last executing test programs:

1m24.190790624s ago: executing program 1 (id=294):
getpid()
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b2b, &(0x7f0000000040)={'wlan1\x00', @random="010000000002"})
ioctl(r0, 0x8b2a, &(0x7f0000000040))
sched_setscheduler(0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$FS_IOC_SETFLAGS(r2, 0x40186f40, &(0x7f0000000440)=0x20000)
ioctl$FS_IOC_SETFLAGS(r1, 0x40046f41, &(0x7f0000000440)=0x10)

1m24.040100223s ago: executing program 1 (id=299):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, &(0x7f0000000240)={0x1, 'veth0_to_team\x00'}, 0x18)
syz_emit_ethernet(0xb7, &(0x7f0000000380)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xa9, 0x0, 0x0, 0xfb, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x1, 0x0, 0x3, 0x24, 0x0, {0x23, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x7, @loopback, @rand_addr=0x640100fe, {[@cipso={0x86, 0x70, 0x0, [{0x0, 0xc, "e256b28c590300000052"}, {0x0, 0x2}, {0x0, 0xe, "7434954373561de584b703c8"}, {0x5, 0x9, "e706d30bd224f8"}, {0x2, 0x7, "cfa11cab1a"}, {0x0, 0x10, "8475be675de6a70a05a0dc91e5c6"}, {0x0, 0xa, "0000000000800000"}, {0x0, 0x12, "73bc23f9ffffffa30900a301c8460000"}, {0x0, 0x12, "c8f46976e79ea788f03d9d3205927e3d"}]}, @cipso={0x86, 0x6, 0x20}]}}, "fd"}}}}}, 0x0)

1m23.970650222s ago: executing program 1 (id=300):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(0xffffffffffffffff, 0xc02064cc, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(0xffffffffffffffff, 0xc01864cb, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="85e402106c16e732f92483973cb70aadbe6755c869eba1878b91ef03c73a"], 0x7)
rmdir(0x0)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000002900), 0x2, 0x0)
write$FUSE_NOTIFY_POLL(r2, &(0x7f0000002940)={0x18}, 0x18)
io_uring_enter(0xffffffffffffffff, 0x47ba, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xce41)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c8300c000000e4ff06fb000000a804001067292cbffee3b959b1e07491b8b7cdbe35dcee29f6c46f650231b7a622de834f8aca650d6e10385f530cc1b5d801fb59556057b5b1c3de16137c140000e787c508e050e0334d1a52863fbb6ededcf3fb76bf2449d0c63d6c4b410159e4dfc95f688d676dad2613814c7ea08f25d79ef9ec2b5b0ee13013fe896ccd06a121623aec1fd9"], 0x11)
syz_open_procfs$namespace(r0, &(0x7f0000000100)='ns/pid_for_children\x00')
prlimit64(r0, 0x6, &(0x7f00000001c0), 0x0)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1)

1m23.18062679s ago: executing program 1 (id=304):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(0x0, 0xd6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x161)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x1)
r2 = socket$inet6(0xa, 0x80000, 0x86ce)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x568, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x498, 0xffffffff, 0xffffffff, 0x498, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, [], [0xffffff00], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x6, 0x2a9d2693, 0x9, 'syz0\x00', 'syz1\x00', {0x8000000000000000}}}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0x2, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0xffffffffffffffff, 0x5, 0x2}, {0x2, 0x6, 0x5}, 0x4, 0x9d91}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x5c8)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000080)=""/167, &(0x7f0000000000)=0xa7)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c)
listen(r4, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x20004002, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)

1m22.309618627s ago: executing program 1 (id=305):
r0 = io_uring_setup(0x28d5, &(0x7f0000000100)={0x0, 0x0, 0x40, 0x0, 0x214})
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000f80)="d8000000180081064e81f782db4cb910021d0800fd007c05e8fe50a10a000700014002020c600e41b0000900ac000a0501000000040012000a00ff150048035c3b61c1d67f6f94007134cf6efb80073f6a5aa8457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001252c330f973f4953d2a6823a45", 0xd8}], 0x1}, 0x4000044)
close(r0)
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x0, 0xea60})

1m22.080809532s ago: executing program 1 (id=314):
r0 = socket$igmp6(0xa, 0x3, 0x2)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000280)=0x14)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={@private0, @private0={0xfc, 0x0, '\x00', 0x1}, @local, 0x12, 0xffff, 0x9f, 0x100, 0x7ff, 0x81180110, r1})
r2 = socket$rds(0x15, 0x5, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001a000100090000007cdbdf2502000000", @ANYRES32=0x0, @ANYBLOB="00000000140003000700000000000000000000000000001614000100fe800000000000080000010000000000"], 0x99}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6(0xa, 0x3, 0x6)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x101400, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f00000009c0), 0x80002, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRESHEX], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x29)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[0x0], 0x1})
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{}, 0x0, &(0x7f0000000200)=r5}, 0x20)
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x0, &(0x7f0000000500), &(0x7f0000000380), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff]})
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000000)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0xfffffffffffffe2f, 0xfffffffffffffe3e, 0x0, &(0x7f0000000280)={0x7, 0x30, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)

1m21.985762608s ago: executing program 32 (id=314):
r0 = socket$igmp6(0xa, 0x3, 0x2)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000280)=0x14)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={@private0, @private0={0xfc, 0x0, '\x00', 0x1}, @local, 0x12, 0xffff, 0x9f, 0x100, 0x7ff, 0x81180110, r1})
r2 = socket$rds(0x15, 0x5, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001a000100090000007cdbdf2502000000", @ANYRES32=0x0, @ANYBLOB="00000000140003000700000000000000000000000000001614000100fe800000000000080000010000000000"], 0x99}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6(0xa, 0x3, 0x6)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x101400, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f00000009c0), 0x80002, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRESHEX], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x29)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[0x0], 0x1})
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{}, 0x0, &(0x7f0000000200)=r5}, 0x20)
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x0, &(0x7f0000000500), &(0x7f0000000380), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff]})
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000000)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0xfffffffffffffe2f, 0xfffffffffffffe3e, 0x0, &(0x7f0000000280)={0x7, 0x30, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)

56.049079242s ago: executing program 0 (id=666):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) (async)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/address_bits', 0x0, 0x0)
lseek(r0, 0x0, 0x3)
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000009b000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffff80850000007100000095"], &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000009c0)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x4004, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xc) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xc)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r2, 0x65, 0x8, &(0x7f0000000200), 0x4)
madvise(&(0x7f0000a50000/0x2000)=nil, 0x2000, 0x11) (async)
madvise(&(0x7f0000a50000/0x2000)=nil, 0x2000, 0x11)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
syz_clone3(&(0x7f0000000080)={0x2d008400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000001200)=[0x0], 0x1}, 0x58)

55.875663847s ago: executing program 0 (id=672):
openat$nmem0(0xffffff9c, 0x0, 0x101040, 0x0) (async)
openat$nmem0(0xffffff9c, 0x0, 0x101040, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
ioctl$CDROMVOLCTRL(r1, 0x5392, &(0x7f0000000200)={0x9, 0x0, 0x8, 0x7e})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
request_key(0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, 0x0, 0x80)

55.619880772s ago: executing program 0 (id=679):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000009, 0x15031, 0xffffffffffffffff, 0x0) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000009, 0x15031, 0xffffffffffffffff, 0x0)
userfaultfd(0x80001) (async)
r0 = userfaultfd(0x80001)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (async)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@deltclass={0x2c, 0x29, 0x200, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x4, 0x7}, {0xfff3, 0xc}, {0xf, 0x7}}, [@TCA_RATE={0x6, 0x5, {0x5}}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@deltfilter={0x64, 0x2d, 0x300, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0xe, 0xc}, {0x2, 0xfff1}, {0x2, 0xffe0}}, [@TCA_CHAIN={0x8, 0xb, 0x2}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_RATE={0x6, 0x5, {0x0, 0xfb}}, @TCA_CHAIN={0x8, 0xb, 0x101}, @TCA_RATE={0x6, 0x5, {0x5, 0xf8}}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_RATE={0x6, 0x5, {0x7f}}, @TCA_CHAIN={0x8, 0xb, 0x8}]}, 0x64}}, 0x24044094) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@deltfilter={0x64, 0x2d, 0x300, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0xe, 0xc}, {0x2, 0xfff1}, {0x2, 0xffe0}}, [@TCA_CHAIN={0x8, 0xb, 0x2}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_RATE={0x6, 0x5, {0x0, 0xfb}}, @TCA_CHAIN={0x8, 0xb, 0x101}, @TCA_RATE={0x6, 0x5, {0x5, 0xf8}}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_RATE={0x6, 0x5, {0x7f}}, @TCA_CHAIN={0x8, 0xb, 0x8}]}, 0x64}}, 0x24044094)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x3, 0x0, 0xa}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x88f7}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x10001}]}]}, 0x30}}, 0x40000)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x360})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f00000000c0)={&(0x7f0000ac4000/0x3000)=nil, 0x3000}) (async)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f00000000c0)={&(0x7f0000ac4000/0x3000)=nil, 0x3000})
mknod(&(0x7f0000000180)='./bus\x00', 0xc000, 0x100)
openat$nmem0(0xffffffffffffff9c, &(0x7f0000000040), 0x20, 0x0) (async)
r6 = openat$nmem0(0xffffffffffffff9c, &(0x7f0000000040), 0x20, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), 0xffffffffffffffff) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="c39203100404f86c67cbe250489a47d47e0f", @ANYRES32=r9, @ANYBLOB="10001d800c0000800600050012000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8804}, 0x840)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_DEL_KEY(r8, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000580)={0xb8, r7, 0x300, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x1}, @NL80211_ATTR_KEY_TYPE={0x8}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "353d9e30060000000000000057"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x24, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY={0x1c, 0x50, 0x0, 0x1, [@NL80211_KEY_TYPE={0x8}, @NL80211_KEY_CIPHER={0x0, 0x3, 0xfac01}, @NL80211_KEY_IDX={0x5, 0x2, 0x5}]}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "28dc00ed11"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x14, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST]}, @NL80211_ATTR_KEY_SEQ={0x12, 0xa, "8a722db65247d3ec096aa3a465b1"}]}, 0xb8}}, 0x20004805)
ioctl$KVM_CAP_VM_COPY_ENC_CONTEXT_FROM(r6, 0x4068aea3, &(0x7f0000000380)={0xc5, 0x0, r6})
r11 = syz_io_uring_setup(0x497, &(0x7f0000000000)={0x0, 0x286f, 0x8000, 0x2, 0x3bb}, &(0x7f0000000340)=<r12=>0x0, &(0x7f00000000c0)=<r13=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r12, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r12, r13, &(0x7f0000000100)=@IORING_OP_SYMLINKAT={0x26, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)='./bus\x00', 0x0, 0x0, 0x1})
socket$inet6(0xa, 0x200000000003, 0x87)
syz_emit_ethernet(0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="0180c2000001aaaaaaaaaa1586dd6003136c00008700fc02000000000000000004ee65639381f8e7000000fdff0a070e410000000000000000100001"], 0x0)
io_uring_enter(r11, 0x3516, 0x0, 0x0, 0x0, 0x0) (async)
io_uring_enter(r11, 0x3516, 0x0, 0x0, 0x0, 0x0)

55.529714006s ago: executing program 0 (id=681):
r0 = gettid()
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c)
listen(r2, 0xfffffffc)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r4, 0x89e3, &(0x7f0000000040)={0x4d, 0x9ad, 0xc, 0xb, 0x6, 0x81})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r5, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000600)={0x54, r6, 0x1, 0x0, 0x0, {0x2d}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xff12}, {0x2}, {0xc}}]}, 0xa0}}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
sched_setscheduler(r0, 0x6, &(0x7f0000000000)=0x6516)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r7)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000c00)={0x130, 0x3e, 0x1, 0x7fffc, 0x4, {0x1}, [@typed={0x4}, @nested={0x10c, 0x1, 0x0, 0x1, [@nested={0x108, 0x10, 0x0, 0x1, [@nested={0x104, 0xf, 0x0, 0x1, [@generic="12ccbd379ce6cd69fa01dadbec8db85ad0a147eabb22fc6896d6d3e706b0bc8e88325fe6d76e894a422b9116227af2d29f89510f70541336b3d4683107c0bbb678ae476a0c409c15fda7d5cdbaf1265605a79e9847258124c3a6cf28e1df891b8edaac28b82794422d4b2b0d13870eff73990ecde487d74267d83a5c16592feb0211e9b9b13e420c29ac2d21de289c4109553ec0949748802a31d68b2280ab9de82ba7019d6798bc961633741dae6a5b0314266fadeb001584395af710b03134456f3ae4e24b8a777a1848ca788d2a28d5dac39c", @generic="5860e64b3f515b4e2e3de25114d4302f5f36993c6250ac50688494c207e07c71442fadba75909e81940f6fed"]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x130}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
r10 = syz_open_dev$vim2m(&(0x7f0000000140), 0x200000000a, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r10, 0xc0405602, &(0x7f0000000080)={0x12, 0x1, 0x0, "c175f0b781eddc96e6d941c3a7f9582753f9ffff8cbae2850c67ea00"})
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000080)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="07060000000000000000ae8e17000c000700000005002e00010000000a0001007770616e3100000005002b00030000000c002d000201aa8c7b71668d1aef95b5352528b2aaaaaaaaaa00"/87], 0x50}}, 0x0)

54.677102177s ago: executing program 0 (id=709):
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
open(&(0x7f0000000100)='./file0\x00', 0x440, 0x0)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000005c0)=ANY=[@ANYBLOB="b9"], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000080), 0x1010412, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x22)
read$FUSE(r3, 0x0, 0xeffd)

54.67231259s ago: executing program 0 (id=711):
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), r0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)

39.497244224s ago: executing program 33 (id=711):
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), r0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)

38.306750803s ago: executing program 4 (id=772):
setrlimit(0x2, &(0x7f00000000c0)={0x0, 0x2400000})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0xf, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x688d}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @map_fd={0x18, 0x1, 0x1, 0x0, 0x1}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x3}, @generic={0x5, 0x1, 0x9, 0x41a, 0x3}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x2}], &(0x7f0000000100)='syzkaller\x00', 0x200, 0x1c, &(0x7f0000000140)=""/28, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x1, 0x1, 0x7}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000200)=[{0x2, 0x1, 0xe, 0x5}, {0x0, 0x4, 0x1, 0x6}, {0x2, 0x5, 0xe, 0xa}, {0x4, 0x4, 0x2, 0xb}, {0x0, 0x1, 0x5}], 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='mm_vmscan_lru_shrink_active\x00', r0, 0x0, 0x4}, 0x18)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000073d000/0x3000)=nil)

30.938236407s ago: executing program 4 (id=772):
setrlimit(0x2, &(0x7f00000000c0)={0x0, 0x2400000})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0xf, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x688d}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @map_fd={0x18, 0x1, 0x1, 0x0, 0x1}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x3}, @generic={0x5, 0x1, 0x9, 0x41a, 0x3}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x2}], &(0x7f0000000100)='syzkaller\x00', 0x200, 0x1c, &(0x7f0000000140)=""/28, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x1, 0x1, 0x7}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000200)=[{0x2, 0x1, 0xe, 0x5}, {0x0, 0x4, 0x1, 0x6}, {0x2, 0x5, 0xe, 0xa}, {0x4, 0x4, 0x2, 0xb}, {0x0, 0x1, 0x5}], 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='mm_vmscan_lru_shrink_active\x00', r0, 0x0, 0x4}, 0x18)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000073d000/0x3000)=nil)

10.803165119s ago: executing program 4 (id=772):
setrlimit(0x2, &(0x7f00000000c0)={0x0, 0x2400000})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0xf, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x688d}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @map_fd={0x18, 0x1, 0x1, 0x0, 0x1}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x3}, @generic={0x5, 0x1, 0x9, 0x41a, 0x3}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x2}], &(0x7f0000000100)='syzkaller\x00', 0x200, 0x1c, &(0x7f0000000140)=""/28, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x1, 0x1, 0x7}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000200)=[{0x2, 0x1, 0xe, 0x5}, {0x0, 0x4, 0x1, 0x6}, {0x2, 0x5, 0xe, 0xa}, {0x4, 0x4, 0x2, 0xb}, {0x0, 0x1, 0x5}], 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='mm_vmscan_lru_shrink_active\x00', r0, 0x0, 0x4}, 0x18)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000073d000/0x3000)=nil)

10.803138488s ago: executing program 4 (id=772):
setrlimit(0x2, &(0x7f00000000c0)={0x0, 0x2400000})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0xf, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x688d}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @map_fd={0x18, 0x1, 0x1, 0x0, 0x1}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x3}, @generic={0x5, 0x1, 0x9, 0x41a, 0x3}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x2}], &(0x7f0000000100)='syzkaller\x00', 0x200, 0x1c, &(0x7f0000000140)=""/28, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x1, 0x1, 0x7}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000200)=[{0x2, 0x1, 0xe, 0x5}, {0x0, 0x4, 0x1, 0x6}, {0x2, 0x5, 0xe, 0xa}, {0x4, 0x4, 0x2, 0xb}, {0x0, 0x1, 0x5}], 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='mm_vmscan_lru_shrink_active\x00', r0, 0x0, 0x4}, 0x18)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000073d000/0x3000)=nil)

10.803112926s ago: executing program 4 (id=772):
setrlimit(0x2, &(0x7f00000000c0)={0x0, 0x2400000})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0xf, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x688d}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @map_fd={0x18, 0x1, 0x1, 0x0, 0x1}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x3}, @generic={0x5, 0x1, 0x9, 0x41a, 0x3}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x2}], &(0x7f0000000100)='syzkaller\x00', 0x200, 0x1c, &(0x7f0000000140)=""/28, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x1, 0x1, 0x7}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000200)=[{0x2, 0x1, 0xe, 0x5}, {0x0, 0x4, 0x1, 0x6}, {0x2, 0x5, 0xe, 0xa}, {0x4, 0x4, 0x2, 0xb}, {0x0, 0x1, 0x5}], 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='mm_vmscan_lru_shrink_active\x00', r0, 0x0, 0x4}, 0x18)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000073d000/0x3000)=nil)

5.148559407s ago: executing program 4 (id=772):
setrlimit(0x2, &(0x7f00000000c0)={0x0, 0x2400000})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0xf, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x688d}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @map_fd={0x18, 0x1, 0x1, 0x0, 0x1}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x3}, @generic={0x5, 0x1, 0x9, 0x41a, 0x3}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x2}], &(0x7f0000000100)='syzkaller\x00', 0x200, 0x1c, &(0x7f0000000140)=""/28, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x1, 0x1, 0x7}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000200)=[{0x2, 0x1, 0xe, 0x5}, {0x0, 0x4, 0x1, 0x6}, {0x2, 0x5, 0xe, 0xa}, {0x4, 0x4, 0x2, 0xb}, {0x0, 0x1, 0x5}], 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='mm_vmscan_lru_shrink_active\x00', r0, 0x0, 0x4}, 0x18)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000073d000/0x3000)=nil)

1.117236542s ago: executing program 3 (id=1089):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
mount$9p_virtio(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', &(0x7f0000000180), 0x42, &(0x7f0000000200)=ANY=[@ANYBLOB="5872616e733d76ff1001006f2c654e616d653d2d"]) (async, rerun: 32)
read$FUSE(r0, &(0x7f00000029c0)={0x2020}, 0x2020) (rerun: 32)

970.055012ms ago: executing program 3 (id=1092):
socket$kcm(0x15, 0x5, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x240540c7, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000640)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000cc0)={0x0, 0x21c}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x0, 0x0}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r1, 0x47bc, 0x20, 0x0, 0x0, 0x0)

857.828364ms ago: executing program 3 (id=1096):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r1, {0xe}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}}, 0x24040040)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x4, 0x4, 0x22}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r3, &(0x7f00000001c0), &(0x7f00000004c0)=@udp}, 0x20)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r4 = syz_open_procfs$pagemap(0x0, &(0x7f0000000600))
ioctl$PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f0000000000)={0x60, 0x0, &(0x7f000007c000/0x4000)=nil, &(0x7f0000839000/0x1000)=nil, 0x2, 0x0, 0x0, 0x9, 0x40, 0x0, 0x27, 0x11})

857.633298ms ago: executing program 5 (id=1097):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000140)="66baf80cb8044fdc87efed660f388059e0b805000000b91e4200000f01c10f20c035000000200f22c0f20fa20f01cb36263e660f381efc660f7c150c000000b805000000b9210000000f01c1c4e17929d8", 0x51}], 0x1, 0x11, 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x8, @empty, 0x334}, 0x1c) (async)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x8, @empty, 0x334}, 0x1c)
openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x24c102, 0x0) (async)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x24c102, 0x0)
setsockopt$inet6_icmp_ICMP_FILTER(r4, 0x1, 0x1, &(0x7f00000000c0)={0x82f}, 0x4)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0xd, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

