last executing test programs:

1m15.259947832s ago: executing program 0 (id=1159):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}], 0x20}, 0x10)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x40200, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x62, 0x4000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_FWMARK={0x8, 0x14, 0xd96}]}}}]}, 0x3c}, 0x1, 0xd, 0x0, 0x480c5}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
mkdir(&(0x7f0000000600)='./file0\x00', 0xe8)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x4080)
write$P9_RVERSION(r4, &(0x7f00000009c0)=ANY=[], 0xffdb)
r5 = dup(r4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000380)=ANY=[@ANYRES32=r0, @ANYRES32=r2, @ANYBLOB="02"], 0x10)
r6 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=@ipv6_deladdr={0x2c, 0x15, 0x1, 0x70bd25, 0x25dfdbfe, {0xa, 0x78, 0x141, 0x0, r7}, [@IFA_LOCAL={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000801}, 0x20000000)
setsockopt$sock_int(r6, 0x1, 0x29, &(0x7f0000000040), 0x4)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000380)=ANY=[], 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), r5)
sendmsg$TIPC_NL_PEER_REMOVE(r5, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000640)={0x1bc, r8, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xce60ed1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}]}, @TIPC_NLA_NODE={0x34, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x200}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x96d}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x380000}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x47b}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x40000}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x60000000000000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6da}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffffffff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x10001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x40}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfe}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x80000000}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xbc}]}, @TIPC_NLA_BEARER={0x64, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xffff5338, @private0={0xfc, 0x0, '\x00', 0x1}, 0x10000}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x2, @empty, 0x3}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x893}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffd}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA={0x24, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x20000001}, 0x4010)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={[{@metacopy_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

1m14.988042156s ago: executing program 0 (id=1161):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000000)={0x1, 0x6, [@dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}, @multicast, @remote, @empty, @link_local, @multicast]})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@gettfilter={0x24, 0x2e, 0x121, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x9, 0xa}, {0x8, 0xfff1}, {0x7, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x4041080)
r4 = socket(0xa, 0x3, 0x3a)
getsockopt$MRT6(r4, 0x29, 0x24, 0x0, &(0x7f0000000180))

1m14.314784834s ago: executing program 0 (id=1164):
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x11c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=virtio,access=', @ANYRESDEC=r0])
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='nilfs2\x00', 0x0, &(0x7f0000000980)='norecovery')
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="e8000000000000000b210000ff3f7c081e0f315b91fcaec7bf495d5c618332756cbb1bb9ce6d12b9d976d1f33aca41e50a3342bcd67c311f7885a05c3fcf2ae21f1498ec481e7ca2c3ca4c7b3bf94448f62e111e5a79929b9182cc977ba6ae766ce37bdaac6da997fbc15f0c79f42155b99a280667b51fdc7902d7be5ef41f953fedb32aceeada13250626957e2013d5b12cc916541ccbeb0d4060a4dd89664eaba2f6b4ede0c9e3dc1c9446d9284ebe0e46eee7bc145ff0a2779c025553298812978ea53a8c60f254f23344a80a0aac7b141787bad6b0ba090000005f2f3158f0d200000000000070000000000000000701000040000000afbb30c2946e41ef3167d1f6ed47aa1f52bad114a89dbed741f74a23cd8d915e2dcc74a4932646b90f90a9d3956d5cadb642ac79fcb0aae3654482188263abd27e9d57cc28032453dc75f333e1f367ab38b7e7719805a454e79802d07ec60c00b0000000000000000100000001"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
recvmmsg(r2, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=""/188, 0xbc, 0xdf0e}}], 0x1, 0x2, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x48000, 0x0)
r4 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000500))
mount_setattr(r3, &(0x7f00000003c0)='./file1\x00', 0x8800, &(0x7f0000000540)={0x4, 0x1, 0x2e0000, {r4}}, 0x20)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x200000, &(0x7f0000000400))

1m4.382931863s ago: executing program 0 (id=1164):
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x11c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=virtio,access=', @ANYRESDEC=r0])
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='nilfs2\x00', 0x0, &(0x7f0000000980)='norecovery')
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="e8000000000000000b210000ff3f7c081e0f315b91fcaec7bf495d5c618332756cbb1bb9ce6d12b9d976d1f33aca41e50a3342bcd67c311f7885a05c3fcf2ae21f1498ec481e7ca2c3ca4c7b3bf94448f62e111e5a79929b9182cc977ba6ae766ce37bdaac6da997fbc15f0c79f42155b99a280667b51fdc7902d7be5ef41f953fedb32aceeada13250626957e2013d5b12cc916541ccbeb0d4060a4dd89664eaba2f6b4ede0c9e3dc1c9446d9284ebe0e46eee7bc145ff0a2779c025553298812978ea53a8c60f254f23344a80a0aac7b141787bad6b0ba090000005f2f3158f0d200000000000070000000000000000701000040000000afbb30c2946e41ef3167d1f6ed47aa1f52bad114a89dbed741f74a23cd8d915e2dcc74a4932646b90f90a9d3956d5cadb642ac79fcb0aae3654482188263abd27e9d57cc28032453dc75f333e1f367ab38b7e7719805a454e79802d07ec60c00b0000000000000000100000001"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
recvmmsg(r2, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=""/188, 0xbc, 0xdf0e}}], 0x1, 0x2, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x48000, 0x0)
r4 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000500))
mount_setattr(r3, &(0x7f00000003c0)='./file1\x00', 0x8800, &(0x7f0000000540)={0x4, 0x1, 0x2e0000, {r4}}, 0x20)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x200000, &(0x7f0000000400))

41.452897542s ago: executing program 0 (id=1164):
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x11c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=virtio,access=', @ANYRESDEC=r0])
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='nilfs2\x00', 0x0, &(0x7f0000000980)='norecovery')
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
recvmmsg(r2, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=""/188, 0xbc, 0xdf0e}}], 0x1, 0x2, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x48000, 0x0)
r4 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000500))
mount_setattr(r3, &(0x7f00000003c0)='./file1\x00', 0x8800, &(0x7f0000000540)={0x4, 0x1, 0x2e0000, {r4}}, 0x20)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x200000, &(0x7f0000000400))

19.02933995s ago: executing program 0 (id=1164):
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x11c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=virtio,access=', @ANYRESDEC=r0])
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='nilfs2\x00', 0x0, &(0x7f0000000980)='norecovery')
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
recvmmsg(r2, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=""/188, 0xbc, 0xdf0e}}], 0x1, 0x2, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x48000, 0x0)
r4 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000500))
mount_setattr(r3, &(0x7f00000003c0)='./file1\x00', 0x8800, &(0x7f0000000540)={0x4, 0x1, 0x2e0000, {r4}}, 0x20)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x200000, &(0x7f0000000400))

3.872106862s ago: executing program 1 (id=1538):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000000)={0x5, 0x0, 0xffff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="e5000000000000007910480000000000610408000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x3, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffe6b, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
move_pages(0x0, 0x1, &(0x7f0000000500)=[&(0x7f0000ffa000/0x4000)=nil], 0x0, &(0x7f0000000540), 0x2)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000000)={0x0, 0x80000, <r3=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], 0x4})
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000000326010100000600000000000000000405000300092a37400600024088470000"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)

3.870635916s ago: executing program 2 (id=1539):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x318, 0x0, 0xdb0, 0xf5ffffff}, 0x3f01)
openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x18, &(0x7f00000000c0), 0x31}, 0x0)
close(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r2 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r2, &(0x7f0000004380)=[{{&(0x7f0000000100)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000001640)=[{&(0x7f0000000480)="ba3d2374", 0x4}], 0x1, 0x0, 0x0, 0x844}}], 0x1, 0x814)
remap_file_pages(&(0x7f000090d000/0x4000)=nil, 0x4000, 0x0, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000ac0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x78}}, 0x10)
migrate_pages(0x0, 0x3, &(0x7f00000002c0)=0x7f, &(0x7f0000000300)=0xa)

3.681174435s ago: executing program 1 (id=1540):
openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x121040, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x0, 0x24, 0x5e9e2c0a, 0x0, 0x0, 0x2, 0x7, 0x200, 0x800002}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x8, 0x0, 0x0, 0x4, 0xa5, 0xbd, 0xf9, 0xa9, 0x4, 0x0, 0x0, 0x40000000}, {0x8, 0x5, 0xfc, 0x3, 0x41, 0x0, 0x0, 0x2, 0x6, 0xff, 0x0, 0x2, 0x6}, {0x1003fe, 0x9, 0x0, 0xfd, 0x20, 0x5, 0xb3, 0x0, 0x3, 0xfe, 0x80, 0xf6, 0xb82a}], 0x9})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r3 = io_uring_setup(0x191a, &(0x7f0000000000)={0x0, 0x761, 0x10, 0x5, 0x11cb})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15)
openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x121040, 0x0) (async)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x10408}}, 0x50) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x0, 0x24, 0x5e9e2c0a, 0x0, 0x0, 0x2, 0x7, 0x200, 0x800002}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x8, 0x0, 0x0, 0x4, 0xa5, 0xbd, 0xf9, 0xa9, 0x4, 0x0, 0x0, 0x40000000}, {0x8, 0x5, 0xfc, 0x3, 0x41, 0x0, 0x0, 0x2, 0x6, 0xff, 0x0, 0x2, 0x6}, {0x1003fe, 0x9, 0x0, 0xfd, 0x20, 0x5, 0xb3, 0x0, 0x3, 0xfe, 0x80, 0xf6, 0xb82a}], 0x9}) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) (async)
io_uring_setup(0x191a, &(0x7f0000000000)={0x0, 0x761, 0x10, 0x5, 0x11cb}) (async)
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) (async)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) (async)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15) (async)

3.548144334s ago: executing program 3 (id=1542):
r0 = io_uring_setup(0x6f94, &(0x7f00000005c0)={0x0, 0xfffffefa, 0x0, 0x2})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000280)=0x4)
ioctl$PPPIOCSMAXCID(r1, 0x40047451, &(0x7f0000000200)=0x3)
close_range(r0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYRES64=0x0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0, r2}, 0x18)
r3 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r3, &(0x7f0000000400)={0xa, 0x0, 0x5cc6, @empty, 0x3174}, 0x1c)
r4 = dup2(r3, r3)
write$tun(r4, 0x0, 0x46)

2.811940609s ago: executing program 3 (id=1543):
r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), r1)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x0, 0x0, 0x33565348, 0x0, 0x0, 0x0, 0x5, 0xfeedcafe, 0x3}})
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
r3 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
pidfd_send_signal(r2, 0x1a, &(0x7f0000000280)={0x16, 0xd, 0x2}, 0x0)
landlock_restrict_self(r3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='./file0\x00')
read$FUSE(r2, &(0x7f0000000640)={0x2020}, 0x2020)
connect$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e)

2.579303713s ago: executing program 3 (id=1544):
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) (async)
mount(&(0x7f0000000b40)=@loop={'/dev/loop', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='qnx6\x00', 0x20000a, 0x0) (async)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x428a4, 0x181}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}}, 0x8000)

2.47127741s ago: executing program 1 (id=1545):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'rfc7539(chacha20,rmd320)\x00'}, 0x58)
prlimit64(0x0, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000940)=0x200000000)
pread64(r2, &(0x7f00000000c0)=""/162, 0xa2, 0x9)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@newlink={0x58, 0x10, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x800}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x1}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}]}}}, @IFLA_ALT_IFNAME={0x14, 0x35, 'macvlan0\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000280)={'pim6reg1\x00', 0x2})
ioctl$TUNSETLINK(r3, 0x400454cd, 0x336)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
write$tun(r3, &(0x7f0000000300)={@void, @val={0x0, 0x0, 0x5, 0x3, 0x8000, 0xff}, @eth={@multicast, @local, @val={@val={0x88a8, 0x1, 0x0, 0x2}, {0x8100, 0x6, 0x0, 0x1}}, {@llc_tr={0x11, {@llc={0x0, 0x2, "b3f7", "82f02cb79b3c6ee670a2d0e617bbac2a52863d7e09cfcef1de8c8adbb199522966198638a4c7f3f9a966415bdb3ee9ed5014fae3addbed36716ca4efb226653cd7da6c85ca15260f6e89e863bd551b6615c6955bf30aea70c3e6e96e4daeeab8424c0e6acf5c821cf246b36d34d642b306e43a95d980a49565988a043c00f17dfe0b215f29897e7ababefffdc48c8dc5c2ec74d459889ee202ac8cfdb79c8c14ecd6670cbbd351472b227437486bd05e284ddc401fe89c481215ef78effef7be283195709e743a"}}}}}}, 0xeb)
close_range(r1, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r6 = accept4(r5, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
setsockopt$CAN_RAW_JOIN_FILTERS(r6, 0x65, 0x6, &(0x7f00000000c0)=0x1, 0x4)

2.470542543s ago: executing program 2 (id=1546):
set_tid_address(&(0x7f00000000c0))
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000600)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r4, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}, 0x1, 0x0, 0x0, 0x840}, 0x40000)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000030500"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r4], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="400100001800010600000000000000001c140000fe000001", @ANYRESDEC=r1, @ANYRES32=r0, @ANYRES16=r0, @ANYRES16=r4, @ANYRES8=r0], 0x140}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000040), 0x0, 0x5}}, 0x20)
socket(0x2b, 0x80801, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=@can_delroute={0x30, 0x19, 0x11, 0x70bd27, 0x0, {}, [@CGW_DST_IF={0x8}, @CGW_SRC_IF={0x8}, @CGW_FILTER={0xc, 0xb, {{0x3, 0x0, 0x1, 0x1}, {0x2, 0x0, 0x1}}}]}, 0x30}}, 0x0)
set_tid_address(&(0x7f00000000c0)) (async)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
socket(0x10, 0x803, 0x0) (async)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0) (async)
getsockname$packet(r3, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) (async)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r4, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}, 0x1, 0x0, 0x0, 0x840}, 0x40000) (async)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000030500"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r4], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x4000) (async)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="400100001800010600000000000000001c140000fe000001", @ANYRESDEC=r1, @ANYRES32=r0, @ANYRES16=r0, @ANYRES16=r4, @ANYRES8=r0], 0x140}, 0x1, 0x0, 0x0, 0x4000811}, 0x0) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000040), 0x0, 0x5}}, 0x20) (async)
socket(0x2b, 0x80801, 0x1) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=@can_delroute={0x30, 0x19, 0x11, 0x70bd27, 0x0, {}, [@CGW_DST_IF={0x8}, @CGW_SRC_IF={0x8}, @CGW_FILTER={0xc, 0xb, {{0x3, 0x0, 0x1, 0x1}, {0x2, 0x0, 0x1}}}]}, 0x30}}, 0x0) (async)

1.617237057s ago: executing program 3 (id=1547):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r1=>0x0})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}) (async, rerun: 32)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000043c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (rerun: 32)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000040)=r5, 0x4) (async)
sendmsg$inet(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000340)="25b096f681cd731c3f3a9badc4e3cf5edeae1f3b5082d7ab3a97c053df68744e7c7e24d0b59997bab4bccff8363b275de3510b0ebe4275d8d2f153395668e3d608e358fc2294263c03f8dc4f8bf194e4fde4600a2dec2f483a914e2fde0cbc344a2b9fc18dd198966045a6d4d4eb8571e8bb69e6724e37fcbaa6e4c64050b47256b9bb17f5c0aa5101e015ecdcb62fec46fc0205512535", 0x97}, {&(0x7f0000000280)="d3a88bea5916e313729a3989393caca70c74cd74e62e524bdd37be131ad827f911027e70ccf679d8e7c0cd3333095f83d6d473db345ded2ac8acaa87503de74c82431758e8e11e3ecb7bce02d6cd65f4eb88cc49ceb9e39f7117eb0f62323dc9b80dea447b0c96a383f14281bb87b09de0a6153ceeaae2b50a2b0f0f41810f379f9c3a1f3938461829d716a4bda86ab11b41f754bc15d71b", 0xfed0}], 0x2}, 0x0) (async)
r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000340)={0x1, 0x0, @pic={0x8, 0xb, 0x8, 0x3, 0x5, 0x1, 0x97, 0x0, 0x9, 0xe4, 0x8, 0x5, 0x5, 0x1, 0x0, 0x7f}}) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$alg(0x26, 0x5, 0x0) (async)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x1, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async)
r10 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_int(r10, 0x1, 0x26, 0x0, &(0x7f00000000c0))
r11 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000040)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000300000000000000c29c18120000", @ANYRES32=r11, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r9}, &(0x7f0000000280), &(0x7f00000002c0)=r12}, 0x20)
accept4(r8, 0x0, 0x0, 0x800) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newlink={0x2c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, [@IFLA_ADDRESS={0xa}]}, 0x2c}}, 0x0) (async)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010000000000fddbdf250800000008000300", @ANYRES32=r1, @ANYBLOB="fad25b4837da6f27cb948b07ad66229fd965661f110600ada122fef53195c470ab2584d94765579ae85637cb936f26d32604f47033ab635e5c6682dd2513b14ba8ef309d010013c8d903a479f6b5359688efb18d5a327436f4d08bdc1ebdb310e208693deca80d7890f17ed74ef4d5e89bee5c90bd099540ed0c7a4eda7f7bfbca1163102b976aa3dd71cad1a6ab01bbee026c01bfa43a7d8df36ce44f1ec54ab3066905f4589d90cefc0ff3bb41389837c76d5f5088447311da0c45de"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

