last executing test programs:

4m44.052453143s ago: executing program 3 (id=183):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f00000005c0)=0x2, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000001100), 0x4) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000680)=@deltfilter={0x2c, 0x2d, 0x30, 0x70bd28, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xffff, 0x1}, {0xffff, 0xffe0}, {0xf, 0x4}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffff9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48000}, 0x0) (async, rerun: 64)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 64)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x44004000) (async, rerun: 32)
syz_open_dev$usbfs(&(0x7f0000000040), 0x201, 0x2) (async, rerun: 32)
mmap(&(0x7f00003f6000/0x2000)=nil, 0x2000, 0x1e, 0x11011, r0, 0x5000) (async, rerun: 64)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0xbc}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) (rerun: 64)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x5, 0x4, 0x7, 0x9}, 0x50)
writev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000340)="d9959365ddfd575ddf89ded46288af6436747c0db2c91f90a7d464ea3c9257733d167621f865accb49e9a5c06e338913c03ff27eade59f6d83c270f4ec7c3ea6a9b1f7a8ce08cba4c95c368e18e8a7ef87f9b18faac457ef342abae69386e59041eea4756ccfd8f5a56a45d5e04d3c389283f0bda68655feff27e84c83e966a03e37e2c16f448196b74db39be7474b25de6a0fbe146143e1161631f7987b241a5c", 0xa1}, {&(0x7f0000000740)="809acf74dafb125594da8f088379fe2d8cbc1ce7d265d42836ab9a81fa40b64c1134c7a081edad5728e68d00c68dcbcbf6429d5361188ba910b366350397bb35e30834bd53ae5491efa90cabdd60a131cb93c83a71b2e477baf93542a5c7dae62c03310ec2bf94c3967cfe0b69269add1e4eee5fc3ac0f4268441e45637e8e415728761838a5e03d84dc1ffe80579c146a30f543d1db0e3a0298763f308a437f22542e3ebf0b6e7631a22af76a73cc6cd0f5a92e6c2eacf088bd2caa23146ab6c1177d509dbe905b67c7b4", 0xcb}, {&(0x7f0000000900)="39760a37632bfe9c0b09ae26995fa10d0b4bfcf6e5246e24cf6b7786edc7dbb669ef9391adb09de98db2801c0b90455039d0bbfe3c4d5bd04b28aad85602383db1431d1e0114dd280f9f862374f599197924691aeb1e3e5617cc62363c9c77af17912815a0f905fde13153bd10fcf92b5d491d7a20cbf7fc5813477b2e8846d714226256358354f90aaa60e2f3594aaa4fd730b0d93b0a72a10c6b92e37976350a0881524b372be6d8420fedf232b3fed3be4ba4882d7174065b690002b46d23a72f49eda3c727974cc13c159f68f8e1c7d44347", 0xd4}], 0x3) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0d00000006000000040000000100000000000000", @ANYRES32=r3], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r4}, &(0x7f0000000840), &(0x7f0000000880)=r3}, 0x20) (async, rerun: 32)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000000)={r4, &(0x7f0000000080)}, 0x20) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 64)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="019b1d35eb76c40f13002f"], 0x34}}, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r7}, 0x10)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r8, 0x20, &(0x7f0000000100)={0x0, 0x0, <r9=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r9, 0x4) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xb, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='nilfs2_collection_stage_transition\x00', r10, 0x0, 0x7ffffffffffd}, 0x18)
timer_create(0x2, 0x0, &(0x7f0000000100))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

4m43.991711672s ago: executing program 3 (id=184):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$kcm(0xa, 0x2, 0x3a)
setsockopt$sock_attach_bpf(r1, 0x29, 0x21, &(0x7f0000000100), 0x4)
recvmsg$kcm(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000440)={&(0x7f0000000800)=@in6={0xa, 0x0, 0x0, @mcast2, 0x1a}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000400)="80005b020eaa4da2", 0x8}], 0x1, 0x0, 0x0, 0x900}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000007800)={0x0, 0x0, &(0x7f00000077c0)={&(0x7f0000006580)={0x14, 0x36, 0x51eb40323bf4c37b, 0x70bd2d, 0x25dfdbfd, {0x3}}, 0x14}}, 0x4000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$AUTOFS_IOC_READY(r4, 0x9360, 0xc851)
ioctl$KVM_GET_MP_STATE(r5, 0x8004ae98, &(0x7f0000000000))
r6 = open$dir(&(0x7f0000000000)='.\x00', 0x5df801, 0x24)
ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, &(0x7f0000000240)={0x10001, 0x402000, 0x1000000, 0xfffffffc, 0xc})
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000001340)={0x5c, 0x2, 0x6, 0x401, 0x0, 0x0, {0x5}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xffffe5ab}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}]}, 0x5c}}, 0x0)

4m43.062382954s ago: executing program 3 (id=191):
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x40000000823c2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x50, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x224, 0x52000}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_HWID={0x6, 0x18, 0x5}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}]}}}]}, 0x50}}, 0x8000)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f00000002c0)={&(0x7f0000000280)=[0x0], 0x1})
r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fchdir(r3)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r4, 0x2, 0x0)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
write$RDMA_USER_CM_CMD_ACCEPT(r5, &(0x7f0000000280)={0x8, 0x120, 0xfa00, {0x4, {0x1, 0x81, "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", 0x5, 0x5, 0x3, 0xf, 0x3, 0x4, 0x6, 0x1}}}, 0x128)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)={0x38, r8, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_MASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x38}}, 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x28, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_PLINK_TIMEOUT={0x8, 0x1c, 0x10}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x48041}, 0x40840)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@getnexthop={0x20, 0x76, 0xb0d, 0x4000, 0x0, {0x3}, [@NHA_ID={0x8, 0x1, 0x2}]}, 0x20}}, 0x0)
ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x7f, 0x3, 0x2})
ioctl$DRM_IOCTL_GET_UNIQUE(r4, 0xc0106401, &(0x7f0000000000)={0xea, &(0x7f0000000380)=""/234})
r12 = socket$netlink(0x10, 0x3, 0xb)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x2001)
close_range(r12, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_REQBUFS(r1, 0xc0585609, &(0x7f0000000280)={0x0, 0xa})

4m42.991723108s ago: executing program 3 (id=192):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000001900010000000000000000001c140040"], 0x24}}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x9)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(md5)\x00'}, 0x58)
r3 = accept$alg(r2, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
r4 = accept(r3, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x14, 0x0, 0x800, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40001}, 0x4)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x28a5291, 0x0)
mkdir(0x0, 0x10)
r5 = epoll_create1(0x0)
r6 = epoll_create(0x7)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f00000000c0))
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000001180)={0x80000000})
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x3000005, 0x0)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
listen(r7, 0x4)
listen(r7, 0x5)
setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x1015, 0x1)
umount2(&(0x7f0000000000)='./file0\x00', 0x0)

4m40.891975657s ago: executing program 3 (id=210):
r0 = fsopen(&(0x7f0000000040)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='iocharset', &(0x7f0000000580)='%\x8bR\xafH\xd6e\x11\'\xec\xbb\xcb\xa0/\x1f\x16\xcf\xe2\xb5\xfc\xeb1\x12\xfdC\xb8\xa0\x01\xa3~\x971W\x96\xec\xaf\x1c\x91\xeb\xa8e\xfe\x17\x02xEA\x0f\x14\r\xae\xc1\xfe\x06\x12\beSb{~R\xf0\x06\xfb\x00\x00\xf92\xce\x81p\x1fC\n\x9f(\x00\xc5\x1d\x9c\xccCq\x06\x1b-\f\xc9\xd9+\xa4\x14\xd8\xf4\xef\xf5^\xbb\x06\xc92\x01\xd92\x14\xb8=\x03\x00\xd5M\x04\xf4{H\xd0\xc8v\x10\xe1R \x9a^\xdfqpc\x00\x00\x00\x00\x00\x00&>\x94\x882\x1c_j\x15{ \xf08\xdf\x84\xe64{4\x81\xba\xfc\x93\xf4\xd8\xb5\x04\xcb\x98\xd1QF\xe5\x1b\xb30x/\x86\x02\x1ct\xc7\x88\xd2\xce\xd5\x9e1\xef`\xad\x05\x11\xc9\xd8<\xc6~\x97\xd5\xde\xe3Eh\\\x84\x14\x9e\b\xe1\x9b\x00\'\xe8!\x8c\xc3\x97\x8a\xcf\xfc\x8fe\xa6\x0f\x8b\x912c\x1b>8\xa3=\xab\xf1\xf5\r\xb6\f\xfcS9\xae.\x8b\xf3\xbc,?\xb2\x9aBDPY=r\xfa8I\x16\xa2\x18\xd4\xa5\x8b\xaf\xd1\x8a\xbb\x0e\x15O\xc9p@\xadaw\x84\xc9\xdd\x87a[\xdf\xc2\xa4\xf9@T/', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x50, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0x10, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x4048801)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r1 = io_uring_setup(0x68f6, &(0x7f00000002c0)={0x0, 0x48c7, 0x400, 0x0, 0x100016b})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000300)=0x1, 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_opts(r3, 0x29, 0x4d, 0x0, &(0x7f0000000280))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r4 = socket$netlink(0x10, 0x3, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmmsg(r4, &(0x7f00000002c0), 0x0, 0x24004001)

4m40.672199651s ago: executing program 3 (id=214):
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
fcntl$setsig(r0, 0xa, 0x26)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_SET_SWBIT(r1, 0x4004556d, 0x0)
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
ioctl$VIDIOC_G_TUNER(r2, 0xc054561d, &(0x7f0000000580)={0x2, "54da9edd12dd790e5f7f1da5900007b01a8dd5ce6b375e85dd87502a6c358922", 0x7, 0x20, 0x4, 0x4, 0x2, 0x6, 0x3, 0x7})
write$uinput_user_dev(r1, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x80000000, 0x3, 0x3ff, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0xf5b1, 0xffffffff, 0x10000000, 0x99, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x3], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedc0, 0x0, 0x5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffff8, 0x2, 0x0, 0x22000079, 0x400, 0x0, 0x0, 0x10000, 0x40000, 0x0, 0xc0800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4771], [0x0, 0x7f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffff, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4000, 0x6, 0x8, 0x0, 0x0, 0x0, 0x200000, 0x7ffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x20000004, 0xfffffffd, 0x0, 0x200, 0x80000], [0x2, 0x0, 0x6, 0x8000000, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x3, 0xfffffffc, 0x4, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, 0xfffffffd, 0xfffffffd, 0x0, 0x0, 0x8001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0xffffffff]}, 0x45c)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x5)
ioctl$UI_DEV_CREATE(r1, 0x5501)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x8000, 0x1f7)
r4 = fanotify_init(0x200, 0x0)
fanotify_mark(r4, 0x1, 0x8000026, r3, 0x0)
fanotify_mark(r4, 0x221, 0x40000010, r3, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000980)={'syz1\x00', {0x10, 0x0, 0x7, 0x200}, 0x11, [0x7, 0x8, 0x0, 0x8, 0x6, 0x7, 0x1, 0xf, 0x1, 0x9173, 0x0, 0x7, 0x9, 0x43b, 0x7fffffff, 0x5, 0xfffffff3, 0x3, 0x8, 0x1, 0x7fffffff, 0xbe0, 0x9, 0xa9, 0xfffffff7, 0x57, 0x4, 0xfffeffff, 0x6, 0xc, 0x0, 0x80000001, 0x6, 0x0, 0x3, 0x10, 0x4, 0x8, 0x6, 0x0, 0x1, 0xfffffe2e, 0x80000000, 0xb6, 0x1, 0x0, 0x6, 0xffff98e0, 0x5, 0x9, 0x0, 0x1b, 0x8, 0x3, 0x2, 0x101, 0x25e, 0x40, 0x2, 0x7, 0x3, 0xffff, 0x4000007c, 0xb], [0xfffffff9, 0x7fff, 0x4, 0x83, 0x8, 0xb, 0x7, 0x4, 0x100, 0x9633, 0x7, 0x6, 0xb, 0x6, 0x5, 0x5, 0x5, 0xdf2, 0x4, 0x2000000, 0x4, 0x2e7f, 0x200, 0x7f, 0x10001, 0x397e, 0x7, 0x401, 0x6, 0x6, 0x4dc1, 0x7fffffff, 0x4, 0x7, 0x7, 0x6, 0x9, 0x6, 0x2, 0xd9e8, 0x7fff, 0x8, 0xffff, 0x8, 0x101, 0x80000000, 0xc6, 0x6, 0x10001, 0x5, 0x7fffffff, 0x5, 0xf449, 0x6, 0x9, 0x7, 0x9, 0x2, 0x9, 0x6, 0x1, 0x4, 0x0, 0x101], [0x7, 0x7, 0x1, 0x5, 0xffffffff, 0x12, 0xfffffffc, 0x6, 0x7f, 0x0, 0x3, 0x6, 0x9, 0x0, 0xd44, 0x0, 0x7, 0x7, 0x2, 0x80000000, 0x6, 0x9, 0x8000, 0x1, 0xe10, 0x22d7, 0x9, 0x5, 0x1e74, 0x3, 0x4, 0x7fff, 0x5, 0x5, 0xfffffffb, 0x1, 0x1, 0x10, 0x9fd9, 0x0, 0x2924, 0x7, 0x2, 0x9, 0x4, 0xfffffffe, 0x8, 0x3, 0x40, 0x6da, 0x1, 0x1000, 0x10, 0x8001, 0x8, 0x8001, 0x2, 0x4, 0x7fffffff, 0x1, 0x8, 0x5, 0x80000211, 0x7], [0x0, 0xffffffff, 0x8c, 0x8, 0x400026f, 0x8, 0xfffffffc, 0x6, 0x5e, 0x5, 0x8, 0x200, 0x800005, 0x5, 0x0, 0x600000, 0xb09, 0x9, 0xff, 0x10000, 0x3, 0xffffffff, 0xfffffffe, 0x10, 0x9, 0x5fd, 0x8, 0x200, 0x0, 0x6, 0xb, 0xb, 0x7ff, 0x9, 0x44, 0x0, 0x3, 0x7f, 0x0, 0x0, 0x1, 0x40000008, 0x6cc20710, 0x9, 0x5, 0x1000, 0x3, 0x4, 0x214, 0xc, 0x7, 0xabe5, 0xfffffffa, 0x0, 0x2f, 0x200, 0x0, 0xe1, 0xfffffffe, 0x5, 0xffffffd9, 0xb, 0xe, 0x4]}, 0x45c)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
statx(0xffffffffffffff9c, &(0x7f0000001740)='./cgroup.cpu/cgroup.procs\x00', 0x4000, 0x7ff, &(0x7f00000046c0))
r5 = fsopen(&(0x7f0000000180)='adfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000280)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\bb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xd7\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r6, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r6, &(0x7f00000003c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000540)='\x00', 0x1}], 0x1}}], 0x1, 0x20008050)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r6, 0x84, 0x77, &(0x7f0000000300)={0x0, 0x1}, 0x8)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r7, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[], 0x28}}, 0x40000)

4m40.581490779s ago: executing program 32 (id=214):
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
fcntl$setsig(r0, 0xa, 0x26)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_SET_SWBIT(r1, 0x4004556d, 0x0)
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
ioctl$VIDIOC_G_TUNER(r2, 0xc054561d, &(0x7f0000000580)={0x2, "54da9edd12dd790e5f7f1da5900007b01a8dd5ce6b375e85dd87502a6c358922", 0x7, 0x20, 0x4, 0x4, 0x2, 0x6, 0x3, 0x7})
write$uinput_user_dev(r1, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x80000000, 0x3, 0x3ff, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0xf5b1, 0xffffffff, 0x10000000, 0x99, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x3], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedc0, 0x0, 0x5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffff8, 0x2, 0x0, 0x22000079, 0x400, 0x0, 0x0, 0x10000, 0x40000, 0x0, 0xc0800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4771], [0x0, 0x7f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffff, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4000, 0x6, 0x8, 0x0, 0x0, 0x0, 0x200000, 0x7ffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x20000004, 0xfffffffd, 0x0, 0x200, 0x80000], [0x2, 0x0, 0x6, 0x8000000, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x3, 0xfffffffc, 0x4, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, 0xfffffffd, 0xfffffffd, 0x0, 0x0, 0x8001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0xffffffff]}, 0x45c)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x5)
ioctl$UI_DEV_CREATE(r1, 0x5501)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x8000, 0x1f7)
r4 = fanotify_init(0x200, 0x0)
fanotify_mark(r4, 0x1, 0x8000026, r3, 0x0)
fanotify_mark(r4, 0x221, 0x40000010, r3, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000980)={'syz1\x00', {0x10, 0x0, 0x7, 0x200}, 0x11, [0x7, 0x8, 0x0, 0x8, 0x6, 0x7, 0x1, 0xf, 0x1, 0x9173, 0x0, 0x7, 0x9, 0x43b, 0x7fffffff, 0x5, 0xfffffff3, 0x3, 0x8, 0x1, 0x7fffffff, 0xbe0, 0x9, 0xa9, 0xfffffff7, 0x57, 0x4, 0xfffeffff, 0x6, 0xc, 0x0, 0x80000001, 0x6, 0x0, 0x3, 0x10, 0x4, 0x8, 0x6, 0x0, 0x1, 0xfffffe2e, 0x80000000, 0xb6, 0x1, 0x0, 0x6, 0xffff98e0, 0x5, 0x9, 0x0, 0x1b, 0x8, 0x3, 0x2, 0x101, 0x25e, 0x40, 0x2, 0x7, 0x3, 0xffff, 0x4000007c, 0xb], [0xfffffff9, 0x7fff, 0x4, 0x83, 0x8, 0xb, 0x7, 0x4, 0x100, 0x9633, 0x7, 0x6, 0xb, 0x6, 0x5, 0x5, 0x5, 0xdf2, 0x4, 0x2000000, 0x4, 0x2e7f, 0x200, 0x7f, 0x10001, 0x397e, 0x7, 0x401, 0x6, 0x6, 0x4dc1, 0x7fffffff, 0x4, 0x7, 0x7, 0x6, 0x9, 0x6, 0x2, 0xd9e8, 0x7fff, 0x8, 0xffff, 0x8, 0x101, 0x80000000, 0xc6, 0x6, 0x10001, 0x5, 0x7fffffff, 0x5, 0xf449, 0x6, 0x9, 0x7, 0x9, 0x2, 0x9, 0x6, 0x1, 0x4, 0x0, 0x101], [0x7, 0x7, 0x1, 0x5, 0xffffffff, 0x12, 0xfffffffc, 0x6, 0x7f, 0x0, 0x3, 0x6, 0x9, 0x0, 0xd44, 0x0, 0x7, 0x7, 0x2, 0x80000000, 0x6, 0x9, 0x8000, 0x1, 0xe10, 0x22d7, 0x9, 0x5, 0x1e74, 0x3, 0x4, 0x7fff, 0x5, 0x5, 0xfffffffb, 0x1, 0x1, 0x10, 0x9fd9, 0x0, 0x2924, 0x7, 0x2, 0x9, 0x4, 0xfffffffe, 0x8, 0x3, 0x40, 0x6da, 0x1, 0x1000, 0x10, 0x8001, 0x8, 0x8001, 0x2, 0x4, 0x7fffffff, 0x1, 0x8, 0x5, 0x80000211, 0x7], [0x0, 0xffffffff, 0x8c, 0x8, 0x400026f, 0x8, 0xfffffffc, 0x6, 0x5e, 0x5, 0x8, 0x200, 0x800005, 0x5, 0x0, 0x600000, 0xb09, 0x9, 0xff, 0x10000, 0x3, 0xffffffff, 0xfffffffe, 0x10, 0x9, 0x5fd, 0x8, 0x200, 0x0, 0x6, 0xb, 0xb, 0x7ff, 0x9, 0x44, 0x0, 0x3, 0x7f, 0x0, 0x0, 0x1, 0x40000008, 0x6cc20710, 0x9, 0x5, 0x1000, 0x3, 0x4, 0x214, 0xc, 0x7, 0xabe5, 0xfffffffa, 0x0, 0x2f, 0x200, 0x0, 0xe1, 0xfffffffe, 0x5, 0xffffffd9, 0xb, 0xe, 0x4]}, 0x45c)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
statx(0xffffffffffffff9c, &(0x7f0000001740)='./cgroup.cpu/cgroup.procs\x00', 0x4000, 0x7ff, &(0x7f00000046c0))
r5 = fsopen(&(0x7f0000000180)='adfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000280)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\bb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xd7\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r6, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r6, &(0x7f00000003c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000540)='\x00', 0x1}], 0x1}}], 0x1, 0x20008050)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r6, 0x84, 0x77, &(0x7f0000000300)={0x0, 0x1}, 0x8)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r7, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[], 0x28}}, 0x40000)

