last executing test programs:

4.893136322s ago: executing program 1 (id=519):
clock_gettime(0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af83, &(0x7f0000000400)={0x1d})
futex(&(0x7f0000000000), 0x9, 0x2, &(0x7f0000000080)={r0, r1+10000000}, &(0x7f0000000180), 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x7, 0x4, &(0x7f0000000880)=ANY=[@ANYBLOB="180000000900000000000000000000003c0001000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x6}, 0x94)

4.665623396s ago: executing program 2 (id=524):
r0 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x800)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
sendmsg$sock(r0, &(0x7f0000000200)={&(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e20, @loopback}, 0x9, 0x0, 0x0, 0x3}}, 0x80, &(0x7f00000001c0)=[{&(0x7f00000000c0)="21bb2c0433f733719510b23d2079a4915b5c89c484b20b105b12981b818516c84182e16ecc72d9b5967996713b1abe1646314e3e1fde67ccfd", 0x39}, {&(0x7f0000000100)="880b49b05eae5d3c7ddfe17247464abc14ae1912d0d761b0517660123c21c2d1428347dffa500961b8bef7726dbbc54d9b4885ab6c921afe0b3c6c5542a787628968afaf17f53a025c9f32e9abf5a34bdb163ec33444a32ae0b6425df4bbd427f76b39278bd790d0f1bb25407c2e89aa2fca46e0991d8d1cf784b367078da4bd463769232ee30994e3fb4ae497399341190223ae02ce389c9b2fee2d9f35f1987aecd46cd48dea720db2a2507290", 0xae}], 0x2}, 0x4000000)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), r1)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000400)={'ip_vti0\x00', &(0x7f0000000300)={'sit0\x00', <r6=>0x0, 0x10, 0x80, 0x3, 0xd, {{0x2d, 0x4, 0x2, 0x28, 0xb4, 0x64, 0x0, 0x3, 0x29, 0x0, @multicast2, @remote, {[@generic={0x94, 0x6, "9fc02f51"}, @end, @noop, @timestamp={0x44, 0xc, 0x37, 0x0, 0xe, [0xfffffff9, 0x4]}, @end, @cipso={0x86, 0x55, 0x0, [{0x6, 0x8, "4bf5640facd5"}, {0x5, 0xf, "321d51edb2c9bb9d1fcbba787a"}, {0x0, 0x3, '2'}, {0x0, 0xf, "777966093e9022cf3c91e0722f"}, {0x3c70e837ff14f5c6, 0x7, "9e4750ff44"}, {0x2, 0xd, "a87b137cd43d15002b9df2"}, {0x2, 0x12, "deeb58a855bc7c27271d5647e9abdda5"}]}, @generic={0x86, 0x6, "8af70605"}, @ssrr={0x89, 0x1f, 0xd9, [@private=0xa010100, @broadcast, @loopback, @multicast2, @empty, @multicast1, @broadcast]}, @generic={0x44, 0xf, "72492a7420d4c5b11734015083"}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f00000004c0)={'syztnl1\x00', &(0x7f0000000440)={'ip6gre0\x00', <r7=>0x0, 0x2f, 0x5, 0x46, 0xffffffff, 0x24, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x80, 0x40, 0x574, 0x3}})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f00000005c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x64, r5, 0x300, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r6}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x7}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r4, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x38, 0x0, 0x100, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x2f}, @val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x6, 0x7}}}}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x31}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000900}, 0x4004000)
setsockopt$pppl2tp_PPPOL2TP_SO_SENDSEQ(r1, 0x111, 0x3, 0x1, 0x4)
r9 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000740), 0x140, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r9, 0xc0189376, &(0x7f0000000780)={{0x1, 0x1, 0x18, r2, {0x7}}, './file0\x00'})
ioctl$SNDCTL_MIDI_INFO(r9, 0xc074510c, &(0x7f00000007c0)={"56912e858f6aa38ae60133226e4a5e682493f9cfe5a56d91b9fdf834e255", 0x3, 0x9, 0x70000, [0x3, 0x401, 0x400, 0x80000001, 0x5, 0xe4e, 0x1, 0x2, 0x800, 0x9, 0xfffffffe, 0x7, 0x80, 0x10000, 0x48, 0x3, 0x3, 0x5f5c]})
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000880), r9)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r1, &(0x7f0000000a40)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000a00)={&(0x7f00000008c0)={0x128, r10, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x128}, 0x1, 0x0, 0x0, 0x90}, 0x8084)
r11 = dup2(r2, r3)
setsockopt$inet6_mtu(r11, 0x29, 0x17, &(0x7f0000000a80)=0x3, 0x4)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000b00)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000ac0)={<r12=>0xffffffffffffffff}, 0x2, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r11, &(0x7f0000000b40)={0x7, 0x8, 0xfa00, {r12, 0x8}}, 0x10)
accept4(r1, &(0x7f0000000b80)=@qipcrtr, &(0x7f0000000c00)=0x80, 0x800)
r13 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r13, 0x8982, &(0x7f0000000c40)={0x2, 'ip_vti0\x00', {0x1d7}, 0x8})
accept4$phonet_pipe(r1, &(0x7f0000000c80), &(0x7f0000000cc0)=0x10, 0x80800)
r14 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r15 = syz_genetlink_get_family_id$nfc(&(0x7f0000000d40), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000d80)=<r16=>0x0)
sendmsg$NFC_CMD_START_POLL(r14, &(0x7f0000000e80)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x44, r15, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [@NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x46}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x82}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x3c6d2e5348aa06af}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x52}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r16}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000044)

4.600336765s ago: executing program 2 (id=525):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000080)

4.598077561s ago: executing program 2 (id=526):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000390000000000000000000000850000004100000085000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
timer_create(0x1, &(0x7f0000000100)={0x0, 0x3, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000140)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000200)={{0x0, 0x989680}}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000002440)="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", 0xea5}], 0x1}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_MSG_GETSETELEM(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002f40)=ANY=[@ANYBLOB="40000000210a010800000000000000000a0000010900020073797a31000000000900010073797a310000000014000380"], 0x40}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r2, r1, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000001240)=ANY=[], 0x0)
getxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@random={'os2.', '\x00'}, &(0x7f00000000c0)=""/44, 0x2c)

4.350854856s ago: executing program 1 (id=527):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000008140)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000900)=""/243, 0xf3}], 0x1, &(0x7f0000000280)=""/11, 0xb}, 0x1}, {{0x0, 0x0, &(0x7f00000080c0)=[{&(0x7f0000007cc0)=""/122, 0x7a}], 0x1}, 0x9}], 0x2, 0x2, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="043b0a000000800000f7ffffff288f7a0f7f67006c9fb52d228adbdf2aff7f27c46373434b58825909c4a0884b5f6c22b15279d6354c7ab9d278ef1013bfc032f1715004e858a374794faaa364d94372f17caaa35fb9710b80787d5b179f77b869feb2081488e5ebffbc199c4d8f5838429e2bfd1dba567930a99505645bfdc104d2b4b75f331a5562b6952e56e9019ca7d692403709e93ffa2461ae25731bbf9d136486f6e724d00b66ed2b42d57e3d90c64d90a4897a40f9ed6567e922b7b9689d18ca6f52fd89"], 0xd)
r2 = socket(0x80000000000000a, 0x1, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(r2, 0x0, 0x81, &(0x7f00000005c0)={'nat\x00', 0x0, 0x0, 0x0, [0x8, 0x75f, 0x1, 0x8, 0x7, 0xb], 0x0, 0x0}, 0xba8)
r3 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000140)={r5, 0x5, 0x10}, 0xc)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000040)={r5, 0x66, "3afd1d5f1c5e77895fecfc244ecf5c8541930fd1742848ffac9aebe54b84484f64a6ba72e7cf7175e28d227b4b1745d4a879f45aa5f4ac780b6512ae96297bfb6378f2b5f17e79c7709289c3447909e8feafa9cbef4d6da7d8eff489036fc2228c352c91e19d"}, &(0x7f00000000c0)=0x6e)
close(r0)

4.230634637s ago: executing program 1 (id=528):
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000480)={'ip6_vti0\x00', &(0x7f0000000400)={'syztnl2\x00', <r0=>0x0, 0x29, 0x1, 0xe, 0x6, 0x8, @dev={0xfe, 0x80, '\x00', 0x1b}, @loopback, 0x7800, 0x7800, 0x5, 0x7fffffff}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f00000000c0)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}, @jmp={0x5, 0x1, 0x6, 0x7, 0x7, 0x18, 0x1}, @ldst={0x3, 0x0, 0x6, 0x6, 0x0, 0x40}, @printk={@s, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}, @func={0x85, 0x0, 0x1, 0x0, 0x6}], &(0x7f0000000140)='syzkaller\x00', 0xf, 0x80, &(0x7f0000000180)=""/128, 0x40f00, 0xf, '\x00', r0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000200)=[0x1], &(0x7f0000000240)=[{0x3, 0x5, 0x2}, {0x2, 0x4, 0xe, 0x3}, {0x2, 0x4, 0xc, 0x1}, {0x1, 0x4, 0xc, 0x7}, {0x4, 0x1, 0xf, 0x9}, {0x3, 0x3, 0xa, 0x1}, {0x0, 0x5, 0x10, 0xa}, {0x100, 0x1, 0x3}, {0x1, 0x5, 0xc, 0x9}]}, 0x94)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000540), 0x202a00, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000140)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x9801}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0xbf}]}}}]}, 0x40}}, 0x0)
sendto$packet(r2, &(0x7f0000000240)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc9", 0x26, 0x0, &(0x7f0000000540)={0xc9, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000580)={<r6=>0x0, 0x6c7c}, &(0x7f00000005c0)=0x8)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000600)={r6, 0xbfdf3db}, &(0x7f0000000640)=0x8)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f0000001100)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}], 0x20, 0x4000}}], 0x1, 0x0)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_NODELAY(r8, 0x84, 0x3, &(0x7f0000000500)=0x1, 0x4)
getsockopt$inet_sctp6_SCTP_INITMSG(r8, 0x84, 0x2, &(0x7f0000000080), &(0x7f00000004c0)=0xfffffffffffffe7f)

3.820695592s ago: executing program 2 (id=530):
r0 = socket$l2tp(0x2, 0x2, 0x73) (async, rerun: 32)
r1 = socket$inet_udp(0x2, 0x2, 0x0) (async, rerun: 32)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r2, 0x40045542, &(0x7f00000001c0)) (async)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x8001)
close_range(r1, 0xffffffffffffffff, 0x0)
sendmmsg$inet(r0, &(0x7f0000002e40)=[{{&(0x7f0000000000)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="a8000000000000000000000007000000860b74ba7b522658588f7144546103e00000010000000300000000006a6dee8e29426eb1000008ac1414aa00010000ac1414bb00000009001414aa0000000300000000000010007f00000100000002ffffff"], 0xc0}}, {{&(0x7f00000004c0)={0x2, 0x4e24, @multicast2}, 0x10, 0x0}}], 0x2, 0x0)

3.660353516s ago: executing program 1 (id=532):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000cc0)='./file0\x00', 0x0) (async)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r1, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
r2 = fspick(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x1)
fsconfig$FSCONFIG_SET_PATH(r2, 0x3, &(0x7f0000000080)='tmpfs\x00', &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c) (async)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/cgroups\x00', 0x0, 0x0) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000002140)={0x2020}, 0x2033) (async)
r5 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r5, &(0x7f00000002c0)=[{&(0x7f0000000000)='3', 0x1}], 0xd)
write(r4, &(0x7f0000000180)="2cd889f0253e14f3d5ac", 0xa)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000280)='dctcp-reno', 0xa)
fsconfig$FSCONFIG_SET_FD(r4, 0x5, &(0x7f0000000100)='GPL\x00', 0x0, r3)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r7 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$nfc_llcp(r7, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x2, 0x0, 0x49, "c46e9fd1a84b7fa0bf2cca6beb9363a680b652a86bcf56a1b9ca5386103a5ccbe47b7b9aa6d8d701a3ba00000000b97800001022f987617c318500", 0x3a}, 0x60) (async)
getsockopt$inet_buf(r7, 0x118, 0x2, 0x0, &(0x7f00000003c0))
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000600), r8) (async)
r10 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100))
getsockname$packet(r0, &(0x7f0000000340)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r10, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x2}, 0x2, r11}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0) (async)
r12 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff5653f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r13, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0) (async)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000440)=ANY=[@ANYBLOB="d8000000", @ANYRES16=r9, @ANYBLOB="010027bd7000ffdbdf250b0000003000018008000100", @ANYRES32=r11, @ANYBLOB="08000300030000001400020076657468315f746f5f7465616d00000008000300020000000c00018008000100", @ANYRES32=r13, @ANYBLOB="a76d0537b3175dca138ae8013d5b7279a55750caee3b93b89ee2f6f529578c", @ANYRES32=r13, @ANYBLOB="1400020076657468315f6d61637674617000000008000100", @ANYRES32=r11, @ANYBLOB="14000200766c616e3000000000000000000000001400020077673100000000000000000000000000080003000100000008000300000000001400020064766d727030000000000000000000001400020073797a6b616c6c657231000000000000"], 0xd8}, 0x1, 0x0, 0x0, 0x4004000}, 0x4840)
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)

3.399631065s ago: executing program 1 (id=533):
set_mempolicy(0x2, 0x0, 0x4)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000007, 0x40032, 0xffffffffffffffff, 0x40000000)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DVD_WRITE_STRUCT(r4, 0x5392, &(0x7f0000000040)=@type=0x2)
ptrace(0x10, r3)
ptrace$getregset(0x4204, r3, 0x204, &(0x7f0000000040)={0x0})
r5 = syz_open_procfs(r3, &(0x7f0000000880)='net/wireless\x00')
r6 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
r7 = getpid()
r8 = syz_pidfd_open(r7, 0x0)
setns(r8, 0x8020000)
syz_usb_control_io(r6, 0x0, &(0x7f0000000300)={0xfd3c, &(0x7f00000009c0)=ANY=[@ANYBLOB="5dc19cb3b68c992465eecc4587ff3efd5d36911f9a72411863f015a49515564e1b2a820b98c42b5f4b00e715a9e2545c2d6b0ab0a2edd5439a9b1d73634f9f114a74", @ANYRESOCT, @ANYRES16=r3, @ANYBLOB="ed9b464ff3424fab6e3f2a3f4c755bdebc6028bfff6173964e6c8a38599e9f7837238b0607468c711acb7c2900c17c63c548c3d4ed479717fa16fade50a9af08e88bbf67d3ae350e2c1ac47cb9c043b46eca166b2d146b57841e28e2dc9ed55bc1ba3a6cf964a9651d9f3c52846bad1327c366256889a93fbccaefbc0217954de329"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$VHOST_NET_SET_BACKEND(r5, 0x4008af30, &(0x7f00000008c0)={0x0, r5})
r9 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'veth1_to_team\x00', 0x0})
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x15)
ioctl$FS_IOC_GETVERSION(r9, 0xc0145b0e, &(0x7f0000000040))
r10 = syz_io_uring_setup(0x7dbe, &(0x7f00000001c0)={0x0, 0xfffffffd, 0x10100, 0x4, 0x37c}, &(0x7f0000000080)=<r11=>0x0, &(0x7f0000000100)=<r12=>0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r13=>0xffffffffffffffff})
syz_io_uring_submit(r11, r12, &(0x7f0000000380)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r13, 0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[{0x10, 0x10d, 0x5}, {0x10, 0x107, 0x6}], 0x20}, 0x0, 0xe3d08660d3cd4684})
io_uring_enter(r10, 0x92, 0x0, 0x0, 0x0, 0x0)
getdents(r5, &(0x7f0000002000)=""/4096, 0x1000)