1.367812064s ago: executing program 2 (id=1548):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000040)={0x0, 0x0, 0x1fd, {0x0, 0xa}, {0x1}, @const={0x0, {0x1, 0x8, 0x4, 0x881}}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4808000010001fff3a4ee9bfd5c3a3696c40af0b", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
setsockopt(r3, 0x1000, 0x6, &(0x7f0000003ec0)="e4c91279321a77021bc2f9150146abeaaf2254570346fb600f7614fa2a434f652b2fbe27d1b5ac2b1354e4903589452e7130427a763c5f0a933a78836c5f70a111a5d80308ce4d2af17f5451fc0f7883d65723", 0x53)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)
openat$fb1(0xffffffffffffff9c, &(0x7f0000000700), 0x8000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB='\"\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000100000000000000000500000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900000000000000000006001d8005000080050004000000fbffb4cf5dc14a8a9e31e651779a0d28046432842d6fc14faae16ea7c1ffe33873145fe38016065d65d2fe138590d2cdc61a7b3bf00b86ebc51831cb2a926c25e90261b9c8dc269ad0285aa8cfa125c11132ef69eb9e22799d0a8d0d5bae2f0a3f2e01002dd166727793b877a2c87f70d2af09b8d5c3d92d2fb50df77ceae6f16ca91b4eb9b953afaf1e4392a60c30992b62ea18ade3b2ef4984dac40e93fac21469d5eec52d0c27c8348b2c3ca89baa1e19934dc375476d4183e66069e3015480f31ce740a23fdb39d3b987de87231b14e9b1140e0085e7781c3500000000"], 0x38}}, 0x0)
recvmmsg(r4, &(0x7f0000000280)=[{{&(0x7f0000000140)=@ax25={{0x3, @netrom}, [@remote, @netrom, @null, @rose, @remote, @default, @bcast, @rose]}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/64, 0x40}, {&(0x7f0000001780)=""/4096, 0x1000}, {&(0x7f0000002780)=""/4096, 0x1000}], 0x4, &(0x7f0000000200)=""/74, 0x4a}, 0x8}], 0x1, 0x40000020, &(0x7f0000000300))
r6 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x100000, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r6, 0x4610, &(0x7f0000000740)={0x1c})
recvmmsg(r4, &(0x7f0000004440)=[{{&(0x7f0000000480)=@x25, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000500)=""/206, 0xce}, {&(0x7f0000000600)=""/228, 0xe4}, {&(0x7f0000003780)=""/232, 0xe8}, {&(0x7f0000003880)=""/240, 0xf0}], 0x4, &(0x7f0000003980)=""/130, 0x82}, 0xda3d}, {{0x0, 0x0, &(0x7f0000003fc0)=[{&(0x7f0000003a40)=""/62, 0x3e}, {&(0x7f0000003a80)=""/240, 0xf0}, {&(0x7f0000003b80)=""/96, 0x60}, {&(0x7f0000003c00)=""/166, 0xa6}, {&(0x7f0000003cc0)=""/250, 0xfa}, {&(0x7f0000003dc0)=""/158, 0x9e}, {&(0x7f0000003e80)=""/2, 0x2}, {&(0x7f0000004540)=""/210, 0xd2}], 0x8, &(0x7f0000004040)=""/216, 0xd8}, 0x6}, {{&(0x7f0000004140)=@ethernet={0x0, @broadcast}, 0x80, &(0x7f0000004340)=[{&(0x7f00000041c0)=""/17, 0x11}, {&(0x7f0000004200)=""/177, 0xb1}, {&(0x7f00000042c0)=""/9, 0x9}, {&(0x7f0000004300)}], 0x4, &(0x7f0000004380)=""/167, 0xa7}, 0x5}], 0x3, 0x10022, &(0x7f0000004500))

1.160900482s ago: executing program 1 (id=1549):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r1, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000240)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r6=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000001c00128009000100766c616e000000000c000280060001000400000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0)

968.039193ms ago: executing program 3 (id=1550):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0xe, 0x0, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @random="7936d536542b"}, 0x14)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="34000000000803000000000000000000000000000900010073797a3000000000060002408ba80000050003000100000004000480"], 0x34}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=ANY=[@ANYRES64, @ANYRES32=0x0, @ANYBLOB="00000000000000006c00128009000100766c616e000000005c00028006000100000000004c0003800c15010000000000010000000c00010065000000000000000c00010003000000000000000c00010005000000000000000c00010000000000000000000c000100000000000000000004000480080005"], 0x9c}, 0x1, 0xba01}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="280500003d0007010000000000000000017c0000040000000c0003"], 0x528}}, 0xc000)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="080000000208050000000000100000000a000007"], 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x4008050)
geteuid()
setsockopt$bt_hci_HCI_FILTER(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000000)={0xca8b, [], 0xefc7}, 0x10)
r5 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$bt_hci(r5, 0x84, 0x82, &(0x7f0000000000)=""/4087, &(0x7f0000001080)=0xff7)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000200)=0x8)
r9 = gettid()
capset(&(0x7f0000000240)={0x20080522, r9}, &(0x7f0000000280)={0x1, 0x455b, 0x1, 0x4, 0x100, 0x9})
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f00000000c0)={r8, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, &(0x7f00000001c0)=0x9c)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
ioctl(r2, 0x8b1b, &(0x7f0000000040))

520.801759ms ago: executing program 1 (id=1551):
r0 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x60, 0x80000)
bind$nfc_llcp(r0, &(0x7f0000000100)={0x27, 0x0, 0x1, 0x3, 0xff, 0xf0, "1c405495a5701b0376e18abc7b730e01caac0826259d8f68d7c18e9d9f4a3c1f625643eee5d8af761e637f2a27f9f8886d6566276f0667884712fdcf74662e", 0x2d}, 0x60)
r1 = syz_open_dev$I2C(&(0x7f0000000040), 0x1f, 0x0)
ioctl$I2C_SLAVE(r1, 0x703, 0x60)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001100)=ANY=[@ANYBLOB="200000006a00010027bd7000000000000a00000000000000080001000000ec"], 0x20}}, 0x0)

519.418627ms ago: executing program 2 (id=1552):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000240)=@req3={0x8, 0x9, 0x5, 0xd84b, 0x7f, 0x7, 0x7fdfffc}, 0x1c)
socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x2001}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000009c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x66, 0x0, 0x6})
io_uring_enter(r1, 0x7a98, 0x0, 0x0, 0x0, 0x0)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x394142, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r10)
getsockname$packet(r10, &(0x7f0000000340)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYRES16=0x0], 0x48}}, 0x240008d5)
sendmsg$nl_route_sched(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=@newtfilter={0x2c, 0x2c, 0x20, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r11, {0xa, 0x6}, {0x9, 0xc}, {0xe, 0xfff1}}, [@TCA_RATE={0x6, 0x5, {0x7f, 0x9}}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {0x10}, {0xf}}}, 0x24}}, 0x0)
r12 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(r12, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@delqdisc={0x34, 0x25, 0x200, 0x4, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xf, 0xb}, {0x0, 0x6}, {0xfff3, 0xf}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x4c}, @TCA_RATE={0x6, 0x5, {0x0, 0x1}}]}, 0x34}}, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000000000000014d564b00"/24])
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x0, 0x11, r0, 0x0)
munmap(&(0x7f0000ff9000/0x2000)=nil, 0x2000)
mremap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x2000, 0x0, &(0x7f0000ff8000/0x2000)=nil)
ptrace$getregset(0x4204, r4, 0x202, &(0x7f00000000c0)={&(0x7f0000000080)=""/53, 0x35})
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)

371.912908ms ago: executing program 1 (id=1553):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text32={0x20, &(0x7f0000000080)="b9800000c00f3235004000000f306536260f79570f9a000001003001f37caa0fc733c4c2ad9719f30f090f20e035400000000f22e0c4e27d196a000f08", 0x3d}], 0x1, 0x76, 0x0, 0x0)
prctl$PR_MCE_KILL(0x35, 0x1, 0x8)
prctl$PR_MCE_KILL(0x35, 0x1, 0x2)
syz_emit_ethernet(0x7e, &(0x7f0000000000)=ANY=[@ANYRES32=r0, @ANYRESOCT=r2], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

371.354606ms ago: executing program 2 (id=1554):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfff, @void, @value}, 0x94)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="e8daf9cb1c8009a82e9954004f0153eae7f9b74d1d0f27a703da7cf1799b51311ee31cbb1693da0f0f7cc1725137cd04e3ae7c44c46260f6e6f87615f3efb5587eff12862ff17b3e68650c74f9d9bac2bd9b2fb540c2e5e7832d1124823d878d6896ff632bcd0fc2329e67f536bd1337a5df9edb5669d509e8641627688fb3a5177c92a911dd1e1a1911c320c182eb446d0a756d905186228a9fbbab6403b269b56a4d733204a403b538961557915c7ffd96ee0e4fba1052000a9346c20f88b4363867c485df44275afa85c020ea38cc5228c3b96879fc9d", @ANYRES16=r5, @ANYBLOB="0100000000000000000017000000400006803c00040067636d286165732900000000000000000000000000000000000000000000000014000000e3de3d7b4cd07ec3ee777de774fc7987cca41989"], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
sendmsg$TIPC_NL_KEY_FLUSH(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="00ffde00b6fed9f64f3815d1db930d4172471d333df2e589247117e9ba4463a3a696ce9993902594b3943ef0801fedaf980d13fde33ef400f8a59a0e4b5c249eeabb804ce92694b0e45b56193433913b027a869717434f2a78ea574ca307871e2616bf73cd81d1a0935cfd228d72986090736a0619e12d5465f7b63a2b89845eb927d431a48d8e6504", @ANYRES16=r5, @ANYBLOB="350126bd7000ffdbdf2518000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x8010)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000004c0)={0xffffffffffffffff, r0, 0x4, r0}, 0x10)
listen(r2, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000300)={@in={{0x2, 0x4e24, @empty}}, 0x0, 0x0, 0x16, 0x0, "0af5a212a1bd3bbda613efd9c8b4965dca66db42f66a86e5781cf86717055a7c1d1408407e5a774ef95f2fc1b947e00f000000123f2f1d34a8882e83d41b67cb9ff147c6d33a097d2269351b3ed300ff"}, 0xd8)
setsockopt$bt_hci_HCI_TIME_STAMP(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000000), 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f00000012c0)={@in6={{0xa, 0x0, 0x200, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}, 0x0, 0x0, 0x34, 0x0, "0c9e089c1b4a04000bde79f04103c458187eb46c2d996aff287154e786455261c425a7519cc275d04e6205abd307a0c4fa3838bf399ad5bd35f21907c7988d1300"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x3, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}}, 0x0, 0x0, 0xc, 0x0, "a1c1dd75a6803e10951cd4b347113e55eb289519becf7542da0bc21470e441225642855b5f2f4bb561dc9363aed4a18d67efd5f2fdf98328de9441031348589b763d46d14810acc5f700"}, 0xd8)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r6, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000480)=0x9)
accept$ax25(0xffffffffffffffff, &(0x7f0000000400)={{0x3, @netrom}, [@bcast, @null, @bcast, @rose, @rose, @default, @default, @rose]}, &(0x7f0000000100)=0x48)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r7, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}, 0x0, 0x0, 0xc, 0x0, "a1c1dd75a68473ba07d945c3b03e10950cd4b347113e55eb4285bf274bca67efbff2fdf98328de9434031348589bf28046d14810000000e3ffffff00"}, 0xd8)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r8, 0x0)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r9, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r10, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c10000000000000000000", 0x58}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

132.078855ms ago: executing program 2 (id=1555):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)={0x34, r0, 0x701, 0x0, 0x0, {{}, {@val={0x6, 0x1, 0xc}, @val={0x8}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x5}]}, 0x34}}, 0x0)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000007c0)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}, {{&(0x7f0000000340)={0xa, 0x4e22, 0x3, @dev={0xfe, 0x80, '\x00', 0x12}, 0x4}, 0x1c, &(0x7f0000000680)=[{&(0x7f0000000880)="4a6ce325c10a599f69329ed4f030837815f58248b030a1a96af761079a59eed55b0f300e27d43c0fe7b7db9be1ab69502017757fc7c3ffd180d92a97dda0454ac81956ad855b365917c7c595ec4afaa4de65e066c94a531ac59b", 0x5a}, {&(0x7f0000000440)="559e56c4b10139cf91aa8388d9a35498572f12a1d6e2d0d32b1f210076e012ee0c77f0eea5b5cd0124a3dcee35bd00048a84606b46ba53092e2c29f3bb09346d4edeac71db41baac1063a9df7d0cfbae60b40d3e2f8f6c312a660d20ca8f2c993026212966877332f049e4766edc974079a9aa5804740035c7623ad70a400406bb11582dba9c43fb96e4edd85ea66e1445ddca0fb1f7bd", 0x97}, {&(0x7f0000000500)="71b2be54996481a2acc3bfbe771caf22a180b7eef8", 0x15}, {&(0x7f0000000840)="9e55886ae1eec89b8b5a68141411bab10b10b801e1bac5ec974e745e23ae65d3e928019d3e62d6d135df5b9462df0c82334624b5", 0x34}, {&(0x7f0000000580)="20d70695a2b4f0a99e4ff5cb463314532fcc9cf639b5988717ca4974a447f5e3794b964970679f94761caa26270fbae2763a6dd4c4f48f7424fb87301382982a6cc2efec07a27c9e4bfd3e82e3c4a7acf9026d1038581f42e6e177773397ce73ab597ed1fe8a19d1a8f5c05d3ccc475397443da810206f0564a113e42fdf08e59843165a092bafb52d19e3d5ee0976b5c71dbd8e17bdd3f6192aa4f1cad6095aaae8a1b593ba3f5a7bf771390b681ad58694958db4f3e81baa22da7fb6b84048b75e3c53aa07", 0xc6}], 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="1400000000000000290000000b0000000000000000000000280000000000000029000000370000002b0100000000000001010001050000000000000000000000180000000000000029000000360000005e000000000000002000000300000000290000003600000008000000000000000103000000000000"], 0x78}}], 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f00000000c0)={0x0, 0x400}, 0x8)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGREP(r3, 0x80084524, 0x0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000100)='./file1\x00', &(0x7f0000000180), 0x2, &(0x7f0000000080)=ANY=[@ANYBLOB="746f2c63616368653d8265616461686561642c6361c86865744c673d6d6f756e7404000000"])
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x24e)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r6=>r5}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, r6, {0x4000004}}, './file0\x00'})
fallocate(r2, 0x1, 0x6, 0x9)
read$FUSE(r2, &(0x7f0000000980)={0x2020}, 0x2020)

0s ago: executing program 3 (id=1556):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f00000000c0)=0xfffffffc, 0x4)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000020002000100000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x54}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$inet6(0xa, 0x80002, 0x88) (async)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) (async)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0) (async)
setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f00000000c0)=0xfffffffc, 0x4) (async)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0) (async)
pipe(&(0x7f0000000080)) (async)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000020002000100000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x54}}, 0x0) (async)

kernel console output (not intermixed with test programs):