3m15.49539653s ago: executing program 4 (id=1210):
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000040c0)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff4070000000000000400000000000e1ff95000000000000002ba76bb3019c1341056bd8174b79603123751c4e345c652fbc1626cca2a2ad75806150ae0209e62751ee00ba19ce670d25010000020000040000009fc40400d2532e764975f03f1cbf9b0a4def23d410f6accd3641110bec4e90a6341965dac05c04683712a0b09ec39e9ef8f6e396ad200a011ea665c45a3449abe802f5ab3e89cf40b858e217ce740068720000074e468eea3fcfcf498278ad15f5f87e1c26433a8acdc0e65888b2007f00000000000000000100000000000000010000000000000053350000000034a70c2ab40c7cf5691db43a5c00000000000000000000e75a89faff01210cce39bf405f1e846c1242000000000040cad326ad7add65873d9f87463ad6f7c2e8ee1a39244960b318778f2a047f6d5bc24fef5d7d01000000520655a8056085f4d431623c850af895abba14f6fbd7fb5e2a431ab9142f3a06d55740a43088696daaed74b9c5c29647d2f950a959cf9938d6df8600a62e96b7cb8e52cbdc2ba9d580609e31c30891e7d87a79d6fce424c2200af6cb784a1975fa657de38a3a32a4fd67ce446adb431d07db79240aca1dd9ba02450500000000000000e645f091231b986e77d05d988d6edc6f9b4eb883ec8f878300cabf2b5543ffc1bdb92618242852e6e8b3e56fefbfff81669557b3809d8c396d2c0361629d1822f722ec23812770d72cd0010000007889b8c7044f563a1f68d4efe895fdbc463f747c08f4010586903500000000000000e800000000000000000000000000000000000000003ddf4aa4b1c8b0a0ae6feb6737c275dc2740f742b5425f1d581961471cdb51f8940290e99ccff4123f955267fe4a75c11448741f064fe7ce7e62ee4df874e086287547d4099aeec9f1538ee25a2a5ccf4a9b604e88e12ff251845d0fff45bdbaeba4d4e3c6f7f623579435b2c505fb711300000000040000000000000000000000004c00e67ccc02148a4fc43021cce9f24f4b2f9492c32e7a92a557ac2b44b84e88bbf7611589906d923e4916f390ab7edcd3f5b9fe14446dd446a52131c464f2c08efb46d934615c8631b7c42efd0294bea179b0433f5c899119ec0c0acef5385c5a2720caeb68f1e9c05b0591d89467ded84da092dea262e51811e2d7fa515722516bd5ef6cfa4966e5937562a5649a1a0000a042a7097ddefe0671a5767014b09b78f977fb145890f5bf41ba92b8c4c8b14f0d4a880ef4518bb32879d326497e21e041254f06bd7f3a067e147e82e841dba3867da8bfbc101d3960e07d282f483e7be49833f3c435f9700bc84680549f9eb16682ecb72277ffaca907a3eac4bfc8e0a47c0076d7cc9d32b3cc96aa751d890881c3c33bd91f6ecf45ab3f12f816318346f9b883427b9190024edc1eddd68f34ce3bfedb5fe5d7beae4d3ca561e37570587783f9673e7ab17f5a09efc1114777d2707d2996961203aedff1c5a87013b98649805216631e20d07dff3ae567ca0d38a828542625fc6096aedc0ac5c144f0965071274bea051007e398cf9090c53d4b8b7dc784e3d83b78b007a43d744aa99d6a7c576e20b4281eff511122ccb399bcef0a0471639c81aab7445cebfc9b00b31fcbaf63086b3c16f51b593acee0b3a4830dd6af1accb15cc6163cabc01442527aa10000000000000000a4ba25997affe74ec552bf9deafbd63e"], &(0x7f0000000140)='GPL\x00'}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='net/snmp6\x00')
read$FUSE(r4, &(0x7f00000004c0)={0x2020}, 0x2020)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r0, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffe5, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0}}, 0x10)

3m14.221292346s ago: executing program 4 (id=1224):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x400246}, &(0x7f0000000340)=<r3=>0x0, &(0x7f00000006c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r2, 0x1, 0x0, 0x0, 0x2})
io_uring_enter(r2, 0x4c6e, 0xc67a, 0xc, 0x0, 0x0)

3m12.310642429s ago: executing program 4 (id=1234):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000780)=ANY=[@ANYBLOB="12010000cf8bed20d90f25004029000000010902120001000000000904"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000580)={0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="201109"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000200)={0x1, 0xd9, 0x7, &(0x7f0000000040)={0x8, "80051fa603b5678bdb1a00db17702fb9a7f77d0404007100000000e400"}})

3m10.840287041s ago: executing program 4 (id=1244):
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

3m10.840005398s ago: executing program 4 (id=1245):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
r4 = syz_io_uring_setup(0x110, &(0x7f0000000480)={0x0, 0xfad6, 0x800, 0x2000000}, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000300)=<r6=>0x0)
r7 = socket$netlink(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r7, 0x10e, 0xb, &(0x7f0000000000)=0x2, 0x4)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCSPGRP(r8, 0x8902, &(0x7f0000000040)=r0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r3})
io_uring_enter(r4, 0xdb4, 0x0, 0x0, 0x0, 0x0)
r9 = semget$private(0x0, 0x5, 0x0)
semctl$SETALL(r9, 0x0, 0x11, &(0x7f0000000100)=[0x4])
semop(r9, &(0x7f00000003c0)=[{}], 0x1)
semop(r9, &(0x7f0000000380)=[{0x2, 0xf4, 0x800}, {0x0, 0x0, 0x1000}], 0x2)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r4, 0x18, &(0x7f0000000000)={0xfeffffff, r3, 0x21, {0x3b4, 0x6cf}, 0x6}, 0x1)

3m10.501737429s ago: executing program 4 (id=1247):
unshare(0x2a020400)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="020000000400000006000000aa0b"], 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f0000000840)=""/258, &(0x7f0000000380), &(0x7f0000000200), 0xa7c, r0, 0x0, 0xfffe}, 0x38)

3m10.477800781s ago: executing program 33 (id=1247):
unshare(0x2a020400)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="020000000400000006000000aa0b"], 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f0000000840)=""/258, &(0x7f0000000380), &(0x7f0000000200), 0xa7c, r0, 0x0, 0xfffe}, 0x38)

3.636508781s ago: executing program 0 (id=3184):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0x80045500, &(0x7f0000000000))
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000400000000000093cd3df700002092b2678d2204e015ce9e5235d1c35969763bc18850ffffc8f79780fd7c641b81efebfc86086b631fa280fa9f1482e100"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r2 = socket(0x1, 0x80000, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000040)={0xf0f014, 0x20009})
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket(0x10, 0x803, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r7, 0x4048aec9, &(0x7f0000000600)={0x6, 0x0, @ioapic={0x0, 0x9fc, 0x0, 0x0, 0x0, [{0x4, 0x8, 0xc7, '\x00', 0x85}, {0x4, 0x4, 0x0, '\x00', 0xc}, {0x0, 0x5, 0xff, '\x00', 0x11}, {0x2, 0xd, 0x1, '\x00', 0x1f}, {0xf, 0xff, 0x2, '\x00', 0x8}, {0x0, 0x3, 0x7, '\x00', 0x78}, {0xb, 0xe, 0x7, '\x00', 0x4e}, {0x5, 0x6, 0x6, '\x00', 0x1}, {0x2, 0x8, 0x40, '\x00', 0x6}, {0xd, 0x1, 0x1, '\x00', 0x2}, {0x83, 0x9, 0xff, '\x00', 0x9d}, {0x6, 0x1, 0x2, '\x00', 0x82}, {0x5, 0x6, 0x3b, '\x00', 0x2}, {0x7, 0x10, 0xc, '\x00', 0x9}, {0xfe, 0xb, 0x1, '\x00', 0x3}, {0xe, 0x5, 0x4}, {0x14, 0x2, 0x7, '\x00', 0xc}, {0x4, 0x0, 0x2, '\x00', 0x42}, {0xf2, 0x6, 0x8e, '\x00', 0x81}, {0x81, 0x0, 0x12, '\x00', 0x7}, {0x2, 0x8, 0x19, '\x00', 0x83}, {0x6, 0x46, 0x9b, '\x00', 0x4}, {0x7f, 0x3, 0x7d, '\x00', 0xd3}, {0x0, 0x8, 0x3a, '\x00', 0x5}]}})
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001400b59500000000000000000a000000", @ANYRES32=r4, @ANYBLOB="2d0021cc0000000500000000000068f4e0512710050000"], 0x34}}, 0x24008800)
bind$unix(r5, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000000380)=""/201)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000003700)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c\x00'}, 0x58)
r9 = accept4(r8, 0x0, 0x0, 0x0)
sendto$inet(r9, &(0x7f0000000780)="c0", 0x1, 0x24008001, 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f0000000080)='nfs\x00', 0x0, &(0x7f00000001c0)='\x05\x00\x00\x00\x04\xb0\xfe\x98\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\xc77<r\xe9\x9cD\xb0\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3wA\xf6`>\x8b')
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r7, 0x40047211, &(0x7f0000000480)=0x20)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32=0x1, @ANYRES32=r1, @ANYBLOB='/\x00\x00\x00\b'], 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[], 0x20)
r10 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
r11 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r11, 0xc008561c, &(0x7f0000000040)={0x980903, 0x4})
ioctl$VHOST_SET_VRING_BASE(r10, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_KICK(r10, 0x4008af20, &(0x7f0000000040)={0x1, r10})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="4c0000001000010029bd7000ffdb969e00000000", @ANYRES32=0x0, @ANYBLOB="4db20200201a0100140003006e657464657673696d3000000000000018001680140001801000020006000000450d000008000000"], 0x4c}, 0x1, 0x0, 0x0, 0xc1}, 0x0)

3.439785027s ago: executing program 0 (id=3187):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, 0x0, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)

3.438729337s ago: executing program 0 (id=3188):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x54, 0x10, 0x609, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x88aefe86, 0x40000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_ADDRESS={0xa, 0x1, @remote}, @IFLA_XDP={0x4}]}, 0x54}}, 0x0)
r6 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r6, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x60, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003601008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r7], 0x5c}}, 0x40)

2.032100856s ago: executing program 0 (id=3189):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r6, {0x0, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
close(r7)
socket$unix(0x1, 0x2, 0x0)
r8 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r8, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r8, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0xc}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf", 0x22}, {&(0x7f0000000c00)="4307ed2e", 0x4}], 0x2}, 0x4)

2.031225737s ago: executing program 1 (id=3190):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c020000020000000800", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="610508800305f00702080428e3969d3ed97fd220a2db0e2d5b5545935cbacb55f94fdb6eccec95f4c7a84fbbb10347e02e82725ae3cbf5f9b97f0608289d964d91a50c14f5acf7057ba5da7211f50af2d6f41f7dc692debc174dc30ce19d01fbc7"], 0x61)

1.967274825s ago: executing program 5 (id=3191):
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0x6)

1.959538513s ago: executing program 0 (id=3193):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000100), 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x215eb000)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$inet6(0x10, 0x3, 0x30008)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d"], 0xfe33)
sendto$inet6(r3, 0x0, 0x0, 0x800, 0x0, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000000c0)={0x38, r5, 0x1, 0xffffffff, 0x0, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8}}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fff}]}, 0x38}}, 0x20000000)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, r2, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040090}, 0xc0)

1.899424267s ago: executing program 5 (id=3194):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
write$FUSE_ATTR(r0, &(0x7f0000000400)={0x78, 0xfffffffffffffff5, 0x0, {0x9, 0x7175, 0x0, {0x6, 0x6, 0x7f, 0x0, 0xb, 0x4, 0x2, 0x8000, 0x7, 0x4000, 0x4f2b44c9, 0x0, 0x0, 0x5, 0xb0277700}}}, 0x78)
semget$private(0x0, 0x1, 0x110)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100), 0x40002, 0x0)
ioctl$RFKILL_IOCTL_NOINPUT(r1, 0x5202)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$pmem0(0xffffff9c, &(0x7f00000000c0), 0x165101, 0x0)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r5 = socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
r6 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x80400, 0x0)
preadv(r6, &(0x7f0000002bc0)=[{&(0x7f0000002a40)=""/172, 0xac}], 0x1, 0x9d, 0x80)
bind$alg(r5, &(0x7f00000004c0)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha1)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0)
r7 = accept4(r5, 0x0, 0x0, 0x80800)
sendmmsg$unix(r7, &(0x7f000000c880)=[{{0x0, 0x0, &(0x7f0000000800), 0x1, 0x0, 0x0, 0x20008848}}], 0x1, 0xc000)
sendmsg$L2TP_CMD_SESSION_DELETE(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x3fff57039d436b9}, 0x8000840)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r8, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x8000000}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r8, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4)
r9 = syz_io_uring_setup(0x22b, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x0, 0x100002cf}, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000040)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r9, 0x7a98, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nbd(&(0x7f0000000080), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

1.899220657s ago: executing program 1 (id=3195):
socket(0x3, 0x2, 0x1)
socket$packet(0x11, 0x2, 0x300)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000004c0))
syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4840, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$nl_audit(0x10, 0x3, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x148640, 0x151)
pipe2$9p(&(0x7f0000000380)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80080)
dup(r1)
socket(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x8)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x10, 0x2})
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff}, 0x111, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {r4, 0x1, 0x30, 0x30, 0x0, @in6={0x1b, 0x4000, 0x0, @loopback, 0x10000bff}, @ib={0x1b, 0xd9, 0x100fff, {"4a50abf0c8ed50f638facd57de629163"}, 0x8000000000000001, 0x2, 0x3}}}, 0x118)
write$RDMA_USER_CM_CMD_LISTEN(r3, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r4, 0x2}}, 0xf)
close_range(r3, r3, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="f881d37f98b7594eafb73aa18f4ac9d2ad13a38bcd94b38049f7faac1a784968b56740285f791b15104fbdb13a03bece622b8a154d868ad6d0a055504e2f4546de19728ae3e70d1fac3928113d94e7b6194cae1ef1", @ANYRES8=r2], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x8885)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)

1.810061069s ago: executing program 1 (id=3196):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000400)={0x0, &(0x7f0000000140)=[<r1=>0x0], &(0x7f0000000180)=[<r2=>0x0], 0x0, 0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f00000002c0)={0x0, 0x0, r1, 0x0, 0x80, 0x5, 0x9, 0x0, {0x9, 0x1000, 0x101c, 0x10, 0x4, 0x401, 0x100, 0xa, 0x0, 0x52, 0x43, 0x7e9, 0x401, 0x9aa5, "cb630dab3a0338057401a192419598961f50dc45c87d55a52a28b8f01c0e0e7a"}})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000003c0)={&(0x7f0000000280)=[r1, r2], 0x2, 0x0, 0x0, <r3=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_SETCRTC(r3, 0xc06864a2, &(0x7f0000000340)={0x0, 0x0, r1, 0x0, 0x0, 0x0, 0xffffffff, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x0, "b1eddb851ba62b00d8730000000000000000000800"}}) (fail_nth: 1)

1.705261179s ago: executing program 5 (id=3197):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x54, 0x10, 0x609, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x88aefe86, 0x40000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_ADDRESS={0xa, 0x1, @remote}, @IFLA_XDP={0x4}]}, 0x54}}, 0x0)
r6 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r6, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x60, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003601008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r7], 0x5c}}, 0x40)

1.704585293s ago: executing program 1 (id=3198):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)={0x50, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x40}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_PROTO={0x5, 0x7, 0xff}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xe0004000}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

1.704146114s ago: executing program 5 (id=3199):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="c40000001900674c2cbd70000000000000000000000000000000000000000000ac1eff0100000000000000000000000000000000000000000a0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0100000000000000000000000000000000000020000000000000000000000000000000000000000000008000000000000000000000000000fcffffffffffffff0000000000000000b0ac00000000000000000000000000000000000000000000000400000000000000000002000000000a00100001"], 0xc4}}, 0x4c050)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="034886dd010000000000140000006000000003082f00fe88a43de1a400000000000000007d01ff020000000000000000000000000001"], 0xfdef)

1.702854302s ago: executing program 1 (id=3200):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r4, 0x0, 0x80)
close(r3)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x5c, 0x2c, 0xd3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0xb, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x1}, {0x5, 0x40}}}]}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r9, 0x13e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000600)="03", 0x1}], 0x1}, 0x4)

1.609790795s ago: executing program 0 (id=3201):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x54, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0xb, 0x4}, {}, {0x7, 0xfff1}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x7, 0x2, 0x6}, {0xffff, 0x0, 0x1}}}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x20041090}, 0x8000)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r8)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$kcm(r4, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r9, 0x18}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000340)="03", 0x1}], 0x1}, 0x4)

1.609439221s ago: executing program 2 (id=3202):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, 0x0, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)

1.609078916s ago: executing program 2 (id=3203):
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0x6)

1.528868341s ago: executing program 2 (id=3204):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c020000020000000800", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="610508800305f00702080428e3969d3ed97fd220a2db0e2d5b5545935cbacb55f94fdb6eccec95f4c7a84fbbb10347e02e82725ae3cbf5f9b97f0608289d964d91a50c14f5acf7057ba5da7211f50af2d6f41f7dc692debc174dc30ce19d01fbc7"], 0x61)

