x50
[  166.365019][   T45]  ? __pfx_kthread+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  166.367436][   T45]  ret_from_fork+0x45/0x80
[  166.370651][   T45]  ? __pfx_kthread+0x10/0x10
[  166.373198][   T45]  ret_from_fork_asm+0x1a/0x30
[  166.375401][   T45]  </TASK>
[  166.377265][   T45] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  166.380729][   T45] CPU: 1 PID: 45 Comm: kworker/u32:2 Not tainted 6.10.0-syzkaller #0
[  166.384270][   T45] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.389190][   T45] Workqueue: cfg80211 cfg80211_event_work
[  166.391979][   T45] Call Trace:
[  166.393766][   T45]  <TASK>
[  166.395537][   T45]  dump_stack_lvl+0x3d/0x1f0
[  166.397395][   T45]  panic+0x6f5/0x7a0
[  166.399081][   T45]  ? __pfx_panic+0x10/0x10
[  166.401117][   T45]  ? show_trace_log_lvl+0x363/0x500
[  166.403647][   T45]  ? check_panic_on_warn+0x1f/0xb0
[  166.406442][   T45]  ? __cfg80211_connect_result+0x2967/0x2ac0
[  166.409307][   T45]  check_panic_on_warn+0xab/0xb0
[  166.411971][   T45]  __warn+0xf1/0x3c0
[  166.413863][   T45]  ? __cfg80211_connect_result+0x2967/0x2ac0
[  166.416625][   T45]  report_bug+0x3c0/0x580
[  166.418616][   T45]  handle_bug+0x3d/0x70
[  166.420779][   T45]  exc_invalid_op+0x17/0x50
[  166.423268][   T45]  asm_exc_invalid_op+0x1a/0x20
[  166.425932][   T45] RIP: 0010:__cfg80211_connect_result+0x2967/0x2ac0
[  166.429442][   T45] Code: ff ff 41 8b 1f 31 ff 4c 89 95 68 ff ff ff 89 de e8 de 0e 4c f7 85 db 4c 8b 95 68 ff ff ff 0f 85 f3 e6 ff ff e8 ca 13 4c f7 90 <0f> 0b 90 4c 89 fe 4c 89 f7 e8 bb 60 ff ff e9 06 d9 ff ff e8 d1 f5
[  166.441633][   T45] RSP: 0018:ffffc900009d7b20 EFLAGS: 00010293
[  166.444537][   T45] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8a41d6a2
[  166.448830][   T45] RDX: ffff888015f9a440 RSI: ffffffff8a41d6b6 RDI: 0000000000000005
[  166.452221][   T45] RBP: ffffc900009d7c00 R08: 0000000000000005 R09: 0000000000000000
[  166.455539][   T45] R10: ffff88801fda0486 R11: ffff88804ef0d898 R12: 0000000000000000
[  166.458758][   T45] R13: ffff88804ef0d818 R14: ffff88801fda0000 R15: ffff88804ef0d818
[  166.462887][   T45]  ? __cfg80211_connect_result+0x2952/0x2ac0
[  166.466399][   T45]  ? __cfg80211_connect_result+0x2966/0x2ac0
[  166.469791][   T45]  ? __pfx___cfg80211_connect_result+0x10/0x10
[  166.472375][   T45]  ? mark_held_locks+0x9f/0xe0
[  166.474661][   T45]  ? cfg80211_process_wdev_events+0x391/0x5d0
[  166.477511][   T45]  cfg80211_process_wdev_events+0x391/0x5d0
[  166.481157][   T45]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  166.483926][   T45]  cfg80211_process_rdev_events+0x9f/0x130
[  166.486898][   T45]  cfg80211_event_work+0x2b/0x40
[  166.488690][   T45]  process_one_work+0x9c5/0x1b40
[  166.490931][   T45]  ? __pfx_lock_acquire+0x10/0x10
[  166.493099][   T45]  ? __pfx_process_one_work+0x10/0x10
[  166.495312][   T45]  ? assign_work+0x1a0/0x250
[  166.497307][   T45]  worker_thread+0x6c8/0xf30
[  166.499321][   T45]  ? __pfx_worker_thread+0x10/0x10
[  166.501485][   T45]  kthread+0x2c1/0x3a0
[  166.503329][   T45]  ? _raw_spin_unlock_irq+0x23/0x50
[  166.505756][   T45]  ? __pfx_kthread+0x10/0x10
[  166.507749][   T45]  ret_from_fork+0x45/0x80
[  166.509644][   T45]  ? __pfx_kthread+0x10/0x10
[  166.511191][   T45]  ret_from_fork_asm+0x1a/0x30
[  166.512886][   T45]  </TASK>
[  166.514416][   T45] Kernel Offset: disabled
[  166.516336][   T45] Rebooting in 86400 seconds..