445] netlink: 20 bytes leftover after parsing attributes in process `syz.2.417'.
[   91.771390][ T7445] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[   92.069879][   T40] kauditd_printk_skb: 15 callbacks suppressed
[   92.069890][   T40] audit: type=1400 audit(1747922456.992:434): avc:  denied  { watch } for  pid=7453 comm="syz.3.421" path="/56/file1" dev="tmpfs" ino=308 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   92.118102][ T7458] Unknown options in mask 5
[   92.348904][ T7462] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[   92.366214][ T5979] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[   92.398842][ T7462] program syz.1.424 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   92.446528][ T7466] binder: 7465:7466 ioctl c0306201 0 returned -14
[   92.450030][ T7466] binder: 7465:7466 ioctl 1264 200000000140 returned -22
[   92.458988][ T7466] binder: 7465:7466 ioctl 89f2 200000000180 returned -22
[   92.463058][ T7466] binder: 7465:7466 ioctl c018937b 200000000040 returned -22
[   92.507348][ T7470] cgroup2: Unknown parameter 'euid'
[   92.535873][ T5979] usb 8-1: Using ep0 maxpacket: 8
[   92.542612][ T5979] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   92.547350][ T5979] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   92.550545][ T5979] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   92.553761][ T5979] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   92.558519][ T5979] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   92.565552][ T5979] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.788338][   T40] audit: type=1400 audit(1747922457.712:435): avc:  denied  { listen } for  pid=7457 comm="syz.3.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   92.829560][   T40] audit: type=1400 audit(1747922457.752:436): avc:  denied  { mount } for  pid=7491 comm="syz.2.436" name="/" dev="autofs" ino=16917 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[   92.841967][ T5979] usb 8-1: GET_CAPABILITIES returned 0
[   92.843735][ T5979] usbtmc 8-1:16.0: can't read capabilities
[   92.874855][   T40] audit: type=1400 audit(1747922457.792:437): avc:  denied  { bind } for  pid=7495 comm="syz.2.437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   92.881772][ T7496] netlink: 56 bytes leftover after parsing attributes in process `syz.2.437'.
[   93.565861][ T1334] usb 8-1: USB disconnect, device number 10
[   93.599906][ T7523] netlink: 'syz.2.447': attribute type 2 has an invalid length.
[   93.611487][ T7525] syz.1.448: attempt to access beyond end of device
[   93.611487][ T7525] loop1: rw=4096, sector=2, nr_sectors = 2 limit=0
[   93.616075][ T7525] EXT4-fs (loop1): unable to read superblock
[   93.990081][ T7546] netlink: 12 bytes leftover after parsing attributes in process `syz.2.456'.
[   94.083805][ T7553] netlink: 4 bytes leftover after parsing attributes in process `syz.2.457'.
[   94.088087][ T7553] netlink: 4 bytes leftover after parsing attributes in process `syz.2.457'.
[   94.125173][   T40] audit: type=1400 audit(1747922459.042:438): avc:  denied  { connect } for  pid=7556 comm="syz.3.458" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   94.135449][   T40] audit: type=1400 audit(1747922459.052:439): avc:  denied  { bind } for  pid=7556 comm="syz.3.458" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   94.166183][   T40] audit: type=1400 audit(1747922459.092:440): avc:  denied  { listen } for  pid=7556 comm="syz.3.458" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   94.174241][   T40] audit: type=1400 audit(1747922459.092:441): avc:  denied  { accept } for  pid=7556 comm="syz.3.458" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   94.488804][ T7573] netlink: 48 bytes leftover after parsing attributes in process `syz.2.463'.
[   94.527232][ T7575] netlink: 8 bytes leftover after parsing attributes in process `syz.3.464'.
[   94.531991][ T7577] netlink: 12 bytes leftover after parsing attributes in process `syz.1.465'.
[   94.533116][   T40] audit: type=1400 audit(1747922459.452:442): avc:  denied  { bind } for  pid=7574 comm="syz.3.464" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   94.587412][ T7581] netlink: 8 bytes leftover after parsing attributes in process `syz.1.466'.
[   94.599967][ T7581] sp0: Synchronizing with TNC
[   94.727836][ T5946] Bluetooth: hci2: unexpected event for opcode 0xb3be
[   94.729614][ T7586] netlink: 'syz.1.468': attribute type 1 has an invalid length.
[   94.733484][ T7586] netlink: 'syz.1.468': attribute type 2 has an invalid length.
[   94.738427][ T7586] netlink: 1172 bytes leftover after parsing attributes in process `syz.1.468'.
[   94.779699][ T7589] input: syz0 as /devices/virtual/input/input8
[   94.814997][   T40] audit: type=1400 audit(1747922459.732:443): avc:  denied  { wake_alarm } for  pid=7588 comm="syz.1.469" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   94.815659][ T5999] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[   94.995741][ T5999] usb 8-1: Using ep0 maxpacket: 16
[   95.007269][ T5999] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   95.010726][ T5999] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   95.013852][ T5999] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   95.018447][ T5999] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[   95.021260][ T5999] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.026700][ T5999] usb 8-1: config 0 descriptor??
[   95.177909][ T7603] 9pnet_fd: Insufficient options for proto=fd
[   95.426108][ T7622] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.451037][ T5999] shield 0003:0955:7214.0003: unknown main item tag 0x0
[   95.454293][ T5999] shield 0003:0955:7214.0003: unknown main item tag 0x0
[   95.456767][ T5999] shield 0003:0955:7214.0003: unknown main item tag 0x0
[   95.458984][ T5999] shield 0003:0955:7214.0003: unknown main item tag 0x0
[   95.461260][ T5999] shield 0003:0955:7214.0003: unknown main item tag 0x0
[   95.467840][ T5999] input: HID 0955:7214 Haptics as /devices/virtual/input/input9
[   95.501376][ T5999] shield 0003:0955:7214.0003: Registered Thunderstrike controller
[   95.506304][ T5999] shield 0003:0955:7214.0003: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.3-1/input0
[   95.802023][ T7639] SELinux:  Context z�`��'9ƕ��
wT��R<��j����E�5;���f�+M�nO�.��1�yk�j���=+�_�(zA�\��!.��ۨ(L�0�����F#Jo�� is not valid (left unmapped).
[   95.858353][ T7637] random: crng reseeded on system resumption
[   95.916901][ T7650] IPVS: set_ctl: invalid protocol: 41 100.1.1.1:20000
[   95.922165][ T7649] netlink: 45 bytes leftover after parsing attributes in process `syz.2.487'.
[   95.970973][ T7649] netlink: 'syz.2.487': attribute type 5 has an invalid length.
[   96.014114][ T7658] team0: No ports can be present during mode change
[   96.026790][   T24] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[   96.026959][ T1334] usb 8-1: USB disconnect, device number 11
[   96.030660][   T24] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[   96.036174][   T24] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[   96.040002][   T24] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[   96.652850][ T7694] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   96.857599][ T7717] cgroup: Unknown subsys name 'cpuset'
[   96.863246][ T7719] netlink: 8 bytes leftover after parsing attributes in process `syz.0.508'.
[   96.922259][ T7726] gretap0: entered promiscuous mode
[   96.930335][ T7726] gretap0: left promiscuous mode
[   96.940322][ T7728] netlink: 'syz.3.511': attribute type 16 has an invalid length.
[   96.976568][    T9] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   96.980212][ T7729] program syz.0.510 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.032776][ T7726] program syz.0.510 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.125569][    T9] usb 6-1: Using ep0 maxpacket: 32
[   97.136141][ T7704] loop2: detected capacity change from 0 to 3
[   97.141625][ T7704] ldm_validate_privheads(): Disk read failed.
[   97.144112][ T7704] Dev loop2: unable to read RDB block 3
[   97.148836][ T7704]  loop2: unable to read partition table
[   97.150767][ T7704] loop2: partition table beyond EOD, truncated
[   97.153355][ T7704] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[   97.158726][    T9] usb 6-1: unable to get BOS descriptor or descriptor too short
[   97.161308][    T9] usb 6-1: too many configurations: 105, using maximum allowed: 8
[   97.171405][    T9] usb 6-1: unable to read config index 0 descriptor/start: -71
[   97.187223][    T9] usb 6-1: can't read configurations, error -71
[   97.429933][ T7767] IPv6: NLM_F_REPLACE set, but no existing node found!
[   97.662439][   T40] kauditd_printk_skb: 14 callbacks suppressed
[   97.662457][   T40] audit: type=1400 audit(1747922462.582:458): avc:  denied  { shutdown } for  pid=7784 comm="syz.2.529" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   97.687280][   T63] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   97.701440][   T40] audit: type=1400 audit(1747922462.622:459): avc:  denied  { getopt } for  pid=7787 comm="syz.2.530" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   97.715675][   T64] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[   97.857031][   T63] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   97.861353][   T63] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   97.865327][   T63] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   97.869673][   T63] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.875138][ T7769] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   97.885673][   T64] usb 8-1: Using ep0 maxpacket: 8
[   97.888650][   T64] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   97.889114][   T63] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[   97.891518][   T64] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   97.897502][   T64] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   97.903545][   T64] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   97.908864][   T64] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   97.913408][   T64] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   97.924163][   T64] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.114490][   T63] usb 5-1: USB disconnect, device number 7
[   98.134298][   T64] usb 8-1: usb_control_msg returned -32
[   98.137365][   T64] usbtmc 8-1:16.0: can't read capabilities
[   98.341543][   T40] audit: type=1400 audit(1747922463.262:460): avc:  denied  { mounton } for  pid=7805 comm="syz.1.536" path="/120/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[   98.657644][   T40] audit: type=1400 audit(1747922463.582:461): avc:  denied  { bind } for  pid=7819 comm="syz.1.541" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   98.714377][ T5946] Bluetooth: hci1: ACL packet for unknown connection handle 201
[   98.841016][ T7836] usbtmc 8-1:16.0: CHECK_CLEAR_STATUS returned 3
[   99.048729][   T40] audit: type=1400 audit(1747922463.972:462): avc:  denied  { getopt } for  pid=7840 comm="syz.0.547" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   99.075813][   T40] audit: type=1400 audit(1747922463.992:463): avc:  denied  { map } for  pid=7843 comm="syz.0.549" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   99.086814][   T40] audit: type=1400 audit(1747922464.012:464): avc:  denied  { call } for  pid=7843 comm="syz.0.549" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   99.096863][ T5999] usb 8-1: USB disconnect, device number 12
[   99.138558][   T40] audit: type=1400 audit(1747922464.062:465): avc:  denied  { append } for  pid=7855 comm="syz.0.552" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   99.157581][ T7858] __nla_validate_parse: 5 callbacks suppressed
[   99.157591][ T7858] netlink: 16 bytes leftover after parsing attributes in process `syz.2.553'.
[   99.179684][   T40] audit: type=1400 audit(1747922464.102:466): avc:  denied  { append } for  pid=7859 comm="syz.0.554" name="cec0" dev="devtmpfs" ino=973 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   99.187459][ T7860] netlink: 12 bytes leftover after parsing attributes in process `syz.0.554'.
[   99.189821][ T7862] overlayfs: failed to clone upperpath
[   99.191785][   T40] audit: type=1400 audit(1747922464.112:467): avc:  denied  { append } for  pid=7859 comm="syz.0.554" name="001" dev="devtmpfs" ino=767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   99.276935][ T7869] netlink: 8 bytes leftover after parsing attributes in process `syz.2.558'.
[   99.279692][ T7869] netlink: 'syz.2.558': attribute type 30 has an invalid length.
[   99.288488][ T7869] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   99.291304][ T7869] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   99.294013][ T7869] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   99.297330][ T7869] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   99.308221][ T7869] openvswitch: netlink: Message has 3 unknown bytes.
[   99.311033][ T7869] openvswitch: netlink: Actions may not be safe on all matching packets
[   99.408474][ T7875] netlink: 4 bytes leftover after parsing attributes in process `syz.2.560'.
[   99.412276][ T7875] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   99.415879][ T7875] batman_adv: batadv0: Removing interface: batadv_slave_0
[   99.420057][ T7875] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.423023][ T7875] batman_adv: batadv0: Removing interface: batadv_slave_1
[   99.728939][ T7888] tipc: Trying to set illegal importance in message
[   99.835858][ T5979] usb 5-1: new low-speed USB device number 8 using dummy_hcd
[   99.841003][ T7917] netlink: 88 bytes leftover after parsing attributes in process `syz.2.572'.
[   99.976117][ T5979] usb 5-1: device descriptor read/64, error -71
[  100.035626][ T2297] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  100.197245][ T2297] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  100.200439][ T2297] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  100.203818][ T2297] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.209979][ T2297] usb 6-1: config 0 descriptor??
[  100.219335][ T2297] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  100.235624][ T5979] usb 5-1: new low-speed USB device number 9 using dummy_hcd
[  100.365591][ T5979] usb 5-1: device descriptor read/64, error -71
[  100.423318][    T9] usb 6-1: USB disconnect, device number 9
[  100.485961][ T5979] usb usb5-port1: attempt power cycle
[  100.656626][ T7922] cgroup2: Unknown parameter 'memory_hugetl_accou~ting'
[  100.692156][ T7924] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7924 comm=syz.2.576
[  100.826483][ T5979] usb 5-1: new low-speed USB device number 10 using dummy_hcd
[  100.858684][ T5979] usb 5-1: device descriptor read/8, error -71
[  101.095589][ T5979] usb 5-1: new low-speed USB device number 11 using dummy_hcd
[  101.119440][ T5979] usb 5-1: device descriptor read/8, error -71
[  101.140654][ T7950] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  101.155141][ T7950] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  101.246700][ T5979] usb usb5-port1: unable to enumerate USB device
[  101.303637][ T7960] netlink: 8 bytes leftover after parsing attributes in process `syz.1.589'.
[  101.486602][ T7965] DRBG: could not allocate digest TFM handle: hmac(sha512)
[  101.575389][ T7978] ALSA: mixer_oss: invalid index 40000
[  101.603857][ T7981] netlink: 32 bytes leftover after parsing attributes in process `syz.1.595'.
[  101.707465][ T7994] netlink: 16 bytes leftover after parsing attributes in process `syz.3.598'.
[  101.898270][ T8011] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  101.905163][ T8011] overlayfs: failed to clone upperpath
[  102.583777][ T8048] mmap: syz.3.617 (8048) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  102.607900][ T8051] netlink: 8 bytes leftover after parsing attributes in process `syz.0.618'.
[  102.610670][ T8051] netlink: 4 bytes leftover after parsing attributes in process `syz.0.618'.
[  102.843439][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  102.843452][   T40] audit: type=1400 audit(1747922467.762:477): avc:  denied  { setopt } for  pid=8060 comm="syz.0.622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  102.946661][   T40] audit: type=1400 audit(1747922467.872:478): avc:  denied  { map } for  pid=8067 comm="syz.3.624" path="socket:[19104]" dev="sockfs" ino=19104 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  102.996794][   T40] audit: type=1400 audit(1747922467.922:479): avc:  denied  { mounton } for  pid=8072 comm="syz.3.626" path="/92/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  103.029249][ T8075] openvswitch: netlink: Flow key attr not present in new flow.
[  103.045710][ T8075] ip6t_srh: unknown srh match flags  B153
[  103.056231][ T8073] set match dimension is over the limit!
[  103.059337][ T8073] set match dimension is over the limit!
[  103.061933][ T8073] set match dimension is over the limit!
[  103.064449][ T8073] set match dimension is over the limit!
[  103.068730][ T8073] set match dimension is over the limit!
[  103.071266][ T8073] set match dimension is over the limit!
[  103.073332][ T8073] set match dimension is over the limit!
[  103.075275][ T8073] set match dimension is over the limit!
[  103.077664][ T8073] set match dimension is over the limit!
[  103.079619][ T8073] set match dimension is over the limit!
[  103.127929][   T40] audit: type=1400 audit(1747922468.052:480): avc:  denied  { getopt } for  pid=8082 comm="syz.1.628" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  103.479299][   T40] audit: type=1400 audit(1747922468.402:481): avc:  denied  { map } for  pid=8100 comm="syz.2.634" path="socket:[21761]" dev="sockfs" ino=21761 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_selinux_socket permissive=1
[  103.488196][   T40] audit: type=1400 audit(1747922468.402:482): avc:  denied  { accept } for  pid=8100 comm="syz.2.634" path="socket:[21761]" dev="sockfs" ino=21761 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_selinux_socket permissive=1
[  103.555631][   T64] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  103.725896][   T64] usb 5-1: Using ep0 maxpacket: 8
[  103.731034][   T64] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  103.734487][   T64] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  103.739052][   T64] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  103.743042][   T64] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  103.748963][   T64] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  103.753781][   T64] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  103.757225][   T64] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.825735][   T40] audit: type=1400 audit(1747922468.742:483): avc:  denied  { remove_name } for  pid=8133 comm="syz.1.643" name="file0" dev="9p" ino=35913864 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  103.836021][   T40] audit: type=1400 audit(1747922468.752:484): avc:  denied  { unlink } for  pid=8133 comm="syz.1.643" name="file0" dev="9p" ino=35913864 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  103.848386][   T40] audit: type=1400 audit(1747922468.772:485): avc:  denied  { create } for  pid=8133 comm="syz.1.643" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1
[  103.921665][   T40] audit: type=1400 audit(1747922468.842:486): avc:  denied  { read write } for  pid=8133 comm="syz.1.643" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  103.971683][   T64] usb 5-1: usb_control_msg returned -32
[  103.973473][   T64] usbtmc 5-1:16.0: can't read capabilities
[  104.272415][ T8185] __nla_validate_parse: 8 callbacks suppressed
[  104.272426][ T8185] netlink: 16 bytes leftover after parsing attributes in process `syz.1.661'.
[  104.281769][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  104.390331][ T5946] Bluetooth: hci2: unexpected event for opcode 0x0c2d
[  104.547325][ T8193] fuse: Unknown parameter '�H��&�������'
[  104.550458][ T8193] netlink: 'syz.3.664': attribute type 12 has an invalid length.
[  104.600726][ T8197] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.665'.
[  104.675295][ T8204] usbtmc 5-1:16.0: usb_control_msg returned -71
[  104.686019][ T8204] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  104.732035][ T8211] binder: binder_mmap: 8210 200000ffd000-200001000000 bad vm_flags failed -1
[  104.808545][ T8218] tipc: Started in network mode
[  104.810369][ T8218] tipc: Node identity 8, cluster identity 4711
[  104.812464][ T8218] tipc: Node number set to 8
[  104.877850][ T6008] usb 5-1: USB disconnect, device number 12
[  105.596424][ T8271] pimreg: entered allmulticast mode
[  105.600901][ T8271] pimreg: left allmulticast mode
[  105.603373][ T8272] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  105.615463][ T8272] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  105.773298][ T8279] kvm: MONITOR instruction emulated as NOP!
