last executing test programs:

4.310782122s ago: executing program 3 (id=2548):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r3 = dup3(r2, r1, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r3}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x1, 0x29}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000600)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000700)="0a1398f8668babb9862aa1c9ea0380d18dafd06547dd62179ba79df1971b787788d854fbec0fe18f84085926de2d9ab0b6f1512c6dbc8a704453c6de009e89414d8518e3dcdd32ecd952f78f6c58a9fd"})

4.310650746s ago: executing program 3 (id=2549):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS2(r1, 0x4068aea3, &(0x7f0000000800)={0xd5, 0x0, 0xbe})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@arm64={0x3f, 0x8, 0x5, '\x00', 0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4020ae46, &(0x7f00000003c0)=ANY=[]) (fail_nth: 1)

4.036103432s ago: executing program 3 (id=2553):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000003580)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)="a1", 0x1}], 0x1, &(0x7f0000000800)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB="0000000014"], 0x30, 0x40400d1}}], 0x1, 0x810)
syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000580), 0x802, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r4 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001a00)=@newqdisc={0x150, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r7, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_red={{0x8}, {0x124, 0x2, [@TCA_RED_STAB={0x104, 0x2, "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"}, @TCA_RED_MAX_P={0x8, 0x3, 0x3}, @TCA_RED_PARMS={0x14, 0x1, {0x200, 0xf, 0x800, 0x11, 0x1d, 0x9, 0x5}}]}}]}, 0x150}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[@ANYBLOB="3800000055000107000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="20000100", @ANYRES32=0x0, @ANYBLOB="0100000000000000000000000000000300f2000100000000"], 0x38}}, 0x40080)
ioctl$DMA_HEAP_IOCTL_ALLOC(r4, 0xc0184800, &(0x7f0000000100)={0x8, <r8=>r3})
ioctl$DMA_BUF_IOCTL_SYNC(r8, 0xc0086202, &(0x7f0000000040)=0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r9 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xc, 0x77})
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000011006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000200)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x28}}], 0x2, 0x44080)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x24, &(0x7f0000000000)=0xa, 0x4)
io_uring_enter(r9, 0x2219, 0x7721, 0x16, 0x0, 0x0)
sendmsg$inet6(r0, &(0x7f0000000480)={&(0x7f0000000040)={0xa, 0x4e20, 0xfffffffc, @remote, 0x2}, 0x1c, 0x0}, 0x20008814)
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, 0x0)
r11 = syz_open_dev$audion(&(0x7f0000000000), 0x4, 0x4e0280)
fcntl$setstatus(r11, 0x4, 0x8400)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)

3.589698347s ago: executing program 2 (id=2563):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r3 = dup3(r2, r1, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x0, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r3}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x1, 0x29}, @fd={0x66642a85, 0x0, r0}}, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000700)="0a1398f8668babb9862aa1c9ea0380d18dafd06547dd62179ba79df1971b787788d854fbec0fe18f84085926de2d9ab0b6f1512c6dbc8a704453c6de009e89414d8518e3dcdd32ecd952f78f6c58a9fd"})

3.49996902s ago: executing program 2 (id=2565):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x4000, 0xe4, 0x0, 0xfffffffffffffff9})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000680), 0x2, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r3, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x2, 0x0, {}, {0x0, 0x0, 0x1, 0x0, 0x0, 0x0, "fafc00"}, 0x0, 0x1, {0x0}})
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0xc0686611, &(0x7f0000000180)={0x900, 0x0, 0x0, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000000540)={0x1, @pix={0x3, 0x5264c344, 0x31303453, 0x0, 0xfffffff8, 0x8000, 0x2, 0x80000000, 0x1, 0x1}})
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000140)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=@newlink={0x38, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r6, 0x9801}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @remote}]}}}]}, 0x38}}, 0x0)
sendto$packet(r0, &(0x7f0000000180)="280320000a0014000000fbf719143baa111f43c851ffab286e16195ecf3d77cc32b6d78839980700e6669d3c865c6b96e84000050016f3", 0x37, 0x840, &(0x7f00000000c0)={0x11, 0x86dd, r6, 0x1, 0x2, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2eaaaac15ca67ef2}}, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0xb0, 0x1403, 0x0, 0x70bd2a, 0x25dfdbfc, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth0_to_hsr\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'macvtap0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'batadv_slave_1\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'wlan0\x00'}}]}, 0xb0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

3.43062811s ago: executing program 2 (id=2567):
r0 = syz_open_dev$loop(&(0x7f0000000280), 0xa4f, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_BMAP(r1, &(0x7f00000000c0)={0x18, 0xfffffffffffffff5, 0x0, {0x8000000000000001}}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1, 0x0, 0xfffffffffffffffb}, 0x75)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x55, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1d, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d00009520a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bc0007008019000000000000000000000000af1e4ccfb7b3cad80004010400", [0x1, 0x2000000000001]}})

3.429060671s ago: executing program 2 (id=2568):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x1)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x12, r1, 0x0)
write$binfmt_format(r0, &(0x7f0000000100)='0\x00', 0x2)
mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
write$qrtrtun(r0, &(0x7f0000000300)="ca0e808bb35b", 0x6)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=[0x7, 0x5], &(0x7f0000000240), 0x0, 0x2}}, 0x40)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x901c41, 0x1a2)
syz_clone(0xe40c3700, 0x0, 0x0, 0x0, 0x0, 0x0)

3.180855444s ago: executing program 2 (id=2569):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r0 = userfaultfd(0x80001)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000002740)=ANY=[@ANYBLOB="14000000130001ffffff7f8cd913e90002"], 0x14}], 0x1}, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
syz_clone(0x200, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001180)="8c")
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x25, 0x0, &(0x7f0000000080))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000000000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000000)={&(0x7f00001c4000/0x3000)=nil, &(0x7f0000000000/0xc00000)=nil, 0x3000, 0x0, 0x2})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x800000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_NESTED_STATE(r5, 0x4048aecb, &(0x7f0000001440)={{0x7, 0x0, 0x80, {0xffffffffffffffff, 0xf000, 0x2}}, "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", "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"})
r6 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x802)
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x4d9, 0xa0c2, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x3, 0x3, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x3, 0x8, 0x3}}}}}]}}]}}, 0x0)
r7 = openat$selinux_status(0xffffff9c, &(0x7f0000000bc0), 0x0, 0x0)
read(r7, 0x0, 0x0)
ioctl$EVIOCGKEYCODE_V2(r6, 0x80284504, &(0x7f0000000040)=""/185)

1.053702549s ago: executing program 0 (id=2587):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="e5000000000000007910480000000000610408000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x3, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffe6b}, 0x48)
getsockopt$ax25_int(r1, 0x101, 0x145c4fb23569acb9, &(0x7f00000001c0), &(0x7f0000000100)=0x4)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="180000002e0001ff070000000000000006"], 0x18}], 0x1, 0x0, 0x0, 0x84}, 0x300)

930.962075ms ago: executing program 0 (id=2589):
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
ioctl$CDROMVOLCTRL(r0, 0x309, &(0x7f0000000000)={0x9e, 0xfd, 0x3})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup(r2)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'wp384\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
recvmmsg$unix(r5, &(0x7f0000004640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2060, 0x0)
sendmsg$inet_sctp(r5, &(0x7f0000000640)={&(0x7f0000000080)=@in={0x2, 0x4e20, @local}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000340)="2b6571289cccbbea1d1c4c737633b3857b72060bddd2e420dbec4e2227f4c26b412d3a90ddb56c82884cd3c095bd61e2b495723203ee42fbc78e1ee1f120f79f83f23f51510e551431b208e169cc14a50454e00f382313", 0x57}, {&(0x7f00000003c0)="fc9f524073752717d38caff48dd7630c9ac77d6abb8d0c8a1c1cf3be1343b858546a77c81036a9a6e1f09bafcc2a9011d999824d8aaf7a4d56365be694b374341235d50cd561679f31b0ab309fb486c80da135fd1f36074e0fa58cd6b10fe5638099bb366fca3fea42e044186b3b94df4b4ac2a827b1bf267a14b269b3fab447d3ba1daf79894cec7f9ef134b15497a1d7519b882f3dccbb51e71a0507f7e3f03fd2f59ce6217808a47a0eee545bca4068c2a123331c87c20a6700f7b686428c5652b8b75a9ea02fa6d45d", 0xcb}, {&(0x7f00000004c0)="f3da6165391d2e857af1009549f3184eaf4351fe434f47905c2f6008f6f7cae1b72c7db3764dbb0d59f81f016b02542cf2388f15052d42d9884cd0fb960ab6588fb56940e86e8d68a5e29c66b697e6ce0a42d4c742fb2ee868bdbe5d10d4d38b93a172e043855d573e17b782c87872390c9da0562dd72dc02680197da9c1c6e78446786137b47169a8ebe39317f02938619e96ac0c447c6efeba8121edac9b6f288b748ddf7c0362799aa50e80c7cf62bc21dec22aca6fb0de", 0xb9}, {&(0x7f0000000580)="6c3df151fdbd49532d6347451989b60ea5f2149b8e8ff0091d02ea85e6611efce45bac1ca83e0869236e9456a44def0f998a72709b4df3c7f7c7ce48ad69d93e77e0bff664c5ca16aa91a8e62c53cd1ff9238a0dab78c0dcb5c9d22f11fd9485f2e5fd8b354db53eceb701feae9a1e91252a9a14232c876d0f24a5e673ca21bccd27ed72483eab0648b8b3bd4b8f58aece7b2a9245ded79034abd9", 0x9b}], 0x4}, 0x4000)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x4b, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018020000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r6}, 0x10)
close(r7)

880.765634ms ago: executing program 3 (id=2590):
r0 = gettid()
r1 = fsopen(&(0x7f0000000140)='tracefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000040)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha224\x00'}, 0x58)
r3 = accept$alg(r2, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000000c0)="7ce4", 0x2}], 0x1, 0x0, 0x0, 0x40011}, 0x20048000)
accept4(r3, 0x0, 0x0, 0x0)
r4 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_DQEVENT(r4, 0x80885659, 0x0)

760.499928ms ago: executing program 0 (id=2592):
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r2=>0x0}) (async)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r3, 0x65, 0x7, 0x0, &(0x7f00000000c0))
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x7, &(0x7f00000003c0)=0x100000001, 0x4) (async)
setsockopt$inet_tcp_int(r4, 0x6, 0x18, &(0x7f0000000080)=0x80000049, 0x4) (async)
getsockopt$inet_tcp_int(r4, 0x6, 0x18, 0x0, &(0x7f0000000040)) (async)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000500)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd700000f63ef80089aa588786667f716da5b442e7cb14a85db1203c33af637266833168b11d4c1d273525a22751cdd3f09cc40594", @ANYRES32=r2, @ANYRES32, @ANYRES32=r2, @ANYBLOB, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async)
arch_prctl$ARCH_GET_XCOMP_SUPP(0x1021, &(0x7f00000002c0)) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x3e, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x0, 0xc, &(0x7f0000000800)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='mm_khugepaged_scan_pmd\x00', r6, 0x0, 0x800}, 0x18) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x680081, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="041817aaaaaaaaaa10"], 0x1a) (async)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r8, 0xae64, 0x0) (async)
bpf$ENABLE_STATS(0x20, &(0x7f0000000100), 0x4) (async)
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$inet_sctp(0x2, 0x1, 0x84) (async)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r9, 0x0, 0x82, &(0x7f00000002c0)={'filter\x00', 0x0, 0x0, 0x0, [0x800, 0x7, 0x4, 0x1, 0x4000000000000002, 0x7]}, &(0x7f0000000180)=0x78)
close_range(r8, r8, 0x0)
r10 = syz_open_dev$sg(&(0x7f0000000140), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r10, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000810000001b"]) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)

540.485481ms ago: executing program 0 (id=2595):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xa406}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x34, 0x29, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x40)

400.85014ms ago: executing program 1 (id=2596):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x24, @none={0x0, 0x2}}, 0x14, &(0x7f0000000100)={0x0}, 0x7}, 0x80)
recvmmsg(r0, &(0x7f0000001ac0)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x34, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}]}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x3}]}, 0x34}}, 0x4)

400.592453ms ago: executing program 0 (id=2597):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000005c0)={0x1, 0x0, [{0x0, 0x0, 0x0}]})
r1 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$TIPC_CONN_TIMEOUT(r1, 0x10f, 0x82, &(0x7f00000001c0), &(0x7f0000000240)=0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x60, 0x10, 0x401, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x503}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x28, 0x2, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x1c, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x10000, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x8}}]}, @IFLA_VLAN_ID={0x6, 0x1, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r5}]}, 0x60}, 0x1, 0x0, 0x0, 0x20004800}, 0x4000000)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08001400fc000000080011000700000008000e00800000000800", @ANYRES64=r2], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

400.412478ms ago: executing program 1 (id=2598):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xa406}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) (fail_nth: 5)

320.66442ms ago: executing program 0 (id=2599):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x28)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x4048043)
setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5})
getpeername(0xffffffffffffffff, &(0x7f0000000240)=@ethernet={0x0, @remote}, &(0x7f0000000080)=0xfffffeb1)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000440)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004"], 0x0)

148.530993ms ago: executing program 1 (id=2600):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000280)=0x4, r1, 0x0, 0x1, 0x4}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000280)=0x1, r3, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, r3, 0x7}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfaf5, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, r1, 0x7}}, 0x48)

148.293515ms ago: executing program 2 (id=2601):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000001c0)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x400000000000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x200000, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x18, 0xfffffffffffffff5, 0xffffffff, {0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
write$FUSE_NOTIFY_RETRIEVE(r0, 0x0, 0x0)

148.169439ms ago: executing program 1 (id=2602):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
r3 = accept4$rose(r1, 0x0, &(0x7f0000000040), 0xc0000)
accept4$rose(r3, &(0x7f0000000140)=@full={0xb, @remote, @remote, 0x0, [@rose, @bcast, @null, @rose, @default]}, &(0x7f0000000180)=0x40, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newlink={0x4c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TTL={0x5, 0x3, 0x1}, @IFLA_GENEVE_DF={0x5, 0xd, 0x1}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

60.466188ms ago: executing program 1 (id=2603):
syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x101500)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, 0x52f})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC(r2, 0x4068aea3, &(0x7f00000000c0))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="0800000000000000b0000040"])
ioctl$KVM_RUN(r2, 0xae80, 0xfeff)

500.432µs ago: executing program 3 (id=2604):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
r3 = dup3(r2, r1, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000540)={@fd={0x66642a85, 0x0, r3}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x1, 0x29}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000600)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, 0x0)

297.855µs ago: executing program 1 (id=2605):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xa406}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x40) (fail_nth: 5)

0s ago: executing program 3 (id=2606):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000001240)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x0, 0x0, 0x14}, @ipv4=@udp={{0x6, 0x4, 0x3, 0x1b, 0xfc0, 0x66, 0x0, 0x40, 0x11, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x1a}, {[@timestamp={0x44, 0x4, 0x20, 0x0, 0x6}]}}, {0x4e20, 0x4e21, 0xfa8, 0x0, @wg=@data={0x4, 0x2, 0x1008, "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"}}}}, 0xfce) (fail_nth: 5)

kernel console output (not intermixed with test programs):

