last executing test programs:

668.607628ms ago: executing program 3 (id=305):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$nfc_llcp(r0, &(0x7f0000001040)={0x27, 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x0, "d92984bd1ca44c226af5160e961711a077609475b78411e88509de050000000000f2170e65e3f50327e422000000000000000000000200000000001900", 0x3c}, 0x60)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$rds(0x15, 0x5, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x1a000, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x10000000000000, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
close(0x4)
socket$unix(0x1, 0x1, 0x0)

663.84955ms ago: executing program 3 (id=311):
pipe(&(0x7f00000045c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x3, 0x300) (async, rerun: 32)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f0000000100)=@req3={0x7, 0x105, 0x81, 0xc, 0x80002, 0x2, 0x400006}, 0x1c) (rerun: 32)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r2, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f00000010c0)='*', 0x1}], 0x1, 0x1)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18) (async)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r4) (async)
splice(r0, 0x0, r4, 0x0, 0x10000000000066, 0xa)

579.844531ms ago: executing program 0 (id=312):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newtaction={0x58, 0x30, 0x1, 0x0, 0x0, {}, [{0x44, 0x1, [@m_vlan={0x40, 0x1, 0x0, 0x0, {{0x9}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x8100}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x58}}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x7c, 0x4, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_CHAIN_USERDATA={0x48, 0xc, "1d1227950e6661b5656516f7be86af4c33422b66ff7a081498cdc06303ae3ed4f545479b86389af1677ed7812f19b0014cc7170783fd6b27e63e13ff49dacb9187a8c6ac"}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x20000800)
syz_emit_ethernet(0x36, &(0x7f00000001c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x4000, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x80}}}}}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000580), 0x802, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(r0, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{0x0}, {0x0}, {&(0x7f0000001400)="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", 0xfb6}], 0x3}}, {{0x0, 0x0, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000880)="90b9f79fecb3ad0dc00ca95fb148a3ba4355cee5ce27d2c10d8474464a37dea0c1ab2a961404f5aa5493cdadb4b6bf4131e96c0aef0f89065db2aa551c68ce3fa911638fd608ff9e30cce409b6e516e59c272cdbbb88c83dc61199d70f8f7e05d9639d278d53151a6720a51979ffd78dcc1a000929160435bd61e3f36c78b9bd5baef79be54e537dfc26029f52cfd5b4dd3416fc140fce45c077ab5ee206763130ccdaedd3bff9b7a20b6b02e558fd", 0xaf}, {&(0x7f0000000a40)}], 0x3}}], 0x2, 0x11)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r2, 0x0, 0x0)

578.348593ms ago: executing program 1 (id=313):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
shmget$private(0x0, 0x3000, 0x100, &(0x7f0000ffc000/0x3000)=nil)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000100)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r4, 0x3ba0, &(0x7f00000001c0)={0x48, 0x1, r5})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r4, 0x3ba0, &(0x7f0000000300)={0x48, 0x2, r5, 0x0, 0x0, 0x0, 0x0, 0x1})
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="b40000001900010000000000000000001d0109004d0011806f9886"], 0xb4}}, 0x0)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x49})
write$sndseq(r8, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a)
r9 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg(r9, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000100100000c"], 0x18}}], 0x1, 0x0)
r10 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r7)
sendmsg$NLBL_CIPSOV4_C_ADD(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="3de7bb0c", @ANYRES16=r10, @ANYBLOB="010027bd7000fbdbdf250100000008000100030000000c00048005000300010000000800020002000000"], 0x30}}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f0000000380)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}]})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x7fff, 0x80, 0x240}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
sendmsg$nl_route_sched(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r6, {0xf000, 0xffff}, {}, {0x4}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0x0, 0xf2ff}}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x20008814)

578.177066ms ago: executing program 3 (id=314):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newtaction={0x74, 0x30, 0x1, 0x0, 0x0, {}, [{0x60, 0x1, [@m_vlan={0x23, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x8100}, @TCA_VLAN_PARMS={0x4, 0x2, {{0x0, 0x0, 0x0, 0xfffffffe}, 0x2}}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x74}}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x38, 0x4, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_CHAIN_USERDATA={0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x20000800)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="200000001200010a00000000000000008004"], 0x26}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f00000001c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x4000, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x80}}}}}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000580), 0x802, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(r0, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{0x0}, {&(0x7f00000007c0)="a960e57530b65741465209e7c6235055450b1ed3da8592b928d8e20971659d8e3ca392643af5fa7ae0e3455099a5f7b857afa34cbf9962bdc9db46a15e7dcf9412a2b98b6ae75ca1bd7eae82d94855e9ced28430f77527b7c0b999eab05883ce32fa9b99187b196d53939db62b2b37c0cd0dea2a1be6f97dbcd0937bb416c3fb74a9d08d9afa4c86a507485b0e6821ba9d82e6b8522a6eba1734eccbc5659567aa08b5b93be09bc2a6d6319acbd1aeb751f8e9b7ce9e2f", 0xb7}, {&(0x7f0000001400)="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", 0xfb6}], 0x3}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000880)="90b9f79fecb3ad0dc00ca95fb148a3ba4355cee5ce27d2c10d8474464a37dea0c1ab2a961404f5aa5493cdadb4b6bf4131e96c0aef0f89065db2aa551c68ce3fa911638fd608ff9e30cce409b6e516e59c272cdbbb88c83dc61199d70f8f7e05d9639d278d53151a6720a51979ffd78dcc1a000929160435bd61e3f36c78b9bd5baef79be54e537dfc26029f52cfd5b4dd3416fc140fce45c077ab5ee206763130ccdaedd3bff9b7a20b6b02e558fd", 0xaf}, {&(0x7f0000000a40)}], 0x2}}], 0x2, 0x11)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff0802110000"], 0x6f4}}, 0x0)

520.128475ms ago: executing program 0 (id=315):
openat$kvm(0x0, &(0x7f0000000040), 0x125841, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
r2 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r2, &(0x7f00000002c0)={0x1, 0x5}, 0x2)
write$USERIO_CMD_REGISTER(r2, &(0x7f00000000c0), 0x2)
read(r2, 0x0, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(r2, &(0x7f0000000100)={0x2, 0xfe}, 0x2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f00000016c0)={0x10, 0x0, 0x25dfdbfb, 0x40000044}, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYRES16=r4], 0x7c}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000001c0)={{0x14, 0x10, 0x1, 0x0, 0x2000000, {0x7}}, [@NFT_MSG_NEWSET={0x58, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_SET_NAME={0xffffffffffffff1c, 0x2, 'syz1\x00'}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x1}, @NFTA_SET_ID={0x8}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x90}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x80}, 0x1, 0x0, 0x0, 0x4000850}, 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r1, 0x8, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40800}, 0x20000000)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e00000000000000000018000280080002001100000004000100080004"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x8090)

519.779939ms ago: executing program 3 (id=316):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000040)=0x4091, 0x4) (async)
connect$inet6(r0, &(0x7f0000002140)={0xa, 0x4e25, 0x1, @mcast2, 0x7}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000007380)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000000c0)="5fb95398ddfdf6e682fc507343b23689872fd13164c38f8b7bce338c6715c882447f9f0189d18fe7741b0546fecf11296a7c65688b9140e70e69f8d0bc11fcae715843a26c8ffa9448a3aca04e431f8920be7fe0ec5ba4d6991bf2978b0b9b356a6b896e7882002cf152229ecfad8038fd839ef3ab1d0185347295474f748d1b42510709ae680a0663e62a55efdd91ee18cefe0dff7802701277a54213b871597bba3448d73d0ab7", 0xa8}, {&(0x7f00000001c0)="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", 0x45d}], 0x2}}], 0x2, 0x4001c00)

459.901813ms ago: executing program 3 (id=318):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000c40)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000011c0)="93bffce623851797a8dc7901f0048678cd35ef833c350900f95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb600"/135, 0x87}, {&(0x7f0000000780)="029993440c7a1d95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e430bcb03", 0x3e}], 0x2}}, {{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="51e657b8220ca193c9de9030c3c7175ae0132383bf66bd1ea5bd07a8092f5c1c356ef81ebc8a3ed11284c75e4991ca84a0eda6ac4148ace258f78bc2340c45834bc28c93523f00", 0x47}], 0x1}}], 0x2, 0xc0)
sendto$inet(r0, &(0x7f0000000580)="17", 0x501, 0x10008095, 0x0, 0x4002)

459.73109ms ago: executing program 1 (id=319):
mknod(&(0x7f0000000080)='./bus\x00', 0x10, 0x0)
lgetxattr(&(0x7f0000000100)='./bus\x00', &(0x7f0000000140)=@known='system.posix_acl_access\x00', &(0x7f0000000200)=""/69, 0x45)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000040)='ntfs3\x00', 0x8080, &(0x7f00000001c0)='discard')

400.116769ms ago: executing program 3 (id=321):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00', r0}, 0x18)
socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = socket(0x840000000002, 0x3, 0x100)
sendmmsg$inet(r1, 0x0, 0x0, 0x0)
socket(0x8000000010, 0x2, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r2, 0x8917, &(0x7f0000000180)={{0x2, 0x0, @empty}, {}, 0x0, {0x2, 0x0, @multicast1=0xe000cc02}})

399.625011ms ago: executing program 1 (id=322):
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x20000800)
syz_emit_ethernet(0x36, &(0x7f00000001c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x4000, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x80}}}}}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000580), 0x802, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(r0, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f00000007c0)="a960e57530b65741465209e7c6235055450b1ed3da8592b928d8e20971659d8e3ca392643af5fa7ae0e3455099a5f7b857afa34cbf9962bdc9db46a15e7dcf9412a2b98b6ae75ca1bd7eae82d94855e9ced28430f77527b7c0b999eab05883ce32fa9b99187b196d53939db62b2b37c0cd0dea2a1be6f97dbcd0937bb416c3fb74a9d08d9afa4c86a507485b0e6821ba9d82e6b8522a6eba1734eccbc5659567aa08b5b93be09bc2a6d6319acbd1aeb751f8e9b7ce9e2f", 0xb7}, {&(0x7f0000001400)="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", 0xbc9}], 0x2}}, {{0x0, 0x0, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000880)="90b9f79fecb3ad0dc00ca95fb148a3ba4355cee5ce27d2c10d8474464a37dea0c1ab2a961404f5aa5493cdadb4b6bf4131e96c0aef0f89065db2aa551c68ce3fa911638fd608ff9e30cce409b6e516e59c272cdbbb88c83dc61199d70f8f7e05d9639d278d53151a6720a51979ffd78dcc1a000929160435bd61e3f36c78b9bd5bae", 0x82}, {&(0x7f0000000a40)}], 0x3}}], 0x2, 0x11)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

335.814194ms ago: executing program 1 (id=323):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000280)="7800000018002507b9409b14ffff00000214ae04020206050a02040c430009003f000405100000000d0085a168d0bf46d389516a9069921a4b0005000a00000049935ade4a460c89b6ec0cff3959547f5000000000c902007a00004a324004001600040000d5808bd3e30a37e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000), &(0x7f0000000080)=0x4)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x10040)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaeaaaaaaaaaaaaaa1a080045000028006500000206107864010101ac1414aa00004e226d5d31d346fe016407aed93325b3a9059b6f37f70b802615641401a547fe0069a7bf27bab5b777b73ca04b7db9b029abbb5248e4f6d4a4c5c2d2644f3ad459ca6396f4c0965b6f49fb733508754857db39407ddd94b08264192253448ebdba4255c2a8e44e04a173422b88017e40a29d7bef5f66f429e744fe2d32cd2137516b772f20f256adb267e04d32e591a265dc118120f090af9b45e0c5b36c480c718916a03c", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c02ffff90780000"], 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000140)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x1, 0x68, 0x0, 0x0, 0x8, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x15, 0x8, 0xca, 0x0, 0x1000, {[@timestamp={0x8, 0xa, 0x81000000, 0xfbc}, @exp_fastopen={0xfe, 0x14, 0xf989, "ba3d49549b2de07eb18006804cc24307"}, @exp_smc={0xfe, 0x6}, @timestamp={0x8, 0xa, 0x7, 0x8a}, @fastopen={0x22, 0x3, "e2"}, @exp_fastopen={0xfe, 0x5, 0xf989, "89"}, @fastopen={0x22, 0x7, "da0647316a"}]}}}}}}}, 0x0)

335.534595ms ago: executing program 2 (id=324):
r0 = inotify_init1(0x800)
inotify_add_watch(r0, &(0x7f0000000140)='./cgroup\x00', 0xe5000407)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r2 = accept$alg(r1, 0x0, 0x0)
sendmsg$alg(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@assoc={0x18, 0x117, 0x4, 0xd4e5}, @op={0x18, 0x117, 0x3, 0x1}], 0x30}, 0x0)
write$binfmt_script(r2, &(0x7f0000000600), 0xfec8)
recvmmsg(r2, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0xd4e5}, {&(0x7f0000000140)=""/9, 0xa}, {&(0x7f0000000300)=""/225, 0x2}, {&(0x7f0000000400)=""/41, 0xfeb2}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x6, &(0x7f0000000640)=""/123, 0x7b, 0x2000000}}, {{&(0x7f00000006c0), 0x80, &(0x7f0000000840), 0x0, &(0x7f0000000880)=""/24, 0xffffffffffffffe0}}], 0x2, 0xcb, &(0x7f0000008000)={0x0, 0x989680})
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000000)=<r3=>0x0)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="180000002e0001ff070000000000000006"], 0x18}], 0x1, 0x0, 0x0, 0x84}, 0x300)
ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f0000000740)={0x0, @can, @nfc={0x27, r3, 0x1, 0x3}, @nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x6f228a7c9ea4d3b4}, 0x6c, 0x0, 0x0, 0x0, 0x9, 0x0, 0x4, 0xe, 0x5})
r5 = syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/3\x00')
read$FUSE(r5, &(0x7f0000002080)={0x2020}, 0x202d)

335.362279ms ago: executing program 1 (id=325):
r0 = socket(0x848000000015, 0x805, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x10}, 0x1c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f00000001c0)=@x86={0x5, 0x5, 0x17, 0x0, 0x4000003, 0xfc, 0x2, 0x81, 0xfd, 0x8, 0x6, 0xff, 0x0, 0x7, 0x5, 0xfc, 0x3, 0x7, 0xfa, '\x00', 0x0, 0x9})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r8, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
bind$inet6(r8, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x3e, &(0x7f0000000300)={@link_local, @random="2059249b3790", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "108114", 0x8, 0x11, 0x0, @empty, @mcast2, {[], {0x0, 0xe22, 0x8}}}}}}, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x9, 0x16, 0x0, &(0x7f0000000100)='GPL\x00', 0x7}, 0x94)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f0000000280)={0x0, 0x6, 0x0, 'queue1\x00'})
write$sndseq(r9, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r9, 0x4040534e, &(0x7f0000000180)={0x37, @tick=0x7, 0x0, {}, 0x1, 0x0, 0x2})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="080086dd0003"], 0xfdef)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @private2, 0x3ff}, 0x1c)

290.434554ms ago: executing program 2 (id=326):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r2, 0x89f1, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_cmd={0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffff7fc, 0x0, 0x0, 0x0, 0x47, [0xfffffffc, 0x80]}}) (async)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26) (async)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r0, {0x2, 0x4e22, @broadcast}, 0x2, 0x9800}}, 0x2e) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r5, 0x325, 0x400, 0x0, {0x8}}, 0x14}}, 0x4800)

290.208442ms ago: executing program 2 (id=327):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000002180)='coredump_filter\x00')
read$FUSE(r1, 0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r4)
sendmsg$NLBL_MGMT_C_ADDDEF(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="0100000000000400000008"], 0x1c}}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r8=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r8, @ANYBLOB="0c0001"], 0x24}, 0x1, 0x0, 0x0, 0x40000050}, 0x0)
sendmmsg(r6, &(0x7f0000000000), 0x400000000000235, 0x0)
r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r2)
sendmsg$IEEE802154_ADD_IFACE(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r9, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x4000)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r10=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="5400000010000104000000000200000000000000", @ANYRES32, @ANYBLOB="0000faffffff000034001280110001"], 0x54}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000280)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010028bd7000fbdbdf251a00000004002e8008000300", @ANYRES32=r10, @ANYBLOB='4\x00.'], 0x6c}, 0x1, 0x0, 0x0, 0x20040040}, 0x20040)

290.087879ms ago: executing program 0 (id=328):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001c80)=ANY=[], 0x2f8}, 0x20000080)
setsockopt$sock_attach_bpf(r0, 0x6, 0x19, &(0x7f0000000200)=r0, 0x78)