2.740418394s ago: executing program 2 (id=535):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x1)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0x40045730, &(0x7f0000002780))
setsockopt$inet_sctp_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000080)={0x26, 0x6a, 0xa, 0x3, 0x0, 0x85, 0x6, 0x21, 0x82, 0x4, 0x81, 0x4c, 0x2}, 0xe)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f00000000c0), 0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = signalfd(r1, &(0x7f0000000300)={[0x5]}, 0x8)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000040)=0x7)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040301, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x1000000000000, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(0xffffffffffffffff, 0xc0984124, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f0000000680)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x1c, r5, 0x2, 0x70bd26, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8080}, 0x20000000)
r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000480)={'#! ', './file0', [{0x20, '\xcah\x16\xbf\rP\xd4s\x06ztnl1\x00\x84\x03R\xef\xe2\tF\x88\xcb>w\xc9\xce\x17\x8b9h\x100J\xd9\xe7E\xe8\x10\xda1s\x1d0$Tg\xb8vOI\xb0\xe4\"\bH\xf8\x99-9(\xea#\xbb\xd7\xbf\x98\x1e\x15\xbf\xf16\"Cb\xc2\xee\x1b@\xcf\tft\x86mY\x83\'$\xad\xaf\xe6\x04\xf3\xfb\xd3\xce\x06\xd4\b6CYr7X\xf7\x03\xad\x9a^\xec\x14\xb2\xae4\xf0~Q\x9b\xf4N\xf0\xd8K\xc6`\x95e\xc5\xf2\xeb\xb56U\xf2\xfc\xe7\x8a\xe4\xe5\x81\xc1\x7f\x90\xb9\x1c\xd0\xbaN\xcd\x0es,\x9b\xa9\x92R\x89\'\xe5\x9a\x1d\xb48\x8c\x13S|\xfb\xc12\xf8\xeb]\xbb7\xad\xa9\x97\xc6KE=\xa6'}], 0xa, "4d47d814eeba2d73dac408a3aafab5a1096fde2b2f0a8361f005137543285e1c54c7ac3c7e6c3efb9523a7c35c9a5c29a8bb66cbf84ca3a623c71527326162881abfeef4ba9aed3afeb83d1ad5ca89456f47f7e20502c15778941f1091e5c10085b630194b8784e1d1407f6f085fddcf9a8b611c03aa96c0a2caf79eae"}, 0x143)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000003c0)={[0x60000000002, 0x1000000000, 0x2, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68fb, 0x5, 0x0, 0x3, 0x2, 0x0, 0xffffffff], 0x10000, 0x202})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x1b6c42)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r9, 0xc0104d03, &(0x7f0000000040)={'syztnl1\x00', 0x0})
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000100)=<r10=>0x0)
write$P9_RGETLOCK(r9, &(0x7f0000000140)=ANY=[@ANYBLOB="1f0000003702000109000000000000000000001e00000000", @ANYRES32=r10, @ANYBLOB="010025"], 0x1f)
ioctl$LOOP_CONFIGURE(r8, 0x4c0a, &(0x7f0000001ac0)={r0, 0x2000, {0x0, 0x0, 0x0, 0x0, 0x14a1ff, 0x0, 0x0, 0x4, 0x0, "3384020bbe82b398000000000000000000001d0ec0c1b4e9b1c4369d03740100ceaac594b1d6d741dd17c1f50d38ef2a565ef1e80000000058966500", "a9103939c787a16c1ca4f837026d1a8554feac911e1cd130e04d528539f3d3289737f0374c72a964a02447a75df8a6ca7f040000000000000072fd29f35239d2", "24431a1e77a68e174f00", [0x0, 0x854e]}})
dup(r8)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f0000000080)='nfs\x00', 0x0, &(0x7f00000001c0)='\x05\x00\x00\x00\x04\xb0\xfe\x98\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\xc77<r\xe9\x9cD\xb0\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3wA\xf6`>\x8b')

1.316098924s ago: executing program 3 (id=542):
ioctl$VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f00000000c0)={0x15, 0xa, 0x2, "b75cbb184400000002000100040000000700", 0x30314742}) (async)
mprotect(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0)
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000100)="240000001e005f9514f9f407faac470002000000010000000000080008000100000000ff", 0x24) (async)
sigaltstack(&(0x7f0000000240)={&(0x7f0000001c00)=""/4095, 0x80000001, 0x1059}, 0x0) (async)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x3938700}}, 0x0) (async)
ioctl$VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000040)={0xb, 0xc, 0x0, "48bdd725d26ff0206ed225a2651681c76ec4413f6f6acdfe92404ec71e68b85b", 0x52424752})

1.150601705s ago: executing program 0 (id=544):
r0 = syz_open_dev$evdev(&(0x7f0000000240), 0x48000000000, 0x8001)
ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000280)=""/113)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000000)="a5ce", 0xfed0)
r6 = openat$cuse(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
splice(r4, 0x0, r6, 0x0, 0x2000, 0x6)
getsockname$packet(r3, &(0x7f0000000380)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newqdisc={0x4c, 0x24, 0xe0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0xfff3, 0xd064db0e491fa98f}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x1c, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0x842}, @TCA_CAKE_INGRESS={0x8, 0xf, 0x1}, @TCA_CAKE_AUTORATE={0x8, 0x9, 0x3}]}}]}, 0x4c}}, 0x4044080)
bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @remote}, 0x14)
sendto$inet6(r1, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)

1.079184803s ago: executing program 3 (id=545):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x2a, &(0x7f0000000040)={&(0x7f0000000840)={{0x14}, [@NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0xffff}}], {0x14}}, 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@delchain={0x24, 0x65, 0x400, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x509d884560ba1ba6, 0x3}, {}, {0x8, 0x10}}}, 0x24}}, 0x8010)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000100)=ANY=[@ANYBLOB="60b80000", @ANYRES16, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x4040084)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}}, 0x40000)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_BACKING_CLOSE(r2, 0xe503, 0x0)
ioctl$SIOCSIFMTU(r1, 0x89fb, &(0x7f0000000040)={'bond0\x00', 0xf76})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x1, 0x80000000, 0x4, {0x0, 0x0, 0x0, 0x0, {0xb, 0xc}, {0xa, 0xffe0}, {0xfff1, 0x3}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_FLOWS={0x8, 0x2, 0xfe2a}]}}]}, 0x3c}}, 0x20004055)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

790.558463ms ago: executing program 2 (id=546):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@struct={0x4, 0x0, 0x0, 0xf, 0x1, 0x6}]}, {0x0, [0x0, 0x0, 0x0]}}, 0x0, 0x29, 0x0, 0xa}, 0x20)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000b80), r0)
sendmsg$NFC_CMD_VENDOR(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000080)=ANY=[@ANYBLOB="cc000000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf251d00000008001d000600000008001e009006000086001f0008de58725e70371e4b82ec16a7930074d78f3a4012f570ad74a415ec6a89a169d88a22b99871ce2f13d25ab3697d11e250436d961dd0ff03000036a07a875cd9f6c7d09ff9ab5cf73834292e22a94122d0e05caf0ba199195570fc5131e145bd0851d62bb6baff3999ef776587cbea8e5bf6b9f9b87b058718f9a9f5e16e02caed40000008001e0000000000080001"], 0xcc}, 0x1, 0x0, 0x0, 0x2400c000}, 0x200048c0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@struct={0x4, 0x0, 0x0, 0xf, 0x1, 0x6}]}, {0x0, [0x0, 0x0, 0x0]}}, 0x0, 0x29, 0x0, 0xa}, 0x20) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000b80), r0) (async)
sendmsg$NFC_CMD_VENDOR(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000080)=ANY=[@ANYBLOB="cc000000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf251d00000008001d000600000008001e009006000086001f0008de58725e70371e4b82ec16a7930074d78f3a4012f570ad74a415ec6a89a169d88a22b99871ce2f13d25ab3697d11e250436d961dd0ff03000036a07a875cd9f6c7d09ff9ab5cf73834292e22a94122d0e05caf0ba199195570fc5131e145bd0851d62bb6baff3999ef776587cbea8e5bf6b9f9b87b058718f9a9f5e16e02caed40000008001e0000000000080001"], 0xcc}, 0x1, 0x0, 0x0, 0x2400c000}, 0x200048c0) (async)

789.152297ms ago: executing program 0 (id=547):
r0 = socket$inet(0xa, 0x800, 0x5)
sendto$inet(r0, &(0x7f0000000040)='Q', 0x1, 0x20000000, &(0x7f0000000100)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x2bf3, &(0x7f0000000040)={0x0, 0x1323, 0x4000, 0x3, 0x3cb}, 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = syz_open_dev$radio(&(0x7f0000002600), 0x0, 0x2)
ioctl$VIDIOC_S_CROP(r3, 0x4014563c, &(0x7f0000002640)={0x7, {0x4, 0x6, 0x0, 0x4}})
listen(r2, 0x8)
recvfrom$inet6(r2, 0x0, 0x0, 0x100, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='smaps\x00')
read$FUSE(r4, &(0x7f00000005c0)={0x2020}, 0x2020)
ioctl$TCXONC(r1, 0x540a, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x3)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000001200)={0x0, @generic={0x11, "2caefcd51ca2a2cb56a463612b34"}, @l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1e}, 0x3}, @can, 0x8000, 0x0, 0x0, 0x0, 0x347c, 0x0, 0x8, 0xfff, 0x7})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
capset(&(0x7f00000001c0)={0x19980330}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x5})
io_uring_setup(0x3142, &(0x7f0000000040)={0x0, 0x2211, 0x8000, 0xe, 0x20002f4})
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000002590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xd, 0x4, &(0x7f0000001280)=ANY=[@ANYBLOB="1800000000000000832b421f5610b2e1006b000061111800bb2c087d8815e0f75ab25dd9bf64a04857ea0386e6a45000000000000000"], &(0x7f00000000c0)='GPL\x00', 0x4, 0xac, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x70)

730.607114ms ago: executing program 3 (id=548):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x1, @tid=r0}, &(0x7f0000bbdffc))
mount$9p_virtio(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x220009, &(0x7f0000000240)={'trans=virtio,', {[{@ignoreqv}, {@nodevmap}], [{@flag='rw'}]}})
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
io_setup(0x1, &(0x7f00000016c0))
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r4, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r5)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r6, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x30, r9, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r11, @ANYBLOB="01002cbd7000ffdbdf250400"], 0x14}}, 0x800)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r12 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$alg(r12, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

500.41281ms ago: executing program 0 (id=549):
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
gettid()
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0xfffe, 0x7}, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x7fff}]}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0xfffd, @broadcast}, 0x10) (async)
bind$inet(r1, &(0x7f0000000200)={0x2, 0xfffd, @broadcast}, 0x10)
sendmmsg$inet(r1, &(0x7f00000000c0), 0x1, 0xc845) (async)
sendmmsg$inet(r1, &(0x7f00000000c0), 0x1, 0xc845)
write$binfmt_misc(r1, &(0x7f0000000300), 0xfdef)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x1f, 0x0, @thr={&(0x7f00000003c0)="3cf293ded3fe55d2e1a56794d4a4f03ad4f481b85663dea60f4a2d560db9775ac66a8af5fd717e209e16aab2b7e5eebe5aa327b9cd947565021ea0595796b58481cbe5057f1654fa9401affa1657f8caaf20d713876dbb9aef92673f09173c7d5bda229bb0", &(0x7f00000005c0)="44d8fb855f82082ad20b141505745eaec5df06a7ad1438ddb05fcf46252e7c38aaa957ab246c9c3b3be161dd3d90a9826d9b6ac010d61565529c396e4b383adaa06ab3dedde257f02aba15af61229f0fd364df0dfa8d89bcb57e485ac11cbbb161aba5988a8a400d1b3577f4ad2fcdd614774eafc71b92c2e5e48d70ec05cc4994042064abf63bee1541216036a09c65f10b00b66240fbade8d136b56a486e0967add47e3bfd567d7ab41301014c932ba35f5742d766d5d6a6f9db4d29e1d808003664ad850dde45b9e4effeeba0b283a7f7111a70b0cb8c1f6f95dbcf9d79bbf05eeecefbeec5dffb7c4277f752ec5d0000"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) (async)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
userfaultfd(0x80801) (async)
r2 = userfaultfd(0x80801)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000380)={0xaa, 0x101})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000000000/0x400000)=nil, 0x400000}, 0x1}) (async)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000000000/0x400000)=nil, 0x400000}, 0x1})
rseq(&(0x7f0000000000)={0x0, 0x0, 0x0, 0x2}, 0x20, 0x0, 0x0)
syz_clone3(&(0x7f0000001000)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
syz_clone3(&(0x7f0000001000)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000a, 0x40010, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f00000001c0)='qnx4\x00', 0x288084, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x6e5eeef491241b89, 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000a00)='.\x00', &(0x7f0000000040)='hpfs\x00', 0x800, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x80, 0x1) (async)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x80, 0x1)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
lchown(&(0x7f0000000180)='./bus\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x8871b000) (async)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x8871b000)
getsockopt$sock_buf(r3, 0x1, 0x4d, 0xffffffffffffffff, &(0x7f0000000000))
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFCONF(r4, 0x8912, &(0x7f0000000080)=@buf)

290.611844ms ago: executing program 0 (id=550):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) (async)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000010140)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='mmap_lock_acquire_returned\x00', r1}, 0x10) (async)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={0xffffffffffffffff, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1, 0x1}}, 0x40) (async, rerun: 64)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x20, 0x10012, r0, 0x0) (rerun: 64)

219.152357ms ago: executing program 3 (id=551):
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x380, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0xf5, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca837400"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x5, "d5170000dce9674a36da018dff16e70b8b14c4b7a94fe18e88605aa6be1a02a326a6bce65f81ed"}]}}}}}}, 0x0)
socketpair(0x21, 0x800, 0x1, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$inet6(r0, &(0x7f0000000040)="dc9e075755149bb967ec293c5b01c51824db03a4d0caaf1592f8bc577009683e1cdb5c25ca8b72fb47fd92a2444210810a2100f19d185a06f0d7c057957509615412ba2aca9996d572e773f7598ed9b72d10f9874e050d82cf9792244346febaba67ba7300d3a26efff8f70ad8c941fead3dd29373e83233b2799528154748b39084e0eacd705b3888159d588d8cbea2d823c423382fe02a5cd9ad34a268442e8b9ea70ed966f565d51f7f728bbf0002247d50af4c22a0a103531ca8182ef691c465c859f0ed5ec844", 0xc9, 0x40001, &(0x7f0000000140)={0xa, 0x4e20, 0x31, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x54bc799e}, 0x1c)

146.027145ms ago: executing program 0 (id=552):
r0 = syz_io_uring_setup(0xe42, &(0x7f00000005c0)={0x0, 0x2119, 0x100, 0x0, 0x15b}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_LLC_SDREQ(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f00000004c0)={0x20, 0x0, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_LLC_SDP={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x48001}, 0x24000814)
r4 = syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_G_TUNER(r4, 0xc054561d, &(0x7f0000000080)={0x0, "55e05cb6680cc32a4bfdca1886c5aded253bc9c89ed279cb8757af722fec30f7", 0x5, 0x100, 0x2, 0x7, 0x8, 0x0, 0x75, 0x5})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x114, &(0x7f0000000040)=0x2, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)={0x80000, 0x0, 0x32}, &(0x7f0000000500)='./file0\x00', 0x1d})
io_uring_enter(r0, 0x6f58, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x800)
r6 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_CROP(r6, 0xc014563b, &(0x7f0000000040)={0x9, {0xac54, 0x0, 0x9}})
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x10, @scatter={0x0, 0xcc, 0x0}, &(0x7f0000000240)="128db2cf0800", 0x0, 0x0, 0x0, 0xffffffff, 0x0})
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r6, 0xc040564b, &(0x7f0000000100)={0xea6, 0x0, 0x3011, 0x8, 0x10001, {0x3, 0x7}})
syz_io_uring_setup(0xe42, &(0x7f00000005c0)={0x0, 0x2119, 0x100, 0x0, 0x15b}, &(0x7f0000000140), &(0x7f0000000280)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$NFC_CMD_LLC_SDREQ(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f00000004c0)={0x20, 0x0, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_LLC_SDP={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x48001}, 0x24000814) (async)
syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) (async)
ioctl$VIDIOC_G_TUNER(r4, 0xc054561d, &(0x7f0000000080)={0x0, "55e05cb6680cc32a4bfdca1886c5aded253bc9c89ed279cb8757af722fec30f7", 0x5, 0x100, 0x2, 0x7, 0x8, 0x0, 0x75, 0x5}) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x114, &(0x7f0000000040)=0x2, 0x0, 0x4) (async)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)={0x80000, 0x0, 0x32}, &(0x7f0000000500)='./file0\x00', 0x1d}) (async)
io_uring_enter(r0, 0x6f58, 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x800) (async)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
ioctl$VIDIOC_G_CROP(r6, 0xc014563b, &(0x7f0000000040)={0x9, {0xac54, 0x0, 0x9}}) (async)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x10, @scatter={0x0, 0xcc, 0x0}, &(0x7f0000000240)="128db2cf0800", 0x0, 0x0, 0x0, 0xffffffff, 0x0}) (async)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r6, 0xc040564b, &(0x7f0000000100)={0xea6, 0x0, 0x3011, 0x8, 0x10001, {0x3, 0x7}}) (async)

144.160865ms ago: executing program 3 (id=553):
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000140)="ddefa47091540075e72cfdfe60c0d2d57f833b98de317bd4d6019bfb5309bd41259cab09c2e9b85ce2b6683b271f0febdd660e5d7459fa782d5dc513bcaaedc514b607007f2669ddbafc48a62f951c106f50ff118cd61177f8f925ce0ce48ace9ec1f153e076c45e7fc9b40a06e1b74431c938f944636474d859a513978a3a5d0aa6c0553c29bbef40a6a7e7a40d4c5cc575ce0e4c71d32d2058bec227194b8933cb5a8233a78af2163b403e25edc17ebf04187170225b7af5", 0xb9}], 0x1, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000200), 0x8a83, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r1)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYRES16=r2, @ANYRES16=r3, @ANYRESHEX=r1], 0x1c}, 0x1, 0x0, 0x0, 0x850}, 0x44054)