12597] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  262.564368][T12597] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  262.564374][T12597] RDX: 0000200000000040 RSI: 0000000080284504 RDI: 0000000000000004
[  262.564381][T12597] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  262.564387][T12597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.564392][T12597] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  262.564405][T12597]  </TASK>
[  262.564415][T12597] ERROR: Out of memory at tomoyo_realpath_from_path.
[  262.635108][   T34] usb 6-1: USB disconnect, device number 30
[  262.981290][T12609] usb usb7: usbfs: process 12609 (syz.3.2331) did not claim interface 0 before use
[  263.008759][T12612] binder: 12611:12612 ioctl c0306201 200000000300 returned -11
[  263.080705][ T5945] Bluetooth: hci0: command tx timeout
[  263.082411][T12620] binder: 12619:12620 unknown command 0
[  263.082430][T12620] binder: 12619:12620 ioctl c0306201 200000000080 returned -22
[  263.084652][T12620] binder: 12619:12620 ioctl c0306201 200000000300 returned -11
[  263.089463][ T5986] usb 5-1: USB disconnect, device number 39
[  263.123702][   T40] audit: type=1400 audit(1763794716.100:477): avc:  denied  { remount } for  pid=12624 comm="syz.3.2337" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  263.123710][T12625] tmpfs: Unknown parameter 'nr_ikj¹€E•’ÙJ'
[  263.134429][   T40] audit: type=1400 audit(1763794716.110:478): avc:  denied  { unmount } for  pid=5946 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  263.253014][T12639] fuse: Invalid rootmode
[  263.287806][T12642] binder: 12640:12642 ioctl c0306201 200000000300 returned -11
[  263.440354][T10347] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  263.460378][ T5986] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  263.550340][  T156] usb 8-1: new high-speed USB device number 46 using dummy_hcd
[  263.591792][T10347] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  263.594541][T10347] usb 6-1: config 1 has an invalid descriptor of length 121, skipping remainder of the config
[  263.597923][T10347] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  263.601067][T10347] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  263.606246][T10347] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  263.609214][T10347] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  263.610367][ T5986] usb 5-1: Using ep0 maxpacket: 8
[  263.612542][T10347] usb 6-1: Product: syz
[  263.614983][ T5986] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  263.615359][T10347] usb 6-1: Manufacturer: syz
[  263.617909][ T5986] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  263.622626][ T5986] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  263.624329][T10347] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  263.625655][ T5986] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  263.625668][ T5986] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  263.625689][ T5986] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  263.625700][ T5986] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.730496][  T156] usb 8-1: Using ep0 maxpacket: 8
[  263.733538][  T156] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  263.735999][  T156] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  263.739389][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  263.743116][  T156] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  263.746726][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  263.750128][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  263.753786][  T156] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  263.757921][  T156] usb 8-1: config 168 interface 0 has no altsetting 0
[  263.761303][  T156] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  263.763571][  T156] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  263.767003][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  263.770552][  T156] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  263.774288][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  263.777695][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  263.781316][  T156] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  263.785347][  T156] usb 8-1: config 168 interface 0 has no altsetting 0
[  263.788627][  T156] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  263.790956][  T156] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  263.794295][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  263.797779][  T156] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  263.801491][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  263.804928][  T156] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  263.808371][  T156] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  263.812463][  T156] usb 8-1: config 168 interface 0 has no altsetting 0
[  263.817053][  T156] usb 8-1: string descriptor 0 read error: -22
[  263.819091][  T156] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  263.822037][  T156] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  263.826000][T10347] usb 6-1: USB disconnect, device number 31
[  263.840712][  T156] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  263.848751][ T5986] usb 5-1: GET_CAPABILITIES returned 0
[  263.850529][ T5986] usbtmc 5-1:16.0: can't read capabilities
[  264.050909][T10347] usb 5-1: USB disconnect, device number 40
[  264.177247][T12658] FAULT_INJECTION: forcing a failure.
[  264.177247][T12658] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  264.181404][T12658] CPU: 0 UID: 0 PID: 12658 Comm: syz.2.2345 Not tainted syzkaller #0 PREEMPT(full) 
[  264.181418][T12658] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  264.181425][T12658] Call Trace:
[  264.181428][T12658]  <TASK>
[  264.181432][T12658]  dump_stack_lvl+0x16c/0x1f0
[  264.181446][T12658]  should_fail_ex+0x512/0x640
[  264.181461][T12658]  _copy_from_user+0x2e/0xd0
[  264.181474][T12658]  get_user_ifreq+0xf1/0x250
[  264.181490][T12658]  sock_ioctl+0x586/0x6b0
[  264.181501][T12658]  ? __pfx_sock_ioctl+0x10/0x10
[  264.181510][T12658]  ? hook_file_ioctl_common+0x145/0x410
[  264.181528][T12658]  ? selinux_file_ioctl+0x180/0x270
[  264.181539][T12658]  ? selinux_file_ioctl+0xb4/0x270
[  264.181551][T12658]  ? __pfx_sock_ioctl+0x10/0x10
[  264.181562][T12658]  __x64_sys_ioctl+0x18e/0x210
[  264.181584][T12658]  do_syscall_64+0xcd/0xfa0
[  264.181594][T12658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.181605][T12658] RIP: 0033:0x7f376dd8f749
[  264.181613][T12658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.181624][T12658] RSP: 002b:00007f376eb47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  264.181634][T12658] RAX: ffffffffffffffda RBX: 00007f376dfe5fa0 RCX: 00007f376dd8f749
[  264.181640][T12658] RDX: 0000200000000080 RSI: 00000000000089f0 RDI: 0000000000000004
[  264.181646][T12658] RBP: 00007f376eb47090 R08: 0000000000000000 R09: 0000000000000000
[  264.181651][T12658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  264.181657][T12658] R13: 00007f376dfe6038 R14: 00007f376dfe5fa0 R15: 00007ffd4f62e468
[  264.181670][T12658]  </TASK>
[  264.204259][T12660] binder: 12659:12660 unknown command 0
[  264.240642][T12660] binder: 12659:12660 ioctl c0306201 200000000080 returned -22
[  264.244147][T12660] binder: 12659:12660 ioctl c0306201 200000000300 returned -11
[  264.360684][ T5945] Bluetooth: hci2: command tx timeout
[  264.617153][T12677] fuse: Bad value for 'rootmode'
[  264.774876][T12682] binder: 12681:12682 ioctl c0306201 200000000300 returned -11
[  264.775358][T12684] fuse: Bad value for 'fd'
[  264.780142][T12684] fuse: Bad value for 'fd'
[  264.783884][T12684] fuse: Bad value for 'fd'
[  264.863875][T12695] loop9: detected capacity change from 0 to 7
[  264.866696][ T5937] Dev loop9: unable to read RDB block 7
[  264.868575][ T5937]  loop9: AHDI p4
[  264.869774][ T5937] loop9: partition table partially beyond EOD, truncated
[  264.873144][T12695] Dev loop9: unable to read RDB block 7
[  264.875460][T12695]  loop9: AHDI p4
[  264.877209][T12695] loop9: partition table partially beyond EOD, truncated
[  264.907216][T12697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2358'.
[  264.911877][T12697] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2358'.
[  264.915193][T12699] FAULT_INJECTION: forcing a failure.
[  264.915193][T12699] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  264.917649][T12697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2358'.
[  264.920924][T12699] CPU: 0 UID: 0 PID: 12699 Comm: syz.0.2359 Not tainted syzkaller #0 PREEMPT(full) 
[  264.920947][T12699] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  264.920957][T12699] Call Trace:
[  264.920964][T12699]  <TASK>
[  264.920970][T12699]  dump_stack_lvl+0x16c/0x1f0
[  264.920992][T12699]  should_fail_ex+0x512/0x640
[  264.921016][T12699]  _copy_from_user+0x2e/0xd0
[  264.921038][T12699]  lo_ioctl+0x23b/0x1cb0
[  264.921068][T12699]  ? __pfx_lo_ioctl+0x10/0x10
[  264.921091][T12699]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  264.921117][T12699]  ? kasan_quarantine_put+0x10a/0x240
[  264.921134][T12699]  ? lockdep_hardirqs_on+0x7c/0x110
[  264.921152][T12699]  ? blk_get_meta_cap+0xbc/0x700
[  264.921178][T12699]  ? __pfx_blk_get_meta_cap+0x10/0x10
[  264.921208][T12699]  ? blkdev_common_ioctl+0x1d6/0x2470
[  264.921260][T12699]  ? __pfx_lo_ioctl+0x10/0x10
[  264.921286][T12699]  blkdev_ioctl+0x277/0x6d0
[  264.921309][T12699]  ? __pfx_blkdev_ioctl+0x10/0x10
[  264.921332][T12699]  ? selinux_file_ioctl+0x180/0x270
[  264.921368][T12699]  ? selinux_file_ioctl+0xb4/0x270
[  264.921388][T12699]  ? __pfx_blkdev_ioctl+0x10/0x10
[  264.921413][T12699]  __x64_sys_ioctl+0x18e/0x210
[  264.921440][T12699]  do_syscall_64+0xcd/0xfa0
[  264.921459][T12699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.921475][T12699] RIP: 0033:0x7f491978f749
[  264.921488][T12699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.921504][T12699] RSP: 002b:00007f491a5b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  264.921521][T12699] RAX: ffffffffffffffda RBX: 00007f49199e5fa0 RCX: 00007f491978f749
[  264.921531][T12699] RDX: 00002000000002c0 RSI: 0000000000004c0a RDI: 0000000000000003
[  264.921541][T12699] RBP: 00007f491a5b2090 R08: 0000000000000000 R09: 0000000000000000
[  264.921550][T12699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  264.921560][T12699] R13: 00007f49199e6038 R14: 00007f49199e5fa0 R15: 00007ffe17b730d8
[  264.921583][T12699]  </TASK>
[  264.970087][T12702] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.2358'.
[  264.973868][T12697] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2358'.
[  265.081823][T12707] =======================================================
[  265.081823][T12707] WARNING: The mand mount option has been deprecated and
[  265.081823][T12707]          and is ignored by this kernel. Remove the mand
[  265.081823][T12707]          option from the mount to silence this warning.
[  265.081823][T12707] =======================================================
[  265.101754][T12707] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2362'.
[  265.105471][T12707] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2362'.
[  265.138030][T12712] binder: 12710:12712 unknown command 0
[  265.138918][T12713] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2364'.
[  265.139948][T12712] binder: 12710:12712 ioctl c0306201 200000000080 returned -22
[  265.256884][T12727] batadv_slave_1: entered promiscuous mode
[  265.265971][T12727] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2367'.
[  265.521688][T12726] batadv_slave_1: left promiscuous mode
[  265.551369][T12732] fuse: Bad value for 'rootmode'
[  265.588179][T12734] 9pnet_rdma: rdma_create_trans (12734): problem binding to privport: 13
[  265.591919][   T40] audit: type=1400 audit(1763794718.570:479): avc:  denied  { read } for  pid=12733 comm="syz.2.2369" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  265.599104][   T40] audit: type=1400 audit(1763794718.570:480): avc:  denied  { open } for  pid=12733 comm="syz.2.2369" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  265.779579][   T61] libceph: connect (1)[c::]:6789 error -113
[  265.782485][   T61] libceph: mon0 (1)[c::]:6789 connect error
[  265.785321][   T61] libceph: connect (1)[c::]:6789 error -113
[  265.787377][   T61] libceph: mon0 (1)[c::]:6789 connect error
[  265.822990][T12742] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12742 comm=syz.2.2371
[  265.828749][T12739] ceph: No mds server is up or the cluster is laggy
[  266.027089][T12753] netlink: 'syz.1.2376': attribute type 1 has an invalid length.
[  266.032373][T12751] FAULT_INJECTION: forcing a failure.
[  266.032373][T12751] name failslab, interval 1, probability 0, space 0, times 0
[  266.036302][T12751] CPU: 0 UID: 0 PID: 12751 Comm: syz.2.2375 Not tainted syzkaller #0 PREEMPT(full) 
[  266.036316][T12751] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  266.036322][T12751] Call Trace:
[  266.036334][T12751]  <TASK>
[  266.036338][T12751]  dump_stack_lvl+0x16c/0x1f0
[  266.036362][T12751]  should_fail_ex+0x512/0x640
[  266.036381][T12751]  ? fs_reclaim_acquire+0xae/0x150
[  266.036395][T12751]  should_failslab+0xc2/0x120
[  266.036407][T12751]  __kmalloc_noprof+0xdd/0x880
[  266.036422][T12751]  ? tomoyo_encode2+0x100/0x3e0
[  266.036436][T12751]  ? tomoyo_encode2+0x100/0x3e0
[  266.036447][T12751]  tomoyo_encode2+0x100/0x3e0
[  266.036460][T12751]  tomoyo_encode+0x29/0x50
[  266.036471][T12751]  tomoyo_realpath_from_path+0x18f/0x6e0
[  266.036489][T12751]  tomoyo_path_number_perm+0x245/0x580
[  266.036503][T12751]  ? tomoyo_path_number_perm+0x237/0x580
[  266.036520][T12751]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  266.036536][T12751]  ? find_held_lock+0x2b/0x80
[  266.036574][T12751]  ? find_held_lock+0x2b/0x80
[  266.036595][T12751]  ? hook_file_ioctl_common+0x145/0x410
[  266.036612][T12751]  ? __fget_files+0x20e/0x3c0
[  266.036625][T12751]  security_file_ioctl+0x9b/0x240
[  266.036637][T12751]  __x64_sys_ioctl+0xb7/0x210
[  266.036653][T12751]  do_syscall_64+0xcd/0xfa0
[  266.036664][T12751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.036675][T12751] RIP: 0033:0x7f376dd8f749
[  266.036683][T12751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.036693][T12751] RSP: 002b:00007f376eb47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  266.036703][T12751] RAX: ffffffffffffffda RBX: 00007f376dfe5fa0 RCX: 00007f376dd8f749
[  266.036709][T12751] RDX: 0000200000000340 RSI: 0000000040047452 RDI: 0000000000000004
[  266.036715][T12751] RBP: 00007f376eb47090 R08: 0000000000000000 R09: 0000000000000000
[  266.036721][T12751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.036727][T12751] R13: 00007f376dfe6038 R14: 00007f376dfe5fa0 R15: 00007ffd4f62e468
[  266.036740][T12751]  </TASK>
[  266.036749][T12751] ERROR: Out of memory at tomoyo_realpath_from_path.
[  266.038785][T12753] 8021q: adding VLAN 0 to HW filter on device bond0
[  266.338881][T12776] binder: 12775:12776 unknown command 0
[  266.341180][T12776] binder: 12775:12776 ioctl c0306201 200000000080 returned -22
[  266.345250][T12776] binder: 12775:12776 ioctl c0306201 200000000300 returned -11
[  266.426898][T12780] FAULT_INJECTION: forcing a failure.
[  266.426898][T12780] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  266.431030][T12780] CPU: 0 UID: 0 PID: 12780 Comm: syz.0.2382 Not tainted syzkaller #0 PREEMPT(full) 
[  266.431044][T12780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  266.431050][T12780] Call Trace:
[  266.431054][T12780]  <TASK>
[  266.431058][T12780]  dump_stack_lvl+0x16c/0x1f0
[  266.431085][T12780]  should_fail_ex+0x512/0x640
[  266.431102][T12780]  _copy_from_user+0x2e/0xd0
[  266.431116][T12780]  kvm_vm_ioctl+0x195c/0x3fd0
[  266.431134][T12780]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  266.431153][T12780]  ? kasan_quarantine_put+0x10a/0x240
[  266.431164][T12780]  ? lockdep_hardirqs_on+0x7c/0x110
[  266.431175][T12780]  ? find_held_lock+0x2b/0x80
[  266.431189][T12780]  ? tomoyo_path_number_perm+0x295/0x580
[  266.431202][T12780]  ? tomoyo_path_number_perm+0x18d/0x580
[  266.431223][T12780]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  266.431235][T12780]  ? find_held_lock+0x2b/0x80
[  266.431250][T12780]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  266.431265][T12780]  ? do_vfs_ioctl+0x128/0x14f0
[  266.431279][T12780]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  266.431294][T12780]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  266.431311][T12780]  ? hook_file_ioctl_common+0x145/0x410
[  266.431328][T12780]  ? selinux_file_ioctl+0x180/0x270
[  266.431342][T12780]  ? selinux_file_ioctl+0xb4/0x270
[  266.431359][T12780]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  266.431376][T12780]  __x64_sys_ioctl+0x18e/0x210
[  266.431400][T12780]  do_syscall_64+0xcd/0xfa0
[  266.431417][T12780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.431432][T12780] RIP: 0033:0x7f491978f749
[  266.431445][T12780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.431461][T12780] RSP: 002b:00007f491a5b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  266.431476][T12780] RAX: ffffffffffffffda RBX: 00007f49199e5fa0 RCX: 00007f491978f749
[  266.431482][T12780] RDX: 0000200000000000 RSI: 000000004020aea5 RDI: 0000000000000004
[  266.431488][T12780] RBP: 00007f491a5b2090 R08: 0000000000000000 R09: 0000000000000000
[  266.431494][T12780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.431500][T12780] R13: 00007f49199e6038 R14: 00007f49199e5fa0 R15: 00007ffe17b730d8
[  266.431514][T12780]  </TASK>
[  266.434005][   T40] audit: type=1400 audit(1763794719.410:481): avc:  denied  { unlink } for  pid=12783 comm="syz.2.2384" name="#1" dev="tmpfs" ino=172 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  266.441751][ T5945] Bluetooth: hci2: command tx timeout
[  266.442550][   T40] audit: type=1400 audit(1763794719.410:482): avc:  denied  { mount } for  pid=12783 comm="syz.2.2384" name="/" dev="overlay" ino=167 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  266.526014][T12787] overlayfs: failed to get index nlink (file1/file0, err=-61)
[  267.040380][T10400] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  267.201726][T10400] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  267.204701][T10400] usb 5-1: config 1 has an invalid descriptor of length 121, skipping remainder of the config
[  267.207839][T12802] binder: 12801:12802 unknown command 0
[  267.208476][T10400] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  267.211233][T12802] binder: 12801:12802 ioctl c0306201 200000000080 returned -22
[  267.213688][T10400] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  267.217505][T12802] binder: 12801:12802 ioctl c0306201 200000000300 returned -11
[  267.221177][T10400] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  267.225382][T10400] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  267.228319][T10400] usb 5-1: Product: syz
[  267.229680][T10400] usb 5-1: Manufacturer: syz
[  267.235862][T10400] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  267.295185][T12809] binder: 12808:12809 ioctl c018620c 200000000080 returned -1
[  267.299950][   T40] audit: type=1400 audit(1763794720.270:483): avc:  denied  { mounton } for  pid=12808 comm="syz.1.2392" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  267.305406][T12809] syz.1.2392: attempt to access beyond end of device
[  267.305406][T12809] sr0: rw=6144, sector=128, nr_sectors = 8 limit=128
[  267.312335][T12809] gfs2: error -5 reading superblock
[  267.317754][   T40] audit: type=1400 audit(1763794720.290:484): avc:  denied  { ioctl } for  pid=12808 comm="syz.1.2392" path="socket:[56177]" dev="sockfs" ino=56177 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  267.342903][   T40] audit: type=1400 audit(1763794720.320:485): avc:  denied  { name_bind 0x1000000 } for  pid=12810 comm="syz.1.2393" path="socket:[54236]" dev="sockfs" ino=54236 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  267.343562][T12812] netlink: 180 bytes leftover after parsing attributes in process `syz.1.2393'.
[  267.440733][ T5986] usb 5-1: USB disconnect, device number 41
[  267.657612][T12828] fuse: Unknown parameter 'user_i00000000000000000000'
[  267.687510][T12830] binder: 12829:12830 unknown command 0
[  267.689400][T12830] binder: 12829:12830 ioctl c0306201 200000000080 returned -22
[  267.693270][T12830] binder: 12829:12830 ioctl c0306201 0 returned -14
[  267.696217][T12830] binder: 12829:12830 ioctl c0306201 200000000300 returned -11
[  267.724752][T12832] fuse: Bad value for 'group_id'
[  267.726919][T12832] fuse: Bad value for 'group_id'
[  267.868494][T12836] FAULT_INJECTION: forcing a failure.
[  267.868494][T12836] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  267.873608][T12836] CPU: 2 UID: 0 PID: 12836 Comm: syz.1.2401 Not tainted syzkaller #0 PREEMPT(full) 
[  267.873622][T12836] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  267.873629][T12836] Call Trace:
[  267.873632][T12836]  <TASK>
[  267.873636][T12836]  dump_stack_lvl+0x16c/0x1f0