1.528253669s ago: executing program 5 (id=3205):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000980)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000400)='io_uring_cqe_overflow\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0x5078, &(0x7f0000000300)={0x0, 0xe58, 0x10100, 0xfffffffc, 0xffffffff}, &(0x7f0000000280), &(0x7f0000000000))
io_uring_enter(r1, 0xb15, 0xffffbffe, 0x8, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000300000001000000000000010000000000000000000000000000000105000000100000000000000000000003000000000100000002"], 0x0, 0x53}, 0x20)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_DEL_KEY(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x20, r4, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_KEY_DEFAULT_TYPES={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000820}, 0x10880)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000000)={'wg0\x00', {0x2, 0x4e22, @broadcast}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x2}, 0x94)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x2000)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r6, 0xc4c85513, &(0x7f0000002600)={{0x2, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x400000, 0x0, 0x100000001, 0x3, 0x0, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0xc6c, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x81, 0x1, 0x0, 0xfffffffffffffffd, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x7b, 0x1, 0x0, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x9, 0x0, 0x1, 0x4, 0x0, 0x2, 0x0, 0x3, 0x800000000000000, 0x0, 0x8, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x3, 0x9, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]})
r7 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000029305438b1a0b8f6", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0xe, 0x6, &(0x7f00000006c0)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r7}}, @exit], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r8, 0x58}, 0x10)

1.409796205s ago: executing program 2 (id=3206):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)={0x50, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x40}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_PROTO={0x5, 0x7, 0xff}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xe0004000}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80) (fail_nth: 1)

1.288882431s ago: executing program 2 (id=3207):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x64, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x2e, 0xe, {{{}, {0x7ffd}, @broadcast, @broadcast}, 0x0, @random=0x7, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x3c, 0x4, {0x1, 0x6, 0xae, 0xe0}}, @void, @void, @void, @void}}, @NL80211_ATTR_BEACON_TAIL={0x7, 0xf, [@random={0xff, 0x1, 'f'}]}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x7f}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)={0x50, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x50}}, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r6, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x40}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_PROTO={0x5, 0x7, 0xff}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xe0004000}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

69.848141ms ago: executing program 5 (id=3208):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x54, 0x10, 0x609, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x88aefe86, 0x40000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_ADDRESS={0xa, 0x1, @remote}, @IFLA_XDP={0x4}]}, 0x54}}, 0x0)
r6 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r6, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x60, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003601008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r7], 0x5c}}, 0x40)

69.541869ms ago: executing program 2 (id=3209):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000100), 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x215eb000)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$inet6(0x10, 0x3, 0x30008)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d"], 0xfe33)
sendto$inet6(r3, 0x0, 0x0, 0x800, 0x0, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000000c0)={0x38, r5, 0x1, 0xffffffff, 0x0, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8}}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fff}]}, 0x38}}, 0x20000000)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, r2, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040090}, 0xc0)

0s ago: executing program 1 (id=3210):
clock_gettime(0x7, &(0x7f00000003c0))
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="ad43000000003aaa1d7a13"], 0x14}}, 0x10)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000140)=0xfffffffffffffffe, 0xb, 0x3)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x1c)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000400)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x4, 0x38, 0x80, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x6, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x67, 0x0, 0x0, 0x89, 0x0, @loopback, @multicast2}, "00186371ae9b1c03"}}}}}, 0x0)

kernel console output (not intermixed with test programs):