230.308202ms ago: executing program 0 (id=329):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') (async)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}}) (async, rerun: 32)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0) (rerun: 32)
read$FUSE(r3, &(0x7f0000000200)={0x2020}, 0x2020) (async)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f0000000040)='binder\x00', 0x2200892, 0x0) (async)
read$FUSE(r1, &(0x7f00000005c0)={0x2020}, 0x2020) (async)
ioctl$RTC_UIE_ON(r0, 0x7003)
ioctl$RTC_AIE_ON(r0, 0x7001) (async)
ioctl$VT_WAITACTIVE(r1, 0x5607) (async)
ioctl$RTC_AIE_ON(r0, 0x7001) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x2, &(0x7f0000000100)=[{0x54, 0x0, 0x0, 0xfffffffd}, {0x6, 0xfc}]})

230.135366ms ago: executing program 0 (id=330):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001c80)=ANY=[], 0x2f8}, 0x20000080)
setsockopt$sock_attach_bpf(r0, 0x6, 0x19, &(0x7f0000000200)=r0, 0x78) (fail_nth: 1)

111.442718ms ago: executing program 2 (id=331):
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x20000800)
syz_emit_ethernet(0x36, &(0x7f00000001c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x4000, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x80}}}}}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000580), 0x802, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(r0, &(0x7f0000000ec0)=[{{&(0x7f00000002c0)=@l2tp={0x2, 0x0, @private=0xa010100, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f00000007c0)="a960e57530b65741465209e7c6235055450b1ed3da8592b928d8e20971659d8e3ca392643af5fa7ae0e3455099a5f7b857afa34cbf9962bdc9db46a15e7dcf9412a2b98b6ae75ca1bd7eae82d94855e9ced28430f77527b7c0b999eab05883ce32fa9b99187b196d53939db62b2b37c0cd0dea2a1be6f97dbcd0937bb416c3fb74a9d08d9afa4c86a507485b0e6821ba9d82e6b8522a6eba1734eccbc5659567aa08b5b93be09bc2a6d6319acbd1aeb751f8e9b7ce9e2f", 0xb7}, {&(0x7f0000001400)="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", 0xbc9}], 0x2}}, {{0x0, 0x0, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000880)="90b9f79fecb3ad0dc00ca95fb148a3ba4355cee5ce27d2c10d8474464a37dea0c1ab2a961404f5aa5493cdadb4b6bf4131e96c0aef0f89065db2aa551c68ce3fa911638fd608ff9e30cce409b6e516e59c272cdbbb88c83dc61199d70f8f7e05d9639d278d53151a6720a51979ffd78dcc1a000929160435bd61e3f36c78b9bd5bae", 0x82}, {&(0x7f0000000a40)}], 0x3}}], 0x2, 0x11)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

110.990067ms ago: executing program 2 (id=332):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001c80)=ANY=[], 0x2f8}, 0x20000080)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB="e00000027f000700000000000a"], 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a80000000060a010400000000000000000a0000010900010073797a310000000054000480500001800b00010074617267657400004000028008000240000000012c0003007339f2f10455afb9fdd672bad09dfb78c7699c74e891a0c70000000000000000000000000000000008000100544545000900020073797a320000000014000000110001"], 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8923, &(0x7f00000000c0)={'veth0_vlan\x00', @random="01350700"})
setsockopt$sock_attach_bpf(r0, 0x6, 0x19, &(0x7f0000000200)=r0, 0x78)

108.169891ms ago: executing program 0 (id=333):
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x48800}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'team_slave_1\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e000000004000028006000100000ffe00340003800c0001000ffe0000000000000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32=r5, @ANYBLOB="080003"], 0x80}}, 0x8000) (async)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x48, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r2}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x48}}, 0x0)

359.255µs ago: executing program 2 (id=334):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r4, {0xffff}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newqdisc={0x48, 0x28, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {0xffff}, {0xffff, 0xffff}, {0x2, 0xb}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x97, '\x00', 0x4, 0x3ff, 0x3, 0x10000}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4040000}, 0x4000080) (fail_nth: 6)

0s ago: executing program 1 (id=335):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r0, 0xc038943b, &(0x7f0000000100)={0x0, 0x30, '\x00', 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
sendmmsg$inet(r0, &(0x7f0000000c40)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000011c0)="93bffce623851797a8dc7901f0048678cd35ef833c350900f95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb600"/135, 0x87}, {&(0x7f0000000780)="029993440c7a1d95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e430bcb03", 0x3e}], 0x2}}, {{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="51e657b8220ca193c9de9030c3c7175ae0132383bf66bd1ea5bd07a8092f5c1c356ef81ebc8a3ed11284c75e4991ca84a0eda6ac4148ace258f78bc2340c45834bc28c93523f00", 0x47}], 0x1}}], 0x2, 0xc0)
sendto$inet(r0, &(0x7f0000000580)="17", 0x501, 0x10008095, 0x0, 0x0)
sendto$inet(r0, &(0x7f00000002c0)="5802c5767651bbb147cd241cb39f3a738f634917d895714ac4885424cae679bca2b8c92ea33f24bfa2abfc9afadfd1729feed60aabc2056a4d241accd22ac5cd7ef497842ad73bb5bf9d4690b5d774a6ff222cc89cc58deb51456408b6fc97bc23c7f39ee837a33656301003083204c3635ac67489673f7a4a9912b6bae1537076db10476ccf34ac7418eaa1561e4d69eb82647ca2884745", 0x98, 0x8041, 0x0, 0x0)

kernel console output (not intermixed with test programs):