79.851026ms ago: executing program 0 (id=554):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(0x0, 0x5, 0x0)
read$msr(r1, 0x0, 0x0) (async)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0) (async)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = syz_clone(0x20080000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, 0x0) (async)
ptrace$pokeuser(0x6, r2, 0x358, 0x800000000000) (async)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) (async)
connect$inet6(r4, &(0x7f0000000340)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x303}, "fc000000eeffffff", "1fd33c81cf7995313c09de00fd6ded74", "62266bd8", "1e00040000000100"}, 0x28) (async)
write$binfmt_script(r4, &(0x7f0000000380)={'#! ', './file1', [], 0xa, "8277b976f0a270c5d5e7f87f3b6829fc5732f44dc5b6367f704bd70b6db398cd2b3ec28d36c5bcfc072e308809f9cb82a913856789d88a62dbf23fc00e530b13fa1e17d84638aee6f67ccea67605af07690f63d48c96105a66a9dda05b347648e3d526b0e510be59df747933b4b5aef48adf9813270cb364fae6e693bc5bb4513e788a5f"}, 0x8f) (async)
bind$bt_l2cap(r3, &(0x7f0000000180)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r3, 0x3) (async)
r5 = accept4$bt_l2cap(r3, &(0x7f0000000040), 0x0, 0x80800)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="043e130100c900", @ANYRESDEC=r4], 0x16) (async)
r6 = syz_open_dev$vim2m(&(0x7f0000000040), 0x4, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r6, 0xc0405602, &(0x7f00000000c0)={0x76, 0x2, 0x3, "4c4d75fffbbe7ba9f03bec81c6ea4d9838925eae1105347c135800", 0x38414261}) (async)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="4400b4e94b4936bca6e80000000000", @ANYRES32=0x0, @ANYBLOB="639b020000000000240012800b00010067656e6576650000140002800500090010000000060005004e220000"], 0x44}}, 0x0) (async)
keyctl$instantiate(0xc, 0x0, &(0x7f00000001c0)=ANY=[@ANYRES16=r5], 0x2a, 0x0) (async)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000200), &(0x7f0000000580)="b2636c7e383051866c88116ba57f4fc191e1a984128fd03857c81817aca96110ae04e5a553ea3892bb4dd5c7067a87f22ef0d2bdc78372e3557c9faeabcf37e6b9226b9e6435ab1aeec32d42f60890b7ffadc4befa558f82e189a0664b6718c72aed82cda8d755fcbbfdf858d743c927a6f81c040ad7562cc546cefcbceac70c7bb4d39b2ccf2158c0b470f4abff5e1739212609d8416d66822bbde03e9449aa16cc561f0314cebfe78dc84e70220b3c2c344b0ead5aa32d15ee47c3613a33b78466d876593abb569b75f5de8e12e9061ee1cd928d47a4423cece9c2b719aa58f18d7fba0976f1825e0f86ff3f6b5a3d3ba4dd38029af976900c0eb04976c2f9748662b7da8863fad801a4dc8b625aa5a8", 0xffffffffffffff1f, 0xfffffffffffffffe) (async)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='load default trusted:'], 0x34, 0xfffffffffffffffa)

388.705µs ago: executing program 3 (id=555):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x541983, 0x1b8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101100000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000021c0)=ANY=[@ANYBLOB="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"], 0x1914}}, 0x4048010)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x4e22, 0xa4, @rand_addr, 0xac}, 0x1c)
ioctl$int_in(r3, 0x5452, &(0x7f0000000000)=0x5)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x10000004000, 0x1)
ioctl$SG_GET_LOW_DMA(r4, 0x227a, &(0x7f0000000040))
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0xaf4, 0x0)
shutdown(r3, 0x0)
prctl$PR_SET_SECUREBITS(0x1b, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x900, 0x12)

0s ago: executing program 1 (id=556):
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8)
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x40000)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000180)={0x53, 0xfffffffffffffffb, 0xffffffffffffff0f, 0x0, @buffer={0x0, 0x0, &(0x7f0000000240)=""/86}, &(0x7f00000000c0)="8516a69e20db268c99540c0c4d75eff653e8f4a6151d2e4d9f4c076575f96acf7c1518d5f60238b377d659f7bb700debccf243dbb01f49c4cb23c6c6bf4119e0df3d877e3263e5e3d9d4f4335d1eff843c53a999bed1ba0070eeda8f6717e0ea1d71aa6a3acedb5ed60c20a93f34bd93bfec5a81ec493fb3a69dff6dd7481d79822d14c335fbd34fd723beaea2", 0x0, 0xfffffffb, 0x10039, 0x0, 0x0})
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
execveat$binfmt(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$userfaultfd(0xffffffffffffff9c, &(0x7f0000000040), 0x80001, 0x0)
fcntl$dupfd(r1, 0x406, r0)
r2 = ioctl$USERFAULTFD_IOC_NEW(r1, 0xaa00)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000240))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000001080)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x3})
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xf)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r3, &(0x7f00000020c0)={0x2020}, 0x2020)
ioctl$CDROMREADAUDIO(r3, 0x530e, &(0x7f0000000080)={@lba=0x200, 0x1, 0x4, &(0x7f0000000000)=""/4})

kernel console output (not intermixed with test programs):