[  267.873651][T12836]  should_fail_ex+0x512/0x640
[  267.873666][T12836]  _copy_from_user+0x2e/0xd0
[  267.873679][T12836]  kvm_vm_ioctl+0xa69/0x3fd0
[  267.873696][T12836]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  267.873715][T12836]  ? kasan_quarantine_put+0x10a/0x240
[  267.873726][T12836]  ? lockdep_hardirqs_on+0x7c/0x110
[  267.873738][T12836]  ? find_held_lock+0x2b/0x80
[  267.873751][T12836]  ? tomoyo_path_number_perm+0x295/0x580
[  267.873764][T12836]  ? tomoyo_path_number_perm+0x18d/0x580
[  267.873775][T12836]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  267.873786][T12836]  ? find_held_lock+0x2b/0x80
[  267.873800][T12836]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  267.873815][T12836]  ? do_vfs_ioctl+0x128/0x14f0
[  267.873830][T12836]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  267.873844][T12836]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  267.873861][T12836]  ? hook_file_ioctl_common+0x145/0x410
[  267.873878][T12836]  ? selinux_file_ioctl+0x180/0x270
[  267.873889][T12836]  ? selinux_file_ioctl+0xb4/0x270
[  267.873901][T12836]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  267.873912][T12836]  __x64_sys_ioctl+0x18e/0x210
[  267.873927][T12836]  do_syscall_64+0xcd/0xfa0
[  267.873938][T12836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.873949][T12836] RIP: 0033:0x7fd7b5f8f749
[  267.873957][T12836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.873967][T12836] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  267.873977][T12836] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  267.873983][T12836] RDX: 0000200000000000 RSI: 00000000c008ae67 RDI: 0000000000000004
[  267.873989][T12836] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  267.873995][T12836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  267.874001][T12836] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  267.874013][T12836]  </TASK>
[  268.040557][T12840] netlink: 'syz.1.2402': attribute type 3 has an invalid length.
[  268.044153][T12840] netlink: 'syz.1.2402': attribute type 3 has an invalid length.
[  268.055272][T12839] IPVS: Scheduler module ip_vs_sip not found
[  268.120065][T10400] IPVS: starting estimator thread 0...
[  268.123877][   T40] audit: type=1400 audit(1763794721.100:486): avc:  denied  { write } for  pid=12845 comm="syz.2.2405" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  268.124678][T10400] usb 8-1: USB disconnect, device number 46
[  268.130958][   T40] audit: type=1400 audit(1763794721.100:487): avc:  denied  { bind } for  pid=12845 comm="syz.2.2405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  268.144876][   T40] audit: type=1400 audit(1763794721.100:488): avc:  denied  { getopt } for  pid=12845 comm="syz.2.2405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  268.193754][T12854] binder: 12853:12854 unknown command 0
[  268.198245][T12854] binder: 12853:12854 ioctl c0306201 200000000080 returned -22
[  268.202814][T12854] binder: 12853:12854 ioctl c0306201 0 returned -14
[  268.205531][T12854] binder: 12853:12854 ioctl c0306201 200000000300 returned -11
[  268.221593][T12847] IPVS: using max 43 ests per chain, 103200 per kthread
[  268.286545][T12863] netlink: 'syz.1.2411': attribute type 1 has an invalid length.
[  268.301469][T12863] 8021q: adding VLAN 0 to HW filter on device bond1
[  268.310027][T12858] vlan0: entered promiscuous mode
[  268.312037][T12858] bridge0: entered promiscuous mode
[  268.359876][T12869] netlink: 'syz.3.2413': attribute type 4 has an invalid length.
[  268.363183][T12869] netlink: 'syz.3.2413': attribute type 1 has an invalid length.
[  268.453125][T12882] binder: 12881:12882 unknown command 0
[  268.455125][T12882] binder: 12881:12882 ioctl c0306201 200000000080 returned -22
[  268.458871][T12882] binder: 12881:12882 ioctl c0306201 200000000300 returned -11
[  268.486493][T12886] binder: 12885:12886 unknown command 0
[  268.488194][T12886] binder: 12885:12886 ioctl c0306201 200000000080 returned -22
[  268.491548][T12886] binder: 12885:12886 ioctl c0306201 0 returned -14
[  268.494011][T12886] binder: 12885:12886 ioctl c0306201 200000000300 returned -11
[  268.524164][   T40] audit: type=1400 audit(1763794721.500:489): avc:  denied  { wake_alarm } for  pid=12888 comm="syz.0.2419" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  268.562477][T12893] syzkaller1: entered promiscuous mode
[  268.564674][T12893] syzkaller1: entered allmulticast mode
[  268.630358][T10400] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  268.676054][   T40] audit: type=1400 audit(1763794721.650:490): avc:  denied  { create } for  pid=12897 comm="syz.3.2422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  268.684086][   T40] audit: type=1400 audit(1763794721.650:491): avc:  denied  { ioctl } for  pid=12897 comm="syz.3.2422" path="socket:[55175]" dev="sockfs" ino=55175 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  268.801946][T10400] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  268.805352][T10400] usb 6-1: config 1 has an invalid descriptor of length 121, skipping remainder of the config
[  268.808607][T10400] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  268.812247][T10400] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  268.817697][T10400] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  268.821807][T10400] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  268.824283][T10400] usb 6-1: Product: syz
[  268.825583][T10400] usb 6-1: Manufacturer: syz
[  268.830302][T10400] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  268.854404][   T40] audit: type=1400 audit(1763794721.830:492): avc:  denied  { unmount } for  pid=5946 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  268.917165][T12908] binder: 12907:12908 unknown command 0
[  268.918877][T12908] binder: 12907:12908 ioctl c0306201 200000000080 returned -22
[  268.923302][T12908] binder: 12907:12908 ioctl c0306201 200000000300 returned -11
[  269.033189][T10400] usb 6-1: USB disconnect, device number 32
[  269.098349][T12915] binder: 12914:12915 unknown command 0
[  269.100200][T12915] binder: 12914:12915 ioctl c0306201 200000000080 returned -22
[  269.104888][T12915] binder: 12914:12915 ioctl c0306201 200000000300 returned -11
[  269.251661][T12923] fuse: Unknown parameter 'user_id00000000000000000000'
[  269.292603][T12920] netlink: 'syz.2.2431': attribute type 12 has an invalid length.
[  269.421932][T12931] netlink: 'syz.3.2434': attribute type 27 has an invalid length.
[  269.424561][T12931] macvtap1: left promiscuous mode
[  269.426188][T12931] macvtap1: left allmulticast mode
[  269.470110][T12933] overlayfs: conflicting options: userxattr,redirect_dir=on
[  269.593040][T12939] netlink: 'syz.3.2437': attribute type 1 has an invalid length.
[  269.606849][T12939] 8021q: adding VLAN 0 to HW filter on device bond2
[  269.624625][T12942] kvm: user requested TSC rate below hardware speed
[  269.627143][T12942] FAULT_INJECTION: forcing a failure.
[  269.627143][T12942] name failslab, interval 1, probability 0, space 0, times 0
[  269.631990][T12942] CPU: 2 UID: 0 PID: 12942 Comm: syz.1.2438 Not tainted syzkaller #0 PREEMPT(full) 
[  269.632003][T12942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  269.632010][T12942] Call Trace:
[  269.632022][T12942]  <TASK>
[  269.632026][T12942]  dump_stack_lvl+0x16c/0x1f0
[  269.632050][T12942]  should_fail_ex+0x512/0x640
[  269.632070][T12942]  ? __kmalloc_cache_noprof+0x5f/0x780
[  269.632086][T12942]  should_failslab+0xc2/0x120
[  269.632099][T12942]  __kmalloc_cache_noprof+0x72/0x780
[  269.632113][T12942]  ? __pfx___might_resched+0x10/0x10
[  269.632126][T12942]  ? vhost_task_create+0xe5/0x370
[  269.632137][T12942]  ? rcu_is_watching+0x12/0xc0
[  269.632150][T12942]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  269.632165][T12942]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  269.632178][T12942]  ? vhost_task_create+0xe5/0x370
[  269.632188][T12942]  vhost_task_create+0xe5/0x370
[  269.632198][T12942]  ? __pfx_vhost_task_create+0x10/0x10
[  269.632212][T12942]  ? __pfx_vhost_task_fn+0x10/0x10
[  269.632229][T12942]  kvm_mmu_post_init_vm+0x1b7/0x380
[  269.632241][T12942]  kvm_arch_vcpu_ioctl_run+0x66/0x1920
[  269.632253][T12942]  ? kvm_vcpu_ioctl+0x14c5/0x1690
[  269.632270][T12942]  kvm_vcpu_ioctl+0x5eb/0x1690
[  269.632286][T12942]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  269.632300][T12942]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  269.632315][T12942]  ? do_vfs_ioctl+0x128/0x14f0
[  269.632330][T12942]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  269.632344][T12942]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  269.632361][T12942]  ? hook_file_ioctl_common+0x145/0x410
[  269.632379][T12942]  ? selinux_file_ioctl+0x180/0x270
[  269.632390][T12942]  ? selinux_file_ioctl+0xb4/0x270
[  269.632402][T12942]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  269.632417][T12942]  __x64_sys_ioctl+0x18e/0x210
[  269.632432][T12942]  do_syscall_64+0xcd/0xfa0
[  269.632443][T12942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.632454][T12942] RIP: 0033:0x7fd7b5f8f749
[  269.632463][T12942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.632472][T12942] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  269.632482][T12942] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  269.632489][T12942] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  269.632495][T12942] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  269.632501][T12942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  269.632507][T12942] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  269.632520][T12942]  </TASK>
[  269.756010][T12946] netlink: 'syz.0.2440': attribute type 27 has an invalid length.
[  269.776937][T12948] fuse: Bad value for 'fd'
[  269.780677][T12946] bridge0: port 3(syz_tun) entered blocking state
[  269.782710][T12946] bridge0: port 3(syz_tun) entered forwarding state
[  269.787626][T12946] 8021q: adding VLAN 0 to HW filter on device team0
[  269.792083][T12946] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  269.805506][T12951] binder: 12950:12951 unknown command 0
[  269.807307][T12951] binder: 12950:12951 ioctl c0306201 200000000080 returned -22
[  269.811715][T12951] binder: 12950:12951 ioctl c0306201 200000000300 returned -11
[  270.211041][ T5986] IPVS: starting estimator thread 0...
[  270.245250][T12965] FAULT_INJECTION: forcing a failure.
[  270.245250][T12965] name failslab, interval 1, probability 0, space 0, times 0
[  270.249161][T12965] CPU: 0 UID: 0 PID: 12965 Comm: syz.2.2447 Not tainted syzkaller #0 PREEMPT(full) 
[  270.249175][T12965] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  270.249186][T12965] Call Trace:
[  270.249193][T12965]  <TASK>
[  270.249199][T12965]  dump_stack_lvl+0x16c/0x1f0
[  270.249213][T12965]  should_fail_ex+0x512/0x640
[  270.249226][T12965]  ? fs_reclaim_acquire+0xae/0x150
[  270.249239][T12965]  should_failslab+0xc2/0x120
[  270.249252][T12965]  __kmalloc_noprof+0xdd/0x880
[  270.249266][T12965]  ? tomoyo_encode2+0x100/0x3e0
[  270.249281][T12965]  ? tomoyo_encode2+0x100/0x3e0
[  270.249292][T12965]  tomoyo_encode2+0x100/0x3e0
[  270.249305][T12965]  tomoyo_encode+0x29/0x50
[  270.249317][T12965]  tomoyo_realpath_from_path+0x18f/0x6e0
[  270.249330][T12965]  ? tomoyo_profile+0x47/0x60
[  270.249345][T12965]  tomoyo_path_number_perm+0x245/0x580
[  270.249354][T12965]  ? tomoyo_path_number_perm+0x237/0x580
[  270.249365][T12965]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  270.249376][T12965]  ? find_held_lock+0x2b/0x80
[  270.249399][T12965]  ? find_held_lock+0x2b/0x80
[  270.249412][T12965]  ? hook_file_ioctl_common+0x145/0x410
[  270.249428][T12965]  ? __fget_files+0x20e/0x3c0
[  270.249442][T12965]  security_file_ioctl+0x9b/0x240
[  270.249455][T12965]  __x64_sys_ioctl+0xb7/0x210
[  270.249470][T12965]  do_syscall_64+0xcd/0xfa0
[  270.249481][T12965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.249492][T12965] RIP: 0033:0x7f376dd8f749
[  270.249501][T12965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.249510][T12965] RSP: 002b:00007f376eb47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  270.249521][T12965] RAX: ffffffffffffffda RBX: 00007f376dfe5fa0 RCX: 00007f376dd8f749
[  270.249527][T12965] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  270.249533][T12965] RBP: 00007f376eb47090 R08: 0000000000000000 R09: 0000000000000000
[  270.249538][T12965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  270.249544][T12965] R13: 00007f376dfe6038 R14: 00007f376dfe5fa0 R15: 00007ffd4f62e468
[  270.249557][T12965]  </TASK>
[  270.249568][T12965] ERROR: Out of memory at tomoyo_realpath_from_path.
[  270.353593][T12967] IPVS: using max 45 ests per chain, 108000 per kthread
[  270.461216][T12971] FAULT_INJECTION: forcing a failure.
[  270.461216][T12971] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  270.465155][T12971] CPU: 3 UID: 0 PID: 12971 Comm: syz.2.2448 Not tainted syzkaller #0 PREEMPT(full) 
[  270.465169][T12971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  270.465175][T12971] Call Trace:
[  270.465179][T12971]  <TASK>
[  270.465183][T12971]  dump_stack_lvl+0x16c/0x1f0
[  270.465197][T12971]  should_fail_ex+0x512/0x640
[  270.465213][T12971]  _copy_from_user+0x2e/0xd0
[  270.465227][T12971]  msr_io+0x93/0x480
[  270.465239][T12971]  ? __pfx_do_set_msr+0x10/0x10
[  270.465251][T12971]  ? __pfx_msr_io+0x10/0x10
[  270.465262][T12971]  ? arch_stack_walk+0xa6/0x100
[  270.465277][T12971]  kvm_arch_vcpu_ioctl+0x1455/0x5510
[  270.465288][T12971]  ? kvm_arch_vcpu_ioctl+0x1430/0x5510
[  270.465301][T12971]  ? stack_trace_save+0x8e/0xc0
[  270.465316][T12971]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  270.465327][T12971]  ? stack_depot_save_flags+0x29/0x9c0
[  270.465340][T12971]  ? __lock_acquire+0xb8a/0x1c90
[  270.465352][T12971]  ? kasan_save_stack+0x42/0x60
[  270.465362][T12971]  ? kasan_save_stack+0x33/0x60
[  270.465371][T12971]  ? kasan_save_track+0x14/0x30
[  270.465380][T12971]  ? __kasan_save_free_info+0x3b/0x60
[  270.465393][T12971]  ? __kasan_slab_free+0x5f/0x80
[  270.465403][T12971]  ? kfree+0x2b8/0x6d0
[  270.465416][T12971]  ? tomoyo_path_number_perm+0x470/0x580
[  270.465426][T12971]  ? security_file_ioctl+0x9b/0x240
[  270.465438][T12971]  ? do_syscall_64+0xcd/0xfa0
[  270.465449][T12971]  ? __lock_acquire+0xb8a/0x1c90
[  270.465462][T12971]  ? __mutex_trylock_common+0xe9/0x250
[  270.465473][T12971]  ? __pfx___mutex_trylock_common+0x10/0x10
[  270.465483][T12971]  ? __pfx___might_resched+0x10/0x10
[  270.465497][T12971]  ? rcu_is_watching+0x12/0xc0
[  270.465511][T12971]  ? trace_contention_end+0xdd/0x130
[  270.465521][T12971]  ? __mutex_lock+0x1c5/0x1060
[  270.465533][T12971]  ? kasan_quarantine_put+0x10a/0x240
[  270.465544][T12971]  ? __pfx___mutex_lock+0x10/0x10
[  270.465560][T12971]  ? tomoyo_path_number_perm+0x18d/0x580
[  270.465571][T12971]  ? kvm_vcpu_ioctl+0x1235/0x1690
[  270.465585][T12971]  kvm_vcpu_ioctl+0x1235/0x1690
[  270.465601][T12971]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  270.465615][T12971]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  270.465630][T12971]  ? do_vfs_ioctl+0x128/0x14f0
[  270.465644][T12971]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  270.465659][T12971]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  270.465676][T12971]  ? hook_file_ioctl_common+0x145/0x410
[  270.465693][T12971]  ? selinux_file_ioctl+0x180/0x270
[  270.465704][T12971]  ? selinux_file_ioctl+0xb4/0x270
[  270.465716][T12971]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  270.465730][T12971]  __x64_sys_ioctl+0x18e/0x210
[  270.465746][T12971]  do_syscall_64+0xcd/0xfa0
[  270.465756][T12971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.465767][T12971] RIP: 0033:0x7f376dd8f749
[  270.465776][T12971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.465786][T12971] RSP: 002b:00007f376eb47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  270.465801][T12971] RAX: ffffffffffffffda RBX: 00007f376dfe5fa0 RCX: 00007f376dd8f749
[  270.465808][T12971] RDX: 00002000000002c0 RSI: 000000004008ae89 RDI: 0000000000000005
[  270.465817][T12971] RBP: 00007f376eb47090 R08: 0000000000000000 R09: 0000000000000000
[  270.465823][T12971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  270.465829][T12971] R13: 00007f376dfe6038 R14: 00007f376dfe5fa0 R15: 00007ffd4f62e468
[  270.465842][T12971]  </TASK>
[  270.612584][T12974] __nla_validate_parse: 9 callbacks suppressed
[  270.612594][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.657055][T12977] fuse: Bad value for 'fd'
[  270.704584][T12981] binder: 12980:12981 unknown command 0
[  270.706538][T12981] binder: 12980:12981 ioctl c0306201 200000000080 returned -22
[  270.711519][T12981] binder: 12980:12981 ioctl c0306201 200000000300 returned -11
[  270.715280][T12974] hsr_slave_1 (unregistering): left promiscuous mode
[  270.781672][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.784811][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.788099][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.791752][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.794872][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.797779][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.801165][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.805042][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.808917][T12974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2449'.
[  270.901086][T12990] binder: BINDER_SET_CONTEXT_MGR already set
[  270.907985][T12990] binder: 12989:12990 ioctl 4018620d 200000000040 returned -16
[  270.919262][T12990] binder: 12989:12990 ioctl c0306201 200000000300 returned -11
[  271.008172][ T5940] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  271.013707][ T5940] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  271.017623][ T5940] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  271.022918][ T5940] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  271.026616][ T5940] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  271.157129][T12994] chnl_net:caif_netlink_parms(): no params data found
[  271.278701][T12994] bridge0: port 1(bridge_slave_0) entered blocking state
[  271.282774][T12994] bridge0: port 1(bridge_slave_0) entered disabled state
[  271.285161][T12994] bridge_slave_0: entered allmulticast mode
[  271.287859][T12994] bridge_slave_0: entered promiscuous mode
[  271.291262][T12994] bridge0: port 2(bridge_slave_1) entered blocking state
[  271.293853][T12994] bridge0: port 2(bridge_slave_1) entered disabled state
[  271.296119][T12994] bridge_slave_1: entered allmulticast mode
[  271.299459][T12994] bridge_slave_1: entered promiscuous mode
[  271.336221][T13012] fuse: Bad value for 'fd'
[  271.351740][T12994] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  271.356480][T12994] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  271.376374][T13014] binder: 13013:13014 unknown command 0
[  271.378730][T13014] binder: 13013:13014 ioctl c0306201 200000000080 returned -22
[  271.390010][T13014] binder: BINDER_SET_CONTEXT_MGR already set
[  271.391925][T12994] team0: Port device team_slave_0 added
[  271.394156][T13014] binder: 13013:13014 ioctl 4018620d 200000000040 returned -16
[  271.396316][T12994] team0: Port device team_slave_1 added
[  271.397504][T13014] binder: 13013:13014 ioctl c0306201 200000000300 returned -11
[  271.562916][T12994] batman_adv: batadv0: Adding interface: batadv_slave_0
[  271.565514][T12994] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  271.575309][T12994] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  271.589956][T12994] batman_adv: batadv0: Adding interface: batadv_slave_1
[  271.592230][T12994] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  271.599794][T12994] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  271.670150][   T76] batadv0: left allmulticast mode
[  271.672941][   T76] batadv0: left promiscuous mode
[  271.675927][   T76] bridge0: port 3(batadv0) entered disabled state
[  271.680070][   T76] bridge_slave_1: left allmulticast mode
[  271.683834][   T76] bridge_slave_1: left promiscuous mode
[  271.685802][   T76] bridge0: port 2(bridge_slave_1) entered disabled state
[  271.689630][   T76] bridge_slave_0: left allmulticast mode
[  271.692246][   T76] bridge_slave_0: left promiscuous mode
[  271.694250][   T76] bridge0: port 1(bridge_slave_0) entered disabled state
[  271.996938][   T76] bond0 (unregistering): Released all slaves
[  272.013330][T13031] binder: BINDER_SET_CONTEXT_MGR already set
[  272.015628][T13031] binder: 13030:13031 ioctl 4018620d 200000000040 returned -16
[  272.018549][T13031] binder: 13030:13031 ioctl c0306201 200000000300 returned -11
[  272.087187][   T76] bond1 (unregistering): Released all slaves
[  272.149595][   T76] bond2 (unregistering): Released all slaves
[  272.158187][T12994] hsr_slave_0: entered promiscuous mode
[  272.160896][T12994] hsr_slave_1: entered promiscuous mode
[  272.163107][T12994] debugfs: 'hsr0' already exists in 'hsr'
[  272.165045][T12994] Cannot create hsr debugfs directory
[  272.212054][T13033] syzkaller0: entered promiscuous mode