[  106.041297][ T8298] QAT: Invalid ioctl -2080336865
[  106.044495][ T8298] QAT: Invalid ioctl -2147192304
[  106.088402][ T8300] netlink: 68 bytes leftover after parsing attributes in process `syz.2.696'.
[  106.141039][ T8313] netlink: 20 bytes leftover after parsing attributes in process `syz.0.701'.
[  106.153133][ T8316] netlink: 12 bytes leftover after parsing attributes in process `syz.2.702'.
[  106.363286][ T8331] fuse: Unknown parameter 'r'
[  106.675194][ T8361] =======================================================
[  106.675194][ T8361] WARNING: The mand mount option has been deprecated and
[  106.675194][ T8361]          and is ignored by this kernel. Remove the mand
[  106.675194][ T8361]          option from the mount to silence this warning.
[  106.675194][ T8361] =======================================================
[  106.686803][ T8361] hugetlbfs: Bad value 'e' for mount option 'size'
[  106.686803][ T8361] 
[  106.691459][ T8361] overlayfs: missing 'lowerdir'
[  106.782334][ T8372] netem: incorrect ge model size
[  106.784259][ T8372] netem: change failed
[  106.793385][ T8372] netem: incorrect ge model size
[  106.795696][ T8372] netem: change failed
[  106.846984][ T8377] netlink: 'syz.3.722': attribute type 1 has an invalid length.
[  106.861899][ T8377] 8021q: adding VLAN 0 to HW filter on device bond2
[  106.879120][ T8377] bond2: (slave dummy0): making interface the new active one
[  106.884508][ T8377] bond2: (slave dummy0): Enslaving as an active interface with an up link
[  106.926163][ T8386] xt_hashlimit: max too large, truncated to 1048576
[  106.928847][ T8386] xt_bpf: check failed: parse error
[  106.972758][ T8391] IPVS: set_ctl: invalid protocol: 25647 47.112.116.109:30720
[  106.975279][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  106.978687][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  107.158534][ T8396] ip6t_srh: unknown srh match flags  4000
[  107.354423][    C0] vkms_vblank_simulate: vblank timer overrun
[  107.412264][ T8414] netlink: 24 bytes leftover after parsing attributes in process `syz.2.731'.
[  107.452945][    C0] vkms_vblank_simulate: vblank timer overrun
[  107.651656][ T8426] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[  107.745801][    C0] vkms_vblank_simulate: vblank timer overrun
[  107.772375][ T8430] syz_tun: entered allmulticast mode
[  107.787295][ T8430] dvmrp1: entered allmulticast mode
[  107.867764][ T8429] syz_tun: left allmulticast mode
[  107.882103][   T40] kauditd_printk_skb: 26 callbacks suppressed
[  107.882119][   T40] audit: type=1400 audit(1747922472.802:513): avc:  denied  { ioctl } for  pid=8431 comm="syz.0.739" path="socket:[20426]" dev="sockfs" ino=20426 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  107.963878][   T40] audit: type=1400 audit(1747922472.872:514): avc:  denied  { getopt } for  pid=8441 comm="syz.0.742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  108.052963][ T8448] netlink: 'syz.0.743': attribute type 10 has an invalid length.
[  108.071764][ T8448] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.077615][ T8448] team0: Port device bond0 added
[  108.093684][ T8454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.745'.
[  108.106546][ T8448] mac80211_hwsim hwsim7 wlan0: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  108.287651][ T8473] netlink: 8 bytes leftover after parsing attributes in process `syz.1.752'.
[  108.403725][ T8484] netlink: 'syz.1.755': attribute type 9 has an invalid length.
[  108.406921][ T8484] netlink: 212012 bytes leftover after parsing attributes in process `syz.1.755'.
[  108.577145][ T8494] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  108.867978][ T8523] netlink: 76 bytes leftover after parsing attributes in process `syz.2.765'.
[  108.976229][ T5944] Bluetooth: hci4: command 0x1003 tx timeout
[  108.976527][ T5946] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  109.042017][ T8538] TCP: tcp_parse_options: Illegal window scaling value 218 > 14 received
[  109.052783][ T8540] TCP: tcp_parse_options: Illegal window scaling value 218 > 14 received
[  109.052873][   T40] audit: type=1400 audit(1747922473.972:515): avc:  denied  { ioctl } for  pid=8530 comm="syz.2.768" path="socket:[21269]" dev="sockfs" ino=21269 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  109.078791][ T8544] netlink: 'syz.0.773': attribute type 1 has an invalid length.
[  109.120866][ T8544] 8021q: adding VLAN 0 to HW filter on device bond2
[  109.139573][ T8544] bond2: (slave gretap1): making interface the new active one
[  109.142464][ T8544] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  109.270033][   T40] audit: type=1326 audit(1747922474.192:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8560 comm="syz.1.779" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f782378e969 code=0x0
[  109.534088][   T40] audit: type=1400 audit(1747922474.452:517): avc:  denied  { mounton } for  pid=8572 comm="syz.3.784" path="/proc/398/task" dev="proc" ino=24606 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  109.535463][ T8574] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8574 comm=syz.3.784
[  109.560714][    C0] vkms_vblank_simulate: vblank timer overrun
[  109.610499][    C0] vkms_vblank_simulate: vblank timer overrun
[  109.665589][   T40] audit: type=1400 audit(1747922474.582:518): avc:  denied  { bind } for  pid=8579 comm="syz.3.787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  109.820424][ T8586] Invalid option length (1047906) for dns_resolver key
[  110.003743][ T8599] __nla_validate_parse: 4 callbacks suppressed
[  110.003762][ T8599] netlink: 12 bytes leftover after parsing attributes in process `syz.0.793'.
[  110.012107][ T8599] tipc: Disabling bearer <udp:syz2>
[  110.018440][ T8599] netlink: 32 bytes leftover after parsing attributes in process `syz.0.793'.
[  110.042528][ T8599] netlink: 8 bytes leftover after parsing attributes in process `syz.0.793'.
[  110.050414][ T8592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.789'.
[  110.053525][ T8592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.789'.
[  110.099389][ T8610] tmpfs: Unknown parameter 'm'
[  110.101581][ T8611] netlink: 20 bytes leftover after parsing attributes in process `syz.1.795'.
[  110.142366][ T8617] netlink: 700 bytes leftover after parsing attributes in process `syz.1.798'.
[  110.256088][   T40] audit: type=1400 audit(1747922475.172:519): avc:  denied  { write } for  pid=8621 comm="syz.0.800" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  110.265000][   T40] audit: type=1400 audit(1747922475.172:520): avc:  denied  { create } for  pid=8621 comm="syz.0.800" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  110.286407][   T40] audit: type=1400 audit(1747922475.212:521): avc:  denied  { getopt } for  pid=8621 comm="syz.0.800" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  110.334152][ T5979] IPVS: starting estimator thread 0...
[  110.334897][   T40] audit: type=1400 audit(1747922475.252:522): avc:  denied  { bind } for  pid=8623 comm="syz.2.801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  110.436495][ T8630] IPVS: using max 32 ests per chain, 76800 per kthread
[  110.576971][ T8629] IPVS: set_ctl: invalid protocol: 44 255.255.255.255:20004
[  110.778641][ T8678] netlink: 124 bytes leftover after parsing attributes in process `syz.2.817'.
[  110.782917][ T8679] netlink: 'syz.3.818': attribute type 4 has an invalid length.
[  110.783004][ T8678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.817'.
[  110.808600][ T8678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.817'.
[  110.818016][   T97] wlan0: Trigger new scan to find an IBSS to join
[  110.840567][    C0] vkms_vblank_simulate: vblank timer overrun
[  110.946421][ T8684] netlink: 'syz.2.819': attribute type 8 has an invalid length.
[  110.946497][ T8689] netlink: 'syz.2.819': attribute type 8 has an invalid length.
[  111.134080][ T8702] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  111.140109][ T8704] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  111.170849][ T8708] binder: BINDER_SET_CONTEXT_MGR bad uid 60929 != 0
[  111.174004][ T8708] binder: 8696:8708 ioctl 40046207 0 returned -1
[  111.535594][ T8731] team0: Device gtp0 is of different type
[  111.596483][   T64] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  111.757907][   T64] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  111.761419][   T64] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  111.764463][   T64] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  111.768824][   T64] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  111.772394][   T64] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.777538][   T64] usb 6-1: config 0 descriptor??
[  112.038016][ T5946] Bluetooth: hci1: unexpected event for opcode 0x2028
[  112.087709][ T8739] netlink: 'syz.3.834': attribute type 4 has an invalid length.
[  112.096332][ T8739] : renamed from bond0 (while UP)
[  112.188225][   T64] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  112.196511][   T64] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  112.204413][ T8745] openvswitch: netlink: Geneve opt len 10 is not a multiple of 4.
[  112.239059][ T8751] hugetlbfs: Unknown parameter 'nr_in~�v'
[  112.269297][ T5946] Bluetooth: hci0: unexpected event for opcode 0x2003
[  112.277792][ T8758] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  112.420142][ T8772] netlink: 'syz.2.846': attribute type 1 has an invalid length.
[  112.424318][ T8772] netlink: 'syz.2.846': attribute type 10 has an invalid length.
[  112.440512][ T8772] team0: Port device geneve0 added
[  112.447496][   T29] usb 6-1: USB disconnect, device number 10
[  112.898217][ T8808] ������: renamed from bridge_slave_1 (while UP)
[  113.704472][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  113.704491][   T40] audit: type=1400 audit(1747922478.622:533): avc:  denied  { setopt } for  pid=8841 comm="syz.3.865" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  113.825610][    T9] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  113.826573][ T8849] ip6erspan0: entered promiscuous mode
[  113.952628][ T8853] can: request_module (can-proto-0) failed.
[  113.985629][    T9] usb 5-1: Using ep0 maxpacket: 8
[  113.988949][    T9] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  113.991879][    T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  113.994612][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  113.997440][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  114.000151][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  114.004366][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  114.007575][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.216266][    T9] usb 5-1: usb_control_msg returned -32
[  114.218178][    T9] usbtmc 5-1:16.0: can't read capabilities
[  114.929913][ T8861] binder: 8860:8861 ioctl c0306201 2000000001c0 returned -22
[  114.943271][ T8862] usbtmc 5-1:16.0: usb_clear_halt returned -32
[  115.162343][   T40] audit: type=1400 audit(1747922480.082:534): avc:  denied  { open } for  pid=8867 comm="syz.3.873" path="/dev/ptyqa" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  115.238527][ T2297] usb 5-1: USB disconnect, device number 13
[  115.240415][   T40] audit: type=1400 audit(1747922480.162:535): avc:  denied  { ioctl } for  pid=8867 comm="syz.3.873" path="/dev/ptyqa" dev="devtmpfs" ino=137 ioctlcmd=0x4b6c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  115.705732][   T12] wlan0: Trigger new scan to find an IBSS to join
[  115.975601][   T40] audit: type=1400 audit(1747922480.892:536): avc:  denied  { setopt } for  pid=8895 comm="syz.1.883" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  116.017353][   T40] audit: type=1400 audit(1747922480.942:537): avc:  denied  { connect } for  pid=8890 comm="syz.0.882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  116.031700][   T40] audit: type=1400 audit(1747922480.942:538): avc:  denied  { map } for  pid=8899 comm="syz.2.885" path="socket:[25886]" dev="sockfs" ino=25886 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  116.096067][   T40] audit: type=1400 audit(1747922481.022:539): avc:  denied  { execute } for  pid=8890 comm="syz.0.882" path="/dev/audio1" dev="devtmpfs" ino=1316 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  116.134388][ T8920] __nla_validate_parse: 9 callbacks suppressed
[  116.134398][ T8920] netlink: 16 bytes leftover after parsing attributes in process `syz.1.889'.
[  116.191435][ T8925] netlink: 8 bytes leftover after parsing attributes in process `syz.2.891'.
[  116.282488][ T8937] netlink: 8 bytes leftover after parsing attributes in process `syz.2.893'.
[  116.569786][ T8963] netlink: 'syz.1.904': attribute type 10 has an invalid length.
[  116.572346][ T8963] netlink: 40 bytes leftover after parsing attributes in process `syz.1.904'.
[  116.583722][ T8963] team0: Port device geneve0 added
[  116.597426][ T8964] Bluetooth: MGMT ver 1.23
[  116.618360][   T65] wlan0: Creating new IBSS network, BSSID 5e:dc:be:07:f3:aa
[  116.633090][   T40] audit: type=1400 audit(1747922481.552:540): avc:  denied  { create } for  pid=8968 comm="syz.3.905" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  117.468916][ T8994] 9pnet_virtio: no channels available for device 127.0.0.1
[  117.677532][   T40] audit: type=1400 audit(1747922482.602:541): avc:  denied  { ioctl } for  pid=9000 comm="syz.1.914" path="/dev/input/mice" dev="devtmpfs" ino=939 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  117.738009][ T8998] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  117.740865][ T8998] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  117.745657][ T8998] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  117.761481][ T9008] ipt_ECN: cannot use operation on non-tcp rule
[  118.125663][   T64] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  118.277528][   T64] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.282164][   T64] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.286752][   T64] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  118.292131][   T64] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  118.296511][   T64] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.301584][   T64] usb 8-1: config 0 descriptor??
[  118.620496][ T9032] netlink: 14212 bytes leftover after parsing attributes in process `syz.2.922'.
[  118.742575][ T9041] IPv6: NLM_F_CREATE should be specified when creating new route
[  118.747445][ T9045] netlink: 16 bytes leftover after parsing attributes in process `syz.0.927'.
[  118.748387][ T9041] overlayfs: missing 'workdir'
[  118.754509][   T46] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  118.757444][   T46] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  118.775910][ T6342] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  118.794751][ T9048] netlink: 28 bytes leftover after parsing attributes in process `syz.0.928'.
[  118.915739][ T6342] usb 6-1: new low-speed USB device number 11 using dummy_hcd
[  118.976532][   T64] usbhid 8-1:0.0: can't add hid device: -71
[  118.976590][   T64] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  118.982910][   T64] usb 8-1: USB disconnect, device number 14
[  119.068194][ T6342] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  119.068274][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  119.068290][ T6342] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  119.068305][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  119.068319][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  119.069383][ T6342] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  119.069412][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  119.069426][ T6342] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  119.069439][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  119.069452][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  119.070444][ T6342] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  119.070465][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  119.070479][ T6342] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  119.070492][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  119.070505][ T6342] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  119.073402][ T6342] usb 6-1: string descriptor 0 read error: -22
[  119.073464][ T6342] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  119.073476][ T6342] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.079655][ T6342] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  119.227180][ T9071] netlink: 4 bytes leftover after parsing attributes in process `syz.2.935'.
[  119.231958][ T9071] netlink: 12 bytes leftover after parsing attributes in process `syz.2.935'.
[  119.285757][   T64] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  119.427300][   T24] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  119.448214][ T9034] could not allocate digest TFM handle cryptd(blake2b-160)
[  119.587050][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.591422][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.595332][   T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  119.600589][   T24] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  119.604002][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.608593][   T24] usb 5-1: config 0 descriptor??
[  119.705705][ T5944] Bluetooth: hci1: command 0x0c1a tx timeout
[  119.775673][ T5944] Bluetooth: hci0: command 0x0419 tx timeout
[  119.775746][   T64] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  119.778331][ T5944] Bluetooth: hci2: command 0x0c1a tx timeout
[  119.800631][   T40] audit: type=1400 audit(1747922484.722:542): avc:  denied  { mount } for  pid=9082 comm="syz.3.938" name="/" dev="configfs" ino=2066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  119.810038][   T40] audit: type=1400 audit(1747922484.722:543): avc:  denied  { setattr } for  pid=9082 comm="syz.3.938" name="/" dev="configfs" ino=2066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  119.890306][   T40] audit: type=1400 audit(1747922484.812:544): avc:  denied  { unmount } for  pid=6168 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  119.943548][ T9101] bond0: entered promiscuous mode
[  119.948039][ T9101] 8021q: adding VLAN 0 to HW filter on device bond0
[  119.993955][   T40] audit: type=1400 audit(1747922484.912:545): avc:  denied  { remount } for  pid=9107 comm="syz.3.945" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  120.005172][   T40] audit: type=1400 audit(1747922484.912:546): avc:  denied  { listen } for  pid=9107 comm="syz.3.945" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  120.018773][   T24] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  120.026361][   T24] plantronics 0003:047F:FFFF.0005: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  120.073481][ T9115] overlayfs: failed to clone upperpath
[  120.205709][   T40] audit: type=1400 audit(1747922485.122:547): avc:  denied  { read } for  pid=9118 comm="syz.3.949" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  120.205756][   T40] audit: type=1400 audit(1747922485.122:548): avc:  denied  { write } for  pid=9128 comm="syz.2.952" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  120.735109][   T40] audit: type=1400 audit(1747922485.652:549): avc:  denied  { setopt } for  pid=9151 comm="syz.2.957" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  120.804084][ T9158] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=272 sclass=netlink_route_socket pid=9158 comm=syz.2.959
[  120.943252][   T40] audit: type=1400 audit(1747922485.862:550): avc:  denied  { accept } for  pid=9169 comm="syz.2.963" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  121.154618][ T9181] i2c i2c-1: Invalid block write size 34
[  121.458984][ T5979] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  121.605545][ T5979] usb 8-1: Using ep0 maxpacket: 16
[  121.608548][ T5979] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  121.612091][ T5979] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  121.615277][ T5979] usb 8-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  121.618411][ T5979] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.624444][ T5979] usb 8-1: config 0 descriptor??
[  121.697795][    T9] usb 6-1: USB disconnect, device number 11
[  121.728870][ T9188] netlink: 'syz.1.970': attribute type 1 has an invalid length.
[  121.775271][   T40] audit: type=1400 audit(1747922486.692:551): avc:  denied  { create } for  pid=9187 comm="syz.1.970" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  121.834839][ T5979] input: HID 05ac:8241 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:05AC:8241.0006/input/input12