[   38.199101][   T40] audit: type=1400 audit(1761296196.036:60): avc:  denied  { rlimitinh } for  pid=5825 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   38.207716][   T40] audit: type=1400 audit(1761296196.036:61): avc:  denied  { siginh } for  pid=5825 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '[localhost]:44335' (ED25519) to the list of known hosts.
[   39.507426][   T40] audit: type=1400 audit(1761296197.356:62): avc:  denied  { name_bind } for  pid=5841 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   39.529482][   T40] audit: type=1400 audit(1761296197.376:63): avc:  denied  { write } for  pid=5842 comm="sh" path="pipe:[990]" dev="pipefs" ino=990 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   39.540333][   T40] audit: type=1400 audit(1761296197.386:64): avc:  denied  { execute } for  pid=5842 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   39.549530][   T40] audit: type=1400 audit(1761296197.386:65): avc:  denied  { execute_no_trans } for  pid=5842 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   41.410963][   T40] audit: type=1400 audit(1761296199.256:66): avc:  denied  { mounton } for  pid=5842 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   41.423260][ T5842] cgroup: Unknown subsys name 'net'
[   41.566806][ T5842] cgroup: Unknown subsys name 'cpuset'
[   41.570820][ T5842] cgroup: Unknown subsys name 'rlimit'
[   41.797381][ T5848] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   42.588504][ T5842] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.789386][   T40] kauditd_printk_skb: 13 callbacks suppressed
[   45.789396][   T40] audit: type=1400 audit(1761296203.636:80): avc:  denied  { execmem } for  pid=5921 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   46.017031][   T40] audit: type=1400 audit(1761296203.866:81): avc:  denied  { create } for  pid=5925 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   46.028651][   T40] audit: type=1400 audit(1761296203.866:82): avc:  denied  { read write } for  pid=5925 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   46.035811][   T40] audit: type=1400 audit(1761296203.866:83): avc:  denied  { open } for  pid=5925 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   46.042847][   T40] audit: type=1400 audit(1761296203.876:84): avc:  denied  { ioctl } for  pid=5925 comm="syz-executor" path="socket:[6448]" dev="sockfs" ino=6448 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   46.062165][ T5928] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   46.065319][ T5928] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   46.068066][ T5928] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   46.071296][ T5928] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   46.074009][ T5928] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   46.081788][   T40] audit: type=1400 audit(1761296203.926:85): avc:  denied  { read } for  pid=5925 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   46.082081][ T5928] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   46.088403][   T40] audit: type=1400 audit(1761296203.926:86): avc:  denied  { open } for  pid=5925 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   46.092855][ T5928] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   46.104776][ T5931] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   46.105392][   T40] audit: type=1400 audit(1761296203.926:87): avc:  denied  { mounton } for  pid=5925 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   46.107589][ T5931] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   46.117534][ T5931] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   46.120299][ T5931] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   46.126579][ T5934] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   46.129317][ T5934] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   46.132487][ T5934] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   46.135327][ T5934] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   46.135361][ T5938] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   46.142386][ T5292] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   46.145303][ T5292] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   46.148308][ T5292] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   46.150897][ T5292] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   46.239737][   T40] audit: type=1400 audit(1761296204.086:88): avc:  denied  { module_request } for  pid=5925 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   46.274606][ T5925] chnl_net:caif_netlink_parms(): no params data found
[   46.396289][ T5932] chnl_net:caif_netlink_parms(): no params data found
[   46.456291][ T5925] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.459248][ T5925] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.461725][ T5925] bridge_slave_0: entered allmulticast mode
[   46.464337][ T5925] bridge_slave_0: entered promiscuous mode
[   46.506752][ T5925] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.509722][ T5925] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.513023][ T5925] bridge_slave_1: entered allmulticast mode
[   46.516765][ T5925] bridge_slave_1: entered promiscuous mode
[   46.607519][ T5929] chnl_net:caif_netlink_parms(): no params data found
[   46.616507][ T5925] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.619766][ T5932] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.622137][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.624504][ T5932] bridge_slave_0: entered allmulticast mode
[   46.627117][ T5932] bridge_slave_0: entered promiscuous mode
[   46.632959][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.635133][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.637423][ T5932] bridge_slave_1: entered allmulticast mode
[   46.640091][ T5932] bridge_slave_1: entered promiscuous mode
[   46.657626][ T5925] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.719995][ T5932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.760791][ T5932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.766269][ T5925] team0: Port device team_slave_0 added
[   46.774309][ T5925] team0: Port device team_slave_1 added
[   46.889633][ T5932] team0: Port device team_slave_0 added
[   46.911490][ T5925] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.915788][ T5925] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   46.925486][ T5925] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.930476][ T5929] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.933245][ T5929] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.935857][ T5929] bridge_slave_0: entered allmulticast mode
[   46.939173][ T5929] bridge_slave_0: entered promiscuous mode
[   46.961171][ T5932] team0: Port device team_slave_1 added
[   46.990119][ T5925] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.992763][ T5925] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   47.001479][ T5925] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.005608][ T5929] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.007842][ T5929] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.010102][ T5929] bridge_slave_1: entered allmulticast mode
[   47.012919][ T5929] bridge_slave_1: entered promiscuous mode
[   47.055296][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.057600][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   47.067822][ T5932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.073087][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.075803][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   47.087686][ T5932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.118210][ T5929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.122710][ T5929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.126165][ T5935] chnl_net:caif_netlink_parms(): no params data found
[   47.262681][ T5929] team0: Port device team_slave_0 added
[   47.293517][ T5932] hsr_slave_0: entered promiscuous mode
[   47.296712][ T5932] hsr_slave_1: entered promiscuous mode
[   47.302297][ T5925] hsr_slave_0: entered promiscuous mode
[   47.304552][ T5925] hsr_slave_1: entered promiscuous mode
[   47.306698][ T5925] debugfs: 'hsr0' already exists in 'hsr'
[   47.308570][ T5925] Cannot create hsr debugfs directory
[   47.312077][ T5929] team0: Port device team_slave_1 added
[   47.406450][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.408619][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   47.417668][ T5929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.489370][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.492885][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   47.500779][ T5929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.523187][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.525478][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.528215][ T5935] bridge_slave_0: entered allmulticast mode
[   47.531270][ T5935] bridge_slave_0: entered promiscuous mode
[   47.534970][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.537340][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.539864][ T5935] bridge_slave_1: entered allmulticast mode
[   47.543014][ T5935] bridge_slave_1: entered promiscuous mode
[   47.631215][ T5929] hsr_slave_0: entered promiscuous mode
[   47.633722][ T5929] hsr_slave_1: entered promiscuous mode
[   47.635928][ T5929] debugfs: 'hsr0' already exists in 'hsr'
[   47.637822][ T5929] Cannot create hsr debugfs directory
[   47.665117][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.722138][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.835541][ T5935] team0: Port device team_slave_0 added
[   47.841783][ T5935] team0: Port device team_slave_1 added
[   47.886768][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.888930][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   47.897786][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.906452][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.908625][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   47.917964][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.003896][ T5935] hsr_slave_0: entered promiscuous mode
[   48.007048][ T5935] hsr_slave_1: entered promiscuous mode
[   48.009954][ T5935] debugfs: 'hsr0' already exists in 'hsr'
[   48.012469][ T5935] Cannot create hsr debugfs directory
[   48.053007][ T5925] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   48.061694][ T5925] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   48.095429][ T5925] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   48.102571][ T5928] Bluetooth: hci0: command tx timeout
[   48.113001][ T5925] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   48.172074][ T5292] Bluetooth: hci2: command tx timeout
[   48.172334][ T5928] Bluetooth: hci1: command tx timeout
[   48.182219][ T5928] Bluetooth: hci3: command tx timeout
[   48.195465][ T5932] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   48.206633][ T5932] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   48.211157][ T5932] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   48.230953][ T5932] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   48.288893][ T5929] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   48.298316][ T5929] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   48.303262][ T5929] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   48.317513][ T5929] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   48.358164][ T5935] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   48.364191][ T5935] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   48.368362][ T5935] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   48.372841][ T5935] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   48.400561][ T5925] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.422382][ T5932] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.430518][ T5925] 8021q: adding VLAN 0 to HW filter on device team0
[   48.445980][ T5932] 8021q: adding VLAN 0 to HW filter on device team0
[   48.449594][  T846] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.451969][  T846] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.460449][  T846] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.462713][  T846] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.473486][  T846] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.475868][  T846] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.493397][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.496024][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.506949][ T5929] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.547188][ T5929] 8021q: adding VLAN 0 to HW filter on device team0
[   48.551229][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.561933][ T5932] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   48.567229][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.569512][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.578193][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.578867][   T40] audit: type=1400 audit(1761296206.426:89): avc:  denied  { sys_module } for  pid=5925 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   48.580575][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.595408][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[   48.602997][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.605346][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.616948][  T846] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.619202][  T846] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.680793][ T5925] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.686359][ T5932] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.728781][ T5925] veth0_vlan: entered promiscuous mode
[   48.739753][ T5932] veth0_vlan: entered promiscuous mode
[   48.746760][ T5932] veth1_vlan: entered promiscuous mode
[   48.751327][ T5925] veth1_vlan: entered promiscuous mode
[   48.768033][ T5929] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.784870][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.795762][ T5932] veth0_macvtap: entered promiscuous mode
[   48.799716][ T5925] veth0_macvtap: entered promiscuous mode
[   48.805767][ T5932] veth1_macvtap: entered promiscuous mode
[   48.813060][ T5925] veth1_macvtap: entered promiscuous mode
[   48.831463][ T5925] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.839515][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.849423][ T5925] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.858202][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.863857][ T5929] veth0_vlan: entered promiscuous mode
[   48.872512][ T1146] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.875508][ T1146] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.883587][ T1146] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.895155][ T1146] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.897964][ T1146] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.903868][ T5929] veth1_vlan: entered promiscuous mode
[   48.906487][ T1146] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.910830][ T1146] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.919428][ T5935] veth0_vlan: entered promiscuous mode
[   48.923336][ T1146] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.946875][ T5935] veth1_vlan: entered promiscuous mode
[   48.984367][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.987739][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.993363][ T5929] veth0_macvtap: entered promiscuous mode
[   49.006423][ T5929] veth1_macvtap: entered promiscuous mode
[   49.026687][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.030005][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.035738][  T846] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.038850][  T846] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.056324][  T846] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.059612][  T846] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.064043][ T5935] veth0_macvtap: entered promiscuous mode
[   49.070296][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.077684][ T5935] veth1_macvtap: entered promiscuous mode
[   49.083545][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.084202][ T5925] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   49.102090][  T846] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.105126][  T846] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.118088][  T846] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.127802][  T846] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.131481][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.146088][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.156374][  T846] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.168763][  T846] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.177199][  T846] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.180374][  T846] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.225164][ T6017] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[   49.226977][  T846] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.230766][  T846] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.243688][   T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.246935][   T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.255649][  T846] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.258795][  T846] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.266126][  T846] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.268926][  T846] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.295941][ T6019] FAULT_INJECTION: forcing a failure.
[   49.295941][ T6019] name failslab, interval 1, probability 0, space 0, times 1
[   49.300051][ T6019] CPU: 1 UID: 0 PID: 6019 Comm: syz.3.6 Not tainted syzkaller #0 PREEMPT(full) 
[   49.300065][ T6019] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.300071][ T6019] Call Trace:
[   49.300075][ T6019]  <TASK>
[   49.300080][ T6019]  dump_stack_lvl+0x16c/0x1f0
[   49.300098][ T6019]  should_fail_ex+0x512/0x640
[   49.300110][ T6019]  ? __kmalloc_cache_noprof+0x5f/0x780
[   49.300126][ T6019]  should_failslab+0xc2/0x120
[   49.300139][ T6019]  __kmalloc_cache_noprof+0x72/0x780
[   49.300153][ T6019]  ? __pfx___might_resched+0x10/0x10
[   49.300166][ T6019]  ? vhost_task_create+0xe5/0x370
[   49.300176][ T6019]  ? rcu_is_watching+0x12/0xc0
[   49.300189][ T6019]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   49.300204][ T6019]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   49.300217][ T6019]  ? vhost_task_create+0xe5/0x370