[  272.214343][T13033] syzkaller0: entered allmulticast mode
[  272.564902][T13039] FAULT_INJECTION: forcing a failure.
[  272.564902][T13039] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  272.569998][T13039] CPU: 2 UID: 0 PID: 13039 Comm: syz.0.2468 Not tainted syzkaller #0 PREEMPT(full) 
[  272.570019][T13039] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.570029][T13039] Call Trace:
[  272.570035][T13039]  <TASK>
[  272.570041][T13039]  dump_stack_lvl+0x16c/0x1f0
[  272.570061][T13039]  should_fail_ex+0x512/0x640
[  272.570084][T13039]  _copy_from_user+0x2e/0xd0
[  272.570103][T13039]  iommufd_fops_ioctl+0x2f5/0x540
[  272.570127][T13039]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  272.570151][T13039]  ? hook_file_ioctl_common+0x145/0x410
[  272.570178][T13039]  ? selinux_file_ioctl+0x180/0x270
[  272.570195][T13039]  ? selinux_file_ioctl+0xb4/0x270
[  272.570213][T13039]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  272.570250][T13039]  __x64_sys_ioctl+0x18e/0x210
[  272.570275][T13039]  do_syscall_64+0xcd/0xfa0
[  272.570291][T13039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.570308][T13039] RIP: 0033:0x7f491978f749
[  272.570321][T13039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.570335][T13039] RSP: 002b:00007f491a5b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  272.570351][T13039] RAX: ffffffffffffffda RBX: 00007f49199e5fa0 RCX: 00007f491978f749
[  272.570362][T13039] RDX: 0000200000000240 RSI: 0000000000003b86 RDI: 0000000000000003
[  272.570371][T13039] RBP: 00007f491a5b2090 R08: 0000000000000000 R09: 0000000000000000
[  272.570380][T13039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  272.570389][T13039] R13: 00007f49199e6038 R14: 00007f49199e5fa0 R15: 00007ffe17b730d8
[  272.570410][T13039]  </TASK>
[  272.669469][T13041] netlink: 'syz.0.2469': attribute type 1 has an invalid length.
[  273.082484][ T5945] Bluetooth: hci3: command tx timeout
[  273.272153][T13041] 8021q: adding VLAN 0 to HW filter on device bond1
[  273.319136][T13050] netlink: 'syz.2.2471': attribute type 30 has an invalid length.
[  273.404335][T13058] binder: BINDER_SET_CONTEXT_MGR already set
[  273.406797][T13058] binder: 13057:13058 ioctl 4018620d 200000000040 returned -16
[  273.409347][T13058] binder: 13057:13058 ioctl c0306201 200000000300 returned -11
[  273.438605][T13061] fuse: Unknown parameter '0x0000000000000003'
[  273.618156][T13078] FAULT_INJECTION: forcing a failure.
[  273.618156][T13078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  273.628215][T13078] CPU: 0 UID: 0 PID: 13078 Comm: syz.1.2478 Not tainted syzkaller #0 PREEMPT(full) 
[  273.628232][T13078] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  273.628243][T13078] Call Trace:
[  273.628247][T13078]  <TASK>
[  273.628251][T13078]  dump_stack_lvl+0x16c/0x1f0
[  273.628267][T13078]  should_fail_ex+0x512/0x640
[  273.628282][T13078]  _copy_to_user+0x32/0xd0
[  273.628297][T13078]  simple_read_from_buffer+0xcb/0x170
[  273.628315][T13078]  proc_fail_nth_read+0x197/0x240
[  273.628328][T13078]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  273.628341][T13078]  ? rw_verify_area+0xcf/0x6c0
[  273.628355][T13078]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  273.628367][T13078]  vfs_read+0x1e4/0xcf0
[  273.628379][T13078]  ? __pfx___mutex_lock+0x10/0x10
[  273.628391][T13078]  ? __pfx_vfs_read+0x10/0x10
[  273.628403][T13078]  ? __fget_files+0x20e/0x3c0
[  273.628417][T13078]  ksys_read+0x12a/0x250
[  273.628426][T13078]  ? __pfx_ksys_read+0x10/0x10
[  273.628440][T13078]  do_syscall_64+0xcd/0xfa0
[  273.628450][T13078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.628461][T13078] RIP: 0033:0x7fd7b5f8e15c
[  273.628470][T13078] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  273.628479][T13078] RSP: 002b:00007fd7b41f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  273.628489][T13078] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8e15c
[  273.628496][T13078] RDX: 000000000000000f RSI: 00007fd7b41f60a0 RDI: 0000000000000004
[  273.628502][T13078] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  273.628508][T13078] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[  273.628513][T13078] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  273.628527][T13078]  </TASK>
[  273.692364][    C0] vkms_vblank_simulate: vblank timer overrun
[  273.734274][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  273.734285][   T40] audit: type=1400 audit(1763794726.710:506): avc:  denied  { listen } for  pid=13083 comm="syz.1.2479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  273.744203][   T40] audit: type=1400 audit(1763794726.710:507): avc:  denied  { accept } for  pid=13083 comm="syz.1.2479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  273.756682][   T53] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  273.766374][   T76] hsr_slave_0: left promiscuous mode
[  273.768822][   T76] batman_adv: batadv0: Removing interface: batadv_slave_0
[  273.772801][   T76] batman_adv: batadv0: Removing interface: batadv_slave_1
[  273.788110][ T5945] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[  273.793698][ T5945] CPU: 2 UID: 0 PID: 5945 Comm: kworker/u33:6 Not tainted syzkaller #0 PREEMPT(full) 
[  273.793714][ T5945] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  273.793721][ T5945] Workqueue: hci0 hci_rx_work
[  273.793735][ T5945] Call Trace:
[  273.793739][ T5945]  <TASK>
[  273.793744][ T5945]  dump_stack_lvl+0x16c/0x1f0
[  273.793762][ T5945]  sysfs_warn_dup+0x7f/0xa0
[  273.793779][ T5945]  sysfs_create_dir_ns+0x24b/0x2b0
[  273.793792][ T5945]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  273.793806][ T5945]  ? find_held_lock+0x2b/0x80
[  273.793822][ T5945]  ? do_raw_spin_unlock+0x172/0x230
[  273.793836][ T5945]  kobject_add_internal+0x2c4/0x9b0
[  273.793851][ T5945]  kobject_add+0x16e/0x240
[  273.793862][ T5945]  ? __pfx_kobject_add+0x10/0x10
[  273.793874][ T5945]  ? do_raw_spin_unlock+0x172/0x230
[  273.793885][ T5945]  ? kobject_put+0xab/0x5a0
[  273.793899][ T5945]  device_add+0x288/0x1aa0
[  273.793912][ T5945]  ? __pfx_dev_set_name+0x10/0x10
[  273.793926][ T5945]  ? __pfx_device_add+0x10/0x10
[  273.793938][ T5945]  ? mgmt_send_event_skb+0x2fb/0x460
[  273.793956][ T5945]  hci_conn_add_sysfs+0x17e/0x230
[  273.793967][ T5945]  le_conn_complete_evt+0x1260/0x2150
[  273.793984][ T5945]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  273.793999][ T5945]  ? hci_event_packet+0x459/0x11c0
[  273.794017][ T5945]  hci_le_conn_complete_evt+0x23c/0x370
[  273.794034][ T5945]  hci_le_meta_evt+0x357/0x5e0
[  273.794043][ T5945]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  273.794060][ T5945]  hci_event_packet+0x685/0x11c0
[  273.794074][ T5945]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  273.794084][ T5945]  ? __pfx_hci_event_packet+0x10/0x10
[  273.794100][ T5945]  ? kcov_remote_start+0x3c9/0x6d0
[  273.794113][ T5945]  ? lockdep_hardirqs_on+0x7c/0x110
[  273.794126][ T5945]  hci_rx_work+0x2c5/0x16b0
[  273.794135][ T5945]  ? rcu_is_watching+0x12/0xc0
[  273.794150][ T5945]  process_one_work+0x9cf/0x1b70
[  273.794166][ T5945]  ? __pfx_process_one_work+0x10/0x10
[  273.794181][ T5945]  ? assign_work+0x1a0/0x250
[  273.794192][ T5945]  worker_thread+0x6c8/0xf10
[  273.794208][ T5945]  ? __pfx_worker_thread+0x10/0x10
[  273.794220][ T5945]  kthread+0x3c5/0x780
[  273.794230][ T5945]  ? __pfx_kthread+0x10/0x10
[  273.794240][ T5945]  ? rcu_is_watching+0x12/0xc0
[  273.794252][ T5945]  ? __pfx_kthread+0x10/0x10
[  273.794263][ T5945]  ret_from_fork+0x675/0x7d0
[  273.794272][ T5945]  ? __pfx_kthread+0x10/0x10
[  273.794282][ T5945]  ret_from_fork_asm+0x1a/0x30
[  273.794302][ T5945]  </TASK>
[  273.794314][ T5945] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  273.812394][T13089] openvswitch: netlink: Tunnel attr 15060 out of range max 16
[  273.813942][ T5945] Bluetooth: hci0: failed to register connection device
[  273.915859][   T53] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  273.919083][   T53] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  273.925601][   T53] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  273.928910][   T53] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  273.933278][   T53] usb 5-1: Manufacturer: syz
[  273.979192][   T53] usb 5-1: config 0 descriptor??
[  274.016131][T13098] netlink: 'syz.1.2481': attribute type 11 has an invalid length.
[  274.019408][T13098] netlink: 'syz.1.2481': attribute type 13 has an invalid length.
[  274.041214][   T53] rc_core: IR keymap rc-hauppauge not found
[  274.043189][   T53] Registered IR keymap rc-empty
[  274.046825][   T53] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  274.050849][   T53] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input29
[  274.185790][T13067] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  274.191819][T13067] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  274.194758][T13067] FAULT_INJECTION: forcing a failure.
[  274.194758][T13067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.199063][T13067] CPU: 1 UID: 0 PID: 13067 Comm: syz.0.2476 Not tainted syzkaller #0 PREEMPT(full) 
[  274.199085][T13067] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.199096][T13067] Call Trace:
[  274.199102][T13067]  <TASK>
[  274.199108][T13067]  dump_stack_lvl+0x16c/0x1f0
[  274.199129][T13067]  should_fail_ex+0x512/0x640
[  274.199153][T13067]  _copy_from_user+0x2e/0xd0
[  274.199175][T13067]  evdev_handle_get_keycode_v2+0xb2/0x170
[  274.199199][T13067]  ? __pfx_evdev_handle_get_keycode_v2+0x10/0x10
[  274.199223][T13067]  ? __pfx___might_resched+0x10/0x10
[  274.199245][T13067]  ? rcu_is_watching+0x12/0xc0
[  274.199264][T13067]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  274.199287][T13067]  evdev_do_ioctl+0x440/0x1b30
[  274.199314][T13067]  ? __pfx_evdev_do_ioctl+0x10/0x10
[  274.199358][T13067]  evdev_ioctl+0x16f/0x1a0
[  274.199384][T13067]  ? __pfx_evdev_ioctl+0x10/0x10
[  274.199409][T13067]  __x64_sys_ioctl+0x18e/0x210
[  274.199435][T13067]  do_syscall_64+0xcd/0xfa0
[  274.199453][T13067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.199468][T13067] RIP: 0033:0x7f491978f749
[  274.199483][T13067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.199496][T13067] RSP: 002b:00007f491a5b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.199532][T13067] RAX: ffffffffffffffda RBX: 00007f49199e5fa0 RCX: 00007f491978f749
[  274.199539][T13067] RDX: 0000200000000040 RSI: 0000000080284504 RDI: 0000000000000004
[  274.199546][T13067] RBP: 00007f491a5b2090 R08: 0000000000000000 R09: 0000000000000000
[  274.199551][T13067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.199557][T13067] R13: 00007f49199e6038 R14: 00007f49199e5fa0 R15: 00007ffe17b730d8
[  274.199571][T13067]  </TASK>
[  274.264028][ T5986] usb 5-1: USB disconnect, device number 42
[  275.043391][T12994] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  275.058611][T12994] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  275.072538][T12994] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  275.077984][T12994] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  275.139671][T12994] 8021q: adding VLAN 0 to HW filter on device bond0
[  275.154358][T12994] 8021q: adding VLAN 0 to HW filter on device team0
[  275.160304][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.161896][ T5945] Bluetooth: hci3: command tx timeout
[  275.162498][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  275.173719][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.176091][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  275.201991][T12994] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  275.210496][T10400] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  275.223167][   T76] IPVS: stop unused estimator thread 0...
[  275.295080][T12994] 8021q: adding VLAN 0 to HW filter on device batadv0
[  275.316066][T12994] veth0_vlan: entered promiscuous mode
[  275.321450][T12994] veth1_vlan: entered promiscuous mode
[  275.336539][T12994] veth0_macvtap: entered promiscuous mode
[  275.340785][T12994] veth1_macvtap: entered promiscuous mode
[  275.352597][T12994] batman_adv: batadv0: Interface activated: batadv_slave_0
[  275.358731][T12994] batman_adv: batadv0: Interface activated: batadv_slave_1
[  275.365214][   T76] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  275.367873][   T76] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  275.372134][   T76] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  275.374808][   T76] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  275.380424][  T841] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  275.383699][T10400] usb 6-1: Using ep0 maxpacket: 8
[  275.391821][T10400] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  275.394375][T10400] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  275.398424][T10400] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  275.402251][T10400] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  275.406226][T10400] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  275.411099][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  275.411752][T10400] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  275.415096][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  275.417758][T10400] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.434370][   T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  275.436821][   T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  275.470791][T13141] fuse: Unknown parameter 'grou00000000000000000000'
[  275.510933][T13143] fuse: Unknown parameter '0x0000000000000003'
[  275.552229][  T841] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  275.555049][  T841] usb 5-1: config 1 has an invalid descriptor of length 121, skipping remainder of the config
[  275.558483][  T841] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  275.561651][  T841] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  275.568410][  T841] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  275.571943][  T841] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  275.574499][  T841] usb 5-1: Product: syz
[  275.575831][  T841] usb 5-1: Manufacturer: syz
[  275.582643][  T841] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  275.629444][T10400] usb 6-1: GET_CAPABILITIES returned 0
[  275.631542][T10400] usbtmc 6-1:16.0: can't read capabilities
[  275.780690][   T34] usb 8-1: new high-speed USB device number 47 using dummy_hcd
[  275.784629][T10347] usb 5-1: USB disconnect, device number 43
[  275.882210][T13112] usbtmc 6-1:16.0: usb_control_msg returned -71
[  275.882282][   T61] usb 6-1: USB disconnect, device number 33
[  275.930874][   T34] usb 8-1: Using ep0 maxpacket: 8
[  275.934270][   T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  275.936527][   T34] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  275.941527][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  275.944944][   T34] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  275.948523][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  275.952271][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  275.955760][   T34] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  275.960011][   T34] usb 8-1: config 168 interface 0 has no altsetting 0
[  275.963409][   T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  275.965752][   T34] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  275.969267][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  275.973776][   T34] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  275.977282][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  275.981144][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  275.984557][   T34] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  275.988507][   T34] usb 8-1: config 168 interface 0 has no altsetting 0
[  275.991710][   T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  275.994074][   T34] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  275.997421][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  276.001374][   T34] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  276.004902][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  276.008398][   T34] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  276.012540][   T34] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  276.016953][   T34] usb 8-1: config 168 interface 0 has no altsetting 0
[  276.022000][   T34] usb 8-1: string descriptor 0 read error: -22
[  276.024000][   T34] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  276.026707][   T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  276.038822][   T34] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  276.371058][T13148] binder: 13147:13148 unknown command 0
[  276.372975][T13148] binder: 13147:13148 ioctl c0306201 200000000080 returned -22
[  276.377606][T13148] binder: 13147:13148 ioctl c0306201 2000000001c0 returned -14
[  276.553181][T13155] netlink: 'syz.0.2492': attribute type 9 has an invalid length.
[  276.556757][T13155] netlink: 'syz.0.2492': attribute type 7 has an invalid length.
[  276.560520][T13155] netlink: 'syz.0.2492': attribute type 8 has an invalid length.
[  276.629212][T13162] binder: 13160:13162 ioctl c0306201 200000000300 returned -11
[  276.666581][T13166] netlink: 'syz.0.2498': attribute type 1 has an invalid length.
[  276.666803][T13167] fuse: Unknown parameter 'fd0x0000000000000003'
[  276.691216][T13166] 8021q: adding VLAN 0 to HW filter on device bond2
[  276.703197][T13171] netlink: 'syz.2.2499': attribute type 1 has an invalid length.
[  276.724390][T13171] 8021q: adding VLAN 0 to HW filter on device bond1
[  276.784160][T13171] veth3: entered promiscuous mode
[  276.793425][T13171] bond1: (slave veth3): Enslaving as an active interface with a down link
[  276.796674][T13180] __nla_validate_parse: 26 callbacks suppressed
[  276.796686][T13180] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2501'.
[  276.819432][T13171] vlan2: entered allmulticast mode
[  276.821816][T13171] bond1: entered allmulticast mode
[  276.824162][T13171] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  277.250483][ T5945] Bluetooth: hci3: command tx timeout
[  277.486594][T13193] binder: 13192:13193 ioctl c0306201 200000000300 returned -11
[  277.515151][T13195] binder: 13194:13195 unknown command 0
[  277.517238][T13195] binder: 13194:13195 ioctl c0306201 200000000080 returned -22
[  277.524341][T13195] binder: 13194:13195 ioctl c0306201 200000000300 returned -11
[  277.558530][T13197] netlink: 'syz.2.2508': attribute type 1 has an invalid length.
[  277.573898][T13197] 8021q: adding VLAN 0 to HW filter on device bond2
[  277.585176][T13197] bond2: (slave geneve2): making interface the new active one
[  277.588320][T13197] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  277.604827][   T40] audit: type=1400 audit(1763794730.580:508): avc:  denied  { mount } for  pid=13199 comm="syz.0.2509" name="/" dev="hugetlbfs" ino=59742 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  277.623981][T13200] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2509'.
[  277.639426][T13206] FAULT_INJECTION: forcing a failure.
[  277.639426][T13206] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  277.644591][T13206] CPU: 1 UID: 0 PID: 13206 Comm: syz.2.2510 Not tainted syzkaller #0 PREEMPT(full) 
[  277.644606][T13206] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  277.644613][T13206] Call Trace:
[  277.644617][T13206]  <TASK>
[  277.644621][T13206]  dump_stack_lvl+0x16c/0x1f0
[  277.644654][T13206]  should_fail_ex+0x512/0x640
[  277.644677][T13206]  _copy_to_user+0x32/0xd0
[  277.644700][T13206]  simple_read_from_buffer+0xcb/0x170
[  277.644727][T13206]  proc_fail_nth_read+0x197/0x240
[  277.644749][T13206]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  277.644765][T13206]  ? rw_verify_area+0xcf/0x6c0
[  277.644780][T13206]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  277.644791][T13206]  vfs_read+0x1e4/0xcf0
[  277.644803][T13206]  ? __pfx___mutex_lock+0x10/0x10
[  277.644814][T13206]  ? __pfx_vfs_read+0x10/0x10
[  277.644827][T13206]  ? __fget_files+0x20e/0x3c0
[  277.644841][T13206]  ksys_read+0x12a/0x250
[  277.644851][T13206]  ? __pfx_ksys_read+0x10/0x10
[  277.644864][T13206]  do_syscall_64+0xcd/0xfa0
[  277.644875][T13206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.644898][T13206] RIP: 0033:0x7f376dd8e15c
[  277.644908][T13206] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  277.644918][T13206] RSP: 002b:00007f376eb47030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  277.644928][T13206] RAX: ffffffffffffffda RBX: 00007f376dfe5fa0 RCX: 00007f376dd8e15c
[  277.644935][T13206] RDX: 000000000000000f RSI: 00007f376eb470a0 RDI: 0000000000000005
[  277.644941][T13206] RBP: 00007f376eb47090 R08: 0000000000000000 R09: 0000000000000000
[  277.644947][T13206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.644952][T13206] R13: 00007f376dfe6038 R14: 00007f376dfe5fa0 R15: 00007ffd4f62e468
[  277.644966][T13206]  </TASK>
[  277.878678][T13222] binder: 13221:13222 unknown command 0
[  277.881166][T13222] binder: 13221:13222 ioctl c0306201 200000000080 returned -22