[   53.350174][   T40] audit: type=1400 audit(1766745071.352:61): avc:  denied  { siginh } for  pid=5911 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '[localhost]:20274' (ED25519) to the list of known hosts.
[   55.749254][   T40] audit: type=1400 audit(1766745073.772:62): avc:  denied  { name_bind } for  pid=5918 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   55.783770][   T40] audit: type=1400 audit(1766745073.812:63): avc:  denied  { execute } for  pid=5919 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   55.793116][   T40] audit: type=1400 audit(1766745073.812:64): avc:  denied  { execute_no_trans } for  pid=5919 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   58.190555][   T40] audit: type=1400 audit(1766745076.222:65): avc:  denied  { mounton } for  pid=5919 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   58.202080][   T40] audit: type=1400 audit(1766745076.232:66): avc:  denied  { mount } for  pid=5919 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   58.204934][ T5919] cgroup: Unknown subsys name 'net'
[   58.341879][ T5919] cgroup: Unknown subsys name 'cpuset'
[   58.346842][ T5919] cgroup: Unknown subsys name 'rlimit'
[   58.493479][   T40] kauditd_printk_skb: 1 callbacks suppressed
[   58.493496][   T40] audit: type=1400 audit(1766745076.522:68): avc:  denied  { setattr } for  pid=5919 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   58.506252][   T40] audit: type=1400 audit(1766745076.522:69): avc:  denied  { create } for  pid=5919 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   58.519260][   T40] audit: type=1400 audit(1766745076.522:70): avc:  denied  { write } for  pid=5919 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   58.528954][   T40] audit: type=1400 audit(1766745076.522:71): avc:  denied  { read } for  pid=5919 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   58.539299][   T40] audit: type=1400 audit(1766745076.532:72): avc:  denied  { mounton } for  pid=5919 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   58.547496][   T40] audit: type=1400 audit(1766745076.532:73): avc:  denied  { mount } for  pid=5919 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   58.551252][ T5924] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   58.557706][   T40] audit: type=1400 audit(1766745076.542:74): avc:  denied  { read } for  pid=5644 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   58.568319][   T40] audit: type=1400 audit(1766745076.572:75): avc:  denied  { read } for  pid=5644 comm="dhcpcd" name="n102" dev="tmpfs" ino=1959 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   58.576150][   T40] audit: type=1400 audit(1766745076.572:76): avc:  denied  { open } for  pid=5644 comm="dhcpcd" path="/run/udev/data/n102" dev="tmpfs" ino=1959 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   58.583896][   T40] audit: type=1400 audit(1766745076.572:77): avc:  denied  { getattr } for  pid=5644 comm="dhcpcd" path="/run/udev/data/n102" dev="tmpfs" ino=1959 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   59.438386][ T5919] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   63.429979][ T5933] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   63.430781][ T5939] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   63.434407][ T5933] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   63.439773][ T5939] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   63.439795][ T5933] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   63.447171][ T5933] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   63.447275][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   63.450979][ T5933] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   63.454187][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   63.456443][ T5933] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   63.477026][   T64] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   63.477221][ T5293] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   63.481788][   T64] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   63.485743][ T5293] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   63.487801][   T64] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   63.491261][ T5293] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   63.495533][   T64] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   63.498484][ T5293] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   63.501311][   T64] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   63.504973][ T5293] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   63.777671][   T40] kauditd_printk_skb: 12 callbacks suppressed
[   63.777685][   T40] audit: type=1400 audit(1766745081.802:90): avc:  denied  { module_request } for  pid=5935 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   63.805679][ T5935] chnl_net:caif_netlink_parms(): no params data found
[   63.833417][ T5932] chnl_net:caif_netlink_parms(): no params data found
[   63.910757][ T5942] chnl_net:caif_netlink_parms(): no params data found
[   64.021060][ T5941] chnl_net:caif_netlink_parms(): no params data found
[   64.029161][ T5932] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.034701][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.037374][ T5932] bridge_slave_0: entered allmulticast mode
[   64.041272][ T5932] bridge_slave_0: entered promiscuous mode
[   64.045548][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.048583][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.051912][ T5935] bridge_slave_0: entered allmulticast mode
[   64.054762][ T5935] bridge_slave_0: entered promiscuous mode
[   64.084910][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.088140][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.091668][ T5932] bridge_slave_1: entered allmulticast mode
[   64.095733][ T5932] bridge_slave_1: entered promiscuous mode
[   64.100779][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.104016][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.107550][ T5935] bridge_slave_1: entered allmulticast mode
[   64.112575][ T5935] bridge_slave_1: entered promiscuous mode
[   64.232678][ T5932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.236031][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.238588][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.241862][ T5942] bridge_slave_0: entered allmulticast mode
[   64.245010][ T5942] bridge_slave_0: entered promiscuous mode
[   64.251299][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.266872][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.279261][ T5932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.283978][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.287415][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.291897][ T5942] bridge_slave_1: entered allmulticast mode
[   64.296030][ T5942] bridge_slave_1: entered promiscuous mode
[   64.342415][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.345615][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.348678][ T5941] bridge_slave_0: entered allmulticast mode
[   64.352836][ T5941] bridge_slave_0: entered promiscuous mode
[   64.359731][ T5935] team0: Port device team_slave_0 added
[   64.369569][ T5935] team0: Port device team_slave_1 added
[   64.377192][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.380136][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.383186][ T5941] bridge_slave_1: entered allmulticast mode
[   64.386308][ T5941] bridge_slave_1: entered promiscuous mode
[   64.391013][ T5932] team0: Port device team_slave_0 added
[   64.394891][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.416525][ T5932] team0: Port device team_slave_1 added
[   64.428719][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.471681][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.475451][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.477768][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.487770][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.494679][ T5942] team0: Port device team_slave_0 added
[   64.497154][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.499989][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.508947][ T5932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.515474][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.525415][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.528515][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.537458][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.542476][ T5942] team0: Port device team_slave_1 added
[   64.544946][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.547447][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.557554][ T5932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.573116][ T5941] team0: Port device team_slave_0 added
[   64.593746][ T5941] team0: Port device team_slave_1 added
[   64.603140][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.605442][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.613945][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.627219][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.630050][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.639733][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.682168][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.684768][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.693635][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.707726][ T5932] hsr_slave_0: entered promiscuous mode
[   64.710461][ T5932] hsr_slave_1: entered promiscuous mode
[   64.714089][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.716987][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.727912][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.735391][ T5935] hsr_slave_0: entered promiscuous mode
[   64.738289][ T5935] hsr_slave_1: entered promiscuous mode
[   64.741055][ T5935] debugfs: 'hsr0' already exists in 'hsr'
[   64.743027][ T5935] Cannot create hsr debugfs directory
[   64.809604][ T5942] hsr_slave_0: entered promiscuous mode
[   64.812407][ T5942] hsr_slave_1: entered promiscuous mode
[   64.814571][ T5942] debugfs: 'hsr0' already exists in 'hsr'
[   64.816433][ T5942] Cannot create hsr debugfs directory
[   64.886288][ T5941] hsr_slave_0: entered promiscuous mode
[   64.889012][ T5941] hsr_slave_1: entered promiscuous mode
[   64.891565][ T5941] debugfs: 'hsr0' already exists in 'hsr'
[   64.893950][ T5941] Cannot create hsr debugfs directory
[   65.171546][ T5935] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   65.178743][ T5935] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   65.184541][ T5935] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   65.198792][ T5935] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   65.252178][ T5932] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   65.270397][ T5932] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   65.279460][ T5932] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   65.287669][ T5932] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   65.363438][ T5942] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   65.371070][ T5942] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   65.378103][ T5942] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   65.385197][ T5942] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   65.463550][ T5941] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   65.472299][ T5941] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   65.482181][ T5941] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   65.488015][ T5941] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   65.526134][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.550285][ T5939] Bluetooth: hci0: command tx timeout
[   65.553364][ T5293] Bluetooth: hci2: command tx timeout
[   65.560186][ T5293] Bluetooth: hci3: command tx timeout
[   65.561085][ T5939] Bluetooth: hci1: command tx timeout
[   65.578142][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[   65.597857][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.600436][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.615453][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.617917][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.625032][ T5932] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.661072][ T5932] 8021q: adding VLAN 0 to HW filter on device team0
[   65.665731][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.691974][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.695046][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.701251][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.703716][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.723207][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[   65.740335][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.742814][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.750653][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.757929][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.760407][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.784682][ T5941] 8021q: adding VLAN 0 to HW filter on device team0
[   65.798394][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.800882][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.826082][   T72] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.829324][   T72] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.849813][   T40] audit: type=1400 audit(1766745083.872:91): avc:  denied  { sys_module } for  pid=5935 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   65.978892][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.999329][ T5932] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.036676][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.062382][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.065900][ T5935] veth0_vlan: entered promiscuous mode
[   66.087839][ T5935] veth1_vlan: entered promiscuous mode
[   66.103961][ T5932] veth0_vlan: entered promiscuous mode
[   66.123405][ T5932] veth1_vlan: entered promiscuous mode
[   66.141241][ T5942] veth0_vlan: entered promiscuous mode
[   66.154092][ T5935] veth0_macvtap: entered promiscuous mode
[   66.167488][ T5941] veth0_vlan: entered promiscuous mode
[   66.171578][ T5942] veth1_vlan: entered promiscuous mode
[   66.177706][ T5935] veth1_macvtap: entered promiscuous mode
[   66.187348][ T5932] veth0_macvtap: entered promiscuous mode
[   66.198477][ T5932] veth1_macvtap: entered promiscuous mode
[   66.205791][ T5941] veth1_vlan: entered promiscuous mode
[   66.212113][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.227176][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.235524][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.251102][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.259691][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.264302][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.269915][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.274598][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.280457][ T5942] veth0_macvtap: entered promiscuous mode
[   66.285812][ T5942] veth1_macvtap: entered promiscuous mode
[   66.294786][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.297892][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.308762][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.312615][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.336821][ T5941] veth0_macvtap: entered promiscuous mode
[   66.346770][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.372812][ T5941] veth1_macvtap: entered promiscuous mode
[   66.381323][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.390676][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.393479][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.427306][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.432458][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.441547][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.444675][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.457758][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.461038][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.462978][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.472103][   T40] audit: type=1400 audit(1766745084.502:92): avc:  denied  { mount } for  pid=5935 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   66.478438][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.485162][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.489659][   T40] audit: type=1400 audit(1766745084.502:93): avc:  denied  { mounton } for  pid=5935 comm="syz-executor" path="/syzkaller.SX95Gv/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   66.493019][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.499994][   T40] audit: type=1400 audit(1766745084.502:94): avc:  denied  { mount } for  pid=5935 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   66.511530][   T40] audit: type=1400 audit(1766745084.502:95): avc:  denied  { mounton } for  pid=5935 comm="syz-executor" path="/syzkaller.SX95Gv/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   66.521219][   T40] audit: type=1400 audit(1766745084.502:96): avc:  denied  { mounton } for  pid=5935 comm="syz-executor" path="/syzkaller.SX95Gv/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=6774 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   66.531202][   T40] audit: type=1400 audit(1766745084.512:97): avc:  denied  { unmount } for  pid=5935 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   66.538818][   T40] audit: type=1400 audit(1766745084.512:98): avc:  denied  { mounton } for  pid=5935 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2837 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   66.543321][ T5935] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   66.559367][   T40] audit: type=1400 audit(1766745084.512:99): avc:  denied  { mount } for  pid=5935 comm="syz-executor" name="/" dev="gadgetfs" ino=6775 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   66.600890][ T1148] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.601960][ T3741] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.604720][ T1148] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.608552][ T3741] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.647169][ T1148] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.651804][ T1148] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.666839][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.671087][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.737089][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.744723][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.764420][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.781915][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.812141][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.815771][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.935794][ T6039] netlink: 220 bytes leftover after parsing attributes in process `syz.0.5'.
[   67.022006][ T6050] netlink: 'syz.0.8': attribute type 4 has an invalid length.
[   67.124364][ T6061] netlink: 1192 bytes leftover after parsing attributes in process `syz.1.13'.
[   67.148088][ T6064] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15'.
[   67.164688][ T6061] team0 (unregistering): Port device team_slave_0 removed
[   67.172917][ T6061] team0 (unregistering): Port device team_slave_1 removed
[   67.182578][ T6064] netlink: 12 bytes leftover after parsing attributes in process `syz.2.15'.
[   67.272044][ T6072] netlink: 472 bytes leftover after parsing attributes in process `syz.2.18'.
[   67.277511][ T6072] fuse: Bad value for 'group_id'
[   67.279557][ T6072] fuse: Bad value for 'group_id'
[   67.448818][ T6092] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   67.518325][ T6098] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size.
[   67.602734][ T6096] netlink: 48 bytes leftover after parsing attributes in process `syz.2.24'.
[   67.612190][ T6096] netlink: 48 bytes leftover after parsing attributes in process `syz.2.24'.
[   67.632892][ T5939] Bluetooth: hci1: command tx timeout
[   67.632906][ T5293] Bluetooth: hci2: command tx timeout
[   67.632927][   T64] Bluetooth: hci0: command tx timeout
[   67.641108][ T6096] Zero length message leads to an empty skb
[   67.718182][ T6115] process 'syz.1.29' launched './file1' with NULL argv: empty string added
[   67.736951][ T6115] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[   67.744243][ T6115] netlink: 'syz.1.29': attribute type 10 has an invalid length.
[   67.752859][ T6115] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.758646][ T6115] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   67.765069][ T6115] overlay: ./file1 is not a directory
[   67.782481][ T6117] xt_hashlimit: size too large, truncated to 1048576
[   67.948490][ T6128] netlink: 28 bytes leftover after parsing attributes in process `syz.2.33'.
[   68.024775][ T6143] Cannot find add_set index 0 as target
[   68.064408][ T6144] IPVS: Scheduler module ip_vs_sip not found
[   68.084406][ T6143] IPVS: Scheduler module ip_vs_sip not found
[   68.088388][ T6154] netlink: 16 bytes leftover after parsing attributes in process `syz.1.34'.
[   68.097411][ T6149] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   68.176963][ T6166] netlink: 4 bytes leftover after parsing attributes in process `syz.2.42'.
[   68.220546][ T6169] IPVS: set_ctl: invalid protocol: 60 224.0.0.1:20002
[   68.233112][ T6169] evm: overlay not supported
[   68.242399][ T6169] xfs: Unknown parameter 'grpquotafile1'
[   68.471761][ T6172] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   68.474494][ T6172] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   68.480319][ T6172] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   68.484519][ T6172] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   68.487294][ T6172] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   68.492196][ T6172] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   68.498359][ T6172] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   68.501698][ T6172] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   68.506947][ T6172] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   68.512634][ T6172] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   68.515241][ T6172] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   68.519904][ T6172] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   68.564339][ T6185] syz.2.48 (6185) used obsolete PPPIOCDETACH ioctl
[   68.820060][ T6024] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   68.869301][ T6016] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   68.893417][ T6192] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard
[   68.900304][ T6192] exFAT-fs (nullb0): invalid boot record signature
[   68.903193][ T6192] exFAT-fs (nullb0): failed to read boot sector
[   68.905268][   T40] kauditd_printk_skb: 142 callbacks suppressed
[   68.905282][   T40] audit: type=1400 audit(1766745086.932:242): avc:  denied  { read } for  pid=6193 comm="syz.3.50" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   68.905965][ T6192] exFAT-fs (nullb0): failed to recognize exfat type
[   68.912118][   T40] audit: type=1400 audit(1766745086.932:243): avc:  denied  { open } for  pid=6193 comm="syz.3.50" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   68.920983][ T6192] netlink: 'syz.1.49': attribute type 1 has an invalid length.
[   68.937895][   T40] audit: type=1400 audit(1766745086.932:244): avc:  denied  { ioctl } for  pid=6193 comm="syz.3.50" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   68.983782][   T40] audit: type=1400 audit(1766745087.012:245): avc:  denied  { append } for  pid=6200 comm="syz.3.52" name="ubi_ctrl" dev="devtmpfs" ino=718 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   68.989381][ T6024] usb 5-1: Using ep0 maxpacket: 16
[   68.993749][   T40] audit: type=1400 audit(1766745087.012:246): avc:  denied  { ioctl } for  pid=6200 comm="syz.3.52" path="/dev/vbi3" dev="devtmpfs" ino=991 ioctlcmd=0x5619 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   69.002817][ T6024] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[   69.007400][ T6024] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   69.010471][ T6202] mmap: syz.1.49 (6202) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   69.011965][ T6024] usb 5-1: Product: syz
[   69.017505][ T6024] usb 5-1: Manufacturer: syz
[   69.019932][ T6024] usb 5-1: SerialNumber: syz
[   69.023890][ T6202] netlink: 'syz.1.49': attribute type 10 has an invalid length.
[   69.026926][ T6202] dummy0: entered promiscuous mode
[   69.032957][ T6016] usb 7-1: unable to get BOS descriptor or descriptor too short
[   69.036586][ T6016] usb 7-1: config 6 has an invalid interface number: 158 but max is 0
[   69.036593][ T6024] r8152-cfgselector 5-1: Unknown version 0x0000
[   69.039651][ T6016] usb 7-1: config 6 has no interface number 0
[   69.042351][ T6024] r8152-cfgselector 5-1: config 0 descriptor??
[   69.044878][ T6016] usb 7-1: config 6 interface 158 has no altsetting 0
[   69.051905][ T6016] usb 7-1: New USB device found, idVendor=0bda, idProduct=0140, bcdDevice=da.29
[   69.055028][ T6016] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   69.057863][ T6016] usb 7-1: Product: syz
[   69.059609][ T6016] usb 7-1: Manufacturer: syz
[   69.061195][ T6016] usb 7-1: SerialNumber: syz
[   69.068949][   T40] audit: type=1400 audit(1766745087.092:247): avc:  denied  { setopt } for  pid=6203 comm="syz.3.53" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   69.077003][   T40] audit: type=1400 audit(1766745087.102:248): avc:  denied  { ioctl } for  pid=6203 comm="syz.3.53" path="socket:[11357]" dev="sockfs" ino=11357 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   69.227799][   T40] audit: type=1400 audit(1766745087.252:249): avc:  denied  { write } for  pid=6213 comm="syz.3.56" name="uinput" dev="devtmpfs" ino=943 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   69.267577][ T6024] r8152-cfgselector 5-1: Unknown version 0x0000
[   69.268574][   T40] audit: type=1400 audit(1766745087.292:250): avc:  denied  { setopt } for  pid=6218 comm="syz.3.57" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   69.270808][ T6024] r8152-cfgselector 5-1: bad CDC descriptors
[   69.279838][   T40] audit: type=1400 audit(1766745087.292:251): avc:  denied  { getopt } for  pid=6218 comm="syz.3.57" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   69.288095][ T6024] r8152-cfgselector 5-1: USB disconnect, device number 2
[   69.422203][ T6232] loop5: detected capacity change from 0 to 7
[   69.680996][ T6016] rtsx_usb 7-1:6.158: probe with driver rtsx_usb failed with error -71
[   69.691404][ T6016] usb 7-1: USB disconnect, device number 2
[   69.807918][ T6243] netlink: 'syz.0.65': attribute type 1 has an invalid length.
[   69.874153][ T6243] 8021q: adding VLAN 0 to HW filter on device bond1
[   69.925608][ T6243] netlink: 'syz.0.65': attribute type 10 has an invalid length.
[   69.929154][ T6243] dummy0: entered promiscuous mode
[   69.981828][ T6230] syz.3.60 (6230): drop_caches: 1
[   70.070949][ T6260] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3297542003 (105521344096 ns) > initial count (99957982560 ns). Using initial count to start timer.
[   70.102671][ T6230] syz.3.60 (6230): drop_caches: 1
[   70.364222][ T6283] binder: 6281:6283 ioctl 40046210 0 returned -14
[   70.398487][ T6288] fuse: Bad value for 'user_id'
[   70.405191][ T6288] fuse: Bad value for 'user_id'
[   70.412217][ T6288] capability: warning: `syz.3.75' uses 32-bit capabilities (legacy support in use)