[  121.919493][ T5979] appleir 0003:05AC:8241.0006: input,hiddev0,hidraw2: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.3-1/input0
[  121.960409][ T9202] binder: 9200:9202 ioctl 4018620d 0 returned -22
[  121.963395][ T9201] binder: 9200:9201 ioctl 4018620d 0 returned -22
[  121.967249][ T9201] binder: 9200:9201 ioctl c0306201 0 returned -14
[  122.055113][ T9199] overlayfs: failed to clone upperpath
[  122.286879][    T9] usb 5-1: USB disconnect, device number 14
[  123.050978][ T9248] netlink: 4 bytes leftover after parsing attributes in process `syz.1.986'.
[  123.054167][ T9248] netlink: 4 bytes leftover after parsing attributes in process `syz.1.986'.
[  123.057057][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  123.059980][ T9248] netlink: 4 bytes leftover after parsing attributes in process `syz.1.986'.
[  123.063396][ T9248] netlink: 4 bytes leftover after parsing attributes in process `syz.1.986'.
[  123.100014][ T9250] netlink: 64 bytes leftover after parsing attributes in process `syz.1.987'.
[  123.104013][ T9250] tmpfs: Group quota inode hardlimit too large.
[  123.109299][ T9250] netlink: 64 bytes leftover after parsing attributes in process `syz.1.987'.
[  123.409912][ T9273] SELinux:  Context system_u:object_r:console_device_t:s0 is not valid (left unmapped).
[  123.419766][ T9275] openvswitch: netlink: Flow actions attr not present in new flow.
[  123.450749][ T9280] netlink: 12 bytes leftover after parsing attributes in process `syz.0.997'.
[  123.498447][ T5946] Bluetooth: hci0: unexpected event for opcode 0x2012
[  123.526362][ T9280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.997'.
[  123.660488][ T9312] syz.0.1008: attempt to access beyond end of device
[  123.660488][ T9312] loop0: rw=0, sector=16, nr_sectors = 1 limit=0
[  123.664736][ T9312] qnx6: unable to read the first superblock
[  123.666890][ T9312] syz.0.1008: attempt to access beyond end of device
[  123.666890][ T9312] loop0: rw=0, sector=0, nr_sectors = 1 limit=0
[  123.671034][ T9312] qnx6: unable to read the first superblock
[  123.672925][ T9312] qnx6: unable to read the first superblock
[  123.740588][   T24] usb 8-1: USB disconnect, device number 15
[  123.747080][ T9328] netlink: 'syz.3.1013': attribute type 15 has an invalid length.
[  123.748534][ T6342] libceph: connect (1)[c::]:6789 error -101
[  123.753950][ T6342] libceph: mon0 (1)[c::]:6789 connect error
[  123.822994][ T9321] ceph: No mds server is up or the cluster is laggy
[  123.881894][ T9347] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=98 sclass=netlink_route_socket pid=9347 comm=syz.0.1019
[  123.920806][ T9353] sg_read: process 571 (syz.0.1023) changed security contexts after opening file descriptor, this is not allowed.
[  123.927714][ T5946] Bluetooth: hci2: SCO packet for unknown connection handle 713
[  123.929685][ T9360] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1025'.
[  124.030751][ T9383] overlay: Unknown parameter 'euid<00000000000000060928'
[  124.035006][ T9383] ntfs3(nbd1): try to read out of volume at offset 0x0
[  124.162367][ T9408] trusted_key: encrypted_key: master key parameter '' is invalid
[  124.206931][ T9416] netlink: 'syz.1.1039': attribute type 1 has an invalid length.
[  124.209639][ T9416] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1039'.
[  124.213469][ T9416] openvswitch: netlink: nsh attribute has 2 unknown bytes.
[  124.511809][ T9435] netlink: 'syz.2.1050': attribute type 3 has an invalid length.
[  124.514217][ T9435] netlink: 'syz.2.1050': attribute type 1 has an invalid length.
[  124.883150][ T9438] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=46614 sclass=netlink_tcpdiag_socket pid=9438 comm=syz.3.1051
[  125.238400][ T9454] netlink: 'syz.0.1057': attribute type 10 has an invalid length.
[  125.359420][ T9454] team0: Cannot enslave team device to itself
[  125.381363][   T40] kauditd_printk_skb: 56 callbacks suppressed
[  125.381388][   T40] audit: type=1400 audit(1747922490.292:608): avc:  denied  { bind } for  pid=9466 comm="syz.1.1060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  125.418834][   T40] audit: type=1400 audit(1747922490.292:609): avc:  denied  { listen } for  pid=9466 comm="syz.1.1060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  125.419037][ T9469] netlink: 'syz.2.1059': attribute type 10 has an invalid length.
[  125.436744][   T40] audit: type=1400 audit(1747922490.292:610): avc:  denied  { accept } for  pid=9466 comm="syz.1.1060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  125.595688][ T9469] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  125.658424][   T40] audit: type=1804 audit(1747922490.582:611): pid=9482 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.1061" name="/newroot/191/file0" dev="tmpfs" ino=1022 res=1 errno=0
[  125.771933][ T9465] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  125.995034][   T40] audit: type=1400 audit(1747922490.892:612): avc:  denied  { write } for  pid=9486 comm="syz.3.1063" lport=54195 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  126.031485][ T9487] netlink: 'syz.3.1063': attribute type 3 has an invalid length.
[  126.034096][ T9495] netlink: 'syz.0.1066': attribute type 1 has an invalid length.
[  126.178490][ T9496] bond3: (slave wireguard0): The slave device specified does not support setting the MAC address
[  126.214431][ T9496] bond3: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[  126.248338][   T40] audit: type=1400 audit(1747922491.152:613): avc:  denied  { map } for  pid=9502 comm="syz.3.1068" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  126.259534][ T9496] bond3: (slave wireguard0): making interface the new active one
[  126.283261][ T9496] bond3: (slave wireguard0): Enslaving as an active interface with an up link
[  126.395697][ T9508] bpf: Bad value for 'uid'
[  126.841619][   T40] audit: type=1400 audit(1747922491.762:614): avc:  denied  { ioctl } for  pid=9540 comm="syz.3.1080" path="socket:[26459]" dev="sockfs" ino=26459 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  127.085354][   T40] audit: type=1400 audit(1747922492.002:615): avc:  denied  { setopt } for  pid=9548 comm="syz.2.1085" lport=44703 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  127.329019][ T5343]  pmem0: [POWERTEC]
[  127.521193][ T9569] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=40976 sclass=netlink_route_socket pid=9569 comm=syz.1.1089
[  127.547463][ T5946] Bluetooth: hci2: unexpected event for opcode 0x51b8
[  127.555150][   T40] audit: type=1400 audit(1747922492.472:616): avc:  denied  { mount } for  pid=9568 comm="syz.1.1089" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  127.568156][ T9569] tracefs: Bad value for 'mode'
[  127.573482][   T40] audit: type=1400 audit(1747922492.492:617): avc:  denied  { remount } for  pid=9568 comm="syz.1.1089" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  127.576672][ T9569] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  127.764628][ T9573] netlink: 'syz.1.1091': attribute type 10 has an invalid length.
[  127.863276][ T9573] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  127.883432][ T9572] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  128.588540][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  128.672649][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  128.793282][ T9619] SELinux: syz.3.1104 (9619) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  129.467676][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  129.667365][ T9665] __nla_validate_parse: 5 callbacks suppressed
[  129.667388][ T9665] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1116'.
[  129.748415][ T9662] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1115'.
[  129.756351][ T9668] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1117'.
[  129.795614][ T9668] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.818220][ T9665] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1116'.
[  129.832111][ T9668] batman_adv: batadv0: Removing interface: batadv_slave_0
[  129.862444][ T9674] netlink: 'syz.3.1118': attribute type 25 has an invalid length.
[  129.897130][ T9668] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  129.900480][ T9668] batman_adv: batadv0: Removing interface: batadv_slave_1
[  130.039551][ T9679] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9679 comm=syz.2.1119
[  130.566969][ T9700] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1127'.
[  130.631995][ T9705] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  131.276824][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  131.276846][   T40] audit: type=1400 audit(1747922496.192:628): avc:  denied  { write } for  pid=9723 comm="syz.0.1134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  131.394253][ T9724] 9pnet: Could not find request transport: vUrtio
[  131.464610][ T9730] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9730 comm=syz.2.1135
[  131.467061][   T40] audit: type=1400 audit(1747922496.382:629): avc:  denied  { ioctl } for  pid=9729 comm="syz.2.1135" path="socket:[28936]" dev="sockfs" ino=28936 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  131.600243][   T40] audit: type=1400 audit(1747922496.512:630): avc:  denied  { mount } for  pid=9732 comm="syz.0.1136" name="/" dev="9p" ino=35913824 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  131.796725][   T40] audit: type=1400 audit(1747922496.712:631): avc:  denied  { unmount } for  pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  131.850535][ T9741] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1139'.
[  132.055360][   T40] audit: type=1400 audit(1747922496.972:632): avc:  denied  { mount } for  pid=9745 comm="syz.2.1142" name="/" dev="nfsd" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfsd_fs_t tclass=filesystem permissive=1
[  132.087294][ T5946] Bluetooth: hci2: unexpected event for opcode 0x1004
[  132.108404][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  132.134058][ T9748] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1141'.
[  132.178735][ T9748] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  132.198483][   T40] audit: type=1400 audit(1747922497.112:633): avc:  denied  { mount } for  pid=9742 comm="syz.1.1140" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  132.263737][ T9752] syz.2.1143 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  132.315359][   T40] audit: type=1326 audit(1747922497.232:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9753 comm="syz.0.1144" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbd4b58e969 code=0x0
[  132.337038][ T9756] tmpfs: Bad value for 'mpol'
[  132.392390][   T40] audit: type=1400 audit(1747922497.302:635): avc:  denied  { unmount } for  pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  132.442956][ T9761] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1146'.
[  132.455700][ T6008] IPVS: starting estimator thread 0...
[  132.556260][    C2] vkms_vblank_simulate: vblank timer overrun
[  132.574386][   T40] audit: type=1400 audit(1747922497.482:636): avc:  denied  { read } for  pid=9759 comm="syz.1.1146" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  132.603546][    C2] vkms_vblank_simulate: vblank timer overrun
[  132.676393][ T9762] IPVS: using max 27 ests per chain, 64800 per kthread
[  133.035716][ T1334] usb 8-1: new low-speed USB device number 16 using dummy_hcd
[  133.171168][ T9772] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  133.187407][ T1334] usb 8-1: config index 0 descriptor too short (expected 1307, got 27)
[  133.191254][ T1334] usb 8-1: config 0 has an invalid interface number: 0 but max is -1
[  133.195197][ T1334] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 0
[  133.225610][ T1334] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  133.232670][ T1334] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  133.239092][ T1334] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  133.253734][ T1334] usb 8-1: string descriptor 0 read error: -22
[  133.257146][ T9763] IPVS: set_ctl: invalid protocol: 51 172.30.1.1:20001
[  133.258791][ T1334] usb 8-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  133.267510][ T1334] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.283619][ T1334] usb 8-1: config 0 descriptor??
[  133.299388][ T9768] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  133.337975][ T1334] hub 8-1:0.0: bad descriptor, ignoring hub
[  133.341263][ T1334] hub 8-1:0.0: probe with driver hub failed with error -5
[  133.349274][ T1334] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input14
[  133.369962][    C2] usb_acecad 8-1:0.0: can't resubmit intr, dummy_hcd.3-1/input0, status -1
[  133.541410][   T40] audit: type=1400 audit(1747922498.452:637): avc:  denied  { append } for  pid=9767 comm="syz.3.1149" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  133.565648][    C2] vkms_vblank_simulate: vblank timer overrun
[  133.652304][    C2] vkms_vblank_simulate: vblank timer overrun
[  133.868928][ T9790] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1155'.
[  133.962333][ T9790] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9790 comm=syz.0.1155
[  134.402354][ T9797] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2304 sclass=netlink_route_socket pid=9797 comm=syz.0.1156
[  134.466395][ T9800] syz.1.1157 uses old SIOCAX25GETINFO
[  134.470678][ T9800] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1157'.
[  134.740946][ T9807] afs: Unknown parameter 'dynns'
[  135.038924][ T9811] xt_hashlimit: size too large, truncated to 1048576
[  135.523423][ T9815] netlink: 108 bytes leftover after parsing attributes in process `syz.2.1163'.
[  136.100482][ T5946] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  136.107240][ T5946] Bluetooth: hci2: Injecting HCI hardware error event
[  136.115912][ T5946] Bluetooth: hci2: hardware error 0x00
[  136.180366][ T9824] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1166'.
[  136.199654][ T2297] usb 8-1: USB disconnect, device number 16
[  136.221125][ T5283] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  136.274037][ T5283] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  136.284328][ T9829] overlayfs: failed to clone upperpath
[  136.322745][ T9830] overlay: Unknown parameter 'uid>00000000000000060928'
[  136.332001][ T5283] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  136.353245][ T5283] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  136.370099][ T9830] xt_addrtype: ipv6 BLACKHOLE matching not supported
[  136.370623][ T5283] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  136.415551][    C2] vkms_vblank_simulate: vblank timer overrun
[  136.545023][    C2] vkms_vblank_simulate: vblank timer overrun
[  136.791325][ T9824] team0: Port device team_slave_0 removed
[  137.031276][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  137.031292][   T40] audit: type=1400 audit(1747922501.952:644): avc:  denied  { mounton } for  pid=9842 comm="syz.1.1172" path="/syzcgroup/unified/syz1" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  137.091916][ T9843] XFS (nullb0): Invalid superblock magic number
[  137.391780][ T9822] chnl_net:caif_netlink_parms(): no params data found
[  137.592707][   T40] audit: type=1400 audit(1747922502.512:645): avc:  denied  { write } for  pid=9863 comm="syz.2.1175" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  137.813292][ T9822] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.817966][ T9822] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.827472][ T9822] bridge_slave_0: entered allmulticast mode
[  137.839006][ T9822] bridge_slave_0: entered promiscuous mode
[  137.873949][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  137.875140][ T9822] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.927161][ T9822] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.930563][ T9822] bridge_slave_1: entered allmulticast mode
[  137.934901][ T9822] bridge_slave_1: entered promiscuous mode
[  138.182763][ T9822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  138.186785][ T5946] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  138.208149][ T9822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  138.294603][   T40] audit: type=1400 audit(1747922503.212:646): avc:  denied  { read } for  pid=9880 comm="syz.3.1179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  138.407271][ T9822] team0: Port device team_slave_0 added
[  138.414179][ T9822] team0: Port device team_slave_1 added
[  138.508409][ T5946] Bluetooth: hci1: command tx timeout
[  138.562736][ T9889] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1182'.
[  138.571033][   T40] audit: type=1400 audit(1747922503.482:647): avc:  denied  { write } for  pid=9890 comm="syz.2.1181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  138.618293][ T9822] batman_adv: batadv0: Adding interface: batadv_slave_0
[  138.624350][ T9822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  138.637772][ T9822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  138.646826][ T9822] batman_adv: batadv0: Adding interface: batadv_slave_1
[  138.652428][ T9822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  138.668892][ T9822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  138.805033][ T9899] netlink: 144 bytes leftover after parsing attributes in process `syz.3.1185'.
[  138.990714][   T40] audit: type=1400 audit(1747922503.912:648): avc:  denied  { mount } for  pid=9901 comm="syz.2.1186" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  139.051582][ T9905] overlayfs: failed to clone upperpath
[  139.173007][ T9822] hsr_slave_0: entered promiscuous mode
[  139.178690][ T9822] hsr_slave_1: entered promiscuous mode
[  139.847859][ T9822] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.021618][ T9929] netlink: 'syz.3.1193': attribute type 13 has an invalid length.
[  140.131089][ T9822] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.179958][ T9942] netlink: 'syz.3.1197': attribute type 10 has an invalid length.
[  140.191550][   T40] audit: type=1400 audit(1747922505.102:649): avc:  denied  { getopt } for  pid=9936 comm="syz.2.1196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  140.378322][ T9822] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.552813][ T9953] ������: renamed from bridge_slave_1 (while UP)
[  140.591142][ T5946] Bluetooth: hci1: command tx timeout
[  140.669946][ T9822] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.870232][ T9965] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1207'.
[  141.064982][ T9974] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1208'.
[  141.114143][   T40] audit: type=1400 audit(1747922506.032:650): avc:  denied  { ioctl } for  pid=9959 comm="syz.3.1203" path="socket:[28652]" dev="sockfs" ino=28652 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  141.116864][ T9822] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  141.172218][ T9976] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1208'.
[  141.221303][ T9960] wg2: entered promiscuous mode
[  141.223788][ T9960] wg2: entered allmulticast mode
[  141.238702][ T9822] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  141.248964][ T9822] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  141.290903][ T9822] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  141.498074][ T9822] 8021q: adding VLAN 0 to HW filter on device bond0
[  141.592747][ T9822] 8021q: adding VLAN 0 to HW filter on device team0
[  141.655374][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.660593][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  141.677551][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.702807][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.715629][ T9985] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1212'.
[  141.777329][ T9983] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1211'.
[  141.780633][ T9983] 0�X��D: renamed from macvtap0 (while UP)
[  141.808578][ T9983] 0�X��D: entered allmulticast mode
[  141.828687][ T9983] veth0_macvtap: entered allmulticast mode
[  141.833417][ T9983] A link change request failed with some changes committed already. Interface 
30�X��D may have been left with an inconsistent configuration, please check.
[  141.924893][ T9822] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  142.060683][ T9998] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  142.071760][ T9998] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  142.116172][ T9998] vhci_hcd vhci_hcd.0: Device attached
[  142.156132][   T40] audit: type=1400 audit(1747922507.072:651): avc:  denied  { checkpoint_restore } for  pid=9997 comm="syz.3.1214" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  142.205709][ T9998] syzkaller1: entered promiscuous mode
[  142.212423][   T40] audit: type=1400 audit(1747922507.132:652): avc:  denied  { create } for  pid=10010 comm="syz.1.1216" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  142.218024][T10014] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2052 sclass=netlink_route_socket pid=10014 comm=syz.2.1217