[  277.886111][T13222] binder: 13221:13222 ioctl c0306201 200000000300 returned -11
[  278.010512][ T6025] usb 6-1: new low-speed USB device number 34 using dummy_hcd
[  278.182111][ T6025] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  278.185434][ T6025] usb 6-1: config 0 has no interface number 0
[  278.187967][ T6025] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  278.192481][ T6025] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  278.196608][ T6025] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  278.203773][ T6025] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  278.208149][ T6025] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  278.212640][ T6025] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  278.217753][ T6025] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  278.221427][ T6025] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.227719][ T6025] usb 6-1: config 0 descriptor??
[  278.230755][T13218] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  278.233800][T13218] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  278.239921][ T6025] ldusb 6-1:0.55: LD USB Device #1 now attached to major 180 minor 1
[  278.733105][T13231] binder: 13230:13231 ioctl c0306201 200000000300 returned -11
[  278.853317][T13238] FAULT_INJECTION: forcing a failure.
[  278.853317][T13238] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  278.857259][T13238] CPU: 1 UID: 0 PID: 13238 Comm: syz.0.2522 Not tainted syzkaller #0 PREEMPT(full) 
[  278.857273][T13238] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  278.857280][T13238] Call Trace:
[  278.857283][T13238]  <TASK>
[  278.857288][T13238]  dump_stack_lvl+0x16c/0x1f0
[  278.857302][T13238]  should_fail_ex+0x512/0x640
[  278.857317][T13238]  _copy_to_user+0x32/0xd0
[  278.857331][T13238]  kvm_vm_ioctl+0x1e74/0x3fd0
[  278.857348][T13238]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  278.857367][T13238]  ? kasan_quarantine_put+0x10a/0x240
[  278.857378][T13238]  ? lockdep_hardirqs_on+0x7c/0x110
[  278.857390][T13238]  ? find_held_lock+0x2b/0x80
[  278.857403][T13238]  ? tomoyo_path_number_perm+0x295/0x580
[  278.857416][T13238]  ? tomoyo_path_number_perm+0x18d/0x580
[  278.857427][T13238]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  278.857438][T13238]  ? find_held_lock+0x2b/0x80
[  278.857453][T13238]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  278.857467][T13238]  ? do_vfs_ioctl+0x128/0x14f0
[  278.857481][T13238]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  278.857496][T13238]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  278.857512][T13238]  ? hook_file_ioctl_common+0x145/0x410
[  278.857529][T13238]  ? selinux_file_ioctl+0x180/0x270
[  278.857540][T13238]  ? selinux_file_ioctl+0xb4/0x270
[  278.857552][T13238]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  278.857563][T13238]  __x64_sys_ioctl+0x18e/0x210
[  278.857578][T13238]  do_syscall_64+0xcd/0xfa0
[  278.857589][T13238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.857600][T13238] RIP: 0033:0x7f491978f749
[  278.857608][T13238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.857618][T13238] RSP: 002b:00007f491a5b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  278.857628][T13238] RAX: ffffffffffffffda RBX: 00007f49199e5fa0 RCX: 00007f491978f749
[  278.857635][T13238] RDX: 0000200000000000 RSI: 00000000c008ae67 RDI: 0000000000000004
[  278.857641][T13238] RBP: 00007f491a5b2090 R08: 0000000000000000 R09: 0000000000000000
[  278.857647][T13238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  278.857653][T13238] R13: 00007f49199e6038 R14: 00007f49199e5fa0 R15: 00007ffe17b730d8
[  278.857665][T13238]  </TASK>
[  278.988239][   T40] audit: type=1400 audit(1763794731.960:509): avc:  denied  { mount } for  pid=13242 comm="syz.2.2524" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  278.995307][   T40] audit: type=1400 audit(1763794731.960:510): avc:  denied  { mounton } for  pid=13242 comm="syz.2.2524" path="/64/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  279.002444][   T40] audit: type=1400 audit(1763794731.960:511): avc:  denied  { remount } for  pid=13242 comm="syz.2.2524" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  279.044346][T13246] syzkaller1: entered promiscuous mode
[  279.046972][T13246] syzkaller1: entered allmulticast mode
[  279.274864][   T40] audit: type=1400 audit(1763794732.250:512): avc:  denied  { unmount } for  pid=12501 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  279.299079][   T40] audit: type=1400 audit(1763794732.270:513): avc:  denied  { ioctl } for  pid=13248 comm="syz.2.2526" path="socket:[60853]" dev="sockfs" ino=60853 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  279.321477][ T5945] Bluetooth: hci3: command tx timeout
[  279.354184][   T40] audit: type=1400 audit(1763794732.330:514): avc:  denied  { create } for  pid=13250 comm="syz.0.2527" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  279.390225][T13253] binder: 13252:13253 ioctl c0306201 200000000300 returned -11
[  279.543884][T13260] Invalid logical block size (18)
[  279.864238][T13273] validate_nla: 1 callbacks suppressed
[  279.864255][T13273] netlink: 'syz.0.2534': attribute type 27 has an invalid length.
[  279.903188][T13273] bridge0: port 3(syz_tun) entered disabled state
[  279.994665][T13277] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=948558466 (15176935456 ns) > initial count (9158453856 ns). Using initial count to start timer.
[  280.050327][ T5940] Bluetooth: hci0: command 0x0406 tx timeout
[  280.164889][T13279] FAULT_INJECTION: forcing a failure.
[  280.164889][T13279] name failslab, interval 1, probability 0, space 0, times 0
[  280.169168][T13279] CPU: 3 UID: 0 PID: 13279 Comm: syz.0.2536 Not tainted syzkaller #0 PREEMPT(full) 
[  280.169182][T13279] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  280.169189][T13279] Call Trace:
[  280.169193][T13279]  <TASK>
[  280.169198][T13279]  dump_stack_lvl+0x16c/0x1f0
[  280.169212][T13279]  should_fail_ex+0x512/0x640
[  280.169225][T13279]  ? fs_reclaim_acquire+0xae/0x150
[  280.169239][T13279]  should_failslab+0xc2/0x120
[  280.169252][T13279]  __kmalloc_noprof+0xdd/0x880
[  280.169265][T13279]  ? kfree+0x252/0x6d0
[  280.169278][T13279]  ? __kernel_text_address+0xd/0x40
[  280.169290][T13279]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  280.169305][T13279]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  280.169317][T13279]  tomoyo_realpath_from_path+0xc2/0x6e0
[  280.169330][T13279]  ? tomoyo_profile+0x47/0x60
[  280.169345][T13279]  tomoyo_path_perm+0x274/0x460
[  280.169354][T13279]  ? tomoyo_path_perm+0x260/0x460
[  280.169364][T13279]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  280.169376][T13279]  ? register_lock_class+0x41/0x4c0
[  280.169398][T13279]  ? __pfx___mutex_trylock_common+0x10/0x10
[  280.169409][T13279]  ? __pfx___might_resched+0x10/0x10
[  280.169424][T13279]  security_inode_getattr+0x116/0x290
[  280.169436][T13279]  vfs_getattr+0x25/0x60
[  280.169450][T13279]  loop_query_min_dio_size.isra.0+0x117/0x250
[  280.169467][T13279]  ? __pfx_loop_query_min_dio_size.isra.0+0x10/0x10
[  280.169490][T13279]  ? filemap_write_and_wait_range+0x7d/0x130
[  280.169509][T13279]  loop_configure+0x854/0x15f0
[  280.169606][T13279]  ? stack_trace_save+0x8e/0xc0
[  280.169621][T13279]  ? __pfx_stack_trace_save+0x10/0x10
[  280.169635][T13279]  ? stack_depot_save_flags+0x29/0x9c0
[  280.169649][T13279]  ? __lock_acquire+0xb8a/0x1c90
[  280.169658][T13279]  ? __pfx_loop_configure+0x10/0x10
[  280.169685][T13279]  lo_ioctl+0x266/0x1cb0
[  280.169706][T13279]  ? __pfx_lo_ioctl+0x10/0x10
[  280.169720][T13279]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  280.169736][T13279]  ? kasan_quarantine_put+0x10a/0x240
[  280.169745][T13279]  ? lockdep_hardirqs_on+0x7c/0x110
[  280.169756][T13279]  ? blk_get_meta_cap+0xbc/0x700
[  280.169771][T13279]  ? __pfx_blk_get_meta_cap+0x10/0x10
[  280.169792][T13279]  ? blkdev_common_ioctl+0x1d6/0x2470
[  280.169825][T13279]  ? __pfx_lo_ioctl+0x10/0x10
[  280.169840][T13279]  blkdev_ioctl+0x277/0x6d0
[  280.169854][T13279]  ? __pfx_blkdev_ioctl+0x10/0x10
[  280.169868][T13279]  ? selinux_file_ioctl+0x180/0x270
[  280.169879][T13279]  ? selinux_file_ioctl+0xb4/0x270
[  280.169891][T13279]  ? __pfx_blkdev_ioctl+0x10/0x10
[  280.169906][T13279]  __x64_sys_ioctl+0x18e/0x210
[  280.169922][T13279]  do_syscall_64+0xcd/0xfa0
[  280.169934][T13279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.169945][T13279] RIP: 0033:0x7f491978f749
[  280.169953][T13279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.169963][T13279] RSP: 002b:00007f491a5b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  280.169973][T13279] RAX: ffffffffffffffda RBX: 00007f49199e5fa0 RCX: 00007f491978f749
[  280.169980][T13279] RDX: 00002000000002c0 RSI: 0000000000004c0a RDI: 0000000000000003
[  280.169985][T13279] RBP: 00007f491a5b2090 R08: 0000000000000000 R09: 0000000000000000
[  280.169991][T13279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.169997][T13279] R13: 00007f49199e6038 R14: 00007f49199e5fa0 R15: 00007ffe17b730d8
[  280.170010][T13279]  </TASK>
[  280.170015][T13279] ERROR: Out of memory at tomoyo_realpath_from_path.
[  280.296028][T13279] loop2: detected capacity change from 0 to 7
[  280.299951][ T5937]  loop2: p1
[  280.301299][ T5937] loop2: partition table partially beyond EOD, truncated
[  280.304075][ T5937] loop2: p1 size 1919251295 extends beyond EOD, truncated
[  280.310618][T13279]  loop2: p1
[  280.311940][T13279] loop2: partition table partially beyond EOD, truncated
[  280.314272][T13279] loop2: p1 size 1919251295 extends beyond EOD, truncated
[  280.337626][ T5937] udevd[5937]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  280.341719][T13282] binder: 13281:13282 unknown command 0
[  280.343503][T13282] binder: 13281:13282 ioctl c0306201 200000000080 returned -22
[  280.353015][T13283] kvm: user requested TSC rate below hardware speed
[  280.353288][ T5937] udevd[5937]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  280.365899][ T6025] usb 6-1: USB disconnect, device number 34
[  280.373333][T10400] usb 8-1: USB disconnect, device number 47
[  280.376058][ T6025] ldusb 6-1:0.55: LD USB Device #1 now disconnected
[  280.412951][T13287] netlink: 14 bytes leftover after parsing attributes in process `syz.3.2540'.
[  280.491831][T13287] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  280.498808][T13287] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  280.504851][T13287] bond0 (unregistering): Released all slaves
[  280.893965][T13305] binder: 13304:13305 unknown command 0
[  280.895819][T13305] binder: 13304:13305 ioctl c0306201 200000000080 returned -22
[  280.900876][T13305] binder: 13304:13305 ioctl c0306201 200000000300 returned -11
[  280.905883][T13301] FAULT_INJECTION: forcing a failure.
[  280.905883][T13301] name failslab, interval 1, probability 0, space 0, times 0
[  280.909731][T13301] CPU: 2 UID: 0 PID: 13301 Comm: syz.3.2544 Not tainted syzkaller #0 PREEMPT(full) 
[  280.909744][T13301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  280.909751][T13301] Call Trace:
[  280.909755][T13301]  <TASK>
[  280.909759][T13301]  dump_stack_lvl+0x16c/0x1f0
[  280.909773][T13301]  should_fail_ex+0x512/0x640
[  280.909785][T13301]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  280.909802][T13301]  should_failslab+0xc2/0x120
[  280.909815][T13301]  kmem_cache_alloc_node_noprof+0x78/0x770
[  280.909830][T13301]  ? __alloc_skb+0x2b2/0x380
[  280.909846][T13301]  ? __alloc_skb+0x2b2/0x380
[  280.909857][T13301]  ? __pfx_avc_has_perm+0x10/0x10
[  280.909870][T13301]  __alloc_skb+0x2b2/0x380
[  280.909883][T13301]  ? __pfx___alloc_skb+0x10/0x10
[  280.909895][T13301]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  280.909906][T13301]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  280.909920][T13301]  netlink_alloc_large_skb+0x69/0x140
[  280.909937][T13301]  netlink_sendmsg+0x698/0xdd0
[  280.909954][T13301]  ? __pfx_netlink_sendmsg+0x10/0x10
[  280.909973][T13301]  ____sys_sendmsg+0xa98/0xc70
[  280.909984][T13301]  ? copy_msghdr_from_user+0x10a/0x160
[  280.909998][T13301]  ? __pfx_____sys_sendmsg+0x10/0x10
[  280.910014][T13301]  ___sys_sendmsg+0x134/0x1d0
[  280.910029][T13301]  ? __pfx____sys_sendmsg+0x10/0x10
[  280.910041][T13301]  ? __lock_acquire+0x622/0x1c90
[  280.910066][T13301]  __sys_sendmsg+0x16d/0x220
[  280.910079][T13301]  ? __pfx___sys_sendmsg+0x10/0x10
[  280.910101][T13301]  do_syscall_64+0xcd/0xfa0
[  280.910112][T13301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.910123][T13301] RIP: 0033:0x7f5f3cb8f749
[  280.910131][T13301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.910141][T13301] RSP: 002b:00007f5f3d940038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  280.910151][T13301] RAX: ffffffffffffffda RBX: 00007f5f3cde5fa0 RCX: 00007f5f3cb8f749
[  280.910157][T13301] RDX: 0000000024000880 RSI: 00002000000000c0 RDI: 0000000000000004
[  280.910163][T13301] RBP: 00007f5f3d940090 R08: 0000000000000000 R09: 0000000000000000
[  280.910169][T13301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.910175][T13301] R13: 00007f5f3cde6038 R14: 00007f5f3cde5fa0 R15: 00007ffe044842a8
[  280.910188][T13301]  </TASK>
[  281.010021][T13312] binder: 13311:13312 unknown command 0
[  281.012056][T13312] binder: 13311:13312 ioctl c0306201 200000000080 returned -22
[  281.116207][T13317] FAULT_INJECTION: forcing a failure.
[  281.116207][T13317] name failslab, interval 1, probability 0, space 0, times 0
[  281.120199][T13317] CPU: 3 UID: 0 PID: 13317 Comm: syz.3.2549 Not tainted syzkaller #0 PREEMPT(full) 
[  281.120224][T13317] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.120242][T13317] Call Trace:
[  281.120246][T13317]  <TASK>
[  281.120251][T13317]  dump_stack_lvl+0x16c/0x1f0
[  281.120265][T13317]  should_fail_ex+0x512/0x640
[  281.120278][T13317]  ? fs_reclaim_acquire+0xae/0x150
[  281.120292][T13317]  should_failslab+0xc2/0x120
[  281.120304][T13317]  __kmalloc_noprof+0xdd/0x880
[  281.120320][T13317]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  281.120335][T13317]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  281.120347][T13317]  tomoyo_realpath_from_path+0xc2/0x6e0
[  281.120360][T13317]  ? tomoyo_profile+0x47/0x60
[  281.120375][T13317]  tomoyo_path_number_perm+0x245/0x580
[  281.120385][T13317]  ? tomoyo_path_number_perm+0x237/0x580
[  281.120396][T13317]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  281.120406][T13317]  ? find_held_lock+0x2b/0x80
[  281.120432][T13317]  ? find_held_lock+0x2b/0x80
[  281.120444][T13317]  ? hook_file_ioctl_common+0x145/0x410
[  281.120461][T13317]  ? __fget_files+0x20e/0x3c0
[  281.120474][T13317]  security_file_ioctl+0x9b/0x240
[  281.120487][T13317]  __x64_sys_ioctl+0xb7/0x210
[  281.120502][T13317]  do_syscall_64+0xcd/0xfa0
[  281.120513][T13317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.120524][T13317] RIP: 0033:0x7f5f3cb8f749
[  281.120533][T13317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.120543][T13317] RSP: 002b:00007f5f3adf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  281.120554][T13317] RAX: ffffffffffffffda RBX: 00007f5f3cde6090 RCX: 00007f5f3cb8f749
[  281.120560][T13317] RDX: 00002000000003c0 RSI: 000000004020ae46 RDI: 0000000000000004
[  281.120566][T13317] RBP: 00007f5f3adf6090 R08: 0000000000000000 R09: 0000000000000000
[  281.120572][T13317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.120577][T13317] R13: 00007f5f3cde6128 R14: 00007f5f3cde6090 R15: 00007ffe044842a8
[  281.120591][T13317]  </TASK>
[  281.185721][T13317] ERROR: Out of memory at tomoyo_realpath_from_path.
[  281.251609][T13321] FAULT_INJECTION: forcing a failure.
[  281.251609][T13321] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  281.255687][T13321] CPU: 2 UID: 0 PID: 13321 Comm: syz.2.2551 Not tainted syzkaller #0 PREEMPT(full) 
[  281.255701][T13321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.255707][T13321] Call Trace:
[  281.255712][T13321]  <TASK>
[  281.255716][T13321]  dump_stack_lvl+0x16c/0x1f0
[  281.255730][T13321]  should_fail_ex+0x512/0x640
[  281.255746][T13321]  _copy_to_user+0x32/0xd0
[  281.255761][T13321]  simple_read_from_buffer+0xcb/0x170
[  281.255778][T13321]  proc_fail_nth_read+0x197/0x240
[  281.255791][T13321]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  281.255807][T13321]  ? rw_verify_area+0xcf/0x6c0
[  281.255822][T13321]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  281.255834][T13321]  vfs_read+0x1e4/0xcf0
[  281.255846][T13321]  ? __pfx___mutex_lock+0x10/0x10
[  281.255860][T13321]  ? __pfx_vfs_read+0x10/0x10
[  281.255875][T13321]  ? __fget_files+0x20e/0x3c0
[  281.255892][T13321]  ksys_read+0x12a/0x250
[  281.255901][T13321]  ? __pfx_ksys_read+0x10/0x10
[  281.255910][T13321]  ? fput+0x9b/0xd0
[  281.255927][T13321]  do_syscall_64+0xcd/0xfa0
[  281.255943][T13321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.255956][T13321] RIP: 0033:0x7f376dd8e15c
[  281.255964][T13321] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  281.255974][T13321] RSP: 002b:00007f376eb47030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  281.255984][T13321] RAX: ffffffffffffffda RBX: 00007f376dfe5fa0 RCX: 00007f376dd8e15c
[  281.255990][T13321] RDX: 000000000000000f RSI: 00007f376eb470a0 RDI: 0000000000000006
[  281.255996][T13321] RBP: 00007f376eb47090 R08: 0000000000000000 R09: 0000000000000000
[  281.256002][T13321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.256008][T13321] R13: 00007f376dfe6038 R14: 00007f376dfe5fa0 R15: 00007ffd4f62e468
[  281.256021][T13321]  </TASK>
[  281.375982][T13328] binder: 13327:13328 unknown command 0
[  281.377872][T13328] binder: 13327:13328 ioctl c0306201 200000000080 returned -22
[  281.525140][T13337] bond3: Unable to set down delay as MII monitoring is disabled
[  281.528520][T13337] bond3 (unregistering): Released all slaves
[  281.580930][   T34] usb 8-1: new high-speed USB device number 48 using dummy_hcd
[  281.734615][   T34] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  281.738217][   T34] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  281.741702][   T34] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  281.744436][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.748657][T13326] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  281.760892][   T34] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  281.782816][T13357] binder: 13356:13357 unknown command 0
[  281.784768][T13357] binder: 13356:13357 ioctl c0306201 200000000080 returned -22
[  281.856898][T13361] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5123 sclass=netlink_route_socket pid=13361 comm=syz.2.2565
[  281.914340][T13364] Invalid logical block size (85)
[  281.966345][   T40] audit: type=1804 audit(1763794734.940:515): pid=13366 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.2568" name="/newroot/76/file0" dev="tmpfs" ino=434 res=1 errno=0
[  281.981436][T13366] ref_ctr increment failed for inode: 0x1b2 offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff8880356560c0
[  282.025195][   T40] audit: type=1804 audit(1763794735.000:516): pid=13367 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.2.2568" name="/newroot/76/file0" dev="tmpfs" ino=434 res=1 errno=0
[  282.049966][T13326] netlink: 'syz.3.2553': attribute type 10 has an invalid length.
[  282.052460][T13326] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2553'.
[  282.104142][ T5945] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  282.107195][ T5945] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  282.110541][ T5945] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  282.119743][ T5945] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  282.125134][ T5945] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  282.160049][T11638] syz_tun (unregistering): left allmulticast mode
[  282.162973][T11638] syz_tun (unregistering): left promiscuous mode
[  282.165970][T11638] bridge0: port 3(syz_tun) entered disabled state
[  282.289740][T13368] chnl_net:caif_netlink_parms(): no params data found
[  282.400346][  T841] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  282.406489][T13368] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.409231][T13368] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.412050][T13368] bridge_slave_0: entered allmulticast mode
[  282.414840][T13368] bridge_slave_0: entered promiscuous mode
[  282.418325][T13368] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.421201][T13368] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.423708][T13368] bridge_slave_1: entered allmulticast mode
[  282.426919][T13368] bridge_slave_1: entered promiscuous mode
[  282.466455][T13368] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  282.471529][T13368] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  282.472197][T13383] binder: 13382:13383 unknown command 0
[  282.476155][T13383] binder: 13382:13383 ioctl c0306201 200000000080 returned -22
[  282.480610][T13383] binder: 13382:13383 ioctl 4018620d 0 returned -22
[  282.483267][T13383] binder: 13382:13383 ioctl c0306201 200000000300 returned -11