[   70.432806][ T5293] Bluetooth: hci0: command 0x0419 tx timeout
[   70.509373][ T5293] Bluetooth: hci2: command 0x0419 tx timeout
[   70.509373][ T5939] Bluetooth: hci1: command 0x0419 tx timeout
[   70.589586][ T5939] Bluetooth: hci3: command 0x0419 tx timeout
[   70.666604][ T6301] syz.3.79 uses obsolete (PF_INET,SOCK_PACKET)
[   70.734696][ T6310] fuse: Bad value for 'user_id'
[   70.736929][ T6310] fuse: Bad value for 'user_id'
[   71.189300][   T34] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   71.267314][ T6339] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   71.349284][   T34] usb 6-1: Using ep0 maxpacket: 8
[   71.352584][   T34] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   71.355339][   T34] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   71.358622][   T34] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   71.363090][   T34] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   71.366449][   T34] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   71.373477][   T34] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   71.376716][   T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.542603][ T6353] input: syz1 as /devices/virtual/input/input7
[   71.565751][ T5939] Bluetooth: hci2: ACL packet for unknown connection handle 200
[   71.565957][ T6355] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22
[   71.569853][ T5939] Bluetooth: hci2: ACL packet for unknown connection handle 200
[   71.587680][   T34] usb 6-1: GET_CAPABILITIES returned 0
[   71.587720][   T34] usbtmc 6-1:16.0: can't read capabilities
[   71.659853][   T34] usb 6-1: USB disconnect, device number 2
[   71.721379][ T6364] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   71.725404][ T6364] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   71.959670][ T6017] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   72.089467][ T6017] usb 7-1: device descriptor read/64, error -71
[   72.329320][ T6017] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   72.459315][ T6017] usb 7-1: device descriptor read/64, error -71
[   72.509749][ T5939] Bluetooth: hci0: command 0x0419 tx timeout
[   72.580406][ T6017] usb usb7-port1: attempt power cycle
[   72.589782][ T5939] Bluetooth: hci2: command 0x0419 tx timeout
[   72.599327][ T5939] Bluetooth: hci1: command 0x0419 tx timeout
[   72.670099][ T5939] Bluetooth: hci3: command 0x0419 tx timeout
[   72.852987][ T6404] __nla_validate_parse: 4 callbacks suppressed
[   72.852998][ T6404] netlink: 348 bytes leftover after parsing attributes in process `syz.0.104'.
[   72.919866][ T6017] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   72.960204][ T6017] usb 7-1: device descriptor read/8, error -71
[   73.047196][ T6428] netlink: 16 bytes leftover after parsing attributes in process `syz.1.113'.
[   73.199291][ T6017] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   73.230343][ T6017] usb 7-1: device descriptor read/8, error -71
[   73.349717][ T6017] usb usb7-port1: unable to enumerate USB device
[   73.783663][   T59] cfg80211: failed to load regulatory.db
[   74.253961][   T40] kauditd_printk_skb: 54 callbacks suppressed
[   74.253977][   T40] audit: type=1400 audit(2000000001.169:306): avc:  denied  { bind } for  pid=6470 comm="syz.0.126" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   74.307020][   T40] audit: type=1400 audit(2000000001.219:307): avc:  denied  { connect } for  pid=6470 comm="syz.0.126" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   74.435651][   T40] audit: type=1400 audit(2000000001.349:308): avc:  denied  { write } for  pid=6477 comm="syz.0.128" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   74.562610][ T6482] tipc: Started in network mode
[   74.564482][ T6482] tipc: Node identity 5217c0bdf1a5, cluster identity 4711
[   74.567093][ T6482] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   74.572483][ T6482] syzkaller0: entered promiscuous mode
[   74.574796][ T6482] syzkaller0: entered allmulticast mode
[   74.580400][   T40] audit: type=1400 audit(2000000001.499:309): avc:  denied  { name_bind } for  pid=6483 comm="syz.3.130" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   74.589692][ T5939] Bluetooth: hci0: command 0x0419 tx timeout
[   74.590327][   T40] audit: type=1400 audit(2000000001.509:310): avc:  denied  { create } for  pid=6483 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   74.603507][   T40] audit: type=1400 audit(2000000001.509:311): avc:  denied  { connect } for  pid=6483 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   74.603962][ T6482] tipc: Resetting bearer <eth:syzkaller0>
[   74.613822][   T40] audit: type=1400 audit(2000000001.509:312): avc:  denied  { bind } for  pid=6483 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   74.622953][ T6481] tipc: Resetting bearer <eth:syzkaller0>
[   74.632908][ T6481] tipc: Disabling bearer <eth:syzkaller0>
[   74.636418][   T40] audit: type=1400 audit(2000000001.549:313): avc:  denied  { write } for  pid=6483 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   74.646273][   T40] audit: type=1400 audit(2000000001.559:314): avc:  denied  { setopt } for  pid=6483 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   74.652969][   T40] audit: type=1400 audit(2000000001.559:315): avc:  denied  { read } for  pid=6483 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   74.669579][ T5939] Bluetooth: hci1: command 0x0419 tx timeout
[   74.669722][ T5293] Bluetooth: hci2: command 0x0419 tx timeout
[   74.749465][ T5293] Bluetooth: hci3: command 0x0419 tx timeout
[   75.000752][ T1037] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   75.005258][ T6018] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   75.009952][  T838] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   75.014890][ T6017] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   75.319340][ T6017] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   75.491121][ T6017] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   75.495774][ T6017] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   75.509222][ T6017] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   75.513344][ T6017] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   75.518918][ T6017] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   75.523758][ T6017] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.528498][ T6017] usb 7-1: config 0 descriptor??
[   75.564043][ T6514] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.139'.
[   75.611655][ T6516] netlink: 'syz.3.140': attribute type 1 has an invalid length.
[   75.690158][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   75.693525][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   75.696671][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[   75.709363][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   75.729273][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   75.749367][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   75.890997][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   75.964880][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.971736][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.974826][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.977371][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.980005][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.982734][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.982866][ T6529] tmpfs: Bad value for 'mpol'
[   75.985371][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.989983][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.993412][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   75.996205][ T6017] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   76.034310][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   76.046460][ T6017] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   76.064127][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   76.147708][ T6533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'.
[   76.153118][ T6533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'.
[   76.157314][ T6533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'.
[   76.162803][ T6533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'.
[   76.168205][ T6533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'.
[   76.172794][ T6533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'.
[   76.182790][ T6533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'.
[   76.260630][   T34] usb 7-1: USB disconnect, device number 7
[   76.286302][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[   76.292101][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[   76.295782][ T1146] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   76.301954][   T59] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   76.307896][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   76.339951][   T59] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   76.357810][ T5939] Bluetooth: hci0: unexpected event for opcode 0x2088
[   76.516165][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   76.523902][ T6543] ima: Can not allocate md4 (reason: -2)
[   76.719431][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   76.749495][ T5939] Bluetooth: hci2: command 0x0419 tx timeout
[   76.749699][   T64] Bluetooth: hci1: command 0x0419 tx timeout
[   76.839361][   T64] Bluetooth: hci3: command 0x0419 tx timeout
[   76.915521][ T1146] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.129681][ T6576] blkio.reset_stats is deprecated
[   77.172241][ T6572] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   77.177268][ T6572] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   77.265883][ T6572] netlink: 'syz.2.156': attribute type 12 has an invalid length.
[   77.287043][ T6597] netlink: 'syz.0.161': attribute type 10 has an invalid length.
[   77.292128][ T6597] dummy0: left promiscuous mode
[   77.298483][ T6597] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   77.412215][ T6609] Bluetooth: MGMT ver 1.23
[   77.623513][ T6614] overlay: ./file0 is not a directory
[   77.634570][ T6614] overlay: ./file1 is not a directory
[   78.299317][   T60] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   78.309328][   T29] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   78.449277][   T60] usb 5-1: Using ep0 maxpacket: 8
[   78.452787][   T60] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   78.456976][   T60] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[   78.461073][   T60] usb 5-1: config 0 interface 0 has no altsetting 0
[   78.465133][   T60] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[   78.468965][   T60] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.470818][   T29] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   78.475158][   T60] usb 5-1: config 0 descriptor??
[   78.478754][   T29] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[   78.482483][   T29] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[   78.485502][   T29] usb 8-1: Product: syz
[   78.487501][   T29] usb 8-1: Manufacturer: syz
[   78.489610][   T29] usb 8-1: SerialNumber: syz
[   78.700323][   T29] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   78.908809][   T60] mcp2221 0003:04D8:00DD.0003: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[   78.912612][   T64] Bluetooth: hci3: command 0x0419 tx timeout
[   79.204653][ T6017] usb 5-1: USB disconnect, device number 3
[   79.607184][ T6647] __nla_validate_parse: 63 callbacks suppressed
[   79.607207][ T6647] netlink: 92 bytes leftover after parsing attributes in process `syz.1.175'.
[   79.700221][   T40] kauditd_printk_skb: 52 callbacks suppressed
[   79.700234][   T40] audit: type=1400 audit(2000000006.619:368): avc:  denied  { connect } for  pid=6650 comm="syz.1.177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   79.719351][ T5293] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   79.719374][   T64] Bluetooth: hci4: command 0x1003 tx timeout
[   79.774958][   T40] audit: type=1400 audit(2000000006.689:369): avc:  denied  { create } for  pid=6652 comm="syz.0.178" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   79.781437][   T40] audit: type=1400 audit(2000000006.689:370): avc:  denied  { bind } for  pid=6652 comm="syz.0.178" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   79.811374][   T40] audit: type=1400 audit(2000000006.719:371): avc:  denied  { read write } for  pid=5932 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   79.822394][   T40] audit: type=1400 audit(2000000006.729:372): avc:  denied  { open } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   79.833590][   T40] audit: type=1400 audit(2000000006.729:373): avc:  denied  { ioctl } for  pid=5932 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   80.062406][   T40] audit: type=1400 audit(2000000006.979:374): avc:  denied  { bind } for  pid=6676 comm="syz.1.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   80.074411][   T40] audit: type=1400 audit(2000000006.979:375): avc:  denied  { listen } for  pid=6676 comm="syz.1.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   80.089266][   T40] audit: type=1400 audit(2000000006.979:376): avc:  denied  { accept } for  pid=6676 comm="syz.1.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   80.110278][    C3] net_ratelimit: 10 callbacks suppressed
[   80.110290][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   80.113341][   T40] audit: type=1400 audit(2000000007.029:377): avc:  denied  { create } for  pid=6676 comm="syz.1.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   80.200379][  T940] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   80.445604][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.471802][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.475577][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.478994][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.483342][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.486992][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.490165][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.494231][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.497369][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[   80.557697][ T6707] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   80.561589][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   80.620466][ T6714] syzkaller0: entered promiscuous mode
[   80.622456][ T6714] syzkaller0: entered allmulticast mode
[   80.622609][ T5293] Bluetooth: hci1: SCO packet for unknown connection handle 200
[   80.756903][ T6724] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   80.763019][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   80.867600][ T6737] 9pnet_virtio: no channels available for device syz
[   80.870514][ T6737] 9pnet_virtio: no channels available for device syz
[   80.874896][ T6737] 9pnet_virtio: no channels available for device syz
[   80.877879][ T6737] 9pnet_virtio: no channels available for device syz
[   80.888279][ T6737] 9pnet_virtio: no channels available for device syz
[   80.893143][ T6737] 9pnet_virtio: no channels available for device syz
[   80.896609][ T6737] 9pnet_virtio: no channels available for device syz
[   80.900765][ T6737] 9pnet_virtio: no channels available for device syz
[   80.904162][ T6737] 9pnet_virtio: no channels available for device syz
[   80.907769][ T6737] 9pnet_virtio: no channels available for device syz
[   80.911656][ T6737] 9pnet_virtio: no channels available for device syz
[   80.915056][ T6737] 9pnet_virtio: no channels available for device syz
[   80.919147][ T6737] 9pnet_virtio: no channels available for device syz
[   80.923844][ T6737] 9pnet_virtio: no channels available for device syz
[   80.926766][ T6737] 9pnet_virtio: no channels available for device syz
[   80.932381][ T6737] 9pnet_virtio: no channels available for device syz
[   80.935907][ T6737] 9pnet_virtio: no channels available for device syz
[   80.950513][ T6737] 9pnet_virtio: no channels available for device syz
[   80.954374][ T6737] 9pnet_virtio: no channels available for device syz
[   80.957110][ T6737] 9pnet_virtio: no channels available for device syz
[   80.964776][ T6737] 9pnet_virtio: no channels available for device syz
[   80.968022][ T6737] 9pnet_virtio: no channels available for device syz
[   80.974088][ T6747] mac80211_hwsim hwsim3 
: renamed from wlan1 (while UP)
[   80.975092][ T6737] 9pnet_virtio: no channels available for device syz
[   80.979466][ T6737] 9pnet_virtio: no channels available for device syz
[   80.982304][ T6737] 9pnet_virtio: no channels available for device syz
[   80.984981][ T6737] 9pnet_virtio: no channels available for device syz
[   80.987517][ T6737] 9pnet_virtio: no channels available for device syz
[   80.990996][ T6737] 9pnet_virtio: no channels available for device syz
[   80.994296][ T6737] 9pnet_virtio: no channels available for device syz
[   80.997403][ T6737] 9pnet_virtio: no channels available for device syz
[   81.000354][ T6737] 9pnet_virtio: no channels available for device syz
[   81.003140][ T6737] 9pnet_virtio: no channels available for device syz
[   81.006035][ T6737] 9pnet_virtio: no channels available for device syz
[   81.009856][ T6737] 9pnet_virtio: no channels available for device syz
[   81.012527][ T6737] 9pnet_virtio: no channels available for device syz
[   81.015301][ T6737] 9pnet_virtio: no channels available for device syz
[   81.018223][ T6737] 9pnet_virtio: no channels available for device syz
[   81.020940][ T6737] 9pnet_virtio: no channels available for device syz
[   81.024022][ T6737] 9pnet_virtio: no channels available for device syz
[   81.026904][ T6737] 9pnet_virtio: no channels available for device syz
[   81.030296][ T6737] 9pnet_virtio: no channels available for device syz
[   81.032888][ T6737] 9pnet_virtio: no channels available for device syz
[   81.035419][ T6737] 9pnet_virtio: no channels available for device syz
[   81.037998][ T6737] 9pnet_virtio: no channels available for device syz
[   81.040734][ T6737] 9pnet_virtio: no channels available for device syz
[   81.043531][ T6737] 9pnet_virtio: no channels available for device syz
[   81.046075][ T6737] 9pnet_virtio: no channels available for device syz
[   81.048596][ T6737] 9pnet_virtio: no channels available for device syz
[   81.051348][ T6737] 9pnet_virtio: no channels available for device syz
[   81.054045][ T6737] 9pnet_virtio: no channels available for device syz
[   81.056492][ T6737] 9pnet_virtio: no channels available for device syz
[   81.059045][ T6737] 9pnet_virtio: no channels available for device syz
[   81.061789][ T6737] 9pnet_virtio: no channels available for device syz
[   81.064403][ T6737] 9pnet_virtio: no channels available for device syz
[   81.066911][ T6737] 9pnet_virtio: no channels available for device syz
[   81.069736][ T6737] 9pnet_virtio: no channels available for device syz
[   81.072342][ T6737] 9pnet_virtio: no channels available for device syz
[   81.075805][ T6737] 9pnet_virtio: no channels available for device syz
[   81.080688][ T6737] 9pnet_virtio: no channels available for device syz
[   81.080896][ T6024] usb 8-1: USB disconnect, device number 2
[   81.084059][ T6737] 9pnet_virtio: no channels available for device syz
[   81.090713][ T6737] 9pnet_virtio: no channels available for device syz
[   81.092346][ T6024] usblp0: removed
[   81.093503][ T6737] 9pnet_virtio: no channels available for device syz
[   81.096932][ T6737] 9pnet_virtio: no channels available for device syz
[   81.100049][ T6737] 9pnet_virtio: no channels available for device syz
[   81.168944][ T6757] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   81.172011][ T6763] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   81.175458][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   81.177423][ T6757] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   81.208903][ T6759] (syz.3.208,6759,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   81.212412][ T6759] (syz.3.208,6759,0):ocfs2_fill_super:1177 ERROR: status = -22
[   81.229677][   T59] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   81.233091][ T6017] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   81.501357][ T6793] use of bytesused == 0 is deprecated and will be removed in the future,
[   81.504368][ T6793] use the actual size instead.
[   81.511725][ T6793] capability: warning: `syz.3.217' uses deprecated v2 capabilities in a way that may be insecure
[   81.580817][ T5293] Bluetooth: hci1: SCO packet for unknown connection handle 200
[   81.591587][ T6808] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6808 comm=syz.3.222
[   81.604157][ T6809] netlink: 'syz.3.222': attribute type 1 has an invalid length.
[   81.608646][ T6804] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.612108][ T6804] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.639062][ T6810] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for erspan1
[   81.647720][ T6808] netlink: 'syz.3.222': attribute type 2 has an invalid length.
[   81.794611][ T6826] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[   81.927208][ T6838] Illegal XDP return value 189581903 on prog  (id 97) dev syz_tun, expect packet loss!
[   82.182902][ T6842] netlink: 'syz.0.231': attribute type 5 has an invalid length.
[   82.481776][ T5293] Bluetooth: hci3: ACL packet for unknown connection handle 201
[   82.776457][ T6884] No control pipe specified
[   82.788944][ T6880] netlink: 'syz.0.238': attribute type 8 has an invalid length.
[   82.792367][ T6880] sch_fq: defrate 0 ignored.
[   82.862318][ T6897] genirq: Flags mismatch irq 4. 00200000 (pcl818) vs. 00200080 (ttyS0)
[   82.901587][ T6897] bond2: entered promiscuous mode
[   82.904292][ T6897] 8021q: adding VLAN 0 to HW filter on device bond2
[   82.948673][ T6905] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.975615][ T6911] netlink: 'syz.0.248': attribute type 62 has an invalid length.
[   82.981161][ T6905] bond0: (slave rose0): Enslaving as an active interface with an up link
[   83.181448][ T6937] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[   83.184617][ T6937] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[   83.188237][ T6937] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[   83.199365][ T6937] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[   83.329639][   T60] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   83.499979][   T60] usb 5-1: Using ep0 maxpacket: 8
[   83.503434][   T60] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[   83.506203][   T60] usb 5-1: config 179 has no interface number 0
[   83.508284][   T60] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[   83.512101][   T60] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[   83.515995][   T60] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   83.520618][   T60] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[   83.524426][   T60] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   83.529867][   T60] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[   83.532792][   T60] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.539499][ T6924] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   83.752842][   T60] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:179.65/input/input11
[   83.961343][ T6924] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.966583][ T6924] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   83.974355][ T6967] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.979742][ T6967] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.001602][   T29] usb 5-1: USB disconnect, device number 4
[   84.001603][    C3] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   84.038336][ T6973] netlink: 'syz.0.259': attribute type 4 has an invalid length.
[   84.056636][ T6973] netlink: 'syz.0.259': attribute type 4 has an invalid length.
[   84.369340][ T5293] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11
[   84.446186][ T7012] netlink: 'syz.2.270': attribute type 1 has an invalid length.
[   84.639833][ T7015] netlink: 'syz.3.269': attribute type 11 has an invalid length.
[   84.642970][ T7015] __nla_validate_parse: 67 callbacks suppressed
[   84.642982][ T7015] netlink: 132 bytes leftover after parsing attributes in process `syz.3.269'.
[   84.735590][   T40] kauditd_printk_skb: 63 callbacks suppressed
[   84.735601][   T40] audit: type=1400 audit(84.653:441): avc:  denied  { unmount } for  pid=5935 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   84.762844][ T7029] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=7029 comm=syz.0.275
[   84.767486][ T7029] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=7029 comm=syz.0.275
[   84.814433][ T7033] netlink: 8 bytes leftover after parsing attributes in process `syz.0.276'.
[   84.821331][ T7033] binder: 7032:7033 ioctl c018620c 200000002480 returned -22
[   84.883107][   T40] audit: type=1400 audit(84.803:442): avc:  denied  { mount } for  pid=7034 comm="syz.0.277" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   84.890397][   T40] audit: type=1400 audit(84.803:443): avc:  denied  { mounton } for  pid=7034 comm="syz.0.277" path="/file0" dev="bpf" ino=14245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=file permissive=1
[   84.900739][   T40] audit: type=1400 audit(84.823:444): avc:  denied  { mounton } for  pid=7034 comm="syz.0.277" path="/bus" dev="bpf" ino=14247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1
[   84.900831][ T7035] overlay: ./file0 is not a directory
[   84.919712][ T7035] overlayfs: upper fs does not support tmpfile.
[   85.024160][   T40] audit: type=1400 audit(84.943:445): avc:  denied  { read write } for  pid=7037 comm="syz.0.278" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   85.032665][   T40] audit: type=1400 audit(84.943:446): avc:  denied  { open } for  pid=7037 comm="syz.0.278" path="/97/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   85.041696][   T40] audit: type=1400 audit(84.953:447): avc:  denied  { ioctl } for  pid=7037 comm="syz.0.278" path="/97/file0/file0" dev="fuse" ino=64 ioctlcmd=0x542d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   85.300703][   T40] audit: type=1400 audit(85.223:448): avc:  denied  { read } for  pid=7042 comm="syz.3.279" path="socket:[16395]" dev="sockfs" ino=16395 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   85.389614][ T6023] net_ratelimit: 16 callbacks suppressed
[   85.389629][ T6023] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   85.408635][ T7045] netlink: 'syz.0.280': attribute type 1 has an invalid length.
[   85.414113][ T7045] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   85.481995][   T40] audit: type=1400 audit(85.403:449): avc:  denied  { listen } for  pid=7049 comm="syz.0.281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   85.490673][   T40] audit: type=1400 audit(85.403:450): avc:  denied  { accept } for  pid=7049 comm="syz.0.281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   85.591632][ T7057] netlink: 12 bytes leftover after parsing attributes in process `syz.2.283'.
[   85.595722][ T7057] block nbd0: Unsupported socket: should be TCP or UNIX.
[   85.647708][ T7059] netlink: 8 bytes leftover after parsing attributes in process `syz.2.284'.
[   85.676909][ T5293] Bluetooth: hci1: ISO packet too small
[   85.769622][ T7069] Falling back ldisc for ttynull.
[   85.997240][ T7096] input: syz1 as /devices/virtual/input/input12
[   86.004365][ T7096] input: failed to attach handler leds to device input12, error: -6
[   86.072434][ T5293] Bluetooth: hci1: Malformed HCI Event