799.542213ms ago: executing program 3 (id=1098):
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000380)='/dev/bsg/2:0:0:0\x00', 0x100, 0x0)
ioctl$BSG_IO(r0, 0x2285, &(0x7f0000000640)={0x51, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xad, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe1e, 0x0, &(0x7f0000000080)=""/86, 0x10, 0x30, 0x0, 0x1}) (async)
r1 = socket(0x2a, 0x2, 0x0)
ioctl$SIOCSIFMTU(r1, 0x8932, &(0x7f0000000080)={'dummy0\x00'}) (async, rerun: 32)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x40, 0x0) (rerun: 32)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
read$FUSE(r3, &(0x7f0000002980)={0x2020, 0x0, <r4=>0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x2000, 0xa68d7c519f800ff1, 0xffbc, 0x6, 0x1d45, 0x0, 0x0, 0x0, 0x40}}, 0x50) (async)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x16c}}, 0x24)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1000000004000000040000000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000020000000000000000000000000000000000e88568268c47033fc00cc0906df3a305254464a9216528cc9cc4f2c8a3f21ceff97c6f457992b7f3d99a943bbd514976ff08dfedfce1e1a955694b231fc53a9090437b13e674bacdffcc6aee0078da3098911fdaa4bd55205944ce6fb8082b7b0ffde55389f6ca2b469080fffd67cddd23"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000157b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r8, 0xffffffffffffffff, 0x500}, 0x57) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000280)={0x10004, 0x4, 0x10000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) (async)
close(r3)
r9 = landlock_create_ruleset(&(0x7f0000000000)={0x1080, 0x1}, 0x18, 0x0) (async)
r10 = landlock_create_ruleset(&(0x7f00000001c0)={0xa019, 0x1, 0x3}, 0x18, 0x0)
landlock_restrict_self(r10, 0x0) (async)
landlock_restrict_self(r9, 0x0)
r11 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r11, 0x38) (async)
lchown(&(0x7f0000000000)='./file0\x00', r5, r6)

798.403839ms ago: executing program 3 (id=1099):
r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = fsopen(&(0x7f0000000040)='hpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x9fa}, 0x0, 0x0, 0x1, 0x0, 0x2}, {{@in=@local, 0x1, 0x6c}, 0x0, @in6=@local, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
ioctl$SIOCAX25CTLCON(r0, 0x89e8, &(0x7f00000000c0)={@null, @default, @null, 0x1, 0x531c, 0x7, [@bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @bcast, @bcast, @null]})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0xffffffffffffffb9}, 0x48)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000280)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='mpol}tic:0,\x00'/22])

708.661471ms ago: executing program 3 (id=1100):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_GET_XSAVE(0xffffffffffffffff, 0x9000aea4, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8b1d}}, './bus\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x8b1d}}, './bus\x00'})
r1 = userfaultfd(0x80001)
r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x6, 0x0, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x3, 0x0, 0x1}}, 0x40)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES16=r2, @ANYRESDEC=r0, @ANYRES32=r0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af0ff00000000bfa200000000000007020000d5ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001d00)={0x11, 0x1d, &(0x7f0000001e80)=ANY=[@ANYBLOB="1800000000181100000000000000000000001800013f321f91c327f6f0401d408e208fe111580678f9d56c04df367912070f33e8a208fbf366403aa8536718bd04744abea74a21dacc5001cf88afd05f7b6c92ab0376213f742d45823dd44b1f8e1eefe8be04fc7cc364d2a5e6da0d4deaeacbbe8e08000000000000005ba85630882b4ec0589851e667571a7bfa2f3fd7342887ca11234efd92da380b45d2eefc77354af47960181059f5fc07a0a5b7bf5cd9d8ff8383fac27354a191ed208ff97aa8952f41b687d22d247491928d442fd1d7404f5680b411611db620faa4ea53a5173f1d00"/243, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000820000001832000001000000000000000000000050b21000f0ffffff18150000", @ANYRES32=r0, @ANYBLOB="0000000000000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000140)='GPL\x00', 0x2, 0x1000, &(0x7f0000000b40)=""/4096, 0x41000, 0x8, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000001c40)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000001c80)={0x1, 0x3, 0x80000000, 0x1}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000001cc0)=[0xffffffffffffffff, r0, r3, r0, r0, 0xffffffffffffffff, r0], 0x0, 0x10, 0x9}, 0x94)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x2a615293b57fc4a5})
add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) (async)
r4 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000200)='rxrpc_s\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000ac0)="038d5b863d2b590cae3910844ec073ac9f732c60b87dd45b69594ac387927412e96ef7bc541c20b5efafa0959c86d8705f1f0000676129a4edea2788c094115a88b0b537dd10da488ffa530687d78ab37c", 0x51, r4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000eeff0f"], 0x0, 0x2a}, 0x28)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r5=>0xffffffffffffffff})
r6 = epoll_create(0xe1)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000240)={0x20000006})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
syz_usb_connect$uac1(0x2, 0x7d, &(0x7f0000000480)=ANY=[@ANYBLOB="120100030000ce0359815389c3472aaf9451f600106b1d010140000102030109026b00030156c0020904000000010100000a24010101bb020102072406010400050524050b0e09040100000102e4ff090401010a0102000009050109200093019e0725010003480f0904020000010200000904020101010200000905820920000d020a07250126080300fffefd1c003d78b2a14ee94ecbdac6a10d113222b5128f3f"], 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8) (async)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)
sendto$packet(0xffffffffffffffff, &(0x7f0000000000)='1', 0x1, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6) (async)
bind$bt_hci(r7, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r7, &(0x7f0000000000), 0xd)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000180)={'pim6reg1\x00', &(0x7f00000000c0)=@ethtool_eee={0x44, 0x80000001, 0x1, 0x5, 0x2, 0x6, 0xfffd, 0x8000, [0x4f, 0xc]}}) (async)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000180)={'pim6reg1\x00', &(0x7f00000000c0)=@ethtool_eee={0x44, 0x80000001, 0x1, 0x5, 0x2, 0x6, 0xfffd, 0x8000, [0x4f, 0xc]}})
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) (async)
r9 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r9, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r9, 0xc4c85513, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x3, 0x6c4ba42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xcd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x400000000000, 0x0, 0x1, 0x3, 0x0, 0x2, 0x80000000, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0xfffffffffffffffb, 0x0, 0x2, 0x0, 0x17b5c5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80003, 0x0, 0x0, 0xffffffffffffffff, 0x200, 0x0, 0x40000000000, 0x200000801, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x100000001]}) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r9, 0xc4c85513, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x3, 0x6c4ba42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xcd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x400000000000, 0x0, 0x1, 0x3, 0x0, 0x2, 0x80000000, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0xfffffffffffffffb, 0x0, 0x2, 0x0, 0x17b5c5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80003, 0x0, 0x0, 0xffffffffffffffff, 0x200, 0x0, 0x40000000000, 0x200000801, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x100000001]})
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0xd)

460.221228ms ago: executing program 2 (id=1101):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r0, 0x0)
madvise(&(0x7f0000ab4000/0x4000)=nil, 0x4000, 0xf)
cachestat(r0, &(0x7f0000000040)={0x4}, &(0x7f000009de80), 0x0)
recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000080)=@ieee802154={0x24, @short}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/57, 0x39}, {&(0x7f0000000140)=""/78, 0x4e}], 0x2, &(0x7f0000000200)=""/47, 0x2f}, 0x2000)

350.065744ms ago: executing program 5 (id=1102):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB="2c000000130005009d180000feffffff0700", @ANYRES32=r2, @ANYBLOB="00300000000000000c001a80080004"], 0x2c}, 0x1, 0x0, 0x0, 0x800c000}, 0x0)

347.441243ms ago: executing program 2 (id=1103):
modify_ldt$read(0x0, &(0x7f0000000000)=""/45, 0x2d)
modify_ldt$read(0x0, &(0x7f0000000040)=""/234, 0xea)
modify_ldt$read(0x0, &(0x7f0000000140)=""/111, 0x6f)
modify_ldt$read(0x0, &(0x7f00000001c0)=""/71, 0x47)
modify_ldt$read(0x0, &(0x7f0000000240)=""/241, 0xf1)
modify_ldt$read(0x0, &(0x7f0000000340)=""/122, 0x7a)
modify_ldt$read(0x0, &(0x7f00000003c0)=""/13, 0xd)
modify_ldt$read(0x0, &(0x7f0000000400)=""/254, 0xfe)
modify_ldt$read(0x0, &(0x7f0000000500)=""/118, 0x76)
modify_ldt$read(0x0, &(0x7f0000000580)=""/143, 0x8f)
modify_ldt$read(0x0, &(0x7f0000000640)=""/26, 0x1a)
modify_ldt$read(0x0, &(0x7f0000000680), 0x0)
modify_ldt$read(0x0, &(0x7f00000006c0)=""/147, 0x93)
modify_ldt$read(0x0, &(0x7f0000000780)=""/4096, 0x1000)
modify_ldt$read(0x0, &(0x7f0000001780)=""/41, 0x29)
modify_ldt$read(0x0, &(0x7f00000017c0)=""/4096, 0x1000)
ioctl$TFD_IOC_SET_TICKS(0xffffffffffffffff, 0x40085400, &(0x7f00000027c0)=0x8000000000000000)
modify_ldt$read(0x0, &(0x7f0000002800)=""/84, 0x54)
modify_ldt$read(0x0, &(0x7f0000002880)=""/37, 0x25)
modify_ldt$read(0x0, &(0x7f00000028c0)=""/204, 0xcc)
modify_ldt$read(0x0, &(0x7f00000029c0)=""/190, 0xbe)
modify_ldt$read(0x0, &(0x7f0000002a80)=""/4096, 0x1000)
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000003a80), 0x4000, 0x0)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000003b00), r0)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000003dc0)={&(0x7f0000003ac0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000003d80)={&(0x7f0000003b40)={0x228, r1, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x38, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_BEARER={0xd4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x3}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0xb7a, @empty, 0x5}}, {0x14, 0x2, @in={0x2, 0x4e20, @loopback}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x25}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}]}, @TIPC_NLA_NODE={0x50, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "d003aa79df1fefa82abf062605850f12ce4f36af3150de811bfba847b047a900cf6733"}}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xa}]}, @TIPC_NLA_LINK={0x4}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0xfffffff8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x62b}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}]}, @TIPC_NLA_MEDIA={0x74, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x228}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000003e40), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000003e80)={'wpan0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000003ec0)={'wpan3\x00', <r5=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r2, &(0x7f0000004000)={&(0x7f0000003e00)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000003fc0)={&(0x7f0000003f40)={0x4c, r3, 0x300, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0xd}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0xa}]}, 0x4c}, 0x1, 0x0, 0x0, 0x615210bc00c5f5c}, 0x0)

347.115636ms ago: executing program 5 (id=1104):
socket$kcm(0x15, 0x5, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x240540c7, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000640)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000cc0)={0x0, 0x21c}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x0, 0x0}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r1, 0x47bc, 0x20, 0x0, 0x0, 0x0)

279.954984ms ago: executing program 5 (id=1105):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x4048aec9, &(0x7f0000001480)={0x0, 0x0, @ioapic={0xf000, 0x5, 0xc, 0x1, 0x0, [{0x10, 0x10, 0x81, '\x00', 0x5}, {0x5, 0x4, 0x5, '\x00', 0xc6}, {0x7, 0x1, 0xff, '\x00', 0x5}, {0xf6, 0x0, 0x8, '\x00', 0x91}, {0x2, 0x0, 0x1, '\x00', 0x8}, {0xc1, 0x5, 0x7, '\x00', 0xf1}, {0xff, 0x6, 0x3, '\x00', 0x4}, {0x2, 0x9, 0x96, '\x00', 0xb}, {0x1, 0x80, 0x7, '\x00', 0x13}, {0x8, 0x9b, 0x2, '\x00', 0x4}, {0xe5, 0x0, 0x5, '\x00', 0x9}, {0xe2, 0xd, 0x83, '\x00', 0x7}, {0x1, 0x8, 0x36, '\x00', 0x7}, {0x6, 0x9, 0x5, '\x00', 0x9}, {0x4, 0x8, 0x0, '\x00', 0xe0}, {0xe, 0x3, 0x9, '\x00', 0x8d}, {0xff, 0x8, 0x7, '\x00', 0x8}, {0xff, 0x9, 0x2, '\x00', 0xa0}, {0x4, 0xb2, 0x1, '\x00', 0xa}, {0x5, 0xff, 0x4, '\x00', 0x4}, {0x3, 0x80, 0x0, '\x00', 0x9}, {0x4, 0x6, 0x6, '\x00', 0x7}, {0xd0, 0x9, 0x3, '\x00', 0x1}, {0x9, 0xa, 0x7, '\x00', 0xf9}]}}) (async, rerun: 64)
syz_emit_ethernet(0x7a, &(0x7f0000000280)={@local, @local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "92c01f", 0x44, 0x2f, 0x0, @remote, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x57}}}}}}}, 0x0) (async, rerun: 64)
prctl$PR_SET_THP_DISABLE(0x41, 0x3) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