: avc:  denied  { write } for  pid=9286 comm="syz.1.1005" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  138.970353][   T40] audit: type=1400 audit(1767607396.829:47856): avc:  denied  { read } for  pid=9286 comm="syz.1.1005" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  139.770636][   T53] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  140.035346][   T53] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  140.039208][   T53] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.050518][   T53] usb 9-1: Product: syz
[  140.052746][   T53] usb 9-1: Manufacturer: syz
[  140.054905][   T53] usb 9-1: SerialNumber: syz
[  140.073010][   T53] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  140.092211][ T6034] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  140.516906][ T9298] random: crng reseeded on system resumption
[  140.525944][ T9298] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1010'.
[  140.699698][   T29] usb 9-1: USB disconnect, device number 7
[  141.121377][   T13] Bluetooth: (null): Invalid header checksum
[  141.269974][ T6034] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[  141.285200][ T6034] ath9k_htc: Failed to initialize the device
[  141.287496][   T29] usb 9-1: ath9k_htc: USB layer deinitialized
[  141.531460][ T9298] syz.4.1010 (9298) used greatest stack depth: 17976 bytes left
[  143.603045][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  143.603058][   T40] audit: type=1400 audit(1767607401.469:47864): avc:  denied  { remount } for  pid=9362 comm="syz.1.1033" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  144.938436][   T40] audit: type=1400 audit(1767607402.799:47865): avc:  denied  { create } for  pid=9394 comm="syz.0.1045" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  145.234008][   T40] audit: type=1804 audit(1767607403.089:47866): pid=9402 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.2.1047" name="bus" dev="ramfs" ino=27125 res=1 errno=0
[  145.823034][   T40] audit: type=1400 audit(1767607403.689:47867): avc:  denied  { create } for  pid=9410 comm="syz.4.1052" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  146.110225][  T850] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  146.271759][  T850] usb 9-1: Using ep0 maxpacket: 16
[  146.275905][  T850] usb 9-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[  146.283036][  T850] usb 9-1: config 0 interface 0 has no altsetting 0
[  146.285333][  T850] usb 9-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  146.288459][  T850] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.292699][  T850] usb 9-1: config 0 descriptor??
[  146.304094][  T850] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  146.508414][  T829] usb 9-1: USB disconnect, device number 8
[  147.165784][ T9460] tipc: Started in network mode
[  147.167936][ T9460] tipc: Node identity 6662e20fd198, cluster identity 4711
[  147.174718][ T9460] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  147.272031][ T9460] syzkaller0: entered promiscuous mode
[  147.274684][ T9460] syzkaller0: entered allmulticast mode
[  147.283072][ T9460] tipc: Resetting bearer <eth:syzkaller0>
[  147.287279][ T9465] program syz.4.1073 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  147.925354][ T9459] tipc: Resetting bearer <eth:syzkaller0>
[  149.321694][ T9505] xt_hashlimit: size too large, truncated to 1048576
[  149.895900][ T9459] tipc: Disabling bearer <eth:syzkaller0>
[  150.097047][   T29] tipc: Node number set to 3086672399
[  150.102760][ T9491] bpq0: left promiscuous mode
[  150.104465][ T9491] bpq0: left allmulticast mode
[  150.179422][ T9506] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.182191][ T9506] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.252531][ T9506] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  150.258686][ T9506] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  150.519912][ T9511] 8021q: adding VLAN 0 to HW filter on device batadv1
[  150.724154][ T1147] netdevsim netdevsim4 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  150.726870][ T1147] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.729627][ T1147] netdevsim netdevsim4 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  150.738872][ T1147] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.743988][ T1147] netdevsim netdevsim4 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  150.746615][ T1147] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.749237][ T1147] netdevsim netdevsim4 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  150.760156][ T1147] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.839535][ T6034] IPVS: starting estimator thread 0...
[  150.866229][ T9538] netlink: 87 bytes leftover after parsing attributes in process `syz.2.1099'.
[  151.100912][ T9536] IPVS: using max 45 ests per chain, 108000 per kthread
[  153.181283][   T40] audit: type=1400 audit(1767607411.049:47868): avc:  denied  { ioctl } for  pid=9572 comm="syz.2.1113" path="socket:[24570]" dev="sockfs" ino=24570 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  153.834699][ T9592] : entered promiscuous mode
[  153.975992][ T9596] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1120'.
[  153.978981][ T9596] bridge0: entered promiscuous mode
[  154.016225][   T40] audit: type=1326 audit(1767607411.879:47869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9597 comm="syz.2.1121" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  154.026541][   T40] audit: type=1326 audit(1767607411.879:47870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9597 comm="syz.2.1121" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  154.034274][   T40] audit: type=1326 audit(1767607411.879:47871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9597 comm="syz.2.1121" exe="/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  154.041469][   T40] audit: type=1326 audit(1767607411.879:47872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9597 comm="syz.2.1121" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  154.049332][   T40] audit: type=1326 audit(1767607411.879:47873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9597 comm="syz.2.1121" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  154.515679][ T9631] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1135'.
[  154.890437][ T9654] loop4: detected capacity change from 0 to 8
[  155.058099][ T9654] Dev loop4: unable to read RDB block 8
[  155.060791][ T9654]  loop4: unable to read partition table
[  155.062707][ T9654] loop4: partition table beyond EOD, truncated
[  155.064787][ T9654] loop_reread_partitions: partition scan of loop4 (úùƒå¡™‰ü�¾SêjÌ–ã¢P=ý?ã}X‹ºÐ	œëÜ%õ«`ÉæÖ€ù…ˆŠ5) failed (rc=-5)
[  155.073731][   T40] audit: type=1400 audit(1767607412.939:47874): avc:  denied  { write } for  pid=9658 comm="syz.2.1147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  155.510320][ T5344] Dev loop4: unable to read RDB block 8
[  155.512131][ T5344]  loop4: unable to read partition table
[  155.514093][ T5344] loop4: partition table beyond EOD, truncated
[  157.029117][ T9702] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1162'.
[  157.168563][ T9707] lo speed is unknown, defaulting to 1000
[  160.296718][   T40] audit: type=1400 audit(1767607418.159:47875): avc:  denied  { watch } for  pid=9735 comm="syz.2.1171" path="/349/bus" dev="tmpfs" ino=1845 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  160.311081][   T40] audit: type=1400 audit(1767607418.159:47876): avc:  denied  { watch_sb } for  pid=9735 comm="syz.2.1171" path="/349/bus" dev="tmpfs" ino=1845 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  160.550582][   T40] audit: type=1400 audit(1767607418.419:47877): avc:  denied  { lock } for  pid=9748 comm="syz.2.1177" path="socket:[28733]" dev="sockfs" ino=28733 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  161.540823][ T9792] vivid-000: =================  START STATUS  =================
[  161.544288][ T9792] vivid-000: Enable Output Cropping: true
[  161.546659][ T9792] vivid-000: Enable Output Composing: true
[  161.549123][ T9792] vivid-000: Enable Output Scaler: true
[  161.553374][ T9792] vivid-000: Tx RGB Quantization Range: Automatic
[  161.556201][ T9792] vivid-000: Transmit Mode: HDMI
[  161.558547][ T9792] vivid-000: Hotplug Present: 0x00000000
[  161.560738][ T9792] vivid-000: RxSense Present: 0x00000000
[  161.563008][ T9792] vivid-000: EDID Present: 0x00000000
[  161.565200][ T9792] vivid-000: ==================  END STATUS  ==================
[  162.678241][ T9817] netlink: 'syz.1.1202': attribute type 1 has an invalid length.
[  162.780946][ T9824] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1203'.
[  162.784588][ T9821] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1204'.
[  163.879612][   T40] audit: type=1400 audit(1767607421.739:47878): avc:  denied  { read } for  pid=9831 comm="syz.2.1205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  164.436359][ T9849] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1211'.
[  164.561721][   T40] audit: type=1400 audit(1767607422.429:47879): avc:  denied  { connect } for  pid=9858 comm="syz.0.1216" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  165.050377][   T40] audit: type=1400 audit(1767607422.709:47880): avc:  denied  { write } for  pid=9868 comm="syz.1.1220" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  165.573978][ T9910] dvmrp0: entered allmulticast mode
[  165.922268][  T850] libceph: connect (1)[c::]:6789 error -101
[  165.925094][  T850] libceph: mon0 (1)[c::]:6789 connect error
[  165.974220][  T850] libceph: connect (1)[c::]:6789 error -101
[  165.976572][  T850] libceph: mon0 (1)[c::]:6789 connect error
[  166.184250][  T850] libceph: connect (1)[c::]:6789 error -101
[  166.186621][  T850] libceph: mon0 (1)[c::]:6789 connect error
[  166.231694][  T850] libceph: connect (1)[c::]:6789 error -101
[  166.234029][  T850] libceph: mon0 (1)[c::]:6789 connect error
[  166.547214][ T9928] ceph: No mds server is up or the cluster is laggy
[  166.550016][ T9933] ceph: No mds server is up or the cluster is laggy
[  166.900865][   T40] audit: type=1400 audit(1767607423.869:47881): avc:  denied  { bind } for  pid=9923 comm="syz.0.1228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  167.530232][  T829] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  167.680657][  T829] usb 9-1: Using ep0 maxpacket: 32
[  167.684477][  T829] usb 9-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  167.687796][  T829] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.691665][  T829] usb 9-1: config 0 descriptor??
[  167.896728][  T829] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  167.900804][  T829] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  167.905512][  T829] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  167.909171][  T829] usb 9-1: media controller created
[  167.920915][  T829] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  168.098110][  T829] az6027: usb out operation failed. (-71)
[  168.100612][  T829] az6027: usb out operation failed. (-71)
[  168.102403][  T829] stb0899_attach: Driver disabled by Kconfig
[  168.104318][  T829] az6027: no front-end attached
[  168.104318][  T829] 
[  168.106858][  T829] az6027: usb out operation failed. (-71)
[  168.108714][  T829] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  168.113922][  T829] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb9/9-1/input/input13
[  168.118711][  T829] dvb-usb: schedule remote query interval to 400 msecs.
[  168.121458][  T829] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  168.125598][  T829] usb 9-1: USB disconnect, device number 9
[  168.142047][  T829] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  168.200290][   T55] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  168.360162][   T55] usb 5-1: Using ep0 maxpacket: 32
[  168.363624][   T55] usb 5-1: unable to get BOS descriptor or descriptor too short
[  168.367008][   T55] usb 5-1: config 14 has an invalid interface number: 115 but max is 0
[  168.369617][   T55] usb 5-1: config 14 has an invalid descriptor of length 0, skipping remainder of the config
[  168.373514][   T55] usb 5-1: config 14 has no interface number 0
[  168.375573][   T55] usb 5-1: config 14 interface 115 has no altsetting 0
[  168.379670][   T55] usb 5-1: New USB device found, idVendor=04e2, idProduct=1420, bcdDevice= 2.73
[  168.382609][   T55] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.385135][   T55] usb 5-1: Product: syz
[  168.386495][   T55] usb 5-1: Manufacturer: syz
[  168.388107][   T55] usb 5-1: SerialNumber: syz
[  168.770526][T10001] lo speed is unknown, defaulting to 1000
[  168.772484][T10001] lo speed is unknown, defaulting to 1000
[  168.774805][T10001] lo speed is unknown, defaulting to 1000
[  168.782909][T10001] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  168.795595][T10001] lo speed is unknown, defaulting to 1000
[  168.799517][T10001] lo speed is unknown, defaulting to 1000
[  168.802341][T10001] lo speed is unknown, defaulting to 1000
[  168.805092][T10001] lo speed is unknown, defaulting to 1000
[  169.084649][T10006] gtp0: entered promiscuous mode
[  169.089459][ T5953] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  169.095285][ T5953] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  169.101696][ T5953] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  169.106648][ T5953] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  169.109810][ T5953] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  169.156634][T10007] lo speed is unknown, defaulting to 1000
[  169.164594][T10007] lo speed is unknown, defaulting to 1000
[  169.317038][ T8197] bridge_slave_1: left allmulticast mode
[  169.319233][ T8197] bridge_slave_1: left promiscuous mode
[  169.321628][ T8197] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.326964][ T8197] bridge_slave_0: left allmulticast mode
[  169.329773][ T8197] bridge_slave_0: left promiscuous mode
[  169.332680][ T8197] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.929674][ T8197] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  169.936592][ T8197] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  169.941838][ T8197] bond0 (unregistering): Released all slaves
[  170.035919][ T8197] bond1 (unregistering): Released all slaves
[  170.117640][T10007] chnl_net:caif_netlink_parms(): no params data found
[  170.219846][T10007] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.223960][T10007] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.226265][T10007] bridge_slave_0: entered allmulticast mode
[  170.228925][T10007] bridge_slave_0: entered promiscuous mode
[  170.245815][T10007] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.248162][T10007] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.252079][T10007] bridge_slave_1: entered allmulticast mode
[  170.254919][T10007] bridge_slave_1: entered promiscuous mode
[  170.272228][T10007] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  170.279475][T10007] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  170.286521][T10040] syzkaller1: entered promiscuous mode
[  170.289583][T10040] syzkaller1: entered allmulticast mode
[  170.335049][T10007] team0: Port device team_slave_0 added
[  170.343295][T10007] team0: Port device team_slave_1 added
[  170.374147][T10007] batman_adv: batadv0: Adding interface: batadv_slave_0
[  170.376545][T10007] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  170.386057][T10007] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  170.392188][T10007] batman_adv: batadv0: Adding interface: batadv_slave_1
[  170.395039][T10007] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  170.406017][T10007] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  170.523714][   T40] audit: type=1400 audit(1767607428.389:47882): avc:  denied  { read } for  pid=10042 comm="syz.1.1258" dev="nsfs" ino=4026532897 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  171.063605][   T40] audit: type=1400 audit(1767607428.389:47883): avc:  denied  { open } for  pid=10042 comm="syz.1.1258" path="net:[4026532897]" dev="nsfs" ino=4026532897 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  171.170412][ T5952] Bluetooth: hci2: command tx timeout
[  171.312011][T10007] hsr_slave_0: entered promiscuous mode
[  171.314476][T10007] hsr_slave_1: entered promiscuous mode
[  171.350978][   T55] xr_serial 5-1:14.115: More than one union descriptor, skipping ...
[  171.393574][T10052] tipc: New replicast peer: 255.255.255.255
[  171.396869][T10052] tipc: Enabled bearer <udp:s>, priority 10
[  171.406306][   T55] usb 5-1: USB disconnect, device number 10
[  171.472965][ T8197] hsr_slave_0: left promiscuous mode
[  171.475359][ T8197] hsr_slave_1: left promiscuous mode
[  171.477654][ T8197] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.481946][ T8197] batman_adv: batadv0: Removing interface: batadv_slave_1
[  172.469282][ T8197] team0 (unregistering): Port device team_slave_1 removed
[  172.493327][ T8197] team0 (unregistering): Port device team_slave_0 removed
[  173.071621][T10061] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  173.073935][T10061] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  173.077132][T10061] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  173.103508][T10061] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  173.135764][T10007] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  173.178075][T10007] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  173.193973][T10007] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  173.203714][T10007] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  173.909380][T10007] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.979456][T10007] 8021q: adding VLAN 0 to HW filter on device team0
[  174.035059][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.037424][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[  174.082857][ T8198] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.085153][ T8198] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.559401][T10007] 8021q: adding VLAN 0 to HW filter on device batadv0
[  174.744447][T10007] veth0_vlan: entered promiscuous mode
[  174.763473][T10007] veth1_vlan: entered promiscuous mode
[  174.797962][T10007] veth0_macvtap: entered promiscuous mode
[  174.804149][T10007] veth1_macvtap: entered promiscuous mode
[  174.815285][T10007] batman_adv: batadv0: Interface activated: batadv_slave_0
[  174.824337][T10007] batman_adv: batadv0: Interface activated: batadv_slave_1
[  174.838142][T10121] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  174.843391][T10121] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  174.849265][   T13] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.856159][   T13] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.858934][   T13] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.875431][   T13] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.963399][ T8206] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.963689][ T1195] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.966118][ T8206] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  175.000833][ T1195] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  175.081648][ T5952] Bluetooth: hci2: command 0x040f tx timeout
[  175.081667][ T5953] Bluetooth: hci3: command 0x2016 tx timeout
[  175.498027][   T40] audit: type=1400 audit(1767607433.359:47884): avc:  denied  { append } for  pid=10196 comm="syz.5.1280" name="video36" dev="devtmpfs" ino=1067 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  175.498435][T10192] Bluetooth: hci0: invalid length 0, exp 2 for type 25
[  175.836100][T10211] openvswitch: netlink: Flow key attr not present in new flow.
[  176.777929][T10258] netlink: 'syz.2.1304': attribute type 1 has an invalid length.
[  176.860605][T10262] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1307'.
[  176.864070][T10262] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1307'.
[  176.867746][T10262] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1307'.
[  177.160508][ T5952] Bluetooth: hci2: command 0x040f tx timeout
[  178.442866][   T10] libceph: connect (1)[c::]:6789 error -101
[  178.445024][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  178.527373][T10291] ceph: No mds server is up or the cluster is laggy
[  179.240460][ T5952] Bluetooth: hci2: command 0x040f tx timeout
[  179.792884][T10329] syzkaller1: entered promiscuous mode
[  179.795720][T10329] syzkaller1: entered allmulticast mode
[  179.872352][   T40] audit: type=1400 audit(1767607437.739:47885): avc:  denied  { shutdown } for  pid=10326 comm="syz.1.1328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  180.152109][T10343] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  180.559556][T10363] netlink: 340 bytes leftover after parsing attributes in process `syz.0.1338'.
[  180.875551][   T40] audit: type=1400 audit(1767607438.739:47886): avc:  denied  { create } for  pid=10367 comm="syz.1.1340" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  180.884627][   T40] audit: type=1400 audit(1767607438.739:47887): avc:  denied  { connect } for  pid=10367 comm="syz.1.1340" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  181.320251][ T5952] Bluetooth: hci2: command 0x040f tx timeout
[  181.571026][T10390] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1344'.
[  181.618701][   T40] audit: type=1400 audit(1767607439.479:47888): avc:  denied  { map } for  pid=10392 comm="syz.0.1351" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  181.626738][   T40] audit: type=1400 audit(1767607439.479:47889): avc:  denied  { execute } for  pid=10392 comm="syz.0.1351" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  183.400238][ T5952] Bluetooth: hci2: command 0x040f tx timeout
[  183.508714][T10432] overlayfs: failed to resolve './file0': -2
[  184.283380][   T40] audit: type=1400 audit(1767607442.149:47890): avc:  denied  { name_bind } for  pid=10448 comm="syz.1.1370" src=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[  185.665276][   T40] audit: type=1400 audit(1767607443.529:47891): avc:  denied  { setopt } for  pid=10471 comm="syz.2.1378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  187.837281][   T40] audit: type=1326 audit(1767607445.699:47892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  187.844971][   T40] audit: type=1326 audit(1767607445.719:47893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  187.852825][   T40] audit: type=1326 audit(1767607445.719:47894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  187.860870][   T40] audit: type=1326 audit(1767607445.719:47895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  187.868293][   T40] audit: type=1326 audit(1767607445.719:47896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  187.876299][   T40] audit: type=1400 audit(1767607445.719:47897): avc:  denied  { mount } for  pid=10507 comm="syz.2.1392" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  187.884802][   T40] audit: type=1326 audit(1767607445.719:47898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  187.900383][   T40] audit: type=1326 audit(1767607445.719:47899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  187.912232][   T40] audit: type=1326 audit(1767607445.719:47900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  187.923240][   T40] audit: type=1326 audit(1767607445.719:47901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10507 comm="syz.2.1392" exe="/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f9f70d8f7c9 code=0x7ffc0000
[  188.667655][T10528] input: syz1 as /devices/virtual/input/input15
[  188.780341][T10528] input: syz1 as /devices/virtual/input/input16
[  195.250969][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  195.250982][   T40] audit: type=1400 audit(1767607453.119:47907): avc:  denied  { bind } for  pid=10629 comm="syz.0.1431" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  196.509981][T10668] loop5: detected capacity change from 0 to 7
[  196.516636][T10668] Dev loop5: unable to read RDB block 7
[  196.518538][T10668]  loop5: unable to read partition table
[  196.522590][T10668] loop5: partition table beyond EOD, truncated
[  196.524911][T10668] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  197.402124][T10680] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1448'.
[  197.443137][T10680] netlink: 'syz.2.1448': attribute type 14 has an invalid length.
[  197.483743][T10680] netlink: 'syz.2.1448': attribute type 18 has an invalid length.
[  199.723016][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  199.725167][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  200.006758][T10731] netlink: 'syz.0.1468': attribute type 3 has an invalid length.
[  200.009329][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.014823][T10731] netlink: 'syz.0.1468': attribute type 3 has an invalid length.
[  200.017350][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.023931][T10731] netlink: 'syz.0.1468': attribute type 3 has an invalid length.
[  200.026428][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.031084][T10731] netlink: 'syz.0.1468': attribute type 3 has an invalid length.
[  200.033683][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.038369][T10731] netlink: 'syz.0.1468': attribute type 3 has an invalid length.
[  200.050229][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.062323][T10731] netlink: 'syz.0.1468': attribute type 3 has an invalid length.
[  200.070476][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.076054][T10731] netlink: 'syz.0.1468': attribute type 3 has an invalid length.
[  200.080591][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.089130][T10731] netlink: 'syz.0.1468': attribute type 3 has an invalid length.
[  200.093682][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.100519][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'.
[  200.184855][   T40] audit: type=1326 audit(1767607458.049:47908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.196400][   T40] audit: type=1326 audit(1767607458.049:47909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.204179][   T40] audit: type=1326 audit(1767607458.049:47910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.211908][   T40] audit: type=1326 audit(1767607458.049:47911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.219167][   T40] audit: type=1326 audit(1767607458.049:47912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.227563][   T40] audit: type=1326 audit(1767607458.049:47913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.235791][   T40] audit: type=1326 audit(1767607458.049:47914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.247388][   T40] audit: type=1326 audit(1767607458.049:47915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.255306][   T40] audit: type=1326 audit(1767607458.049:47916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.263199][   T40] audit: type=1326 audit(1767607458.049:47917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  200.271081][   T40] audit: type=1326 audit(1767607458.049:47918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10728 comm="syz.1.1467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x7ffc0000
[  201.084791][T10731] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  201.266542][T10731] veth1_vlan: left allmulticast mode
[  201.358902][T10203] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  201.362844][T10203] netdevsim netdevsim0 netdevsim0: unset [0, 1] type 1 family 0 port 2816 - 0
[  201.366684][T10203] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.377862][T10203] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  201.387955][T10203] netdevsim netdevsim0 netdevsim1: unset [0, 1] type 1 family 0 port 2816 - 0
[  201.391979][T10203] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.401703][T10203] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  201.406034][T10203] netdevsim netdevsim0 netdevsim2: unset [0, 1] type 1 family 0 port 2816 - 0
[  201.409748][T10203] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.414099][T10203] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  201.417929][T10203] netdevsim netdevsim0 netdevsim3: unset [0, 1] type 1 family 0 port 2816 - 0
[  201.424445][T10203] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.582056][T10753] Cannot find add_set index 65532 as target
[  203.309854][T10785] loop8: detected capacity change from 0 to 7
[  203.311276][T10787] team0: No ports can be present during mode change
[  203.316222][T10785] Dev loop8: unable to read RDB block 7
[  203.318475][T10785]  loop8: unable to read partition table
[  203.332649][T10785] loop8: partition table beyond EOD, truncated
[  203.335268][T10785] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  203.535623][T10799] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  203.902849][   T40] audit: type=1400 audit(1767607461.769:47919): avc:  denied  { unmount } for  pid=10007 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  204.047993][T10817] __nla_validate_parse: 73 callbacks suppressed
[  204.048006][T10817] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1500'.
[  206.911905][T10904] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  206.961809][   T40] audit: type=1400 audit(1767607464.829:47920): avc:  denied  { read } for  pid=10909 comm="syz.1.1534" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  207.124716][   T40] audit: type=1400 audit(1767607464.989:47921): avc:  denied  { listen } for  pid=10915 comm="syz.0.1538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  208.396987][T10938] QAT: failed to copy from user cfg_data.
[  208.594385][T10942] bridge4: entered promiscuous mode
[  208.596670][T10942] bridge4: entered allmulticast mode
[  208.708097][T10951] wg1: entered promiscuous mode
[  208.709830][T10951] wg1: entered allmulticast mode
[  208.811377][T10962] program syz.5.1552 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  208.908409][T10958] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  208.938829][T10958] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10958 comm=syz.0.1550
[  208.987160][T10958] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1550'.
[  209.043891][T10958] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1550'.
[  209.999543][T10986] validate_nla: 71 callbacks suppressed
[  209.999560][T10986] netlink: 'syz.5.1561': attribute type 1 has an invalid length.
[  210.217685][T10996] bridge_slave_0: left allmulticast mode
[  210.219753][T10996] bridge_slave_0: left promiscuous mode
[  210.222378][T10996] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.288426][T11001] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11001 comm=syz.5.1564
[  210.293400][T11001] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1564'.
[  210.341193][T10996] bridge_slave_1: left allmulticast mode
[  210.343854][T10996] bridge_slave_1: left promiscuous mode
[  210.346526][T10996] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.355615][T10996] bond0: (slave bond_slave_0): Releasing backup interface
[  210.360804][T10996] bond0: (slave bond_slave_1): Releasing backup interface
[  210.376294][T10996] team0: Port device team_slave_0 removed
[  210.383580][T11007] No control pipe specified
[  210.384930][T10996] team0: Port device team_slave_1 removed
[  210.389239][T10996] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  210.393754][T10996] batman_adv: batadv0: Removing interface: batadv_slave_0
[  210.399386][T10996] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  210.403534][T10996] batman_adv: batadv0: Removing interface: batadv_slave_1
[  210.411332][T10996] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  210.434246][T11001] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1564'.
[  210.921981][   T24] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  211.080665][   T24] usb 10-1: Using ep0 maxpacket: 8
[  211.122402][   T24] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  211.125755][   T24] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  211.128782][   T24] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  211.132364][   T24] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  211.137715][   T24] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  211.159322][   T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.233483][T11027] No control pipe specified
[  211.382662][   T40] audit: type=1400 audit(1767607469.219:47922): avc:  denied  { write } for  pid=11024 comm="syz.2.1575" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  211.425201][   T24] usb 10-1: GET_CAPABILITIES returned 0
[  211.427595][   T24] usbtmc 10-1:16.0: can't read capabilities
[  211.641056][ T1026] usb 10-1: USB disconnect, device number 2
[  212.154028][T11041] netlink: 'syz.2.1581': attribute type 10 has an invalid length.
[  212.172922][T11041] team0: Port device dummy0 added
[  213.320848][T11084] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1599'.
[  213.424735][   T40] audit: type=1400 audit(1767607471.289:47923): avc:  denied  { create } for  pid=11087 comm="syz.5.1601" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  213.450522][   T40] audit: type=1400 audit(1767607471.309:47924): avc:  denied  { unlink } for  pid=10007 comm="syz-executor" name="file0" dev="tmpfs" ino=465 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  213.853486][ T6010] libceph: connect (1)[c::]:6789 error -101
[  213.855860][ T6010] libceph: mon0 (1)[c::]:6789 connect error
[  214.607193][   T40] audit: type=1400 audit(1767607472.469:47925): avc:  denied  { accept } for  pid=11122 comm="syz.0.1614" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  214.635626][T11111] ceph: No mds server is up or the cluster is laggy
[  214.640363][ T6010] libceph: connect (1)[c::]:6789 error -101
[  214.801389][ T6010] libceph: mon0 (1)[c::]:6789 connect error
[  214.915299][T11135] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  214.918880][T11135] block device autoloading is deprecated and will be removed.
[  215.608899][   T40] audit: type=1400 audit(1767607473.469:47926): avc:  denied  { mounton } for  pid=11153 comm="syz.0.1625" path="/syzcgroup/unified/syz0" dev="pstore" ino=5309 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=dir permissive=1
[  215.609914][T11165] /dev/nullb0: Can't open blockdev
[  216.182723][T10139] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  216.185483][T10139] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  216.191366][T10139] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  216.194741][T10139] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  218.249556][T11233] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1654'.
[  219.910281][   T24] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  220.070266][   T24] usb 10-1: Using ep0 maxpacket: 8
[  220.075001][   T24] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  220.079272][   T24] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  220.093169][   T24] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  220.097580][   T24] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  220.126252][   T24] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  220.130084][   T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.163066][T11263] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1665'.
[  220.265429][T11270] kAFS: unable to lookup cell '\,'
[  220.354997][   T40] audit: type=1400 audit(1767607478.219:47927): avc:  denied  { bind } for  pid=11277 comm="syz.0.1671" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  220.368319][   T24] usb 10-1: GET_CAPABILITIES returned 0
[  220.370334][   T24] usbtmc 10-1:16.0: can't read capabilities
[  220.376619][   T40] audit: type=1400 audit(1767607478.219:47928): avc:  denied  { ioctl } for  pid=11277 comm="syz.0.1671" path="socket:[33902]" dev="sockfs" ino=33902 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  220.564843][   T24] usb 10-1: USB disconnect, device number 3
[  221.158962][   T40] audit: type=1326 audit(1767607479.019:47929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11298 comm="syz.5.1679" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x7ffc0000
[  221.186099][   T40] audit: type=1326 audit(1767607479.029:47930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11298 comm="syz.5.1679" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x7ffc0000
[  221.205829][   T40] audit: type=1326 audit(1767607479.039:47931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11298 comm="syz.5.1679" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x7ffc0000
[  221.223325][   T40] audit: type=1326 audit(1767607479.039:47932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11298 comm="syz.5.1679" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x7ffc0000
[  221.236520][   T40] audit: type=1326 audit(1767607479.039:47933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11298 comm="syz.5.1679" exe="/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f319ab8f7c9 code=0x7ffc0000
[  221.244117][   T40] audit: type=1326 audit(1767607479.039:47934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11298 comm="syz.5.1679" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x7ffc0000
[  221.254950][   T40] audit: type=1326 audit(1767607479.039:47935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11298 comm="syz.5.1679" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x7ffc0000
[  221.264785][   T40] audit: type=1326 audit(1767607479.039:47936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11298 comm="syz.5.1679" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x7ffc0000
[  223.117946][T11371] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1704'.
[  223.982584][T11428] Bluetooth: MGMT ver 1.23
[  224.667765][T11454] syzkaller1: entered promiscuous mode
[  224.669627][T11454] syzkaller1: entered allmulticast mode
[  226.147476][T11494] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1752'.
[  226.151499][T11494] netlink: 140 bytes leftover after parsing attributes in process `syz.1.1752'.
[  226.835144][T10137] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  226.840187][T10137] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.844812][T10137] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  226.851393][T10137] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.857838][T10137] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  226.862869][T10137] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.869370][T10137] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  226.879681][T10137] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  227.131938][T11548] input: syz1 as /devices/virtual/input/input17
[  228.667570][T11651] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.670334][T11651] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.728399][T11651] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  228.734663][T11651] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  228.831025][   T34] lo speed is unknown, defaulting to 1000
[  228.831113][T10203] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  228.836111][T10203] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  228.836315][   T34] syz0: Port: 1 Link DOWN
[  228.839531][T10203] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  228.850069][T10203] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  228.863026][T10203] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  228.868830][T10203] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  228.876871][T10203] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  228.879979][T10203] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  231.259968][T11780] No control pipe specified
[  231.401540][T11785] netlink: 'syz.2.1862': attribute type 4 has an invalid length.
[  232.365145][T11802] QAT: failed to copy from user cfg_data.
[  236.906687][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  236.906742][   T40] audit: type=1326 audit(1767607494.769:47939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12006 comm="syz.2.1938" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9f70d8f7c9 code=0x0
[  239.225441][T12081] trusted_key: encrypted_key: insufficient parameters specified
[  240.801571][ T5953] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  240.805695][ T5953] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  240.809682][ T5953] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  240.817187][ T5953] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  240.820668][ T5953] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  240.850082][T12106] lo speed is unknown, defaulting to 1000
[  240.855714][T12106] lo speed is unknown, defaulting to 1000
[  241.344796][T12106] chnl_net:caif_netlink_parms(): no params data found
[  241.446170][T12106] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.449374][T12106] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.453151][T12106] bridge_slave_0: entered allmulticast mode
[  241.457169][T12106] bridge_slave_0: entered promiscuous mode
[  241.463327][T12106] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.466396][T12106] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.469548][T12106] bridge_slave_1: entered allmulticast mode
[  241.474752][T12106] bridge_slave_1: entered promiscuous mode
[  241.503874][T12106] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  241.511236][T12106] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  241.539289][T12106] team0: Port device team_slave_0 added
[  241.546435][T12106] team0: Port device team_slave_1 added
[  241.568803][T12106] batman_adv: batadv0: Adding interface: batadv_slave_0
[  241.571905][T12106] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  241.582997][T12106] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  241.589476][T12106] batman_adv: batadv0: Adding interface: batadv_slave_1
[  241.592836][T12106] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  241.604035][T12106] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  241.638297][T12106] hsr_slave_0: entered promiscuous mode
[  241.640820][T12106] hsr_slave_1: entered promiscuous mode
[  241.643305][T12106] debugfs: 'hsr0' already exists in 'hsr'
[  241.645178][T12106] Cannot create hsr debugfs directory
[  241.936762][T12106] bond0: (slave netdevsim0): Releasing backup interface
[  242.071478][T12106] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  242.076258][T12138] autofs: Bad value for 'fd'
[  242.081614][T12106] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  242.088098][T12106] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  242.095129][T12106] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  242.166899][T12106] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.179389][T12106] 8021q: adding VLAN 0 to HW filter on device team0
[  242.198107][T10203] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.200728][T10203] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.205457][T10203] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.207849][T10203] bridge0: port 2(bridge_slave_1) entered forwarding state
[  242.363851][T12106] 8021q: adding VLAN 0 to HW filter on device batadv0
[  242.393953][T12106] veth0_vlan: entered promiscuous mode
[  242.406880][T12106] veth1_vlan: entered promiscuous mode
[  242.443982][T12106] veth0_macvtap: entered promiscuous mode
[  242.448961][T12106] veth1_macvtap: entered promiscuous mode
[  242.459274][T12106] batman_adv: batadv0: Interface activated: batadv_slave_0
[  242.473228][T12106] batman_adv: batadv0: Interface activated: batadv_slave_1
[  242.484098][ T1146] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  242.487861][ T1146] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  242.492694][ T1146] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  242.495751][ T1146] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  242.542295][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.545113][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.565622][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.569001][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.871279][T12168] QAT: failed to copy from user cfg_data.
[  242.876708][   T40] audit: type=1400 audit(1767607500.739:47940): avc:  denied  { accept } for  pid=12160 comm="syz.1.1992" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  242.962227][ T5953] Bluetooth: hci4: command tx timeout
[  243.579737][T12173] autofs: Bad value for 'fd'
[  244.035065][T12194] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.038129][T12194] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.096225][T12194] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  244.103946][T12194] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  244.190882][T10193] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.208738][T10193] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.212158][T10193] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.215554][T10193] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.994050][T12292] autofs: Unknown parameter '00000000000000000000'
[  245.010214][ T5953] Bluetooth: hci4: command tx timeout
[  245.187961][T12331] autofs: Unknown parameter '00000000000000000000'
[  245.375658][T12363] autofs: Unknown parameter '00000000000000000000'
[  245.541077][T12391] autofs: Unknown parameter '00000000000000000000'
[  245.779840][T12425] autofs: Unknown parameter '00000000000000000000'
[  245.922667][T12447] fuse: Bad value for 'fd'
[  246.328664][T12476] autofs: Unknown parameter 'fd00000000000000000000'
[  246.625348][ T8199] nci: nci_rsp_packet: unknown rsp opcode 0x25
[  247.080382][ T5953] Bluetooth: hci4: command tx timeout
[  247.599154][T12535] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2156'.
[  247.744773][T12542] syzkaller0: entered promiscuous mode
[  247.746860][T12542] syzkaller0: entered allmulticast mode
[  247.958948][T12548] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2161'.
[  248.010344][T12550] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input18
[  249.010744][T12643] xt_nfacct: accounting object `\�$‚9ZúM#íü¾mUµ|±^cÁ\F9YⳈ«ÃÖ' does not exist
[  249.015232][T12643] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 