[   86.075634][ T7100] netlink: 132 bytes leftover after parsing attributes in process `syz.0.296'.
[   86.131846][ T6018] IPVS: starting estimator thread 0...
[   86.239476][ T7104] IPVS: using max 44 ests per chain, 105600 per kthread
[   86.341674][ T7110] loop2: detected capacity change from 0 to 7
[   86.347741][ T7110] Dev loop2: unable to read RDB block 7
[   86.350543][ T7110]  loop2: unable to read partition table
[   86.352485][ T7110] loop2: partition table beyond EOD, truncated
[   86.354605][ T7110] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[   86.430588][ T6023] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   86.571136][ T7119] infiniband syz1: set active
[   86.572881][ T7119] infiniband syz1: added syz_tun
[   86.610680][ T7119] RDS/IB: syz1: added
[   86.613389][ T7119] smc: adding ib device syz1 with port count 1
[   86.616639][ T7119] smc:    ib device syz1 port 1 has no pnetid
[   87.149590][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   87.259087][ T7127] 9pnet_virtio: no channels available for device 127.0.0.1
[   87.323212][ T7130] netlink: 12 bytes leftover after parsing attributes in process `syz.0.304'.
[   87.469724][  T940] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   87.481770][ T7138] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   87.487296][ T7138] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   87.491498][ T7138] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   87.509287][ T6024] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   87.514000][ T7138] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   87.517695][ T7138] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   87.669439][ T6024] usb 7-1: Using ep0 maxpacket: 8
[   87.673308][ T6024] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   87.676795][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   87.682446][ T6024] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   87.687684][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   87.692793][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   87.698620][ T6024] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   87.702095][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   87.706865][ T6024] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   87.712428][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   87.717241][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   87.730502][ T6024] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   87.733795][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   87.738640][ T6024] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   87.744096][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   87.748798][ T6024] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   87.750984][ T7141] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   87.757232][ T6024] usb 7-1: string descriptor 0 read error: -22
[   87.757323][ T6024] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   87.757342][ T6024] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.765114][ T6024] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   87.801705][ T7141] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   87.836947][ T7144] netlink: 8 bytes leftover after parsing attributes in process `syz.1.308'.
[   87.893645][ T7150] netlink: 12 bytes leftover after parsing attributes in process `syz.0.310'.
[   87.900240][ T7150] netlink: 12 bytes leftover after parsing attributes in process `syz.0.310'.
[   88.071263][  T940] IPVS: starting estimator thread 0...
[   88.128285][ T7169] mkiss: ax0: crc mode is auto.
[   88.159302][ T7164] IPVS: using max 44 ests per chain, 105600 per kthread
[   88.189795][   T10] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   88.369615][   T10] usb 5-1: config index 0 descriptor too short (expected 39, got 27)
[   88.373688][   T10] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[   88.378071][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[   88.383979][   T10] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   88.388228][   T10] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   88.388282][ T7178] netlink: 40 bytes leftover after parsing attributes in process `syz.1.320'.
[   88.392194][   T10] usb 5-1: Product: syz
[   88.399873][   T10] usb 5-1: Manufacturer: syz
[   88.402085][   T10] usb 5-1: SerialNumber: syz
[   88.408230][   T10] usb 5-1: config 0 descriptor??
[   88.412163][   T10] hub 5-1:0.0: bad descriptor, ignoring hub
[   88.414089][   T10] hub 5-1:0.0: probe with driver hub failed with error -5
[   88.419826][   T10] usb 5-1: selecting invalid altsetting 0
[   88.432549][ T7183] Cannot find set identified by id 65534 to match
[   88.514853][ T7190] delete_channel: no stack
[   88.761443][ T7203] warning: `syz.3.329' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   88.772627][  T940] usb 5-1: USB disconnect, device number 5
[   89.025501][ T5293] Bluetooth: hci2: unexpected event for opcode 0x2012
[   89.028626][ T5293] Bluetooth: hci2: unexpected event for opcode 0x2012
[   89.311669][ T7219] loop4: detected capacity change from 0 to 7
[   89.324641][ T5934]  loop4: [CUMANA/ADFS] p1 [ADFS] p1
[   89.327333][ T5934] loop4: partition table partially beyond EOD, truncated
[   89.331375][ T5934] loop4: p1 size 2989602745 extends beyond EOD, 
[   89.331385][ T7216] bridge0: port 3(veth0_to_bridge) entered blocking state
[   89.331393][ T5934] truncated
[   89.331555][ T7216] bridge0: port 3(veth0_to_bridge) entered disabled state
[   89.344172][ T7216] veth0_to_bridge: entered allmulticast mode
[   89.360256][ T7219]  loop4: [CUMANA/ADFS] p1 [ADFS] p1
[   89.361130][ T7216] veth0_to_bridge: entered promiscuous mode
[   89.362521][ T7219] loop4: partition table partially beyond EOD, truncated
[   89.362835][ T7219] loop4: p1 size 2989602745 extends beyond EOD, 
[   89.365973][ T7216] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[   89.368421][ T7219] truncated
[   89.379385][ T7216] bridge0: port 3(veth0_to_bridge) entered blocking state
[   89.382733][ T7216] bridge0: port 3(veth0_to_bridge) entered forwarding state
[   89.762743][ T7233] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[   90.019560][   T40] kauditd_printk_skb: 18 callbacks suppressed
[   90.019579][   T40] audit: type=1400 audit(89.943:469): avc:  denied  { write } for  pid=7244 comm="syz.3.341" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   90.019791][ T7245] vcan0: tx drop: invalid sa for name 0xfffffffffffffffc
[   90.044322][ T7245] random: crng reseeded on system resumption
[   90.049437][   T40] audit: type=1400 audit(89.963:470): avc:  denied  { write } for  pid=7244 comm="syz.3.341" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   90.058629][   T40] audit: type=1400 audit(89.963:471): avc:  denied  { ioctl } for  pid=7244 comm="syz.3.341" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   90.202492][   T40] audit: type=1400 audit(90.123:472): avc:  denied  { connect } for  pid=7250 comm="syz.3.342" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   90.356323][ T7264] [U] zͻ�i������[27|
[   90.359915][ T7264] [U] �Bs��w�A�er��OU�]~�A��`1e��X�!��j5i�5�����y2�ڂ_�S�"q��h$�������6���\P�[2�*/��Wb_$�0A�7� X�ۖ(wc#����� =��g����<�
[   90.366147][ T7264] [U] �I��w�u��b:l��E�e�iBH��k��^�VI|ȥ�\x�d��
[   90.369355][ T7264] [U] ����|K�IH�����;F~�{I�ӎ�����=Mkq%����hd9�!�@a�*���lz��~`E���=��[>me��L�h��c��`��'�u���~+ۤ�m�ͷL�����X��������X����舂�i'�j��3�e=:3�/�C�_��<i�eT^��.��q9!��c���7Q���uR�`���S��+Z�	�
[   90.376795][ T7258] 9p: Bad value for 'rfdno'
[   90.378129][ T7264] [U] T�qt�v�b����|�@��D D��E/Q�u�ٝ
3������2������y�rr�|l;6�D�����%��jK���Ʒ2A[��ikuC��덁-T1x�T���v���3��l<��3Α��K�Ì5I�.��>��81�(FW
[   90.386995][ T7264] [U] 8)��X�)�YvxRĻ���b��m�b�N�
@ox�;JD�����,
[   90.390625][ T7264] [U] *C�n�3��v7�K�E�Xgt_3�����
[   90.393362][ T7264] [U] D��/Q�a���zҬE�H��gE1$_k����s�=�R@
[   90.395894][ T7264] [U] �ϼcEv��@�
[   90.397587][ T7264] [U] a�
�%
[   90.400952][ T7264] [U] �@���������cÏ_-Ʊ��Z����&�<Z9�ah�_�L@bKÈ�s�3J�J�5����D��;w�W��ˆUu�yL���bҳ53�ż��{�4XRQ���r�H=M"�/�@	o��������p��S�����~{P���ӡ�~i*�T���~W����)�Q�~ȵ�_ߜ�ͬz�~Vq�۪`
[   90.409050][ T7264] [U] �f1�p�3
[   90.411043][ T7264] [U] N0[L;a�_��l�&�k�M�C��
[   90.413499][ T7264] [U] ��r6w^����g��P$�u����4�~GC����ߚp�k��Ft��w��~�@�L1�
[   90.428763][ T7264] vxcan0: tx drop: invalid sa for name 0x0000000400000000
[   90.475337][ T5293] Bluetooth: hci0: ACL packet for unknown connection handle 201
[   90.480416][ T5293] Bluetooth: hci0: ACL packet for unknown connection handle 200
[   90.484279][ T5293] Bluetooth: hci0: SCO packet for unknown connection handle 201
[   90.517919][   T40] audit: type=1400 audit(90.433:473): avc:  denied  { bind } for  pid=7276 comm="syz.1.348" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   90.602647][  T940] net_ratelimit: 244 callbacks suppressed
[   90.602661][  T940] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   90.660137][ T7263] [U] �:��K!:��Y咑�;R�����dm����a9�tb�����t���=� Ҫ�+�sS�i�-�Y�Jc� �(����ґ��x�|]k|��_V�
�����҉�T�8MN�i���׎�ͪ���Y΃�zAM�"e�v3�KěO0q]^�)��?ס8ⅴ��S��	�ܝX�e�ݢ��%4�<�g�!���y.����w��a�����׹����)�0�P�/��Q����{���n
[   90.969908][ T6571] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   90.986682][ T7259] __nla_validate_parse: 6 callbacks suppressed
[   90.986695][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.3.342'.
[   90.994580][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   91.064738][   T40] audit: type=1400 audit(90.983:474): avc:  denied  { write } for  pid=7290 comm="syz.1.353" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   91.073165][   T40] audit: type=1400 audit(90.983:475): avc:  denied  { open } for  pid=7290 comm="syz.1.353" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[   91.120786][ T6571] usb 5-1: too many configurations: 9, using maximum allowed: 8
[   91.130700][ T6571] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   91.134678][ T6571] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   91.139275][ T6571] usb 5-1: config 0 interface 0 has no altsetting 0
[   91.143034][ T6571] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   91.146808][ T6571] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   91.152221][ T6571] usb 5-1: config 0 interface 0 has no altsetting 0
[   91.156237][ T6571] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   91.161124][ T6571] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   91.165768][ T6571] usb 5-1: config 0 interface 0 has no altsetting 0
[   91.169854][ T6571] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   91.173666][ T6571] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   91.178269][ T6571] usb 5-1: config 0 interface 0 has no altsetting 0
[   91.184447][ T6571] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   91.188253][ T6571] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   91.193298][ T6571] usb 5-1: config 0 interface 0 has no altsetting 0
[   91.197075][ T6571] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   91.201232][ T6571] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   91.205816][ T6571] usb 5-1: config 0 interface 0 has no altsetting 0
[   91.214481][ T6571] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   91.218266][ T6571] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   91.223428][ T6571] usb 5-1: config 0 interface 0 has no altsetting 0
[   91.227285][ T6571] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   91.232054][ T6571] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   91.235631][   T40] audit: type=1400 audit(91.153:476): avc:  denied  { write } for  pid=7300 comm="syz.3.356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   91.236967][ T6571] usb 5-1: config 0 interface 0 has no altsetting 0
[   91.250573][ T6571] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   91.254440][ T6571] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   91.258014][ T6571] usb 5-1: Product: syz
[   91.260241][ T6571] usb 5-1: Manufacturer: syz
[   91.263532][ T6571] usb 5-1: SerialNumber: syz
[   91.268344][ T6571] usb 5-1: config 0 descriptor??
[   91.277115][ T6571] yurex 5-1:0.0: USB YUREX device now attached to Yurex #1
[   91.312216][ T7305] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   91.315115][ T7305] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[   91.317988][ T7305] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   91.323334][ T7305] nfs: Unknown parameter 'workdir'
[   91.431419][   T40] audit: type=1400 audit(91.353:477): avc:  denied  { create } for  pid=7310 comm="syz.1.360" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   91.437598][   T40] audit: type=1400 audit(91.353:478): avc:  denied  { write } for  pid=7310 comm="syz.1.360" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   91.490741][ T7313] syzkaller1: entered promiscuous mode
[   91.493006][ T7313] syzkaller1: entered allmulticast mode
[   91.585338][   T10] usb 5-1: USB disconnect, device number 6
[   91.630066][  T940] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   91.632893][   T76] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   91.675202][ T7319] openvswitch: netlink: EtherType 50a is less than min 600
[   91.680000][ T7319] zonefs (loop3) ERROR: Not a zoned block device
[   91.949341][   T76] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   92.079381][   T76] usb 6-1: device descriptor read/64, error -71
[   92.319361][   T76] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   92.430100][   T10] yurex 5-1:0.0: USB YUREX #1 now disconnected
[   92.441691][ T6016] usb 7-1: USB disconnect, device number 8
[   92.459339][   T76] usb 6-1: device descriptor read/64, error -71
[   92.569554][   T76] usb usb6-port1: attempt power cycle
[   92.671183][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   92.920250][   T76] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   92.940768][   T76] usb 6-1: device descriptor read/8, error -71
[   92.988862][ T7337] kvm: vcpu 2: requested 148514 ns lapic timer period limited to 200000 ns
[   92.992888][ T7337] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[   93.072231][ T7348] =======================================================
[   93.072231][ T7348] WARNING: The mand mount option has been deprecated and
[   93.072231][ T7348]          and is ignored by this kernel. Remove the mand
[   93.072231][ T7348]          option from the mount to silence this warning.
[   93.072231][ T7348] =======================================================
[   93.190170][   T76] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   93.210268][   T76] usb 6-1: device descriptor read/8, error -71
[   93.210578][ T7352] ucma_write: process 405 (syz.0.373) changed security contexts after opening file descriptor, this is not allowed.
[   93.229714][ T6018] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   93.319508][   T76] usb usb6-port1: unable to enumerate USB device
[   93.415181][ T7357] netlink: 8 bytes leftover after parsing attributes in process `syz.2.375'.
[   93.482999][ T7359] loop4: detected capacity change from 0 to 7
[   93.486688][ T7359] Dev loop4: unable to read RDB block 7
[   93.490339][ T7359]  loop4: AHDI p1 p2 p3
[   93.492233][ T7359] loop4: partition table partially beyond EOD, truncated
[   93.495913][ T7359] loop4: p1 start 1601398130 is beyond EOD, truncated
[   93.499987][ T7359] loop4: p2 start 1702059890 is beyond EOD, truncated
[   93.550509][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   93.554860][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   93.559130][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   93.830555][   T76] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   93.986164][ T7366] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   94.020247][ T7366] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1549 sclass=netlink_tcpdiag_socket pid=7366 comm=syz.3.378
[   94.039793][ T7366] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   94.042255][ T6018] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[   94.053684][ T6018] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[   94.059112][ T6305] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[   94.064002][ T6305] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[   94.066997][ T6305] wlan1: authentication with 08:02:11:00:00:00 timed out
[   94.068115][   T76] usb 7-1: Using ep0 maxpacket: 8
[   94.108595][ T7366] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   94.151532][   T76] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[   94.161580][   T76] usb 7-1: config 179 has no interface number 0
[   94.163733][   T76] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[   94.167370][   T76] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[   94.190301][   T76] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[   94.193796][   T76] usb 7-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   94.198220][   T76] usb 7-1: config 179 interface 65 has no altsetting 0
[   94.231421][   T76] usb 7-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[   94.241038][   T76] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.328778][ T7373] nft_compat: unsupported protocol 0
[   94.477003][ T6571] usb 7-1: USB disconnect, device number 9
[   94.530985][ T7379] input: syz0 as /devices/virtual/input/input15
[   95.043168][   T40] kauditd_printk_skb: 8 callbacks suppressed
[   95.043184][   T40] audit: type=1400 audit(94.963:487): avc:  denied  { setattr } for  pid=7405 comm="syz.2.392" name="NETLINK" dev="sockfs" ino=18772 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   95.447080][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.455696][ T7425] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.397'.
[   95.461388][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.465292][ T7425] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.397'.
[   95.470469][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.473218][ T7425] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.397'.
[   95.476564][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.479095][ T7425] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.397'.
[   95.482638][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.485310][ T7425] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.397'.
[   95.488712][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.491383][ T7425] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.397'.
[   95.495461][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.498019][ T7425] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.397'.
[   95.542967][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.545690][ T7425] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.397'.
[   95.549013][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.562648][ T7425] netlink: 'syz.1.397': attribute type 11 has an invalid length.
[   95.609318][    C0] net_ratelimit: 9031 callbacks suppressed
[   95.609330][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.615671][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.620669][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.625758][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.631614][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.636271][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.640681][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.645145][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.649713][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.654014][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   95.847574][   T40] audit: type=1400 audit(95.753:488): avc:  denied  { map } for  pid=7454 comm="syz.1.402" path="socket:[19502]" dev="sockfs" ino=19502 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   95.945269][   T40] audit: type=1400 audit(95.863:489): avc:  denied  { accept } for  pid=7408 comm="syz.2.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   96.024455][ T5934] udevd[5934]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory
[   96.135836][ T7483] __nla_validate_parse: 26 callbacks suppressed
[   96.135849][ T7483] netlink: 12 bytes leftover after parsing attributes in process `syz.1.408'.
[   96.166093][ T7483] xt_TPROXY: Can be used only with -p tcp or -p udp
[   96.445609][ T7495] SELinux:  Context � is not valid (left unmapped).
[   96.449325][ T6024] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   96.619257][ T6024] usb 8-1: Using ep0 maxpacket: 8
[   96.623937][ T6024] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   96.627734][ T6024] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   96.631373][ T6024] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   96.634609][ T6024] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   96.643126][ T6024] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   96.646096][ T6024] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.737604][ T7500] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   96.822961][ T7511] netlink: 12 bytes leftover after parsing attributes in process `syz.2.415'.
[   96.845388][   T40] audit: type=1400 audit(96.763:490): avc:  denied  { read append } for  pid=7512 comm="syz.1.416" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   96.867543][ T7511] bridge1: port 1(gretap0) entered blocking state
[   96.870877][   T40] audit: type=1400 audit(96.783:491): avc:  denied  { open } for  pid=7512 comm="syz.1.416" path="/dev/rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   96.891366][ T7511] bridge1: port 1(gretap0) entered disabled state
[   96.891436][ T7515] netlink: 24 bytes leftover after parsing attributes in process `syz.2.415'.
[   96.896015][ T7511] gretap0: entered allmulticast mode
[   96.900555][   T40] audit: type=1400 audit(96.783:492): avc:  denied  { ioctl } for  pid=7512 comm="syz.1.416" path="/dev/rtc0" dev="devtmpfs" ino=944 ioctlcmd=0x7013 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   96.909870][ T7511] gretap0: entered promiscuous mode
[   96.918375][ T7515] bridge1: port 2(veth0_to_bond) entered blocking state
[   96.931325][ T6024] usb 8-1: GET_CAPABILITIES returned 0
[   96.932957][ T7515] bridge1: port 2(veth0_to_bond) entered disabled state
[   96.933225][ T6024] usbtmc 8-1:16.0: can't read capabilities
[   96.936567][ T7515] veth0_to_bond: entered allmulticast mode
[   96.945288][ T7515] veth0_to_bond: entered promiscuous mode
[   96.950825][ T7517] validate_nla: 3 callbacks suppressed
[   96.950835][ T7517] netlink: 'syz.1.417': attribute type 2 has an invalid length.
[   96.969757][ T7517] netlink: 'syz.1.417': attribute type 2 has an invalid length.
[   97.037343][ T7522] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7522 comm=syz.0.418
[   97.044097][   T40] audit: type=1400 audit(96.963:493): avc:  denied  { ioctl } for  pid=7523 comm="syz.2.419" path="pid:[4026532876]" dev="nsfs" ino=4026532876 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   97.055898][   T40] audit: type=1400 audit(96.973:494): avc:  denied  { connect } for  pid=7523 comm="syz.2.419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   97.062964][   T40] audit: type=1400 audit(96.983:495): avc:  denied  { setopt } for  pid=7523 comm="syz.2.419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   97.070955][   T40] audit: type=1400 audit(96.983:496): avc:  denied  { read } for  pid=7523 comm="syz.2.419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   97.103723][    C3] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[   97.109447][ T7486] usbtmc 8-1:16.0: Unable to send data, error -71
[   97.127684][ T7486] program syz.3.409 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.150708][ T7526] netlink: 'syz.0.421': attribute type 1 has an invalid length.
[   97.154676][ T7526] netlink: 232 bytes leftover after parsing attributes in process `syz.0.421'.
[   97.485481][ T7541] No buffer was provided with the request
[   97.499437][   T29] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   97.642883][ T7543] tipc: Enabled bearer <eth:veth0_macvtap>, priority 0
[   97.660402][   T29] usb 6-1: too many configurations: 9, using maximum allowed: 8
[   97.665448][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   97.672237][   T29] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   97.676557][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[   97.681997][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   97.685874][   T29] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   97.690247][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[   97.693327][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   97.699016][   T29] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   97.704099][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[   97.708631][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   97.714912][   T29] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   97.718641][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[   97.724460][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   97.728486][ T7543] erspan1: entered allmulticast mode
[   97.730868][   T29] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   97.734590][ T7544] netlink: 4 bytes leftover after parsing attributes in process `syz.0.424'.
[   97.734695][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[   97.746538][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   97.750761][   T29] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   97.754564][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[   97.757814][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   97.769228][   T29] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   97.772975][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[   97.778443][   T29] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   97.781986][   T29] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   97.786700][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[   97.792426][   T29] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   97.796382][   T29] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   97.812145][   T29] usb 6-1: Product: syz
[   97.817538][   T29] usb 6-1: Manufacturer: syz
[   97.819154][   T29] usb 6-1: SerialNumber: syz
[   97.839392][   T29] usb 6-1: config 0 descriptor??
[   97.848277][   T29] yurex 6-1:0.0: USB YUREX device now attached to Yurex #1
[   97.873185][   T60] usb 8-1: USB disconnect, device number 3
[   98.041189][ T7552] netlink: 24 bytes leftover after parsing attributes in process `syz.0.428'.
[   98.046449][  T940] usb 6-1: USB disconnect, device number 7
[   98.063047][  T940] yurex 6-1:0.0: USB YUREX #1 now disconnected
[   98.225186][ T7557] /dev/nullb0: Can't open blockdev
[   98.284505][ T7560] 9pnet_fd: Insufficient options for proto=fd
[   98.433870][ T7566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.432'.
[   98.495188][ T7566] netlink: 12 bytes leftover after parsing attributes in process `syz.3.432'.
[   98.547462][ T7573] 9p: Bad value for 'rfdno'
[   98.553343][ T7573] netlink: 28 bytes leftover after parsing attributes in process `syz.0.435'.
[   98.563511][ T7566] tmpfs: Cannot enable quota on remount
[   98.661259][  T838] tipc: Node number set to 2746400957
[   98.727715][ T7588] binder: BINDER_SET_CONTEXT_MGR already set
[   98.731049][ T7588] binder: 7585:7588 ioctl 4018620d 200000000100 returned -16
[   98.734246][ T7588] binder: BINDER_SET_CONTEXT_MGR already set
[   98.736290][ T7588] binder: 7585:7588 ioctl 4018620d 200000000100 returned -16
[   98.749628][ T7591] [U] v�3��f��"S��/��4:�XTz�W�t��lW��=
[   98.751660][ T7591] [U] J"�e:��"