[  142.220072][ T9998] syzkaller1: entered allmulticast mode
[  142.231584][ T9998] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  142.234080][ T9998] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  142.234156][ T9998] IPv6: NLM_F_CREATE should be set when creating new route
[  142.234204][ T9998] IPv6: NLM_F_CREATE should be set when creating new route
[  142.234225][ T9998] IPv6: NLM_F_CREATE should be set when creating new route
[  142.236130][ T9998] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  142.238995][ T9998] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9998 comm=syz.3.1214
[  142.242925][ T9822] 8021q: adding VLAN 0 to HW filter on device batadv0
[  142.301256][T10012] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1216'.
[  142.373597][ T9822] veth0_vlan: entered promiscuous mode
[  142.382611][ T9822] veth1_vlan: entered promiscuous mode
[  142.517356][    T9] usb 44-1: SetAddress Request (2) to port 0
[  142.521505][    T9] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  142.596197][ T9822] veth0_macvtap: entered promiscuous mode
[  142.606157][ T9822] veth1_macvtap: entered promiscuous mode
[  142.655906][ T5946] Bluetooth: hci1: command tx timeout
[  142.659506][ T9822] batman_adv: batadv0: Interface activated: batadv_slave_0
[  142.680637][ T9822] batman_adv: batadv0: Interface activated: batadv_slave_1
[  142.692858][ T9822] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.702411][ T9822] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.735709][ T9822] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.739230][ T9822] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.926929][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.930931][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.973656][ T1155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.978847][ T1155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.998826][   T40] audit: type=1400 audit(1747922507.922:653): avc:  denied  { mounton } for  pid=9822 comm="syz-executor" path="/syzkaller.i5mxOn/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=31900 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  143.180146][T10041] tipc: Started in network mode
[  143.199140][T10041] tipc: Node identity fe800000000000000000000000000015, cluster identity 4711
[  143.208146][T10041] tipc: Enabled bearer <udp:syz1>, priority 10
[  143.211590][T10000] vhci_hcd: connection reset by peer
[  143.214168][ T9468] vhci_hcd: stop threads
[  143.263781][ T9468] vhci_hcd: release socket
[  143.268079][ T9468] vhci_hcd: disconnect device
[  143.820065][    C1] vkms_vblank_simulate: vblank timer overrun
[  143.935386][   T40] audit: type=1400 audit(1747922508.852:654): avc:  denied  { write } for  pid=10065 comm="syz.3.1229" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  144.019698][   T40] audit: type=1400 audit(1747922508.852:655): avc:  denied  { open } for  pid=10065 comm="syz.3.1229" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  144.054074][   T40] audit: type=1400 audit(1747922508.962:656): avc:  denied  { mount } for  pid=10069 comm="syz.1.1231" name="/" dev="rpc_pipefs" ino=30937 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  144.076505][T10066] random: crng reseeded on system resumption
[  144.113826][   T40] audit: type=1400 audit(1747922508.972:657): avc:  denied  { append } for  pid=10065 comm="syz.3.1229" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  144.128167][    C1] vkms_vblank_simulate: vblank timer overrun
[  144.166968][    C1] vkms_vblank_simulate: vblank timer overrun
[  144.186019][   T40] audit: type=1400 audit(1747922509.102:658): avc:  denied  { shutdown } for  pid=10074 comm="syz.1.1232" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  144.236725][   T34] tipc: Node number set to 4269801493
[  144.312453][T10078] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  144.508140][T10066] Unrecognized hibernate image header format!
[  144.511615][T10066] PM: hibernation: Image mismatch: architecture specific data
[  145.265891][    C1] vkms_vblank_simulate: vblank timer overrun
[  145.388415][    C1] vkms_vblank_simulate: vblank timer overrun
[  145.396833][T10115] tmpfs: Bad value for 'mpol'
[  145.420087][    C1] vkms_vblank_simulate: vblank timer overrun
[  145.437447][T10115] vlan2: entered promiscuous mode
[  145.440031][T10115] vlan2: entered allmulticast mode
[  145.448955][    C1] vkms_vblank_simulate: vblank timer overrun
[  145.520072][    C1] vkms_vblank_simulate: vblank timer overrun
[  145.734053][ T1155] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.844517][T10118] can0: slcan on ttyS3.
[  146.053657][T10127] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  146.059089][T10127] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.189055][   T67] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  146.238271][   T67] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  146.267705][   T67] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  146.290860][   T67] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  146.352695][   T67] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  146.408323][    C1] vkms_vblank_simulate: vblank timer overrun
[  146.612443][T10127] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  146.620059][T10127] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.655379][T10145] vlan2: entered promiscuous mode
[  146.660322][T10145] vlan2: entered allmulticast mode
[  146.665216][T10145] hsr_slave_1: entered allmulticast mode
[  146.685722][T10117] can0 (unregistered): slcan off ttyS3.
[  146.737952][ T1192] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  146.830504][ T1155] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.892052][    C1] vkms_vblank_simulate: vblank timer overrun
[  147.031889][    C1] vkms_vblank_simulate: vblank timer overrun
[  147.100090][T10127] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  147.102732][    C1] vkms_vblank_simulate: vblank timer overrun
[  147.113670][T10127] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.302157][ T1155] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.431159][T10127] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  147.442164][T10127] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.539810][ T1155] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.626673][    T9] usb 44-1: device descriptor read/8, error -110
[  147.640294][    C1] vkms_vblank_simulate: vblank timer overrun
[  147.726117][   T40] audit: type=1400 audit(1747922512.642:659): avc:  denied  { connect } for  pid=10169 comm="syz.1.1256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  147.873168][T10176] ubi31: detaching mtd0
[  147.878551][T10176] ubi31: mtd0 is detached
[  147.935673][    C1] vkms_vblank_simulate: vblank timer overrun
[  148.077533][    T9] usb usb44-port1: attempt power cycle
[  148.218212][T10127] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  148.234889][T10127] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.251766][T10127] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  148.260366][T10127] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.327269][T10127] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  148.334642][T10127] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.398226][T10131] chnl_net:caif_netlink_parms(): no params data found
[  148.416566][ T5946] Bluetooth: hci1: command tx timeout
[  148.480428][T10127] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  148.489337][T10127] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.494195][ T1155] bridge_slave_1: left allmulticast mode
[  148.496685][ T1155] bridge_slave_1: left promiscuous mode
[  148.500861][ T1155] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.572275][ T1155] bridge_slave_0: left allmulticast mode
[  148.575138][ T1155] bridge_slave_0: left promiscuous mode
[  148.586568][ T1155] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.698722][    T9] usb usb44-port1: unable to enumerate USB device
[  149.393272][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  149.864052][ T1155] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  149.933511][ T1155] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  149.948995][ T1155] bond0 (unregistering): Released all slaves
[  149.969082][T10188] wg2: left promiscuous mode
[  149.971175][T10188] wg2: left allmulticast mode
[  150.024698][T10189] wg2: entered promiscuous mode
[  150.033030][T10189] wg2: entered allmulticast mode
[  150.528231][ T5946] Bluetooth: hci1: command tx timeout
[  150.982154][T10131] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.985744][T10131] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.016373][T10131] bridge_slave_0: entered allmulticast mode
[  151.021554][T10131] bridge_slave_0: entered promiscuous mode
[  151.053725][T10131] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.075704][T10131] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.114237][T10131] bridge_slave_1: entered allmulticast mode
[  151.147395][T10131] bridge_slave_1: entered promiscuous mode
[  151.191130][   T40] audit: type=1400 audit(1747922516.102:660): avc:  denied  { map } for  pid=10238 comm="syz.3.1275" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  151.217039][   T40] audit: type=1400 audit(1747922516.102:661): avc:  denied  { execute } for  pid=10238 comm="syz.3.1275" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  151.588442][T10248] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1276'.
[  151.605962][   T40] audit: type=1400 audit(1747922516.502:662): avc:  denied  { create } for  pid=10247 comm="syz.2.1276" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  151.618108][   T40] audit: type=1400 audit(1747922516.502:663): avc:  denied  { setopt } for  pid=10247 comm="syz.2.1276" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  151.647189][   T40] audit: type=1400 audit(1747922516.502:664): avc:  denied  { write } for  pid=10247 comm="syz.2.1276" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  151.882463][ T1155] hsr_slave_0: left promiscuous mode
[  151.895960][ T1155] hsr_slave_1: left promiscuous mode
[  151.900506][ T1155] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.907336][ T1155] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.921536][ T1155] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.924810][ T1155] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.082959][ T1155] veth1_macvtap: left promiscuous mode
[  152.086698][ T1155] veth0_macvtap: left promiscuous mode
[  152.091394][ T1155] veth1_vlan: left promiscuous mode
[  152.110165][ T1155] veth0_vlan: left promiscuous mode
[  152.370778][T10272] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1283'.
[  152.590142][ T5946] Bluetooth: hci1: command tx timeout
[  152.635058][   T40] audit: type=1400 audit(1747922517.552:665): avc:  denied  { listen } for  pid=10275 comm="syz.3.1284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  152.660996][   T40] audit: type=1400 audit(1747922517.582:666): avc:  denied  { accept } for  pid=10275 comm="syz.3.1284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  154.656984][ T5946] Bluetooth: hci1: command tx timeout
[  155.136140][ T1155] team0 (unregistering): Port device team_slave_1 removed
[  155.572230][ T1155] team0 (unregistering): Port device team_slave_0 removed
[  156.999405][   T40] audit: type=1400 audit(1747922521.912:667): avc:  denied  { view } for  pid=10302 comm="syz.3.1293" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  157.180426][T10305] netlink: 9 bytes leftover after parsing attributes in process `syz.3.1294'.
[  158.568587][T10131] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.579038][T10131] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.625791][T10305] 1�: renamed from 
70� (while UP)
[  158.733969][T10305] A link change request failed with some changes committed already. Interface 
71� may have been left with an inconsistent configuration, please check.
[  158.860135][   T40] audit: type=1400 audit(1747922523.782:668): avc:  denied  { create } for  pid=10310 comm="syz.2.1296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  159.080136][T10131] team0: Port device team_slave_0 added
[  159.088763][T10131] team0: Port device team_slave_1 added
[  159.297937][T10336] netlink: 'syz.1.1300': attribute type 10 has an invalid length.
[  159.302633][T10336] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1300'.
[  159.455595][T10336] batadv0: entered promiscuous mode
[  159.474761][T10336] batadv0: entered allmulticast mode
[  159.491871][T10336] bridge0: port 3(batadv0) entered blocking state
[  159.495277][T10336] bridge0: port 3(batadv0) entered disabled state
[  159.519914][T10336] bridge0: port 3(batadv0) entered blocking state
[  159.523856][T10336] bridge0: port 3(batadv0) entered forwarding state
[  159.532198][T10131] batman_adv: batadv0: Adding interface: batadv_slave_0
[  159.555589][T10131] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.587358][T10131] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  159.596852][T10131] batman_adv: batadv0: Adding interface: batadv_slave_1
[  159.602154][T10131] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.654005][T10131] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  159.779085][ T9460] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  159.784089][ T9460] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  160.022343][T10131] hsr_slave_0: entered promiscuous mode
[  160.047686][T10131] hsr_slave_1: entered promiscuous mode
[  161.348536][T10345] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !�fIZE����,��=���$)�%�ĂL
[  161.953050][T10403] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1317'.
[  161.963472][T10403] netlink: 'syz.3.1317': attribute type 7 has an invalid length.
[  161.967948][T10403] netlink: 'syz.3.1317': attribute type 8 has an invalid length.
[  161.970536][T10403] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1317'.
[  162.202563][T10408] syz.3.1318: attempt to access beyond end of device
[  162.202563][T10408] loop3: rw=0, sector=2, nr_sectors = 2 limit=0
[  162.211584][T10408] MINIX-fs: unable to read superblock
[  162.812271][   T40] audit: type=1400 audit(1747922527.702:669): avc:  denied  { ioctl } for  pid=10416 comm="syz.1.1321" path="socket:[33806]" dev="sockfs" ino=33806 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  163.523737][T10131] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  163.558978][T10131] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  163.568604][T10449] IPVS: length: 184 != 24
[  163.624828][T10131] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  163.673938][T10131] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  163.803900][T10457] overlayfs: failed to clone upperpath
[  163.932726][   T40] audit: type=1400 audit(1747922528.822:670): avc:  denied  { search } for  pid=5645 comm="dhcpcd" name="netdev:wlan2" dev="debugfs" ino=30668 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  164.102420][   T40] audit: type=1400 audit(1747922529.002:671): avc:  denied  { nlmsg_read } for  pid=10461 comm="syz.2.1334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  164.120540][T10131] 8021q: adding VLAN 0 to HW filter on device bond0
[  164.142132][T10131] 8021q: adding VLAN 0 to HW filter on device team0
[  164.164495][ T1192] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.168043][ T1192] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.195879][ T1192] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.200464][ T1192] bridge0: port 2(bridge_slave_1) entered forwarding state
[  164.272436][T10131] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  164.471280][T10477] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1337'.
[  164.499038][T10477] cgroup: none used incorrectly
[  164.515849][T10299] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  164.963405][T10131] 8021q: adding VLAN 0 to HW filter on device batadv0
[  165.071627][T10131] veth0_vlan: entered promiscuous mode
[  165.081412][T10131] veth1_vlan: entered promiscuous mode
[  165.111853][T10299] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  165.130882][T10131] veth0_macvtap: entered promiscuous mode
[  165.149121][T10131] veth1_macvtap: entered promiscuous mode
[  165.173780][T10131] batman_adv: batadv0: Interface activated: batadv_slave_0
[  165.181910][   T40] audit: type=1400 audit(1747922530.102:672): avc:  denied  { listen } for  pid=10505 comm="syz.2.1343" lport=37721 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  165.204622][   T40] audit: type=1400 audit(1747922530.102:673): avc:  denied  { accept } for  pid=10505 comm="syz.2.1343" lport=37721 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  165.260861][T10131] batman_adv: batadv0: Interface activated: batadv_slave_1
[  165.272135][T10131] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.295788][T10131] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.315092][T10131] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.325384][T10131] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.456813][T10513] veth1_to_bond: entered allmulticast mode
[  165.582325][T10519] hub 9-0:1.0: USB hub found
[  165.606640][T10512] veth1_to_bond: left allmulticast mode
[  165.658088][T10519] hub 9-0:1.0: 1 port detected
[  165.673672][T10520] xt_ipcomp: unknown flags 12
[  165.736115][ T9468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.739944][ T9468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.878692][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.900997][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.895972][   T40] audit: type=1400 audit(1747922531.802:674): avc:  denied  { watch watch_reads } for  pid=10554 comm="syz.1.1351" path="/proc/976/attr/current" dev="proc" ino=34900 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  166.948930][   T40] audit: type=1400 audit(1747922531.862:675): avc:  denied  { watch } for  pid=10552 comm="syz.3.1352" path="/281/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1
[  167.466361][T10585] netlink: 'syz.2.1359': attribute type 4 has an invalid length.
[  168.612917][ T1192] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.677857][T10631] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  168.960319][   T40] audit: type=1400 audit(1747922533.842:676): avc:  denied  { create } for  pid=10638 comm="syz.2.1369" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  168.974904][   T40] audit: type=1400 audit(1747922533.842:677): avc:  denied  { mounton } for  pid=10638 comm="syz.2.1369" path="/525/file0" dev="tmpfs" ino=2813 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  169.024340][   T40] audit: type=1400 audit(1747922533.942:678): avc:  denied  { unlink } for  pid=5948 comm="syz-executor" name="file0" dev="tmpfs" ino=2813 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  169.171765][   T40] audit: type=1400 audit(1747922534.092:679): avc:  denied  { connect } for  pid=10647 comm="syz.1.1373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  169.349529][ T5946] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  169.358318][ T5946] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  169.366630][ T5946] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  169.407667][ T5946] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  169.431034][ T5946] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  169.500436][T10654] binder: 10653:10654 ioctl 40046205 0 returned -22
[  169.565762][ T1192] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.658979][T10658] fuse: Bad value for 'rootmode'
[  169.869790][ T1192] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.309935][ T1192] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.706389][T10681] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1383'.
[  170.712301][T10681] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1383'.
[  170.718785][T10681] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1383'.
[  170.723729][T10681] tipc: Invalid UDP bearer configuration
[  170.723790][T10681] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  170.799872][    C1] vkms_vblank_simulate: vblank timer overrun
[  170.923839][T10649] chnl_net:caif_netlink_parms(): no params data found
[  171.006236][    C1] vkms_vblank_simulate: vblank timer overrun
[  171.149052][T10704] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1386'.
[  171.388925][ T1192] bridge_slave_1: left allmulticast mode
[  171.392420][ T1192] bridge_slave_1: left promiscuous mode
[  171.394968][ T1192] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.406264][    C1] vkms_vblank_simulate: vblank timer overrun
[  171.533025][ T1192] bridge_slave_0: left allmulticast mode