[   49.300226][ T6019]  vhost_task_create+0xe5/0x370
[   49.300236][ T6019]  ? __pfx_vhost_task_create+0x10/0x10
[   49.300250][ T6019]  ? __pfx_vhost_task_fn+0x10/0x10
[   49.300266][ T6019]  kvm_mmu_post_init_vm+0x1b7/0x380
[   49.300278][ T6019]  kvm_arch_vcpu_ioctl_run+0x66/0x1970
[   49.300290][ T6019]  ? kvm_vcpu_ioctl+0x14c5/0x1690
[   49.300306][ T6019]  kvm_vcpu_ioctl+0x5eb/0x1690
[   49.300322][ T6019]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   49.300336][ T6019]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   49.300354][ T6019]  ? do_vfs_ioctl+0x128/0x14f0
[   49.300368][ T6019]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   49.300382][ T6019]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   49.300398][ T6019]  ? hook_file_ioctl_common+0x145/0x410
[   49.300415][ T6019]  ? selinux_file_ioctl+0x180/0x270
[   49.300425][ T6019]  ? selinux_file_ioctl+0xb4/0x270
[   49.300436][ T6019]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   49.300451][ T6019]  __x64_sys_ioctl+0x18e/0x210
[   49.300465][ T6019]  do_syscall_64+0xcd/0xfa0
[   49.300481][ T6019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.300491][ T6019] RIP: 0033:0x7fb807b8efc9
[   49.300500][ T6019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.300510][ T6019] RSP: 002b:00007fb8089be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   49.300520][ T6019] RAX: ffffffffffffffda RBX: 00007fb807de5fa0 RCX: 00007fb807b8efc9
[   49.300526][ T6019] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[   49.300532][ T6019] RBP: 00007fb8089be090 R08: 0000000000000000 R09: 0000000000000000
[   49.300537][ T6019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.300543][ T6019] R13: 00007fb807de6038 R14: 00007fb807de5fa0 R15: 00007ffc86502ec8
[   49.300556][ T6019]  </TASK>
[   49.383931][    C1] vkms_vblank_simulate: vblank timer overrun
[   49.545728][ T6032] fuse: Bad value for 'group_id'
[   49.547443][ T6032] fuse: Bad value for 'group_id'
[   49.649868][ T6036] FAULT_INJECTION: forcing a failure.
[   49.649868][ T6036] name failslab, interval 1, probability 0, space 0, times 0
[   49.654550][ T6036] CPU: 3 UID: 0 PID: 6036 Comm: syz.2.11 Not tainted syzkaller #0 PREEMPT(full) 
[   49.654574][ T6036] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.654584][ T6036] Call Trace:
[   49.654591][ T6036]  <TASK>
[   49.654598][ T6036]  dump_stack_lvl+0x16c/0x1f0
[   49.654645][ T6036]  should_fail_ex+0x512/0x640
[   49.654666][ T6036]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[   49.654694][ T6036]  should_failslab+0xc2/0x120
[   49.654714][ T6036]  kmem_cache_alloc_node_noprof+0x78/0x770
[   49.654738][ T6036]  ? copy_process+0x4b5/0x76a0
[   49.654764][ T6036]  ? copy_process+0x4b5/0x76a0
[   49.654785][ T6036]  copy_process+0x4b5/0x76a0
[   49.654818][ T6036]  ? __pfx_copy_process+0x10/0x10
[   49.654844][ T6036]  ? lockdep_init_map_type+0x5c/0x280
[   49.654863][ T6036]  ? lockdep_init_map_type+0x5c/0x280
[   49.654880][ T6036]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   49.654905][ T6036]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   49.654926][ T6036]  vhost_task_create+0x1d2/0x370
[   49.654944][ T6036]  ? __pfx_vhost_task_create+0x10/0x10
[   49.654969][ T6036]  ? __pfx_vhost_task_fn+0x10/0x10
[   49.654998][ T6036]  kvm_mmu_post_init_vm+0x1b7/0x380
[   49.655018][ T6036]  kvm_arch_vcpu_ioctl_run+0x66/0x1970
[   49.655036][ T6036]  ? kvm_vcpu_ioctl+0x14c5/0x1690
[   49.655064][ T6036]  kvm_vcpu_ioctl+0x5eb/0x1690
[   49.655091][ T6036]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   49.655113][ T6036]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   49.655137][ T6036]  ? do_vfs_ioctl+0x128/0x14f0
[   49.655161][ T6036]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   49.655184][ T6036]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   49.655211][ T6036]  ? hook_file_ioctl_common+0x145/0x410
[   49.655240][ T6036]  ? selinux_file_ioctl+0x180/0x270
[   49.655256][ T6036]  ? selinux_file_ioctl+0xb4/0x270
[   49.655276][ T6036]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   49.655306][ T6036]  __x64_sys_ioctl+0x18e/0x210
[   49.655331][ T6036]  do_syscall_64+0xcd/0xfa0
[   49.655381][ T6036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.655398][ T6036] RIP: 0033:0x7f613c58efc9
[   49.655411][ T6036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.655426][ T6036] RSP: 002b:00007f613d3ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   49.655442][ T6036] RAX: ffffffffffffffda RBX: 00007f613c7e5fa0 RCX: 00007f613c58efc9
[   49.655454][ T6036] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[   49.655463][ T6036] RBP: 00007f613d3ac090 R08: 0000000000000000 R09: 0000000000000000
[   49.655473][ T6036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.655482][ T6036] R13: 00007f613c7e6038 R14: 00007f613c7e5fa0 R15: 00007ffef834ffd8
[   49.655507][ T6036]  </TASK>
[   49.996747][ T6038] netlink: 32 bytes leftover after parsing attributes in process `syz.3.12'.
[   50.172692][ T5928] Bluetooth: hci0: command tx timeout
[   50.252207][ T5292] Bluetooth: hci2: command tx timeout
[   50.252618][ T5934] Bluetooth: hci1: command tx timeout
[   50.254060][ T5928] Bluetooth: hci3: command tx timeout
[   50.328669][ T6051] process 'syz.3.18' launched '/dev/fd/6' with NULL argv: empty string added
[   50.414371][ T6060] syzkaller0: entered promiscuous mode
[   50.417278][ T6060] syzkaller0: entered allmulticast mode
[   50.684060][   T53] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[   50.706927][ T6074] binder_alloc: 6073: binder_alloc_buf, no vma
[   50.776048][ T6078] netlink: 24 bytes leftover after parsing attributes in process `syz.1.30'.
[   50.834430][   T53] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   50.838792][   T53] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   50.844498][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   50.880952][ T6083] FAULT_INJECTION: forcing a failure.
[   50.880952][ T6083] name failslab, interval 1, probability 0, space 0, times 0
[   50.886170][ T6083] CPU: 3 UID: 0 PID: 6083 Comm: syz.1.33 Not tainted syzkaller #0 PREEMPT(full) 
[   50.886191][ T6083] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.886200][ T6083] Call Trace:
[   50.886206][ T6083]  <TASK>
[   50.886211][ T6083]  dump_stack_lvl+0x16c/0x1f0
[   50.886239][ T6083]  should_fail_ex+0x512/0x640
[   50.886257][ T6083]  ? fs_reclaim_acquire+0xae/0x150
[   50.886276][ T6083]  should_failslab+0xc2/0x120
[   50.886294][ T6083]  __kmalloc_node_noprof+0xe0/0x8a0
[   50.886310][ T6083]  ? alloc_slab_obj_exts+0x3a/0xd0
[   50.886335][ T6083]  ? alloc_slab_obj_exts+0x3a/0xd0
[   50.886354][ T6083]  ? __phys_addr+0xe8/0x180
[   50.886374][ T6083]  alloc_slab_obj_exts+0x3a/0xd0
[   50.886394][ T6083]  __memcg_slab_post_alloc_hook+0x251/0x940
[   50.886417][ T6083]  ? kasan_save_track+0x14/0x30
[   50.886436][ T6083]  kmem_cache_alloc_noprof+0x550/0x6e0
[   50.886458][ T6083]  ? alloc_buffer_head+0x21/0x160
[   50.886481][ T6083]  ? alloc_buffer_head+0x21/0x160
[   50.886497][ T6083]  alloc_buffer_head+0x21/0x160
[   50.886515][ T6083]  folio_alloc_buffers+0x2b5/0x6c0
[   50.886538][ T6083]  create_empty_buffers+0x36/0x480
[   50.886560][ T6083]  folio_create_buffers+0x109/0x150
[   50.886590][ T6083]  __block_write_begin_int+0x320/0x16d0
[   50.886622][ T6083]  ? __pfx___block_write_begin_int+0x10/0x10
[   50.886652][ T6083]  iomap_write_begin+0x756/0x1890
[   50.886685][ T6083]  ? __pfx_iomap_write_begin+0x10/0x10
[   50.886707][ T6083]  ? I_BDEV+0xd/0x20
[   50.886724][ T6083]  ? rcu_is_watching+0x12/0xc0
[   50.886747][ T6083]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[   50.886770][ T6083]  iomap_file_buffered_write+0x48e/0xac0
[   50.886804][ T6083]  ? __pfx_iomap_file_buffered_write+0x10/0x10
[   50.886831][ T6083]  ? inode_set_ctime_current+0x2a1/0x8f0
[   50.886868][ T6083]  ? __pfx_down_read+0x10/0x10
[   50.886886][ T6083]  ? preempt_count_add+0x76/0x150
[   50.886901][ T6083]  ? mnt_put_write_access_file+0xc1/0xf0
[   50.886920][ T6083]  blkdev_write_iter+0x575/0xe00
[   50.886947][ T6083]  iter_file_splice_write+0xa24/0x12e0
[   50.886966][ T6083]  ? __pfx_filemap_splice_read+0x7/0x10
[   50.886992][ T6083]  ? __pfx_iter_file_splice_write+0x10/0x10
[   50.887025][ T6083]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[   50.887042][ T6083]  ? __pfx_iter_file_splice_write+0x10/0x10
[   50.887059][ T6083]  direct_splice_actor+0x192/0x6c0
[   50.887076][ T6083]  splice_direct_to_actor+0x345/0xa30
[   50.887093][ T6083]  ? __pfx_direct_splice_actor+0x10/0x10
[   50.887113][ T6083]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   50.887127][ T6083]  ? get_pid_task+0xfc/0x250
[   50.887147][ T6083]  do_splice_direct+0x174/0x240
[   50.887163][ T6083]  ? __pfx_do_splice_direct+0x10/0x10
[   50.887178][ T6083]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   50.887203][ T6083]  ? bpf_lsm_file_permission+0x9/0x10
[   50.887218][ T6083]  ? security_file_permission+0x71/0x210
[   50.887237][ T6083]  ? rw_verify_area+0xcf/0x6c0
[   50.887261][ T6083]  do_sendfile+0xb06/0xe50
[   50.887287][ T6083]  ? __pfx_do_sendfile+0x10/0x10
[   50.887310][ T6083]  ? __fget_files+0x20e/0x3c0
[   50.887354][ T6083]  __x64_sys_sendfile64+0x1d8/0x220
[   50.887373][ T6083]  ? ksys_write+0x1ac/0x250
[   50.887387][ T6083]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[   50.887412][ T6083]  do_syscall_64+0xcd/0xfa0
[   50.887436][ T6083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.887451][ T6083] RIP: 0033:0x7efe8c18efc9
[   50.887464][ T6083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.887478][ T6083] RSP: 002b:00007efe8cf76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   50.887492][ T6083] RAX: ffffffffffffffda RBX: 00007efe8c3e5fa0 RCX: 00007efe8c18efc9
[   50.887502][ T6083] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[   50.887511][ T6083] RBP: 00007efe8cf76090 R08: 0000000000000000 R09: 0000000000000000
[   50.887519][ T6083] R10: 00000000002000fb R11: 0000000000000246 R12: 0000000000000001
[   50.887528][ T6083] R13: 00007efe8c3e6038 R14: 00007efe8c3e5fa0 R15: 00007ffe520a5718
[   50.887550][ T6083]  </TASK>
[   50.915920][   T40] kauditd_printk_skb: 86 callbacks suppressed
[   50.915934][   T40] audit: type=1400 audit(1761296208.766:176): avc:  denied  { read write } for  pid=6085 comm="syz.0.34" name="uinput" dev="devtmpfs" ino=943 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   51.045534][   T40] audit: type=1400 audit(1761296208.766:177): avc:  denied  { open } for  pid=6085 comm="syz.0.34" path="/dev/uinput" dev="devtmpfs" ino=943 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   51.054471][   T40] audit: type=1400 audit(1761296208.766:178): avc:  denied  { ioctl } for  pid=6085 comm="syz.0.34" path="/dev/uinput" dev="devtmpfs" ino=943 ioctlcmd=0x556b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   51.062543][   T40] audit: type=1400 audit(1761296208.766:179): avc:  denied  { ioctl } for  pid=6085 comm="syz.0.34" path="socket:[9010]" dev="sockfs" ino=9010 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   51.070446][   T40] audit: type=1400 audit(1761296208.806:180): avc:  denied  { getopt } for  pid=6085 comm="syz.0.34" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   51.081692][   T40] audit: type=1400 audit(1761296208.926:181): avc:  denied  { create } for  pid=6091 comm="syz.1.36" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   51.087692][   T40] audit: type=1400 audit(1761296208.926:182): avc:  denied  { write } for  pid=6091 comm="syz.1.36" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   51.316245][ T6099] usb usb8: usbfs: process 6099 (syz.3.38) did not claim interface 0 before use
[   51.354506][   T40] audit: type=1400 audit(1761296209.206:183): avc:  denied  { write } for  pid=6100 comm="syz.3.39" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   51.354828][ T6101] random: crng reseeded on system resumption
[   51.361782][   T40] audit: type=1400 audit(1761296209.206:184): avc:  denied  { open } for  pid=6100 comm="syz.3.39" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   51.374742][ T6102] ipt_REJECT: TCP_RESET invalid for non-tcp
[   51.377722][ T6101] netlink: 16 bytes leftover after parsing attributes in process `syz.3.39'.
[   51.381292][ T6101] netlink: 92 bytes leftover after parsing attributes in process `syz.3.39'.
[   51.661713][   T34] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   51.723995][   T40] audit: type=1400 audit(1761296209.576:185): avc:  denied  { add_name } for  pid=6106 comm="syz.0.41" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   51.813559][   T34] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   51.816941][   T34] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   51.820133][   T34] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[   51.824353][   T34] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[   51.828541][   T34] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[   51.833885][   T34] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   51.836826][   T34] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   51.839441][   T34] usb 8-1: Product: syz
[   51.840758][   T34] usb 8-1: Manufacturer: syz
[   51.849410][   T34] cdc_wdm 8-1:1.0: skipping garbage
[   51.851403][   T34] cdc_wdm 8-1:1.0: skipping garbage
[   51.864460][   T34] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[   51.866373][   T34] cdc_wdm 8-1:1.0: Unknown control protocol
[   51.909995][ T6112] Bluetooth: MGMT ver 1.23
[   52.058643][ T1330] usb 8-1: USB disconnect, device number 2
[   52.251700][ T5928] Bluetooth: hci0: command tx timeout
[   52.282531][ T6132] syzkaller0: entered promiscuous mode
[   52.284856][ T6132] syzkaller0: entered allmulticast mode
[   52.321660][   T10] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   52.331689][ T5928] Bluetooth: hci3: command tx timeout
[   52.341940][ T5928] Bluetooth: hci1: command tx timeout
[   52.429963][ T6134] FAULT_INJECTION: forcing a failure.
[   52.429963][ T6134] name failslab, interval 1, probability 0, space 0, times 0
[   52.434069][ T6134] CPU: 1 UID: 0 PID: 6134 Comm: syz.0.51 Not tainted syzkaller #0 PREEMPT(full) 
[   52.434083][ T6134] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   52.434089][ T6134] Call Trace:
[   52.434093][ T6134]  <TASK>
[   52.434096][ T6134]  dump_stack_lvl+0x16c/0x1f0
[   52.434115][ T6134]  should_fail_ex+0x512/0x640
[   52.434128][ T6134]  ? __kmalloc_cache_noprof+0x5f/0x780
[   52.434144][ T6134]  should_failslab+0xc2/0x120
[   52.434156][ T6134]  __kmalloc_cache_noprof+0x72/0x780
[   52.434170][ T6134]  ? __pfx___might_resched+0x10/0x10
[   52.434184][ T6134]  ? vhost_task_create+0xe5/0x370
[   52.434194][ T6134]  ? rcu_is_watching+0x12/0xc0
[   52.434206][ T6134]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   52.434221][ T6134]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   52.434234][ T6134]  ? vhost_task_create+0xe5/0x370
[   52.434243][ T6134]  vhost_task_create+0xe5/0x370
[   52.434253][ T6134]  ? __pfx_vhost_task_create+0x10/0x10
[   52.434267][ T6134]  ? __pfx_vhost_task_fn+0x10/0x10
[   52.434285][ T6134]  kvm_mmu_post_init_vm+0x1b7/0x380
[   52.434297][ T6134]  kvm_arch_vcpu_ioctl_run+0x66/0x1970
[   52.434308][ T6134]  ? kvm_vcpu_ioctl+0x14c5/0x1690
[   52.434325][ T6134]  kvm_vcpu_ioctl+0x5eb/0x1690
[   52.434340][ T6134]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   52.434354][ T6134]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   52.434368][ T6134]  ? do_vfs_ioctl+0x128/0x14f0
[   52.434382][ T6134]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   52.434396][ T6134]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   52.434413][ T6134]  ? hook_file_ioctl_common+0x145/0x410
[   52.434430][ T6134]  ? selinux_file_ioctl+0x180/0x270
[   52.434440][ T6134]  ? selinux_file_ioctl+0xb4/0x270
[   52.434451][ T6134]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   52.434466][ T6134]  __x64_sys_ioctl+0x18e/0x210
[   52.434481][ T6134]  do_syscall_64+0xcd/0xfa0
[   52.434498][ T6134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.434509][ T6134] RIP: 0033:0x7fde3558efc9
[   52.434517][ T6134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.434531][ T6134] RSP: 002b:00007fde3645f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   52.434541][ T6134] RAX: ffffffffffffffda RBX: 00007fde357e5fa0 RCX: 00007fde3558efc9
[   52.434547][ T6134] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[   52.434553][ T6134] RBP: 00007fde3645f090 R08: 0000000000000000 R09: 0000000000000000
[   52.434559][ T6134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.434564][ T6134] R13: 00007fde357e6038 R14: 00007fde357e5fa0 R15: 00007ffeb21d4648
[   52.434577][ T6134]  </TASK>
[   52.524692][    C1] vkms_vblank_simulate: vblank timer overrun
[   52.532995][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 185, changing to 11
[   52.536529][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1800, setting to 1024
[   52.539896][   T10] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[   52.542769][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.546428][   T10] usb 6-1: config 0 descriptor??
[   52.548728][ T6124] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   52.754969][   T10] usbhid 6-1:0.0: can't add hid device: -71
[   52.756997][   T10] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[   52.760674][   T10] usb 6-1: USB disconnect, device number 2
[   53.192493][ T1330] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   53.341714][ T1330] usb 6-1: Using ep0 maxpacket: 32
[   53.345790][ T1330] usb 6-1: config index 0 descriptor too short (expected 36, got 27)
[   53.352428][ T1330] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   53.357370][ T1330] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[   53.360861][ T1330] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   53.366540][ T1330] usb 6-1: config 0 descriptor??
[   53.372119][ T1330] ldusb 6-1:0.0: Interrupt in endpoint not found
[   53.376408][ T1330] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[   53.461132][  T840] usb 7-1: USB disconnect, device number 2
[   53.574721][   T34] usb 6-1: USB disconnect, device number 3
[   53.685228][ T6174] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   53.931952][ T5928] Bluetooth: hci2: command tx timeout
[   54.081648][ T2158] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[   54.215864][ T6198] syzkaller0: entered promiscuous mode
[   54.218235][ T6198] syzkaller0: entered allmulticast mode