[   98.760086][ T7588] binder: BINDER_SET_CONTEXT_MGR already set
[   98.773437][ T7588] binder: 7585:7588 ioctl 4018620d 200000000100 returned -16
[   98.784166][ T7587] vim2m vim2m.0: vidioc_s_fmt queue busy
[   98.786770][ T7590] netlink: 'syz.0.440': attribute type 1 has an invalid length.
[   98.829982][ T7590] 8021q: adding VLAN 0 to HW filter on device bond4
[   98.835729][ T7587] netlink: 28 bytes leftover after parsing attributes in process `syz.0.440'.
[   98.839385][ T7590] bond4: entered allmulticast mode
[   99.321283][ T7613] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[   99.325667][ T7613] overlayfs: NFS export requires an index dir, falling back to nfs_export=off.
[  100.619276][    C0] net_ratelimit: 28914 callbacks suppressed
[  100.619296][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  100.619333][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  100.619486][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.619709][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.619922][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.620134][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.620381][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.620625][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.620848][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.621062][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  100.659526][  T940] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  100.782408][ T7657] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57622 sclass=netlink_route_socket pid=7657 comm=syz.3.458
[  100.793608][ T7657] netlink: 'syz.3.458': attribute type 13 has an invalid length.
[  100.851915][  T940] usb 7-1: config index 0 descriptor too short (expected 39, got 27)
[  100.855337][  T940] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  100.871039][  T940] usb 7-1: config 0 interface 0 has no altsetting 0
[  100.897125][  T940] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  100.900929][  T940] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  100.904303][  T940] usb 7-1: Product: syz
[  100.906296][  T940] usb 7-1: Manufacturer: syz
[  100.908565][  T940] usb 7-1: SerialNumber: syz
[  100.929856][  T940] usb 7-1: config 0 descriptor??
[  100.970121][  T940] hub 7-1:0.0: bad descriptor, ignoring hub
[  100.976112][   T40] kauditd_printk_skb: 12 callbacks suppressed
[  100.976131][   T40] audit: type=1401 audit(100.893:509): op=fscreate invalid_context=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  100.990757][  T940] hub 7-1:0.0: probe with driver hub failed with error -5
[  101.092008][  T940] usb 7-1: selecting invalid altsetting 0
[  101.278711][ T7667] comedi comedi1: s526: I/O port conflict (0x9,64)
[  101.312648][ T7667] vcan0: tx address claim with different name
[  101.620873][ T7644] usb 7-1: reset high-speed USB device number 10 using dummy_hcd
[  101.779348][ T7644] usb 7-1: device descriptor read/64, error -71
[  101.793462][ T7671] bond5 (unregistering): Released all slaves
[  102.040520][ T7644] usb 7-1: reset high-speed USB device number 10 using dummy_hcd
[  102.141924][ T7686] netlink: 'syz.0.466': attribute type 15 has an invalid length.
[  102.145449][ T7686] __nla_validate_parse: 66 callbacks suppressed
[  102.145466][ T7686] netlink: 4 bytes leftover after parsing attributes in process `syz.0.466'.
[  102.175585][ T7686] netlink: 'syz.0.466': attribute type 15 has an invalid length.
[  102.178929][ T7686] netlink: 4 bytes leftover after parsing attributes in process `syz.0.466'.
[  102.183368][ T7644] usb 7-1: device descriptor read/64, error -71
[  102.441721][ T7644] usb 7-1: reset high-speed USB device number 10 using dummy_hcd
[  102.490076][ T7644] usb 7-1: device descriptor read/8, error -71
[  102.557698][ T7694] overlayfs: failed to resolve './file1': -2
[  102.741929][ T7700] netlink: 24 bytes leftover after parsing attributes in process `syz.0.471'.
[  102.751151][ T7644] usb 7-1: reset high-speed USB device number 10 using dummy_hcd
[  102.790964][ T7644] usb 7-1: device descriptor read/8, error -71
[  102.900331][  T940] usb 7-1: USB disconnect, device number 10
[  103.012268][   T40] audit: type=1400 audit(102.933:510): avc:  denied  { mounton } for  pid=7707 comm="syz.3.473" path="/118/file1" dev="autofs" ino=21078 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1
[  103.124276][   T40] audit: type=1400 audit(103.043:511): avc:  denied  { bind } for  pid=7713 comm="syz.0.474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  103.139244][   T40] audit: type=1400 audit(103.053:512): avc:  denied  { name_bind } for  pid=7713 comm="syz.0.474" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  103.150596][   T40] audit: type=1400 audit(103.053:513): avc:  denied  { node_bind } for  pid=7713 comm="syz.0.474" saddr=10.1.1.1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  103.163328][   T40] audit: type=1400 audit(103.083:514): avc:  denied  { bind } for  pid=7713 comm="syz.0.474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  103.244966][ T7716] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22
[  103.279061][ T7718] netlink: 44 bytes leftover after parsing attributes in process `syz.0.477'.
[  103.286283][ T7718] netlink: 35 bytes leftover after parsing attributes in process `syz.0.477'.
[  103.291152][ T7718] netlink: 'syz.0.477': attribute type 5 has an invalid length.
[  103.293797][ T7718] netlink: 'syz.0.477': attribute type 5 has an invalid length.
[  103.296485][ T7718] netlink: 35 bytes leftover after parsing attributes in process `syz.0.477'.
[  103.304010][   T40] audit: type=1400 audit(103.223:515): avc:  denied  { view } for  pid=7717 comm="syz.0.477" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  104.159549][  T940] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  104.327417][  T940] usb 7-1: config index 0 descriptor too short (expected 65535, got 36)
[  104.331575][ T7733] 0x000000002f70-0x000000020000 : ""
[  104.346443][  T940] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  104.373278][  T940] usb 7-1: config 0 has no interfaces?
[  104.375791][  T940] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  104.390980][ T7733] ftl_cs: FTL header corrupt!
[  104.411201][  T940] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.430829][  T940] usb 7-1: config 0 descriptor??
[  104.466613][   T40] audit: type=1400 audit(104.383:516): avc:  denied  { getopt } for  pid=7735 comm="syz.0.482" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  104.537530][ T7734] 0x000000002f70-0x000000020000 : ""
[  104.560966][ T7734] ftl_cs: FTL header corrupt!
[  105.026596][   T29] usb 7-1: USB disconnect, device number 11
[  105.293117][   T40] audit: type=1400 audit(105.213:517): avc:  denied  { write } for  pid=7753 comm="syz.3.488" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  105.629400][    C3] net_ratelimit: 46287 callbacks suppressed
[  105.629409][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  105.629419][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  105.629546][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  105.629806][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  105.630199][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  105.630591][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  105.630976][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  105.631359][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  105.631749][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  105.632137][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  106.129118][   T40] audit: type=1400 audit(106.043:518): avc:  denied  { write } for  pid=7777 comm="syz.2.494" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  106.333638][ T7782] netlink: 28 bytes leftover after parsing attributes in process `syz.0.495'.
[  106.348727][ T7782] netlink: 28 bytes leftover after parsing attributes in process `syz.0.495'.
[  106.481120][   T40] audit: type=1400 audit(106.383:519): avc:  denied  { read write } for  pid=7787 comm="syz.3.496" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  106.511626][ T7786] fuse: Unknown parameter ''
[  106.556312][   T40] audit: type=1400 audit(106.393:520): avc:  denied  { open } for  pid=7787 comm="syz.3.496" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  106.574269][ T7778] syzkaller0: entered promiscuous mode
[  106.580911][ T7790] netlink: 'syz.0.497': attribute type 1 has an invalid length.
[  106.610054][ T7778] syzkaller0: entered allmulticast mode
[  106.717463][ T7790] 8021q: adding VLAN 0 to HW filter on device bond5
[  106.740242][ T7795] netlink: 32 bytes leftover after parsing attributes in process `syz.0.497'.
[  107.369781][ T7799] fuse: Bad value for 'user_id'
[  107.378529][ T7799] fuse: Bad value for 'user_id'
[  107.429244][    C3] sched: DL replenish lagged too much
[  110.639231][    C2] net_ratelimit: 45366 callbacks suppressed
[  110.639245][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  110.639271][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  110.639322][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  110.640589][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  110.640916][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  110.641462][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  110.642181][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  110.642554][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  110.643804][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  110.644138][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  113.426763][ T7843] syzkaller0: entered promiscuous mode
[  113.428722][ T7843] syzkaller0: entered allmulticast mode
[  113.701490][   T40] audit: type=1400 audit(113.623:521): avc:  denied  { module_request } for  pid=7849 comm="syz.0.513" kmod="crypto-lzs-all" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  114.558204][ T7867] netlink: 28 bytes leftover after parsing attributes in process `syz.1.514'.
[  115.524743][   T40] audit: type=1400 audit(115.443:522): avc:  denied  { write } for  pid=7873 comm="syz.0.517" name="fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  115.547595][   T40] audit: type=1400 audit(115.463:523): avc:  denied  { ioctl } for  pid=7873 comm="syz.0.517" path="/dev/fb1" dev="devtmpfs" ino=640 ioctlcmd=0x4606 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  115.649258][    C2] net_ratelimit: 51108 callbacks suppressed
[  115.649271][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  115.649296][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  115.649893][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  115.650240][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  115.650373][ T6023] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  115.651520][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  115.651539][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  115.651874][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  115.653184][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  115.653547][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  119.808833][ T7858] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  120.224326][ T7895] netlink: 4 bytes leftover after parsing attributes in process `syz.3.523'.
[  120.631057][ T7895] team0: Port device team_slave_0 removed
[  120.659227][    C0] net_ratelimit: 58290 callbacks suppressed
[  120.659241][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  120.659250][    C3] bridge0: received packet on veth0_to_bridge with own address as source address (addr:9e:c4:94:90:1a:72, vlan:0)
[  120.659395][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  120.659611][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  120.659801][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  120.659991][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  120.660180][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  120.660448][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  120.660656][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  120.660853][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  120.918846][ T7904] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 4π!F���Vl�uc'f`�ކ�;��1�
[  121.969901][ T6023] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  122.052727][ T7945] netlink: 40 bytes leftover after parsing attributes in process `syz.3.534'.
[  122.139369][ T6023] usb 6-1: Using ep0 maxpacket: 8
[  122.144820][ T6023] usb 6-1: device descriptor read/all, error -61
[  122.162213][   T40] audit: type=1400 audit(122.083:524): avc:  denied  { set_context_mgr } for  pid=7946 comm="syz.0.536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  122.269563][ T6023] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  122.409512][ T6023] usb 6-1: device descriptor read/64, error -71
[  122.420200][ T7953] loop6: detected capacity change from 0 to 524279808
[  122.519451][ T6023] usb usb6-port1: attempt power cycle
[  122.538448][ T7953] loop6: detected capacity change from 524279808 to 1
[  122.552664][ T7953] Dev loop6: unable to read RDB block 1
[  122.555559][ T7953]  loop6: unable to read partition table
[  122.557907][ T7953] loop6: partition table beyond EOD, truncated
[  122.561351][ T7953] loop_reread_partitions: partition scan of loop6 (�u0v��	) failed (rc=-5)
[  122.694833][   T40] audit: type=1400 audit(122.613:525): avc:  denied  { mount } for  pid=7963 comm="syz.0.539" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  122.706565][   T40] audit: type=1400 audit(122.623:526): avc:  denied  { remount } for  pid=7963 comm="syz.0.539" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  122.755860][   T40] audit: type=1400 audit(122.673:527): avc:  denied  { unmount } for  pid=5935 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  122.859540][ T6023] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  122.879844][ T6023] usb 6-1: device descriptor read/8, error -71
[  122.938409][   T40] audit: type=1400 audit(122.853:528): avc:  denied  { setopt } for  pid=7967 comm="syz.3.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  123.119335][ T6023] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  123.150083][ T6023] usb 6-1: device descriptor read/8, error -71
[  123.266058][ T6023] usb usb6-port1: unable to enumerate USB device
[  123.675363][ T7985] netlink: 12 bytes leftover after parsing attributes in process `syz.0.544'.
[  123.702890][   T40] audit: type=1400 audit(123.623:529): avc:  denied  { ioctl } for  pid=7986 comm="syz.3.545" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  123.737296][   T40] audit: type=1400 audit(123.653:530): avc:  denied  { bind } for  pid=7984 comm="syz.0.544" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  123.762752][ T7988] netlink: 12 bytes leftover after parsing attributes in process `syz.3.545'.
[  123.843114][ T3741] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  123.849737][ T3741] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  123.859929][ T7988] netlink: 12 bytes leftover after parsing attributes in process `syz.3.545'.
[  123.864031][ T3741] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  123.883482][ T3741] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  124.127296][   T40] audit: type=1400 audit(124.043:531): avc:  denied  { read } for  pid=7990 comm="syz.0.547" lport=39380 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  124.315998][ T8000] /dev/nullb0: Can't open blockdev
[  124.649134][ T8015] netlink: 16 bytes leftover after parsing attributes in process `syz.2.546'.
[  124.677618][ T8017] netlink: 16 bytes leftover after parsing attributes in process `syz.2.546'.
[  124.734350][   T40] audit: type=1400 audit(124.653:532): avc:  denied  { listen } for  pid=8016 comm="syz.0.554" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  124.754166][   T40] audit: type=1400 audit(124.653:533): avc:  denied  { accept } for  pid=8016 comm="syz.0.554" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  124.780501][ T5293] ==================================================================
[  124.783331][ T5293] BUG: KASAN: slab-use-after-free in l2cap_sock_new_connection_cb+0x22f/0x240
[  124.786490][ T5293] Read of size 8 at addr ffff8880297415a8 by task kworker/u33:1/5293
[  124.791020][ T5293] 
[  124.792269][ T5293] CPU: 2 UID: 0 PID: 5293 Comm: kworker/u33:1 Not tainted syzkaller #0 PREEMPT(full) 
[  124.792285][ T5293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.792294][ T5293] Workqueue: hci1 hci_rx_work
[  124.792310][ T5293] Call Trace:
[  124.792315][ T5293]  <TASK>
[  124.792319][ T5293]  dump_stack_lvl+0x116/0x1f0
[  124.792336][ T5293]  print_report+0xcd/0x630
[  124.792361][ T5293]  ? __virt_addr_valid+0x81/0x610
[  124.792378][ T5293]  ? __phys_addr+0xe8/0x180
[  124.792389][ T5293]  ? l2cap_sock_new_connection_cb+0x22f/0x240
[  124.792405][ T5293]  kasan_report+0xe0/0x110
[  124.792419][ T5293]  ? l2cap_sock_new_connection_cb+0x22f/0x240
[  124.792436][ T5293]  l2cap_sock_new_connection_cb+0x22f/0x240
[  124.792453][ T5293]  l2cap_connect_cfm+0x4f0/0x1010