[  282.505865][T13368] team0: Port device team_slave_0 added
[  282.509062][T13368] team0: Port device team_slave_1 added
[  282.511560][T13385] FAULT_INJECTION: forcing a failure.
[  282.511560][T13385] name failslab, interval 1, probability 0, space 0, times 0
[  282.511583][T13385] CPU: 2 UID: 0 PID: 13385 Comm: syz.1.2571 Not tainted syzkaller #0 PREEMPT(full) 
[  282.511595][T13385] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  282.511601][T13385] Call Trace:
[  282.511613][T13385]  <TASK>
[  282.511617][T13385]  dump_stack_lvl+0x16c/0x1f0
[  282.511641][T13385]  should_fail_ex+0x512/0x640
[  282.511660][T13385]  ? fs_reclaim_acquire+0xae/0x150
[  282.511674][T13385]  should_failslab+0xc2/0x120
[  282.511686][T13385]  __kmalloc_noprof+0xdd/0x880
[  282.511700][T13385]  ? tomoyo_encode2+0x100/0x3e0
[  282.511714][T13385]  ? tomoyo_encode2+0x100/0x3e0
[  282.511725][T13385]  tomoyo_encode2+0x100/0x3e0
[  282.511738][T13385]  tomoyo_encode+0x29/0x50
[  282.511749][T13385]  tomoyo_realpath_from_path+0x18f/0x6e0
[  282.511765][T13385]  tomoyo_path_perm+0x274/0x460
[  282.511774][T13385]  ? tomoyo_path_perm+0x260/0x460
[  282.511784][T13385]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  282.511796][T13385]  ? register_lock_class+0x41/0x4c0
[  282.511818][T13385]  ? __pfx___mutex_trylock_common+0x10/0x10
[  282.511829][T13385]  ? __pfx___might_resched+0x10/0x10
[  282.511845][T13385]  security_inode_getattr+0x116/0x290
[  282.511857][T13385]  vfs_getattr+0x25/0x60
[  282.511870][T13385]  loop_query_min_dio_size.isra.0+0x117/0x250
[  282.511886][T13385]  ? __pfx_loop_query_min_dio_size.isra.0+0x10/0x10
[  282.511909][T13385]  ? filemap_write_and_wait_range+0x7d/0x130
[  282.511929][T13385]  loop_configure+0x854/0x15f0
[  282.511947][T13385]  ? stack_trace_save+0x8e/0xc0
[  282.511961][T13385]  ? __pfx_stack_trace_save+0x10/0x10
[  282.511976][T13385]  ? stack_depot_save_flags+0x29/0x9c0
[  282.511990][T13385]  ? __lock_acquire+0xb8a/0x1c90
[  282.512000][T13385]  ? __pfx_loop_configure+0x10/0x10
[  282.512026][T13385]  lo_ioctl+0x266/0x1cb0
[  282.512043][T13385]  ? __pfx_lo_ioctl+0x10/0x10
[  282.512057][T13385]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  282.512072][T13385]  ? kasan_quarantine_put+0x10a/0x240
[  282.512082][T13385]  ? lockdep_hardirqs_on+0x7c/0x110
[  282.512093][T13385]  ? blk_get_meta_cap+0xbc/0x700
[  282.512109][T13385]  ? __pfx_blk_get_meta_cap+0x10/0x10
[  282.512127][T13385]  ? blkdev_common_ioctl+0x1d6/0x2470
[  282.512156][T13385]  ? __pfx_lo_ioctl+0x10/0x10
[  282.512171][T13385]  blkdev_ioctl+0x277/0x6d0
[  282.512185][T13385]  ? __pfx_blkdev_ioctl+0x10/0x10
[  282.512199][T13385]  ? selinux_file_ioctl+0x180/0x270
[  282.512210][T13385]  ? selinux_file_ioctl+0xb4/0x270
[  282.512222][T13385]  ? __pfx_blkdev_ioctl+0x10/0x10
[  282.512236][T13385]  __x64_sys_ioctl+0x18e/0x210
[  282.512252][T13385]  do_syscall_64+0xcd/0xfa0
[  282.512263][T13385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.512273][T13385] RIP: 0033:0x7fd7b5f8f749
[  282.512282][T13385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.512292][T13385] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  282.512301][T13385] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  282.512308][T13385] RDX: 00002000000002c0 RSI: 0000000000004c0a RDI: 0000000000000003
[  282.512314][T13385] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  282.512319][T13385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.512325][T13385] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  282.512338][T13385]  </TASK>
[  282.512348][T13385] ERROR: Out of memory at tomoyo_realpath_from_path.
[  282.551666][  T841] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  282.553491][T13385] loop9: detected capacity change from 0 to 7
[  282.554241][  T841] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  282.556807][T13385] Dev loop9: unable to read RDB block 7
[  282.560518][  T841] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  282.560694][T13385]  loop9: AHDI p4
[  282.562128][  T841] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  282.562139][  T841] usb 7-1: Manufacturer: syz
[  282.568182][  T841] usb 7-1: config 0 descriptor??
[  282.568780][T13385] loop9: partition table partially beyond EOD, 
[  282.610368][  T841] rc_core: IR keymap rc-hauppauge not found
[  282.612875][T13385] truncated
[  282.614989][  T841] Registered IR keymap rc-empty
[  282.616269][  T841] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  282.657570][  T841] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input30
[  282.663156][T13368] batman_adv: batadv0: Adding interface: batadv_slave_0
[  282.665467][T13368] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  282.673965][T13368] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  282.679232][T13368] batman_adv: batadv0: Adding interface: batadv_slave_1
[  282.681874][T13368] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  282.690156][T13368] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  282.752583][T13368] hsr_slave_0: entered promiscuous mode
[  282.755258][T13368] hsr_slave_1: entered promiscuous mode
[  282.757364][T13368] debugfs: 'hsr0' already exists in 'hsr'
[  282.759465][T13368] Cannot create hsr debugfs directory
[  283.100710][ T6025] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  283.222010][T13368] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  283.229297][T13368] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  283.236255][T13368] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  283.242613][T13368] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  283.253560][ T6025] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  283.256304][ T6025] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  283.260172][ T6025] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  283.263763][ T6025] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  283.266711][ T6025] usb 6-1: Manufacturer: syz
[  283.269880][ T6025] usb 6-1: config 0 descriptor??
[  283.297597][T13368] 8021q: adding VLAN 0 to HW filter on device bond0
[  283.308309][T13368] 8021q: adding VLAN 0 to HW filter on device team0
[  283.314132][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[  283.316368][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[  283.322545][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  283.324930][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  283.330768][ T6025] rc_core: IR keymap rc-hauppauge not found
[  283.332609][ T6025] Registered IR keymap rc-empty
[  283.335260][ T6025] rc rc1: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc1
[  283.339202][ T6025] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc1/input31
[  283.467886][T13368] 8021q: adding VLAN 0 to HW filter on device batadv0
[  283.474604][T13399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  283.477423][T13399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  283.480419][T13399] FAULT_INJECTION: forcing a failure.
[  283.480419][T13399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  283.485232][T13399] CPU: 3 UID: 0 PID: 13399 Comm: syz.1.2575 Not tainted syzkaller #0 PREEMPT(full) 
[  283.485259][T13399] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  283.485266][T13399] Call Trace:
[  283.485270][T13399]  <TASK>
[  283.485274][T13399]  dump_stack_lvl+0x16c/0x1f0
[  283.485288][T13399]  should_fail_ex+0x512/0x640
[  283.485304][T13399]  _copy_to_user+0x32/0xd0
[  283.485318][T13399]  evdev_handle_get_keycode_v2+0x147/0x170
[  283.485340][T13399]  ? __pfx_evdev_handle_get_keycode_v2+0x10/0x10
[  283.485358][T13399]  ? __pfx___might_resched+0x10/0x10
[  283.485372][T13399]  ? rcu_is_watching+0x12/0xc0
[  283.485385][T13399]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  283.485400][T13399]  evdev_do_ioctl+0x440/0x1b30
[  283.485417][T13399]  ? __pfx_evdev_do_ioctl+0x10/0x10
[  283.485442][T13399]  evdev_ioctl+0x16f/0x1a0
[  283.485457][T13399]  ? __pfx_evdev_ioctl+0x10/0x10
[  283.485472][T13399]  __x64_sys_ioctl+0x18e/0x210
[  283.485489][T13399]  do_syscall_64+0xcd/0xfa0
[  283.485500][T13399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.485511][T13399] RIP: 0033:0x7fd7b5f8f749
[  283.485520][T13399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.485530][T13399] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  283.485540][T13399] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  283.485547][T13399] RDX: 0000200000000040 RSI: 0000000080284504 RDI: 0000000000000004
[  283.485553][T13399] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  283.485559][T13399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.485565][T13399] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  283.485578][T13399]  </TASK>
[  283.486845][ T6025] usb 6-1: USB disconnect, device number 35
[  283.500991][T13368] veth0_vlan: entered promiscuous mode
[  283.550000][T13368] veth1_vlan: entered promiscuous mode
[  283.568727][T13368] veth0_macvtap: entered promiscuous mode
[  283.573865][T13368] veth1_macvtap: entered promiscuous mode
[  283.583658][T13368] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.591096][T13368] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.596854][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.599806][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.605025][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.608301][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.655841][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.658382][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.680484][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.682998][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.755012][T13419] syz.0.2576(13419): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  283.759557][T13419] binder: 13418:13419 ioctl c020f509 200000000200 returned -22
[  283.857644][T13423] binder: 13422:13423 unknown command 0
[  283.859694][T13423] binder: 13422:13423 ioctl c0306201 200000000080 returned -22
[  283.864777][T13423] binder: 13422:13423 ioctl c0306201 0 returned -14
[  283.974526][T13430] fuse: Bad value for 'fd'
[  284.032762][   T40] audit: type=1400 audit(1763794737.010:517): avc:  denied  { write } for  pid=13435 comm="syz.0.2583" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  284.035576][T13436] loop6: detected capacity change from 0 to 2640
[  284.043855][T13436] buffer_io_error: 7 callbacks suppressed
[  284.043863][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.048261][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.051031][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.053865][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.056349][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.058819][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.061770][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.064267][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.066701][T13436] ldm_validate_partition_table(): Disk read failed.
[  284.068673][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.071601][T13436] Buffer I/O error on dev loop6, logical block 0, async page read
[  284.074219][T13436] Dev loop6: unable to read RDB block 0
[  284.076209][T13436]  loop6: unable to read partition table
[  284.080615][T13436] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  284.128979][T13440] netlink: 14 bytes leftover after parsing attributes in process `syz.1.2585'.
[  284.138289][   T40] audit: type=1400 audit(1763794737.110:518): avc:  denied  { map } for  pid=13435 comm="syz.0.2583" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  284.210593][ T5940] Bluetooth: hci4: command tx timeout
[  284.284151][ T5345] ldm_validate_partition_table(): Disk read failed.
[  284.286535][ T5345] Dev loop6: unable to read RDB block 0
[  284.288587][ T5345]  loop6: unable to read partition table
[  284.315989][   T40] audit: type=1400 audit(1763794737.290:519): avc:  denied  { getopt } for  pid=13446 comm="syz.0.2587" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  284.337995][T13449] FAULT_INJECTION: forcing a failure.
[  284.337995][T13449] name failslab, interval 1, probability 0, space 0, times 0
[  284.342024][T13449] CPU: 1 UID: 0 PID: 13449 Comm: syz.1.2588 Not tainted syzkaller #0 PREEMPT(full) 
[  284.342038][T13449] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.342044][T13449] Call Trace:
[  284.342048][T13449]  <TASK>
[  284.342052][T13449]  dump_stack_lvl+0x16c/0x1f0
[  284.342066][T13449]  should_fail_ex+0x512/0x640
[  284.342079][T13449]  ? __kmalloc_cache_noprof+0x5f/0x780
[  284.342095][T13449]  should_failslab+0xc2/0x120
[  284.342107][T13449]  __kmalloc_cache_noprof+0x72/0x780
[  284.342122][T13449]  ? kvm_set_memslot+0x5af/0x1380
[  284.342139][T13449]  ? kvm_set_memslot+0x5af/0x1380
[  284.342152][T13449]  kvm_set_memslot+0x5af/0x1380
[  284.342168][T13449]  kvm_set_memory_region+0x14c2/0x1610
[  284.342186][T13449]  ? __pfx_kvm_set_memory_region+0x10/0x10
[  284.342204][T13449]  kvm_vm_ioctl+0x151b/0x3fd0
[  284.342220][T13449]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  284.342239][T13449]  ? kasan_quarantine_put+0x10a/0x240
[  284.342249][T13449]  ? lockdep_hardirqs_on+0x7c/0x110
[  284.342263][T13449]  ? find_held_lock+0x2b/0x80
[  284.342282][T13449]  ? tomoyo_path_number_perm+0x295/0x580
[  284.342301][T13449]  ? tomoyo_path_number_perm+0x18d/0x580
[  284.342321][T13449]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  284.342337][T13449]  ? find_held_lock+0x2b/0x80
[  284.342366][T13449]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  284.342402][T13449]  ? hook_file_ioctl_common+0x145/0x410
[  284.342431][T13449]  ? selinux_file_ioctl+0x180/0x270
[  284.342450][T13449]  ? selinux_file_ioctl+0xb4/0x270
[  284.342471][T13449]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  284.342491][T13449]  __x64_sys_ioctl+0x18e/0x210
[  284.342516][T13449]  do_syscall_64+0xcd/0xfa0
[  284.342535][T13449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.342553][T13449] RIP: 0033:0x7fd7b5f8f749
[  284.342567][T13449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.342582][T13449] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  284.342599][T13449] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  284.342609][T13449] RDX: 00002000000003c0 RSI: 000000004020ae46 RDI: 0000000000000004
[  284.342619][T13449] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  284.342629][T13449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.342639][T13449] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  284.342663][T13449]  </TASK>
[  284.427634][  T129] usb 8-1: USB disconnect, device number 48
[  284.619526][T13459] program syz.0.2592 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  284.653533][T13463] FAULT_INJECTION: forcing a failure.
[  284.653533][T13463] name failslab, interval 1, probability 0, space 0, times 0
[  284.658040][T13463] CPU: 3 UID: 0 PID: 13463 Comm: syz.1.2593 Not tainted syzkaller #0 PREEMPT(full) 
[  284.658054][T13463] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.658060][T13463] Call Trace:
[  284.658065][T13463]  <TASK>
[  284.658069][T13463]  dump_stack_lvl+0x16c/0x1f0
[  284.658084][T13463]  should_fail_ex+0x512/0x640
[  284.658097][T13463]  ? __kmalloc_noprof+0xca/0x880
[  284.658113][T13463]  should_failslab+0xc2/0x120
[  284.658125][T13463]  __kmalloc_noprof+0xdd/0x880
[  284.658140][T13463]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  284.658155][T13463]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  284.658165][T13463]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  284.658186][T13463]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  284.658205][T13463]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  284.658226][T13463]  ? bpf_lsm_capable+0x9/0x10
[  284.658238][T13463]  ? security_capable+0x7e/0x260
[  284.658254][T13463]  ? ns_capable+0xd7/0x110
[  284.658268][T13463]  genl_rcv_msg+0x55c/0x800
[  284.658279][T13463]  ? __pfx_genl_rcv_msg+0x10/0x10
[  284.658290][T13463]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  284.658307][T13463]  ? __lock_acquire+0x622/0x1c90
[  284.658319][T13463]  netlink_rcv_skb+0x158/0x420
[  284.658338][T13463]  ? __pfx_genl_rcv_msg+0x10/0x10
[  284.658349][T13463]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  284.658369][T13463]  ? netlink_deliver_tap+0x1ae/0xd30
[  284.658385][T13463]  genl_rcv+0x28/0x40
[  284.658394][T13463]  netlink_unicast+0x5aa/0x870
[  284.658411][T13463]  ? __pfx_netlink_unicast+0x10/0x10
[  284.658430][T13463]  netlink_sendmsg+0x8c8/0xdd0
[  284.658447][T13463]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.658467][T13463]  ____sys_sendmsg+0xa98/0xc70
[  284.658478][T13463]  ? copy_msghdr_from_user+0x10a/0x160
[  284.658491][T13463]  ? __pfx_____sys_sendmsg+0x10/0x10
[  284.658507][T13463]  ___sys_sendmsg+0x134/0x1d0
[  284.658522][T13463]  ? __pfx____sys_sendmsg+0x10/0x10
[  284.658535][T13463]  ? __lock_acquire+0x622/0x1c90
[  284.658558][T13463]  __sys_sendmsg+0x16d/0x220
[  284.658572][T13463]  ? __pfx___sys_sendmsg+0x10/0x10
[  284.658595][T13463]  do_syscall_64+0xcd/0xfa0
[  284.658607][T13463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.658618][T13463] RIP: 0033:0x7fd7b5f8f749
[  284.658626][T13463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.658636][T13463] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  284.658646][T13463] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  284.658653][T13463] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000003
[  284.658658][T13463] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  284.658664][T13463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.658670][T13463] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  284.658683][T13463]  </TASK>
[  284.779739][T13465] netlink: 14 bytes leftover after parsing attributes in process `syz.1.2594'.
[  284.922796][   T40] audit: type=1400 audit(1763794737.900:520): avc:  denied  { create } for  pid=13468 comm="syz.1.2596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  284.928938][   T40] audit: type=1400 audit(1763794737.900:521): avc:  denied  { write } for  pid=13468 comm="syz.1.2596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  284.935213][   T40] audit: type=1400 audit(1763794737.900:522): avc:  denied  { read } for  pid=13468 comm="syz.1.2596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  284.947388][   T40] audit: type=1400 audit(1763794737.920:523): avc:  denied  { getopt } for  pid=13470 comm="syz.0.2597" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  284.952653][T13471] vlan2: entered promiscuous mode
[  284.954559][T13471] bridge0: entered promiscuous mode
[  284.968848][T13474] FAULT_INJECTION: forcing a failure.
[  284.968848][T13474] name failslab, interval 1, probability 0, space 0, times 0
[  284.974776][T13474] CPU: 3 UID: 0 PID: 13474 Comm: syz.1.2598 Not tainted syzkaller #0 PREEMPT(full) 
[  284.974799][T13474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.974808][T13474] Call Trace:
[  284.974814][T13474]  <TASK>
[  284.974833][T13474]  dump_stack_lvl+0x16c/0x1f0
[  284.974855][T13474]  should_fail_ex+0x512/0x640
[  284.974874][T13474]  ? __kmalloc_cache_noprof+0x5f/0x780
[  284.974899][T13474]  should_failslab+0xc2/0x120
[  284.974920][T13474]  __kmalloc_cache_noprof+0x72/0x780
[  284.974942][T13474]  ? qfq_change_class+0x2ba/0x1ec0
[  284.974966][T13474]  ? __nla_parse+0x40/0x60
[  284.974991][T13474]  ? qfq_change_class+0x2ba/0x1ec0
[  284.975015][T13474]  qfq_change_class+0x2ba/0x1ec0
[  284.975037][T13474]  ? __pfx___nla_validate_parse+0x10/0x10
[  284.975064][T13474]  ? __pfx_qfq_change_class+0x10/0x10
[  284.975090][T13474]  ? qdisc_match_from_root+0x16f/0x260
[  284.975117][T13474]  ? __pfx_qfq_change_class+0x10/0x10
[  284.975140][T13474]  tc_ctl_tclass+0x59d/0x16c0
[  284.975162][T13474]  ? __pfx_tc_ctl_tclass+0x10/0x10
[  284.975178][T13474]  ? trace_contention_end+0xdd/0x130
[  284.975195][T13474]  ? __mutex_lock+0x1c5/0x1060
[  284.975212][T13474]  ? __lock_acquire+0x622/0x1c90
[  284.975243][T13474]  ? __pfx_tc_ctl_tclass+0x10/0x10
[  284.975262][T13474]  rtnetlink_rcv_msg+0x3c9/0xe90
[  284.975286][T13474]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  284.975313][T13474]  ? __lock_acquire+0x622/0x1c90
[  284.975333][T13474]  netlink_rcv_skb+0x158/0x420
[  284.975362][T13474]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  284.975386][T13474]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  284.975438][T13474]  ? netlink_deliver_tap+0x1ae/0xd30
[  284.975466][T13474]  netlink_unicast+0x5aa/0x870
[  284.975493][T13474]  ? __pfx_netlink_unicast+0x10/0x10
[  284.975525][T13474]  netlink_sendmsg+0x8c8/0xdd0
[  284.975552][T13474]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.975583][T13474]  ____sys_sendmsg+0xa98/0xc70
[  284.975600][T13474]  ? copy_msghdr_from_user+0x10a/0x160
[  284.975622][T13474]  ? __pfx_____sys_sendmsg+0x10/0x10
[  284.975649][T13474]  ___sys_sendmsg+0x134/0x1d0
[  284.975671][T13474]  ? __pfx____sys_sendmsg+0x10/0x10
[  284.975690][T13474]  ? __lock_acquire+0x622/0x1c90
[  284.975731][T13474]  __sys_sendmsg+0x16d/0x220