279.044739ms ago: executing program 2 (id=1106):
r0 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000380)=@filter={'filter\x00', 0xe, 0x2, 0x324, [0x0, 0x200000000040, 0x200000000070, 0x200000000334], 0x0, &(0x7f0000000000), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffc, 0x2, [{0x5, 0x0, 0x8848, 'bond_slave_1\x00', 'pim6reg1\x00', 'veth1_to_bond\x00', 'veth0\x00', @local, [0x0, 0x0, 0x0, 0xff], @random="389143006beb", [0xff, 0xff, 0x0, 0x0, 0x0, 0xff], 0xde, 0x15e, 0x1a6, [@physdev={{'physdev\x00', 0x0, 0x48}, {{'veth0_to_team\x00', {}, 'virt_wifi0\x00', {0xff}, 0x4, 0x10}}}], [@common=@dnat={'dnat\x00', 0x10, {{@empty, 0xfffffffffffffffd}}}, @common=@ERROR={'ERROR\x00', 0x20, {"376e34304fbea236de61f1bda33e4500ac1b9111207a2d8e45ef3ba3804b"}}], @common=@ERROR={'ERROR\x00', 0x20, {"51aa3b6d6c146bc0640ceb9870fef9e22063d0f91c4a5912126d2bd02550"}}}, {0x5, 0x1, 0xaf4, 'pimreg\x00', 'gre0\x00', 'pim6reg0\x00', 'ip_vti0\x00', @multicast, [0x0, 0xff, 0x0, 0xff], @empty, [0xff, 0x0, 0xff], 0x6e, 0x9e, 0xee, [], [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x18e1}}}], @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x6, 'syz1\x00', {0x80}}}}}]}, {0x0, '\x00', 0x2, 0xffffffffffffffff}]}, 0x39c)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r1=>r0, {0x5}}, './file0\x00'})
getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000440)={'filter\x00', 0x0, [0xe96, 0x3, 0x9, 0x2, 0x5]}, &(0x7f00000004c0)=0x54)
ioctl$IOMMU_VFIO_IOAS$GET(r1, 0x3b88, &(0x7f0000000500)={0xc, <r2=>0x0})
ioctl$IOMMU_IOAS_UNMAP(r1, 0x3b86, &(0x7f0000000540)={0x18, r2, 0x40, 0xe8ac})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
connect$inet(r1, &(0x7f0000000580)={0x2, 0x4e22, @local}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000005c0)='./cgroup.net/syz1\x00', 0x200002, 0x0)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
sendto$inet6(r4, &(0x7f0000000600)="ea1d3f8f90f444fb2ea94a698593e1660364925b65f70a89193affda417d9bb35261097d2e8bab394c2f7fdcf1fd4545ebf9790a93bdccff0dcc536cf1f97c795298e6f411ec4c7d2ecf8877f7549dfe4d617586eabcd5461bc40a3ffcb8968b818d5f6910b1cbda6edcbb3a1efc9d2a623c71ca55149dc213b1cf159fb23dffb6e4c827e0b2e64c652540b921ea5e7eff34cadac1ef2d6bd3262c3b43813f9f564ab35d927155c4685ecbe6ba1fb1f7699c535de3c8558a7991c41f6909356ad14a67ceb4f12746", 0xc8, 0x5, &(0x7f0000000700)={0xa, 0x4e22, 0x65, @private0={0xfc, 0x0, '\x00', 0x1}, 0xfffffffa}, 0x1c)
r5 = accept4(r4, 0x0, &(0x7f0000000740), 0x80000)
r6 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', &(0x7f00000007c0)={0x400200, 0x138, 0x4}, 0x18)
readlinkat(r6, &(0x7f0000000800)='./file0\x00', &(0x7f0000000840)=""/176, 0xb0)
r7 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000900), 0x0, 0x0)
r8 = openat$cgroup_ro(r7, &(0x7f0000000940)='blkio.bfq.io_merged\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000980), 0x4000, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r8, 0x89f2, &(0x7f0000000a80)={'ip6_vti0\x00', &(0x7f0000000a00)={'syztnl1\x00', <r9=>0x0, 0x4, 0x0, 0x4, 0x1c3, 0x31, @private0, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7, 0x20, 0x25400000, 0xd4}})
r10 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r11 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
r12 = accept4$tipc(r1, &(0x7f0000000ac0), &(0x7f0000000b00)=0x10, 0x81800)
sendmsg$nl_route_sched_retired(r5, &(0x7f0000001600)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000015c0)={&(0x7f0000000b40)=@newtclass={0xa48, 0x28, 0x100, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r9, {0x3, 0xffff}, {0xfff1, 0x8}, {0x5, 0xffe0}}, [@c_atm={{0x8}, {0xc, 0x2, [@TCA_ATM_EXCESS={0x8, 0x4, {0xb, 0x6}}]}}, @c_cbq={{0x8}, {0x418, 0x2, [@TCA_CBQ_WRROPT={0x10, 0x2, {0x8, 0x5, 0x40, 0xd, 0x44b88a17}}, @TCA_CBQ_RTAB={0x404, 0x6, [0x2, 0x200, 0x243f00, 0xe, 0x101, 0x3, 0x6, 0x100, 0x2db, 0x6, 0x8ae, 0x1, 0x9, 0x4, 0x9, 0x276a, 0x100, 0x8, 0x1, 0x5, 0x82d, 0x9, 0x4, 0x2, 0x1f7, 0x80000001, 0x800, 0x9, 0x2, 0x6, 0x6, 0x1, 0x1, 0x1, 0x4, 0x8, 0xbb55, 0x1, 0x9, 0x10001, 0x10001, 0x8000, 0x4, 0xa, 0x1, 0x2, 0x10001, 0x6, 0xffff, 0x3ba, 0x200000, 0xe22a, 0xfff, 0xf, 0x5, 0x2, 0x1, 0xe3e, 0x0, 0x4, 0x4, 0x3, 0x5, 0x3, 0x7fff, 0x566b9eeb, 0x9, 0xffff, 0x2, 0x5, 0x3, 0x3, 0xf, 0x9, 0x7, 0xffffde2c, 0x0, 0x5, 0x80000001, 0x8, 0x5, 0xf, 0x4, 0xf, 0x4, 0x8, 0x2, 0xb, 0x10000, 0x5, 0x7, 0x70fe, 0x6, 0x1, 0x8, 0x8, 0x7fff, 0x84, 0x2, 0x80, 0x7, 0x9, 0xfffffbff, 0x3, 0xc9e, 0x1, 0x8, 0x530cdb2d, 0x8, 0x3ff, 0x4, 0x6, 0x3ff, 0x80000000, 0x4, 0x2, 0x2, 0x7, 0x47, 0x3, 0x4, 0x0, 0x5, 0x9, 0x6, 0xffff, 0x0, 0x75a2, 0x1, 0x2, 0x2d, 0x6, 0x8, 0x3, 0xc41, 0x4, 0x7, 0x8001, 0x401, 0x10000, 0x1, 0x4, 0x4, 0x401, 0x7ff, 0x400, 0x1, 0xfffffffc, 0x1, 0x3, 0x9, 0x0, 0x2, 0x2, 0x7fffffff, 0x0, 0xffffffff, 0xc3, 0x3, 0x1000, 0x200, 0x3d0, 0x80000000, 0x4, 0x10000, 0x40, 0x0, 0x0, 0xfffffff7, 0x8, 0x5, 0x0, 0x7, 0x4, 0x3, 0x3, 0xcf08, 0x8d, 0xf367, 0x81, 0x200, 0x8, 0xbd, 0x650, 0x5, 0x4, 0x2, 0x80, 0xf, 0x2, 0x968, 0xffffffff, 0x0, 0x0, 0x1, 0x1, 0xfff, 0x9, 0xe, 0x8000, 0x0, 0x6, 0x7, 0x9, 0x5, 0x1, 0xf, 0xac000, 0x14da, 0x6, 0x3, 0x3, 0x7f, 0x8, 0x7, 0x0, 0x1, 0x0, 0x7, 0xfffffff9, 0x5, 0x5, 0x7, 0x0, 0x4, 0xffffffff, 0xc, 0x40, 0x3, 0x7, 0x8, 0x9, 0xd9, 0xd, 0x1, 0x1, 0x80000000, 0x1, 0xdb00, 0xfc, 0x7, 0x4361, 0x7, 0x7, 0xcc, 0x140000, 0xc603, 0xffff, 0x0, 0xc9db, 0x1, 0x6, 0x1, 0x5, 0x2, 0xffff]}]}}, @c_atm={{0x8}, {0x5c, 0x2, [@TCA_ATM_HDR={0x26, 0x3, "0c872e87b23fc5c294eb0c078b300452d4151081b4b40f774880e309269d9674b40f"}, @TCA_ATM_FD={0x8, 0x1, r0}, @TCA_ATM_FD={0x8, 0x1, r10}, @TCA_ATM_FD={0x8}, @TCA_ATM_EXCESS={0x8, 0x4, {0xe, 0xfff1}}, @TCA_ATM_FD={0x8, 0x1, r1}, @TCA_ATM_EXCESS={0x8, 0x4, {0xfff2, 0xf}}]}}, @c_atm={{0x8}, {0x4}}, @c_atm={{0x8}, {0x4c, 0x2, [@TCA_ATM_FD={0x8, 0x1, r4}, @TCA_ATM_EXCESS={0x8, 0x4, {0xc, 0x1}}, @TCA_ATM_HDR={0x2d, 0x3, "e4f6e9c103fa21cf63aa0df5f8bf394ae6363093a5741e97146c2c1c4bf1cbce093b183ddb4cf24a44"}, @TCA_ATM_FD={0x8, 0x1, r11}]}}, @c_cbq={{0x8}, {0x418, 0x2, [@TCA_CBQ_WRROPT={0x10, 0x2, {0x5, 0x6, 0x0, 0x3, 0x9be, 0xe36}}, @TCA_CBQ_RTAB={0x404, 0x6, [0x1, 0x8, 0x8, 0x0, 0x3, 0x40, 0x4, 0x81, 0x9, 0x10001, 0x1, 0x1, 0x0, 0xa4, 0x7597, 0x4, 0x48000000, 0xfffffffa, 0x3, 0x7, 0x7, 0x1, 0x6, 0xea2, 0xc8, 0x7fffffff, 0x5, 0x1, 0xe46, 0x4, 0x5, 0x5, 0x7, 0x4, 0x3, 0x2, 0xc0d9, 0xbe, 0x0, 0x8, 0xeb, 0x7, 0x1ff, 0x4, 0x5, 0x5, 0x75c53bd4, 0x3, 0xdc, 0x3ff, 0x4, 0xf, 0x9, 0x1ff, 0xfffffffc, 0x9, 0x52d, 0x7f, 0x80, 0x8, 0x2, 0x7, 0x7, 0xfd, 0x2, 0x200, 0x2, 0x3, 0x2, 0x2, 0x9, 0x2, 0x2, 0x3, 0x7, 0x4, 0x8, 0x76b, 0xe, 0x1, 0x6, 0x800, 0x1000, 0x1, 0xf, 0xfffffffe, 0x2, 0x9, 0x10, 0x2, 0x5a, 0x6, 0x80000000, 0x2, 0x3, 0x1, 0xffff, 0xfffffff1, 0x3714, 0xd482, 0x9, 0xcc8, 0x400, 0x8, 0xa5f, 0x7, 0x1, 0x1, 0x10001, 0x7, 0x8, 0x3ff, 0x8000, 0x8, 0x7ff, 0x4, 0x9, 0x8, 0x9, 0xfffffa15, 0x7, 0x2, 0x3, 0x2, 0x3, 0xfffffff6, 0x3, 0x5c113032, 0x80000001, 0x38ea1e02, 0xb1e, 0x80000001, 0x8, 0x17, 0x1000, 0x0, 0x3b, 0x3, 0x4, 0x255, 0xa6, 0x1, 0x0, 0x0, 0xd5, 0xffffffff, 0x200, 0x10, 0x5, 0xde, 0x35, 0x5, 0x12, 0x10, 0x1, 0x400, 0x0, 0x101, 0x5c2, 0x8, 0x9, 0xfffffff8, 0x6, 0x6, 0x100, 0x2, 0xdf, 0x1, 0x4, 0x9, 0x8, 0xfffffffa, 0xfffffffa, 0x6, 0x9, 0x2, 0x0, 0x8, 0x7, 0x40, 0xa21016a2, 0x1, 0xd, 0x81, 0x4, 0x2, 0x3, 0x3ff, 0x3, 0x4, 0x1, 0x21f4, 0xa, 0x100, 0xc8, 0x5, 0x0, 0xfffffff0, 0x2, 0xcc, 0x8001, 0x4, 0x4, 0x6, 0x5, 0x155, 0x471c, 0x7, 0x2, 0x7, 0x0, 0x21, 0x800, 0x5, 0x8, 0x2af, 0x7f, 0x2, 0x800, 0xffffffff, 0xb, 0xd0, 0xfffffca7, 0xe4, 0x7, 0x80000001, 0x6, 0x8, 0x3, 0x1ff, 0x8, 0x1ff, 0x8d53, 0x9, 0xfffffb9a, 0x0, 0x3, 0x1aed10ca, 0x7, 0x9, 0x6, 0x101, 0x6, 0x5, 0x6, 0x0, 0x3, 0x7fffffff, 0x4, 0x4, 0x7fffffff, 0x0, 0x7fffffff, 0x2, 0x0, 0x5]}]}}, @c_dsmark={{0xb}, {0xc, 0x2, @TCA_DSMARK_VALUE={0x5, 0x5, 0x2}}}, @c_atm={{0x8}, {0x6c, 0x2, [@TCA_ATM_FD={0x8, 0x1, r12}, @TCA_ATM_HDR={0x3f, 0x3, "69a30a9782de57d2ad86ed05277a501bac0a82d3c4791dd9f1b1738f3334011c7d9e07f6faa51ac01a7a621aad2da5bbef6a4f343c1a135858790d"}, @TCA_ATM_EXCESS={0x8, 0x4, {0xffe0, 0x4}}, @TCA_ATM_FD={0x8, 0x1, r7}, @TCA_ATM_FD={0x8, 0x1, r8}, @TCA_ATM_EXCESS={0x8, 0x4, {0x5, 0xffe0}}]}}, @c_atm={{0x8}, {0x78, 0x2, [@TCA_ATM_HDR={0x2b, 0x3, "08637790f4fae5c9905854869fe0cfa6718a2831a50aaab64e00ee24269f6fe5e306468516a3ae"}, @TCA_ATM_FD={0x8, 0x1, r8}, @TCA_ATM_FD={0x8, 0x1, r5}, @TCA_ATM_HDR={0x16, 0x3, "d099d05d9c9af7de1363edc3d4db24eccf20"}, @TCA_ATM_FD={0x8, 0x1, r3}, @TCA_ATM_FD={0x8, 0x1, r7}, @TCA_ATM_HDR={0xd, 0x3, "cb1dcc5eaae38dbe9f"}]}}]}, 0xa48}, 0x1, 0x0, 0x0, 0x4801}, 0x4048004)
write$cgroup_int(r1, &(0x7f0000001640)=0xbd0, 0x12)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r10, 0xc018937d, &(0x7f0000001680)={{0x1, 0x1, 0x18, <r13=>r8, {0x8d}}, './file0\x00'})
clock_gettime(0x0, &(0x7f0000001700)={<r14=>0x0, <r15=>0x0})
sendmsg$can_bcm(r13, &(0x7f0000001800)={&(0x7f00000016c0)={0x1d, r9}, 0x10, &(0x7f00000017c0)={&(0x7f0000001740)={0x6, 0x4, 0x8, {r14, r15/1000+60000}, {}, {0x4, 0x1, 0x0, 0x1}, 0x1, @can={{0x2, 0x1, 0x1, 0x1}, 0x7, 0x0, 0x0, 0x0, "03283d36459381e7"}}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x4)
fanotify_mark(r8, 0x0, 0x0, r1, &(0x7f0000001840)='./file0\x00')
write$bt_hci(r5, &(0x7f0000001880)={0x1, @write_voice_setting={{0xc26, 0x2}}}, 0x6)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

278.816025ms ago: executing program 2 (id=1107):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@quota}]})
r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x585a00, 0x1cd)
quotactl_fd$Q_GETQUOTA(r0, 0xffffffff80000700, 0x0, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_AFF(r0, 0x11, &(0x7f0000000040)="d83ddef71b6a", 0x6)

209.713921ms ago: executing program 2 (id=1108):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c000000100001040000000000000074a3102b27", @ANYRES32=0x0, @ANYBLOB="00000000141000001c00128009000100626f6e64000000000c0002800800130008"], 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r2, 0x10e, 0xc, &(0x7f0000000040)=0x2108003, 0x4)
sendmsg$netlink(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000056000106000000000000000007"], 0x1c}], 0x1, 0x0, 0x0, 0x4044}, 0x0)
r3 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000000000)={&(0x7f0000000200)={0x2, 0x4e21, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000600)=[@fadd={0x58, 0x114, 0x6, {{0x2, 0x1}, &(0x7f0000000580)=0x2, 0x0, 0xc03c, 0x2, 0x2, 0x8, 0x7b, 0x5}}], 0x58}, 0x0)
syz_clone3(&(0x7f0000000380)={0x2140280, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r5 = openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0)
r6 = dup(r5)
write$binfmt_aout(r6, 0x0, 0xffffffdb)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
madvise(&(0x7f0000106000/0x3000)=nil, 0x3000, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)

208.72038ms ago: executing program 5 (id=1109):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", ' \x00'}, 0x28)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000f00)="6e37cf", 0x3}], 0x1}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
recvfrom$inet6(r0, &(0x7f0000000040)=""/19, 0xff1, 0x40000041, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=@delqdisc={0x158, 0x25, 0x405, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0x2, 0x8}, {0xf, 0x6}, {0xd, 0x3}}, [@qdisc_kind_options=@q_mq={0x7}, @TCA_STAB={0xa4, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0x7, 0x1, 0x3, 0x0, 0x2, 0x2, 0x1}}, {0x6, 0x2, [0x9]}}, {{0x1c, 0x1, {0x3, 0x4, 0x8, 0x3, 0x0, 0x6, 0x85d9, 0x7}}, {0x12, 0x2, [0x9, 0xabfe, 0x248, 0x2, 0x6, 0xca, 0x9]}}, {{0x1c, 0x1, {0x7, 0x7, 0x9, 0x5, 0x1, 0x7, 0x101, 0x3}}, {0xa, 0x2, [0x200, 0x5, 0x1]}}, {{0x1c, 0x1, {0x6, 0x8, 0x3, 0x7, 0x1, 0x0, 0x5, 0x1}}, {0x6, 0x2, [0x81]}}]}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x6}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x4}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x6}, @qdisc_kind_options=@q_cbq={{0x8}, {0x64, 0x2, [@TCA_CBS_PARMS={0x18, 0x1, {0x8d, '\x00', 0x7, 0xae1, 0x0, 0x6}}, @TCA_CBS_PARMS={0x18, 0x1, {0x2, '\x00', 0x4, 0x5, 0x0, 0xffff}}, @TCA_CBS_PARMS={0x18, 0x1, {0x61, '\x00', 0x2, 0x488, 0x5, 0x77}}, @TCA_CBS_PARMS={0x18, 0x1, {0x6, '\x00', 0xae, 0x7, 0x1, 0x55ce0e43}}]}}, @TCA_STAB={0x4}]}, 0x158}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40400)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000000000000000000021000000611980000000000095000000000000e6"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90)
ioctl$VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000000100)={0x9, @sdr={0x52424752, 0xff}})
write(r3, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

79.307826ms ago: executing program 2 (id=1110):
r0 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
pwrite64(r0, &(0x7f0000000000)="a5", 0xfffffe8c, 0x2)
r1 = syz_open_dev$radio(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x31, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xf0f05e, 0x1ff, '\x00', @string=&(0x7f00000001c0)}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="ecc09c30", @ANYRES16=r3, @ANYBLOB="010026bd7000fcdbdf250a000000180004801300010062726f6164636173742d6c696e6b0000"], 0x2c}, 0x1, 0x0, 0x0, 0x40014}, 0x4028050)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x4e22}, 0x21)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="340000003e0007012dbd7000fcdbdf25047c000004006e001c00018006000600800a0000100007"], 0x34}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x7fa962bfffff, 0x13012, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000ff9000/0x2000)=nil, 0x2000)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000200)={0x0, 0x0, 0xe2}, 0x10)
mremap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x2000, 0x0, &(0x7f0000ff8000/0x2000)=nil)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r4, 0x0, r7, 0x0, 0xaf4, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={0x1, 0x58, &(0x7f0000000440)}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@gettclass={0x24, 0x2a, 0x10, 0x70bd25, 0x25dfdbfa, {0x0, 0x0, 0x0, 0x0, {0x8, 0xc}, {0x5, 0x4}, {0x3, 0xe}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYRES8=r1, @ANYRES32=0x0, @ANYRESOCT=r6], 0x50}}, 0x80)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)

0s ago: executing program 5 (id=1111):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000000)=0x28, 0x4)
sendmmsg$inet6(r0, &(0x7f0000001340)=[{{&(0x7f0000000140)={0xa, 0x4e21, 0x8, @dev={0xfe, 0x80, '\x00', 0x8a}, 0x7}, 0x1c, 0x0}}], 0xffffffffffffff5a, 0x1000c040)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
r7 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f0000000440)={0x1, 0x2, 0x1})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, &(0x7f0000000180)={0x0, 0xffffffffffffffad, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r8, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmsg$kcm(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000a80)}, 0x20000000)
sendmmsg$inet6(r0, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000003c0)="8b8ec7aabc443cd817a5fe787411faaac0c8f1ffd24987f0c85e04f8f33e4c313ddc6d16bc88bc5db7", 0x29}], 0x1}}], 0x1, 0x40000)

kernel console output (not intermixed with test programs):