[   54.264317][ T2158] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   54.267539][ T2158] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   54.270862][ T2158] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.411821][ T5928] Bluetooth: hci3: command tx timeout
[   54.422486][ T5928] Bluetooth: hci1: command tx timeout
[   54.446640][ T6200] FAULT_INJECTION: forcing a failure.
[   54.446640][ T6200] name failslab, interval 1, probability 0, space 0, times 0
[   54.450737][ T6200] CPU: 2 UID: 0 PID: 6200 Comm: syz.1.75 Not tainted syzkaller #0 PREEMPT(full) 
[   54.450753][ T6200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.450758][ T6200] Call Trace:
[   54.450762][ T6200]  <TASK>
[   54.450767][ T6200]  dump_stack_lvl+0x16c/0x1f0
[   54.450786][ T6200]  should_fail_ex+0x512/0x640
[   54.450799][ T6200]  ? fs_reclaim_acquire+0xae/0x150
[   54.450812][ T6200]  should_failslab+0xc2/0x120
[   54.450824][ T6200]  __kmalloc_noprof+0xdd/0x880
[   54.450839][ T6200]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   54.450854][ T6200]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   54.450864][ T6200]  tomoyo_realpath_from_path+0xc2/0x6e0
[   54.450877][ T6200]  ? tomoyo_profile+0x47/0x60
[   54.450891][ T6200]  tomoyo_path_number_perm+0x245/0x580
[   54.450906][ T6200]  ? tomoyo_path_number_perm+0x237/0x580
[   54.450923][ T6200]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   54.450939][ T6200]  ? find_held_lock+0x2b/0x80
[   54.450963][ T6200]  ? find_held_lock+0x2b/0x80
[   54.450974][ T6200]  ? hook_file_ioctl_common+0x145/0x410
[   54.450990][ T6200]  ? __fget_files+0x20e/0x3c0
[   54.451002][ T6200]  security_file_ioctl+0x9b/0x240
[   54.451014][ T6200]  __x64_sys_ioctl+0xb7/0x210
[   54.451030][ T6200]  do_syscall_64+0xcd/0xfa0
[   54.451046][ T6200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.451056][ T6200] RIP: 0033:0x7efe8c18efc9
[   54.451064][ T6200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.451074][ T6200] RSP: 002b:00007efe8cf76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   54.451084][ T6200] RAX: ffffffffffffffda RBX: 00007efe8c3e5fa0 RCX: 00007efe8c18efc9
[   54.451090][ T6200] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[   54.451096][ T6200] RBP: 00007efe8cf76090 R08: 0000000000000000 R09: 0000000000000000
[   54.451101][ T6200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.451107][ T6200] R13: 00007efe8c3e6038 R14: 00007efe8c3e5fa0 R15: 00007ffe520a5718
[   54.451120][ T6200]  </TASK>
[   54.451124][ T6200] ERROR: Out of memory at tomoyo_realpath_from_path.
[   54.619855][ T6203] fuse: Unknown parameter 'group_i00000000000000000000'
[   54.660812][ T6205] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   54.674672][ T6205] No such timeout policy "syz0"
[   54.954954][ T6219] syzkaller0: entered promiscuous mode
[   54.956782][ T6219] syzkaller0: entered allmulticast mode
[   54.960552][ T6219] Zero length message leads to an empty skb
[   55.143739][ T6229] fuse: Unknown parameter 'group_i00000000000000000000'
[   55.245572][ T6244] syzkaller0: entered promiscuous mode
[   55.247335][ T6244] syzkaller0: entered allmulticast mode
[   55.274115][ T6246] netlink: 16 bytes leftover after parsing attributes in process `syz.0.96'.
[   55.314338][ T6252] fuse: Unknown parameter 'group_id00000000000000000000'
[   55.360307][ T6256] FAULT_INJECTION: forcing a failure.
[   55.360307][ T6256] name failslab, interval 1, probability 0, space 0, times 0
[   55.365582][ T6256] CPU: 2 UID: 0 PID: 6256 Comm: syz.2.100 Not tainted syzkaller #0 PREEMPT(full) 
[   55.365596][ T6256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.365602][ T6256] Call Trace:
[   55.365606][ T6256]  <TASK>
[   55.365610][ T6256]  dump_stack_lvl+0x16c/0x1f0
[   55.365630][ T6256]  should_fail_ex+0x512/0x640
[   55.365642][ T6256]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[   55.365673][ T6256]  should_failslab+0xc2/0x120
[   55.365685][ T6256]  kmem_cache_alloc_node_noprof+0x78/0x770
[   55.365700][ T6256]  ? __alloc_skb+0x2b2/0x380
[   55.365715][ T6256]  ? __alloc_skb+0x2b2/0x380
[   55.365725][ T6256]  __alloc_skb+0x2b2/0x380
[   55.365736][ T6256]  ? __pfx___alloc_skb+0x10/0x10
[   55.365747][ T6256]  ? lockdep_hardirqs_on+0x7c/0x110
[   55.365763][ T6256]  ? kfree+0x2b8/0x6d0
[   55.365775][ T6256]  ? mpls_dev_notify+0x714/0xa20
[   55.365792][ T6256]  mpls_netconf_notify_devconf+0x4a/0x110
[   55.365808][ T6256]  mpls_dev_notify+0x726/0xa20
[   55.365824][ T6256]  notifier_call_chain+0xbc/0x410
[   55.365839][ T6256]  ? __pfx_mpls_dev_notify+0x10/0x10
[   55.365856][ T6256]  call_netdevice_notifiers_info+0xbe/0x140
[   55.365873][ T6256]  unregister_netdevice_many_notify+0xf5c/0x25c0
[   55.365892][ T6256]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[   55.365914][ T6256]  unregister_netdevice_queue+0x305/0x3f0
[   55.365928][ T6256]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[   55.365943][ T6256]  ? rtnl_net_dev_lock+0x28/0x360
[   55.365954][ T6256]  ? rtnl_net_dev_lock+0x146/0x360
[   55.365964][ T6256]  ? rtnl_net_dev_lock+0x146/0x360
[   55.365976][ T6256]  unregister_netdev+0x1f/0x60
[   55.365989][ T6256]  slip_hangup+0x165/0x1c0
[   55.366002][ T6256]  tty_ldisc_hangup+0x1a3/0x730
[   55.366014][ T6256]  ? __pfx_slip_hangup+0x10/0x10
[   55.366027][ T6256]  __tty_hangup.part.0+0x3fe/0x8c0
[   55.366044][ T6256]  tty_ioctl+0x1057/0x1680
[   55.366059][ T6256]  ? __pfx_tty_ioctl+0x10/0x10
[   55.366072][ T6256]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   55.366089][ T6256]  ? hook_file_ioctl_common+0x145/0x410
[   55.366107][ T6256]  ? selinux_file_ioctl+0x180/0x270
[   55.366117][ T6256]  ? selinux_file_ioctl+0xb4/0x270
[   55.366128][ T6256]  ? __pfx_tty_ioctl+0x10/0x10
[   55.366142][ T6256]  __x64_sys_ioctl+0x18e/0x210
[   55.366157][ T6256]  do_syscall_64+0xcd/0xfa0
[   55.366173][ T6256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.366184][ T6256] RIP: 0033:0x7f613c58efc9
[   55.366193][ T6256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.366203][ T6256] RSP: 002b:00007f613d3ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   55.366213][ T6256] RAX: ffffffffffffffda RBX: 00007f613c7e5fa0 RCX: 00007f613c58efc9
[   55.366219][ T6256] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000003
[   55.366224][ T6256] RBP: 00007f613d3ac090 R08: 0000000000000000 R09: 0000000000000000
[   55.366230][ T6256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.366235][ T6256] R13: 00007f613c7e6038 R14: 00007f613c7e5fa0 R15: 00007ffef834ffd8
[   55.366249][ T6256]  </TASK>
[   55.652992][ T6272] FAULT_INJECTION: forcing a failure.
[   55.652992][ T6272] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   55.658444][ T6272] CPU: 3 UID: 0 PID: 6272 Comm: syz.2.107 Not tainted syzkaller #0 PREEMPT(full) 
[   55.658472][ T6272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.658481][ T6272] Call Trace:
[   55.658486][ T6272]  <TASK>
[   55.658494][ T6272]  dump_stack_lvl+0x16c/0x1f0
[   55.658523][ T6272]  should_fail_ex+0x512/0x640
[   55.658547][ T6272]  _copy_to_user+0x32/0xd0
[   55.658570][ T6272]  simple_read_from_buffer+0xcb/0x170
[   55.658599][ T6272]  proc_fail_nth_read+0x197/0x240
[   55.658620][ T6272]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   55.658642][ T6272]  ? rw_verify_area+0xcf/0x6c0
[   55.658665][ T6272]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   55.658685][ T6272]  vfs_read+0x1e4/0xcf0
[   55.658704][ T6272]  ? __pfx___mutex_lock+0x10/0x10
[   55.658720][ T6272]  ? __pfx_vfs_read+0x10/0x10
[   55.658742][ T6272]  ? __fget_files+0x20e/0x3c0
[   55.658767][ T6272]  ksys_read+0x12a/0x250
[   55.658782][ T6272]  ? __pfx_ksys_read+0x10/0x10
[   55.658797][ T6272]  ? fput+0x9b/0xd0
[   55.658820][ T6272]  do_syscall_64+0xcd/0xfa0
[   55.658844][ T6272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.658858][ T6272] RIP: 0033:0x7f613c58d9dc
[   55.658870][ T6272] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   55.658885][ T6272] RSP: 002b:00007f613d3ac030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   55.658899][ T6272] RAX: ffffffffffffffda RBX: 00007f613c7e5fa0 RCX: 00007f613c58d9dc
[   55.658909][ T6272] RDX: 000000000000000f RSI: 00007f613d3ac0a0 RDI: 0000000000000004
[   55.658918][ T6272] RBP: 00007f613d3ac090 R08: 0000000000000000 R09: 0000000000000000
[   55.658927][ T6272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.658937][ T6272] R13: 00007f613c7e6038 R14: 00007f613c7e5fa0 R15: 00007ffef834ffd8
[   55.658962][ T6272]  </TASK>
[   55.756299][ T6275] fuse: Unknown parameter 'group_id00000000000000000000'
[   55.976992][   T40] kauditd_printk_skb: 35 callbacks suppressed
[   55.977008][   T40] audit: type=1400 audit(1761296213.826:221): avc:  denied  { search } for  pid=5643 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   55.995626][   T40] audit: type=1400 audit(1761296213.826:222): avc:  denied  { search } for  pid=5643 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   56.005201][   T40] audit: type=1400 audit(1761296213.826:223): avc:  denied  { search } for  pid=5643 comm="dhcpcd" name="data" dev="tmpfs" ino=14 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   56.015615][   T40] audit: type=1400 audit(1761296213.826:224): avc:  denied  { read } for  pid=5643 comm="dhcpcd" name="n104" dev="tmpfs" ino=2491 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   56.028901][   T40] audit: type=1400 audit(1761296213.826:225): avc:  denied  { open } for  pid=5643 comm="dhcpcd" path="/run/udev/data/n104" dev="tmpfs" ino=2491 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   56.038425][   T40] audit: type=1400 audit(1761296213.826:226): avc:  denied  { getattr } for  pid=5643 comm="dhcpcd" path="/run/udev/data/n104" dev="tmpfs" ino=2491 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   56.066357][   T40] audit: type=1400 audit(1761296213.916:227): avc:  denied  { read open } for  pid=6286 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1902 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   56.075612][   T40] audit: type=1400 audit(1761296213.916:228): avc:  denied  { getattr } for  pid=6286 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1902 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   56.087404][   T40] audit: type=1400 audit(1761296213.936:229): avc:  denied  { add_name } for  pid=6285 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   56.095986][   T40] audit: type=1400 audit(1761296213.936:230): avc:  denied  { create } for  pid=6285 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   56.523060][ T6313] netlink: 8 bytes leftover after parsing attributes in process `syz.1.119'.
[   56.528887][ T6313] netlink: 32 bytes leftover after parsing attributes in process `syz.1.119'.
[   56.763046][ T1330] kernel read not supported for file /dsp1 (pid: 1330 comm: kworker/1:2)
[   56.811759][ T1330] kernel read not supported for file /dsp1 (pid: 1330 comm: kworker/1:2)
[   56.872605][ T1330] usb 8-1: USB disconnect, device number 3
[   56.952269][ T6340] warning: `syz.0.128' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   56.964579][ T6338] netlink: 16 bytes leftover after parsing attributes in process `syz.0.128'.
[   56.965351][ T6343] kernel read not supported for file /policy (pid: 6343 comm: syz.2.131)
[   56.968260][ T6338] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   56.979660][ T6338] netlink: 'syz.0.128': attribute type 10 has an invalid length.
[   56.991028][ T6338] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   57.034681][ T6349] hsr0: entered allmulticast mode
[   57.036739][ T6349] hsr_slave_0: entered allmulticast mode
[   57.038415][ T6349] hsr_slave_1: entered allmulticast mode
[   57.189231][ T6352] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   57.262813][ T6359] input: syz1 as /devices/virtual/input/input7
[   57.326440][ T6361] fuse: Bad value for 'user_id'
[   57.328060][ T6361] fuse: Bad value for 'user_id'
[   57.678268][ T6370] FAULT_INJECTION: forcing a failure.
[   57.678268][ T6370] name failslab, interval 1, probability 0, space 0, times 0
[   57.682885][ T6370] CPU: 1 UID: 0 PID: 6370 Comm: syz.3.140 Not tainted syzkaller #0 PREEMPT(full) 
[   57.682900][ T6370] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.682906][ T6370] Call Trace:
[   57.682919][ T6370]  <TASK>
[   57.682923][ T6370]  dump_stack_lvl+0x16c/0x1f0
[   57.682978][ T6370]  should_fail_ex+0x512/0x640
[   57.682995][ T6370]  ? __kmalloc_noprof+0xca/0x880
[   57.683011][ T6370]  should_failslab+0xc2/0x120
[   57.683023][ T6370]  __kmalloc_noprof+0xdd/0x880
[   57.683036][ T6370]  ? __pfx_timestamp_truncate+0x10/0x10
[   57.683047][ T6370]  ? ns_to_timespec64+0x59/0xc0
[   57.683061][ T6370]  ? iter_file_splice_write+0x1cc/0x12e0
[   57.683074][ T6370]  ? iter_file_splice_write+0x1cc/0x12e0
[   57.683084][ T6370]  iter_file_splice_write+0x1cc/0x12e0
[   57.683094][ T6370]  ? current_time+0x11d/0x1a0
[   57.683104][ T6370]  ? __pfx_current_time+0x10/0x10
[   57.683114][ T6370]  ? __pfx_make_vfsgid+0x10/0x10
[   57.683131][ T6370]  ? atime_needs_update+0x8b/0x710
[   57.683146][ T6370]  ? __pfx_iter_file_splice_write+0x10/0x10
[   57.683156][ T6370]  ? __lock_acquire+0xb8a/0x1c90
[   57.683186][ T6370]  ? __pfx_iter_file_splice_write+0x10/0x10
[   57.683197][ T6370]  direct_splice_actor+0x192/0x6c0
[   57.683208][ T6370]  splice_direct_to_actor+0x345/0xa30
[   57.683219][ T6370]  ? __pfx_direct_splice_actor+0x10/0x10
[   57.683231][ T6370]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   57.683240][ T6370]  ? get_pid_task+0xfc/0x250
[   57.683253][ T6370]  do_splice_direct+0x174/0x240
[   57.683263][ T6370]  ? __pfx_do_splice_direct+0x10/0x10
[   57.683299][ T6370]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   57.683317][ T6370]  ? rw_verify_area+0xcf/0x6c0
[   57.683333][ T6370]  do_sendfile+0xb06/0xe50
[   57.683350][ T6370]  ? __pfx_do_sendfile+0x10/0x10
[   57.683370][ T6370]  __x64_sys_sendfile64+0x154/0x220
[   57.683382][ T6370]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[   57.683397][ T6370]  do_syscall_64+0xcd/0xfa0
[   57.683415][ T6370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.683425][ T6370] RIP: 0033:0x7fb807b8efc9
[   57.683436][ T6370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.683445][ T6370] RSP: 002b:00007fb8089be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   57.683455][ T6370] RAX: ffffffffffffffda RBX: 00007fb807de5fa0 RCX: 00007fb807b8efc9
[   57.683461][ T6370] RDX: 0000200000000080 RSI: 0000000000000003 RDI: 0000000000000003
[   57.683467][ T6370] RBP: 00007fb8089be090 R08: 0000000000000000 R09: 0000000000000000
[   57.683473][ T6370] R10: 000000004d9b6eaf R11: 0000000000000246 R12: 0000000000000001
[   57.683478][ T6370] R13: 00007fb807de6038 R14: 00007fb807de5fa0 R15: 00007ffc86502ec8
[   57.683491][ T6370]  </TASK>
[   57.704182][ T6374] syzkaller0: entered promiscuous mode
[   57.790932][ T6374] syzkaller0: entered allmulticast mode
[   57.811650][   T10] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[   57.910120][ T6392] fuse: Bad value for 'fd'
[   57.964338][ T6394] FAULT_INJECTION: forcing a failure.
[   57.964338][ T6394] name failslab, interval 1, probability 0, space 0, times 0
[   57.969549][ T6394] CPU: 2 UID: 0 PID: 6394 Comm: syz.3.151 Not tainted syzkaller #0 PREEMPT(full) 
[   57.969570][ T6394] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.969580][ T6394] Call Trace:
[   57.969586][ T6394]  <TASK>
[   57.969592][ T6394]  dump_stack_lvl+0x16c/0x1f0
[   57.969620][ T6394]  should_fail_ex+0x512/0x640
[   57.969640][ T6394]  ? fs_reclaim_acquire+0xae/0x150
[   57.969660][ T6394]  should_failslab+0xc2/0x120
[   57.969679][ T6394]  __kmalloc_noprof+0xdd/0x880
[   57.969702][ T6394]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   57.969739][ T6394]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   57.969758][ T6394]  tomoyo_realpath_from_path+0xc2/0x6e0
[   57.969780][ T6394]  ? tomoyo_profile+0x47/0x60
[   57.969804][ T6394]  tomoyo_path_number_perm+0x245/0x580
[   57.969828][ T6394]  ? tomoyo_path_number_perm+0x237/0x580
[   57.969854][ T6394]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   57.969879][ T6394]  ? find_held_lock+0x2b/0x80
[   57.969919][ T6394]  ? find_held_lock+0x2b/0x80
[   57.969936][ T6394]  ? hook_file_ioctl_common+0x145/0x410
[   57.969959][ T6394]  ? __fget_files+0x20e/0x3c0
[   57.969981][ T6394]  security_file_ioctl+0x9b/0x240
[   57.970000][ T6394]  __x64_sys_ioctl+0xb7/0x210
[   57.970023][ T6394]  do_syscall_64+0xcd/0xfa0
[   57.970045][ T6394]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.970059][ T6394] RIP: 0033:0x7fb807b8efc9
[   57.970073][ T6394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.970087][ T6394] RSP: 002b:00007fb8089be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.970103][ T6394] RAX: ffffffffffffffda RBX: 00007fb807de5fa0 RCX: 00007fb807b8efc9
[   57.970113][ T6394] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[   57.970122][ T6394] RBP: 00007fb8089be090 R08: 0000000000000000 R09: 0000000000000000
[   57.970132][ T6394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.970140][ T6394] R13: 00007fb807de6038 R14: 00007fb807de5fa0 R15: 00007ffc86502ec8
[   57.970164][ T6394]  </TASK>
[   57.970185][ T6394] ERROR: Out of memory at tomoyo_realpath_from_path.
[   57.983323][   T10] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   58.045670][   T10] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   58.048484][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.803411][ T6417] syzkaller0: entered promiscuous mode
[   58.805179][ T6417] syzkaller0: entered allmulticast mode
[   59.915241][ T6447] fuse: Unknown parameter '£¦Y
[   59.915241][ T6447] Ò>'
[   59.971850][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   60.053296][ T6452] syzkaller0: entered promiscuous mode
[   60.055675][ T6452] syzkaller0: entered allmulticast mode
[   60.531943][ T6472] jfs: Unknown parameter 'discard>f:ï^'
[   60.561260][    T9] usb 5-1: USB disconnect, device number 2
[   60.725298][ T6488] syzkaller0: entered promiscuous mode
[   60.727646][ T6488] syzkaller0: entered allmulticast mode
[   60.939274][ T6505] syzkaller1: entered promiscuous mode
[   60.941334][ T6505] syzkaller1: entered allmulticast mode
[   61.002387][   T40] kauditd_printk_skb: 47 callbacks suppressed
[   61.002408][   T40] audit: type=1400 audit(1761296218.856:278): avc:  denied  { execute } for  pid=6506 comm="syz.3.193" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=13717 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   61.031807][ T1330] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[   61.064057][ T6510] FAULT_INJECTION: forcing a failure.