[  284.975753][T13474]  ? __pfx___sys_sendmsg+0x10/0x10
[  284.975788][T13474]  do_syscall_64+0xcd/0xfa0
[  284.975807][T13474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.975822][T13474] RIP: 0033:0x7fd7b5f8f749
[  284.975836][T13474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.975850][T13474] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  284.975866][T13474] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  284.975876][T13474] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[  284.975885][T13474] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  284.975893][T13474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.975904][T13474] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  284.975924][T13474]  </TASK>
[  285.168960][T10347] usb 7-1: USB disconnect, device number 36
[  285.203819][T13483] netlink: 'syz.1.2602': attribute type 1 has an invalid length.
[  285.218754][T13483] 8021q: adding VLAN 0 to HW filter on device bond2
[  285.231006][T13483] bond2: (slave geneve2): making interface the new active one
[  285.234224][T13483] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  285.236885][   T59] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  285.242284][   T59] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  285.246080][   T59] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  285.249246][   T59] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  285.290329][  T129] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[  285.322830][T13490] binder: 13489:13490 unknown command 0
[  285.324584][T13490] binder: 13489:13490 ioctl c0306201 200000000080 returned -22
[  285.328055][T13490] binder: 13489:13490 ioctl c0306201 0 returned -14
[  285.355370][T13493] syzkaller1: entered promiscuous mode
[  285.357154][T13493] syzkaller1: entered allmulticast mode
[  285.360508][T13493] FAULT_INJECTION: forcing a failure.
[  285.360508][T13493] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  285.362306][T13494] FAULT_INJECTION: forcing a failure.
[  285.362306][T13494] name failslab, interval 1, probability 0, space 0, times 0
[  285.364692][T13493] CPU: 0 UID: 0 PID: 13493 Comm: syz.3.2606 Not tainted syzkaller #0 PREEMPT(full) 
[  285.364706][T13493] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.364712][T13493] Call Trace:
[  285.364716][T13493]  <TASK>
[  285.364720][T13493]  dump_stack_lvl+0x16c/0x1f0
[  285.364734][T13493]  should_fail_ex+0x512/0x640
[  285.364749][T13493]  should_fail_alloc_page+0xe7/0x130
[  285.364763][T13493]  prepare_alloc_pages+0x3c2/0x610
[  285.364777][T13493]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  285.364799][T13493]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  285.364820][T13493]  ? rcu_is_watching+0x12/0xc0
[  285.364833][T13493]  ? trace_kmem_cache_alloc+0x28/0xc0
[  285.364845][T13493]  ? kmem_cache_alloc_node_noprof+0x2d8/0x770
[  285.364861][T13493]  ? kmalloc_reserve+0x18b/0x2c0
[  285.364871][T13493]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  285.364886][T13493]  ? policy_nodemask+0xea/0x4e0
[  285.364899][T13493]  alloc_pages_mpol+0x1fb/0x550
[  285.364912][T13493]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  285.364922][T13493]  ? __pfx___alloc_skb+0x10/0x10
[  285.364939][T13493]  alloc_pages_noprof+0x131/0x390
[  285.364951][T13493]  alloc_skb_with_frags+0x24a/0x860
[  285.364967][T13493]  ? __might_fault+0xe3/0x190
[  285.364982][T13493]  ? __might_fault+0x13b/0x190
[  285.364998][T13493]  sock_alloc_send_pskb+0x7f9/0x980
[  285.365011][T13493]  ? _copy_from_iter+0x15d/0x1720
[  285.365027][T13493]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  285.365040][T13493]  ? _parse_integer_limit+0x17f/0x1d0
[  285.365057][T13493]  ? iov_iter_advance+0x7d/0x6c0
[  285.365071][T13493]  tun_get_user+0x7e2/0x3cc0
[  285.365092][T13493]  ? __pfx_tun_get_user+0x10/0x10
[  285.365107][T13493]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  285.365124][T13493]  ? find_held_lock+0x2b/0x80
[  285.365137][T13493]  ? tun_get+0x191/0x370
[  285.365153][T13493]  tun_chr_write_iter+0xdc/0x210
[  285.365168][T13493]  vfs_write+0x7d3/0x11d0
[  285.365179][T13493]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  285.365194][T13493]  ? __pfx_vfs_write+0x10/0x10
[  285.365203][T13493]  ? find_held_lock+0x2b/0x80
[  285.365223][T13493]  ksys_write+0x12a/0x250
[  285.365232][T13493]  ? __pfx_ksys_write+0x10/0x10
[  285.365245][T13493]  do_syscall_64+0xcd/0xfa0
[  285.365256][T13493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.365266][T13493] RIP: 0033:0x7f5f3cb8f749
[  285.365275][T13493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.365285][T13493] RSP: 002b:00007f5f3d940038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  285.365295][T13493] RAX: ffffffffffffffda RBX: 00007f5f3cde5fa0 RCX: 00007f5f3cb8f749
[  285.365301][T13493] RDX: 0000000000000fce RSI: 0000200000001240 RDI: 0000000000000003
[  285.365307][T13493] RBP: 00007f5f3d940090 R08: 0000000000000000 R09: 0000000000000000
[  285.365313][T13493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  285.365319][T13493] R13: 00007f5f3cde6038 R14: 00007f5f3cde5fa0 R15: 00007ffe044842a8
[  285.365331][T13493]  </TASK>
[  285.451571][  T129] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  285.454362][T13494] CPU: 3 UID: 0 PID: 13494 Comm: syz.1.2605 Not tainted syzkaller #0 PREEMPT(full) 
[  285.454376][T13494] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.454383][T13494] Call Trace:
[  285.454387][T13494]  <TASK>
[  285.454391][T13494]  dump_stack_lvl+0x16c/0x1f0
[  285.454406][T13494]  should_fail_ex+0x512/0x640
[  285.454418][T13494]  ? __kmalloc_cache_noprof+0x5f/0x780
[  285.454435][T13494]  should_failslab+0xc2/0x120
[  285.454448][T13494]  __kmalloc_cache_noprof+0x72/0x780
[  285.454463][T13494]  ? qfq_change_class+0xcf9/0x1ec0
[  285.454481][T13494]  ? qfq_change_class+0xcf9/0x1ec0
[  285.454496][T13494]  qfq_change_class+0xcf9/0x1ec0
[  285.454514][T13494]  ? __pfx_qfq_change_class+0x10/0x10
[  285.454531][T13494]  ? qdisc_match_from_root+0x16f/0x260
[  285.454548][T13494]  ? __pfx_qfq_change_class+0x10/0x10
[  285.454563][T13494]  tc_ctl_tclass+0x59d/0x16c0
[  285.454576][T13494]  ? __pfx_tc_ctl_tclass+0x10/0x10
[  285.454587][T13494]  ? trace_contention_end+0xdd/0x130
[  285.454598][T13494]  ? __mutex_lock+0x1c5/0x1060
[  285.454609][T13494]  ? __lock_acquire+0x622/0x1c90
[  285.454633][T13494]  ? __pfx_tc_ctl_tclass+0x10/0x10
[  285.454644][T13494]  rtnetlink_rcv_msg+0x3c9/0xe90
[  285.454660][T13494]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  285.454677][T13494]  ? __lock_acquire+0x622/0x1c90
[  285.454688][T13494]  netlink_rcv_skb+0x158/0x420
[  285.454704][T13494]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  285.454719][T13494]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  285.454739][T13494]  ? netlink_deliver_tap+0x1ae/0xd30
[  285.454756][T13494]  netlink_unicast+0x5aa/0x870
[  285.454772][T13494]  ? __pfx_netlink_unicast+0x10/0x10
[  285.454792][T13494]  netlink_sendmsg+0x8c8/0xdd0
[  285.454809][T13494]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.454829][T13494]  ____sys_sendmsg+0xa98/0xc70
[  285.454840][T13494]  ? copy_msghdr_from_user+0x10a/0x160
[  285.454854][T13494]  ? __pfx_____sys_sendmsg+0x10/0x10
[  285.454870][T13494]  ___sys_sendmsg+0x134/0x1d0
[  285.454884][T13494]  ? __pfx____sys_sendmsg+0x10/0x10
[  285.454897][T13494]  ? __lock_acquire+0x622/0x1c90
[  285.454921][T13494]  __sys_sendmsg+0x16d/0x220
[  285.454935][T13494]  ? __pfx___sys_sendmsg+0x10/0x10
[  285.454957][T13494]  do_syscall_64+0xcd/0xfa0
[  285.454967][T13494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.454978][T13494] RIP: 0033:0x7fd7b5f8f749
[  285.454986][T13494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.454996][T13494] RSP: 002b:00007fd7b41f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  285.455006][T13494] RAX: ffffffffffffffda RBX: 00007fd7b61e5fa0 RCX: 00007fd7b5f8f749
[  285.455012][T13494] RDX: 0000000000000040 RSI: 0000200000000000 RDI: 0000000000000008
[  285.455018][T13494] RBP: 00007fd7b41f6090 R08: 0000000000000000 R09: 0000000000000000
[  285.455024][T13494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  285.455030][T13494] R13: 00007fd7b61e6038 R14: 00007fd7b61e5fa0 R15: 00007ffcd05aa0c8
[  285.455043][T13494]  </TASK>
[  285.565983][  T129] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  285.569147][  T129] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  285.572030][  T129] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  285.577348][  T129] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  285.580101][  T129] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  285.582733][  T129] usb 5-1: Product: syz
[  285.584082][  T129] usb 5-1: Manufacturer: syz
[  285.584318][T13492] ==================================================================
[  285.588665][  T129] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  285.588763][T13492] BUG: KASAN: slab-use-after-free in qfq_reset_qdisc+0x323/0x420
[  285.594394][T13492] Read of size 8 at addr ffff8880523f9950 by task syz.1.2605/13492
[  285.599047][T13492] 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  285.600052][T13492] CPU: 3 UID: 0 PID: 13492 Comm: syz.1.2605 Not tainted syzkaller #0 PREEMPT(full) 
[  285.600072][T13492] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.600082][T13492] Call Trace:
[  285.600088][T13492]  <TASK>
[  285.600095][T13492]  dump_stack_lvl+0x116/0x1f0
[  285.600115][T13492]  print_report+0xcd/0x630
[  285.600134][T13492]  ? __virt_addr_valid+0x81/0x610
[  285.600156][T13492]  ? __phys_addr+0xe8/0x180
[  285.600187][T13492]  ? qfq_reset_qdisc+0x323/0x420
[  285.600209][T13492]  kasan_report+0xe0/0x110
[  285.600228][T13492]  ? qfq_reset_qdisc+0x323/0x420
[  285.600252][T13492]  qfq_reset_qdisc+0x323/0x420
[  285.600275][T13492]  ? synchronize_rcu_expedited+0x3b9/0x460
[  285.600293][T13492]  ? __pfx_qfq_reset_qdisc+0x10/0x10
[  285.600316][T13492]  qdisc_reset+0xe0/0x660
[  285.600336][T13492]  __qdisc_destroy+0xd3/0x4d0
[  285.600355][T13492]  qdisc_put+0xab/0xe0
[  285.600375][T13492]  dev_shutdown+0x1d0/0x430
[  285.600396][T13492]  unregister_netdevice_many_notify+0xb12/0x25c0
[  285.600422][T13492]  ? do_raw_spin_unlock+0x172/0x230
[  285.600441][T13492]  ? ref_tracker_alloc+0x305/0x5b0
[  285.600462][T13492]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  285.600486][T13492]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  285.600504][T13492]  ? linkwatch_fire_event+0x20c/0x270
[  285.600521][T13492]  ? netif_carrier_off+0xa3/0xc0
[  285.600542][T13492]  unregister_netdevice_queue+0x305/0x3f0
[  285.600564][T13492]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  285.600592][T13492]  ? linkwatch_schedule_work+0x181/0x1c0
[  285.600611][T13492]  ? linkwatch_fire_event+0x6f/0x270
[  285.600627][T13492]  __tun_detach+0x119c/0x1490
[  285.600651][T13492]  ? __pfx_tun_chr_close+0x10/0x10
[  285.600670][T13492]  tun_chr_close+0xc2/0x230
[  285.600687][T13492]  __fput+0x402/0xb70
[  285.600711][T13492]  task_work_run+0x150/0x240
[  285.600730][T13492]  ? __pfx_task_work_run+0x10/0x10
[  285.600747][T13492]  ? __pfx___do_sys_close_range+0x10/0x10
[  285.600768][T13492]  exit_to_user_mode_loop+0xec/0x130
[  285.600788][T13492]  do_syscall_64+0x426/0xfa0
[  285.600805][T13492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.600822][T13492] RIP: 0033:0x7fd7b5f8f749
[  285.600836][T13492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.600849][T13492] RSP: 002b:00007ffcd05aa228 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  285.600862][T13492] RAX: 0000000000000000 RBX: 00007fd7b61e7da0 RCX: 00007fd7b5f8f749
[  285.600870][T13492] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  285.600878][T13492] RBP: 00007fd7b61e7da0 R08: 0000000000000000 R09: 0000000ed05aa51f
[  285.600885][T13492] R10: 000000000003fd70 R11: 0000000000000246 R12: 0000000000045d82
[  285.600894][T13492] R13: 00007ffcd05aa320 R14: ffffffffffffffff R15: 00007ffcd05aa340
[  285.600909][T13492]  </TASK>
[  285.600914][T13492] 
[  285.713355][T13492] Allocated by task 13494:
[  285.715167][T13492]  kasan_save_stack+0x33/0x60
[  285.717063][T13492]  kasan_save_track+0x14/0x30
[  285.719081][T13492]  __kasan_kmalloc+0xaa/0xb0
[  285.721054][T13492]  qfq_change_class+0x2ba/0x1ec0
[  285.723082][T13492]  tc_ctl_tclass+0x59d/0x16c0
[  285.724974][T13492]  rtnetlink_rcv_msg+0x3c9/0xe90
[  285.726973][T13492]  netlink_rcv_skb+0x158/0x420
[  285.728894][T13492]  netlink_unicast+0x5aa/0x870
[  285.730865][T13492]  netlink_sendmsg+0x8c8/0xdd0
[  285.732798][T13492]  ____sys_sendmsg+0xa98/0xc70
[  285.734632][T13492]  ___sys_sendmsg+0x134/0x1d0
[  285.736471][T13492]  __sys_sendmsg+0x16d/0x220
[  285.738329][T13492]  do_syscall_64+0xcd/0xfa0
[  285.740135][T13492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.742420][T13492] 
[  285.743394][T13492] Freed by task 13494:
[  285.744779][T13492]  kasan_save_stack+0x33/0x60
[  285.746205][T13492]  kasan_save_track+0x14/0x30
[  285.747652][T13492]  __kasan_save_free_info+0x3b/0x60
[  285.749242][T13492]  __kasan_slab_free+0x5f/0x80
[  285.750703][T13492]  kfree+0x2b8/0x6d0
[  285.751916][T13492]  qfq_change_class+0x1577/0x1ec0
[  285.753438][T13492]  tc_ctl_tclass+0x59d/0x16c0
[  285.754838][T13492]  rtnetlink_rcv_msg+0x3c9/0xe90
[  285.756693][T13492]  netlink_rcv_skb+0x158/0x420
[  285.758544][T13492]  netlink_unicast+0x5aa/0x870
[  285.760408][T13492]  netlink_sendmsg+0x8c8/0xdd0
[  285.761919][T13492]  ____sys_sendmsg+0xa98/0xc70
[  285.763612][T13492]  ___sys_sendmsg+0x134/0x1d0
[  285.765287][T13492]  __sys_sendmsg+0x16d/0x220
[  285.766899][T13492]  do_syscall_64+0xcd/0xfa0
[  285.768523][T13492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.770200][T13492] 
[  285.770932][T13492] The buggy address belongs to the object at ffff8880523f9900
[  285.770932][T13492]  which belongs to the cache kmalloc-128 of size 128
[  285.775003][T13492] The buggy address is located 80 bytes inside of
[  285.775003][T13492]  freed 128-byte region [ffff8880523f9900, ffff8880523f9980)
[  285.778991][T13492] 
[  285.779765][T13492] The buggy address belongs to the physical page:
[  285.781700][T13492] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x523f9
[  285.784319][T13492] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  285.786426][T13492] page_type: f5(slab)
[  285.787634][T13492] raw: 00fff00000000000 ffff88801b442a00 ffffea0001490540 dead000000000004
[  285.790150][T13492] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  285.792677][T13492] page dumped because: kasan: bad access detected
[  285.794597][T13492] page_owner tracks the page as allocated
[  285.795931][  T129] usb 5-1: USB disconnect, device number 44
[  285.796298][T13492] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6020, tgid 6019 (syz.0.1), ts 49986783818, free_ts 49986757307
[  285.796318][T13492]  post_alloc_hook+0x1af/0x220
[  285.796338][T13492]  get_page_from_freelist+0x10a3/0x3a30
[  285.807421][T13492]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  285.809285][T13492]  alloc_pages_mpol+0x1fb/0x550
[  285.810962][T13492]  new_slab+0x24a/0x360
[  285.812215][T13492]  ___slab_alloc+0xd79/0x1a50
[  285.813629][T13492]  __slab_alloc.constprop.0+0x63/0x110
[  285.815267][T13492]  __kmalloc_cache_noprof+0x477/0x780
[  285.816881][T13492]  __hw_addr_add_ex+0x3c9/0x7c0
[  285.818314][T13492]  dev_addr_init+0x161/0x250
[  285.819843][T13492]  alloc_netdev_mqs+0x363/0x1550
[  285.821666][T13492]  ip6_tnl_init_net+0xf5/0x4d0
[  285.823300][T13492]  ops_init+0x1e2/0x5f0
[  285.824571][T13492]  setup_net+0x100/0x390
[  285.825866][T13492]  copy_net_ns+0x2f8/0x690
[  285.827190][T13492]  create_new_namespaces+0x3ea/0xa90
[  285.828766][T13492] page last free pid 6020 tgid 6019 stack trace:
[  285.830651][T13492]  __free_frozen_pages+0x7df/0x1160
[  285.832357][T13492]  inode_doinit_with_dentry+0xacb/0x12e0
[  285.834543][T13492]  selinux_d_instantiate+0x26/0x30
[  285.836394][T13492]  security_d_instantiate+0x142/0x1a0
[  285.838017][T13492]  d_instantiate+0x5c/0x90
[  285.839490][T13492]  __debugfs_create_file+0x286/0x6b0
[  285.841380][T13492]  debugfs_create_file_full+0x41/0x60
[  285.841391][   T40] audit: type=1400 audit(1763794738.810:524): avc:  denied  { read } for  pid=5327 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  285.843316][T13492]  ref_tracker_dir_debugfs+0x19d/0x290
[  285.843336][T13492]  alloc_netdev_mqs+0x314/0x1550
[  285.843350][T13492]  ip6_tnl_init_net+0xf5/0x4d0
[  285.843360][T13492]  ops_init+0x1e2/0x5f0
[  285.852536][   T40] audit: type=1400 audit(1763794738.810:525): avc:  denied  { search } for  pid=5327 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  285.854256][T13492]  setup_net+0x100/0x390
[  285.854273][T13492]  copy_net_ns+0x2f8/0x690
[  285.854288][T13492]  create_new_namespaces+0x3ea/0xa90
[  285.854301][T13492]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  285.856466][   T40] audit: type=1400 audit(1763794738.810:526): avc:  denied  { search } for  pid=5327 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  285.857850][T13492]  ksys_unshare+0x45b/0xa40
[  285.857867][T13492] 
[  285.857869][T13492] Memory state around the buggy address:
[  285.857876][T13492]  ffff8880523f9800: 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc
[  285.857883][T13492]  ffff8880523f9880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  285.857890][T13492] >ffff8880523f9900: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  285.857896][T13492]                                                  ^
[  285.891757][T13492]  ffff8880523f9980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  285.894240][T13492]  ffff8880523f9a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  285.896938][T13492] ==================================================================
[  285.901596][T13492] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  285.904735][T13492] CPU: 2 UID: 0 PID: 13492 Comm: syz.1.2605 Not tainted syzkaller #0 PREEMPT(full) 
[  285.908521][T13492] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.912900][T13492] Call Trace:
[  285.914272][T13492]  <TASK>
[  285.915510][T13492]  dump_stack_lvl+0x3d/0x1f0
[  285.917449][T13492]  vpanic+0x640/0x6f0
[  285.919119][T13492]  panic+0xca/0xd0
[  285.920726][T13492]  ? __pfx_panic+0x10/0x10
[  285.922564][T13492]  ? qfq_reset_qdisc+0x323/0x420
[  285.924618][T13492]  ? preempt_schedule_common+0x44/0xc0
[  285.926925][T13492]  ? preempt_schedule_thunk+0x16/0x30
[  285.929202][T13492]  ? check_panic_on_warn+0x1f/0xb0
[  285.931370][T13492]  check_panic_on_warn+0xab/0xb0
[  285.933430][T13492]  end_report+0x107/0x170
[  285.935248][T13492]  kasan_report+0xee/0x110
[  285.937180][T13492]  ? qfq_reset_qdisc+0x323/0x420
[  285.939260][T13492]  qfq_reset_qdisc+0x323/0x420
[  285.941294][T13492]  ? synchronize_rcu_expedited+0x3b9/0x460
[  285.943729][T13492]  ? __pfx_qfq_reset_qdisc+0x10/0x10
[  285.945892][T13492]  qdisc_reset+0xe0/0x660
[  285.947710][T13492]  __qdisc_destroy+0xd3/0x4d0
[  285.949705][T13492]  qdisc_put+0xab/0xe0
[  285.951434][T13492]  dev_shutdown+0x1d0/0x430
[  285.953336][T13492]  unregister_netdevice_many_notify+0xb12/0x25c0
[  285.955924][T13492]  ? do_raw_spin_unlock+0x172/0x230
[  285.958075][T13492]  ? ref_tracker_alloc+0x305/0x5b0
[  285.960221][T13492]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  285.963083][T13492]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  285.965427][T13492]  ? linkwatch_fire_event+0x20c/0x270
[  285.967658][T13492]  ? netif_carrier_off+0xa3/0xc0
[  285.969749][T13492]  unregister_netdevice_queue+0x305/0x3f0
[  285.972175][T13492]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  285.974817][T13492]  ? linkwatch_schedule_work+0x181/0x1c0
[  285.977176][T13492]  ? linkwatch_fire_event+0x6f/0x270
[  285.979394][T13492]  __tun_detach+0x119c/0x1490
[  285.981422][T13492]  ? __pfx_tun_chr_close+0x10/0x10
[  285.983595][T13492]  tun_chr_close+0xc2/0x230
[  285.985489][T13492]  __fput+0x402/0xb70
[  285.987214][T13492]  task_work_run+0x150/0x240
[  285.989130][T13492]  ? __pfx_task_work_run+0x10/0x10
[  285.991243][T13492]  ? __pfx___do_sys_close_range+0x10/0x10
[  285.993182][T13492]  exit_to_user_mode_loop+0xec/0x130
[  285.994811][T13492]  do_syscall_64+0x426/0xfa0
[  285.996250][T13492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.998144][T13492] RIP: 0033:0x7fd7b5f8f749
[  285.999560][T13492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  286.005426][T13492] RSP: 002b:00007ffcd05aa228 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  286.007954][T13492] RAX: 0000000000000000 RBX: 00007fd7b61e7da0 RCX: 00007fd7b5f8f749
[  286.010349][T13492] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  286.012872][T13492] RBP: 00007fd7b61e7da0 R08: 0000000000000000 R09: 0000000ed05aa51f
[  286.015294][T13492] R10: 000000000003fd70 R11: 0000000000000246 R12: 0000000000045d82
[  286.017715][T13492] R13: 00007ffcd05aa320 R14: ffffffffffffffff R15: 00007ffcd05aa340
[  286.020252][T13492]  </TASK>
[  286.021944][T13492] Kernel Offset: disabled
[  286.023290][T13492] Rebooting in 86400 seconds..