uffer I/O error on dev loop6, logical block 0, async page read
[   84.895524][ T6117] Buffer I/O error on dev loop6, logical block 0, async page read
[   84.897983][ T6117] Buffer I/O error on dev loop6, logical block 0, async page read
[   84.900806][ T6117] Buffer I/O error on dev loop6, logical block 0, async page read
[   84.904053][ T6117] Buffer I/O error on dev loop6, logical block 0, async page read
[   84.909876][ T6117] Buffer I/O error on dev loop6, logical block 0, async page read
[   84.913109][ T6117] ldm_validate_partition_table(): Disk read failed.
[   84.916090][ T6117] Buffer I/O error on dev loop6, logical block 0, async page read
[   84.919339][ T6117] Buffer I/O error on dev loop6, logical block 0, async page read
[   84.922856][ T6117] Dev loop6: unable to read RDB block 0
[   84.925739][ T6117]  loop6: unable to read partition table
[   84.931442][ T7546] ldm_validate_partition_table(): Disk read failed.
[   84.937033][ T7546] Dev loop6: unable to read RDB block 0
[   84.940271][ T7546]  loop6: unable to read partition table
[   84.942814][ T7546] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[   85.015954][ T7552] loop6: detected capacity change from 524287487 to 524288
[   85.046085][ T7559] netlink: 4 bytes leftover after parsing attributes in process `syz.2.461'.
[   85.060368][ T7562] netlink: 24 bytes leftover after parsing attributes in process `syz.4.460'.
[   85.071257][ T7562] netlink: 4 bytes leftover after parsing attributes in process `syz.4.460'.
[   85.091080][ T7559] netlink: 28 bytes leftover after parsing attributes in process `syz.2.461'.
[   85.127316][ T7566] xt_hashlimit: Unknown mode mask 180, kernel too old?
[   85.153050][ T7567] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=7567 comm=syz.2.461
[   85.159131][ T7567] netlink: 28 bytes leftover after parsing attributes in process `syz.2.461'.
[   85.179887][   T40] audit: type=1400 audit(1752825947.966:430): avc:  denied  { write } for  pid=7558 comm="syz.2.461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   85.186094][   T40] audit: type=1400 audit(1752825947.976:431): avc:  denied  { accept } for  pid=7558 comm="syz.2.461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   85.191883][   T40] audit: type=1400 audit(1752825947.976:432): avc:  denied  { read } for  pid=7558 comm="syz.2.461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   85.528982][ T7575] netlink: 12 bytes leftover after parsing attributes in process `syz.4.465'.
[   85.541028][ T7575] 8021q: adding VLAN 0 to HW filter on device bond1
[   85.551228][ T7575] 8021q: adding VLAN 0 to HW filter on device bond1
[   85.553479][ T7575] bond1: (slave vcan1): The slave device specified does not support setting the MAC address
[   85.557449][ T7575] bond1: (slave vcan1): Error -95 calling set_mac_address
[   85.722655][   T40] audit: type=1400 audit(1752825948.506:433): avc:  denied  { nlmsg_read } for  pid=7577 comm="syz.4.467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[   85.778336][ T7591] netlink: 44 bytes leftover after parsing attributes in process `syz.4.471'.
[   85.851952][ T7619] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[   86.114364][ T5314] Bluetooth: hci0: command 0x041b tx timeout
[   86.693637][ T7644] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   87.014270][   T10] usb 9-1: new full-speed USB device number 6 using dummy_hcd
[   87.038261][ T7654] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[   87.166672][   T10] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 447, setting to 64
[   87.170369][   T10] usb 9-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[   87.177024][   T10] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   87.180074][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.182585][   T10] usb 9-1: Product: ë¿®
[   87.183900][   T10] usb 9-1: Manufacturer: �
[   87.185560][   T10] usb 9-1: SerialNumber: 《
[   87.189335][ T7649] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[   87.310019][ T7670] vlan2: entered promiscuous mode
[   87.311780][ T7670] bridge0: entered promiscuous mode
[   87.397899][   T10] cdc_ncm 9-1:1.0: bind() failure
[   87.401671][   T10] cdc_ncm 9-1:1.1: CDC Union missing and no IAD found
[   87.403845][   T10] cdc_ncm 9-1:1.1: bind() failure
[   87.408716][   T10] usb 9-1: USB disconnect, device number 6
[   87.430308][ T7678] __nla_validate_parse: 1 callbacks suppressed
[   87.430322][ T7678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.493'.
[   87.433162][ T7679] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.494'.
[   87.513266][ T7694] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   87.577480][ T7699] netlink: zone id is out of range
[   87.579816][ T7699] netlink: zone id is out of range
[   87.601467][ T7699] netlink: set zone limit has 4 unknown bytes
[   87.872932][ T7727] sctp: [Deprecated]: syz.3.510 (pid 7727) Use of int in maxseg socket option.
[   87.872932][ T7727] Use struct sctp_assoc_value instead
[   88.164314][   T10] usb 9-1: new low-speed USB device number 7 using dummy_hcd
[   88.194437][ T5314] Bluetooth: hci0: command 0x041b tx timeout
[   88.316071][   T10] usb 9-1: config 0 has an invalid interface number: 55 but max is 0
[   88.319599][   T10] usb 9-1: config 0 has no interface number 0
[   88.322123][   T10] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   88.326896][   T10] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[   88.331250][   T10] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[   88.338307][   T10] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[   88.342916][   T10] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[   88.347674][   T10] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[   88.353107][   T10] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[   88.357416][   T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.364747][   T10] usb 9-1: config 0 descriptor??
[   88.373428][ T7739] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[   88.376591][ T7739] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[   88.383226][   T10] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[   88.582808][ T7739] netlink: 'syz.4.513': attribute type 1 has an invalid length.
[   88.588651][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   88.605873][ T7739] 8021q: adding VLAN 0 to HW filter on device bond2
[   88.645759][ T7739] bond2: (slave veth3): Enslaving as an active interface with a down link
[   88.653319][ T7739] netlink: 12 bytes leftover after parsing attributes in process `syz.4.513'.
[   88.661840][ T7739] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.666307][ T7739] bond2: (slave batadv0): making interface the new active one
[   88.670304][ T7739] batadv0: entered promiscuous mode
[   88.672811][ T7739] bond2: (slave batadv0): Enslaving as an active interface with an up link
[   88.708255][ T7739] ldusb 9-1:0.55: Write buffer overflow, 1 bytes dropped
[   88.724481][   T53] usb 9-1: USB disconnect, device number 7
[   88.739621][   T53] ldusb 9-1:0.55: LD USB Device #0 now disconnected
[   88.740354][ T7765] netlink: 12 bytes leftover after parsing attributes in process `syz.0.516'.
[   88.749747][ T7765] netlink: 'syz.0.516': attribute type 10 has an invalid length.
[   88.767238][ T7769] xt_hashlimit: size too large, truncated to 1048576
[   89.000588][ T7800] macvlan2: entered promiscuous mode
[   89.291203][ T7827] netlink: 'syz.0.527': attribute type 1 has an invalid length.
[   89.293945][ T7827] netlink: 105116 bytes leftover after parsing attributes in process `syz.0.527'.
[   89.305745][   T53] usb 7-1: new full-speed USB device number 14 using dummy_hcd
[   89.454365][   T53] usb 7-1: device descriptor read/64, error -71
[   89.537011][   T40] kauditd_printk_skb: 960 callbacks suppressed
[   89.537028][   T40] audit: type=1326 audit(1752825952.326:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.549795][   T40] audit: type=1326 audit(1752825952.326:1395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.559989][   T40] audit: type=1326 audit(1752825952.326:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.568483][   T40] audit: type=1326 audit(1752825952.326:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.575556][   T40] audit: type=1326 audit(1752825952.326:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.582471][   T40] audit: type=1326 audit(1752825952.326:1399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.590036][   T40] audit: type=1326 audit(1752825952.326:1400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.597589][   T40] audit: type=1326 audit(1752825952.326:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.604993][   T40] audit: type=1326 audit(1752825952.326:1402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.612030][   T40] audit: type=1326 audit(1752825952.326:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7832 comm="syz.0.528" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbda058e9a9 code=0x7ff00000
[   89.696690][   T53] usb 7-1: new full-speed USB device number 15 using dummy_hcd
[   89.834307][   T53] usb 7-1: device descriptor read/64, error -71
[   89.954807][   T53] usb usb7-port1: attempt power cycle
[   90.274360][ T5314] Bluetooth: hci0: command 0x041b tx timeout
[   90.334315][   T53] usb 7-1: new full-speed USB device number 16 using dummy_hcd
[   90.354858][   T53] usb 7-1: device descriptor read/8, error -71
[   90.634350][   T53] usb 7-1: new full-speed USB device number 17 using dummy_hcd
[   90.664714][   T53] usb 7-1: device descriptor read/8, error -71
[   90.721879][ T7842] kAFS: unparsable volume name
[   90.774460][   T53] usb usb7-port1: unable to enumerate USB device
[   90.990446][ T7850] openvswitch: netlink: EtherType 0 is less than min 600
[   91.065881][ T7855] netlink: 4 bytes leftover after parsing attributes in process `syz.4.532'.
[   91.641954][ T7866] netlink: 'syz.3.535': attribute type 9 has an invalid length.
[   92.059103][ T5314] Bluetooth: hci3: unexpected event for opcode 0x1001
[   92.137500][ T7877] netlink: 'syz.2.539': attribute type 10 has an invalid length.
[   92.139881][ T7877] netlink: 40 bytes leftover after parsing attributes in process `syz.2.539'.
[   92.143074][ T7877] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[   92.150677][ T7877] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[   92.156017][ T7877] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check.
[   92.213861][ T7882] netlink: 'syz.2.540': attribute type 10 has an invalid length.
[   92.222327][ T7882] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[   92.233103][ T7882] loop2: detected capacity change from 0 to 7
[   92.243345][ T7882] Dev loop2: unable to read RDB block 7
[   92.247611][ T7882]  loop2: AHDI p1 p2 p3
[   92.249075][ T7882] loop2: partition table partially beyond EOD, truncated
[   92.251486][ T7882] loop2: p1 start 1601398130 is beyond EOD, truncated
[   92.254331][ T7882] loop2: p2 start 1702059890 is beyond EOD, truncated
[   92.259505][ T7885] netlink: 'syz.4.541': attribute type 9 has an invalid length.
[   92.471600][ T7892] overlayfs: maximum fs stacking depth exceeded
[   92.552861][ T7898] netlink: 8 bytes leftover after parsing attributes in process `syz.2.546'.
[   92.592806][ T7903] SELinux:  Context Ü is not valid (left unmapped).
[   92.592975][ T7894] binder: 7887:7894 ioctl c0306201 200000000480 returned -14
[   92.790609][ T7918] netlink: 'syz.3.554': attribute type 4 has an invalid length.
[   92.793812][ T7918] netlink: 12 bytes leftover after parsing attributes in process `syz.3.554'.
[   92.797220][ T7918] netlink: 'syz.3.554': attribute type 2 has an invalid length.
[   92.799769][ T7918] netlink: 'syz.3.554': attribute type 1 has an invalid length.
[   92.877790][ T7920] syzkaller0: entered promiscuous mode
[   92.880171][ T7920] syzkaller0: entered allmulticast mode
[   93.251080][ T7888] binder: 7887:7888 ioctl c0306201 200000000280 returned -14
[   93.383429][ T7942] random: crng reseeded on system resumption
[   93.969764][ T7963] xt_l2tp: unknown flags: f1
[   94.016047][ T7968] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=23 sclass=netlink_route_socket pid=7968 comm=syz.4.567
[   94.020346][ T7968] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=55 sclass=netlink_route_socket pid=7968 comm=syz.4.567
[   94.024861][ T7968] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=54 sclass=netlink_route_socket pid=7968 comm=syz.4.567
[   94.103895][ T7973] kvm: MWAIT instruction emulated as NOP!
[   94.203592][ T7616] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[   94.463009][ T7984] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   94.846105][   T40] kauditd_printk_skb: 25455 callbacks suppressed
[   94.846117][   T40] audit: type=1400 audit(1752825957.636:26859): avc:  denied  { bind } for  pid=7987 comm="syz.3.572" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   94.944935][   T40] audit: type=1400 audit(1752825957.736:26860): avc:  denied  { listen } for  pid=7998 comm="syz.0.575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   94.998358][   T40] audit: type=1400 audit(1752825957.786:26861): avc:  denied  { accept } for  pid=7998 comm="syz.0.575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   95.006208][   T40] audit: type=1400 audit(1752825957.786:26862): avc:  denied  { read } for  pid=7998 comm="syz.0.575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   95.032116][   T40] audit: type=1400 audit(1752825957.816:26863): avc:  denied  { setattr } for  pid=8005 comm="syz.3.577" name="vcs" dev="devtmpfs" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[   95.099076][   T40] audit: type=1400 audit(1752825957.886:26864): avc:  denied  { read } for  pid=8007 comm="syz.0.578" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   95.187320][   T40] audit: type=1400 audit(1752825957.966:26865): avc:  denied  { ioctl } for  pid=8012 comm="syz.2.580" path="socket:[20046]" dev="sockfs" ino=20046 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   95.197350][   T40] audit: type=1400 audit(1752825957.966:26866): avc:  denied  { write } for  pid=8012 comm="syz.2.580" path="socket:[20046]" dev="sockfs" ino=20046 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   95.201606][ T8017] futex_wake_op: syz.0.581 tries to shift op by -1; fix this program
[   95.216732][ T8017] netlink: 8 bytes leftover after parsing attributes in process `syz.0.581'.
[   95.223312][ T8017] macsec0: entered promiscuous mode
[   95.322757][   T40] audit: type=1800 audit(1752825958.106:26867): pid=8027 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.584" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[   95.332325][ T8027] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   95.337170][ T8027] ucma_write: process 459 (syz.0.584) changed security contexts after opening file descriptor, this is not allowed.
[   95.439577][   T40] audit: type=1400 audit(1752825958.226:26868): avc:  denied  { bind } for  pid=8037 comm="syz.0.587" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   95.652624][ T8054] netlink: 28 bytes leftover after parsing attributes in process `syz.0.592'.
[   95.657749][ T8054] openvswitch: netlink: Flow key attr not present in new flow.
[   95.743438][ T8065] netlink: 'syz.0.595': attribute type 10 has an invalid length.
[   95.746875][ T8065] team0: Failed to send port change of device bond0 via netlink (err -105)
[   95.834481][ T8076] usb usb1: check_ctrlrecip: process 8076 (syz.0.597) requesting ep 01 but needs 81
[   95.837480][ T8076] usb usb1: usbfs: process 8076 (syz.0.597) did not claim interface 0 before use
[   95.924845][ T8082] syz.0.599 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   95.963518][ T5314] Bluetooth: hci0: unexpected event for opcode 0x2062
[   95.983976][ T8091] netlink: 12 bytes leftover after parsing attributes in process `syz.4.603'.
[   95.987208][ T8091] netlink: 12 bytes leftover after parsing attributes in process `syz.4.603'.
[   95.999450][ T8097] netlink: 8 bytes leftover after parsing attributes in process `syz.3.604'.
[   96.007095][ T8097] netlink: 12 bytes leftover after parsing attributes in process `syz.3.604'.
[   96.037983][ T8101] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   96.146511][ T8113] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[   96.150943][ T8113] overlayfs: overlapping lowerdir path
[   96.195436][ T6131] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   96.271676][ T8126] cgroup: release_agent respecified
[   96.305482][ T8126] gfs2: not a GFS2 filesystem
[   96.363395][ T8132] 9pnet_virtio: no channels available for device syz
[   97.233454][ T8150] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge0, syncid = 1, id = 0
[   97.333786][ T8162] team_slave_0: entered promiscuous mode
[   97.336621][ T8162] team_slave_1: entered promiscuous mode
[   97.340780][ T8162] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   97.525880][ T8173] netlink: 24 bytes leftover after parsing attributes in process `syz.4.628'.
[   97.625122][ T8179] netlink: 4 bytes leftover after parsing attributes in process `syz.4.628'.
[   97.793519][ T8188] netlink: 4 bytes leftover after parsing attributes in process `syz.4.631'.
[   97.943324][ T8195] netlink: 8 bytes leftover after parsing attributes in process `syz.0.633'.
[   98.105837][ T8200] netlink: 4 bytes leftover after parsing attributes in process `syz.0.635'.
[   98.156767][ T8180] syz.3.624 (8180) used greatest stack depth: 19624 bytes left
[   98.444329][    C3] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[   98.465557][   T10] usb 8-1: new low-speed USB device number 5 using dummy_hcd
[   98.491141][ T8227] netlink: 20 bytes leftover after parsing attributes in process `syz.0.640'.
[   98.520016][ T8223] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2578 sclass=netlink_route_socket pid=8223 comm=syz.0.640
[   98.628635][   T10] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   98.632042][   T10] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[   98.637648][   T10] usb 8-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   98.641295][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   98.646784][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   98.650617][   T10] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   98.653219][ T8234] can0: slcan on ttyS3.
[   98.653792][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.666583][ T8214] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   98.672169][   T10] hub 8-1:1.0: bad descriptor, ignoring hub
[   98.674082][   T10] hub 8-1:1.0: probe with driver hub failed with error -5
[   98.676759][   T10] cdc_wdm 8-1:1.0: skipping garbage
[   98.678402][   T10] cdc_wdm 8-1:1.0: skipping garbage
[   98.681322][   T10] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[   98.683232][   T10] cdc_wdm 8-1:1.0: Unknown control protocol
[   98.725084][ T8235] can0 (unregistered): slcan off ttyS3.
[   98.985790][ T8250] netlink: 52 bytes leftover after parsing attributes in process `syz.2.647'.
[   98.990092][ T8250] netlink: 8 bytes leftover after parsing attributes in process `syz.2.647'.
[   98.993723][ T8250] tipc: MTU too low for tipc bearer
[   99.175176][ T8253] netlink: 4388 bytes leftover after parsing attributes in process `syz.2.648'.
[   99.179470][ T8253] netlink: 'syz.2.648': attribute type 7 has an invalid length.
[   99.182736][ T8253] netlink: 'syz.2.648': attribute type 8 has an invalid length.
[   99.242806][ T8259] netlink: 12 bytes leftover after parsing attributes in process `syz.0.651'.
[   99.430179][ T8214] usb 8-1: reset low-speed USB device number 5 using dummy_hcd
[   99.649027][ T8285] netlink: 8 bytes leftover after parsing attributes in process `syz.2.656'.
[   99.667201][ T8285] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8285 comm=syz.2.656
[   99.725327][ T8214] usb 8-1: device descriptor read/64, error -71
[   99.864506][   T73] batadv0: left promiscuous mode
[   99.936456][ T8294] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.114826][ T8214] usb 8-1: reset low-speed USB device number 5 using dummy_hcd
[  100.249580][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  100.249591][   T40] audit: type=1400 audit(1752825963.036:26884): avc:  denied  { mount } for  pid=8304 comm="syz.0.664" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  100.261722][   T40] audit: type=1400 audit(1752825963.046:26885): avc:  denied  { mounton } for  pid=8304 comm="syz.0.664" path="/181/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[  100.269368][   T40] audit: type=1400 audit(1752825963.056:26886): avc:  denied  { remount } for  pid=8304 comm="syz.0.664" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  100.298642][   T40] audit: type=1400 audit(1752825963.086:26887): avc:  denied  { unmount } for  pid=5955 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  100.384296][ T8214] usb 8-1: device descriptor read/64, error -71
[  100.429606][   T40] audit: type=1400 audit(1752825963.216:26888): avc:  denied  { load_policy } for  pid=8315 comm="syz.4.669" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  100.429831][ T8316] SELinux:  policydb version 0 does not match my version range 15-34
[  100.439669][ T8316] SELinux: failed to load policy
[  100.443459][   T40] audit: type=1400 audit(1752825963.226:26889): avc:  denied  { write } for  pid=8315 comm="syz.4.669" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  100.487478][   T40] audit: type=1400 audit(1752825963.276:26890): avc:  denied  { bind } for  pid=8319 comm="syz.4.670" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  100.491697][ T8320] binder: 8319:8320 ioctl 401070ca 200000000040 returned -22
[  100.543533][   T40] audit: type=1400 audit(1752825963.326:26891): avc:  denied  { mount } for  pid=8323 comm="syz.4.671" name="/" dev="selinuxfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[  100.690252][ T8340] tipc: Started in network mode
[  100.691830][ T8340] tipc: Node identity beeb42063b77, cluster identity 4711
[  100.694091][ T8340] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  100.711326][ T8340] syzkaller0: entered promiscuous mode
[  100.713686][ T8340] syzkaller0: entered allmulticast mode
[  100.730312][ T8340] tipc: Resetting bearer <eth:syzkaller0>
[  100.735869][ T8337] tipc: Resetting bearer <eth:syzkaller0>
[  100.759372][ T8337] tipc: Disabling bearer <eth:syzkaller0>
[  100.764318][ T8214] usb 8-1: reset low-speed USB device number 5 using dummy_hcd
[  100.795363][ T8214] usb 8-1: device descriptor read/8, error -71
[  100.845167][ T8357] kAFS: unparsable volume name
[  100.895618][   T40] audit: type=1400 audit(1752825963.686:26892): avc:  denied  { ioctl } for  pid=8355 comm="syz.0.681" path="socket:[22265]" dev="sockfs" ino=22265 ioctlcmd=0x89e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  100.903025][ T8367] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  100.917696][ T8365] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1538 sclass=netlink_route_socket pid=8365 comm=syz.4.685
[  100.924941][ T8365] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  101.030304][ T8378] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  101.121875][   T40] audit: type=1400 audit(1752825963.896:26893): avc:  denied  { shutdown } for  pid=8390 comm="syz.4.692" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  101.124150][ T8392] fuse: Unknown parameter 'fY'
[  101.179663][ T8396] xt_CT: You must specify a L4 protocol and not use inversions on it
[  101.194536][ T8214] usb 8-1: reset low-speed USB device number 5 using dummy_hcd
[  101.216202][ T8214] usb 8-1: device descriptor read/8, error -71
[  101.325523][ T8214] cdc_wdm 8-1:1.0: Error autopm - -16
[  101.325582][ T8405] netfs: Couldn't get user pages (rc=-14)
[  101.327384][   T60] usb 8-1: USB disconnect, device number 5
[  101.367665][ T8408] netlink: 'syz.3.700': attribute type 1 has an invalid length.
[  101.405897][ T8410] tmpfs: Unknown parameter 'si“e %ÿß'
[  101.682294][ T7617] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  101.711618][ T8447] netfs: Couldn't get user pages (rc=-14)
[  101.713608][ T8447] netfs: Zero-sized read [R=3]
[  101.754051][ T8450] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  101.758634][ T8450] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  102.623133][ T8454] netfs: Couldn't get user pages (rc=-14)
[  102.628688][ T8454] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=8454 comm=syz.3.713
[  102.654512][ T8465] openvswitch: netlink: EtherType 0 is less than min 600
[  103.044546][ T8484] overlayfs: missing 'lowerdir'
[  103.054382][   T10] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  103.131462][ T8486] SELinux:  policydb version -48911737 does not match my version range 15-34
[  103.134300][ T8486] SELinux: failed to load policy
[  103.211243][ T8490] "syz.3.724" (8490) uses obsolete ecb(arc4) skcipher
[  103.217370][   T10] usb 7-1: config 1 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 82, changing to 10
[  103.220841][   T10] usb 7-1: config 1 interface 0 altsetting 252 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  103.225465][   T10] usb 7-1: config 1 interface 0 has no altsetting 0
[  103.229063][   T10] usb 7-1: New USB device found, idVendor=0766, idProduct=0204, bcdDevice= 0.40
[  103.232008][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.235310][   T10] usb 7-1: Product: syz
[  103.236821][   T10] usb 7-1: Manufacturer: syz
[  103.238278][   T10] usb 7-1: SerialNumber: syz
[  103.467025][   T10] usbhid 7-1:1.0: can't add hid device: -71
[  103.469340][   T10] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[  103.474653][   T10] usb 7-1: USB disconnect, device number 18
[  103.801696][ T8523] __nla_validate_parse: 10 callbacks suppressed
[  103.801711][ T8523] netlink: 20 bytes leftover after parsing attributes in process `syz.3.734'.