[   61.064057][ T6510] name failslab, interval 1, probability 0, space 0, times 0
[   61.068166][ T6510] CPU: 3 UID: 0 PID: 6510 Comm: syz.3.194 Not tainted syzkaller #0 PREEMPT(full) 
[   61.068181][ T6510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.068192][ T6510] Call Trace:
[   61.068205][ T6510]  <TASK>
[   61.068209][ T6510]  dump_stack_lvl+0x16c/0x1f0
[   61.068242][ T6510]  should_fail_ex+0x512/0x640
[   61.068259][ T6510]  ? fs_reclaim_acquire+0xae/0x150
[   61.068272][ T6510]  should_failslab+0xc2/0x120
[   61.068284][ T6510]  __kmalloc_noprof+0xdd/0x880
[   61.068299][ T6510]  ? tomoyo_encode2+0x100/0x3e0
[   61.068312][ T6510]  ? tomoyo_encode2+0x100/0x3e0
[   61.068323][ T6510]  tomoyo_encode2+0x100/0x3e0
[   61.068335][ T6510]  tomoyo_encode+0x29/0x50
[   61.068346][ T6510]  tomoyo_realpath_from_path+0x18f/0x6e0
[   61.068358][ T6510]  ? tomoyo_profile+0x47/0x60
[   61.068373][ T6510]  tomoyo_path_number_perm+0x245/0x580
[   61.068388][ T6510]  ? tomoyo_path_number_perm+0x237/0x580
[   61.068404][ T6510]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   61.068421][ T6510]  ? find_held_lock+0x2b/0x80
[   61.068445][ T6510]  ? find_held_lock+0x2b/0x80
[   61.068457][ T6510]  ? hook_file_ioctl_common+0x145/0x410
[   61.068473][ T6510]  ? __fget_files+0x20e/0x3c0
[   61.068485][ T6510]  security_file_ioctl+0x9b/0x240
[   61.068498][ T6510]  __x64_sys_ioctl+0xb7/0x210
[   61.068513][ T6510]  do_syscall_64+0xcd/0xfa0
[   61.068529][ T6510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.068539][ T6510] RIP: 0033:0x7fb807b8efc9
[   61.068548][ T6510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.068557][ T6510] RSP: 002b:00007fb8089be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   61.068568][ T6510] RAX: ffffffffffffffda RBX: 00007fb807de5fa0 RCX: 00007fb807b8efc9
[   61.068574][ T6510] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[   61.068580][ T6510] RBP: 00007fb8089be090 R08: 0000000000000000 R09: 0000000000000000
[   61.068585][ T6510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.068591][ T6510] R13: 00007fb807de6038 R14: 00007fb807de5fa0 R15: 00007ffc86502ec8
[   61.068604][ T6510]  </TASK>
[   61.068614][ T6510] ERROR: Out of memory at tomoyo_realpath_from_path.
[   61.197123][ T1330] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   61.201240][ T1330] usb 5-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[   61.205320][ T1330] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   61.208299][ T1330] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.214957][ T1330] usbtmc 5-1:16.0: bulk endpoints not found
[   61.777998][ T6522] syzkaller0: entered promiscuous mode
[   61.779731][ T6522] syzkaller0: entered allmulticast mode
[   61.828680][ T6526] netlink: 'syz.1.199': attribute type 1 has an invalid length.
[   61.831258][ T6526] netlink: 224 bytes leftover after parsing attributes in process `syz.1.199'.
[   61.933826][ T5934] Bluetooth: hci3: command 0x0405 tx timeout
[   61.970977][   T40] audit: type=1400 audit(1761296219.816:279): avc:  denied  { ioctl } for  pid=6532 comm="syz.3.201" path="/dev/vhost-vsock" dev="devtmpfs" ino=1301 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   61.976861][ T6536] fuse: Bad value for 'rootmode'
[   61.983388][   T40] audit: type=1400 audit(1761296219.836:280): avc:  denied  { create } for  pid=6532 comm="syz.3.201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   62.015152][   T40] audit: type=1400 audit(1761296219.866:281): avc:  denied  { ioctl } for  pid=6537 comm="syz.1.203" path="socket:[14575]" dev="sockfs" ino=14575 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   62.016784][ T6539] netlink: 32 bytes leftover after parsing attributes in process `syz.1.203'.
[   62.016898][ T6540] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.204'.
[   62.024360][   T40] audit: type=1400 audit(1761296219.866:282): avc:  denied  { bind } for  pid=6537 comm="syz.1.203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   62.028388][ T6539] vxcan1: tx address claim with dest, not broadcast
[   62.029779][   T40] audit: type=1400 audit(1761296219.876:283): avc:  denied  { write } for  pid=6537 comm="syz.1.203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   62.110014][ T6553] netlink: 'syz.1.209': attribute type 1 has an invalid length.
[   62.123159][ T6553] 8021q: adding VLAN 0 to HW filter on device bond1
[   62.142775][ T6553] bond1: (slave ip6erspan0): making interface the new active one
[   62.143097][ T6557] netlink: 'syz.3.210': attribute type 10 has an invalid length.
[   62.147430][ T6553] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[   62.160184][   T40] audit: type=1400 audit(1761296220.016:284): avc:  denied  { read write } for  pid=6552 comm="syz.1.209" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   62.160681][ T6553] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[   62.161816][ T6557] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   62.167726][   T40] audit: type=1400 audit(1761296220.016:285): avc:  denied  { open } for  pid=6552 comm="syz.1.209" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   62.211123][ T6563] fuse: Unknown parameter 'use00000000000000000000'
[   62.235221][ T6566] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input8
[   62.263577][   T40] audit: type=1400 audit(1761296220.116:286): avc:  denied  { bind } for  pid=6568 comm="syz.3.214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   62.276196][   T40] audit: type=1400 audit(1761296220.126:287): avc:  denied  { ioctl } for  pid=6568 comm="syz.3.214" path="/dev/sg0" dev="devtmpfs" ino=721 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   62.281417][ T6571] netlink: 108 bytes leftover after parsing attributes in process `syz.2.215'.
[   62.282679][ T6573] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   62.284300][ T6569] nfs: Unknown parameter '4'
[   62.356933][ T6579] tipc: Started in network mode
[   62.358607][ T6579] tipc: Node identity 0a1801a6b3c2, cluster identity 4711
[   62.360942][ T6579] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   62.363875][ T6579] syzkaller0: entered promiscuous mode
[   62.365705][ T6579] syzkaller0: entered allmulticast mode
[   62.373880][ T6578] tipc: Resetting bearer <eth:syzkaller0>
[   62.383113][ T6578] tipc: Disabling bearer <eth:syzkaller0>
[   62.507835][ T6585] FAULT_INJECTION: forcing a failure.
[   62.507835][ T6585] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.514435][ T6585] CPU: 2 UID: 0 PID: 6585 Comm: syz.1.221 Not tainted syzkaller #0 PREEMPT(full) 
[   62.514451][ T6585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.514457][ T6585] Call Trace:
[   62.514460][ T6585]  <TASK>
[   62.514464][ T6585]  dump_stack_lvl+0x16c/0x1f0
[   62.514496][ T6585]  should_fail_ex+0x512/0x640
[   62.514515][ T6585]  _copy_from_user+0x2e/0xd0
[   62.514529][ T6585]  kstrtouint_from_user+0xd6/0x1d0
[   62.514545][ T6585]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   62.514560][ T6585]  ? __lock_acquire+0xb8a/0x1c90
[   62.514582][ T6585]  proc_fail_nth_write+0x83/0x220
[   62.514595][ T6585]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   62.514610][ T6585]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   62.514620][ T6585]  vfs_write+0x2a0/0x11d0
[   62.514633][ T6585]  ? __pfx___mutex_lock+0x10/0x10
[   62.514642][ T6585]  ? __pfx_vfs_write+0x10/0x10
[   62.514655][ T6585]  ? __fget_files+0x20e/0x3c0
[   62.514669][ T6585]  ksys_write+0x12a/0x250
[   62.514678][ T6585]  ? __pfx_ksys_write+0x10/0x10
[   62.514691][ T6585]  do_syscall_64+0xcd/0xfa0
[   62.514707][ T6585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.514718][ T6585] RIP: 0033:0x7efe8c18da7f
[   62.514727][ T6585] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   62.514736][ T6585] RSP: 002b:00007efe8cf76030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   62.514746][ T6585] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe8c18da7f
[   62.514752][ T6585] RDX: 0000000000000001 RSI: 00007efe8cf760a0 RDI: 0000000000000004
[   62.514758][ T6585] RBP: 00007efe8cf76090 R08: 0000000000000000 R09: 0000000000000000
[   62.514763][ T6585] R10: 0000000000000016 R11: 0000000000000293 R12: 0000000000000001
[   62.514769][ T6585] R13: 00007efe8c3e6038 R14: 00007efe8c3e5fa0 R15: 00007ffe520a5718
[   62.514782][ T6585]  </TASK>
[   62.609607][ T6587] fuse: Unknown parameter 'use00000000000000000000'
[   62.676410][ T6591] syzkaller0: entered promiscuous mode
[   62.678267][ T6591] syzkaller0: entered allmulticast mode
[   63.816470][  T840] usb 5-1: USB disconnect, device number 3
[   63.879892][ T6604] FAULT_INJECTION: forcing a failure.
[   63.879892][ T6604] name failslab, interval 1, probability 0, space 0, times 0
[   63.884343][ T6604] CPU: 1 UID: 0 PID: 6604 Comm: syz.0.229 Not tainted syzkaller #0 PREEMPT(full) 
[   63.884358][ T6604] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.884364][ T6604] Call Trace:
[   63.884368][ T6604]  <TASK>
[   63.884373][ T6604]  dump_stack_lvl+0x16c/0x1f0
[   63.884392][ T6604]  should_fail_ex+0x512/0x640
[   63.884405][ T6604]  ? __kmalloc_noprof+0xca/0x880
[   63.884421][ T6604]  should_failslab+0xc2/0x120
[   63.884433][ T6604]  __kmalloc_noprof+0xdd/0x880
[   63.884446][ T6604]  ? __d_lookup+0x25c/0x4a0
[   63.884459][ T6604]  ? __d_alloc+0x32/0xae0
[   63.884469][ T6604]  ? __d_alloc+0x673/0xae0
[   63.884484][ T6604]  ? __d_alloc+0x673/0xae0
[   63.884496][ T6604]  __d_alloc+0x673/0xae0
[   63.884508][ T6604]  d_alloc+0x4a/0x1e0
[   63.884520][ T6604]  lookup_one_qstr_excl+0x175/0x250
[   63.884534][ T6604]  ? mnt_want_write+0x161/0x450
[   63.884550][ T6604]  do_renameat2+0x575/0xc20
[   63.884566][ T6604]  ? __pfx_do_renameat2+0x10/0x10
[   63.884578][ T6604]  ? find_held_lock+0x2b/0x80
[   63.884591][ T6604]  ? __might_fault+0xe3/0x190
[   63.884605][ T6604]  ? __might_fault+0x13b/0x190
[   63.884626][ T6604]  ? getname_flags.part.0+0x1c5/0x550
[   63.884643][ T6604]  __x64_sys_rename+0x7d/0xa0
[   63.884655][ T6604]  do_syscall_64+0xcd/0xfa0
[   63.884671][ T6604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.884681][ T6604] RIP: 0033:0x7fde3558efc9
[   63.884690][ T6604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.884700][ T6604] RSP: 002b:00007fde3645f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   63.884709][ T6604] RAX: ffffffffffffffda RBX: 00007fde357e5fa0 RCX: 00007fde3558efc9
[   63.884715][ T6604] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000200000000440
[   63.884721][ T6604] RBP: 00007fde3645f090 R08: 0000000000000000 R09: 0000000000000000
[   63.884727][ T6604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.884733][ T6604] R13: 00007fde357e6038 R14: 00007fde357e5fa0 R15: 00007ffeb21d4648
[   63.884746][ T6604]  </TASK>
[   64.028625][ T6613] fuse: Unknown parameter 'use00000000000000000000'
[   64.285954][ T6643] =======================================================
[   64.285954][ T6643] WARNING: The mand mount option has been deprecated and
[   64.285954][ T6643]          and is ignored by this kernel. Remove the mand
[   64.285954][ T6643]          option from the mount to silence this warning.
[   64.285954][ T6643] =======================================================
[   64.297479][ T6643] binder: Unknown parameter 'pcr'
[   64.326690][ T6645] FAULT_INJECTION: forcing a failure.
[   64.326690][ T6645] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.330938][ T6645] CPU: 1 UID: 0 PID: 6645 Comm: syz.0.244 Not tainted syzkaller #0 PREEMPT(full) 
[   64.330951][ T6645] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.330957][ T6645] Call Trace:
[   64.330962][ T6645]  <TASK>
[   64.330966][ T6645]  dump_stack_lvl+0x16c/0x1f0
[   64.330985][ T6645]  should_fail_ex+0x512/0x640
[   64.330999][ T6645]  _copy_to_user+0x32/0xd0
[   64.331013][ T6645]  simple_read_from_buffer+0xcb/0x170
[   64.331031][ T6645]  proc_fail_nth_read+0x197/0x240
[   64.331043][ T6645]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   64.331056][ T6645]  ? rw_verify_area+0xcf/0x6c0
[   64.331071][ T6645]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   64.331082][ T6645]  vfs_read+0x1e4/0xcf0
[   64.331093][ T6645]  ? __pfx___mutex_lock+0x10/0x10
[   64.331103][ T6645]  ? __pfx_vfs_read+0x10/0x10
[   64.331115][ T6645]  ? __fget_files+0x20e/0x3c0
[   64.331129][ T6645]  ksys_read+0x12a/0x250
[   64.331138][ T6645]  ? __pfx_ksys_read+0x10/0x10
[   64.331147][ T6645]  ? fput+0x9b/0xd0
[   64.331167][ T6645]  do_syscall_64+0xcd/0xfa0
[   64.331194][ T6645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.331235][ T6645] RIP: 0033:0x7fde3558d9dc
[   64.331250][ T6645] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   64.331266][ T6645] RSP: 002b:00007fde3645f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   64.331281][ T6645] RAX: ffffffffffffffda RBX: 00007fde357e5fa0 RCX: 00007fde3558d9dc
[   64.331289][ T6645] RDX: 000000000000000f RSI: 00007fde3645f0a0 RDI: 0000000000000005
[   64.331296][ T6645] RBP: 00007fde3645f090 R08: 0000000000000000 R09: 0000000000000000
[   64.331301][ T6645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.331307][ T6645] R13: 00007fde357e6038 R14: 00007fde357e5fa0 R15: 00007ffeb21d4648
[   64.331321][ T6645]  </TASK>
[   64.392628][ T6649] fuse: Unknown parameter 'user_i00000000000000000000'
[   64.483679][ T6657] binder: 6656:6657 ioctl c0306201 200000000140 returned -14
[   64.683847][ T6669] fuse: Unknown parameter 'user_i00000000000000000000'
[   64.821678][    T9] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   64.973592][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[   64.976999][    T9] usb 5-1: config 6 has an invalid interface number: 200 but max is 0
[   64.979719][    T9] usb 5-1: config 6 has no interface number 0
[   64.982252][    T9] usb 5-1: config 6 interface 200 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0
[   64.985402][    T9] usb 5-1: config 6 interface 200 has no altsetting 0
[   64.989175][    T9] usb 5-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f
[   64.992188][    T9] usb 5-1: New USB device strings: Mfr=9, Product=2, SerialNumber=3
[   64.994596][    T9] usb 5-1: Product: syz
[   64.995904][    T9] usb 5-1: Manufacturer: syz
[   64.997387][    T9] usb 5-1: SerialNumber: syz
[   65.081671][  T840] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[   65.233161][  T840] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   65.237392][  T840] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[   65.241691][  T840] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[   65.246263][    T9] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state.
[   65.246264][  T840] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   65.246276][  T840] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   65.249545][    T9] dvb-usb: bulk message failed: -8 (3/0)
[   65.257250][ T6677] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   65.261372][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   65.265112][    T9] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T)
[   65.267882][    T9] usb 5-1: media controller created
[   65.272830][  T840] hub 7-1:1.0: bad descriptor, ignoring hub
[   65.275383][  T840] hub 7-1:1.0: probe with driver hub failed with error -5
[   65.277166][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   65.279270][  T840] cdc_wdm 7-1:1.0: skipping garbage
[   65.284043][  T840] cdc_wdm 7-1:1.0: skipping garbage
[   65.287467][  T840] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   65.288792][    T9] dvb-usb: bulk message failed: -8 (6/0)
[   65.289985][  T840] cdc_wdm 7-1:1.0: Unknown control protocol
[   65.294522][    T9] dvb-usb: bulk message failed: -8 (6/0)
[   65.296551][    T9] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T'
[   65.301352][    T9] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input9
[   65.307188][    T9] dvb-usb: schedule remote query interval to 150 msecs.
[   65.309614][    T9] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected.
[   65.315610][    T9] usb 5-1: USB disconnect, device number 4
[   65.357415][    T9] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected.
[   65.468971][ T6681] binder: 6680:6681 ioctl c0306201 200000000080 returned -22
[   65.514018][ T6681] kvm: emulating exchange as write
[   65.611181][ T6693] netlink: 'syz.1.266': attribute type 1 has an invalid length.
[   65.614593][ T6693] netlink: 224 bytes leftover after parsing attributes in process `syz.1.266'.
[   65.618150][ T6693] FAULT_INJECTION: forcing a failure.
[   65.618150][ T6693] name failslab, interval 1, probability 0, space 0, times 0
[   65.625059][ T6693] CPU: 2 UID: 0 PID: 6693 Comm: syz.1.266 Not tainted syzkaller #0 PREEMPT(full) 
[   65.625080][ T6693] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.625090][ T6693] Call Trace:
[   65.625095][ T6693]  <TASK>
[   65.625101][ T6693]  dump_stack_lvl+0x16c/0x1f0
[   65.625130][ T6693]  should_fail_ex+0x512/0x640
[   65.625149][ T6693]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[   65.625184][ T6693]  should_failslab+0xc2/0x120
[   65.625202][ T6693]  kmem_cache_alloc_node_noprof+0x78/0x770
[   65.625226][ T6693]  ? __alloc_skb+0x2b2/0x380
[   65.625250][ T6693]  ? __alloc_skb+0x2b2/0x380
[   65.625267][ T6693]  __alloc_skb+0x2b2/0x380
[   65.625285][ T6693]  ? __pfx___alloc_skb+0x10/0x10
[   65.625304][ T6693]  ? genl_rcv_msg+0x4bb/0x800
[   65.625326][ T6693]  netlink_ack+0x15d/0xb80
[   65.625350][ T6693]  ? __lock_acquire+0x622/0x1c90
[   65.625380][ T6693]  netlink_rcv_skb+0x332/0x420
[   65.625403][ T6693]  ? __pfx_genl_rcv_msg+0x10/0x10
[   65.625418][ T6693]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   65.625449][ T6693]  ? netlink_deliver_tap+0x1ae/0xd30
[   65.625475][ T6693]  genl_rcv+0x28/0x40
[   65.625497][ T6693]  netlink_unicast+0x5aa/0x870
[   65.625522][ T6693]  ? __pfx_netlink_unicast+0x10/0x10
[   65.625554][ T6693]  netlink_sendmsg+0x8c8/0xdd0
[   65.625581][ T6693]  ? __pfx_netlink_sendmsg+0x10/0x10
[   65.625613][ T6693]  ____sys_sendmsg+0xa98/0xc70
[   65.625639][ T6693]  ? copy_msghdr_from_user+0x10a/0x160
[   65.625660][ T6693]  ? __pfx_____sys_sendmsg+0x10/0x10
[   65.625697][ T6693]  ___sys_sendmsg+0x134/0x1d0
[   65.625719][ T6693]  ? __pfx____sys_sendmsg+0x10/0x10
[   65.625737][ T6693]  ? __lock_acquire+0x622/0x1c90
[   65.625793][ T6693]  __sys_sendmsg+0x16d/0x220
[   65.625814][ T6693]  ? __pfx___sys_sendmsg+0x10/0x10
[   65.625851][ T6693]  do_syscall_64+0xcd/0xfa0
[   65.625877][ T6693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.625893][ T6693] RIP: 0033:0x7efe8c18efc9