Ï€Ôxµ…üô–)%ë�	]ÓÙ.˜>„n÷6�‡#§
[  249.076248][T12651] Cannot find add_set index 0 as target
[  249.101726][T12653] No control pipe specified
[  249.160352][ T5953] Bluetooth: hci4: command tx timeout
[  249.174606][T12664] syzkaller0: entered promiscuous mode
[  249.176738][T12664] syzkaller0: entered allmulticast mode
[  249.233831][T12671] syzkaller0: entered promiscuous mode
[  249.235767][T12671] syzkaller0: entered allmulticast mode
[  249.347797][T12680] No control pipe specified
[  249.494194][   T40] audit: type=1326 audit(1767607507.359:47941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12700 comm="syz.0.2228" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1eee38f7c9 code=0x0
[  249.919235][T12710] No control pipe specified
[  250.095439][T12721] fuse: Bad value for 'fd'
[  250.284351][T12725] syzkaller0: entered promiscuous mode
[  250.286885][T12725] syzkaller0: entered allmulticast mode
[  250.303810][T12729] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2238'.
[  250.462967][T12747] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2248'.
[  250.474032][T12749] syzkaller0: entered promiscuous mode
[  250.476140][T12749] syzkaller0: entered allmulticast mode
[  250.486273][T12752] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2250'.
[  250.599237][T12759] netlink: 788 bytes leftover after parsing attributes in process `syz.1.2253'.
[  250.698015][T12772] syzkaller0: entered promiscuous mode
[  250.699863][T12772] syzkaller0: entered allmulticast mode
[  250.860845][T12782] fuse: Bad value for 'fd'
[  250.878075][T12784] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2262'.
[  251.648198][T12823] fuse: Bad value for 'fd'
[  251.705238][   T40] audit: type=1400 audit(1767607509.569:47942): avc:  denied  { bind } for  pid=12827 comm="syz.5.2283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  251.782559][T12833] vlan2: entered promiscuous mode
[  251.784964][T12833] bridge0: entered promiscuous mode
[  251.801219][T12835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2286'.
[  251.923771][T12849] openvswitch: netlink: Missing valid actions attribute.
[  251.926177][T12849] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  252.081803][T12863] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2298'.
[  252.618059][T12899] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2311'.
[  252.713222][T12903] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2313'.
[  252.855262][T12906] tipc: Started in network mode
[  252.864971][T12906] tipc: Node identity c2c7513d1b4c, cluster identity 4711
[  252.874966][T12906] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  252.961596][T12906] syzkaller0: entered promiscuous mode
[  252.963608][T12906] syzkaller0: entered allmulticast mode
[  252.965922][T12906] tipc: Resetting bearer <eth:syzkaller0>
[  252.979538][T12905] tipc: Resetting bearer <eth:syzkaller0>
[  253.061859][T12911] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2316'.
[  253.065432][T12911] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2316'.
[  254.677079][T12905] tipc: Disabling bearer <eth:syzkaller0>
[  254.693131][   T24] tipc: Node number set to 3649786173
[  254.729814][T12946] syzkaller0: entered promiscuous mode
[  254.733182][T12946] syzkaller0: entered allmulticast mode
[  254.922501][T12971] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2330'.
[  256.498523][T12992] syzkaller0: entered promiscuous mode
[  256.500719][T12992] syzkaller0: entered allmulticast mode
[  256.570425][T12999] syzkaller0: entered promiscuous mode
[  256.573427][T12999] syzkaller0: entered allmulticast mode
[  256.685324][T13001] syzkaller0: entered promiscuous mode
[  256.687725][T13001] syzkaller0: entered allmulticast mode
[  256.690803][T13003] fuse: Bad value for 'fd'
[  256.935530][   T40] audit: type=1326 audit(1767607514.799:47943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13022 comm="syz.1.2350" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x0
[  256.972402][T13027] syzkaller0: entered promiscuous mode
[  256.974502][T13027] syzkaller0: entered allmulticast mode
[  256.997255][T13030] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2353'.
[  257.057742][T13032] syzkaller0: entered promiscuous mode
[  257.059933][T13032] syzkaller0: entered allmulticast mode
[  257.387656][T13050] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2362'.
[  257.430033][T13054] fuse: Bad value for 'group_id'
[  257.432558][T13054] fuse: Bad value for 'group_id'
[  257.477629][T13058] syzkaller0: entered promiscuous mode
[  257.479690][T13058] syzkaller0: entered allmulticast mode
[  257.922261][T13084] syzkaller0: entered promiscuous mode
[  257.924379][T13084] syzkaller0: entered allmulticast mode
[  258.465330][   T40] audit: type=1326 audit(1767607516.329:47944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13096 comm="syz.0.2383" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1eee38f7c9 code=0x0
[  258.697865][T13102] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2385'.
[  258.756632][T13104] syzkaller0: entered promiscuous mode
[  258.758539][T13104] syzkaller0: entered allmulticast mode
[  259.453218][T13136] syzkaller0: entered promiscuous mode
[  259.455407][T13136] syzkaller0: entered allmulticast mode
[  259.551384][T13138] NFSD: Failed to start, no listeners configured.
[  259.831511][   T40] audit: type=1326 audit(1767607517.699:47945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13155 comm="syz.2.2407" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f24df38f7c9 code=0x0
[  259.878204][T13160] syzkaller0: entered promiscuous mode
[  259.880714][T13160] syzkaller0: entered allmulticast mode
[  260.034881][T13168] syzkaller0: entered promiscuous mode
[  260.037373][T13168] syzkaller0: entered allmulticast mode
[  260.045130][T13168] 0: reclassify loop, rule prio 0, protocol 800
[  260.167857][   T40] audit: type=1400 audit(1767607518.029:47946): avc:  denied  { connect } for  pid=13177 comm="syz.1.2416" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  260.969400][T13210] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2429'.
[  260.977610][T13204] NFSD: Failed to start, no listeners configured.
[  261.165470][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  261.167734][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  261.322497][T13243] fuse: Unknown parameter 'grou00000000000000000000'
[  262.329333][T13271] fuse: Unknown parameter 'grou00000000000000000000'
[  262.759456][   T40] audit: type=1400 audit(1767607520.619:47947): avc:  denied  { getopt } for  pid=13291 comm="syz.2.2465" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  262.924133][T13297] syzkaller0: entered promiscuous mode
[  262.926114][T13297] syzkaller0: entered allmulticast mode
[  262.932094][T13297] 0: reclassify loop, rule prio 0, protocol 800
[  263.000596][T13292] nbd2: detected capacity change from 0 to 63
[  263.003220][T13294] block nbd2: NBD_DISCONNECT
[  263.005195][T13294] block nbd2: Disconnected due to user request.
[  263.009045][T13294] block nbd2: shutting down sockets
[  263.092634][T13299] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2467'.
[  263.129264][T13303] fuse: Unknown parameter 'grou00000000000000000000'
[  263.350375][T13326] fuse: Unknown parameter 'group_i00000000000000000000'
[  263.490701][ T5953] Bluetooth: hci4: command tx timeout
[  263.531461][T13351] fuse: Unknown parameter 'group_i00000000000000000000'
[  263.804303][T13370] syzkaller0: entered promiscuous mode
[  263.806146][T13370] syzkaller0: entered allmulticast mode
[  264.076104][T13376] syzkaller0: entered promiscuous mode
[  264.078661][T13376] syzkaller0: entered allmulticast mode
[  264.662687][ T5952] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  264.666835][ T5952] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  264.673197][ T5952] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  264.677028][ T5952] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  264.679809][ T5952] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  264.713654][T13400] lo speed is unknown, defaulting to 1000
[  264.716475][T13400] lo speed is unknown, defaulting to 1000
[  264.860183][T13400] chnl_net:caif_netlink_parms(): no params data found
[  264.940412][T13400] bridge0: port 1(bridge_slave_0) entered blocking state
[  264.949044][T13400] bridge0: port 1(bridge_slave_0) entered disabled state
[  264.952538][T13400] bridge_slave_0: entered allmulticast mode
[  264.955339][T13400] bridge_slave_0: entered promiscuous mode
[  264.958500][T13400] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.960851][T13400] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.963197][T13400] bridge_slave_1: entered allmulticast mode
[  264.966003][T13400] bridge_slave_1: entered promiscuous mode
[  264.971092][T13422] A link change request failed with some changes committed already. Interface bond_slave_1 may have been left with an inconsistent configuration, please check.
[  264.990024][T13400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  264.994913][T13400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  265.025255][T13400] team0: Port device team_slave_0 added
[  265.028564][T13400] team0: Port device team_slave_1 added
[  265.055483][T13430] fuse: Bad value for 'user_id'
[  265.057336][T13430] fuse: Bad value for 'user_id'
[  265.083288][T13400] batman_adv: batadv0: Adding interface: batadv_slave_0
[  265.085789][T13400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  265.095847][T13400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  265.100575][T13400] batman_adv: batadv0: Adding interface: batadv_slave_1
[  265.102882][T13400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  265.113484][T13400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  265.167728][T13400] hsr_slave_0: entered promiscuous mode
[  265.172138][T13400] hsr_slave_1: entered promiscuous mode
[  265.174768][T13400] debugfs: 'hsr0' already exists in 'hsr'
[  265.176681][T13400] Cannot create hsr debugfs directory
[  265.311006][T13438] syzkaller0: entered promiscuous mode
[  265.312952][T13438] syzkaller0: entered allmulticast mode
[  265.688450][T10188] gretap0 (unregistering): left promiscuous mode
[  265.723341][T10188] bond1 (unregistering): (slave geneve2): Releasing active interface
[  265.816713][T10188] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  265.822086][T10188] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  265.827152][T10188] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[  265.832122][T10188] bond0 (unregistering): Released all slaves
[  265.950210][T10188] bond1 (unregistering): Released all slaves
[  265.960440][T10188] bond2 (unregistering): Released all slaves
[  266.045879][T10188] : left promiscuous mode
[  266.088175][T13460] syzkaller0: entered promiscuous mode
[  266.091510][T13460] syzkaller0: entered allmulticast mode
[  266.203170][T13464] syzkaller0: entered promiscuous mode
[  266.205143][T13464] syzkaller0: entered allmulticast mode
[  266.766530][ T5952] Bluetooth: hci3: command tx timeout
[  267.947387][T13487] fuse: Bad value for 'fd'
[  267.948897][   T40] audit: type=1326 audit(1767607525.809:47948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13486 comm="syz.1.2542" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x0
[  268.053130][T13400] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  268.068074][T13400] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  268.075691][T13400] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  268.084351][T13400] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  268.118710][T13501] syzkaller0: entered promiscuous mode
[  268.121612][T13501] syzkaller0: entered allmulticast mode
[  268.165407][T13503] syzkaller0: entered promiscuous mode
[  268.168203][T13503] syzkaller0: entered allmulticast mode
[  268.850653][ T5952] Bluetooth: hci3: command tx timeout
[  269.776035][T10188] veth0_to_team: left promiscuous mode
[  269.783522][T10188] hsr_slave_0: left promiscuous mode
[  269.787503][T10188] hsr_slave_1: left promiscuous mode
[  269.790455][T10188] batman_adv: batadv0: Removing interface: batadv_slave_1
[  269.890999][T13514] fuse: Unknown parameter 'grou00000000000000000000'
[  270.197962][T10188] team0 (unregistering): Port device team_slave_1 removed
[  270.235426][T10188] team0 (unregistering): Port device team_slave_0 removed
[  270.617318][T13521] syzkaller0: entered promiscuous mode
[  270.619566][T13521] syzkaller0: entered allmulticast mode
[  270.920426][ T5952] Bluetooth: hci3: command tx timeout
[  272.242999][T13548] syzkaller0: entered promiscuous mode
[  272.244909][T13548] syzkaller0: entered allmulticast mode
[  272.369173][   T40] audit: type=1400 audit(1767607530.229:47949): avc:  denied  { shutdown } for  pid=13552 comm="syz.5.2560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  273.002470][ T5952] Bluetooth: hci3: command tx timeout
[  273.870452][T13400] 8021q: adding VLAN 0 to HW filter on device bond0
[  273.881052][T13400] 8021q: adding VLAN 0 to HW filter on device team0
[  273.887897][T10139] bridge0: port 1(bridge_slave_0) entered blocking state
[  273.890590][T10139] bridge0: port 1(bridge_slave_0) entered forwarding state
[  273.897684][T10193] bridge0: port 2(bridge_slave_1) entered blocking state
[  273.900827][T10193] bridge0: port 2(bridge_slave_1) entered forwarding state
[  274.006919][T13581] syzkaller0: entered promiscuous mode
[  274.008762][T13581] syzkaller0: entered allmulticast mode
[  274.075394][T13589] fuse: Unknown parameter 'user00000000000000000000'
[  274.107007][T13587] syzkaller0: entered promiscuous mode
[  274.108906][T13587] syzkaller0: entered allmulticast mode
[  274.171405][T13400] 8021q: adding VLAN 0 to HW filter on device batadv0
[  274.210754][T13400] veth0_vlan: entered promiscuous mode
[  274.232756][T13400] veth1_vlan: entered promiscuous mode
[  274.257037][T13400] veth0_macvtap: entered promiscuous mode
[  274.278563][T13400] veth1_macvtap: entered promiscuous mode
[  274.295089][T13599] syzkaller0: entered promiscuous mode
[  274.297090][T13599] syzkaller0: entered allmulticast mode
[  274.318001][T13400] batman_adv: batadv0: Interface activated: batadv_slave_0
[  274.355876][T13400] batman_adv: batadv0: Interface activated: batadv_slave_1
[  274.363957][T13606] syzkaller0: entered promiscuous mode
[  274.366526][T13606] syzkaller0: entered allmulticast mode
[  274.374479][T10139] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  274.390000][T10139] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  274.393504][T10139] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  274.397190][T10139] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  274.440871][T10156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  274.443771][T10156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  274.461506][T10139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  274.467583][T10139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  274.473142][T13612] fuse: Unknown parameter 'user00000000000000000000'
[  274.529936][T13614] syzkaller0: entered promiscuous mode
[  274.532713][T13614] syzkaller0: entered allmulticast mode
[  274.879105][T13631] syzkaller0: entered promiscuous mode
[  274.881074][T13631] syzkaller0: entered allmulticast mode
[  275.021629][T13618] nbd0: detected capacity change from 0 to 63
[  275.024479][T13634] block nbd0: NBD_DISCONNECT
[  275.029035][T13634] block nbd0: Disconnected due to user request.
[  275.032418][T13634] block nbd0: shutting down sockets
[  275.080511][ T5952] Bluetooth: hci3: command tx timeout
[  275.187087][T13648] syzkaller0: entered promiscuous mode
[  275.189042][T13648] syzkaller0: entered allmulticast mode
[  275.283495][T13654] syzkaller0: entered promiscuous mode
[  275.285541][T13654] syzkaller0: entered allmulticast mode
[  275.697352][T13693] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2605'.
[  275.701163][T13693] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2605'.
[  275.708870][T13693] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2605'.
[  275.708948][T10156] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  275.711814][T13693] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2605'.
[  275.725188][T10156] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  275.734318][T10156] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  275.742105][T10156] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  275.891784][T10139] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0xf0
[  276.819204][T13755] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2623'.
[  276.826431][T13755] bridge0: port 1(bridge_slave_0) entered disabled state
[  276.855244][T13755] bridge_slave_0 (unregistering): left allmulticast mode
[  276.858531][T13755] bridge_slave_0 (unregistering): left promiscuous mode
[  276.862315][T13755] bridge0: port 1(bridge_slave_0) entered disabled state
[  276.902174][T13760] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2626'.
[  277.281814][T13777] fuse: Unknown parameter 'user_i00000000000000000000'
[  277.647740][T13804] fuse: Unknown parameter 'user_i00000000000000000000'
[  277.697687][T13808] syzkaller0: entered promiscuous mode
[  277.699869][T13808] syzkaller0: entered allmulticast mode
[  277.776892][T13815] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2647'.
[  277.983012][T13830] fuse: Unknown parameter 'user_id00000000000000000000'
[  278.108520][T13836] syzkaller0: entered promiscuous mode
[  278.111332][T13836] syzkaller0: entered allmulticast mode
[  278.150620][   T40] audit: type=1326 audit(1767607536.009:47950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13841 comm="syz.0.2659" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5abbb8f7c9 code=0x0
[  278.872299][T13856] fuse: Bad value for 'user_id'
[  278.874423][T13856] fuse: Bad value for 'user_id'
[  279.031411][T13860] fuse: Unknown parameter 'user_id00000000000000000000'
[  279.628885][T13858] netlink: 'syz.1.2663': attribute type 2 has an invalid length.
[  279.793117][   T40] audit: type=1326 audit(1767607537.659:47951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13875 comm="syz.5.2672" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x0
[  279.796198][T13878] fuse: Bad value for 'user_id'
[  279.803707][T13878] fuse: Bad value for 'user_id'
[  279.842842][T13880] syzkaller0: entered promiscuous mode
[  279.844589][T13880] syzkaller0: entered allmulticast mode
[  281.387641][T10203] netdevsim netdevsim5 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  281.392351][T10203] netdevsim netdevsim5 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  281.396251][T10203] netdevsim netdevsim5 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  281.401333][T10203] netdevsim netdevsim5 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  281.444107][T13925] fuse: Bad value for 'user_id'
[  281.446206][T13925] fuse: Bad value for 'user_id'
[  281.487186][   T40] audit: type=1326 audit(1767607539.349:47952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13930 comm="syz.0.2685" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5abbb8f7c9 code=0x0
[  281.626382][T13944] syzkaller0: entered promiscuous mode
[  281.628378][T13944] syzkaller0: entered allmulticast mode
[  282.382351][T13966] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  282.385799][T13966] IPv6: NLM_F_CREATE should be set when creating new route
[  283.163249][T13966] lo: entered allmulticast mode
[  283.168147][T13966] tunl0: entered allmulticast mode
[  283.173262][T13966] gre0: entered allmulticast mode
[  283.182958][T13966] gretap0: entered allmulticast mode
[  283.187839][T13966] erspan0: entered allmulticast mode
[  283.193408][T13966] ip_vti0: entered allmulticast mode
[  283.197880][T13966] ip6_vti0: entered allmulticast mode
[  283.203053][T13966] sit0: entered allmulticast mode
[  283.208860][T13966] ip6tnl0: entered allmulticast mode
[  283.221698][T13966] ip6gre0: entered allmulticast mode
[  283.227340][T13966] syz_tun: entered allmulticast mode
[  283.233727][T13966] ip6gretap0: entered allmulticast mode
[  283.239242][T13966] bridge0: port 2(bridge_slave_1) entered disabled state
[  283.243053][T13966] bridge0: entered allmulticast mode
[  283.249047][T13966] vcan0: entered allmulticast mode
[  283.253661][T13966] bond0: entered allmulticast mode
[  283.255604][T13966] bond_slave_0: entered allmulticast mode
[  283.257818][T13966] bond_slave_1: entered allmulticast mode
[  283.263932][T13979] fuse: Bad value for 'fd'
[  283.264419][T13966] team0: entered allmulticast mode
[  283.267873][T13966] team_slave_0: entered allmulticast mode
[  283.269860][T13966] team_slave_1: entered allmulticast mode
[  283.274115][T13966] dummy0: entered allmulticast mode
[  283.278100][T13966] nlmon0: entered allmulticast mode
[  283.281208][T13966] caif0: entered allmulticast mode
[  283.283383][T13966] batadv0: entered allmulticast mode
[  283.290890][T13966] vxcan0: entered allmulticast mode
[  283.296058][T13966] vxcan1: entered allmulticast mode
[  283.299804][T13966] veth0: entered allmulticast mode
[  283.305215][T13966] veth1: entered allmulticast mode
[  283.312994][T13966] wg0: entered allmulticast mode
[  283.317340][T13966] wg1: entered allmulticast mode
[  283.321007][T13966] wg2: entered allmulticast mode
[  283.324209][T13966] veth1_to_bridge: entered allmulticast mode
[  283.329494][T13966] veth0_to_bond: entered allmulticast mode
[  283.336529][T13966] veth1_to_bond: entered allmulticast mode
[  283.343046][T13966] veth0_to_team: entered allmulticast mode
[  283.351488][T13966] veth1_to_team: entered allmulticast mode
[  283.359412][T13966] veth0_to_batadv: entered allmulticast mode
[  283.366181][T13966] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  283.369812][T13966] batadv_slave_0: entered allmulticast mode
[  283.377364][T13966] veth1_to_batadv: entered allmulticast mode
[  283.382712][T13966] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  283.386395][T13966] batadv_slave_1: entered allmulticast mode
[  283.392776][T13966] xfrm0: entered allmulticast mode
[  283.397717][T13966] veth0_to_hsr: entered allmulticast mode
[  283.403773][T13966] hsr_slave_0: entered allmulticast mode
[  283.407577][T13966] veth1_to_hsr: entered allmulticast mode
[  283.413418][T13966] hsr_slave_1: entered allmulticast mode
[  283.418563][T13966] hsr0: entered allmulticast mode
[  283.424216][T13966] veth1_virt_wifi: entered allmulticast mode
[  283.428563][T13966] veth0_virt_wifi: entered allmulticast mode
[  283.432075][T13966] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  283.435106][T13966] veth1_vlan: entered allmulticast mode
[  283.438847][T13966] veth0_vlan: entered allmulticast mode
[  283.448013][T13966] vlan0: entered allmulticast mode
[  283.449801][T13966] vlan1: entered allmulticast mode
[  283.452171][T13966] macvlan0: entered allmulticast mode
[  283.458359][T13966] macvlan1: entered allmulticast mode
[  283.462050][T13966] ipvlan0: entered allmulticast mode
[  283.463934][T13966] ipvlan1: entered allmulticast mode
[  283.466363][T13966] veth1_macvtap: entered allmulticast mode
[  283.471329][T13966] veth0_macvtap: entered allmulticast mode
[  283.475986][T13966] macvtap0: entered allmulticast mode
[  283.479952][T13966] macsec0: entered allmulticast mode
[  283.488612][T13966] geneve0: entered allmulticast mode
[  283.493445][T13966] geneve1: entered allmulticast mode
[  283.497769][T13966] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  283.502784][T13966] netdevsim netdevsim0 netdevsim1: entered allmulticast mode
[  283.507544][T13966] netdevsim netdevsim0 netdevsim2: entered allmulticast mode
[  283.511435][T13966] netdevsim netdevsim0 netdevsim3: entered allmulticast mode
[  283.518983][T13966] mac80211_hwsim hwsim21 wlan0: entered allmulticast mode
[  283.527119][T13966] mac80211_hwsim hwsim22 wlan1: entered allmulticast mode
[  283.542602][T10203] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  283.551890][T10203] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  283.570459][T10203] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  283.573443][T10203] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  283.657884][T14001] syzkaller0: entered promiscuous mode