[  103.802130][ T8522] netlink: 20 bytes leftover after parsing attributes in process `syz.3.734'.
[  104.040755][ T8541] tipc: Started in network mode
[  104.042693][ T8541] tipc: Node identity 32ef037cc17b, cluster identity 4711
[  104.046109][ T8541] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  104.048756][ T8541] syzkaller0: entered promiscuous mode
[  104.050495][ T8541] syzkaller0: entered allmulticast mode
[  104.057878][ T8541] tipc: Resetting bearer <eth:syzkaller0>
[  104.060471][ T8539] tipc: Resetting bearer <eth:syzkaller0>
[  104.070194][ T8539] tipc: Disabling bearer <eth:syzkaller0>
[  104.163471][ T8546] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  104.166373][ T8546] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  104.181632][ T8548] netlink: 100 bytes leftover after parsing attributes in process `syz.3.741'.
[  104.227061][ T8551] dummy0: entered promiscuous mode
[  104.371586][ T5364]  pmem0: [POWERTEC]
[  104.462243][ T8560] tls_set_device_offload_rx: netdev not found
[  105.060022][ T8583] netlink: 'syz.3.753': attribute type 6 has an invalid length.
[  105.063129][ T8583] overlay: filesystem on ./file0 not supported
[  105.164304][   T60] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  105.316284][   T60] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  105.322255][   T60] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  105.325816][   T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  105.328907][   T60] usb 7-1: SerialNumber: syz
[  105.945370][   T60] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -71
[  105.952002][   T60] usb 7-1: USB disconnect, device number 19
[  106.099415][ T8601] bond0: Error: Cannot enslave bond to itself.
[  106.209443][ T8616] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=58 sclass=netlink_audit_socket pid=8616 comm=syz.3.765
[  106.622967][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.715225][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.733794][   T40] kauditd_printk_skb: 66 callbacks suppressed
[  106.733808][   T40] audit: type=1400 audit(1752825969.516:26960): avc:  denied  { read } for  pid=8642 comm="syz.2.774" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  106.749736][   T40] audit: type=1400 audit(1752825969.536:26961): avc:  denied  { open } for  pid=8642 comm="syz.2.774" path="/170/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  106.765251][ T8646] block device autoloading is deprecated and will be removed.
[  106.767913][ T5965] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  106.770388][   T40] audit: type=1400 audit(1752825969.556:26962): avc:  denied  { ioctl } for  pid=8642 comm="syz.2.774" path="/170/file0/file0" dev="fuse" ino=64 ioctlcmd=0x923 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  106.772218][ T5965] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  106.782873][ T5965] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  106.786106][ T5965] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  106.789031][ T5965] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  106.805846][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.879614][   T40] audit: type=1400 audit(1752825969.666:26963): avc:  denied  { name_bind 0x1000000 } for  pid=8653 comm="syz.3.776" path="socket:[23963]" dev="sockfs" ino=23963 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  106.908941][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.914427][    C3] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  106.922897][ T8649] chnl_net:caif_netlink_parms(): no params data found
[  106.953460][ T8657] pim6reg1: entered promiscuous mode
[  106.956068][ T8657] pim6reg1: entered allmulticast mode
[  106.995780][ T8653] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  107.015115][ T8649] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.018158][ T8649] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.020410][ T8649] bridge_slave_0: entered allmulticast mode
[  107.023008][ T8649] bridge_slave_0: entered promiscuous mode
[  107.036009][ T8662] fuse: Unknown parameter '5'
[  107.037520][ T8649] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.040176][ T8649] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.042860][ T8649] bridge_slave_1: entered allmulticast mode
[  107.046450][ T8649] bridge_slave_1: entered promiscuous mode
[  107.098468][ T8649] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.103462][ T8649] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.167411][ T8649] team0: Port device team_slave_0 added
[  107.170596][   T13] bridge_slave_1: left allmulticast mode
[  107.172450][   T13] bridge_slave_1: left promiscuous mode
[  107.174336][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.178338][   T13] bridge_slave_0: left allmulticast mode
[  107.180159][   T13] bridge_slave_0: left promiscuous mode
[  107.181981][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.265769][ T8674] netlink: 8 bytes leftover after parsing attributes in process `syz.3.781'.
[  107.375819][   T40] audit: type=1400 audit(1752825970.166:26964): avc:  denied  { create } for  pid=8671 comm="syz.3.781" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  107.377766][ T8678] binder: BINDER_SET_CONTEXT_MGR already set
[  107.381860][   T40] audit: type=1400 audit(1752825970.166:26965): avc:  denied  { ioctl } for  pid=8671 comm="syz.3.781" path="socket:[24798]" dev="sockfs" ino=24798 ioctlcmd=0x890c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  107.384593][ T8678] binder: 8671:8678 ioctl 4018620d 2000000000c0 returned -16
[  107.402121][ T8678] binder: BINDER_SET_CONTEXT_MGR already set
[  107.404933][ T8678] binder: 8671:8678 ioctl 4018620d 200000000040 returned -16
[  107.438619][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  107.443107][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.447068][   T13] bond0 (unregistering): Released all slaves
[  107.509271][   T13] bond1 (unregistering): Released all slaves
[  107.571757][   T13] bond2 (unregistering): (slave veth3): Releasing active interface
[  107.574354][   T13] batadv0: entered promiscuous mode
[  107.577530][   T13] bond2 (unregistering): (slave batadv0): Releasing active interface
[  107.581227][   T13] bond2 (unregistering): Released all slaves
[  107.587378][   T13] bond3 (unregistering): Released all slaves
[  107.594925][ T8649] team0: Port device team_slave_1 added
[  107.631775][ T8649] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.634011][ T8649] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.639084][ T8680] netlink: 40 bytes leftover after parsing attributes in process `syz.3.783'.
[  107.643909][ T8649] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.649624][ T8649] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.651802][ T8649] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.661018][ T8649] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.671387][   T13] tipc: Left network mode
[  107.742181][ T8649] hsr_slave_0: entered promiscuous mode
[  107.746864][ T8649] hsr_slave_1: entered promiscuous mode
[  107.921973][   T13] hsr_slave_0: left promiscuous mode
[  107.925150][   T13] hsr_slave_1: left promiscuous mode
[  107.970449][   T13] veth1_macvtap: left promiscuous mode
[  107.972735][   T13] veth0_macvtap: left promiscuous mode
[  107.976289][   T13] veth1_vlan: left promiscuous mode
[  107.978525][   T13] veth0_vlan: left promiscuous mode
[  107.985207][ T8712] netlink: 8 bytes leftover after parsing attributes in process `syz.3.790'.
[  107.994845][ T8713] netfs: Couldn't get user pages (rc=-14)
[  108.210350][ T8719] netlink: 4 bytes leftover after parsing attributes in process `syz.2.791'.
[  108.610497][   T13] team0 (unregistering): Port device team_slave_1 removed
[  108.670114][   T13] team0 (unregistering): Port device team_slave_0 removed
[  108.845180][ T5965] Bluetooth: hci0: command tx timeout
[  109.111980][ T8712] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[  109.188574][ T8719] hsr_slave_0 (unregistering): left promiscuous mode
[  109.553773][ T8649] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  109.560436][ T8649] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  109.564231][ T8649] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  109.570544][ T8649] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  109.617133][   T53] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  109.633149][ T8649] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.649554][ T8649] 8021q: adding VLAN 0 to HW filter on device team0
[  109.660199][ T7596] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.663236][ T7596] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.672117][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.674364][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.770878][ T8649] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.788909][   T53] usb 8-1: Using ep0 maxpacket: 8
[  109.792583][   T53] usb 8-1: config index 0 descriptor too short (expected 28277, got 36)
[  109.796478][   T53] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  109.800347][   T53] usb 8-1: config 0 has no interfaces?
[  109.802460][   T53] usb 8-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  109.806553][   T53] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.811519][   T53] usb 8-1: config 0 descriptor??
[  109.937795][ T8649] veth0_vlan: entered promiscuous mode
[  109.942613][ T8649] veth1_vlan: entered promiscuous mode
[  109.963635][ T8649] veth0_macvtap: entered promiscuous mode
[  109.968217][ T8649] veth1_macvtap: entered promiscuous mode
[  109.977674][ T8649] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.983538][ T8649] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.989163][ T8649] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.991819][ T8649] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.994445][ T8649] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.997054][ T8649] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.035546][   T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.038246][   T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.053268][   T73] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.056898][   T73] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.067884][   T40] audit: type=1400 audit(1752825972.856:26966): avc:  denied  { mounton } for  pid=8649 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  110.341973][ T5965] Bluetooth: hci3: unexpected event for opcode 0x080f
[  110.387511][ T8784] input: syz0 as /devices/virtual/input/input11
[  110.391718][   T40] audit: type=1400 audit(1752825973.176:26967): avc:  denied  { ioctl } for  pid=5349 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2954 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  110.443323][ T8786] netlink: 20 bytes leftover after parsing attributes in process `syz.2.800'.
[  110.462784][ T8786] netlink: 20 bytes leftover after parsing attributes in process `syz.2.800'.
[  110.824121][   T40] audit: type=1400 audit(1752825973.606:26968): avc:  denied  { read } for  pid=8800 comm="syz.2.804" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  110.831824][   T40] audit: type=1400 audit(1752825973.616:26969): avc:  denied  { open } for  pid=8800 comm="syz.2.804" path="/187/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  111.593294][ T8801] orangefs_mount: mount request failed with -4
[  112.021596][ T7596] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.201463][ T5314] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  112.205925][ T5314] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  112.209578][ T5314] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  112.213623][ T5314] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  112.217224][ T5314] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  112.306206][ T8810] chnl_net:caif_netlink_parms(): no params data found
[  112.319582][  T839] usb 8-1: USB disconnect, device number 7
[  112.390589][ T8810] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.393370][ T8810] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.396320][ T8810] bridge_slave_0: entered allmulticast mode
[  112.400054][ T8810] bridge_slave_0: entered promiscuous mode
[  112.404580][ T8810] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.406705][ T8810] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.408738][ T8810] bridge_slave_1: entered allmulticast mode
[  112.411166][ T8810] bridge_slave_1: entered promiscuous mode
[  112.444977][ T8810] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  112.449553][ T8810] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  112.492663][ T8810] team0: Port device team_slave_0 added
[  112.497308][ T8810] team0: Port device team_slave_1 added
[  112.527799][ T8810] batman_adv: batadv0: Adding interface: batadv_slave_0
[  112.529974][ T8810] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.538114][ T8810] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  112.542356][ T8810] batman_adv: batadv0: Adding interface: batadv_slave_1
[  112.544663][ T8810] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.552744][ T8810] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  112.591178][ T8810] hsr_slave_0: entered promiscuous mode
[  112.593366][ T8810] hsr_slave_1: entered promiscuous mode
[  112.595477][ T8810] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  112.597842][ T8810] Cannot create hsr debugfs directory
[  113.490600][ T7596] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.580846][ T7596] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.637340][ T7596] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.762258][ T7596] bridge_slave_1: left allmulticast mode
[  113.764049][ T7596] bridge_slave_1: left promiscuous mode
[  113.765911][ T7596] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.771285][ T7596] bridge_slave_0: left allmulticast mode
[  113.773052][ T7596] bridge_slave_0: left promiscuous mode
[  113.775169][ T7596] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.968420][ T7596] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  113.972853][ T7596] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  113.976618][ T7596] bond0 (unregistering): Released all slaves
[  114.285277][ T5965] Bluetooth: hci0: command tx timeout
[  114.357238][ T7596] hsr_slave_0: left promiscuous mode
[  114.360024][ T7596] hsr_slave_1: left promiscuous mode
[  114.362734][ T7596] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  114.364326][ T5965] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  114.366169][ T7596] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.369048][ T5965] Bluetooth: hci3: Injecting HCI hardware error event
[  114.375823][ T7596] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.375896][ T5965] Bluetooth: hci3: hardware error 0x00
[  114.378779][ T7596] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.411976][ T7596] veth1_macvtap: left promiscuous mode
[  114.414549][ T7596] veth0_macvtap: left promiscuous mode
[  114.416981][ T7596] veth1_vlan: left promiscuous mode
[  114.419157][ T7596] veth0_vlan: left promiscuous mode
[  114.901041][ T7596] team0 (unregistering): Port device team_slave_1 removed
[  114.958497][ T7596] team0 (unregistering): Port device team_slave_0 removed
[  115.403864][ T8810] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  115.415427][ T8810] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  115.421523][ T8810] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  115.427322][ T8810] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  115.474520][ T8810] 8021q: adding VLAN 0 to HW filter on device bond0
[  115.483527][ T8810] 8021q: adding VLAN 0 to HW filter on device team0
[  115.490521][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.492791][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.508431][ T7615] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.510737][ T7615] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.617860][ T8810] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.732873][ T8810] veth0_vlan: entered promiscuous mode
[  115.738110][ T8810] veth1_vlan: entered promiscuous mode
[  115.750762][ T8810] veth0_macvtap: entered promiscuous mode
[  115.754779][ T8810] veth1_macvtap: entered promiscuous mode
[  115.762547][ T8810] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.768314][ T8810] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.772591][ T8810] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.775653][ T8810] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.778555][ T8810] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.781660][ T8810] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.833887][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.837060][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.863089][ T7614] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.867007][ T7614] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.434366][ T5965] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  117.024086][ T5314] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  117.028620][ T5314] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  117.030148][ T8866] netlink: 8 bytes leftover after parsing attributes in process `syz.2.809'.
[  117.031803][ T5314] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  117.033488][ T8866] netlink: 12 bytes leftover after parsing attributes in process `syz.2.809'.
[  117.039341][ T5314] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  117.043916][ T5314] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  117.125371][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  117.125380][   T40] audit: type=1400 audit(1752825979.916:26972): avc:  denied  { append } for  pid=8867 comm="syz.2.810" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  117.141877][   T40] audit: type=1400 audit(1752825979.926:26973): avc:  denied  { ioctl } for  pid=8867 comm="syz.2.810" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x1272 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  117.182144][ T8863] chnl_net:caif_netlink_parms(): no params data found
[  117.298208][ T8863] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.301204][ T8863] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.301739][   T40] audit: type=1400 audit(1752825980.086:26974): avc:  denied  { bind } for  pid=8886 comm="syz.2.813" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  117.303905][ T8863] bridge_slave_0: entered allmulticast mode
[  117.314547][ T8863] bridge_slave_0: entered promiscuous mode
[  117.321274][ T8887] netlink: 'syz.2.813': attribute type 27 has an invalid length.
[  117.384157][ T8887] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.387931][ T8887] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.481436][ T8887] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  117.494327][ T8887] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  117.525560][ T8887] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[  117.527972][ T8887] net veth1_virt_wifi virt_wifi0: left allmulticast mode
[  117.582713][ T8887] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.586540][ T8887] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.589354][ T8887] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.592287][ T8887] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.600391][ T8887] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  117.632297][ T8863] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.634912][ T8863] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.637323][ T8863] bridge_slave_1: entered allmulticast mode
[  117.640053][ T8863] bridge_slave_1: entered promiscuous mode
[  117.660111][ T8888] 8021q: adding VLAN 0 to HW filter on device team0
[  117.664683][ T8888] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  117.704399][ T8863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  117.709900][ T8863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  117.787319][ T8863] team0: Port device team_slave_0 added
[  117.792364][ T8863] team0: Port device team_slave_1 added
[  117.825112][   T40] audit: type=1400 audit(1752825980.616:26975): avc:  denied  { map } for  pid=8892 comm="syz.3.817" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  117.861601][ T8863] batman_adv: batadv0: Adding interface: batadv_slave_0
[  117.863793][ T8863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  117.872910][ T8863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  117.878722][ T8863] batman_adv: batadv0: Adding interface: batadv_slave_1
[  117.881603][ T8863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  117.884267][   T40] audit: type=1326 audit(1752825980.666:26976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8897 comm="syz.3.819" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8ee858e9a9 code=0x0
[  117.891634][ T8863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  117.994734][ T8863] hsr_slave_0: entered promiscuous mode
[  117.996910][ T8863] hsr_slave_1: entered promiscuous mode
[  118.120802][ T8913] tipc: Cannot configure node identity twice
[  118.140803][   T73] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.206133][ T8863] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  118.209933][ T8863] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  118.214240][ T8863] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  118.218604][ T8863] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  118.284913][ T8863] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.307406][ T8863] 8021q: adding VLAN 0 to HW filter on device team0
[  118.308975][ T5314] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  118.316919][ T5314] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  118.320851][ T7596] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.323228][ T7596] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.324667][ T5314] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  118.329207][ T5314] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  118.329655][ T7596] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.332577][ T5314] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  118.334294][ T7596] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.446714][ T8936] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  118.450100][   T40] audit: type=1400 audit(1752825981.236:26977): avc:  denied  { create } for  pid=8931 comm="syz.2.825" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  118.478083][ T8924] chnl_net:caif_netlink_parms(): no params data found
[  118.483975][   T40] audit: type=1400 audit(1752825981.236:26978): avc:  denied  { associate } for  pid=8931 comm="syz.2.825" name="file1" scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  118.519047][   T40] audit: type=1400 audit(1752825981.256:26979): avc:  denied  { map } for  pid=8931 comm="syz.2.825" path="/proc/586/task/588/attr/fscreate" dev="proc" ino=27287 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  118.556039][   T40] audit: type=1400 audit(1752825981.256:26980): avc:  denied  { execute } for  pid=8931 comm="syz.2.825" path="/proc/586/task/588/attr/fscreate" dev="proc" ino=27287 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  118.564063][   T40] audit: type=1400 audit(1752825981.256:26981): avc:  denied  { mounton } for  pid=8931 comm="syz.2.825" path="/204/bus" dev="tmpfs" ino=1115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  118.613690][ T8924] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.643656][ T8924] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.646167][ T8924] bridge_slave_0: entered allmulticast mode
[  118.648949][ T8924] bridge_slave_0: entered promiscuous mode
[  118.652763][ T8924] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.655218][ T8924] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.657539][ T8924] bridge_slave_1: entered allmulticast mode
[  118.660191][ T8924] bridge_slave_1: entered promiscuous mode
[  118.696457][ T8924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.701228][ T8924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.745601][ T8924] team0: Port device team_slave_0 added
[  118.749231][ T8863] 8021q: adding VLAN 0 to HW filter on device batadv0
[  118.753405][ T8924] team0: Port device team_slave_1 added
[  118.787978][ T8924] batman_adv: batadv0: Adding interface: batadv_slave_0
[  118.790749][ T8924] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.801541][ T8924] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  118.807384][ T8924] batman_adv: batadv0: Adding interface: batadv_slave_1
[  118.809610][ T8924] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.818347][ T8924] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  118.866249][ T8924] hsr_slave_0: entered promiscuous mode
[  118.868496][ T8924] hsr_slave_1: entered promiscuous mode
[  118.870583][ T8924] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  118.872900][ T8924] Cannot create hsr debugfs directory
[  118.979877][ T8863] veth0_vlan: entered promiscuous mode
[  118.984778][ T8863] veth1_vlan: entered promiscuous mode
[  119.001007][ T8863] veth0_macvtap: entered promiscuous mode
[  119.005256][ T8863] veth1_macvtap: entered promiscuous mode
[  119.013564][ T8863] batman_adv: batadv0: Interface activated: batadv_slave_0
[  119.020367][ T8863] batman_adv: batadv0: Interface activated: batadv_slave_1
[  119.025464][ T8863] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.028424][ T8863] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.031119][ T8863] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.033842][ T8863] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.062618][ T7615] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.067786][ T7615] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.076109][ T5314] Bluetooth: hci0: command tx timeout