VM DIAGNOSIS:
06:58:58  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080000000 RBX=0000000000000000 RCX=ffffffff823f4496 RDX=ffff888022730000
RSI=0000000000000000 RDI=0000000000000001 RBP=ffff88802ac8f068 RSP=ffffc90003bbf948
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000001 R13=ffffc90003bbfb70 R14=ffff8880276cdbe8 R15=ffff88804dd1d525
RIP=ffffffff81bce18c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007ff2e0ca7880 ffffffff 00c00000
GS =0000 ffff8880d6a05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000002000 CR3=000000004fd2f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002010092 Opmask01=0000000000004211 Opmask02=000000007ffeffff Opmask03=0000000000000000
Opmask04=00000000ffff7fff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb3a9c0 000056434fb3a9c0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb37610
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff2e05f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6d005d392d305b2a 6b6c62006273753d
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffff00000000ff00
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 646432272bd6a824 646432272bd605e4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 646432272bd605ec 646432272bd605ec
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 726f662027732527 20656c6966207325 2064657461657263 000a73253a47000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 574a430502560002 0540494c43055600 0541405144405746 000a56001f47000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000004d 4554535953425553 0000000000000021 000000000000302e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb20c50 000056434fb22c10 000056434fb366c0 000056434fb21580
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb2a460 000056434fb2c6f0 000056434fb2e920 000056434fb1bb10
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb29fa0 000056434fb24f60 000056434fb1df60 000056434fb30ea0
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb3be60 000056434fb2b9f0 000056434fb3a4a0 000056434fb1ca60
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056432b5f1b40 0000000000000031 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88806a7426e0 RCX=ffffffff81b0db41 RDX=ffff8880314fc900
RSI=ffffffff81b0db1b RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc9000343f4f0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=dffffc0000000000 R13=ffffed100d4e84dd R14=0000000000000001 R15=0000000000000003
RIP=ffffffff81b0db1d RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6b05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f7f0af17d60 CR3=000000002b488000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7f0a3ba6c3 00007f7f0a3ba6c3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffc290a500 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555594c958f2 0000555594c957a0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555594cae162 0000555594caca60
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555594c95c44 0000555594c95c40
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555594c955c8
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040023bc0307fffe 040023b803000400 23b40300040023b0 0300000012080623
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0101801000000401 00000e0806060168 e200000a072083b8 0800600300100050
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300100040030210 0030036810001590 0304040023e40308 040023e003006f69
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7270617401ffffff fffffffffff10823 d00302040023cc03 16040023c8030204
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0023c40304040023 c00307fffe040023 bc0307fffe040023 b80300040023b403
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000057b1d1 RBX=0000000000000002 RCX=ffffffff8b60d2a9 RDX=0000000000000000
RSI=ffffffff8da2c59c RDI=ffffffff8bf073c0 RBP=ffffed1003bd4920 RSP=ffffc90000187de8
R8 =0000000000000001 R9 =ffffed100d4c6655 R10=ffff88806a6332ab R11=0000000000000001
R12=0000000000000002 R13=ffff88801dea4900 R14=ffffffff908216d0 R15=0000000000000000
RIP=ffffffff8b60bd5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6c05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00002000000012c0 CR3=0000000025d5b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fefffc00 Opmask01=0000000000000000 Opmask02=00000000ffff7fdf Opmask03=0000000000400004
Opmask04=00000000ffff7fff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb39500 000056432e50c040
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb39500
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb19660
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056434fb2f9b0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff2e05f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff0000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 737325303cc28483 7373253558c9f259
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a65500018d843613 7373737617478859
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 737365636f727020 756c6c2520716573 006e6f6974697472 6170006b636f6c62
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00312d352f356273 752f302e6463685f 796d6d75642f6d72 6f6674616c702f73
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000564600627375 0000000000000021 000000000000302e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000002d1 726f702d6f697472 000056434f00322d 6332692f7665642d
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a302e30312d3533 712d63707276703a 29393030322c3948 43492b3533512843
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 50647261646e6174 536e703a554d4551 6e76733a302e3072 623a343130322f31
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302f343064623a31 2b32316f70627e32 2d332e36312e312d 6e61696265642d33
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000014100 000000000000303d 44440045525f5346 0054242044492065
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000002f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85298215 RDI=ffffffff9addb780 RBP=ffffffff9addb740 RSP=ffffc9000464f488
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3530383838666666
R12=0000000000000000 R13=000000000000002f R14=ffffffff9addb740 R15=ffffffff852981b0
RIP=ffffffff8529823f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055558e61e500 ffffffff 00c00000
GS =0000 ffff8880d6d05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b34063fff CR3=00000000523ef000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f376de15050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f376de1505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f376de15057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f376de1506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f376de150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f376de151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 25e2c9862e773f76 9f445453e1614d11 82484f75cf19cd4b 939b6debee03103f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f376eb1d100 00007f376dfba460 00007f376dfb0004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f376dfba4b8 00007f376dfba4b0 00007f376dfba4a8 00007f376dfba4a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000011 0000000000000000 0000000000000000 0000000000000ae4
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000