last executing test programs:

1.17852689s ago: executing program 3 (id=590):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
ioctl$UI_BEGIN_FF_ERASE(r2, 0xc00c55ca, &(0x7f00000000c0)={0x3, 0x9, 0x1})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x6b496000)
setitimer(0x2, 0x0, &(0x7f0000000180))
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f00000000c0)=@nat={'nat\x00', 0x19, 0x1, 0x178, [0x8, 0x7, 0x0, 0x200003f0, 0xb02d], 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"/376]}, 0x1f0) (async)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000180)={0x53, 0x0, 0x6, 0xa, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000000)="1201b2008000", 0x0, 0x0, 0x0, 0x0, 0x0})

1.068687137s ago: executing program 3 (id=596):
r0 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
r2 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r2, &(0x7f0000000340)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24)
bind$rxrpc(r1, &(0x7f0000001280)=@in4={0x21, 0x300, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24)
write$selinux_access(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56)
futex_waitv(&(0x7f0000002dc0)=[{0xe, 0x0, 0x2}, {0x2, 0x0, 0x2}, {0x6, 0x0, 0x82}, {0x4, 0x0, 0x2}, {0x200, 0x0}, {0x10, 0x0, 0x82}, {0x0, 0x0, 0x82}, {0x4, 0x0, 0x2}, {0x7fff, 0x0, 0x2}, {0x100000001, 0x0, 0x2}, {0x57e6, 0x0, 0x82}, {0x8000, 0x0, 0x2}, {0x5, 0x0, 0x2}, {0x7, 0x0, 0x2}, {0x8, 0x0, 0x2}, {0x4, 0x0, 0x2}, {0x7, 0x0, 0x82}, {0xfff, 0x0, 0x2}, {0x6, 0x0, 0x2}, {0x1, 0x0, 0x2}, {0x7, &(0x7f0000002140)=0x8, 0x2}, {0x80, &(0x7f0000002180), 0x2}, {0x9, &(0x7f00000021c0)=0xe, 0x2}, {0x3, &(0x7f0000002200)=0x7cd1de08, 0x82}, {0xb8, &(0x7f0000002240)=0x7, 0x2}, {0x9, &(0x7f0000002280)=0x9ff, 0x82}, {0x7fffffffffffffff, 0x0, 0x82}, {0xfffffffffffffffd, 0x0, 0x86}, {0x769, &(0x7f0000002380)=0xffffffffffffffff, 0x2}, {0x1, 0x0, 0x2}, {0xfffffffffffffff8, 0x0, 0x2}, {0x5, 0x0, 0x2}, {0xfffffffffffffff9, 0x0, 0x82}, {0x2, &(0x7f00000025c0)=0x4, 0x2}, {0x5, &(0x7f0000002600)=0x4, 0x2}, {0x6c558f26, &(0x7f0000002680)=0x10001, 0x2}, {0x7, &(0x7f0000002700)=0x4, 0x82}, {0xffffffffffffffff, 0x0, 0x82}, {0x6, 0x0, 0x82}, {0x8, &(0x7f0000002840)=0xffff, 0x2}, {0x768d, 0x0, 0x2}, {0x265, 0x0, 0x2}, {0x7fffffff, &(0x7f0000002900)=0xa, 0x82}, {0x84, &(0x7f0000002940)=0xa60, 0x82}, {0x9, 0x0, 0xec5aba831a7e1e25}, {0x9, 0x0, 0x82}, {0x4, 0x0, 0x2}, {0xdef, &(0x7f0000002b00)=0x3, 0x80}, {0x6f, &(0x7f0000002b40)=0x5}, {0x100000001, &(0x7f0000002b80)=0x5, 0x2}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x82}, {0x1, &(0x7f0000002c40)=0x200, 0x2}, {0x6, 0x0, 0x82}], 0x36, 0x0, &(0x7f0000003680), 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r3, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x1, 0x4, 0x0, @vifc_lcl_addr=@local, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)

1.008878633s ago: executing program 3 (id=598):
r0 = socket(0x10, 0x803, 0x0) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='romfs\x00', 0x200000, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0) (async)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0) (async, rerun: 64)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newtfilter={0x7c, 0x2c, 0xd2b, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x50, 0x2, [@TCA_U32_SEL={0x44, 0x5, {0xe, 0x1, 0x3, 0x1, 0x4, 0x2, 0x6, 0xfffffffa, [{0x200, 0x500, 0x3, 0x6}, {0x6783, 0x2, 0x8001, 0x10}, {0x0, 0x53, 0xa9, 0x1}]}}, @TCA_U32_CLASSID={0x8, 0x1, {0xffff, 0xa}}]}}]}, 0x7c}}, 0x24040084) (rerun: 64)