[  119.082044][ T7596] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.085103][ T7596] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.360662][ T8982] overlayfs: failed to resolve './file0': -2
[  119.429114][ T8987] netlink: 'syz.3.838': attribute type 1 has an invalid length.
[  119.446410][ T8987] 8021q: adding VLAN 0 to HW filter on device bond2
[  119.501526][ T8987] bond2: (slave veth3): Enslaving as an active interface with a down link
[  119.530226][ T8987] netlink: 12 bytes leftover after parsing attributes in process `syz.3.838'.
[  119.537292][ T8987] 8021q: adding VLAN 0 to HW filter on device batadv1
[  119.540875][ T8987] bond2: (slave batadv1): making interface the new active one
[  119.546594][ T8987] batadv1: entered promiscuous mode
[  119.549150][ T8987] bond2: (slave batadv1): Enslaving as an active interface with an up link
[  119.552874][ T8992] vlan0: entered promiscuous mode
[  119.561647][ T8992] netlink: 36 bytes leftover after parsing attributes in process `syz.2.840'.
[  119.930089][ T9024] netlink: 88 bytes leftover after parsing attributes in process `syz.3.853'.
[  119.937489][ T9024] netlink: 24 bytes leftover after parsing attributes in process `syz.3.853'.
[  119.993653][ T9024] netlink: 4 bytes leftover after parsing attributes in process `syz.3.853'.
[  120.178104][   T73] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.237401][   T73] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.326719][   T73] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.366352][ T5314] Bluetooth: hci4: command tx timeout
[  120.456773][ T9042] cgroup: subsys name conflicts with all
[  120.471743][   T73] bridge_slave_1: left allmulticast mode
[  120.473617][   T73] bridge_slave_1: left promiscuous mode
[  120.476401][   T73] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.481187][   T73] bridge_slave_0: left allmulticast mode
[  120.483027][   T73] bridge_slave_0: left promiscuous mode
[  120.487215][   T73] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.705926][   T73] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  120.710101][   T73] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  120.713812][   T73] bond0 (unregistering): Released all slaves
[  120.825544][ T9058] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[  120.896629][ T9065] netlink: 4 bytes leftover after parsing attributes in process `syz.5.864'.
[  120.900462][ T9065] netlink: 32 bytes leftover after parsing attributes in process `syz.5.864'.
[  120.961494][ T9074] netlink: 32 bytes leftover after parsing attributes in process `syz.5.867'.
[  121.177867][   T73] hsr_slave_0: left promiscuous mode
[  121.181308][   T73] hsr_slave_1: left promiscuous mode
[  121.185921][   T73] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  121.188116][   T73] batman_adv: batadv0: Removing interface: batadv_slave_0
[  121.205602][   T73] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  121.210118][   T73] batman_adv: batadv0: Removing interface: batadv_slave_1
[  121.246989][   T73] veth1_macvtap: left promiscuous mode
[  121.249210][   T73] veth0_macvtap: left promiscuous mode
[  121.251901][   T73] veth1_vlan: left promiscuous mode
[  121.253614][   T73] veth0_vlan: left promiscuous mode
[  121.398429][ T1732] libceph: connect (1)[c::]:6789 error -101
[  121.409593][ T1732] libceph: mon0 (1)[c::]:6789 connect error
[  121.415468][ T1732] libceph: connect (1)[c::]:6789 error -101
[  121.417435][ T1732] libceph: mon0 (1)[c::]:6789 connect error
[  121.419259][ T9117] ceph: No mds server is up or the cluster is laggy
[  121.870027][   T73] team0 (unregistering): Port device team_slave_1 removed
[  121.932007][   T73] team0 (unregistering): Port device team_slave_0 removed
[  122.434550][ T5314] Bluetooth: hci4: command tx timeout
[  122.470158][ T9127] kvm: pic: single mode not supported
[  122.470299][ T9127] kvm: pic: level sensitive irq not supported
[  122.502703][ T9127] kvm: pic: single mode not supported
[  122.586010][   T40] kauditd_printk_skb: 18 callbacks suppressed
[  122.586025][   T40] audit: type=1400 audit(1752825985.376:27000): avc:  denied  { map } for  pid=9129 comm="syz.2.880" path="socket:[29741]" dev="sockfs" ino=29741 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  122.590615][ T8924] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  122.605514][   T40] audit: type=1400 audit(1752825985.376:27001): avc:  denied  { read accept } for  pid=9129 comm="syz.2.880" path="socket:[29741]" dev="sockfs" ino=29741 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  122.644124][   T40] audit: type=1400 audit(1752825985.426:27002): avc:  denied  { remove_name } for  pid=9133 comm="syz.3.881" name="file0" dev="9p" ino=36047782 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  122.652807][ T8924] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  122.653058][   T40] audit: type=1400 audit(1752825985.426:27003): avc:  denied  { rename } for  pid=9133 comm="syz.3.881" name="file0" dev="9p" ino=36047782 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  122.666821][ T8924] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  122.671366][   T40] audit: type=1400 audit(1752825985.426:27004): avc:  denied  { unlink } for  pid=9133 comm="syz.3.881" name="file1" dev="9p" ino=36047815 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  122.694825][ T8924] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  122.787975][ T8924] 8021q: adding VLAN 0 to HW filter on device bond0
[  122.801789][ T8924] 8021q: adding VLAN 0 to HW filter on device team0
[  122.811769][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.814026][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  122.832322][ T7615] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.835409][ T7615] bridge0: port 2(bridge_slave_1) entered forwarding state
[  122.981835][ T8924] 8021q: adding VLAN 0 to HW filter on device batadv0
[  123.143031][ T8924] veth0_vlan: entered promiscuous mode
[  123.149658][ T8924] veth1_vlan: entered promiscuous mode
[  123.154540][ T5314] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  123.158242][ T5314] Bluetooth: hci0: Injecting HCI hardware error event
[  123.162908][ T5314] Bluetooth: hci0: hardware error 0x00
[  123.173999][ T9177] 8021q: adding VLAN 0 to HW filter on device bond0
[  123.182501][ T9177] bond0: (slave rose0): Enslaving as an active interface with an up link
[  123.199272][ T8924] veth0_macvtap: entered promiscuous mode
[  123.210087][ T8924] veth1_macvtap: entered promiscuous mode
[  123.219184][ T8924] batman_adv: batadv0: Interface activated: batadv_slave_0
[  123.225557][ T8924] batman_adv: batadv0: Interface activated: batadv_slave_1
[  123.232400][ T8924] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  123.236706][ T8924] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  123.237441][ T9186] netlink: 'syz.3.888': attribute type 1 has an invalid length.
[  123.239410][ T8924] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  123.244710][ T8924] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  123.264872][ T9186] 8021q: adding VLAN 0 to HW filter on device bond3
[  123.300179][ T9186] veth5: entered promiscuous mode
[  123.304114][ T9186] bond3: (slave veth5): Enslaving as an active interface with a down link
[  123.312520][ T9186] netlink: 16 bytes leftover after parsing attributes in process `syz.3.888'.
[  123.316768][ T9186] netlink: 12 bytes leftover after parsing attributes in process `syz.3.888'.
[  123.343544][ T7614] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  123.349143][ T7614] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  123.355818][ T9192] netlink: 'syz.3.889': attribute type 15 has an invalid length.
[  123.358587][ T9192] netlink: 4 bytes leftover after parsing attributes in process `syz.3.889'.
[  123.412305][ T7615] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  123.417583][ T7615] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  123.488000][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.2.894'.
[  123.491043][ T9213] netlink: 12 bytes leftover after parsing attributes in process `syz.2.894'.
[  123.494259][   T40] audit: type=1400 audit(1752825986.276:27005): avc:  denied  { connect } for  pid=9212 comm="syz.2.894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  123.500247][   T40] audit: type=1400 audit(1752825986.276:27006): avc:  denied  { listen } for  pid=9212 comm="syz.2.894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  123.510337][   T40] audit: type=1400 audit(1752825986.286:27007): avc:  denied  { create } for  pid=9212 comm="syz.2.894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  123.516825][   T40] audit: type=1400 audit(1752825986.286:27008): avc:  denied  { sys_admin } for  pid=9212 comm="syz.2.894" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  123.579655][ T9221] openvswitch: netlink: Flow actions attr not present in new flow.
[  123.588676][ T9221] netlink: 48 bytes leftover after parsing attributes in process `syz.2.895'.
[  123.805787][    C1] vkms_vblank_simulate: vblank timer overrun
[  124.082532][ T9244] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  124.437480][   T40] audit: type=1400 audit(1752825987.226:27009): avc:  denied  { write } for  pid=9264 comm="syz.3.910" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  124.505333][ T9269] netlink: 'syz.3.912': attribute type 10 has an invalid length.
[  124.507823][ T9269] netlink: 2 bytes leftover after parsing attributes in process `syz.3.912'.
[  124.510538][ T9269] team0: entered promiscuous mode
[  124.512359][ T9269] bridge0: port 3(team0) entered blocking state
[  124.515115][ T9269] bridge0: port 3(team0) entered disabled state
[  124.517755][ T9269] team0: entered allmulticast mode
[  124.519780][ T9269] team_slave_0: entered allmulticast mode
[  124.521621][ T9269] team_slave_1: entered allmulticast mode
[  124.525352][ T9269] team0: left allmulticast mode
[  124.527461][ T9269] team_slave_0: left allmulticast mode
[  124.529715][ T9269] team_slave_1: left allmulticast mode
[  124.774022][ T9283] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=10000 sclass=netlink_route_socket pid=9283 comm=syz.2.917
[  125.244438][ T5314] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  125.460226][ T7615] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.949189][ T9334] hpfs: hpfs_map_sector(): read error
[  125.953359][ T9334] Bluetooth: MGMT ver 1.23
[  126.049747][ T9341] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  126.055602][ T9341] syzkaller0: MTU too low for tipc bearer
[  126.057318][ T9341] tipc: Disabling bearer <eth:syzkaller0>
[  126.110105][ T5965] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  126.113489][ T5965] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  126.117856][ T5965] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  126.122066][ T5965] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  126.126089][ T5965] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  126.275770][ T9343] chnl_net:caif_netlink_parms(): no params data found
[  126.296435][ T9362] netlink: 16 bytes leftover after parsing attributes in process `syz.3.941'.
[  126.402766][ T9343] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.405789][ T9343] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.408665][ T9343] bridge_slave_0: entered allmulticast mode
[  126.412347][ T9343] bridge_slave_0: entered promiscuous mode
[  126.417690][ T9343] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.420574][ T9343] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.423279][ T9343] bridge_slave_1: entered allmulticast mode
[  126.427016][ T9343] bridge_slave_1: entered promiscuous mode
[  126.486201][ T9343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  126.491143][ T9343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  126.517840][ T9373] team0: Device gtp0 is of different type
[  126.544871][ T6035] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  126.570153][ T9343] team0: Port device team_slave_0 added
[  126.575594][ T9343] team0: Port device team_slave_1 added
[  126.626451][ T9375] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  126.630284][ T9375] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  126.633864][ T9375] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  126.637939][ T9375] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  126.643851][ T9343] batman_adv: batadv0: Adding interface: batadv_slave_0
[  126.646770][ T9343] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.657187][ T9343] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  126.663187][ T9343] batman_adv: batadv0: Adding interface: batadv_slave_1
[  126.666374][ T9343] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.677467][ T9343] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  126.714285][ T6035] usb 8-1: Using ep0 maxpacket: 8
[  126.717880][ T6035] usb 8-1: config 0 interface 0 has no altsetting 0
[  126.720537][ T6035] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  126.724124][ T6035] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.730141][ T6035] usb 8-1: config 0 descriptor??
[  126.753978][ T9343] hsr_slave_0: entered promiscuous mode
[  126.758971][ T9343] hsr_slave_1: entered promiscuous mode
[  126.762120][ T9343] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  126.765340][ T9343] Cannot create hsr debugfs directory
[  126.781539][ T9384] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  126.783869][ T9384] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  126.787804][ T9384] vhci_hcd vhci_hcd.0: Device attached
[  126.884261][   T53] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  127.024321][   T10] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  127.024359][ T6133] usb 47-1: new low-speed USB device number 2 using vhci_hcd
[  127.047387][   T53] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  127.052059][   T53] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  127.054853][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  127.057264][   T53] usb 7-1: SerialNumber: syz
[  127.074381][ T7615] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.147294][ T6035] mcp2221 0003:04D8:00DD.0004: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  127.170548][ T7615] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.188781][   T10] usb 10-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  127.192253][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.195368][   T10] usb 10-1: Product: syz
[  127.197002][   T10] usb 10-1: Manufacturer: syz
[  127.198860][   T10] usb 10-1: SerialNumber: syz
[  127.202523][   T10] usb 10-1: config 0 descriptor??
[  127.258941][ T7615] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.342463][ T1732] usb 8-1: USB disconnect, device number 8
[  127.406812][ T7615] bridge_slave_1: left allmulticast mode
[  127.409519][ T7615] bridge_slave_1: left promiscuous mode
[  127.410467][ T9384] openvswitch: netlink: Duplicate or invalid key (type 0).
[  127.412514][ T7615] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.415914][ T9384] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  127.425124][ T7615] bridge_slave_0: left allmulticast mode
[  127.427419][ T7615] bridge_slave_0: left promiscuous mode
[  127.430230][ T7615] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.475902][   T53] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -71
[  127.483501][   T53] usb 7-1: USB disconnect, device number 20
[  127.769112][ T7615] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  127.775863][ T7615] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  127.780375][ T7615] bond0 (unregistering): Released all slaves
[  128.118023][ T9402] could not allocate digest TFM handle sha224-neon
[  128.204622][ T5314] Bluetooth: hci4: command tx timeout
[  128.270402][ T7615] hsr_slave_0: left promiscuous mode
[  128.273506][ T7615] hsr_slave_1: left promiscuous mode
[  128.276166][ T7615] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  128.278423][ T7615] batman_adv: batadv0: Removing interface: batadv_slave_0
[  128.280017][   T10] usb 10-1: Firmware version (0.0) predates our first public release.
[  128.284153][   T10] usb 10-1: Please update to version 0.2 or newer
[  128.289098][ T7615] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  128.292121][ T7615] batman_adv: batadv0: Removing interface: batadv_slave_1
[  128.331984][ T7615] veth1_macvtap: left promiscuous mode
[  128.333907][ T7615] veth0_macvtap: left promiscuous mode
[  128.336089][ T7615] veth1_vlan: left promiscuous mode
[  128.337954][ T7615] veth0_vlan: left promiscuous mode
[  128.995661][ T7615] team0 (unregistering): Port device team_slave_1 removed
[  129.062601][ T7615] team0 (unregistering): Port device team_slave_0 removed
[  129.229805][ T9389] overlay: Bad value for 'uuid'
[  129.381338][ T9385] usb 47-1: recv xbuf, 0
[  129.383456][ T7617] vhci_hcd: stop threads
[  129.385345][ T7617] vhci_hcd: release socket
[  129.387656][ T7617] vhci_hcd: disconnect device
[  129.444334][ T6133] vhci_hcd: vhci_device speed not set
[  129.656312][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  129.656324][   T40] audit: type=1400 audit(1752825992.446:27015): avc:  denied  { link } for  pid=9431 comm="syz.3.957" name="#14" dev="tmpfs" ino=1626 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  129.658341][   T10] usb 10-1: USB disconnect, device number 2
[  129.667168][   T40] audit: type=1400 audit(1752825992.446:27016): avc:  denied  { rename } for  pid=9431 comm="syz.3.957" name="#15" dev="tmpfs" ino=1626 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  129.807792][ T9343] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  129.821469][ T9343] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  129.833068][ T9343] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  129.837716][ T9343] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  129.931081][ T9455] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  129.932833][ T9343] 8021q: adding VLAN 0 to HW filter on device bond0
[  129.962560][ T9343] 8021q: adding VLAN 0 to HW filter on device team0
[  129.968089][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.970330][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  129.979290][ T7596] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.981659][ T7596] bridge0: port 2(bridge_slave_1) entered forwarding state
[  129.993406][ T9464] netlink: 'syz.5.961': attribute type 64 has an invalid length.
[  129.997000][ T9464] netlink: 'syz.5.961': attribute type 4 has an invalid length.
[  130.000208][ T9464] netlink: 152 bytes leftover after parsing attributes in process `syz.5.961'.
[  130.008258][ T9464] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  130.011691][ T9464] netlink: 20 bytes leftover after parsing attributes in process `syz.5.961'.
[  130.020255][ T9464] pim6reg9: entered allmulticast mode
[  130.023760][ T9464] netlink: 'syz.5.961': attribute type 64 has an invalid length.
[  130.027340][ T9464] netlink: 'syz.5.961': attribute type 4 has an invalid length.
[  130.029790][ T9464] netlink: 152 bytes leftover after parsing attributes in process `syz.5.961'.
[  130.128711][ T9343] 8021q: adding VLAN 0 to HW filter on device batadv0
[  130.274438][ T5314] Bluetooth: hci4: command tx timeout
[  130.296916][ T9343] veth0_vlan: entered promiscuous mode
[  130.302118][ T9343] veth1_vlan: entered promiscuous mode
[  130.319639][ T9343] veth0_macvtap: entered promiscuous mode
[  130.323356][ T9343] veth1_macvtap: entered promiscuous mode
[  130.333459][ T9343] batman_adv: batadv0: Interface activated: batadv_slave_0
[  130.340992][ T9343] batman_adv: batadv0: Interface activated: batadv_slave_1
[  130.345796][ T9343] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  130.348582][ T9343] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  130.351314][ T9343] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  130.354002][ T9343] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  130.391386][ T7616] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.396991][ T7616] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.409205][ T7616] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.411718][ T7616] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.694621][ T7616] batadv1: left promiscuous mode
[  132.331054][ T7616] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.516743][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.519293][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  133.138208][ T5965] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  133.142206][ T5965] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  133.146535][ T5965] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  133.150453][ T5965] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  133.153152][ T5965] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  133.256123][ T9500] chnl_net:caif_netlink_parms(): no params data found
[  133.327277][ T9500] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.329605][ T9500] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.331851][ T9500] bridge_slave_0: entered allmulticast mode
[  133.334508][ T9500] bridge_slave_0: entered promiscuous mode
[  133.338083][ T9500] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.340300][ T9500] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.342513][ T9500] bridge_slave_1: entered allmulticast mode
[  133.345306][ T9500] bridge_slave_1: entered promiscuous mode
[  133.380384][ T9500] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  133.385039][ T9500] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  133.423080][ T9500] team0: Port device team_slave_0 added
[  133.428694][ T9500] team0: Port device team_slave_1 added
[  133.460568][ T9500] batman_adv: batadv0: Adding interface: batadv_slave_0
[  133.462811][ T9500] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.471457][ T9500] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  133.477475][ T9500] batman_adv: batadv0: Adding interface: batadv_slave_1
[  133.479794][ T9500] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.489177][ T9500] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  133.526373][ T9500] hsr_slave_0: entered promiscuous mode
[  133.528558][ T9500] hsr_slave_1: entered promiscuous mode
[  133.530589][ T9500] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  133.533340][ T9500] Cannot create hsr debugfs directory
[  133.951551][ T7616] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.027697][ T7616] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.111291][ T7616] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.209933][ T7616] bridge_slave_1: left allmulticast mode
[  134.211760][ T7616] bridge_slave_1: left promiscuous mode
[  134.213699][ T7616] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.218609][ T7616] bridge_slave_0: left allmulticast mode
[  134.220498][ T7616] bridge_slave_0: left promiscuous mode
[  134.222346][ T7616] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.509478][ T7616] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  134.515445][ T7616] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  134.521004][ T7616] bond0 (unregistering): Released all slaves
[  134.868420][ T7616] hsr_slave_0: left promiscuous mode
[  134.870456][ T7616] hsr_slave_1: left promiscuous mode
[  134.872382][ T7616] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  134.876338][ T7616] batman_adv: batadv0: Removing interface: batadv_slave_0
[  134.879946][ T7616] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  134.882250][ T7616] batman_adv: batadv0: Removing interface: batadv_slave_1
[  134.924675][ T7616] veth1_macvtap: left promiscuous mode
[  134.927027][ T7616] veth0_macvtap: left promiscuous mode
[  134.929705][ T7616] veth1_vlan: left promiscuous mode
[  134.931986][ T7616] veth0_vlan: left promiscuous mode
[  135.234345][ T5965] Bluetooth: hci4: command tx timeout
[  135.505460][ T7616] team0 (unregistering): Port device team_slave_1 removed
[  135.576703][ T7616] team0 (unregistering): Port device team_slave_0 removed
[  136.218494][ T9500] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  136.225204][ T9500] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  136.229643][ T9500] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  136.236687][ T9500] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  136.295593][ T9500] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.311404][ T9500] 8021q: adding VLAN 0 to HW filter on device team0
[  136.316930][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.319766][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.326511][ T7596] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.328835][ T7596] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.446292][ T9500] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.586552][ T9500] veth0_vlan: entered promiscuous mode
[  136.593042][ T9500] veth1_vlan: entered promiscuous mode
[  136.608676][ T9500] veth0_macvtap: entered promiscuous mode
[  136.612102][ T9500] veth1_macvtap: entered promiscuous mode