[  124.792468][ T5293]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  124.792482][ T5293]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  124.792494][ T5293]  le_conn_complete_evt+0x1991/0x1fa0
[  124.792509][ T5293]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  124.792528][ T5293]  hci_le_conn_complete_evt+0x23c/0x3a0
[  124.792542][ T5293]  hci_le_meta_evt+0x357/0x610
[  124.792555][ T5293]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  124.792568][ T5293]  hci_event_packet+0x685/0x1210
[  124.792580][ T5293]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  124.792592][ T5293]  ? __pfx_hci_event_packet+0x10/0x10
[  124.792605][ T5293]  ? kcov_remote_start+0x399/0x680
[  124.792618][ T5293]  ? lockdep_hardirqs_on+0x7c/0x110
[  124.792633][ T5293]  hci_rx_work+0x2c9/0x1020
[  124.792651][ T5293]  process_one_work+0x9ba/0x1b20
[  124.792669][ T5293]  ? __pfx_process_one_work+0x10/0x10
[  124.792684][ T5293]  ? assign_work+0x1a0/0x250
[  124.792697][ T5293]  worker_thread+0x6c8/0xf10
[  124.792720][ T5293]  ? __pfx_worker_thread+0x10/0x10
[  124.792734][ T5293]  kthread+0x3c5/0x780
[  124.792747][ T5293]  ? __pfx_kthread+0x10/0x10
[  124.792760][ T5293]  ? rcu_is_watching+0x12/0xc0
[  124.792770][ T5293]  ? __pfx_kthread+0x10/0x10
[  124.792783][ T5293]  ret_from_fork+0x983/0xb10
[  124.792795][ T5293]  ? __pfx_ret_from_fork+0x10/0x10
[  124.792807][ T5293]  ? __switch_to+0x7af/0x10d0
[  124.792821][ T5293]  ? __pfx_kthread+0x10/0x10
[  124.792834][ T5293]  ret_from_fork_asm+0x1a/0x30
[  124.792854][ T5293]  </TASK>
[  124.792858][ T5293] 
[  124.866440][ T5293] Allocated by task 5293:
[  124.867894][ T5293]  kasan_save_stack+0x33/0x60
[  124.869475][ T5293]  kasan_save_track+0x14/0x30
[  124.871070][ T5293]  __kasan_kmalloc+0xaa/0xb0
[  124.872599][ T5293]  __kmalloc_noprof+0x33d/0x910
[  124.874225][ T5293]  sk_prot_alloc+0x1a8/0x2a0
[  124.875754][ T5293]  sk_alloc+0x36/0xe30
[  124.877227][ T5293]  bt_sock_alloc+0x3b/0x3a0
[  124.878931][ T5293]  l2cap_sock_alloc.constprop.0+0x33/0x1d0
[  124.880985][ T5293]  l2cap_sock_new_connection_cb+0x101/0x240
[  124.882926][ T5293]  l2cap_connect_cfm+0x4f0/0x1010
[  124.884677][ T5293]  le_conn_complete_evt+0x1991/0x1fa0
[  124.886480][ T5293]  hci_le_conn_complete_evt+0x23c/0x3a0
[  124.888364][ T5293]  hci_le_meta_evt+0x357/0x610
[  124.889954][ T5293]  hci_event_packet+0x685/0x1210
[  124.891563][ T5293]  hci_rx_work+0x2c9/0x1020
[  124.893074][ T5293]  process_one_work+0x9ba/0x1b20
[  124.894882][ T5293]  worker_thread+0x6c8/0xf10
[  124.896478][ T5293]  kthread+0x3c5/0x780
[  124.897842][ T5293]  ret_from_fork+0x983/0xb10
[  124.899400][ T5293]  ret_from_fork_asm+0x1a/0x30
[  124.900932][ T5293] 
[  124.901720][ T5293] Freed by task 8022:
[  124.903032][ T5293]  kasan_save_stack+0x33/0x60
[  124.904552][ T5293]  kasan_save_track+0x14/0x30
[  124.906160][ T5293]  kasan_save_free_info+0x3b/0x60
[  124.907825][ T5293]  __kasan_slab_free+0x5f/0x80
[  124.909395][ T5293]  kfree+0x2f8/0x6e0
[  124.910688][ T5293]  __sk_destruct+0x8b1/0xbc0
[  124.912247][ T5293]  sk_destruct+0xc2/0xf0
[  124.913664][ T5293]  __sk_free+0xf4/0x3e0
[  124.915051][ T5293]  sk_free+0x6a/0x90
[  124.916362][ T5293]  l2cap_sock_kill+0x171/0x350
[  124.917979][ T5293]  l2cap_sock_cleanup_listen+0x3d/0x2f0
[  124.919846][ T5293]  l2cap_sock_release+0x69/0x280
[  124.921741][ T5293]  __sock_release+0xb3/0x270
[  124.923385][ T5293]  sock_close+0x1c/0x30
[  124.924819][ T5293]  __fput+0x402/0xb70
[  124.926200][ T5293]  task_work_run+0x150/0x240
[  124.927793][ T5293]  do_exit+0x87f/0x2bd0
[  124.929277][ T5293]  do_group_exit+0xd3/0x2a0
[  124.930890][ T5293]  get_signal+0x2671/0x26d0
[  124.932967][ T5293]  arch_do_signal_or_restart+0x8f/0x7e0
[  124.934854][ T5293]  exit_to_user_mode_loop+0x8c/0x540
[  124.936620][ T5293]  do_syscall_64+0x4ee/0xf80
[  124.938176][ T5293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.940152][ T5293] 
[  124.941019][ T5293] The buggy address belongs to the object at ffff888029741000
[  124.941019][ T5293]  which belongs to the cache kmalloc-2k of size 2048
[  124.945572][ T5293] The buggy address is located 1448 bytes inside of
[  124.945572][ T5293]  freed 2048-byte region [ffff888029741000, ffff888029741800)
[  124.950248][ T5293] 
[  124.951161][ T5293] The buggy address belongs to the physical page:
[  124.953287][ T5293] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29740
[  124.956155][ T5293] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  124.958883][ T5293] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  124.961529][ T5293] page_type: f5(slab)
[  124.962869][ T5293] raw: 00fff00000000040 ffff88801b442f00 0000000000000000 dead000000000001
[  124.965744][ T5293] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  124.968609][ T5293] head: 00fff00000000040 ffff88801b442f00 0000000000000000 dead000000000001
[  124.971526][ T5293] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  124.974411][ T5293] head: 00fff00000000003 ffffea0000a5d001 00000000ffffffff 00000000ffffffff
[  124.977259][ T5293] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  124.979974][ T5293] page dumped because: kasan: bad access detected
[  124.982178][ T5293] page_owner tracks the page as allocated
[  124.984086][ T5293] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 838, tgid 838 (kworker/3:2), ts 65491776144, free_ts 65357960071
[  124.991073][ T5293]  post_alloc_hook+0x1af/0x220
[  124.992651][ T5293]  get_page_from_freelist+0xd0b/0x31a0
[  124.994412][ T5293]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  124.996313][ T5293]  alloc_pages_mpol+0x1fb/0x550
[  124.997900][ T5293]  new_slab+0x2c3/0x430
[  124.999271][ T5293]  ___slab_alloc+0xe18/0x1c90
[  125.000822][ T5293]  __slab_alloc.constprop.0+0x63/0x110
[  125.002603][ T5293]  __kmalloc_node_track_caller_noprof+0x4d6/0x930
[  125.004769][ T5293]  kmalloc_reserve+0xef/0x2c0
[  125.006317][ T5293]  __alloc_skb+0x186/0x410
[  125.007783][ T5293]  mld_newpack.isra.0+0x18e/0xa20
[  125.009477][ T5293]  add_grhead+0x299/0x340
[  125.010927][ T5293]  add_grec+0x11b5/0x1720
[  125.012316][ T5293]  mld_ifc_work+0x41f/0xbf0
[  125.013920][ T5293]  process_one_work+0x9ba/0x1b20
[  125.015559][ T5293]  worker_thread+0x6c8/0xf10
[  125.017094][ T5293] page last free pid 5934 tgid 5934 stack trace:
[  125.019176][ T5293]  __free_frozen_pages+0x7df/0x1170
[  125.020879][ T5293]  qlist_free_all+0x4c/0xf0
[  125.022366][ T5293]  kasan_quarantine_reduce+0x195/0x1e0
[  125.024090][ T5293]  __kasan_slab_alloc+0x69/0x90
[  125.025795][ T5293]  kmem_cache_alloc_noprof+0x25e/0x770
[  125.027571][ T5293]  getname_flags.part.0+0x4c/0x550
[  125.029322][ T5293]  getname_flags+0x93/0xf0
[  125.030826][ T5293]  do_sys_openat2+0xb9/0x290
[  125.032456][ T5293]  __x64_sys_openat+0x174/0x210
[  125.034124][ T5293]  do_syscall_64+0xcd/0xf80
[  125.035621][ T5293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.037616][ T5293] 
[  125.038419][ T5293] Memory state around the buggy address:
[  125.040312][ T5293]  ffff888029741480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  125.042945][ T5293]  ffff888029741500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  125.045606][ T5293] >ffff888029741580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  125.048520][ T5293]                                   ^
[  125.050420][ T5293]  ffff888029741600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  125.053022][ T5293]  ffff888029741680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  125.055722][ T5293] ==================================================================
[  125.171791][ T5293] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  125.174284][ T5293] CPU: 1 UID: 0 PID: 5293 Comm: kworker/u33:1 Not tainted syzkaller #0 PREEMPT(full) 
[  125.178041][ T5293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.181581][ T5293] Workqueue: hci1 hci_rx_work
[  125.183197][ T5293] Call Trace:
[  125.184349][ T5293]  <TASK>
[  125.185389][ T5293]  dump_stack_lvl+0x3d/0x1f0
[  125.186996][ T5293]  vpanic+0x640/0x6f0
[  125.188391][ T5293]  panic+0xca/0xd0
[  125.189723][ T5293]  ? __pfx_panic+0x10/0x10
[  125.191283][ T5293]  ? l2cap_sock_new_connection_cb+0x22f/0x240
[  125.193427][ T5293]  ? preempt_schedule_common+0x44/0xc0
[  125.195302][ T5293]  ? preempt_schedule_thunk+0x16/0x30
[  125.197173][ T5293]  check_panic_on_warn+0xab/0xb0
[  125.198891][ T5293]  end_report+0x107/0x160
[  125.200347][ T5293]  kasan_report+0xee/0x110
[  125.201903][ T5293]  ? l2cap_sock_new_connection_cb+0x22f/0x240
[  125.204014][ T5293]  l2cap_sock_new_connection_cb+0x22f/0x240
[  125.206240][ T5293]  l2cap_connect_cfm+0x4f0/0x1010
[  125.207915][ T5293]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  125.209878][ T5293]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  125.211766][ T5293]  le_conn_complete_evt+0x1991/0x1fa0
[  125.213734][ T5293]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  125.215690][ T5293]  hci_le_conn_complete_evt+0x23c/0x3a0
[  125.217594][ T5293]  hci_le_meta_evt+0x357/0x610
[  125.219232][ T5293]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  125.221283][ T5293]  hci_event_packet+0x685/0x1210
[  125.223414][ T5293]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  125.225667][ T5293]  ? __pfx_hci_event_packet+0x10/0x10
[  125.227911][ T5293]  ? kcov_remote_start+0x399/0x680
[  125.230089][ T5293]  ? lockdep_hardirqs_on+0x7c/0x110
[  125.232271][ T5293]  hci_rx_work+0x2c9/0x1020
[  125.234293][ T5293]  process_one_work+0x9ba/0x1b20
[  125.236452][ T5293]  ? __pfx_process_one_work+0x10/0x10
[  125.238701][ T5293]  ? assign_work+0x1a0/0x250
[  125.240669][ T5293]  worker_thread+0x6c8/0xf10
[  125.242618][ T5293]  ? __pfx_worker_thread+0x10/0x10
[  125.244754][ T5293]  kthread+0x3c5/0x780
[  125.246503][ T5293]  ? __pfx_kthread+0x10/0x10
[  125.248430][ T5293]  ? rcu_is_watching+0x12/0xc0
[  125.250460][ T5293]  ? __pfx_kthread+0x10/0x10
[  125.252405][ T5293]  ret_from_fork+0x983/0xb10
[  125.254394][ T5293]  ? __pfx_ret_from_fork+0x10/0x10
[  125.256527][ T5293]  ? __switch_to+0x7af/0x10d0
[  125.258486][ T5293]  ? __pfx_kthread+0x10/0x10
[  125.260423][ T5293]  ret_from_fork_asm+0x1a/0x30
[  125.262452][ T5293]  </TASK>
[  125.264490][ T5293] Kernel Offset: disabled
[  125.266298][ T5293] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:32:22  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000014 RCX=ffffffff845ec83d RDX=ffff888028a88000
RSI=ffffffff845ec757 RDI=ffffffff8e3c96a0 RBP=0000000000000001 RSP=ffffc90000006ca8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffff888028a88b30
R12=0000000000000000 R13=000000000000000a R14=ffffc90000006d38 R15=0000000000000001
RIP=ffffffff8199f4a6 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68f5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2f3d73 CR3=000000000e184000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffe0000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc88015050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc8801505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc88015057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc8801506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc880150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcc880151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000032 746e6576652f7475 706e692f7665642f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000011 574d4655460c5756 534d4a0c5546470c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffff888034fd9000 RBX=0000000000001000 RCX=0000000000000500 RDX=0000000000001000
RSI=ffff888046fc1b00 RDI=ffff888034fd9b00 RBP=ffff888034fd9000 RSP=ffffc90004f770b0
R8 =0000000000000000 R9 =ffffed1008df83ff R10=ffff888046fc1fff R11=0000000000000000
R12=ffff888046fc1000 R13=dffffc0000000000 R14=ffffea00011bf040 R15=000000110e230000
RIP=ffffffff8b76b126 RFL=00010246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69f5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f74f5db42f8 CR3=000000002cfed000 CR4=00352ef0
DR0=0000000068e70001 DR1=fffffffffffffff7 DR2=0000000000000000 DR3=000000000000000d 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555571790e40
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557178f3cb 000055557178f0f0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6b851bad20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555571787a22 0000555571787860
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555717946d8
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000401c708000801 41be0030656c6966 2f2e01ffffffffff ffffffef0800030c
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 85f4ce0800049003 100400048c030000 0002040604880350 0800048003048004
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 04a80300040004a4 0300020004a20320 020004a00304ddfe eff8080004980307
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0302b2040004bc03 18040004b8030000 0004080604b00306 040004ac03100400
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d00300100007c003 02100007b0035010 0006900316080004 c80301ae080004c0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0101808280a01000 0780040100000008 0606015ea0408080 a8080007e0030010
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007d00300100007 c00302100007b003 5010000690031608 0004c80301ae0800
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 04c00302b2040004 bc0318040004b803 00000004080604b0 0306040004ac0310
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040004a803000400 04a40300020004a2 0320020004a00304 ddfeeff808000498
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000035 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853265a5 RDI=ffffffff9aeedc00 RBP=ffffffff9aeedbc0 RSP=ffffc9000db3f200
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3739323038386552
R12=0000000000000000 R13=0000000000000035 R14=ffffffff9aeedbc0 R15=ffffffff85326540
RIP=ffffffff853265cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6af5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fd1685f5f98 CR3=000000000e184000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e96c5f5cb8e755f4 51f6a0874dfe8e92
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c224e9ff3d264323 fd9f6c5d56a64faf
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 32b51ef83515f18c bf2a0830ed1f8248
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 09bd242cc41edf45 7d006c7bb8f474f4
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003340
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000782300000f10 c80000006c000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4ca6936f4caa3ae3 4cab54c90000b648
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4ca7b49c65000000 a200000016000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5c00000012000000 4cab4bdbbe000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fc27735ce795c829 f521536387a6eac9
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0909078402cb257c f14518bdb1f7aa04
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd16a5ba4a8 00007fd16a5ba4a0 00007fd16a5ba498 00007fd16a5ba470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd16b11d100 00007fd16a5ba460 00007fd16a5ba478 00007fd16a5ba4c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd16a5ba4b8 00007fd16a5ba4b0 00007fd16a5ba4a8 00007fd16a5ba4a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f57a5b2270711804 bf7ec1ed253e403b 16f28aa733825acb 33894b1927c2be58
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 202dd3714c0ece75 c55c4c0da4e7a7a6 40efbb293c55c0a6 0a5d3a8a9713a559
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d874646344f938c9 3144b7e1060ab4c9 7f5ec476e053f1c1 9ece8ae40cce25f9
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f87711d68c11ff50 6f101c952fa648fc badd69267f0007b6 14c5edaabc13c55d
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000007 RBX=0000000000000003 RCX=000000006290c103 RDX=0000000000000007
RSI=0000000000000000 RDI=ffff8880296c8000 RBP=0000000000000003 RSP=ffffc900006f79b8
R8 =000000009529a683 R9 =0000000039529a68 R10=0000000000000002 R11=ffff8880296c8b30
R12=ffff8880296c8000 R13=0000000000000001 R14=ffff8880296c8ba8 R15=39529a686290c103
RIP=ffffffff8199d0aa RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 000055556ff24500 ffffffff 00c00000
GS =0000 ffff8880d6bf5000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f05e49b42f8 CR3=0000000025b70000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004000008 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff3e3f95b0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05e4815050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05e481505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05e4815057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05e481506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05e48150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05e48151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6568745f69706361 2474616e65706f00 656c62616e655f6e 6170776f6c362474
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 616e65706f006c6f 72746e6f635f6e61 70776f6c36247461 6e65706f0074616e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000