[   65.625907][ T6693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.625921][ T6693] RSP: 002b:00007efe8cf76038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.625937][ T6693] RAX: ffffffffffffffda RBX: 00007efe8c3e5fa0 RCX: 00007efe8c18efc9
[   65.625947][ T6693] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[   65.625957][ T6693] RBP: 00007efe8cf76090 R08: 0000000000000000 R09: 0000000000000000
[   65.625966][ T6693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.625975][ T6693] R13: 00007efe8c3e6038 R14: 00007efe8c3e5fa0 R15: 00007ffe520a5718
[   65.625998][ T6693]  </TASK>
[   65.781800][ T6697] FAULT_INJECTION: forcing a failure.
[   65.781800][ T6697] name failslab, interval 1, probability 0, space 0, times 0
[   65.785733][ T6697] CPU: 0 UID: 0 PID: 6697 Comm: syz.0.269 Not tainted syzkaller #0 PREEMPT(full) 
[   65.785747][ T6697] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.785753][ T6697] Call Trace:
[   65.785757][ T6697]  <TASK>
[   65.785761][ T6697]  dump_stack_lvl+0x16c/0x1f0
[   65.785780][ T6697]  should_fail_ex+0x512/0x640
[   65.785792][ T6697]  ? fs_reclaim_acquire+0xae/0x150
[   65.785805][ T6697]  should_failslab+0xc2/0x120
[   65.785817][ T6697]  __kmalloc_noprof+0xdd/0x880
[   65.785832][ T6697]  ? tomoyo_encode2+0x100/0x3e0
[   65.785845][ T6697]  ? tomoyo_encode2+0x100/0x3e0
[   65.785856][ T6697]  tomoyo_encode2+0x100/0x3e0
[   65.785868][ T6697]  tomoyo_encode+0x29/0x50
[   65.785878][ T6697]  tomoyo_realpath_from_path+0x18f/0x6e0
[   65.785894][ T6697]  tomoyo_path_number_perm+0x245/0x580
[   65.785909][ T6697]  ? tomoyo_path_number_perm+0x237/0x580
[   65.785926][ T6697]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   65.785942][ T6697]  ? find_held_lock+0x2b/0x80
[   65.785967][ T6697]  ? find_held_lock+0x2b/0x80
[   65.785979][ T6697]  ? hook_file_ioctl_common+0x145/0x410
[   65.785994][ T6697]  ? __fget_files+0x20e/0x3c0
[   65.786007][ T6697]  security_file_ioctl+0x9b/0x240
[   65.786019][ T6697]  __x64_sys_ioctl+0xb7/0x210
[   65.786035][ T6697]  do_syscall_64+0xcd/0xfa0
[   65.786051][ T6697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.786061][ T6697] RIP: 0033:0x7fde3558efc9
[   65.786070][ T6697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.786079][ T6697] RSP: 002b:00007fde3645f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   65.786089][ T6697] RAX: ffffffffffffffda RBX: 00007fde357e5fa0 RCX: 00007fde3558efc9
[   65.786096][ T6697] RDX: 0000200000000000 RSI: 0000000000004b49 RDI: 0000000000000003
[   65.786101][ T6697] RBP: 00007fde3645f090 R08: 0000000000000000 R09: 0000000000000000
[   65.786107][ T6697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.786112][ T6697] R13: 00007fde357e6038 R14: 00007fde357e5fa0 R15: 00007ffeb21d4648
[   65.786130][ T6697]  </TASK>
[   65.786139][ T6697] ERROR: Out of memory at tomoyo_realpath_from_path.
[   65.809977][ T6701] fuse: Unknown parameter 'user_id00000000000000000000'
[   65.908979][ T6708] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.274'.
[   65.924549][ T6677] usb 7-1: reset full-speed USB device number 3 using dummy_hcd
[   65.934307][ T6677] usb 7-1: device reset changed ep0 maxpacket size!
[   65.938234][ T6677] cdc_wdm 7-1:1.0: Error autopm - -16
[   65.938338][ T6482] usb 7-1: USB disconnect, device number 3
[   65.969093][ T6714] syzkaller0: entered promiscuous mode
[   65.970732][ T6714] syzkaller0: entered allmulticast mode
[   66.091751][ T6482] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[   66.155073][   T40] kauditd_printk_skb: 30 callbacks suppressed
[   66.155089][   T40] audit: type=1400 audit(1761296224.006:316): avc:  denied  { ioctl } for  pid=6722 comm="syz.0.281" path="socket:[13122]" dev="sockfs" ino=13122 ioctlcmd=0x89e4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   66.241668][    T9] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   66.254011][ T6482] usb 7-1: not running at top speed; connect to a high speed hub
[   66.257245][ T6482] usb 7-1: config 1 interface 0 altsetting 8 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   66.260563][ T6482] usb 7-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[   66.264722][ T6482] usb 7-1: config 1 interface 0 has no altsetting 0
[   66.273349][ T6482] usb 7-1: New USB device found, idVendor=056a, idProduct=005e, bcdDevice= 0.40
[   66.276168][ T6482] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   66.278623][ T6482] usb 7-1: Product: syz
[   66.279935][ T6482] usb 7-1: Manufacturer: syz
[   66.281385][ T6482] usb 7-1: SerialNumber: syz
[   66.303418][ T6687] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   66.333589][   T40] audit: type=1400 audit(1761296224.186:317): avc:  denied  { mount } for  pid=6722 comm="syz.0.281" name="/" dev="autofs" ino=13942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[   66.381936][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   66.391363][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   66.408976][    T9] usb 6-1: unable to get BOS descriptor or descriptor too short
[   66.416564][    T9] usb 6-1: config 6 has an invalid interface number: 200 but max is 0
[   66.422049][    T9] usb 6-1: config 6 has no interface number 0
[   66.425872][    T9] usb 6-1: config 6 interface 200 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0
[   66.429411][    T9] usb 6-1: config 6 interface 200 has no altsetting 0
[   66.435661][    T9] usb 6-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f
[   66.438837][    T9] usb 6-1: New USB device strings: Mfr=9, Product=2, SerialNumber=3
[   66.441800][    T9] usb 6-1: Product: syz
[   66.443792][    T9] usb 6-1: Manufacturer: syz
[   66.445488][    T9] usb 6-1: SerialNumber: syz
[   66.549618][ T6677] bond1: Removing last arp target with arp_interval on
[   66.663469][   T40] audit: type=1400 audit(1761296224.506:318): avc:  denied  { append } for  pid=6718 comm="syz.1.279" name="iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   66.682448][ T6482] usbhid 7-1:1.0: can't add hid device: -71
[   66.690824][    T9] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state.
[   66.693483][ T6482] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[   66.696847][    T9] dvb-usb: bulk message failed: -8 (3/0)
[   66.699358][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   66.703488][ T6482] usb 7-1: USB disconnect, device number 4
[   66.709893][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   66.723200][    T9] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T)
[   66.725976][    T9] usb 6-1: media controller created
[   66.785805][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   66.809111][    T9] dvb-usb: bulk message failed: -8 (6/0)
[   66.812678][    T9] dvb-usb: bulk message failed: -8 (6/0)
[   66.815819][    T9] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T'
[   66.824146][    T9] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input10
[   66.832220][    T9] dvb-usb: schedule remote query interval to 150 msecs.
[   66.835288][    T9] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected.
[   66.853704][    T9] usb 6-1: USB disconnect, device number 4
[   66.908208][    T9] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected.
[   66.925531][ T6736] fuse: Unknown parameter 'user_id00000000000000000000'
[   67.082710][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   67.085447][    T0] NOHZ tick-stop error: local softirq work is pending, handler #01!!!
[   67.181775][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   67.185817][ T6745] syzkaller0: entered promiscuous mode
[   67.187773][ T6745] syzkaller0: entered allmulticast mode
[   67.268125][   T40] audit: type=1400 audit(1761296225.116:319): avc:  denied  { bind } for  pid=6749 comm="syz.1.290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   67.282110][ T6750] netlink: 24 bytes leftover after parsing attributes in process `syz.1.290'.
[   67.352812][ T6754] netlink: 'syz.1.292': attribute type 1 has an invalid length.
[   67.355808][ T6754] netlink: 224 bytes leftover after parsing attributes in process `syz.1.292'.
[   67.631894][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   67.662858][ T6763] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.295'.
[   67.748512][ T6769] netlink: 'syz.3.298': attribute type 21 has an invalid length.
[   67.753192][ T6769] netlink: 'syz.3.298': attribute type 22 has an invalid length.
[   67.753197][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   67.755487][ T6769] netlink: 'syz.3.298': attribute type 23 has an invalid length.
[   67.761240][ T6769] netlink: 'syz.3.298': attribute type 25 has an invalid length.
[   67.763703][ T6769] netlink: 'syz.3.298': attribute type 26 has an invalid length.
[   67.766059][ T6769] netlink: 16 bytes leftover after parsing attributes in process `syz.3.298'.
[   67.842155][ T6129] e1000 0000:00:06.0 eth0: Reset adapter
[   67.868340][   T40] audit: type=1400 audit(1761296225.716:320): avc:  denied  { create } for  pid=6773 comm="syz.1.301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   67.874674][   T40] audit: type=1400 audit(1761296225.716:321): avc:  denied  { connect } for  pid=6773 comm="syz.1.301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   67.972186][ T6129] e1000 0000:00:06.0 eth0: Reset adapter
[   68.003956][   T40] audit: type=1400 audit(1761296225.856:322): avc:  denied  { unmount } for  pid=5929 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[   68.073161][ T6129] e1000 0000:00:06.0 eth0: Reset adapter
[   68.097102][   T40] audit: type=1400 audit(1761296225.946:323): avc:  denied  { create } for  pid=6783 comm="syz.3.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   68.103933][   T40] audit: type=1400 audit(1761296225.956:324): avc:  denied  { bind } for  pid=6783 comm="syz.3.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   68.252113][ T6787] netlink: 'syz.0.302': attribute type 21 has an invalid length.
[   68.255545][ T6787] netlink: 'syz.0.302': attribute type 22 has an invalid length.
[   68.258961][ T6787] netlink: 'syz.0.302': attribute type 23 has an invalid length.
[   68.262812][ T6787] netlink: 'syz.0.302': attribute type 25 has an invalid length.
[   68.265688][ T6787] netlink: 16 bytes leftover after parsing attributes in process `syz.0.302'.
[   70.252825][ T1330] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[   71.135838][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[   78.904192][ T6819] FAULT_INJECTION: forcing a failure.
[   78.904192][ T6819] name failslab, interval 1, probability 0, space 0, times 0
[   78.909227][ T6819] CPU: 3 UID: 0 PID: 6819 Comm: syz.0.306 Not tainted syzkaller #0 PREEMPT(full) 
[   78.909248][ T6819] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.909256][ T6819] Call Trace:
[   78.909261][ T6819]  <TASK>
[   78.909268][ T6819]  dump_stack_lvl+0x16c/0x1f0
[   78.909294][ T6819]  should_fail_ex+0x512/0x640
[   78.909321][ T6819]  should_failslab+0xc2/0x120
[   78.909339][ T6819]  kmem_cache_alloc_noprof+0x75/0x6e0
[   78.909362][ T6819]  ? skb_clone+0x190/0x3f0
[   78.909385][ T6819]  ? skb_clone+0x190/0x3f0
[   78.909401][ T6819]  skb_clone+0x190/0x3f0
[   78.909420][ T6819]  netlink_deliver_tap+0xabd/0xd30
[   78.909445][ T6819]  netlink_unicast+0x64c/0x870
[   78.909468][ T6819]  ? __pfx_netlink_unicast+0x10/0x10
[   78.909497][ T6819]  netlink_sendmsg+0x8c8/0xdd0
[   78.909521][ T6819]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.909550][ T6819]  __sys_sendto+0x4a3/0x520
[   78.909569][ T6819]  ? __pfx___sys_sendto+0x10/0x10
[   78.909604][ T6819]  ? ksys_write+0x1ac/0x250
[   78.909618][ T6819]  ? __pfx_ksys_write+0x10/0x10
[   78.909634][ T6819]  __x64_sys_sendto+0xe0/0x1c0
[   78.909650][ T6819]  ? do_syscall_64+0x91/0xfa0
[   78.909670][ T6819]  ? lockdep_hardirqs_on+0x7c/0x110
[   78.909692][ T6819]  do_syscall_64+0xcd/0xfa0
[   78.909714][ T6819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.909730][ T6819] RIP: 0033:0x7fde35590e5c
[   78.909743][ T6819] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[   78.909754][ T6819] RSP: 002b:00007fde3645dec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[   78.909764][ T6819] RAX: ffffffffffffffda RBX: 00007fde3645dfc0 RCX: 00007fde35590e5c
[   78.909770][ T6819] RDX: 0000000000000024 RSI: 00007fde3645e010 RDI: 0000000000000003
[   78.909776][ T6819] RBP: 0000000000000000 R08: 00007fde3645df14 R09: 000000000000000c
[   78.909782][ T6819] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[   78.909787][ T6819] R13: 00007fde3645df68 R14: 00007fde3645e010 R15: 0000000000000000
[   78.909800][ T6819]  </TASK>
[   81.389577][  T839] cfg80211: failed to load regulatory.db
[   85.956205][ T6837] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   85.993454][ T6846] netlink: 44 bytes leftover after parsing attributes in process `syz.0.315'.
[   86.079458][ T6857] ntfs3(nbd1): try to read out of volume at offset 0x0
[   86.089767][   T40] audit: type=1400 audit(1761296243.946:325): avc:  denied  { write } for  pid=6858 comm="syz.2.320" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   86.094578][ T6859] program syz.2.320 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   86.104762][ T6859] mmap: syz.2.320 (6859) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   86.163179][ T6867] validate_nla: 1 callbacks suppressed
[   86.163190][ T6867] netlink: 'syz.1.323': attribute type 4 has an invalid length.
[   86.166326][   T40] audit: type=1400 audit(1761296244.016:326): avc:  denied  { watch watch_reads } for  pid=6868 comm="syz.2.324" path="/syzcgroup/unified/syz2" dev="cgroup2" ino=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[   86.176416][ T6869] trusted_key: syz.2.324 sent an empty control message without MSG_MORE.
[   86.186949][   T40] audit: type=1400 audit(1761296244.036:327): avc:  denied  { ioctl } for  pid=6868 comm="syz.2.324" path="socket:[15477]" dev="sockfs" ino=15477 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   86.196890][   T40] audit: type=1400 audit(1761296244.056:328): avc:  denied  { bind } for  pid=6871 comm="syz.1.325" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   86.225338][   T40] audit: type=1400 audit(1761296244.076:329): avc:  denied  { write } for  pid=6871 comm="syz.1.325" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   86.250386][   T40] audit: type=1400 audit(1761296244.096:330): avc:  denied  { write } for  pid=6880 comm="syz.0.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   86.252529][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.2.327'.
[   86.273002][   T40] audit: type=1400 audit(1761296244.126:331): avc:  denied  { read } for  pid=6884 comm="syz.0.329" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   86.279840][   T40] audit: type=1400 audit(1761296244.126:332): avc:  denied  { open } for  pid=6884 comm="syz.0.329" path="/dev/rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   86.296127][ T6881] netlink: 24 bytes leftover after parsing attributes in process `syz.2.327'.
[   86.319202][ T6891] FAULT_INJECTION: forcing a failure.
[   86.319202][ T6891] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.324727][ T6891] CPU: 3 UID: 0 PID: 6891 Comm: syz.0.330 Not tainted syzkaller #0 PREEMPT(full) 
[   86.324748][ T6891] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.324758][ T6891] Call Trace:
[   86.324764][ T6891]  <TASK>
[   86.324771][ T6891]  dump_stack_lvl+0x16c/0x1f0
[   86.324800][ T6891]  should_fail_ex+0x512/0x640
[   86.324824][ T6891]  _copy_from_user+0x2e/0xd0
[   86.324846][ T6891]  copy_from_sockptr_offset+0x15c/0x1b0
[   86.324866][ T6891]  ? __pfx_copy_from_sockptr_offset+0x10/0x10
[   86.324883][ T6891]  ? get_pid_task+0xfc/0x250
[   86.324904][ T6891]  do_tcp_setsockopt+0x145/0x2500
[   86.324940][ T6891]  ? __pfx_do_tcp_setsockopt+0x10/0x10
[   86.324960][ T6891]  ? sock_has_perm+0x259/0x2f0
[   86.324986][ T6891]  ? __pfx_sock_has_perm+0x10/0x10
[   86.325011][ T6891]  ? selinux_netlbl_socket_setsockopt+0x183/0x470
[   86.325031][ T6891]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[   86.325056][ T6891]  ? find_held_lock+0x2b/0x80
[   86.325083][ T6891]  tcp_setsockopt+0xe2/0x100
[   86.325104][ T6891]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   86.325132][ T6891]  do_sock_setsockopt+0xf3/0x1d0
[   86.325160][ T6891]  __sys_setsockopt+0x1a0/0x230
[   86.325192][ T6891]  __x64_sys_setsockopt+0xbd/0x160
[   86.325217][ T6891]  ? do_syscall_64+0x91/0xfa0
[   86.325242][ T6891]  ? lockdep_hardirqs_on+0x7c/0x110
[   86.325266][ T6891]  do_syscall_64+0xcd/0xfa0
[   86.325293][ T6891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.325310][ T6891] RIP: 0033:0x7fde3558efc9
[   86.325324][ T6891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.325340][ T6891] RSP: 002b:00007fde3645f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   86.325357][ T6891] RAX: ffffffffffffffda RBX: 00007fde357e5fa0 RCX: 00007fde3558efc9
[   86.325367][ T6891] RDX: 0000000000000019 RSI: 0000000000000006 RDI: 0000000000000003
[   86.325377][ T6891] RBP: 00007fde3645f090 R08: 0000000000000078 R09: 0000000000000000
[   86.325386][ T6891] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001
[   86.325396][ T6891] R13: 00007fde357e6038 R14: 00007fde357e5fa0 R15: 00007ffeb21d4648
[   86.325420][ T6891]  </TASK>
[   86.429395][ T6895] : renamed from veth0_vlan (while UP)
[   86.471469][ T6900] netlink: 'syz.2.334': attribute type 1 has an invalid length.
[   86.474087][ T6900] FAULT_INJECTION: forcing a failure.
[   86.474087][ T6900] name failslab, interval 1, probability 0, space 0, times 0
[   86.478244][ T6900] CPU: 2 UID: 0 PID: 6900 Comm: syz.2.334 Not tainted syzkaller #0 PREEMPT(full) 
[   86.478264][ T6900] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.478275][ T6900] Call Trace:
[   86.478281][ T6900]  <TASK>
[   86.478288][ T6900]  dump_stack_lvl+0x16c/0x1f0
[   86.478317][ T6900]  should_fail_ex+0x512/0x640
[   86.478337][ T6900]  ? __kmalloc_cache_noprof+0x5f/0x780
[   86.478365][ T6900]  should_failslab+0xc2/0x120
[   86.478384][ T6900]  __kmalloc_cache_noprof+0x72/0x780
[   86.478409][ T6900]  ? qfq_change_class+0xcf9/0x1ec0
[   86.478438][ T6900]  ? qfq_change_class+0xcf9/0x1ec0
[   86.478462][ T6900]  qfq_change_class+0xcf9/0x1ec0
[   86.478492][ T6900]  ? __pfx_qfq_change_class+0x10/0x10
[   86.478522][ T6900]  ? qdisc_match_from_root+0x16f/0x260
[   86.478550][ T6900]  ? __pfx_qfq_change_class+0x10/0x10
[   86.478574][ T6900]  tc_ctl_tclass+0x59d/0x16c0
[   86.478596][ T6900]  ? __pfx_tc_ctl_tclass+0x10/0x10
[   86.478612][ T6900]  ? trace_contention_end+0xdd/0x130
[   86.478630][ T6900]  ? __mutex_lock+0x1c5/0x1060