[  283.659809][T14001] syzkaller0: entered allmulticast mode
[  283.930845][T14008] fuse: Bad value for 'fd'
[  285.307987][T14037] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2713'.
[  285.423712][T14043] fuse: Bad value for 'fd'
[  286.750548][T14063] syzkaller0: entered promiscuous mode
[  286.758150][T14063] syzkaller0: entered allmulticast mode
[  286.815259][T14069] syzkaller0: entered promiscuous mode
[  286.817751][T14069] syzkaller0: entered allmulticast mode
[  286.871076][T14077] fuse: Bad value for 'fd'
[  286.926104][T14080] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2726'.
[  287.320070][   T40] audit: type=1326 audit(1767607545.189:47953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14092 comm="syz.1.2729" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59cd98f7c9 code=0x0
[  288.274181][T14083] syzkaller0: entered promiscuous mode
[  288.276957][T14083] syzkaller0: entered allmulticast mode
[  288.412531][   T40] audit: type=1400 audit(1767607546.279:47954): avc:  denied  { create } for  pid=14101 comm="syz.1.2732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  288.483974][T14113] fuse: Bad value for 'fd'
[  290.163459][T14132] syzkaller0: entered promiscuous mode
[  290.165968][T14132] syzkaller0: entered allmulticast mode
[  290.194437][T14134] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2742'.
[  290.238441][T14136] syzkaller0: entered promiscuous mode
[  290.240723][T14136] syzkaller0: entered allmulticast mode
[  290.278972][T14138] fuse: Bad value for 'fd'
[  290.319282][T14140] fuse: Bad value for 'group_id'
[  290.321647][T14140] fuse: Bad value for 'group_id'
[  290.635399][T14161] syzkaller0: entered promiscuous mode
[  290.637541][T14161] syzkaller0: entered allmulticast mode
[  290.841944][T14167] fuse: Invalid rootmode
[  291.290359][T14183] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2757'.
[  291.329653][T14185] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2758'.
[  291.333480][T14185] block nbd0: not configured, cannot reconfigure
[  292.333039][T14203] fuse: Bad value for 'group_id'
[  292.334721][T14203] fuse: Bad value for 'group_id'
[  292.382397][T14207] fuse: Invalid rootmode
[  292.492399][   T40] audit: type=1326 audit(1767607550.359:47955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14218 comm="syz.2.2769" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f24df38f7c9 code=0x0
[  292.549238][T14221] syzkaller0: entered promiscuous mode
[  292.551269][T14221] syzkaller0: entered allmulticast mode
[  292.668494][T14227] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2772'.
[  294.074717][T14240] fuse: Invalid rootmode
[  294.157633][T14247] fuse: Bad value for 'group_id'
[  294.159813][T14247] fuse: Bad value for 'group_id'
[  294.170896][ T6028] usb 6-1: USB disconnect, device number 13
[  294.287571][ T5953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  294.303670][ T5953] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  294.311523][ T5953] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  294.314549][ T5953] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  294.317208][ T5953] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  295.825661][T14258] syzkaller0: entered promiscuous mode
[  295.827456][T14258] syzkaller0: entered allmulticast mode
[  296.440598][ T5953] Bluetooth: hci0: command tx timeout
[  297.275495][T14281] syzkaller0: entered promiscuous mode
[  297.277676][T14281] syzkaller0: entered allmulticast mode
[  297.307424][T14248] lo speed is unknown, defaulting to 1000
[  297.309940][T14248] lo speed is unknown, defaulting to 1000
[  297.353890][T14286] syzkaller0: entered promiscuous mode
[  297.356231][T14286] syzkaller0: entered allmulticast mode
[  297.379170][T14288] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2786'.
[  297.721285][T14297] fuse: Bad value for 'rootmode'
[  298.520447][ T5953] Bluetooth: hci0: command tx timeout
[  300.498463][T14248] chnl_net:caif_netlink_parms(): no params data found
[  300.581082][   T40] audit: type=1326 audit(1767607558.449:47956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14346 comm="syz.0.2794" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5abbb8f7c9 code=0x0
[  300.600745][ T5953] Bluetooth: hci0: command tx timeout
[  300.622412][T14248] bridge0: port 1(bridge_slave_0) entered blocking state
[  300.624966][T14248] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.627487][T14248] bridge_slave_0: entered allmulticast mode
[  300.631382][T14248] bridge_slave_0: entered promiscuous mode
[  300.635472][T14248] bridge0: port 2(bridge_slave_1) entered blocking state
[  300.638574][T14248] bridge0: port 2(bridge_slave_1) entered disabled state
[  300.642167][T14248] bridge_slave_1: entered allmulticast mode
[  300.642396][T14351] fuse: Bad value for 'rootmode'
[  300.645413][T14248] bridge_slave_1: entered promiscuous mode
[  300.665804][T14248] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  300.670796][T14248] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  300.677094][T14353] netlink: 'syz.2.2797': attribute type 1 has an invalid length.
[  300.694262][T14353] 8021q: adding VLAN 0 to HW filter on device bond1
[  300.705982][T14248] team0: Port device team_slave_0 added
[  300.713864][T14248] team0: Port device team_slave_1 added
[  300.715961][   T40] audit: type=1400 audit(1767607558.579:47957): avc:  denied  { create } for  pid=14352 comm="syz.2.2797" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  300.723728][   T40] audit: type=1400 audit(1767607558.579:47958): avc:  denied  { write } for  pid=14352 comm="syz.2.2797" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  300.727570][T14353] bond1: (slave gretap1): making interface the new active one
[  300.735025][T14353] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  300.770511][T14248] batman_adv: batadv0: Adding interface: batadv_slave_0
[  300.774272][T14248] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  300.788709][T14248] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  300.805255][T14248] batman_adv: batadv0: Adding interface: batadv_slave_1
[  300.808416][T14248] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  300.817493][T14248] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  300.843118][T14357] syzkaller0: entered promiscuous mode
[  300.845036][T14357] syzkaller0: entered allmulticast mode
[  302.485797][T14248] hsr_slave_0: entered promiscuous mode
[  302.489659][T14248] hsr_slave_1: entered promiscuous mode
[  302.493348][T14248] debugfs: 'hsr0' already exists in 'hsr'
[  302.495755][T14248] Cannot create hsr debugfs directory
[  302.680243][ T5953] Bluetooth: hci0: command tx timeout
[  304.253941][T14396] syzkaller0: entered promiscuous mode
[  304.255771][T14396] syzkaller0: entered allmulticast mode
[  304.341821][T14405] fuse: Unknown parameter 'use00000000000000000000'
[  304.685055][   T40] audit: type=1326 audit(1767607562.549:47959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14413 comm="syz.5.2807" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x0
[  305.261136][T14417] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2808'.
[  306.156273][T14437] fuse: Unknown parameter 'use00000000000000000000'
[  306.504156][   T40] audit: type=1326 audit(1767607564.369:47960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14450 comm="syz.5.2816" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f319ab8f7c9 code=0x0
[  307.948164][T14459] syzkaller0: entered promiscuous mode
[  307.950673][T14459] syzkaller0: entered allmulticast mode
[  307.999196][T14470] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2819'.
[  309.778129][T14489] syzkaller0: entered promiscuous mode
[  309.780657][T14489] syzkaller0: entered allmulticast mode
[  309.850250][T14496] fuse: Unknown parameter 'user_i00000000000000000000'
[  309.879909][T14248] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  309.897353][T14248] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  309.908470][T14248] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  309.914819][T14248] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  309.964689][T14248] 8021q: adding VLAN 0 to HW filter on device bond0
[  309.984495][T14248] 8021q: adding VLAN 0 to HW filter on device team0
[  309.994328][T10203] bridge0: port 1(bridge_slave_0) entered blocking state
[  309.997679][T10203] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.014130][T10203] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.017286][T10203] bridge0: port 2(bridge_slave_1) entered forwarding state
[  310.088789][T14516] netlink: 'syz.2.2828': attribute type 1 has an invalid length.
[  310.124382][T14516] 8021q: adding VLAN 0 to HW filter on device bond2
[  310.153991][T14522] syzkaller0: entered promiscuous mode
[  310.156157][T14522] syzkaller0: entered allmulticast mode
[  310.184009][T14527] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2829'.
[  310.239817][T14248] 8021q: adding VLAN 0 to HW filter on device batadv0
[  310.269083][T14531] syzkaller0: entered promiscuous mode
[  310.273570][T14531] syzkaller0: entered allmulticast mode
[  310.298823][T14248] veth0_vlan: entered promiscuous mode
[  310.305488][T14248] veth1_vlan: entered promiscuous mode
[  310.324118][T14248] veth0_macvtap: entered promiscuous mode
[  310.327461][T14535] fuse: Unknown parameter 'user_i00000000000000000000'
[  310.330421][T14248] veth1_macvtap: entered promiscuous mode
[  310.340820][T14248] batman_adv: batadv0: Interface activated: batadv_slave_0
[  310.353481][T14248] batman_adv: batadv0: Interface activated: batadv_slave_1
[  310.364169][T14537] syzkaller0: entered promiscuous mode
[  310.366577][T14537] syzkaller0: entered allmulticast mode
[  310.372557][T10139] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  310.376765][T10139] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  310.391937][T10139] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  310.416445][T10139] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  310.497432][T10139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.501538][T10139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.525951][T10139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.528494][T10139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.537566][   T40] audit: type=1400 audit(1767607568.399:47961): avc:  denied  { mounton } for  pid=14248 comm="syz-executor" path="/syzkaller.i4qTLl/syz-tmp" dev="sda1" ino=2042 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  310.714139][   T40] audit: type=1326 audit(1767607568.579:47962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14557 comm="syz.2.2840" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f24df38f7c9 code=0x0
[  310.739177][T14560] netlink: 'syz.0.2839': attribute type 1 has an invalid length.
[  310.767418][T14560] 8021q: adding VLAN 0 to HW filter on device bond1
[  310.884764][T14566] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2842'.
[  311.103315][T14568] syzkaller0: entered promiscuous mode
[  311.105422][T14568] syzkaller0: entered allmulticast mode
[  311.319273][T14574] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2845'.
[  311.523675][T14583] nbd5: detected capacity change from 0 to 63
[  311.529554][T14589] block nbd5: NBD_DISCONNECT
[  311.532225][T14589] block nbd5: Disconnected due to user request.
[  311.535288][T14589] block nbd5: shutting down sockets
[  311.601161][T14601] netlink: 'syz.2.2853': attribute type 1 has an invalid length.
[  311.628968][T14601] 8021q: adding VLAN 0 to HW filter on device bond3
[  311.694627][T14608] syzkaller0: entered promiscuous mode
[  311.696396][T14608] syzkaller0: entered allmulticast mode
[  311.787099][T14610] syzkaller0: entered promiscuous mode
[  311.789871][T14610] syzkaller0: entered allmulticast mode
[  311.822295][T14614] fuse: Unknown parameter 'user_id00000000000000000000'
[  311.926505][   T40] audit: type=1326 audit(1767607569.789:47963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14624 comm="syz.1.2862" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f56a458f7c9 code=0x0
[  312.006326][T14632] netlink: 'syz.0.2864': attribute type 1 has an invalid length.
[  312.028742][T14632] 8021q: adding VLAN 0 to HW filter on device bond2
[  312.080727][T14628] nbd2: detected capacity change from 0 to 63
[  312.083959][T14635] block nbd2: NBD_DISCONNECT
[  312.087879][T14635] block nbd2: Disconnected due to user request.
[  312.092052][T14635] block nbd2: shutting down sockets
[  312.300535][T14645] fuse: Unknown parameter 'user_id00000000000000000000'
[  312.488156][T14652] syzkaller0: entered promiscuous mode
[  312.490369][T14652] syzkaller0: entered allmulticast mode
[  312.609766][T14659] netlink: 'syz.5.2873': attribute type 1 has an invalid length.
[  312.630280][T14659] 8021q: adding VLAN 0 to HW filter on device bond1
[  312.880312][T14669] nbd1: detected capacity change from 0 to 63
[  312.883274][T14670] block nbd1: NBD_DISCONNECT
[  312.886076][T14670] block nbd1: Disconnected due to user request.
[  312.888798][T14670] block nbd1: shutting down sockets
[  312.941842][T14672] fuse: Bad value for 'fd'
[  313.098758][T14690] syzkaller0: entered promiscuous mode
[  313.104872][T14690] syzkaller0: entered allmulticast mode
[  313.174519][T14693] netlink: 'syz.5.2884': attribute type 1 has an invalid length.
[  313.212276][T14693] 8021q: adding VLAN 0 to HW filter on device bond2
[  313.339916][   T40] audit: type=1326 audit(1767607571.199:47964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14697 comm="syz.0.2886" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5abbb8f7c9 code=0x0
[  313.352825][T14699] syzkaller0: entered promiscuous mode
[  313.355489][T14699] syzkaller0: entered allmulticast mode
[  314.007359][T14729] fuse: Unknown parameter 'grou00000000000000000000'
[  314.035132][T14731] netlink: 'syz.5.2897': attribute type 1 has an invalid length.
[  314.071768][T14731] 8021q: adding VLAN 0 to HW filter on device bond3
[  314.092330][T14731] bond3: (slave gretap1): making interface the new active one
[  314.096527][T14731] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  314.478173][T14763] netlink: 'syz.2.2906': attribute type 1 has an invalid length.
[  314.492083][   T40] audit: type=1326 audit(1767607572.359:47965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14765 comm="syz.1.2907" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f56a458f7c9 code=0x0
[  314.499929][T14763] 8021q: adding VLAN 0 to HW filter on device bond4
[  314.577742][T14770] fuse: Unknown parameter 'group_i00000000000000000000'
[  316.736717][T14796] syzkaller0: entered promiscuous mode
[  316.739539][T14796] syzkaller0: entered allmulticast mode
[  316.787212][T14804] netlink: 'syz.1.2916': attribute type 1 has an invalid length.
[  316.865266][T14809] fuse: Unknown parameter 'group_i00000000000000000000'
[  316.891502][T14811] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2919'.
[  318.471767][   T40] audit: type=1326 audit(1767607576.339:47966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14830 comm="syz.2.2923" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f24df38f7c9 code=0x0
[  318.476358][T14833] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2924'.
[  318.592370][T14845] syzkaller0: entered promiscuous mode
[  318.594711][T14845] syzkaller0: entered allmulticast mode
[  318.794319][T14853] syzkaller0: entered promiscuous mode
[  318.796233][T14853] syzkaller0: entered allmulticast mode
[  319.010657][T14857] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2933'.
[  319.142246][T14859] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2934'.
[  319.196900][T14861] syzkaller0: entered promiscuous mode
[  319.199207][T14861] syzkaller0: entered allmulticast mode
[  319.284942][T14863] netlink: 'syz.0.2936': attribute type 1 has an invalid length.
[  319.393772][T14868] fuse: Unknown parameter 'group_id00000000000000000000'
[  320.845207][T14863] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  320.876674][T14892] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2942'.
[  321.009474][   T40] audit: type=1400 audit(1767607578.869:47967): avc:  denied  { write } for  pid=14893 comm="syz.1.2943" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  321.032710][T14899] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2944'.
[  321.100591][T14910] fuse: Unknown parameter 'group_id00000000000000000000'
[  321.287451][T14921] syzkaller0: entered promiscuous mode
[  321.289287][T14921] syzkaller0: entered allmulticast mode
[  322.605444][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  322.607764][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  322.753395][T14951] syzkaller0: entered promiscuous mode
[  322.755484][T14951] syzkaller0: entered allmulticast mode
[  322.804251][T14957] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2955'.
[  322.838018][T14959] netlink: 'syz.2.2956': attribute type 1 has an invalid length.
[  322.863201][T14959] 8021q: adding VLAN 0 to HW filter on device bond5
[  322.902170][   T40] audit: type=1326 audit(1767607580.769:47968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.2.2959" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f24df38f7c9 code=0x0
[  322.979456][T14973] syzkaller0: entered promiscuous mode
[  322.982411][T14973] syzkaller0: entered allmulticast mode
[  323.997427][T14987] nbd1: detected capacity change from 0 to 63
[  324.001407][ T5953] block nbd1: Receive control failed (result -32)
[  324.249995][T14995] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2965'.
[  324.602111][T14997] syzkaller0: entered promiscuous mode
[  324.603916][T14997] syzkaller0: entered allmulticast mode
[  324.667676][T15003] netlink: 'syz.0.2969': attribute type 1 has an invalid length.
[  324.668569][   T40] audit: type=1326 audit(1767607582.539:47969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15004 comm="syz.2.2970" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f24df38f7c9 code=0x0
[  325.660277][T15018] nbd2: detected capacity change from 0 to 63
[  325.663837][ T5953] block nbd2: Receive control failed (result -32)
[  325.979417][T15003] 8021q: adding VLAN 0 to HW filter on device bond3
[  326.058942][T15037] syzkaller0: entered promiscuous mode
[  326.061106][T15037] syzkaller0: entered allmulticast mode
[  326.158923][T15050] fuse: Unknown parameter 'fd00000000000000000000003'
[  326.174973][T15051] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2976'.
[  326.196859][   T40] audit: type=1326 audit(1767607584.059:47970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15053 comm="syz.1.2980" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f56a458f7c9 code=0x0
[  327.460026][T15048] syzkaller0: entered promiscuous mode
[  327.462474][T15048] syzkaller0: entered allmulticast mode
[  327.492651][T15059] tipc: Started in network mode
[  327.494893][T15059] tipc: Node identity 7ad2555e86eb, cluster identity 4711
[  327.498328][T15059] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  327.510725][T15060] syzkaller0: entered promiscuous mode
[  327.513407][T15060] syzkaller0: entered allmulticast mode
[  327.540984][T15068] tipc: Resetting bearer <eth:syzkaller0>
[  327.544762][T15056] tipc: Resetting bearer <eth:syzkaller0>
[  327.558576][T15056] tipc: Disabling bearer <eth:syzkaller0>
[  327.567790][T15076] netlink: 'syz.0.2983': attribute type 1 has an invalid length.
[  327.600025][T15076] 8021q: adding VLAN 0 to HW filter on device bond4
[  327.624424][T15079] syzkaller0: entered promiscuous mode
[  327.626317][T15079] syzkaller0: entered allmulticast mode
[  327.762883][T15094] fuse: Bad value for 'fd'
[  328.214825][T15116] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2990'.
[  329.259900][T15128] netlink: 'syz.2.2995': attribute type 1 has an invalid length.
[  329.273155][T15128] 8021q: adding VLAN 0 to HW filter on device bond6
[  329.294074][T15123] syzkaller0: entered promiscuous mode
[  329.296223][T15123] syzkaller0: entered allmulticast mode
[  329.363273][T15138] fuse: Bad value for 'fd'
[  329.604382][T15146] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2999'.
[  329.628869][   T40] audit: type=1326 audit(1767607587.489:47971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15147 comm="syz.1.3000" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f56a458f7c9 code=0x0
[  330.507942][T15164] nbd: nbd1 already in use
[  330.514504][T15164] block nbd1: NBD_DISCONNECT
[  330.516659][T15164] block nbd1: Send disconnect failed -32
[  330.519746][T15164] block nbd1: shutting down sockets
[  330.948930][T15170] syzkaller0: entered promiscuous mode
[  330.956740][T15170] syzkaller0: entered allmulticast mode
[  331.033084][T15185] fuse: Bad value for 'fd'
[  331.176395][T15199] syzkaller0: entered promiscuous mode
[  331.178826][T15199] syzkaller0: entered allmulticast mode
[  331.486050][T15211] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3013'.
[  332.901744][T15203] syzkaller0: entered promiscuous mode
[  332.903663][T15203] syzkaller0: entered allmulticast mode
[  332.971051][T15229] syzkaller0: entered promiscuous mode
[  332.973455][T15229] syzkaller0: entered allmulticast mode
[  333.066401][T15238] fuse: Bad value for 'fd'
[  334.882839][T15273] syzkaller0: entered promiscuous mode
[  334.885342][T15273] syzkaller0: entered allmulticast mode
[  334.964469][T15284] fuse: Bad value for 'fd'
[  335.639687][T15300] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3031'.
[  336.685952][   T40] audit: type=1326 audit(1767607594.549:47972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15308 comm="syz.1.3034" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f56a458f7c9 code=0x0
[  336.716742][T15305] syzkaller0: entered promiscuous mode
[  336.719500][T15305] syzkaller0: entered allmulticast mode
[  338.227176][T15333] fuse: Bad value for 'fd'
[  338.526633][T15354] syzkaller0: entered promiscuous mode
[  338.528598][T15354] syzkaller0: entered allmulticast mode
[  338.695962][   T40] audit: type=1326 audit(1767607596.559:47973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15363 comm="syz.1.3046" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f56a458f7c9 code=0x0
[  339.197604][T15372] syzkaller0: entered promiscuous mode
[  339.200372][T15372] syzkaller0: entered allmulticast mode
[  339.276243][T15376] fuse: Invalid rootmode
[  339.324425][T15378] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3051'.
[  339.454951][T15381] syzkaller0: entered promiscuous mode
[  339.457179][T15381] syzkaller0: entered allmulticast mode
[  339.636184][T15398] syzkaller0: entered promiscuous mode
[  339.638052][T15398] syzkaller0: entered allmulticast mode
[  339.667079][T15401] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3060'.
[  339.757681][T15405] fuse: Invalid rootmode
[  339.814326][   T40] audit: type=1326 audit(1767607597.679:47974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15409 comm="syz.2.3065" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f24df38f7c9 code=0x0
[  340.038954][T15417] syzkaller0: entered promiscuous mode
[  340.041478][T15417] syzkaller0: entered allmulticast mode
[  340.455205][T15425] syzkaller0: entered promiscuous mode
[  340.457250][T15425] syzkaller0: entered allmulticast mode
[  340.732459][T15431] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3071'.
[  341.075337][T15441] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3072'.
[  342.161133][T15433] syzkaller0: entered promiscuous mode
[  342.161180][T15431] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3071'.
[  342.163563][T15433] syzkaller0: entered allmulticast mode
[  342.192343][T10188] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  342.208503][T10188] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  342.212145][T10188] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  342.215779][T10188] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  342.271340][T15449] fuse: Invalid rootmode
[  342.279299][   T40] audit: type=1400 audit(1767607600.139:47975): avc:  denied  { ioctl } for  pid=15450 comm="syz.2.3075" path="socket:[47060]" dev="sockfs" ino=47060 ioctlcmd=0x662a scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  342.578861][T15483] syzkaller0: entered promiscuous mode
[  342.581432][T15483] syzkaller0: entered allmulticast mode