[  136.625600][ T9500] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.632850][ T9500] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.639038][ T9500] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.641703][ T9500] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.644579][ T9500] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.647830][ T9500] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.690661][ T7596] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.693137][ T7596] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.709337][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.712004][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  138.540897][ T1144] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.399643][ T5314] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  139.403077][ T5314] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  139.407134][ T5314] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  139.413420][ T5314] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  139.417356][ T5314] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  139.504031][ T9556] chnl_net:caif_netlink_parms(): no params data found
[  139.569096][ T9556] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.571304][ T9556] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.573502][ T9556] bridge_slave_0: entered allmulticast mode
[  139.576121][ T9556] bridge_slave_0: entered promiscuous mode
[  139.579112][ T9556] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.581402][ T9556] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.583659][ T9556] bridge_slave_1: entered allmulticast mode
[  139.586699][ T9556] bridge_slave_1: entered promiscuous mode
[  139.616670][ T9556] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  139.621797][ T9556] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  139.653648][ T9556] team0: Port device team_slave_0 added
[  139.659313][ T9556] team0: Port device team_slave_1 added
[  139.703395][ T9556] batman_adv: batadv0: Adding interface: batadv_slave_0
[  139.706223][ T9556] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  139.718153][ T9556] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  139.723689][ T9556] batman_adv: batadv0: Adding interface: batadv_slave_1
[  139.726717][ T9556] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  139.736841][ T9556] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  139.785779][ T9556] hsr_slave_0: entered promiscuous mode
[  139.788005][ T9556] hsr_slave_1: entered promiscuous mode
[  139.790025][ T9556] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  139.792399][ T9556] Cannot create hsr debugfs directory
[  140.126094][ T1144] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.226376][ T1144] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.315829][ T1144] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.451461][ T1144] bridge_slave_1: left allmulticast mode
[  140.453275][ T1144] bridge_slave_1: left promiscuous mode
[  140.455476][ T1144] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.460097][ T1144] bridge_slave_0: left allmulticast mode
[  140.462550][ T1144] bridge_slave_0: left promiscuous mode
[  140.465154][ T1144] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.737547][ T1144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  140.741882][ T1144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  140.746404][ T1144] bond0 (unregistering): Released all slaves
[  141.114931][ T1144] hsr_slave_0: left promiscuous mode
[  141.117064][ T1144] hsr_slave_1: left promiscuous mode
[  141.119063][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.121780][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.126083][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.128387][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.153675][ T1144] veth1_macvtap: left promiscuous mode
[  141.156479][ T1144] veth0_macvtap: left promiscuous mode
[  141.158243][ T1144] veth1_vlan: left promiscuous mode
[  141.159933][ T1144] veth0_vlan: left promiscuous mode
[  141.477334][ T5314] Bluetooth: hci4: command tx timeout
[  141.740569][ T1144] team0 (unregistering): Port device team_slave_1 removed
[  141.812270][ T1144] team0 (unregistering): Port device team_slave_0 removed
[  142.323787][ T9556] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  142.329848][ T9556] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  142.335980][ T9556] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  142.339949][ T9556] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  142.395864][ T9556] 8021q: adding VLAN 0 to HW filter on device bond0
[  142.407588][ T9556] 8021q: adding VLAN 0 to HW filter on device team0
[  142.412637][ T7615] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.415009][ T7615] bridge0: port 1(bridge_slave_0) entered forwarding state
[  142.420851][   T73] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.423149][   T73] bridge0: port 2(bridge_slave_1) entered forwarding state
[  142.556840][ T9556] 8021q: adding VLAN 0 to HW filter on device batadv0
[  142.681444][ T9556] veth0_vlan: entered promiscuous mode
[  142.688284][ T9556] veth1_vlan: entered promiscuous mode
[  142.706165][ T9556] veth0_macvtap: entered promiscuous mode
[  142.710487][ T9556] veth1_macvtap: entered promiscuous mode
[  142.719967][ T9556] batman_adv: batadv0: Interface activated: batadv_slave_0
[  142.726494][ T9556] batman_adv: batadv0: Interface activated: batadv_slave_1
[  142.730812][ T9556] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.733526][ T9556] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.738599][ T9556] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.741902][ T9556] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.781019][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.784046][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.800184][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.803153][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.896205][ T1144] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.715498][ T9617] netlink: 28 bytes leftover after parsing attributes in process `syz.5.968'.
[  145.715566][ T9618] netlink: 28 bytes leftover after parsing attributes in process `syz.5.968'.
[  145.762498][ T9623] netlink: 24 bytes leftover after parsing attributes in process `syz.2.972'.
[  145.770988][ T9623] netlink: 24 bytes leftover after parsing attributes in process `syz.2.972'.
[  145.831102][ T5965] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  145.836707][ T5965] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  145.840539][ T5965] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  145.852982][ T5965] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  145.857453][ T5965] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  145.883048][ T9634] futex_wake_op: syz.2.974 tries to shift op by -1; fix this program
[  145.896633][ T9634] bridge0: port 3(veth0_to_bridge) entered blocking state
[  145.903006][ T9634] bridge0: port 3(veth0_to_bridge) entered disabled state
[  145.908736][ T9634] veth0_to_bridge: entered allmulticast mode
[  145.911427][ T9634] veth0_to_bridge: entered promiscuous mode
[  145.956981][ T9644] binder: 9643:9644 ioctl c0306201 200000000640 returned -22
[  145.959584][ T9644] binder: 9643:9644 ioctl c0385650 200000000040 returned -22
[  145.986410][ T9647] netlink: 64 bytes leftover after parsing attributes in process `syz.5.977'.
[  145.991576][   T40] audit: type=1400 audit(1752826008.776:27017): avc:  denied  { ioctl } for  pid=9649 comm="syz.2.978" path="socket:[32657]" dev="sockfs" ino=32657 ioctlcmd=0xf507 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  146.020298][ T9631] chnl_net:caif_netlink_parms(): no params data found
[  146.021866][   T40] audit: type=1400 audit(1752826008.806:27018): avc:  denied  { accept } for  pid=9654 comm="syz.3.980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  146.086829][ T9631] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.089126][ T9631] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.091696][ T9631] bridge_slave_0: entered allmulticast mode
[  146.094402][ T9631] bridge_slave_0: entered promiscuous mode
[  146.097426][ T9631] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.099720][ T9631] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.101957][ T9631] bridge_slave_1: entered allmulticast mode
[  146.104754][ T9631] bridge_slave_1: entered promiscuous mode
[  146.137642][ T9631] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  146.142042][ T9631] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  146.169524][ T9667] netlink: 24 bytes leftover after parsing attributes in process `syz.3.982'.
[  146.181533][ T9631] team0: Port device team_slave_0 added
[  146.185959][ T9631] team0: Port device team_slave_1 added
[  146.219592][ T9631] batman_adv: batadv0: Adding interface: batadv_slave_0
[  146.221879][ T9631] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.230102][ T9631] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  146.234789][ T9671] uprobe: syz.3.985:9671 failed to unregister, leaking uprobe
[  146.235290][ T9631] batman_adv: batadv0: Adding interface: batadv_slave_1
[  146.240156][ T9631] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.249273][ T9631] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  146.297820][ T9631] hsr_slave_0: entered promiscuous mode
[  146.300048][ T9631] hsr_slave_1: entered promiscuous mode
[  146.302093][ T9631] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  146.306435][ T9631] Cannot create hsr debugfs directory
[  146.454350][ T6035] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  146.538400][   T40] audit: type=1400 audit(1752826009.326:27019): avc:  denied  { execute } for  pid=9692 comm="syz.2.992" path="anon_inode:[kvm-gmem]" dev="anon_inodefs" ino=32758 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  146.546524][   T40] audit: type=1800 audit(1752826009.326:27020): pid=9695 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.992" name="[kvm-gmem]" dev="anon_inodefs" ino=32758 res=0 errno=0
[  146.615509][ T6035] usb 10-1: config index 0 descriptor too short (expected 8192, got 92)
[  146.618213][ T6035] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  146.621419][ T6035] usb 10-1: config 0 has no interfaces?
[  146.624932][ T6035] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  146.628731][ T6035] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.632013][ T6035] usb 10-1: Product: syz
[  146.633377][ T6035] usb 10-1: Manufacturer: syz
[  146.635016][ T6035] usb 10-1: SerialNumber: syz
[  146.643002][ T6035] usb 10-1: config 0 descriptor??
[  146.663716][ T9702] tipc: Enabled bearer <udp:syz2>, priority 10
[  146.670124][ T9702] tipc: Enabled bearer <eth:team0>, priority 0
[  146.733570][   T40] audit: type=1400 audit(1752826009.516:27021): avc:  denied  { create } for  pid=9705 comm="syz.2.997" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  146.735085][ T9706] netlink: 4 bytes leftover after parsing attributes in process `syz.2.997'.
[  146.844714][ T9715] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  146.858337][ T6035] usb 10-1: USB disconnect, device number 3
[  146.862161][ T1144] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.948661][ T1144] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.025265][ T1144] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.042159][ T9729] affs: No valid root block on device nullb0
[  147.073854][ T9731] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1007'.
[  147.160717][ T1144] bridge_slave_1: left allmulticast mode
[  147.162586][ T1144] bridge_slave_1: left promiscuous mode
[  147.165682][ T1144] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.169545][ T1144] bridge_slave_0: left allmulticast mode
[  147.171337][ T1144] bridge_slave_0: left promiscuous mode
[  147.173584][ T1144] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.407636][ T1144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  147.413374][ T1144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  147.418950][ T1144] bond0 (unregistering): Released all slaves
[  147.544308][ T6133] usb 7-1: new full-speed USB device number 21 using dummy_hcd
[  147.677224][ T6035] tipc: Node number set to 2241610246
[  147.697877][ T6133] usb 7-1: unable to get BOS descriptor or descriptor too short
[  147.705837][ T6133] usb 7-1: not running at top speed; connect to a high speed hub
[  147.710925][ T6133] usb 7-1: config 1 interface 0 altsetting 6 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  147.717139][ T6133] usb 7-1: config 1 interface 0 has no altsetting 0
[  147.721787][ T6133] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  147.728416][ T6133] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.732205][ T6133] usb 7-1: Product: syz
[  147.733976][ T6133] usb 7-1: Manufacturer: syz
[  147.738059][ T6133] usb 7-1: SerialNumber: syz
[  147.785947][ T1144] hsr_slave_0: left promiscuous mode
[  147.788122][ T1144] hsr_slave_1: left promiscuous mode
[  147.790225][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.792703][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.796226][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.798581][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.816316][   T40] audit: type=1400 audit(1752826010.606:27022): avc:  denied  { append } for  pid=9757 comm="syz.5.1013" name="event2" dev="devtmpfs" ino=947 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  147.823474][ T1144] veth1_macvtap: left promiscuous mode
[  147.825441][ T1144] veth0_macvtap: left promiscuous mode
[  147.827258][ T1144] veth1_vlan: left promiscuous mode
[  147.828922][ T1144] veth0_vlan: left promiscuous mode
[  147.874466][ T5965] Bluetooth: hci4: command tx timeout
[  148.402382][ T1144] team0 (unregistering): Port device team_slave_1 removed
[  148.457834][ T6133] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -71
[  148.464374][ T6133] usb 7-1: USB disconnect, device number 21
[  148.475165][ T1144] team0 (unregistering): Port device team_slave_0 removed
[  148.592311][ T9766] kvm: pic: non byte write
[  148.600580][   T40] audit: type=1400 audit(1752826011.386:27023): avc:  denied  { setattr } for  pid=9769 comm="syz.5.1016" name="NETLINK" dev="sockfs" ino=35299 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  148.641906][ T9773] program syz.5.1017 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  148.663503][   T40] audit: type=1326 audit(1752826011.446:27024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9765 comm="syz.2.1014" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff90bb8e9a9 code=0x7ffc0000
[  148.671239][   T40] audit: type=1326 audit(1752826011.446:27025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9765 comm="syz.2.1014" exe="/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7ff90bb8e9a9 code=0x7ffc0000
[  148.678569][   T40] audit: type=1326 audit(1752826011.446:27026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9765 comm="syz.2.1014" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff90bb8e9a9 code=0x7ffc0000
[  148.692136][ T9773] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.1017'.
[  148.724342][ T9776] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12288 sclass=netlink_route_socket pid=9776 comm=syz.5.1018
[  148.763906][ T9778] netlink: 'syz.5.1019': attribute type 8 has an invalid length.
[  149.037577][ T9631] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  149.041742][ T9631] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  149.045576][ T9631] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  149.049427][ T9631] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  149.096587][ T9631] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.106715][ T9631] 8021q: adding VLAN 0 to HW filter on device team0
[  149.113208][ T7615] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.115615][ T7615] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.123559][   T73] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.125903][   T73] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.153499][ T9631] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  149.157494][ T9631] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  149.250628][ T9631] 8021q: adding VLAN 0 to HW filter on device batadv0
[  149.267711][ T9800] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1022'.
[  149.390239][ T9820] ipvlan2: entered promiscuous mode
[  149.417210][ T9631] veth0_vlan: entered promiscuous mode
[  149.424712][ T9631] veth1_vlan: entered promiscuous mode
[  149.425707][ T9822] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12288 sclass=netlink_route_socket pid=9822 comm=syz.5.1028
[  149.438359][ T9631] veth0_macvtap: entered promiscuous mode
[  149.447322][ T9631] veth1_macvtap: entered promiscuous mode
[  149.459308][ T9631] batman_adv: batadv0: Interface activated: batadv_slave_0
[  149.470683][ T9631] batman_adv: batadv0: Interface activated: batadv_slave_1
[  149.489562][ T9631] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.492350][ T9631] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.495860][ T9631] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.498606][ T9631] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.528310][ T9828] xt_hashlimit: size too large, truncated to 1048576
[  149.536854][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.542152][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.557560][ T1144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.560717][ T1144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.562944][ T9835] netlink: 'syz.3.1030': attribute type 10 has an invalid length.
[  149.566458][ T9836] tmpfs: Unknown parameter 'quotao'
[  149.571387][ T9837] tmpfs: Unknown parameter 'quotao'
[  149.628448][ T9844] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  149.727526][ T9849] overlayfs: unescaped trailing colons in lowerdir mount option.
[  150.531848][ T9861] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12288 sclass=netlink_route_socket pid=9861 comm=syz.5.1040
[  150.603008][ T9869] overlayfs: failed to resolve './file0': -2
[  150.633499][ T9874] xt_hashlimit: size too large, truncated to 1048576
[  150.844518][ T9889] syzkaller1: entered promiscuous mode
[  150.846269][ T9889] syzkaller1: entered allmulticast mode
[  151.262372][ T9909] __nla_validate_parse: 6 callbacks suppressed
[  151.262382][ T9909] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1055'.
[  152.190141][ T7617] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.259411][   T40] kauditd_printk_skb: 27 callbacks suppressed
[  152.259421][   T40] audit: type=1400 audit(1752826015.046:27054): avc:  denied  { map } for  pid=9920 comm="syz.2.1059" path="/dev/null" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:null_device_t tclass=chr_file permissive=1
[  152.270331][   T40] audit: type=1400 audit(1752826015.046:27055): avc:  denied  { execute } for  pid=9920 comm="syz.2.1059" path="/dev/null" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:null_device_t tclass=chr_file permissive=1
[  152.294010][ T5314] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  152.300309][ T5314] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  152.303037][ T5314] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  152.306487][ T5314] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  152.308929][ T5314] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  152.334725][   T40] audit: type=1400 audit(1752826015.116:27056): avc:  denied  { name_connect } for  pid=9930 comm="syz.5.1061" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  152.376696][ T9934] netlink: 'syz.2.1064': attribute type 10 has an invalid length.
[  152.391379][ T9934] hsr_slave_1: left promiscuous mode
[  152.394860][ T9936] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1063'.
[  152.402323][ T9936] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.406019][ T9936] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.408778][ T9936] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.411116][ T9936] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.474718][ T9924] chnl_net:caif_netlink_parms(): no params data found
[  152.534010][ T9954] dvmrp1: entered allmulticast mode
[  152.551792][ T9924] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.554325][ T9924] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.557085][ T9924] bridge_slave_0: entered allmulticast mode
[  152.560237][ T9924] bridge_slave_0: entered promiscuous mode
[  152.563408][ T9924] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.566279][ T9924] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.568574][ T9924] bridge_slave_1: entered allmulticast mode
[  152.571141][ T9924] bridge_slave_1: entered promiscuous mode
[  152.603624][ T9924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  152.609491][ T9924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  152.649290][ T9924] team0: Port device team_slave_0 added
[  152.655503][ T9924] team0: Port device team_slave_1 added
[  152.704405][ T9924] batman_adv: batadv0: Adding interface: batadv_slave_0
[  152.706571][ T9924] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  152.715326][ T9924] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  152.719513][ T9924] batman_adv: batadv0: Adding interface: batadv_slave_1
[  152.721666][ T9924] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  152.729677][ T9924] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  152.730556][   T40] audit: type=1400 audit(1752826015.516:27057): avc:  denied  { write } for  pid=9967 comm="syz.5.1070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  152.768798][ T9924] hsr_slave_0: entered promiscuous mode
[  152.771054][ T9924] hsr_slave_1: entered promiscuous mode
[  152.773100][ T9924] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  152.775782][ T9924] Cannot create hsr debugfs directory
[  152.810243][   T40] audit: type=1400 audit(1752826015.596:27058): avc:  denied  { create } for  pid=9970 comm="syz.2.1071" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  152.823313][   T40] audit: type=1400 audit(1752826015.606:27059): avc:  denied  { mounton } for  pid=9970 comm="syz.2.1071" path="/314/file0" dev="tmpfs" ino=1697 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  152.864948][ T7617] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.932955][ T7617] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.005628][ T7617] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.137910][ T7617] bridge_slave_1: left allmulticast mode
[  153.139761][ T7617] bridge_slave_1: left promiscuous mode
[  153.141519][ T7617] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.145371][ T7617] bridge_slave_0: left allmulticast mode
[  153.147111][ T7617] bridge_slave_0: left promiscuous mode
[  153.148880][ T7617] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.366606][ T9979] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1074'.
[  153.387779][   T40] audit: type=1400 audit(1752826016.176:27060): avc:  denied  { getopt } for  pid=9973 comm="syz.5.1072" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  153.424647][ T7617] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  153.429275][ T7617] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  153.432595][ T7617] bond0 (unregistering): Released all slaves
[  153.519774][   T40] audit: type=1400 audit(1752826016.306:27061): avc:  denied  { bind } for  pid=9984 comm="syz.3.1075" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  153.647912][ T9998] macvtap1: entered allmulticast mode
[  153.650109][ T9998] veth0_macvtap: entered allmulticast mode
[  153.659786][   T40] audit: type=1400 audit(1752826016.446:27062): avc:  denied  { create } for  pid=9997 comm="syz.3.1077" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  153.670143][ T9998] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1077'.
[  153.693998][   T40] audit: type=1400 audit(1752826016.456:27063): avc:  denied  { write } for  pid=9997 comm="syz.3.1077" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  153.741211][T10006] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1080'.
[  153.764326][T10006] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1080'.
[  153.799542][ T7617] hsr_slave_0: left promiscuous mode
[  153.803911][ T7617] hsr_slave_1: left promiscuous mode
[  153.806106][ T7617] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.808447][ T7617] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.811680][ T7617] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.816678][ T7617] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.852598][ T7617] veth1_macvtap: left promiscuous mode
[  153.855783][ T7617] veth0_macvtap: left promiscuous mode
[  153.857594][ T7617] veth1_vlan: left promiscuous mode
[  153.859483][ T7617] veth0_vlan: left promiscuous mode
[  154.354664][ T5314] Bluetooth: hci4: command tx timeout
[  154.556438][ T7617] team0 (unregistering): Port device team_slave_1 removed
[  154.629466][ T7617] team0 (unregistering): Port device team_slave_0 removed
[  154.871765][T10040] fuse: Bad value for 'user_id'
[  154.874141][T10040] fuse: Bad value for 'user_id'
[  155.273625][T10042] 9pnet_virtio: no channels available for device syz
[  155.281673][T10042] 9pnet_virtio: no channels available for device syz
[  155.285150][T10042] 9pnet_virtio: no channels available for device syz
[  155.287506][T10042] 9pnet_virtio: no channels available for device syz
[  155.290009][T10042] 9pnet_virtio: no channels available for device syz
[  155.290314][ T9924] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  155.292316][T10042] 9pnet_virtio: no channels available for device syz
[  155.297219][T10042] 9pnet_virtio: no channels available for device syz
[  155.299609][T10042] 9pnet_virtio: no channels available for device syz
[  155.300585][ T9924] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  155.301814][T10042] 9pnet_virtio: no channels available for device syz
[  155.313620][ T9924] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  155.317018][T10042] 9pnet_virtio: no channels available for device syz
[  155.319280][T10042] 9pnet_virtio: no channels available for device syz
[  155.320927][T10047] netlink: 72 bytes leftover after parsing attributes in process `syz.5.1091'.