[  171.542465][ T1192] bridge_slave_0: left promiscuous mode
[  171.561908][ T5946] Bluetooth: hci1: command tx timeout
[  171.565814][ T1192] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.818922][T10717] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1388'.
[  172.150850][    C1] vkms_vblank_simulate: vblank timer overrun
[  172.901326][ T1192] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  172.924368][ T1192] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  172.953418][ T1192] bond0 (unregistering): Released all slaves
[  173.060479][T10723] fuse: Bad value for 'user_id'
[  173.077767][T10723] fuse: Bad value for 'user_id'
[  173.656766][ T5946] Bluetooth: hci1: command tx timeout
[  173.683189][T10649] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.699415][T10732] sg_write: data in/out 440207358/4056 bytes for SCSI command 0x45-- guessing data in;
[  173.699415][T10732]    program syz.3.1391 not setting count and/or reply_len properly
[  173.715105][T10649] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.719456][T10649] bridge_slave_0: entered allmulticast mode
[  173.723300][T10649] bridge_slave_0: entered promiscuous mode
[  173.855415][T10649] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.865769][T10649] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.888570][T10649] bridge_slave_1: entered allmulticast mode
[  173.945900][T10649] bridge_slave_1: entered promiscuous mode
[  174.019876][    C1] vkms_vblank_simulate: vblank timer overrun
[  174.124121][    C1] vkms_vblank_simulate: vblank timer overrun
[  174.281988][T10757] FAULT_INJECTION: forcing a failure.
[  174.281988][T10757] name failslab, interval 1, probability 0, space 0, times 1
[  174.288704][T10757] CPU: 1 UID: 0 PID: 10757 Comm: syz.3.1398 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(full) 
[  174.288749][T10757] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.288760][T10757] Call Trace:
[  174.288767][T10757]  <TASK>
[  174.288775][T10757]  dump_stack_lvl+0x16c/0x1f0
[  174.288829][T10757]  should_fail_ex+0x512/0x640
[  174.288861][T10757]  ? fs_reclaim_acquire+0xae/0x150
[  174.288888][T10757]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  174.288920][T10757]  should_failslab+0xc2/0x120
[  174.288940][T10757]  __kmalloc_noprof+0xd2/0x510
[  174.288964][T10757]  tomoyo_realpath_from_path+0xc2/0x6e0
[  174.288993][T10757]  ? tomoyo_profile+0x47/0x60
[  174.289014][T10757]  tomoyo_path_number_perm+0x245/0x580
[  174.289036][T10757]  ? tomoyo_path_number_perm+0x237/0x580
[  174.289062][T10757]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  174.289086][T10757]  ? find_held_lock+0x2b/0x80
[  174.289133][T10757]  ? find_held_lock+0x2b/0x80
[  174.289153][T10757]  ? hook_file_ioctl_common+0x145/0x410
[  174.289179][T10757]  ? __fget_files+0x20e/0x3c0
[  174.289200][T10757]  security_file_ioctl+0x9b/0x240
[  174.289228][T10757]  __x64_sys_ioctl+0xb7/0x200
[  174.289255][T10757]  do_syscall_64+0xcd/0x260
[  174.289284][T10757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.289302][T10757] RIP: 0033:0x7f54a4d8e969
[  174.289317][T10757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.289335][T10757] RSP: 002b:00007f54a5c41038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  174.289353][T10757] RAX: ffffffffffffffda RBX: 00007f54a4fb5fa0 RCX: 00007f54a4d8e969
[  174.289365][T10757] RDX: 0000200000000180 RSI: 00000000c0d05605 RDI: 0000000000000003
[  174.289376][T10757] RBP: 00007f54a5c41090 R08: 0000000000000000 R09: 0000000000000000
[  174.289387][T10757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.289398][T10757] R13: 0000000000000000 R14: 00007f54a4fb5fa0 R15: 00007fff792f9ac8
[  174.289424][T10757]  </TASK>
[  174.289432][T10757] ERROR: Out of memory at tomoyo_realpath_from_path.
[  174.448462][ T1192] hsr_slave_0: left promiscuous mode
[  174.473159][ T1192] hsr_slave_1: left promiscuous mode
[  174.477461][ T1192] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  174.480608][ T1192] batman_adv: batadv0: Removing interface: batadv_slave_0
[  174.506875][ T1192] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  174.510008][ T1192] batman_adv: batadv0: Removing interface: batadv_slave_1
[  174.613414][ T1192] veth1_macvtap: left promiscuous mode
[  174.632170][ T1192] veth0_macvtap: left promiscuous mode
[  174.635762][ T1192] veth1_vlan: left promiscuous mode
[  174.637960][ T1192] veth0_vlan: left promiscuous mode
[  175.254805][    C1] vkms_vblank_simulate: vblank timer overrun
[  175.594120][    C3] hrtimer: interrupt took 21388471 ns
[  175.707448][ T5946] Bluetooth: hci1: command tx timeout
[  177.693965][ T1192] team0 (unregistering): Port device team_slave_1 removed
[  177.777007][ T5946] Bluetooth: hci1: command tx timeout
[  177.950157][ T9468] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  178.126458][ T1192] team0 (unregistering): Port device team_slave_0 removed
[  181.090962][T10771] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1401'.
[  181.139435][T10649] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  181.172092][T10649] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  181.180671][T10776] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1402'.
[  181.664004][T10649] team0: Port device team_slave_0 added
[  181.693585][T10786] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1405'.
[  181.705094][T10649] team0: Port device team_slave_1 added
[  181.826421][T10788] hub 2-0:1.0: USB hub found
[  181.849748][T10788] hub 2-0:1.0: 2 ports detected
[  182.000148][T10649] batman_adv: batadv0: Adding interface: batadv_slave_0
[  182.003095][T10649] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  182.006558][T10795] FAULT_INJECTION: forcing a failure.
[  182.006558][T10795] name failslab, interval 1, probability 0, space 0, times 0
[  182.053375][T10649] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  182.071070][T10795] CPU: 0 UID: 0 PID: 10795 Comm: syz.3.1407 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(full) 
[  182.071095][T10795] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  182.071105][T10795] Call Trace:
[  182.071111][T10795]  <TASK>
[  182.071118][T10795]  dump_stack_lvl+0x16c/0x1f0
[  182.071150][T10795]  should_fail_ex+0x512/0x640
[  182.071176][T10795]  ? fs_reclaim_acquire+0xae/0x150
[  182.071201][T10795]  ? tomoyo_encode2+0x100/0x3e0
[  182.071225][T10795]  should_failslab+0xc2/0x120
[  182.071245][T10795]  __kmalloc_noprof+0xd2/0x510
[  182.071262][T10795]  ? d_absolute_path+0x136/0x1a0
[  182.071288][T10795]  tomoyo_encode2+0x100/0x3e0
[  182.071317][T10795]  tomoyo_encode+0x29/0x50
[  182.071341][T10795]  tomoyo_realpath_from_path+0x18f/0x6e0
[  182.071375][T10795]  tomoyo_path_number_perm+0x245/0x580
[  182.071397][T10795]  ? tomoyo_path_number_perm+0x237/0x580
[  182.071421][T10795]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  182.071446][T10795]  ? find_held_lock+0x2b/0x80
[  182.071491][T10795]  ? find_held_lock+0x2b/0x80
[  182.071511][T10795]  ? hook_file_ioctl_common+0x145/0x410
[  182.071535][T10795]  ? __fget_files+0x20e/0x3c0
[  182.071557][T10795]  security_file_ioctl+0x9b/0x240
[  182.071585][T10795]  __x64_sys_ioctl+0xb7/0x200
[  182.071636][T10795]  do_syscall_64+0xcd/0x260
[  182.071664][T10795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.071681][T10795] RIP: 0033:0x7f54a4d8e969
[  182.071696][T10795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.071712][T10795] RSP: 002b:00007f54a5c41038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  182.071730][T10795] RAX: ffffffffffffffda RBX: 00007f54a4fb5fa0 RCX: 00007f54a4d8e969
[  182.071742][T10795] RDX: 0000200000000180 RSI: 00000000c0d05605 RDI: 0000000000000003
[  182.071752][T10795] RBP: 00007f54a5c41090 R08: 0000000000000000 R09: 0000000000000000
[  182.071761][T10795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.071770][T10795] R13: 0000000000000000 R14: 00007f54a4fb5fa0 R15: 00007fff792f9ac8
[  182.071794][T10795]  </TASK>
[  182.071814][T10795] ERROR: Out of memory at tomoyo_realpath_from_path.
[  182.085297][T10797] syz.2.1408 (10797) used greatest stack depth: 20856 bytes left
[  182.224086][T10800] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1409'.
[  182.445771][T10649] batman_adv: batadv0: Adding interface: batadv_slave_1
[  182.448806][T10649] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  182.476055][T10649] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  182.498342][   T40] audit: type=1400 audit(1747922547.422:680): avc:  denied  { setattr } for  pid=10809 comm="syz.3.1412" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=34719 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  182.546854][   T40] audit: type=1400 audit(1747922547.462:681): avc:  denied  { read } for  pid=10807 comm="syz.1.1411" name="msr" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  182.620017][   T40] audit: type=1400 audit(1747922547.472:682): avc:  denied  { open } for  pid=10807 comm="syz.1.1411" path="/dev/cpu/3/msr" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  183.017453][T10649] hsr_slave_0: entered promiscuous mode
[  183.048098][T10649] hsr_slave_1: entered promiscuous mode
[  183.177027][T10838] 9p: Unknown Cache mode or invalid value �eadahead
[  183.223054][T10837] netlink: 'syz.1.1418': attribute type 1 has an invalid length.
[  183.263853][   T40] audit: type=1400 audit(1747922548.182:683): avc:  denied  { search } for  pid=10836 comm="syz.1.1418" name="/" dev="configfs" ino=2066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  183.274290][   T40] audit: type=1400 audit(1747922548.182:684): avc:  denied  { read } for  pid=10836 comm="syz.1.1418" name="/" dev="configfs" ino=2066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  183.305569][   T40] audit: type=1400 audit(1747922548.182:685): avc:  denied  { open } for  pid=10836 comm="syz.1.1418" path="/" dev="configfs" ino=2066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  183.380944][T10845] xt_SECMARK: invalid mode: 0
[  183.398027][   T40] audit: type=1400 audit(1747922548.312:686): avc:  denied  { unmount } for  pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  183.830429][T10856] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1423'.
[  183.946675][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  184.177023][T10876] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1426'.
[  184.623944][T10882] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  184.627445][T10882] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  184.649061][T10882] vhci_hcd vhci_hcd.0: Device attached
[  184.689204][T10882] xt_hashlimit: overflow, rate too high: 0
[  184.695274][T10882] 9pnet: Could not find request transport: ���D��o�Az**�="\�K!Y�ё���J���0x0000000000000007
[  184.723437][T10887] vhci_hcd vhci_hcd.0: port 0 already used
[  184.732410][T10883] vhci_hcd: connection closed
[  184.744630][ T1140] vhci_hcd: stop threads
[  184.749789][ T1140] vhci_hcd: release socket
[  184.752266][ T1140] vhci_hcd: disconnect device
[  184.932585][T10896] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1431'.
[  184.938748][T10896] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1431'.
[  185.914498][T10927] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1012 sclass=netlink_route_socket pid=10927 comm=syz.1.1437
[  185.927338][T10928] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1438'.
[  186.393498][T10649] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  186.478091][T10649] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  186.513501][T10649] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  186.620759][T10649] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  186.797650][T10649] 8021q: adding VLAN 0 to HW filter on device bond0
[  186.851730][T10649] 8021q: adding VLAN 0 to HW filter on device team0
[  186.863782][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.868892][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  186.880366][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.884806][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[  187.453189][T10649] 8021q: adding VLAN 0 to HW filter on device batadv0
[  187.603902][T10649] veth0_vlan: entered promiscuous mode
[  187.617254][T10649] veth1_vlan: entered promiscuous mode
[  187.648390][T10649] veth0_macvtap: entered promiscuous mode
[  187.650386][T10980] snd_dummy snd_dummy.0: control 0:0:0:syz0:7 is already present
[  187.660237][T10649] veth1_macvtap: entered promiscuous mode
[  187.733290][T10649] batman_adv: batadv0: Interface activated: batadv_slave_0
[  187.743032][T10649] batman_adv: batadv0: Interface activated: batadv_slave_1
[  187.798654][T10649] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.801492][T10649] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  187.804356][T10649] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  187.816287][T10649] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  187.823838][   T40] audit: type=1400 audit(1747922552.742:687): avc:  denied  { read } for  pid=10981 comm="syz.1.1450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  187.991671][    C0] vkms_vblank_simulate: vblank timer overrun
[  188.044249][ T9460] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  188.065820][ T9460] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  188.217021][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  188.220697][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  188.255719][    C0] vkms_vblank_simulate: vblank timer overrun
[  188.490583][    C0] vkms_vblank_simulate: vblank timer overrun
[  188.711713][    C0] vkms_vblank_simulate: vblank timer overrun
[  189.358635][T11026] sch_tbf: burst 0 is lower than device geneve0 mtu (1514) !
[  189.575444][T11037] netlink: 'syz.3.1462': attribute type 11 has an invalid length.
[  189.627697][    C0] vkms_vblank_simulate: vblank timer overrun
[  189.797168][T11045] bridge_slave_0: entered promiscuous mode
[  189.799830][T11045] bridge_slave_0: entered allmulticast mode
[  189.830417][T11045] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1464'.
[  189.909468][    C0] vkms_vblank_simulate: vblank timer overrun
[  189.975666][    C0] vkms_vblank_simulate: vblank timer overrun
[  190.119648][    C0] vkms_vblank_simulate: vblank timer overrun
[  190.189900][T11059] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1468'.
[  190.205954][   T40] audit: type=1400 audit(1747922555.132:688): avc:  denied  { audit_read } for  pid=11057 comm="syz.1.1467" capability=37  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  190.245592][T11059] No source specified
[  190.249483][ T5946] Bluetooth: hci0: unexpected event for opcode 0xd567
[  190.752579][T11088] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073709551609)
[  190.794512][    C0] vkms_vblank_simulate: vblank timer overrun
[  190.805674][T11088] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647
[  191.022348][    C0] vkms_vblank_simulate: vblank timer overrun
[  191.153122][    C0] vkms_vblank_simulate: vblank timer overrun
[  191.437789][ T1155] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.772316][   T40] audit: type=1400 audit(1747922556.692:689): avc:  denied  { create } for  pid=11100 comm="syz.2.1475" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  191.794759][   T40] audit: type=1400 audit(1747922556.692:690): avc:  denied  { setopt } for  pid=11100 comm="syz.2.1475" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  191.807651][T11101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1475'.
[  191.812140][   T40] audit: type=1400 audit(1747922556.722:691): avc:  denied  { bind } for  pid=11100 comm="syz.2.1475" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  192.049343][T11114] syz.3.1477 (11114): attempted to duplicate a private mapping with mremap.  This is not supported.
[  192.071630][    C0] vkms_vblank_simulate: vblank timer overrun
[  192.251731][    C0] vkms_vblank_simulate: vblank timer overrun
[  192.290321][   T40] audit: type=1326 audit(1747922557.192:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.1.1479" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f782378e969 code=0x7ffc0000
[  192.300880][   T40] audit: type=1326 audit(1747922557.192:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.1.1479" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f782378e969 code=0x7ffc0000
[  192.315417][   T40] audit: type=1326 audit(1747922557.212:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.1.1479" exe="/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f782378e969 code=0x7ffc0000
[  192.351933][   T40] audit: type=1326 audit(1747922557.212:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.1.1479" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f782378e969 code=0x7ffc0000
[  192.404821][   T40] audit: type=1326 audit(1747922557.212:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.1.1479" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f782378e969 code=0x7ffc0000
[  192.484824][ T5944] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  192.522754][ T5944] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  192.531137][ T1155] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.532528][ T5944] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  192.580603][ T5944] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  192.592624][ T5944] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  192.978263][ T1155] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.157326][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  193.157344][   T40] audit: type=1400 audit(1747922558.082:701): avc:  denied  { ioctl } for  pid=11152 comm="syz.3.1488" path="socket:[37105]" dev="sockfs" ino=37105 ioctlcmd=0x7e50 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  193.261211][ T1155] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.404290][T11164] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.1491'.
[  193.612063][T11170] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  193.616032][ T5944] Bluetooth: hci0: SCO packet for unknown connection handle 200
[  193.742203][T11177] netlink: 'syz.1.1494': attribute type 10 has an invalid length.
[  193.912919][T11123] chnl_net:caif_netlink_parms(): no params data found
[  193.920139][T11175] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  194.250160][ T1155] bridge_slave_1: left allmulticast mode
[  194.263178][ T1155] bridge_slave_1: left promiscuous mode
[  194.266004][ T1155] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.293793][   T40] audit: type=1400 audit(1747922559.212:702): avc:  denied  { ioctl } for  pid=11192 comm="syz.2.1498" path="socket:[37144]" dev="sockfs" ino=37144 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  194.373055][ T1155] bridge_slave_0: left allmulticast mode
[  194.377063][ T1155] bridge_slave_0: left promiscuous mode
[  194.389727][ T1155] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.661867][ T5944] Bluetooth: hci1: command tx timeout
[  195.519947][T11226] overlayfs: failed to resolve './file1': -2
[  195.545671][ T5944] Bluetooth: hci0: command 0x0419 tx timeout
[  195.712785][   T40] audit: type=1400 audit(1747922560.622:703): avc:  denied  { mounton } for  pid=11227 comm="syz.3.1508" path=2F70726F632F3938342F6E65742F70666B6579202864656C6574656429 dev="proc" ino=4026533881 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  195.882168][T11237] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1511'.
[  195.901617][ T1155] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  195.910477][ T1155] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  195.940594][ T1155] bond0 (unregistering): Released all slaves
[  196.178824][   T40] audit: type=1400 audit(1747922561.102:704): avc:  denied  { create } for  pid=11238 comm="syz.3.1512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  196.281267][T11248] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=22681 sclass=netlink_route_socket pid=11248 comm=syz.2.1513
[  196.433616][T11123] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.456220][T11123] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.458879][T11123] bridge_slave_0: entered allmulticast mode
[  196.463038][T11123] bridge_slave_0: entered promiscuous mode
[  196.467514][T11123] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.473417][T11123] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.479646][T11123] bridge_slave_1: entered allmulticast mode
[  196.484803][T11123] bridge_slave_1: entered promiscuous mode
[  196.746598][ T5944] Bluetooth: hci1: command tx timeout