[  342.612027][T15482] syzkaller0: entered promiscuous mode
[  342.614436][T15482] syzkaller0: entered allmulticast mode
[  342.775361][T15485] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3085'.
[  343.331282][T15497] fuse: Unknown parameter '00000000000000000000'
[  343.473942][T15501] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3088'.
[  344.421835][T15520] block nbd2: NBD_DISCONNECT
[  344.423569][T15520] block nbd2: Send disconnect failed -32
[  344.426307][T15520] block nbd2: shutting down sockets
[  344.431141][T15519] syzkaller0: entered promiscuous mode
[  344.433269][T15519] syzkaller0: entered allmulticast mode
[  344.589302][T15532] fuse: Unknown parameter '00000000000000000000'
[  344.636217][T15536] syzkaller0: entered promiscuous mode
[  344.639043][T15536] syzkaller0: entered allmulticast mode
[  344.834482][T15542] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3101'.
[  344.911616][T15544] syzkaller0: entered promiscuous mode
[  344.914748][T15544] syzkaller0: entered allmulticast mode
[  346.701188][T15573] fuse: Unknown parameter '00000000000000000000'
[  346.833488][ T5953] Bluetooth: hci0: link tx timeout
[  346.836502][ T5953] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  347.158062][   T40] audit: type=1400 audit(1767607605.019:47976): avc:  denied  { read } for  pid=15604 comm="syz.1.3122" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  347.166174][   T40] audit: type=1400 audit(1767607605.019:47977): avc:  denied  { open } for  pid=15604 comm="syz.1.3122" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  347.174371][   T40] audit: type=1400 audit(1767607605.019:47978): avc:  denied  { ioctl } for  pid=15604 comm="syz.1.3122" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  347.186062][   T40] audit: type=1400 audit(1767607605.049:47979): avc:  denied  { write } for  pid=15604 comm="syz.1.3122" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  347.188903][T15605] FAULT_INJECTION: forcing a failure.
[  347.188903][T15605] name failslab, interval 1, probability 0, space 0, times 1
[  347.202611][T15605] CPU: 1 UID: 0 PID: 15605 Comm: syz.1.3122 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  347.202632][T15605] Tainted: [L]=SOFTLOCKUP
[  347.202636][T15605] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.202643][T15605] Call Trace:
[  347.202647][T15605]  <TASK>
[  347.202652][T15605]  dump_stack_lvl+0x16c/0x1f0
[  347.202672][T15605]  should_fail_ex+0x512/0x640
[  347.202690][T15605]  ? fs_reclaim_acquire+0xae/0x150
[  347.202709][T15605]  should_failslab+0xc2/0x120
[  347.202725][T15605]  __kmalloc_noprof+0xeb/0x910
[  347.202744][T15605]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  347.202764][T15605]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  347.202780][T15605]  tomoyo_realpath_from_path+0xc2/0x6e0
[  347.202797][T15605]  ? tomoyo_profile+0x47/0x60
[  347.202817][T15605]  tomoyo_path_number_perm+0x245/0x580
[  347.202832][T15605]  ? tomoyo_path_number_perm+0x237/0x580
[  347.202847][T15605]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  347.202862][T15605]  ? find_held_lock+0x2b/0x80
[  347.202893][T15605]  ? find_held_lock+0x2b/0x80
[  347.202910][T15605]  ? hook_file_ioctl_common+0x144/0x410
[  347.202932][T15605]  ? __fget_files+0x20e/0x3c0
[  347.202951][T15605]  security_file_ioctl+0x9b/0x240
[  347.202970][T15605]  __x64_sys_ioctl+0xb7/0x210
[  347.202992][T15605]  do_syscall_64+0xcd/0xf80
[  347.203016][T15605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.203035][T15605] RIP: 0033:0x7f56a458f7c9
[  347.203051][T15605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.203070][T15605] RSP: 002b:00007f56a5364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  347.203090][T15605] RAX: ffffffffffffffda RBX: 00007f56a47e5fa0 RCX: 00007f56a458f7c9
[  347.203102][T15605] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  347.203114][T15605] RBP: 00007f56a5364090 R08: 0000000000000000 R09: 0000000000000000
[  347.203125][T15605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  347.203134][T15605] R13: 00007f56a47e6038 R14: 00007f56a47e5fa0 R15: 00007fff90bca798
[  347.203150][T15605]  </TASK>
[  347.203155][T15605] ERROR: Out of memory at tomoyo_realpath_from_path.
[  347.513242][T15610] nbd: must specify at least one socket
[  347.583118][T15612] syzkaller0: entered promiscuous mode
[  347.585027][T15612] syzkaller0: entered allmulticast mode
[  347.844534][T15631] netlink: 'syz.5.3129': attribute type 1 has an invalid length.
[  348.930303][ T5952] Bluetooth: hci0: command 0x0406 tx timeout
[  349.338902][T15631] 8021q: adding VLAN 0 to HW filter on device bond4
[  349.440065][T15653] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3133'.
[  349.514915][T15657] nbd: must specify at least one socket
[  349.690360][T15650] nbd5: detected capacity change from 0 to 63
[  349.693236][T15663] block nbd5: NBD_DISCONNECT
[  349.700288][T15663] block nbd5: Disconnected due to user request.
[  349.705010][T15663] block nbd5: shutting down sockets
[  349.807623][T15680] fuse: Unknown parameter 'user00000000000000000000'
[  349.850321][T15676] nbd1: detected capacity change from 0 to 63
[  349.853320][T15681] block nbd1: NBD_DISCONNECT
[  349.854997][T15681] block nbd1: Disconnected due to user request.
[  349.856963][T15681] block nbd1: shutting down sockets
[  349.954501][T15686] FAULT_INJECTION: forcing a failure.
[  349.954501][T15686] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  349.959458][T15686] CPU: 1 UID: 0 PID: 15686 Comm: syz.1.3142 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  349.959479][T15686] Tainted: [L]=SOFTLOCKUP
[  349.959483][T15686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  349.959490][T15686] Call Trace:
[  349.959495][T15686]  <TASK>
[  349.959500][T15686]  dump_stack_lvl+0x16c/0x1f0
[  349.959542][T15686]  should_fail_ex+0x512/0x640
[  349.959570][T15686]  _copy_to_user+0x32/0xd0
[  349.959587][T15686]  snd_ctl_read+0x760/0x960
[  349.959603][T15686]  ? __pfx_snd_ctl_read+0x10/0x10
[  349.959613][T15686]  ? get_pid_task+0xfc/0x250
[  349.959630][T15686]  ? bpf_lsm_file_permission+0x9/0x10
[  349.959642][T15686]  ? security_file_permission+0x71/0x210
[  349.959658][T15686]  ? rw_verify_area+0xcf/0x6c0
[  349.959670][T15686]  ? __pfx_snd_ctl_read+0x10/0x10
[  349.959681][T15686]  vfs_read+0x1e4/0xcf0
[  349.959697][T15686]  ? __pfx_vfs_read+0x10/0x10
[  349.959709][T15686]  ? find_held_lock+0x2b/0x80
[  349.959731][T15686]  ? __fget_files+0x204/0x3c0
[  349.959749][T15686]  ? __fget_files+0x20e/0x3c0
[  349.959767][T15686]  ksys_read+0x1f8/0x250
[  349.959780][T15686]  ? __pfx_ksys_read+0x10/0x10
[  349.959794][T15686]  ? fput+0x70/0xf0
[  349.959805][T15686]  do_syscall_64+0xcd/0xf80
[  349.959822][T15686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.959834][T15686] RIP: 0033:0x7f56a458f7c9
[  349.959844][T15686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  349.959854][T15686] RSP: 002b:00007f56a5364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  349.959866][T15686] RAX: ffffffffffffffda RBX: 00007f56a47e5fa0 RCX: 00007f56a458f7c9
[  349.959873][T15686] RDX: 0000000000001000 RSI: 0000200000003480 RDI: 0000000000000003
[  349.959879][T15686] RBP: 00007f56a5364090 R08: 0000000000000000 R09: 0000000000000000
[  349.959885][T15686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  349.959891][T15686] R13: 00007f56a47e6038 R14: 00007f56a47e5fa0 R15: 00007fff90bca798
[  349.959906][T15686]  </TASK>
[  350.106833][T15690] nbd: must specify at least one socket
[  350.140416][T15692] syzkaller0: entered promiscuous mode
[  350.142840][T15692] syzkaller0: entered allmulticast mode
[  350.161987][T15694] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3146'.
[  350.820311][T15707] nbd2: detected capacity change from 0 to 63
[  350.825678][T15712] block nbd2: NBD_DISCONNECT
[  350.828147][T15712] block nbd2: Disconnected due to user request.
[  350.832223][T15712] block nbd2: shutting down sockets
[  350.978506][   T40] audit: type=1400 audit(1767607608.839:47980): avc:  denied  { shutdown } for  pid=15713 comm="syz.2.3151" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  350.985433][   T40] audit: type=1400 audit(1767607608.839:47981): avc:  denied  { read } for  pid=15713 comm="syz.2.3151" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  351.468465][T15720] fuse: Unknown parameter 'user_i00000000000000000000'
[  351.812370][T15723] FAULT_INJECTION: forcing a failure.
[  351.812370][T15723] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  351.818425][T15723] CPU: 1 UID: 0 PID: 15723 Comm: syz.0.3154 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  351.818459][T15723] Tainted: [L]=SOFTLOCKUP
[  351.818465][T15723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  351.818478][T15723] Call Trace:
[  351.818488][T15723]  <TASK>
[  351.818498][T15723]  dump_stack_lvl+0x16c/0x1f0
[  351.818529][T15723]  should_fail_ex+0x512/0x640
[  351.818562][T15723]  _copy_from_user+0x2e/0xd0
[  351.818589][T15723]  copy_msghdr_from_user+0x98/0x160
[  351.818611][T15723]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  351.818635][T15723]  ? __pfx__kstrtoull+0x10/0x10
[  351.818658][T15723]  ___sys_sendmsg+0xfe/0x1d0
[  351.818683][T15723]  ? __pfx____sys_sendmsg+0x10/0x10
[  351.818713][T15723]  ? find_held_lock+0x2b/0x80
[  351.818758][T15723]  __sys_sendmmsg+0x200/0x420
[  351.818781][T15723]  ? __pfx___sys_sendmmsg+0x10/0x10
[  351.818808][T15723]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  351.818843][T15723]  ? fput+0x70/0xf0
[  351.818860][T15723]  ? ksys_write+0x1ac/0x250
[  351.818882][T15723]  ? __pfx_ksys_write+0x10/0x10
[  351.818908][T15723]  __x64_sys_sendmmsg+0x9c/0x100
[  351.818927][T15723]  ? lockdep_hardirqs_on+0x7c/0x110
[  351.818950][T15723]  do_syscall_64+0xcd/0xf80
[  351.818975][T15723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.818994][T15723] RIP: 0033:0x7f5abbb8f7c9
[  351.819009][T15723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  351.819027][T15723] RSP: 002b:00007f5abc95c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  351.819047][T15723] RAX: ffffffffffffffda RBX: 00007f5abbde5fa0 RCX: 00007f5abbb8f7c9
[  351.819058][T15723] RDX: 0000000000000021 RSI: 0000200000000480 RDI: 0000000000000003
[  351.819067][T15723] RBP: 00007f5abc95c090 R08: 0000000000000000 R09: 0000000000000000
[  351.819079][T15723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  351.819089][T15723] R13: 00007f5abbde6038 R14: 00007f5abbde5fa0 R15: 00007ffe89fcc728
[  351.819113][T15723]  </TASK>
[  351.927507][T15716] netem: change failed
[  352.072210][T15731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3158'.
[  352.134033][T15743] netlink: 'syz.1.3161': attribute type 1 has an invalid length.
[  352.143881][T15745] fuse: Unknown parameter 'user_i00000000000000000000'
[  352.443744][   T40] audit: type=1400 audit(1767607610.299:47982): avc:  denied  { create } for  pid=15757 comm="syz.2.3163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  352.450755][   T40] audit: type=1400 audit(1767607610.299:47983): avc:  denied  { bind } for  pid=15757 comm="syz.2.3163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  352.450802][   T40] audit: type=1400 audit(1767607610.299:47984): avc:  denied  { accept } for  pid=15757 comm="syz.2.3163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  352.450843][   T40] audit: type=1400 audit(1767607610.299:47985): avc:  denied  { write } for  pid=15757 comm="syz.2.3163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  352.450882][   T40] audit: type=1400 audit(1767607610.299:47986): avc:  denied  { lock } for  pid=15757 comm="syz.2.3163" path="socket:[49721]" dev="sockfs" ino=49721 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  353.796216][T15761] syzkaller1: entered promiscuous mode
[  353.799161][T15761] syzkaller1: entered allmulticast mode
[  353.868185][T15766] syzkaller0: entered promiscuous mode
[  353.871040][T15766] syzkaller0: entered allmulticast mode
[  353.947139][T15772] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3168'.
[  354.084973][T15774] nbd0: detected capacity change from 0 to 63
[  354.088682][ T5953] block nbd0: Receive control failed (result -32)
[  354.238050][T15787] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3171'.
[  354.320648][   T40] audit: type=1400 audit(1767607612.189:47987): avc:  denied  { ioctl } for  pid=15794 comm="syz.0.3172" path="socket:[49745]" dev="sockfs" ino=49745 ioctlcmd=0x942d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  354.386133][T15794] process '/newroot/137/file0' started with executable stack
[  355.590666][T15823] netlink: 'syz.5.3177': attribute type 1 has an invalid length.
[  355.634879][T15829] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3180'.
[  355.683327][T15835] hfsplus: unable to find HFS+ superblock
[  355.733823][T15835] bond5: (slave bond_slave_1): Device is not bonding slave
[  355.736898][T15835] bond5: option active_slave: invalid value (bond_slave_1)
[  355.742132][T15835] bond5 (unregistering): Released all slaves
[  355.758588][T15819] block nbd0: NBD_DISCONNECT
[  355.760435][T15819] block nbd0: Send disconnect failed -32
[  355.762632][T15819] block nbd0: shutting down sockets
[  355.886125][T15849] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3184'.
[  355.902264][T15854] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3186'.
[  357.648174][T15895] FAULT_INJECTION: forcing a failure.
[  357.648174][T15895] name failslab, interval 1, probability 0, space 0, times 0
[  357.656860][T15895] CPU: 3 UID: 0 PID: 15895 Comm: syz.1.3196 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  357.656897][T15895] Tainted: [L]=SOFTLOCKUP
[  357.656904][T15895] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  357.656917][T15895] Call Trace:
[  357.656924][T15895]  <TASK>
[  357.656932][T15895]  dump_stack_lvl+0x16c/0x1f0
[  357.656964][T15895]  should_fail_ex+0x512/0x640
[  357.656994][T15895]  ? fs_reclaim_acquire+0xae/0x150
[  357.657024][T15895]  should_failslab+0xc2/0x120
[  357.657051][T15895]  __kmalloc_noprof+0xeb/0x910
[  357.657083][T15895]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  357.657118][T15895]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  357.657144][T15895]  tomoyo_realpath_from_path+0xc2/0x6e0
[  357.657175][T15895]  ? tomoyo_profile+0x47/0x60
[  357.657207][T15895]  tomoyo_path_number_perm+0x245/0x580
[  357.657229][T15895]  ? tomoyo_path_number_perm+0x237/0x580
[  357.657271][T15895]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  357.657298][T15895]  ? find_held_lock+0x2b/0x80
[  357.657352][T15895]  ? find_held_lock+0x2b/0x80
[  357.657380][T15895]  ? hook_file_ioctl_common+0x144/0x410
[  357.657453][T15895]  ? __fget_files+0x20e/0x3c0
[  357.657488][T15895]  security_file_ioctl+0x9b/0x240
[  357.657514][T15895]  __x64_sys_ioctl+0xb7/0x210
[  357.657541][T15895]  do_syscall_64+0xcd/0xf80
[  357.657569][T15895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.657589][T15895] RIP: 0033:0x7f56a458f7c9
[  357.657607][T15895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  357.657625][T15895] RSP: 002b:00007f56a5364038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  357.657646][T15895] RAX: ffffffffffffffda RBX: 00007f56a47e5fa0 RCX: 00007f56a458f7c9
[  357.657734][T15895] RDX: 0000200000000340 RSI: 00000000c06864a2 RDI: 0000000000000004
[  357.657747][T15895] RBP: 00007f56a5364090 R08: 0000000000000000 R09: 0000000000000000
[  357.657768][T15895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  357.657779][T15895] R13: 00007f56a47e6038 R14: 00007f56a47e5fa0 R15: 00007fff90bca798
[  357.657821][T15895]  </TASK>
[  357.657831][T15895] ERROR: Out of memory at tomoyo_realpath_from_path.
[  357.717199][   T40] audit: type=1400 audit(1767607615.539:47988): avc:  denied  { setopt } for  pid=15890 comm="syz.5.3194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  357.809071][T15904] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3199'.
[  357.836926][T15906] syzkaller0: entered promiscuous mode
[  357.838885][T15906] syzkaller0: entered allmulticast mode
[  358.061860][T15928] FAULT_INJECTION: forcing a failure.
[  358.061860][T15928] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.068073][T15928] CPU: 2 UID: 0 PID: 15928 Comm: syz.2.3206 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  358.068107][T15928] Tainted: [L]=SOFTLOCKUP
[  358.068114][T15928] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  358.068126][T15928] Call Trace:
[  358.068148][T15928]  <TASK>
[  358.068159][T15928]  dump_stack_lvl+0x16c/0x1f0
[  358.068190][T15928]  should_fail_ex+0x512/0x640
[  358.068223][T15928]  _copy_from_user+0x2e/0xd0
[  358.068252][T15928]  copy_msghdr_from_user+0x98/0x160
[  358.068273][T15928]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  358.068364][T15928]  ___sys_sendmsg+0xfe/0x1d0
[  358.068402][T15928]  ? __pfx____sys_sendmsg+0x10/0x10
[  358.068452][T15928]  __sys_sendmsg+0x16d/0x220
[  358.068481][T15928]  ? __pfx___sys_sendmsg+0x10/0x10
[  358.068516][T15928]  do_syscall_64+0xcd/0xf80
[  358.068546][T15928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.068566][T15928] RIP: 0033:0x7f24df38f7c9
[  358.068582][T15928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.068599][T15928] RSP: 002b:00007f24e01a0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  358.068616][T15928] RAX: ffffffffffffffda RBX: 00007f24df5e5fa0 RCX: 00007f24df38f7c9
[  358.068628][T15928] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 0000000000000004
[  358.068639][T15928] RBP: 00007f24e01a0090 R08: 0000000000000000 R09: 0000000000000000
[  358.068651][T15928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.068662][T15928] R13: 00007f24df5e6038 R14: 00007f24df5e5fa0 R15: 00007ffff7716d38
[  358.068688][T15928]  </TASK>
[  359.644001][T15946] BUG: unable to handle page fault for address: ffffed101ad1ea00
[  359.647269][T15946] #PF: supervisor read access in kernel mode
[  359.650007][T15946] #PF: error_code(0x0000) - not-present page
[  359.655262][T15946] PGD 17ffee067 P4D 17ffee067 PUD 7ffd2067 PMD 0 
[  359.658438][T15946] Oops: Oops: 0000 [#1] SMP KASAN NOPTI
[  359.660904][T15946] CPU: 2 UID: 0 PID: 15946 Comm: syz.1.3210 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  359.665564][T15946] Tainted: [L]=SOFTLOCKUP
[  359.667427][T15946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.672762][T15946] RIP: 0010:update_or_create_fnhe+0x112b/0x1600
[  359.675732][T15946] Code: 00 4a 8d 3c e5 20 bf d7 8d 48 89 fa 48 c1 ea 03 42 80 3c 32 00 0f 85 80 03 00 00 4e 03 2c e5 20 bf d7 8d 4c 89 e8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 59 03 00 00 4d 8b 6d 00 e8 e1 84 a4 01 31 ff
[  359.684222][T15946] RSP: 0018:ffffc9000785f298 EFLAGS: 00010a06
[  359.686817][T15946] RAX: 1ffff1101ad1ea00 RBX: ffff888028ebc320 RCX: ffffc900262e9000
[  359.690626][T15946] RDX: 1ffffffff1baf7e4 RSI: ffffffff89d38228 RDI: ffffffff8dd7bf20
[  359.694281][T15946] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  359.698225][T15946] R10: 0000000000000000 R11: ffff888061cd0b30 R12: 0000000000000000
[  359.701956][T15946] R13: ffff8880d68f5000 R14: dffffc0000000000 R15: ffffed10051d786b
[  359.705335][T15946] FS:  00007f56a53436c0(0000) GS:ffff8880d6af5000(0000) knlGS:0000000000000000
[  359.709157][T15946] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  359.712033][T15946] CR2: ffffed101ad1ea00 CR3: 000000004fa11000 CR4: 0000000000352ef0
[  359.715452][T15946] Call Trace:
[  359.716895][T15946]  <TASK>
[  359.718215][T15946]  __ip_rt_update_pmtu+0xa44/0x1320
[  359.720451][T15946]  ? __pfx___ip_rt_update_pmtu+0x10/0x10
[  359.722922][T15946]  ? ip_route_output_key_hash+0x143/0x2b0
[  359.725541][T15946]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  359.728304][T15946]  ipv4_update_pmtu+0x2ac/0x360
[  359.730537][T15946]  ? __pfx_ipv4_update_pmtu+0x10/0x10
[  359.732909][T15946]  ? ip_tunnel_lookup+0x805/0xb70
[  359.735137][T15946]  ipip_err+0x6e8/0x840
[  359.736968][T15946]  ? __pfx_ipip_err+0x10/0x10
[  359.739313][T15946]  ? raw_icmp_error+0x508/0xbf0
[  359.741650][T15946]  tunnelmpls4_err+0x88/0x210
[  359.744023][T15946]  ? __pfx_tunnelmpls4_err+0x10/0x10
[  359.746578][T15946]  icmp_socket_deliver+0x1c2/0x410
[  359.748797][T15946]  icmp_unreach+0x3a4/0xfd0
[  359.750954][T15946]  ? __skb_checksum_complete+0x16a/0x360
[  359.753653][T15946]  icmp_rcv+0xafa/0x1140
[  359.755537][T15946]  ? __pfx_icmp_rcv+0x10/0x10
[  359.757628][T15946]  ip_protocol_deliver_rcu+0x447/0x4c0
[  359.759999][T15946]  ip_local_deliver_finish+0x3f2/0x720
[  359.762610][T15946]  ip_local_deliver+0x18e/0x1f0
[  359.765044][T15946]  ip_rcv+0x2e0/0x600
[  359.766877][T15946]  ? __pfx_ip_rcv+0x10/0x10
[  359.768660][T15946]  __netif_receive_skb_one_core+0x197/0x1e0
[  359.770904][T15946]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  359.773417][T15946]  ? lock_acquire+0x179/0x330
[  359.775121][T15946]  ? __phys_addr+0xe8/0x180
[  359.776621][T15946]  __netif_receive_skb+0x1d/0x160
[  359.778408][T15946]  netif_receive_skb+0x137/0x760
[  359.780099][T15946]  ? __pfx_netif_receive_skb+0x10/0x10
[  359.781952][T15946]  tun_rx_batched.isra.0+0x3ee/0x740
[  359.783665][T15946]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  359.785565][T15946]  ? tun_get_user+0x1ded/0x3cc0
[  359.787171][T15946]  ? rcu_is_watching+0x12/0xc0
[  359.788846][T15946]  tun_get_user+0x28b2/0x3cc0
[  359.790603][T15946]  ? __pfx_tun_get_user+0x10/0x10
[  359.792510][T15946]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  359.794456][T15946]  ? find_held_lock+0x2b/0x80
[  359.796013][T15946]  ? tun_get+0x191/0x370
[  359.797426][T15946]  tun_chr_write_iter+0xdc/0x210
[  359.799047][T15946]  vfs_write+0x7d3/0x11d0
[  359.800909][T15946]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  359.803308][T15946]  ? __pfx_vfs_write+0x10/0x10
[  359.805436][T15946]  ? find_held_lock+0x2b/0x80
[  359.807511][T15946]  ksys_write+0x12a/0x250
[  359.809751][T15946]  ? __pfx_ksys_write+0x10/0x10
[  359.811938][T15946]  do_syscall_64+0xcd/0xf80
[  359.814354][T15946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.816543][T15946] RIP: 0033:0x7f56a458e27f
[  359.818133][T15946] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  359.826049][T15946] RSP: 002b:00007f56a5343000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  359.829889][T15946] RAX: ffffffffffffffda RBX: 00007f56a47e6090 RCX: 00007f56a458e27f
[  359.833718][T15946] RDX: 0000000000000046 RSI: 0000200000000400 RDI: 00000000000000c8
[  359.837270][T15946] RBP: 00007f56a4613f91 R08: 0000000000000000 R09: 0000000000000000
[  359.840751][T15946] R10: 0000000000000046 R11: 0000000000000293 R12: 0000000000000000
[  359.844124][T15946] R13: 00007f56a47e6128 R14: 00007f56a47e6090 R15: 00007fff90bca798
[  359.847496][T15946]  </TASK>
[  359.848839][T15946] Modules linked in:
[  359.850534][T15946] CR2: ffffed101ad1ea00
[  359.852152][T15946] ---[ end trace 0000000000000000 ]---
[  359.854266][T15946] RIP: 0010:update_or_create_fnhe+0x112b/0x1600
[  359.856662][T15946] Code: 00 4a 8d 3c e5 20 bf d7 8d 48 89 fa 48 c1 ea 03 42 80 3c 32 00 0f 85 80 03 00 00 4e 03 2c e5 20 bf d7 8d 4c 89 e8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 59 03 00 00 4d 8b 6d 00 e8 e1 84 a4 01 31 ff
[  359.863875][T15946] RSP: 0018:ffffc9000785f298 EFLAGS: 00010a06
[  359.865861][T15946] RAX: 1ffff1101ad1ea00 RBX: ffff888028ebc320 RCX: ffffc900262e9000
[  359.868628][T15946] RDX: 1ffffffff1baf7e4 RSI: ffffffff89d38228 RDI: ffffffff8dd7bf20
[  359.872394][T15946] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007
[  359.875869][T15946] R10: 0000000000000000 R11: ffff888061cd0b30 R12: 0000000000000000
[  359.879232][T15946] R13: ffff8880d68f5000 R14: dffffc0000000000 R15: ffffed10051d786b
[  359.882844][T15946] FS:  00007f56a53436c0(0000) GS:ffff8880d6af5000(0000) knlGS:0000000000000000
[  359.886608][T15946] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  359.889503][T15946] CR2: ffffed101ad1ea00 CR3: 000000004fa11000 CR4: 0000000000352ef0
[  359.892907][T15946] Kernel panic - not syncing: Fatal exception in interrupt
[  359.896226][T15946] Kernel Offset: disabled
[  359.897729][T15946] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:06:57  Registers:
info registers vcpu 0