[  155.321408][ T9924] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  155.321503][T10042] 9pnet_virtio: no channels available for device syz
[  155.321654][T10042] 9pnet_virtio: no channels available for device syz
[  155.321809][T10042] 9pnet_virtio: no channels available for device syz
[  155.321959][T10042] 9pnet_virtio: no channels available for device syz
[  155.322109][T10042] 9pnet_virtio: no channels available for device syz
[  155.322259][T10042] 9pnet_virtio: no channels available for device syz
[  155.322414][T10042] 9pnet_virtio: no channels available for device syz
[  155.322582][T10042] 9pnet_virtio: no channels available for device syz
[  155.322747][T10042] 9pnet_virtio: no channels available for device syz
[  155.322898][T10042] 9pnet_virtio: no channels available for device syz
[  155.323057][T10042] 9pnet_virtio: no channels available for device syz
[  155.323201][T10042] 9pnet_virtio: no channels available for device syz
[  155.323364][T10042] 9pnet_virtio: no channels available for device syz
[  155.323512][T10042] 9pnet_virtio: no channels available for device syz
[  155.323672][T10042] 9pnet_virtio: no channels available for device syz
[  155.323825][T10042] 9pnet_virtio: no channels available for device syz
[  155.323986][T10042] 9pnet_virtio: no channels available for device syz
[  155.324135][T10042] 9pnet_virtio: no channels available for device syz
[  155.325370][T10042] 9pnet_virtio: no channels available for device syz
[  155.368879][T10042] 9pnet_virtio: no channels available for device syz
[  155.371481][T10042] 9pnet_virtio: no channels available for device syz
[  155.424130][T10055] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1093'.
[  155.449178][ T9924] 8021q: adding VLAN 0 to HW filter on device bond0
[  155.467975][ T9924] 8021q: adding VLAN 0 to HW filter on device team0
[  155.470978][T10057] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1094'.
[  155.473776][T10057] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1094'.
[  155.482860][   T73] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.485309][   T73] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.496108][   T73] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.498415][   T73] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.629019][T10080] tmpfs: Unknown parameter 'mpol}tic:0'
[  155.641341][ T9924] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.821076][ T9924] veth0_vlan: entered promiscuous mode
[  155.826946][ T9924] veth1_vlan: entered promiscuous mode
[  155.840627][ T9924] veth0_macvtap: entered promiscuous mode
[  155.844497][ T9924] veth1_macvtap: entered promiscuous mode
[  155.855404][ T9924] batman_adv: batadv0: Interface activated: batadv_slave_0
[  155.861786][ T9924] batman_adv: batadv0: Interface activated: batadv_slave_1
[  155.869531][ T9924] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.872174][ T9924] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.875988][ T9924] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.878749][ T9924] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.911843][   T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.915154][   T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.924327][  T839] usb 8-1: new full-speed USB device number 9 using dummy_hcd
[  155.931828][   T73] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.935526][   T73] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.064317][  T839] usb 8-1: device descriptor read/64, error -71
[  156.184859][T10110] bridge_slave_1: left allmulticast mode
[  156.186699][T10110] bridge_slave_1: left promiscuous mode
[  156.188580][T10110] bridge0: port 2(bridge_slave_1) entered disabled state
[  156.192984][T10110] bridge_slave_0: left allmulticast mode
[  156.195066][T10110] bridge_slave_0: left promiscuous mode
[  156.197104][T10110] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.298885][T10116] openvswitch: netlink: Unexpected mask (mask=c0, allowed=10048)
[  156.304421][  T839] usb 8-1: new full-speed USB device number 10 using dummy_hcd
[  156.439369][T10114] BUG: Bad page state in process syz.2.1108  pfn:5da01
[  156.441503][T10114] page does not match folio
[  156.443041][T10114] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x5da01
[  156.447822][  T839] usb 8-1: device descriptor read/64, error -71
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  156.449856][T10114] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  156.452287][T10114] raw: 00fff00000000000 ffffea0001768000 00000000ffffffff ffffffffffffffff
[  156.455410][T10114] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[  156.458274][T10114] page dumped because: nonzero pincount
[  156.460041][T10114] page_owner tracks the page as allocated
[  156.462655][T10114] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 10111, tgid 10111 (syz.2.1108), ts 156241371093, free_ts 155335158868
[  156.470993][T10114]  post_alloc_hook+0x1c0/0x230
[  156.472617][T10114]  get_page_from_freelist+0x1321/0x3890
[  156.483101][T10121] tipc: Started in network mode
[  156.484769][T10121] tipc: Node identity 4, cluster identity 4711
[  156.486688][T10121] tipc: Node number set to 4
[  156.494214][T10114]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  156.496225][T10114]  alloc_pages_mpol+0x1fb/0x550
[  156.504237][T10114]  folio_alloc_noprof+0x20/0x2d0
[  156.505819][T10114]  filemap_alloc_folio_noprof+0x3a1/0x470
[  156.507905][T10114]  page_cache_ra_order+0x4c0/0xd00
[  156.509573][T10114]  filemap_fault+0x1a43/0x26c0
[  156.511094][T10114]  __do_fault+0x10d/0x490
[  156.522140][T10114]  __handle_mm_fault+0x374c/0x5490
[  156.523792][T10114]  handle_mm_fault+0x589/0xd10
[  156.525477][T10114]  do_user_addr_fault+0x60c/0x1370
[  156.527518][T10114]  exc_page_fault+0x5c/0xb0
[  156.528957][T10114]  asm_exc_page_fault+0x26/0x30
[  156.530474][T10114] page last free pid 10046 tgid 10046 stack trace:
[  156.532462][T10114]  __free_frozen_pages+0x7fe/0x1180
[  156.534094][T10114]  __folio_put+0x329/0x450
[  156.536029][T10114]  vicodec_release+0x105/0x150
[  156.537527][T10114]  v4l2_release+0x235/0x460
[  156.538950][T10114]  __fput+0x402/0xb70
[  156.540259][T10114]  task_work_run+0x14d/0x240
[  156.544239][T10114]  exit_to_user_mode_loop+0xeb/0x110
[  156.546003][T10114]  do_syscall_64+0x3f6/0x4c0
[  156.547483][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.550990][T10114] Modules linked in:
[  156.552269][T10114] CPU: 2 UID: 0 PID: 10114 Comm: syz.2.1108 Not tainted 6.16.0-rc6-syzkaller-00121-g6832a9317eee #0 PREEMPT(full) 
[  156.552283][T10114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.552290][T10114] Call Trace:
[  156.552294][T10114]  <TASK>
[  156.552298][T10114]  dump_stack_lvl+0x16c/0x1f0
[  156.552314][T10114]  bad_page+0xcf/0x220
[  156.552328][T10114]  ? __pfx_bad_page+0x10/0x10
[  156.552345][T10114]  free_tail_page_prepare+0x44f/0x5b0
[  156.552356][T10114]  __free_frozen_pages+0xc02/0x1180
[  156.552371][T10114]  __folio_put+0x329/0x450
[  156.552385][T10114]  ? __pfx___folio_put+0x10/0x10
[  156.552399][T10114]  ? find_held_lock+0x2b/0x80
[  156.552413][T10114]  ? delete_from_page_cache_batch+0x6c9/0x9b0
[  156.552427][T10114]  ? mark_held_locks+0x49/0x80
[  156.552437][T10114]  filemap_free_folio+0x132/0x170
[  156.552450][T10114]  delete_from_page_cache_batch+0x741/0x9b0
[  156.552467][T10114]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  156.552483][T10114]  ? __pfx_workingset_update_node+0x10/0x10
[  156.552502][T10114]  truncate_inode_pages_range+0x279/0xe50
[  156.552521][T10114]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  156.552549][T10114]  ? rcu_is_watching+0x12/0xc0
[  156.552562][T10114]  ? trace_ipi_send_cpu.constprop.0+0x195/0x220
[  156.552589][T10114]  ? __pfx_invalidate_bh_lru+0x10/0x10
[  156.552603][T10114]  ? __pfx_has_bh_in_lru+0x10/0x10
[  156.552618][T10114]  blkdev_flush_mapping+0xfb/0x290
[  156.552631][T10114]  blkdev_put_whole+0xc4/0xf0
[  156.552642][T10114]  bdev_release+0x47e/0x6d0
[  156.552656][T10114]  ? __pfx_blkdev_release+0x10/0x10
[  156.552668][T10114]  blkdev_release+0x15/0x20
[  156.552679][T10114]  __fput+0x402/0xb70
[  156.552692][T10114]  task_work_run+0x14d/0x240
[  156.552704][T10114]  ? __pfx_task_work_run+0x10/0x10
[  156.552714][T10114]  ? switch_task_namespaces+0xeb/0x100
[  156.552731][T10114]  do_exit+0x86c/0x2bd0
[  156.552746][T10114]  ? common_nsleep+0xa1/0xd0
[  156.552763][T10114]  ? __pfx_do_exit+0x10/0x10
[  156.552776][T10114]  ? xfd_validate_state+0x61/0x180
[  156.552790][T10114]  ? __pfx___x64_sys_clock_nanosleep+0x10/0x10
[  156.552806][T10114]  __x64_sys_exit+0x42/0x50
[  156.552820][T10114]  x64_sys_call+0xea3/0x1730
[  156.552831][T10114]  do_syscall_64+0xcd/0x4c0
[  156.552846][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.552856][T10114] RIP: 0033:0x7ff90bb8e9a9
[  156.552864][T10114] Code: Unable to access opcode bytes at 0x7ff90bb8e97f.
[  156.552869][T10114] RSP: 002b:00007ff90c9d5f08 EFLAGS: 00000246 ORIG_RAX: 000000000000003c
[  156.552878][T10114] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007ff90bb8e9a9
[  156.552885][T10114] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  156.552890][T10114] RBP: 00007ff90bc10ca1 R08: 0000000000000058 R09: 0000000000000058
[  156.552896][T10114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  156.552902][T10114] R13: 0000000000000000 R14: 00007ff90bdb6080 R15: 00007ffd3bea7fe8
[  156.552915][T10114]  </TASK>
[  156.552919][T10114] Disabling lock debugging due to kernel taint
[  156.646538][T10114] BUG: Bad page state in process syz.2.1108  pfn:5da00
[  156.646595][  T839] usb usb8-port1: attempt power cycle
[  156.649212][T10114] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5da00
[  156.649225][T10114] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[  156.657629][T10114] flags: 0xfff0000000004d(locked|referenced|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[  156.661476][T10114] raw: 00fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  156.665040][T10114] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  156.668410][T10114] head: 00fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  156.671811][T10114] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  156.675380][T10114] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[  156.678760][T10114] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[  156.682090][T10114] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  156.685997][T10114] page_owner tracks the page as allocated
[  156.687805][T10114] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 10111, tgid 10111 (syz.2.1108), ts 156241371093, free_ts 155335158868
[  156.694124][T10114]  post_alloc_hook+0x1c0/0x230
[  156.695842][T10114]  get_page_from_freelist+0x1321/0x3890
[  156.697609][T10114]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  156.699476][T10114]  alloc_pages_mpol+0x1fb/0x550
[  156.701006][T10114]  folio_alloc_noprof+0x20/0x2d0
[  156.702570][T10114]  filemap_alloc_folio_noprof+0x3a1/0x470
[  156.704398][T10114]  page_cache_ra_order+0x4c0/0xd00
[  156.705998][T10114]  filemap_fault+0x1a43/0x26c0
[  156.707504][T10114]  __do_fault+0x10d/0x490
[  156.708857][T10114]  __handle_mm_fault+0x374c/0x5490
[  156.710474][T10114]  handle_mm_fault+0x589/0xd10
[  156.711975][T10114]  do_user_addr_fault+0x60c/0x1370
[  156.713567][T10114]  exc_page_fault+0x5c/0xb0
[  156.715161][T10114]  asm_exc_page_fault+0x26/0x30
[  156.716727][T10114] page last free pid 10046 tgid 10046 stack trace:
[  156.718821][T10114]  __free_frozen_pages+0x7fe/0x1180
[  156.720575][T10114]  __folio_put+0x329/0x450
[  156.722112][T10114]  vicodec_release+0x105/0x150
[  156.723672][T10114]  v4l2_release+0x235/0x460
[  156.725476][T10114]  __fput+0x402/0xb70
[  156.726959][T10114]  task_work_run+0x14d/0x240
[  156.728509][T10114]  exit_to_user_mode_loop+0xeb/0x110
[  156.730226][T10114]  do_syscall_64+0x3f6/0x4c0
[  156.731836][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.733927][T10114] Modules linked in:
[  156.735401][T10114] CPU: 3 UID: 0 PID: 10114 Comm: syz.2.1108 Tainted: G    B               6.16.0-rc6-syzkaller-00121-g6832a9317eee #0 PREEMPT(full) 
[  156.735418][T10114] Tainted: [B]=BAD_PAGE
[  156.735421][T10114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.735428][T10114] Call Trace:
[  156.735431][T10114]  <TASK>
[  156.735435][T10114]  dump_stack_lvl+0x16c/0x1f0
[  156.735450][T10114]  bad_page+0xcf/0x220
[  156.735465][T10114]  ? __pfx_bad_page+0x10/0x10
[  156.735479][T10114]  ? page_bad_reason+0x9d/0x1f0
[  156.735493][T10114]  __free_frozen_pages+0x824/0x1180
[  156.735506][T10114]  __folio_put+0x329/0x450
[  156.735519][T10114]  ? __pfx___folio_put+0x10/0x10
[  156.735532][T10114]  ? find_held_lock+0x2b/0x80
[  156.735545][T10114]  ? delete_from_page_cache_batch+0x6c9/0x9b0
[  156.735559][T10114]  ? mark_held_locks+0x49/0x80
[  156.735568][T10114]  filemap_free_folio+0x132/0x170
[  156.735581][T10114]  delete_from_page_cache_batch+0x741/0x9b0
[  156.735596][T10114]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  156.735611][T10114]  ? __pfx_workingset_update_node+0x10/0x10
[  156.735628][T10114]  truncate_inode_pages_range+0x279/0xe50
[  156.735645][T10114]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  156.735672][T10114]  ? rcu_is_watching+0x12/0xc0
[  156.735684][T10114]  ? trace_ipi_send_cpu.constprop.0+0x195/0x220
[  156.735704][T10114]  ? __pfx_invalidate_bh_lru+0x10/0x10
[  156.735718][T10114]  ? __pfx_has_bh_in_lru+0x10/0x10
[  156.735731][T10114]  blkdev_flush_mapping+0xfb/0x290
[  156.735743][T10114]  blkdev_put_whole+0xc4/0xf0
[  156.735753][T10114]  bdev_release+0x47e/0x6d0
[  156.735765][T10114]  ? __pfx_blkdev_release+0x10/0x10
[  156.735777][T10114]  blkdev_release+0x15/0x20
[  156.735788][T10114]  __fput+0x402/0xb70
[  156.735798][T10114]  task_work_run+0x14d/0x240
[  156.735809][T10114]  ? __pfx_task_work_run+0x10/0x10
[  156.735819][T10114]  ? switch_task_namespaces+0xeb/0x100
[  156.735834][T10114]  do_exit+0x86c/0x2bd0
[  156.735848][T10114]  ? common_nsleep+0xa1/0xd0
[  156.735864][T10114]  ? __pfx_do_exit+0x10/0x10
[  156.735877][T10114]  ? xfd_validate_state+0x61/0x180
[  156.735891][T10114]  ? __pfx___x64_sys_clock_nanosleep+0x10/0x10
[  156.735906][T10114]  __x64_sys_exit+0x42/0x50
[  156.735921][T10114]  x64_sys_call+0xea3/0x1730
[  156.735932][T10114]  do_syscall_64+0xcd/0x4c0
[  156.735947][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.735956][T10114] RIP: 0033:0x7ff90bb8e9a9
[  156.735964][T10114] Code: Unable to access opcode bytes at 0x7ff90bb8e97f.
[  156.735969][T10114] RSP: 002b:00007ff90c9d5f08 EFLAGS: 00000246 ORIG_RAX: 000000000000003c
[  156.735978][T10114] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007ff90bb8e9a9
[  156.735984][T10114] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  156.735990][T10114] RBP: 00007ff90bc10ca1 R08: 0000000000000058 R09: 0000000000000058
[  156.735996][T10114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  156.736002][T10114] R13: 0000000000000000 R14: 00007ff90bdb6080 R15: 00007ffd3bea7fe8
[  156.736011][T10114]  </TASK>
[  157.004256][  T839] usb 8-1: new full-speed USB device number 11 using dummy_hcd
[  157.026195][  T839] usb 8-1: device descriptor read/8, error -71
[  157.032765][ T7615] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.146201][ T7615] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.216837][ T7615] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.336827][ T7615] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.406500][ T7615] bridge_slave_1: left allmulticast mode
[  157.408838][ T7615] bridge_slave_1: left promiscuous mode
[  157.411121][ T7615] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.415274][ T7615] bridge_slave_0: left allmulticast mode
[  157.417236][ T7615] bridge_slave_0: left promiscuous mode
[  157.418997][ T7615] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.599164][ T7615] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  157.603478][ T7615] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  157.607152][ T7615] bond0 (unregistering): Released all slaves
[  157.611142][ T7615] bond1 (unregistering): Released all slaves
[  157.618405][ T7615] bond2 (unregistering): (slave veth3): Releasing active interface
[  157.621691][ T7615] batadv1: entered promiscuous mode
[  157.625176][ T7615] bond2 (unregistering): (slave batadv1): Releasing active interface
[  157.629275][ T7615] bond2 (unregistering): Released all slaves
[  157.699603][ T7615] bond3 (unregistering): (slave veth5): Releasing active interface
[  157.702720][ T7615] bond3 (unregistering): Released all slaves
[  157.771858][ T7615] tipc: Left network mode
[  157.816028][ T7615] IPVS: stopping backup sync thread 8150 ...
[  157.953720][ T7615] hsr_slave_0: left promiscuous mode
[  157.957226][ T7615] hsr_slave_1: left promiscuous mode
[  157.959836][ T7615] batman_adv: batadv0: Interface deactivated: dummy0
[  157.962303][ T7615] batman_adv: batadv0: Removing interface: dummy0
[  157.965785][ T7615] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  157.968288][ T7615] batman_adv: batadv0: Removing interface: batadv_slave_0
[  157.971534][ T7615] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  157.974048][ T7615] batman_adv: batadv0: Removing interface: batadv_slave_1
[  157.979866][ T7615] veth0_macvtap: left allmulticast mode
[  157.982328][ T7615] veth1_macvtap: left promiscuous mode
[  157.985449][ T7615] veth0_macvtap: left promiscuous mode
[  157.987764][ T7615] veth1_vlan: left promiscuous mode
[  157.989956][ T7615] veth0_vlan: left promiscuous mode
[  158.085787][ T7615] pimreg (unregistering): left allmulticast mode
[  158.204051][ T7615] team_slave_1 (unregistering): left promiscuous mode
[  158.207406][ T7615] team0 (unregistering): Port device team_slave_1 removed
[  158.240943][ T7615] team_slave_0 (unregistering): left promiscuous mode
[  158.243450][ T7615] team0 (unregistering): Port device team_slave_0 removed
[  158.752880][ T7615] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.817249][ T7615] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.906421][ T7615] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.017186][ T7615] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.084453][ T7615] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  160.088354][ T7615] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.138187][ T7615] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  160.141750][ T7615] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.187009][ T7615] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  160.190101][ T7615] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.250119][ T7615] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  160.254339][ T7615] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.327255][ T7615] bridge_slave_1: left allmulticast mode
[  160.329622][ T7615] bridge_slave_1: left promiscuous mode
[  160.332038][ T7615] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.336701][ T7615] bridge_slave_0: left allmulticast mode
[  160.339043][ T7615] bridge_slave_0: left promiscuous mode
[  160.340933][ T7615] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.449587][ T7615] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  160.454325][ T7615] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  160.458547][ T7615] bond0 (unregistering): Released all slaves
[  160.542086][ T7615] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  160.546010][ T7615] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  160.549523][ T7615] bond0 (unregistering): Released all slaves
[  160.626971][ T7615] tipc: Left network mode
[  160.968606][ T7615] hsr_slave_0: left promiscuous mode
[  160.970578][ T7615] hsr_slave_1: left promiscuous mode
[  160.972441][ T7615] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.975311][ T7615] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.978749][ T7615] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  160.981790][ T7615] batman_adv: batadv0: Removing interface: batadv_slave_1
[  160.987213][ T7615] hsr_slave_0: left promiscuous mode
[  160.989280][ T7615] hsr_slave_1: left promiscuous mode
[  160.994579][ T7615] veth1_macvtap: left promiscuous mode
[  160.996304][ T7615] veth0_macvtap: left promiscuous mode
[  160.998036][ T7615] veth1_vlan: left promiscuous mode
[  160.999694][ T7615] veth0_vlan: left promiscuous mode
[  161.001963][ T7615] veth1_macvtap: left promiscuous mode
[  161.003694][ T7615] veth0_macvtap: left promiscuous mode
[  161.005571][ T7615] veth1_vlan: left promiscuous mode
[  161.007232][ T7615] veth0_vlan: left promiscuous mode
[  161.171570][ T7615] team0 (unregistering): Port device team_slave_1 removed
[  161.202161][ T7615] team0 (unregistering): Port device team_slave_0 removed
[  161.337292][ T7615] pim6reg9 (unregistering): left allmulticast mode
[  161.458031][ T7615] team0 (unregistering): Port device team_slave_1 removed
[  161.490656][ T7615] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
08:06:58  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000972 RBX=0000000000000002 RCX=0000000000000008 RDX=0000000000000000
RSI=ffff888026118b40 RDI=ffff888026118000 RBP=ffff888026118000 RSP=ffffc90003b87620
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000050 R11=0000000000000001
R12=ffff888026118af0 R13=ffff888026118b40 R14=0000000000000003 R15=0000000000000000
RIP=ffffffff81986936 RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fc60d0396c0 ffffffff 00c00000
GS =0000 ffff8880d6713000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fc60d038f98 CR3=000000004dba7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000400001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 006d635f616d6472 2f646e6162696e69
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11c7a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11c87
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11c81
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11c95
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11d1b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11df9
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 207465735f79656b 700074616d726f66 207972616e690004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 055140565f5c404e 5500514448574a43 055c57444b4c4705 4b524a4b4e4b5000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffff88802aee2f58 RBX=ffffffff8e5c4e00 RCX=ffffc9000378704c RDX=0000000000000000
RSI=ffffffff8e5c4e00 RDI=ffff88802aee2f58 RBP=0000000000000001 RSP=ffffc90003787040
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000007a38
R12=ffffffff816adac4 R13=0000000000000206 R14=ffff88802aee2440 R15=0000000000000002
RIP=ffffffff8198846b RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6813000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007efc6f8e7d60 CR3=0000000030871000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efc6ed866a3 00007efc6ed866a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd331205d0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555589930117 000055558992fc60
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555899299d7 0000555589929470
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 78fea517d83c44bc aac78e8b52080f80 030f80040b80030b 800420a003000800
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0120808010000210 0020800401000000 0806080158f40008 0020f00300080020
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e00300100020d003 0fffffffffffff04 20c00302100020b0 035210000b9003b7
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5dbc88bc166ddc3d 314c3ef3f8045ec8 f08749d2fff1c8c0 aafa117478fea517
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d83c44bcaac78e8b 52080f80030f8004 0b80030b800420a0 030008002090030f
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff855bcf50 RDI=ffffffff9b0c72a0 RBP=ffffffff9b0c7260 RSP=ffffc900033b6e98
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff3618ea6 R15=dffffc0000000000
RIP=ffffffff855bcf77 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6913000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000011038 CR3=000000000e382000 CR4=00352ef0
DR0=0000000000004e53 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11c7a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11c87
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11c81
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11c95
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11d1b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff90bc11df9
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000002140280
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000001a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000001a 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffffff93f5c4a8 RBX=0000000000042696 RCX=00000000ddcd274a RDX=062f51f9e073b03d
RSI=00000000c1a03ba5 RDI=ffff88803118d398 RBP=ffff88803118c880 RSP=ffffc900046a6fc0
R8 =062f51f9e073b03d R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88803118d370 R13=ffff88803118d398 R14=00000000abd23397 R15=0000000000000000
RIP=ffffffff8198706a RFL=00000806 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fc60d05a6c0 ffffffff 00c00000
GS =0000 ffff8880d6a13000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fc60c172760 CR3=000000004dba7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000100001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcef0b41b0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8ee8611c7a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8ee8611c87
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8ee8611c81
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8ee8611c95
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8ee8611d1b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8ee8611df9
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000