VM DIAGNOSIS:
20:24:15  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000046 RBX=0000000000000000 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8b2cb1e0 RDI=ffffffff8b903980 RBP=ffffffff8dbb16e0 RSP=ffffc90003567b80
R8 =0000000000000000 R9 =fffffbfff1d726cc R10=ffffffff8eb93663 R11=0000000000000002
R12=ffff8880270ca440 R13=0000000000000000 R14=00000000ffffffff R15=0000000000000002
RIP=ffffffff8ae7ef1d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b335daff8 CR3=000000003d598000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc2470f170 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e4325
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e4332
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e432c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e4340
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e43c6
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e44a4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000073 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fda705 RDI=ffffffff94dde1e0 RBP=ffffffff94dde1a0 RSP=ffffc900009d7510
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000006
R12=0000000000000000 R13=0000000000000073 R14=ffffffff84fda6a0 R15=0000000000000000
RIP=ffffffff84fda72f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000200a0000 CR3=000000002e996000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7ba1f1f2ca801ff4 7bd222e995abe77d
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fac5057e1c7d69de 06efb86c416ed446
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6af1dd70603093c1 96201092ed256633
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b7883f33a363b07b 28cb91b7e5219c68
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000022c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9e000000f7000000 00023ab066105ddf
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5a00000004000000 ab00000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2200000066105132 6604c42c660344c0
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0003a7fa6615db0a 3500000000023bfa
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bbcd166c72e7c887 a3270d4404043a9f
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 95e2e57fd25c7708 09b303ac22c79eb8
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=d69af0cb4f31b7d8 2c36d91af56719a4 adebed0fc339d349 a81f626a48b30ea7 bd5e3b636266e8b2 8f50eb736bf4cef6 55712e212928147d 9f9854349cb49edc
ZMM17=0308048800568003 04808204880055f8 030004880055f003 0804880055e80308 04880055e0030a04 880055d8030e0488 0055d00314048800 55c8030204880055
ZMM18=0073b38508ff88bb 73ddf361369b64ad c17aac6dcc29301b 7122e862d58a79d9 2b5979c299f104b8 93b4b0aecbc2a892 83f106fbf7022aaa 4816f86f06331d6c
ZMM19=e1ceac0235690452 64b46e9fa301ffff fffffffffff98f08 10800301080003ff ffffff0403ffffff ff04081000010800 0a0103fc40881000 1780040100000c08
ZMM20=7a67a9f77a67a9f7 7a67a9f77a67a9f7 7a67a9f77a67a9f7 7a67a9f77a67a9f7 7a67a9f77a67a9f7 7a67a9f77a67a9f7 7a67a9f77a67a9f7 7a67a9f77a67a9f7
ZMM21=0d1056f20d1056f2 0d1056f20d1056f2 0d1056f20d1056f2 0d1056f20d1056f2 0d1056f20d1056f2 0d1056f20d1056f2 0d1056f20d1056f2 0d1056f20d1056f2
ZMM22=eca0bdddeca0bddd eca0bdddeca0bddd eca0bdddeca0bddd eca0bdddeca0bddd eca0bdddeca0bddd eca0bdddeca0bddd eca0bdddeca0bddd eca0bdddeca0bddd
ZMM23=23b9bc5623b9bc56 23b9bc5623b9bc56 23b9bc5623b9bc56 23b9bc5623b9bc56 23b9bc5623b9bc56 23b9bc5623b9bc56 23b9bc5623b9bc56 23b9bc5623b9bc56
ZMM24=f5c49041f5c49041 f5c49041f5c49041 f5c49041f5c49041 f5c49041f5c49041 f5c49041f5c49041 f5c49041f5c49041 f5c49041f5c49041 f5c49041f5c49041
ZMM25=65e647fb65e647fb 65e647fb65e647fb 65e647fb65e647fb 65e647fb65e647fb 65e647fb65e647fb 65e647fb65e647fb 65e647fb65e647fb 65e647fb65e647fb
ZMM26=63a1b31463a1b314 63a1b31463a1b314 63a1b31463a1b314 63a1b31463a1b314 63a1b31463a1b314 63a1b31463a1b314 63a1b31463a1b314 63a1b31463a1b314
ZMM27=f63f4b65f63f4b65 f63f4b65f63f4b65 f63f4b65f63f4b65 f63f4b65f63f4b65 f63f4b65f63f4b65 f63f4b65f63f4b65 f63f4b65f63f4b65 f63f4b65f63f4b65
ZMM28=000000900000008f 0000008e0000008d 0000008c0000008b 0000008a00000089 0000008800000087 0000008600000085 0000008400000083 0000008200000081
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=cd040000cd040000 cd040000cd040000 cd040000cd040000 cd040000cd040000 cd040000cd040000 cd040000cd040000 cd040000cd040000 cd040000cd040000
info registers vcpu 2

CPU#2
RAX=00000008000008fd RBX=ffff888017eca440 RCX=0000000000000830 RDX=0000000000000008
RSI=00000000000000fd RDI=0000000000000008 RBP=0000000000000003 RSP=ffffc900039ef6e0
R8 =0000000000000000 R9 =fffffbfff1fc910a R10=ffffffff8fe48857 R11=0000000000000001
R12=1ffff9200073dedd R13=ffffc900039ef708 R14=ffff88806b33f950 R15=ffff88806b33ebc0
RIP=ffffffff813b8ce8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f8acadff6c0 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f54778cfd38 CR3=0000000051120000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8100a0cf ffffffff8100a0b3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8100a0b3 ffffffff8100a0cf
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff8100a0cf
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e4325
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e4332
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e432c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e4340
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e43c6
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f96459e44a4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff82027be1 ffffffff82027bae ffffffff82027b91 ffffffff82027a06
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8202806c ffffffff82027fdb ffffffff00040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff82027c61 ffffffff82027be1 ffffffff82027bae ffffffff82027b91
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=0000000000000003 RCX=ffffffff816bd359 RDX=fffffbfff1fc910b
RSI=0000000000000008 RDI=ffffffff8fe48850 RBP=1ffff92000034f74 RSP=ffffc900001a7b88
R8 =0000000000000000 R9 =fffffbfff1fc910a R10=ffffffff8fe48857 R11=0000000000000000
R12=ffffffff8d80f248 R13=fffffbfff1b01e40 R14=000000000003d90c R15=0000000000000003
RIP=ffffffff81e9c6b8 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f54778d1178 CR3=0000000046ec2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffff5ef8c50 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54777e4325
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54777e4332
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54777e432c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54777e4340
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54777e43c6
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54777e44a4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000