CPU#0
RAX=00000000005b0444 RBX=0000000000000000 RCX=ffffffff8b7816d9 RDX=ffffed100d48673e
RSI=ffffffff8bf2b400 RDI=ffffffff8193483d RBP=fffffbfff1c12f68 RSP=ffffffff8e007df8
R8 =0000000000000000 R9 =ffffed100d48673d R10=ffff88806a4339eb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097b40 R14=ffffffff9088b9d0 R15=0000000000000000
RIP=ffffffff8b77fdcf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68f5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b31523ffc CR3=000000003fc67000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff43859440 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac15050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac1505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac15057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac1506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88806a643080 RCX=ffffffff81b28ba1 RDX=ffff8880350a4980
RSI=ffffffff81b28b7b RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90003b174f0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000007d7e
R12=dffffc0000000000 R13=ffffed100d4c8611 R14=0000000000000001 R15=0000000000000002
RIP=ffffffff81b28b7d RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69f5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f6f97917d60 CR3=0000000025319000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6f96dba6c3 00007f6f96dba6c3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffc6b94680 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558282995b 0000555582829550
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558281a624 000055558281a620
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6f96dbad20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558282a8bb 000055558282a010
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555582825994 0000555582825990
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558281e008
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f4030ff080808204 880010ec03000484 0010e80302920200 10e60300020010e4
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010fffffffffffff 04108004018c1000 060172dc28109c00 0200040a10b00348
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 10c4000200040a10 c803031c9bae7163 1800100810fc031c 8080808404880010
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f4030ff080808204 880010ec03000484 0010e80302920200 10e60300020010e4
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030004840010e003 01ce04840010dc03 0004840010d80300 609080820010d603
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000072 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853265b5 RDI=ffffffff9aeedc40 RBP=ffffffff9aeedc00 RSP=ffffc9000785eb00
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=727265203a465023
R12=0000000000000000 R13=0000000000000072 R14=ffffffff9aeedc00 R15=ffffffff85326550
RIP=ffffffff853265df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f56a53436c0 ffffffff 00c01300
GS =0000 ffff8880d6af5000 ffffffff 00c01300
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=ffffed101ad1ea00 CR3=000000004fa11000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=0000000000000007 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000f8000000000 00000f8000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000f8000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f56a46150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f56a46151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f56a47ba4a8 00007f56a47ba4a0 00007f56a47ba498 00007f56a47ba470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f56a531d100 00007f56a47ba460 00007f56a47ba478 00007f56a4adc0de
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f56a47ba4b8 00007f56a47ba4b0 00007f56a47ba4a8 00007f56a47ba4a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000acac7c RBX=0000000000000003 RCX=ffffffff8b7816d9 RDX=ffffed100d4e673e
RSI=ffffffff8bf2b400 RDI=ffffffff8193483d RBP=ffffed1003bd9000 RSP=ffffc90000197de8
R8 =0000000000000000 R9 =ffffed100d4e673d R10=ffff88806a7339eb R11=0000000000000000
R12=0000000000000003 R13=ffff88801dec8000 R14=ffffffff9088b9d0 R15=0000000000000000
RIP=ffffffff8b77fdcf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bf5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f56a5342f98 CR3=0000000037d98000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffcff1f0010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac15050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac1505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac15057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac1506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319ac151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007000880020024 0000706174657267 0001000b80120034 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000a0008bb1414ac 00070008000d0f70 0015000800000810 6003000600010164
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319b91d100 00007f319adba460 00007f319adb0004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f319adba4b8 00007f319adba4b0 00007f319adba4a8 00007f319adba4a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000