[   86.478646][ T6900]  ? __lock_acquire+0x622/0x1c90
[   86.478690][ T6900]  ? __pfx_tc_ctl_tclass+0x10/0x10
[   86.478707][ T6900]  rtnetlink_rcv_msg+0x3c9/0xe90
[   86.478733][ T6900]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   86.478763][ T6900]  ? ref_tracker_free+0x37c/0x830
[   86.478788][ T6900]  netlink_rcv_skb+0x158/0x420
[   86.478812][ T6900]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   86.478837][ T6900]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   86.478870][ T6900]  ? netlink_deliver_tap+0x1ae/0xd30
[   86.478898][ T6900]  netlink_unicast+0x5aa/0x870
[   86.478925][ T6900]  ? __pfx_netlink_unicast+0x10/0x10
[   86.478958][ T6900]  netlink_sendmsg+0x8c8/0xdd0
[   86.478987][ T6900]  ? __pfx_netlink_sendmsg+0x10/0x10
[   86.479041][ T6900]  ____sys_sendmsg+0xa98/0xc70
[   86.479069][ T6900]  ? copy_msghdr_from_user+0x10a/0x160
[   86.479090][ T6900]  ? __pfx_____sys_sendmsg+0x10/0x10
[   86.479128][ T6900]  ___sys_sendmsg+0x134/0x1d0
[   86.479151][ T6900]  ? __pfx____sys_sendmsg+0x10/0x10
[   86.479170][ T6900]  ? __lock_acquire+0x622/0x1c90
[   86.479233][ T6900]  __sys_sendmsg+0x16d/0x220
[   86.479253][ T6900]  ? __pfx___sys_sendmsg+0x10/0x10
[   86.479290][ T6900]  do_syscall_64+0xcd/0xfa0
[   86.479315][ T6900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.479331][ T6900] RIP: 0033:0x7f613c58efc9
[   86.479345][ T6900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.479359][ T6900] RSP: 002b:00007f613d3ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   86.479375][ T6900] RAX: ffffffffffffffda RBX: 00007f613c7e5fa0 RCX: 00007f613c58efc9
[   86.479386][ T6900] RDX: 0000000004000080 RSI: 0000200000001200 RDI: 0000000000000007
[   86.479396][ T6900] RBP: 00007f613d3ac090 R08: 0000000000000000 R09: 0000000000000000
[   86.479405][ T6900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.479414][ T6900] R13: 00007f613c7e6038 R14: 00007f613c7e5fa0 R15: 00007ffef834ffd8
[   86.479439][ T6900]  </TASK>
[   86.598497][ T6899] ==================================================================
[   86.601682][ T6899] BUG: KASAN: slab-use-after-free in qfq_reset_qdisc+0x323/0x420
[   86.604824][ T6899] Read of size 8 at addr ffff888033705b50 by task syz.2.334/6899
[   86.609350][ T6899] 
[   86.610376][ T6899] CPU: 0 UID: 0 PID: 6899 Comm: syz.2.334 Not tainted syzkaller #0 PREEMPT(full) 
[   86.610397][ T6899] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.610408][ T6899] Call Trace:
[   86.610414][ T6899]  <TASK>
[   86.610421][ T6899]  dump_stack_lvl+0x116/0x1f0
[   86.610450][ T6899]  print_report+0xcd/0x630
[   86.610470][ T6899]  ? __virt_addr_valid+0x81/0x610
[   86.610493][ T6899]  ? __phys_addr+0xe8/0x180
[   86.610515][ T6899]  ? qfq_reset_qdisc+0x323/0x420
[   86.610538][ T6899]  kasan_report+0xe0/0x110
[   86.610557][ T6899]  ? qfq_reset_qdisc+0x323/0x420
[   86.610583][ T6899]  qfq_reset_qdisc+0x323/0x420
[   86.610609][ T6899]  ? synchronize_rcu_expedited+0x3b9/0x460
[   86.610628][ T6899]  ? __pfx_qfq_reset_qdisc+0x10/0x10
[   86.610651][ T6899]  qdisc_reset+0xe0/0x660
[   86.610673][ T6899]  __qdisc_destroy+0xd3/0x4d0
[   86.610693][ T6899]  qdisc_put+0xab/0xe0
[   86.610712][ T6899]  dev_shutdown+0x1d0/0x430
[   86.610735][ T6899]  unregister_netdevice_many_notify+0xb12/0x25c0
[   86.610763][ T6899]  ? skb_queue_purge_reason+0x2c8/0x420
[   86.610788][ T6899]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[   86.610812][ T6899]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[   86.610838][ T6899]  ? skb_queue_purge_reason+0x2c8/0x420
[   86.610864][ T6899]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[   86.610886][ T6899]  unregister_netdevice_queue+0x305/0x3f0
[   86.610908][ T6899]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[   86.610934][ T6899]  __tun_detach+0x119c/0x1490
[   86.610956][ T6899]  ? __pfx_tun_chr_close+0x10/0x10
[   86.610975][ T6899]  tun_chr_close+0xc2/0x230
[   86.611020][ T6899]  __fput+0x402/0xb70
[   86.611046][ T6899]  task_work_run+0x150/0x240
[   86.611066][ T6899]  ? __pfx_task_work_run+0x10/0x10
[   86.611084][ T6899]  ? __pfx___do_sys_close_range+0x10/0x10
[   86.611106][ T6899]  exit_to_user_mode_loop+0xec/0x130
[   86.611124][ T6899]  do_syscall_64+0x426/0xfa0
[   86.611150][ T6899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.611167][ T6899] RIP: 0033:0x7f613c58efc9
[   86.611181][ T6899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.611198][ T6899] RSP: 002b:00007ffef8350138 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   86.611214][ T6899] RAX: 0000000000000000 RBX: 0000000000015158 RCX: 00007f613c58efc9
[   86.611224][ T6899] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   86.611234][ T6899] RBP: 00007f613c7e7da0 R08: 0000000000000001 R09: 0000000cf835042f
[   86.611250][ T6899] R10: 0000001b2e320000 R11: 0000000000000246 R12: 00007f613c7e5fac
[   86.611265][ T6899] R13: 00007f613c7e5fa0 R14: ffffffffffffffff R15: 00007ffef8350250
[   86.611286][ T6899]  </TASK>
[   86.611292][ T6899] 
[   86.701590][ T6899] Allocated by task 6900:
[   86.702955][ T6899]  kasan_save_stack+0x33/0x60
[   86.704450][ T6899]  kasan_save_track+0x14/0x30
[   86.705972][ T6899]  __kasan_kmalloc+0xaa/0xb0
[   86.707445][ T6899]  qfq_change_class+0x2ba/0x1ec0
[   86.708985][ T6899]  tc_ctl_tclass+0x59d/0x16c0
[   86.710463][ T6899]  rtnetlink_rcv_msg+0x3c9/0xe90
[   86.712025][ T6899]  netlink_rcv_skb+0x158/0x420
[   86.713533][ T6899]  netlink_unicast+0x5aa/0x870
[   86.715049][ T6899]  netlink_sendmsg+0x8c8/0xdd0
[   86.716568][ T6899]  ____sys_sendmsg+0xa98/0xc70
[   86.718078][ T6899]  ___sys_sendmsg+0x134/0x1d0
[   86.719616][ T6899]  __sys_sendmsg+0x16d/0x220
[   86.721085][ T6899]  do_syscall_64+0xcd/0xfa0
[   86.722519][ T6899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.724292][ T6899] 
[   86.725029][ T6899] Freed by task 6900:
[   86.726272][ T6899]  kasan_save_stack+0x33/0x60
[   86.727760][ T6899]  kasan_save_track+0x14/0x30
[   86.729219][ T6899]  __kasan_save_free_info+0x3b/0x60
[   86.730820][ T6899]  __kasan_slab_free+0x5f/0x80
[   86.732331][ T6899]  kfree+0x2b8/0x6d0
[   86.733569][ T6899]  qfq_change_class+0x1577/0x1ec0
[   86.735149][ T6899]  tc_ctl_tclass+0x59d/0x16c0
[   86.736649][ T6899]  rtnetlink_rcv_msg+0x3c9/0xe90
[   86.738204][ T6899]  netlink_rcv_skb+0x158/0x420
[   86.739689][ T6899]  netlink_unicast+0x5aa/0x870
[   86.741201][ T6899]  netlink_sendmsg+0x8c8/0xdd0
[   86.742706][ T6899]  ____sys_sendmsg+0xa98/0xc70
[   86.744215][ T6899]  ___sys_sendmsg+0x134/0x1d0
[   86.745698][ T6899]  __sys_sendmsg+0x16d/0x220
[   86.747201][ T6899]  do_syscall_64+0xcd/0xfa0
[   86.748637][ T6899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.750483][ T6899] 
[   86.751258][ T6899] The buggy address belongs to the object at ffff888033705b00
[   86.751258][ T6899]  which belongs to the cache kmalloc-128 of size 128
[   86.755453][ T6899] The buggy address is located 80 bytes inside of
[   86.755453][ T6899]  freed 128-byte region [ffff888033705b00, ffff888033705b80)
[   86.759638][ T6899] 
[   86.760403][ T6899] The buggy address belongs to the physical page:
[   86.762393][ T6899] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x33705
[   86.765104][ T6899] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   86.767303][ T6899] page_type: f5(slab)
[   86.768562][ T6899] raw: 00fff00000000000 ffff88801b442a00 dead000000000100 dead000000000122
[   86.771217][ T6899] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[   86.773890][ T6899] page dumped because: kasan: bad access detected
[   86.775904][ T6899] page_owner tracks the page as allocated
[   86.777671][ T6899] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 61, tgid 61 (kworker/u32:3), ts 48808709062, free_ts 48778587990
[   86.783388][ T6899]  post_alloc_hook+0x1c0/0x230
[   86.784901][ T6899]  get_page_from_freelist+0x10a3/0x3a30
[   86.786655][ T6899]  __alloc_frozen_pages_noprof+0x25f/0x2470
[   86.788510][ T6899]  alloc_pages_mpol+0x1fb/0x550
[   86.790033][ T6899]  new_slab+0x24a/0x360
[   86.791355][ T6899]  ___slab_alloc+0xdc4/0x1ae0
[   86.792836][ T6899]  __slab_alloc.constprop.0+0x63/0x110
[   86.794614][ T6899]  __kmalloc_cache_noprof+0x477/0x780
[   86.796714][ T6899]  __hw_addr_add_ex+0x3c9/0x7c0
[   86.798642][ T6899]  dev_mc_add+0xb6/0x110
[   86.800330][ T6899]  igmp6_group_added+0x3e4/0x4c0
[   86.802285][ T6899]  __ipv6_dev_mc_inc+0x6f9/0xbc0
[   86.804257][ T6899]  addrconf_dad_work+0x28c/0x14e0
[   86.806246][ T6899]  process_one_work+0x9cf/0x1b70
[   86.808201][ T6899]  worker_thread+0x6c8/0xf10
[   86.810029][ T6899]  kthread+0x3c5/0x780
[   86.811655][ T6899] page last free pid 5929 tgid 5929 stack trace:
[   86.814131][ T6899]  __free_frozen_pages+0x7df/0x1160
[   86.816202][ T6899]  qlist_free_all+0x4d/0x120
[   86.818027][ T6899]  kasan_quarantine_reduce+0x195/0x1e0
[   86.820177][ T6899]  __kasan_slab_alloc+0x69/0x90
[   86.822097][ T6899]  __kmalloc_cache_noprof+0x274/0x780
[   86.824227][ T6899]  inet_alloc_ifa+0x43/0x190
[   86.826068][ T6899]  inet_rtm_newaddr+0x3b5/0x1540
[   86.828021][ T6899]  rtnetlink_rcv_msg+0x95e/0xe90
[   86.829597][ T6899]  netlink_rcv_skb+0x158/0x420
[   86.831140][ T6899]  netlink_unicast+0x5aa/0x870
[   86.832663][ T6899]  netlink_sendmsg+0x8c8/0xdd0
[   86.834184][ T6899]  __sys_sendto+0x4a3/0x520
[   86.835636][ T6899]  __x64_sys_sendto+0xe0/0x1c0
[   86.837161][ T6899]  do_syscall_64+0xcd/0xfa0
[   86.838609][ T6899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.840564][ T6899] 
[   86.841532][ T6899] Memory state around the buggy address:
[   86.843669][ T6899]  ffff888033705a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc
[   86.846159][ T6899]  ffff888033705a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   86.848638][ T6899] >ffff888033705b00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   86.851130][ T6899]                                                  ^
[   86.853214][ T6899]  ffff888033705b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   86.855710][ T6899]  ffff888033705c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   86.858208][ T6899] ==================================================================
[   86.860796][    C0] vkms_vblank_simulate: vblank timer overrun
[   86.863062][ T6899] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   86.866009][ T6899] CPU: 2 UID: 0 PID: 6899 Comm: syz.2.334 Not tainted syzkaller #0 PREEMPT(full) 
[   86.869755][ T6899] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.874193][ T6899] Call Trace:
[   86.875631][ T6899]  <TASK>
[   86.876902][ T6899]  dump_stack_lvl+0x3d/0x1f0
[   86.878873][ T6899]  vpanic+0x640/0x6f0
[   86.880586][ T6899]  panic+0xca/0xd0
[   86.882189][ T6899]  ? __pfx_panic+0x10/0x10
[   86.884087][ T6899]  ? qfq_reset_qdisc+0x323/0x420
[   86.886184][ T6899]  ? preempt_schedule_common+0x44/0xc0
[   86.888488][ T6899]  ? preempt_schedule_thunk+0x16/0x30
[   86.890746][ T6899]  ? check_panic_on_warn+0x1f/0xb0
[   86.892921][ T6899]  check_panic_on_warn+0xab/0xb0
[   86.895117][ T6899]  end_report+0x107/0x170
[   86.896541][ T6899]  kasan_report+0xee/0x110
[   86.898007][ T6899]  ? qfq_reset_qdisc+0x323/0x420
[   86.899602][ T6899]  qfq_reset_qdisc+0x323/0x420
[   86.901131][ T6899]  ? synchronize_rcu_expedited+0x3b9/0x460
[   86.902974][ T6899]  ? __pfx_qfq_reset_qdisc+0x10/0x10
[   86.904705][ T6899]  qdisc_reset+0xe0/0x660
[   86.906096][ T6899]  __qdisc_destroy+0xd3/0x4d0
[   86.907599][ T6899]  qdisc_put+0xab/0xe0
[   86.909060][ T6899]  dev_shutdown+0x1d0/0x430
[   86.910702][ T6899]  unregister_netdevice_many_notify+0xb12/0x25c0
[   86.912728][ T6899]  ? skb_queue_purge_reason+0x2c8/0x420
[   86.914503][ T6899]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[   86.916675][ T6899]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[   86.918571][ T6899]  ? skb_queue_purge_reason+0x2c8/0x420
[   86.920331][ T6899]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[   86.922221][ T6899]  unregister_netdevice_queue+0x305/0x3f0
[   86.924194][ T6899]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[   86.926177][ T6899]  __tun_detach+0x119c/0x1490
[   86.927713][ T6899]  ? __pfx_tun_chr_close+0x10/0x10
[   86.929339][ T6899]  tun_chr_close+0xc2/0x230
[   86.930787][ T6899]  __fput+0x402/0xb70
[   86.932143][ T6899]  task_work_run+0x150/0x240
[   86.933748][ T6899]  ? __pfx_task_work_run+0x10/0x10
[   86.935418][ T6899]  ? __pfx___do_sys_close_range+0x10/0x10
[   86.937732][ T6899]  exit_to_user_mode_loop+0xec/0x130
[   86.939777][ T6899]  do_syscall_64+0x426/0xfa0
[   86.941260][ T6899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.943293][ T6899] RIP: 0033:0x7f613c58efc9
[   86.944783][ T6899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.951623][ T6899] RSP: 002b:00007ffef8350138 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   86.954524][ T6899] RAX: 0000000000000000 RBX: 0000000000015158 RCX: 00007f613c58efc9
[   86.957030][ T6899] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   86.959557][ T6899] RBP: 00007f613c7e7da0 R08: 0000000000000001 R09: 0000000cf835042f
[   86.962050][ T6899] R10: 0000001b2e320000 R11: 0000000000000246 R12: 00007f613c7e5fac
[   86.964591][ T6899] R13: 00007f613c7e5fa0 R14: ffffffffffffffff R15: 00007ffef8350250
[   86.967109][ T6899]  </TASK>
[   86.968784][ T6899] Kernel Offset: disabled
[   86.970165][ T6899] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:57:24  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000073 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85294ea5 RDI=ffffffff9add6700 RBP=ffffffff9add66c0 RSP=ffffc90022757488
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=0000000000000073 R14=ffffffff9add66c0 R15=ffffffff85294e40
RIP=ffffffff85294ecf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055556cfc9500 ffffffff 00c00000
GS =0000 ffff8880d6a0a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fde3641cf98 CR3=000000005521e000 CR4=00352ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000f0400000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055cf1ef77600 000055cf1ef77600
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc237013f0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 663730303030203a 3431522038333036 6537633331366637 30303030203a3331
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3834203130203938 2034362038642037 6620666620666620 6666203861203163
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2037632038342033 6320313020333720 6666206666203066 203130206433203e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 38343c2035302066 3020383020343220 6334206238206334 2038632039382064
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3420326320393820 6434206163203938 2038342036642039 3820383420376620
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000000c17bb RBX=0000000000000001 RCX=ffffffff8b6052a9 RDX=0000000000000000
RSI=ffffffff8da2a268 RDI=ffffffff8bf06cc0 RBP=ffffed1003b51490 RSP=ffffc90000177de8
R8 =0000000000000001 R9 =ffffed100d4a6655 R10=ffff88806a5332ab R11=0000000000000001
R12=0000000000000001 R13=ffff88801da8a480 R14=ffffffff9081f4d0 R15=0000000000000000
RIP=ffffffff8b603d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6b0a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fde3641dd58 CR3=0000000033997000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000003bf12
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557a8d7e77 000055557a8d6ab0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13ecdb7d20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557a8e1028 000055557a8e02e0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 638f733a9fb31c24 cd47b1bb517676c5 025802b0080b8003 0010000fffffffff
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ee9f72d1dffa9afc aba2bf243fa32ec9 b8a2bc79e6ca2454 88c44a7195d81749
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 22ffa674d7b59046 9dbfb53bd72a8497 f47ecdc52ad2cc1a 244d6a05c2ab0ad6
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5a63c30432080310 305636a337e89ef3 c723bc97fcb60864 4551eb8dc59cc82c
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010010000fffffff ffffff0404818210 0002b010000b8004 0100000008060c01
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 68fa454788a27c64 82eb694d1e56a1ea 1874ac34cf6c4710 db767053e1bab612
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 994a7a3f678974c6 5a63c30432080310 305636a337e89ef3 c723bc97fcb60864
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4551eb8dc59cc82c 22ffa674d7b59046 9dbfb53bd72a8497 f47ecdc52ad2cc1a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=0000000000028edc RCX=ffffffff82313309 RDX=ffff888026c78000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc90003607570
R8 =0000000000000005 R9 =0000000000000000 R10=0000000080000002 R11=0000000000000001
R12=0000000000000000 R13=0000000000000001 R14=dffffc0000000000 R15=0000000000000000
RIP=ffffffff81bd0590 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055558b558500 ffffffff 00c00000
GS =0000 ffff8880d6c0a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007efe8cf156c0 CR3=000000004e794000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe520a5aa0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efe8c212fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efe8c212fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efe8c212fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efe8c212ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efe8c21307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efe8c21315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000080
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000080
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000071779 RBX=0000000000000003 RCX=ffffffff8b6052a9 RDX=0000000000000000
RSI=ffffffff8da2a268 RDI=ffffffff8bf06cc0 RBP=ffffed1003bdb000 RSP=ffffc90000197de8
R8 =0000000000000001 R9 =ffffed100d4e6655 R10=ffff88806a7332ab R11=0000000000000001
R12=0000000000000003 R13=ffff88801ded8000 R14=ffffffff9081f4d0 R15=0000000000000000
RIP=ffffffff8b603d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6d0a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007efe8c3b4198 CR3=00000000502eb000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffef8350360 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f613c612fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f613c612fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f613c612fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f613c612ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f613c61307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f613c61315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000