[  196.887701][T11123] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  196.907208][T11123] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  197.345158][   T40] audit: type=1400 audit(1747922562.262:705): avc:  denied  { read } for  pid=11282 comm="syz.1.1521" name="btrfs-control" dev="devtmpfs" ino=1335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  197.359409][   T40] audit: type=1400 audit(1747922562.282:706): avc:  denied  { open } for  pid=11282 comm="syz.1.1521" path="/dev/btrfs-control" dev="devtmpfs" ino=1335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  197.383145][T11123] team0: Port device team_slave_0 added
[  197.409669][T11123] team0: Port device team_slave_1 added
[  198.036872][ T1155] hsr_slave_0: left promiscuous mode
[  198.040285][ T1155] hsr_slave_1: left promiscuous mode
[  198.044259][ T1155] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  198.058035][ T1155] batman_adv: batadv0: Removing interface: batadv_slave_0
[  198.062064][ T1155] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  198.066466][ T1155] batman_adv: batadv0: Removing interface: batadv_slave_1
[  198.157469][ T1155] veth1_macvtap: left promiscuous mode
[  198.177683][ T1155] veth0_macvtap: left promiscuous mode
[  198.181145][ T1155] veth1_vlan: left promiscuous mode
[  198.204482][ T1155] veth0_vlan: left promiscuous mode
[  198.826554][ T5944] Bluetooth: hci1: command tx timeout
[  199.338966][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  199.683260][T11311] SET target dimension over the limit!
[  200.702333][T11333] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[  200.711984][   T40] audit: type=1400 audit(1747922565.622:707): avc:  denied  { relabelto } for  pid=11331 comm="syz.1.1532" name="cgroup.procs" dev="cgroup" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:semanage_exec_t:s0"
[  200.744687][   T40] audit: type=1400 audit(1747922565.622:708): avc:  denied  { associate } for  pid=11331 comm="syz.1.1532" name="cgroup.procs" dev="cgroup" ino=120 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:semanage_exec_t:s0"
[  200.915926][ T5944] Bluetooth: hci1: command tx timeout
[  202.165192][ T1155] team0 (unregistering): Port device team_slave_1 removed
[  202.633442][ T1155] team0 (unregistering): Port device team_slave_0 removed
[  205.230554][T11123] batman_adv: batadv0: Adding interface: batadv_slave_0
[  205.234021][T11123] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  205.255320][T11123] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  205.283084][T11123] batman_adv: batadv0: Adding interface: batadv_slave_1
[  205.320757][T11123] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  205.334424][T11123] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  205.784153][T11348] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1536'.
[  205.857798][T11123] hsr_slave_0: entered promiscuous mode
[  205.860852][T11123] hsr_slave_1: entered promiscuous mode
[  206.136593][T11366] netlink: 'syz.3.1541': attribute type 11 has an invalid length.
[  206.142976][T11366] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1541'.
[  207.493100][T11394] netlink: 'syz.2.1546': attribute type 1 has an invalid length.
[  207.527614][T11395] netlink: 'syz.3.1544': attribute type 1 has an invalid length.
[  207.528978][T11396] syz.3.1544: attempt to access beyond end of device
[  207.528978][T11396] loop3: rw=0, sector=16, nr_sectors = 1 limit=0
[  207.571305][T11396] qnx6: unable to read the first superblock
[  207.581578][T11396] syz.3.1544: attempt to access beyond end of device
[  207.581578][T11396] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  207.610069][T11396] qnx6: unable to read the first superblock
[  207.618947][T11396] qnx6: unable to read the first superblock
[  207.779484][T11395] 8021q: adding VLAN 0 to HW filter on device bond3
[  207.966890][T11399] bond3: (slave veth3): Enslaving as an active interface with a down link
[  208.037825][T11396] bond2: (slave dummy0): Releasing active interface
[  208.069188][T11396] bond3: (slave dummy0): making interface the new active one
[  208.073732][T11396] dummy0: entered promiscuous mode
[  208.077249][T11396] bond3: (slave dummy0): Enslaving as an active interface with an up link
[  208.081458][T11405] netlink: 292 bytes leftover after parsing attributes in process `syz.2.1546'.
[  208.593550][   T40] audit: type=1400 audit(1747922573.502:709): avc:  denied  { setopt } for  pid=11421 comm="syz.2.1548" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  208.628091][T11423] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.1548'.
[  208.632672][T11423] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1548'.
[  208.703235][T11425] netlink: 'syz.1.1549': attribute type 1 has an invalid length.
[  208.833516][T11429] netlink: 'syz.3.1550': attribute type 2 has an invalid length.
[  208.837867][T11429] netlink: 1184 bytes leftover after parsing attributes in process `syz.3.1550'.
[  208.896073][T11425] 8021q: adding VLAN 0 to HW filter on device bond6
[  208.933147][T11427] vlan4: entered allmulticast mode
[  208.940394][T11427] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  208.945385][T11427] bond6: (slave vlan4): Opening slave failed
[  208.973120][ T9460] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  209.131510][T11123] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  209.150765][T11123] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  209.179891][T11123] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  209.271850][T11123] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  209.499293][T11123] 8021q: adding VLAN 0 to HW filter on device bond0
[  209.548418][T11123] 8021q: adding VLAN 0 to HW filter on device team0
[  209.595128][ T1155] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.601100][ T1155] bridge0: port 1(bridge_slave_0) entered forwarding state
[  209.720177][ T1155] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.723452][ T1155] bridge0: port 2(bridge_slave_1) entered forwarding state
[  209.795192][T11451] netlink: 'syz.2.1555': attribute type 1 has an invalid length.
[  209.826042][T11451] 9p: Unknown Cache mode or invalid value �eadahead
[  209.828713][T11451] 9pnet: Tag 65535 still in use
[  209.839416][    C3] ------------[ cut here ]------------
[  209.843303][    C3] refcount_t: underflow; use-after-free.
[  209.845983][    C3] WARNING: CPU: 3 PID: 11453 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210
[  209.851482][    C3] Modules linked in:
[  209.853642][    C3] CPU: 3 UID: 0 PID: 11453 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(full) 
[  209.871216][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  209.877273][    C3] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  209.879846][    C3] Code: ff 89 de e8 38 19 ea fc 84 db 0f 85 66 ff ff ff e8 4b 1e ea fc c6 05 1d 75 9c 0b 01 90 48 c7 c7 a0 4e f4 8b e8 a7 ab a9 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 28 1e ea fc 0f b6 1d f8 74 9c 0b 31
[  209.904209][    C3] RSP: 0018:ffffc900006f8d90 EFLAGS: 00010082
[  209.920806][    C3] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817ad4f8
[  209.925509][    C3] RDX: ffff888052070000 RSI: ffffffff817ad505 RDI: 0000000000000001
[  209.930097][    C3] RBP: ffff88802fac7dc8 R08: 0000000000000001 R09: 0000000000000000
[  209.934008][    C3] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88802fac7dc8
[  209.944588][    C3] R13: ffff888048536000 R14: 0000000000000015 R15: 1ffff11003f9e00c
[  209.958376][    C3] FS:  0000555571f13500(0000) GS:ffff8880d6cda000(0000) knlGS:0000000000000000
[  209.964335][    C3] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  209.976816][    C3] CR2: 00007f54a4d18310 CR3: 0000000060ac9000 CR4: 0000000000352ef0
[  209.985891][    C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  209.990293][    C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  210.002323][    C3] Call Trace:
[  210.004896][    C3]  <IRQ>
[  210.010770][    C3]  p9_req_put+0x1ec/0x250
[  210.019615][    C3]  req_done+0x1dc/0x2e0
[  210.022684][    C3]  ? __pfx_req_done+0x10/0x10
[  210.028440][    C3]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  210.037557][    C3]  ? __pfx_req_done+0x10/0x10
[  210.041960][    C3]  vring_interrupt+0x31e/0x400
[  210.048287][    C3]  ? __pfx_vring_interrupt+0x10/0x10
[  210.052676][    C3]  __handle_irq_event_percpu+0x229/0x7d0
[  210.056354][    C3]  handle_irq_event+0xab/0x1e0
[  210.058856][    C3]  handle_edge_irq+0x263/0xd10
[  210.063506][    C3]  __common_interrupt+0xe2/0x250
[  210.073464][    C3]  common_interrupt+0xba/0xe0
[  210.078364][    C3]  </IRQ>
[  210.082465][    C3]  <TASK>
[  210.085584][    C3]  asm_common_interrupt+0x26/0x40
[  210.093551][    C3] RIP: 0010:lock_acquire+0x62/0x350
[  210.099265][    C3] Code: 39 0c 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 52 07 ed 0e 0f 82 74 02 00 00 8b 35 ea 36 ed 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 29 39 0c 12 0f 85 c7 02 00 00 48 83 c4
[  210.115548][    C3] RSP: 0018:ffffc9000564fb28 EFLAGS: 00000206
[  210.127987][    C3] RAX: 0000000000000046 RBX: ffffffff8e3bfc00 RCX: 000000000eb34d96
[  210.153413][    C3] RDX: 0000000000000000 RSI: ffffffff8dbbf003 RDI: ffffffff8bf4a2a0
[  210.165951][    C3] RBP: 0000000000000002 R08: ddf083594ff2f65b R09: 0000000000000000
[  210.177437][    C3] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000000
[  210.190081][    C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  210.205824][    C3]  css_put+0x70/0x1b0
[  210.210124][    C3]  ? css_put+0x5c/0x1b0
[  210.213688][    C3]  __memcg_slab_post_alloc_hook+0x13c/0x940
[  210.222041][    C3]  ? kasan_save_track+0x14/0x30
[  210.230018][    C3]  kmem_cache_alloc_lru_noprof+0x30f/0x3b0
[  210.243038][    C3]  ? find_held_lock+0x2b/0x80
[  210.246092][    C3]  ? __d_alloc+0x31/0xaa0
[  210.249198][    C3]  __d_alloc+0x31/0xaa0
[  210.261182][    C3]  ? __d_lookup+0x266/0x4a0
[  210.269874][    C3]  d_alloc+0x4a/0x1e0
[  210.272323][    C3]  lookup_one_qstr_excl_raw.part.0+0x96/0x160
[  210.278548][    C3]  ? lookup_dcache+0x66/0x170
[  210.281409][    C3]  lookup_one_qstr_excl+0x3e/0x120
[  210.297104][    C3]  filename_create+0x1e7/0x4a0
[  210.298891][    C3]  ? __pfx_filename_create+0x10/0x10
[  210.302003][    C3]  ? find_held_lock+0x2b/0x80
[  210.305130][    C3]  ? __might_fault+0xe3/0x190
[  210.317050][    C3]  ? __might_fault+0xe3/0x190
[  210.318902][    C3]  do_symlinkat+0xbe/0x310
[  210.320580][    C3]  ? __pfx_do_symlinkat+0x10/0x10
[  210.322506][    C3]  ? getname_flags.part.0+0x1c5/0x550
[  210.325730][    C3]  __x64_sys_symlinkat+0x93/0xc0
[  210.335185][    C3]  do_syscall_64+0xcd/0x260
[  210.338015][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.340985][    C3] RIP: 0033:0x7f54a4d8dee7
[  210.342972][    C3] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 0a 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.359409][    C3] RSP: 002b:00007fff792f9e48 EFLAGS: 00000202 ORIG_RAX: 000000000000010a
[  210.365486][    C3] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f54a4d8dee7
[  210.369615][    C3] RDX: 00007f54a4e122fd RSI: 00000000ffffff9c RDI: 00007f54a4e10e74
[  210.373681][    C3] RBP: 00007fff792f9e8c R08: 0000000000000000 R09: 0000000000000000
[  210.379810][    C3] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000014f
[  210.384312][    C3] R13: 00000000000927c0 R14: 0000000000033271 R15: 00007fff792f9ee0
[  210.389181][    C3]  </TASK>
[  210.391364][    C3] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  210.395676][    C3] CPU: 3 UID: 0 PID: 11453 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(full) 
[  210.401684][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.424934][    C3] Call Trace:
[  210.426522][    C3]  <IRQ>
[  210.427784][    C3]  dump_stack_lvl+0x3d/0x1f0
[  210.429702][    C3]  panic+0x71c/0x800
[  210.431329][    C3]  ? __pfx_panic+0x10/0x10
[  210.433192][    C3]  ? show_trace_log_lvl+0x29b/0x3e0
[  210.435314][    C3]  ? check_panic_on_warn+0x1f/0xb0
[  210.457789][    C3]  ? refcount_warn_saturate+0x14a/0x210
[  210.460133][    C3]  check_panic_on_warn+0xab/0xb0
[  210.462306][    C3]  __warn+0xf6/0x3c0
[  210.464224][    C3]  ? __pfx_vprintk_emit+0x10/0x10
[  210.480260][    C3]  ? refcount_warn_saturate+0x14a/0x210
[  210.482933][    C3]  report_bug+0x3c3/0x580
[  210.485677][    C3]  ? refcount_warn_saturate+0x14a/0x210
[  210.489168][    C3]  handle_bug+0x184/0x210
[  210.491548][    C3]  exc_invalid_op+0x17/0x50
[  210.494006][    C3]  asm_exc_invalid_op+0x1a/0x20
[  210.505991][    C3] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  210.509296][    C3] Code: ff 89 de e8 38 19 ea fc 84 db 0f 85 66 ff ff ff e8 4b 1e ea fc c6 05 1d 75 9c 0b 01 90 48 c7 c7 a0 4e f4 8b e8 a7 ab a9 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 28 1e ea fc 0f b6 1d f8 74 9c 0b 31
[  210.521959][    C3] RSP: 0018:ffffc900006f8d90 EFLAGS: 00010082
[  210.525477][    C3] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817ad4f8
[  210.531385][    C3] RDX: ffff888052070000 RSI: ffffffff817ad505 RDI: 0000000000000001
[  210.538668][    C3] RBP: ffff88802fac7dc8 R08: 0000000000000001 R09: 0000000000000000
[  210.543739][    C3] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88802fac7dc8
[  210.549543][    C3] R13: ffff888048536000 R14: 0000000000000015 R15: 1ffff11003f9e00c
[  210.553868][    C3]  ? __warn_printk+0x198/0x350
[  210.556535][    C3]  ? __warn_printk+0x1a5/0x350
[  210.559024][    C3]  p9_req_put+0x1ec/0x250
[  210.562302][    C3]  req_done+0x1dc/0x2e0
[  210.564637][    C3]  ? __pfx_req_done+0x10/0x10
[  210.568482][    C3]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  210.573317][    C3]  ? __pfx_req_done+0x10/0x10
[  210.577312][    C3]  vring_interrupt+0x31e/0x400
[  210.581021][    C3]  ? __pfx_vring_interrupt+0x10/0x10
[  210.585768][    C3]  __handle_irq_event_percpu+0x229/0x7d0
[  210.589999][    C3]  handle_irq_event+0xab/0x1e0
[  210.592556][    C3]  handle_edge_irq+0x263/0xd10
[  210.595672][    C3]  __common_interrupt+0xe2/0x250
[  210.601029][    C3]  common_interrupt+0xba/0xe0
[  210.603192][    C3]  </IRQ>
[  210.604538][    C3]  <TASK>
[  210.605973][    C3]  asm_common_interrupt+0x26/0x40
[  210.611712][    C3] RIP: 0010:lock_acquire+0x62/0x350
[  210.615455][    C3] Code: 39 0c 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 52 07 ed 0e 0f 82 74 02 00 00 8b 35 ea 36 ed 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 29 39 0c 12 0f 85 c7 02 00 00 48 83 c4
[  210.623254][    C3] RSP: 0018:ffffc9000564fb28 EFLAGS: 00000206
[  210.626956][    C3] RAX: 0000000000000046 RBX: ffffffff8e3bfc00 RCX: 000000000eb34d96
[  210.638382][    C3] RDX: 0000000000000000 RSI: ffffffff8dbbf003 RDI: ffffffff8bf4a2a0
[  210.645531][    C3] RBP: 0000000000000002 R08: ddf083594ff2f65b R09: 0000000000000000
[  210.650774][    C3] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000000
[  210.655657][    C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  210.660939][    C3]  css_put+0x70/0x1b0
[  210.664684][    C3]  ? css_put+0x5c/0x1b0
[  210.667301][    C3]  __memcg_slab_post_alloc_hook+0x13c/0x940
[  210.670894][    C3]  ? kasan_save_track+0x14/0x30
[  210.674796][    C3]  kmem_cache_alloc_lru_noprof+0x30f/0x3b0
[  210.679179][    C3]  ? find_held_lock+0x2b/0x80
[  210.682154][    C3]  ? __d_alloc+0x31/0xaa0
[  210.684901][    C3]  __d_alloc+0x31/0xaa0
[  210.697950][    C3]  ? __d_lookup+0x266/0x4a0
[  210.704460][    C3]  d_alloc+0x4a/0x1e0
[  210.709143][    C3]  lookup_one_qstr_excl_raw.part.0+0x96/0x160
[  210.715000][    C3]  ? lookup_dcache+0x66/0x170
[  210.724928][    C3]  lookup_one_qstr_excl+0x3e/0x120
[  210.727919][    C3]  filename_create+0x1e7/0x4a0
[  210.730476][    C3]  ? __pfx_filename_create+0x10/0x10
[  210.733522][    C3]  ? find_held_lock+0x2b/0x80
[  210.746252][    C3]  ? __might_fault+0xe3/0x190
[  210.749427][    C3]  ? __might_fault+0xe3/0x190
[  210.752656][    C3]  do_symlinkat+0xbe/0x310
[  210.756522][    C3]  ? __pfx_do_symlinkat+0x10/0x10
[  210.758358][    C3]  ? getname_flags.part.0+0x1c5/0x550
[  210.767283][    C3]  __x64_sys_symlinkat+0x93/0xc0
[  210.770389][    C3]  do_syscall_64+0xcd/0x260
[  210.781192][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.783320][    C3] RIP: 0033:0x7f54a4d8dee7
[  210.785027][    C3] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 0a 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.806515][    C3] RSP: 002b:00007fff792f9e48 EFLAGS: 00000202 ORIG_RAX: 000000000000010a
[  210.820554][    C3] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f54a4d8dee7
[  210.823717][    C3] RDX: 00007f54a4e122fd RSI: 00000000ffffff9c RDI: 00007f54a4e10e74
[  210.827224][    C3] RBP: 00007fff792f9e8c R08: 0000000000000000 R09: 0000000000000000
[  210.830968][    C3] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000014f
[  210.834417][    C3] R13: 00000000000927c0 R14: 0000000000033271 R15: 00007fff792f9ee0
[  210.837578][    C3]  </TASK>
[  210.848025][    C3] Kernel Offset: disabled
[  210.850135][    C3] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:02:53  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffff888052528a10 RCX=0000000000000100 RDX=0000000000000001
RSI=0000000000000002 RDI=ffff888052528a12 RBP=dffffc0000000000 RSP=ffffc900063ef1c0
R8 =0000000000000001 R9 =ffff88806a43ad14 R10=ffff888052528a13 R11=0000000000000000
R12=000000000000176d R13=0000000000000000 R14=ffff88806a43ad00 R15=ffffed100a4a5142
RIP=ffffffff8b6fe37e RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69da000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f782464d568 CR3=000000004c04f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc89df4ca0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7823811a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7823811a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7823811a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7823811aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7823811b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7823811c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000157823 RBX=0000000000000001 RCX=ffffffff8b6d3419 RDX=0000000000000000
RSI=ffffffff8dbe4615 RDI=ffffffff8bf4a2a0 RBP=ffffed1003ada488 RSP=ffffc90000177df8
R8 =0000000000000001 R9 =ffffed100d4a65bd R10=ffff88806a532deb R11=0000000000000000
R12=0000000000000001 R13=ffff88801d6d2440 R14=ffffffff90852e10 R15=0000000000000000
RIP=ffffffff8b6d1caf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6ada000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001000 CR3=00000000621d4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002000800 Opmask01=0000000081080040 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd0616ee80 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef35211a5f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef35211a57
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef35211a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef35211a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef35211a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef35211aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef35211b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef35211c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a3a303063660064 656c696166206e6f 74705f74656e6920 306576656e656700
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1f1f151546430041 40494c4443054b4a 51555f51404b4c05 154053404b404200
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000001205a3 RBX=0000000000000002 RCX=ffffffff8b6d3419 RDX=0000000000000000
RSI=ffffffff8dbe4615 RDI=ffffffff8bf4a2a0 RBP=ffffed1003ada910 RSP=ffffc90000187df8
R8 =0000000000000001 R9 =ffffed100d4c65bd R10=ffff88806a632deb R11=0000000000000000
R12=0000000000000002 R13=ffff88801d6d4880 R14=ffffffff90852e10 R15=0000000000000000
RIP=ffffffff8b6d1caf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bda000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555571f13808 CR3=0000000048903000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=0000000002fefcfe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff792f9e50 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854f9bb5 RDI=ffffffff9adfe5a0 RBP=ffffffff9adfe560 RSP=ffffc900006f8700
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9adfe560 R15=ffffffff854f9b50
RIP=ffffffff854f9bdf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555571f13500 ffffffff 00c00000
GS =0000 ffff8880d6cda000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f54a4d18310 CR3=0000000060ac9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffefff0 Opmask01=0000000000000000 Opmask02=0000000002fefcfe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff792f9e50 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f54a4e11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2e006a64615f65 726f63735f6d6f6f 2f666c65732f636f 72702f0030303031
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0b004f41445f40 574a46565f484a4a 0a434940560a464a 57550a0015151514
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000