1.008370159s ago: executing program 0 (id=599):
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000001c0)={0x20000001})
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x57, 0xf7fe, 0x5ff, {0x0, 0x1}, {0x5e, 0x1000}, @cond=[{0x7, 0x218, 0x7, 0x0, 0x2, 0x3}, {0x8, 0x5, 0x1, 0x52, 0x9, 0xd}]})
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x4001, 0x0, @private2}, 0x1c)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r4 = socket(0x10, 0x3, 0x0)
unshare(0x22020400)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="1400000010000100000000000000000000000a5c000000060a0b04000000000000000002000000300004802c0001800b00bd54d10c01657400001c000280080002400000000b080001400000000308000300000000890900010073797a30000000000900020073797a3c7ff85abfec0f7283fba33200000000140000001100010000a25caa76d50ecf96b605e10e074af5f631253990f68b6c8c9c0a4698a3d3ba6da14c46c9d5f168ce46c06d91e6ffa9acbea1ba5a908e8b49dc1d54ec06c308a59a0d0376162ffd4bd8d4c572e8d6f339c26346037574a0712f42eba59cff0689f7ccb509a4de99582c9d16dfbf403e011707b513024d8919e517fade3161c900ec849b4dc1aef5202ccf64b823c8f7d5d7bf1a07141c0b9783c91db9958d2bafe1b03e3024e3fff110d5b3e51cda5142d4c5fca81a2a4777c1860ce66a2073ae25a7e2061c2800"], 0x84}}, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x60600, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
ioctl$KVM_CREATE_PIT2(r7, 0x4040ae77, &(0x7f0000000000)={0x3})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call={0x85, 0x0, 0x0, 0x7e}, @exit], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000b40)="f30f09ba6100b8c400ef66b9eb0a00000f3266b9830000c066b84700000066ba000000000f30f2a60fc75add650fdabc755ac09af67f0066b98004000066b8532ebe1866ba0bffd3710f3066b9830500000f32", 0x53}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, 0xffffffffffffffff, 0x0)
ioctl$I2C_SLAVE_FORCE(0xffffffffffffffff, 0x706, 0x3d3)
write(r4, &(0x7f00000000c0)="240000001a005f0214f9f407000904001f00000000010000000000000800040001000000", 0x24)
r9 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r9, &(0x7f0000000040)="e2", 0x12d8)

959.498192ms ago: executing program 3 (id=601):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r1, 0x10, 0x70bd2d, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x40800)
r3 = getpid()
syz_pidfd_open(r3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
pipe2(0x0, 0x0)
sendmmsg$inet(r2, &(0x7f00000039c0)=[{{&(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10, 0x0}}], 0x1, 0x2000c044)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB="8000000002000200080004000000000008001b"], 0x30}}, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x2c, r1, 0x1, 0x70bd2b, 0x5, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_STA_VLAN={0x8}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}]}, 0x2c}}, 0x0)

956.79777ms ago: executing program 0 (id=603):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x2}}]}, 0x1c}}, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1d4}, 0x1, 0x0, 0x0, 0x4000}, 0x4004090)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef91", 0x12)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

955.913637ms ago: executing program 3 (id=604):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text16={0x10, 0x0}], 0x1, 0xa, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xc}, {0xffff, 0xffff}, {0x9}}}, 0x24}}, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f00000021c0)={0x2020}, 0x2020)
ppoll(&(0x7f00000000c0)=[{r4, 0x2081}], 0x1, &(0x7f0000000100)={0x0, 0x989680}, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

899.942653ms ago: executing program 0 (id=606):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x2}}]}, 0x1c}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000000), &(0x7f00000002c0)}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1d4}, 0x1, 0x0, 0x0, 0x4000}, 0x4004090)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

899.107786ms ago: executing program 3 (id=607):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
pipe(&(0x7f00000001c0))
mremap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000002000/0x2000)=nil)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x128a877, &(0x7f0000000180)={[{@nr_inodes={'nr_inodes', 0x3d, [0x38]}}]})
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r0, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @private0, 0x4}, 0x1c)
sendto$inet6(r0, &(0x7f0000000600)="f6", 0x1, 0x80c5, &(0x7f00000001c0)={0xa, 0x0, 0x400, @local, 0x1}, 0x1c)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
syz_emit_ethernet(0x66, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb08004500005800000000002f907800000000e0000001248088f700ffff0010"], 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @private=0x800001c, @empty=0xe0000001}, {0x0, 0x17c1, 0x8}}}}}, 0x0)
close(r2)
socket(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x36)
shutdown(r0, 0x1)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000000)=0x785, 0x4)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f00000000c0)=@assoc_value, &(0x7f0000000140)=0x2)

897.101442ms ago: executing program 0 (id=609):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, 0x0, &(0x7f00000000c0))
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x2, 0x4, &(0x7f0000000080)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xae}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x2803, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback=0xac14140f}, "0000b50800000000"}}}}}, 0x0)
r2 = fanotify_init(0x8, 0x40000)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
fanotify_mark(r2, 0x1, 0x100018, r3, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{0xffffffffffffffff, <r4=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000200)=r1}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000440)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000000400)='%ps    \x00'}, 0x20)
r6 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000480), 0x204000, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x6, 0x943, 0x29ed, 0x7, 0x0, 0x1, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
r8 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
read$FUSE(r8, &(0x7f0000000a00)={0x2020}, 0x2020)
r9 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000540), 0x4040, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
socket$packet(0x11, 0x4000000000002, 0x300)
r12 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r12, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8001}, 0x4)
syz_emit_ethernet(0x32, &(0x7f0000000880)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)
r13 = socket$kcm(0x10, 0x2, 0x4)
setreuid(0xee01, 0xee01)
sendmsg$kcm(r13, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)="39000000140081ae10003c000500018311001f9f660fcf066505acb612f691f3bd3508abca1be6eeb89c44ebb37358582bdbb7d553b4e92155", 0x39}], 0x1}, 0x0)
r14 = dup2(r11, r10)
setsockopt$TIPC_SRC_DROPPABLE(r14, 0x10f, 0x8a, &(0x7f0000000300), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xd, 0x18, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x4}, [@printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}, @map_val={0x18, 0x2, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x3}, @jmp={0x5, 0x1, 0xa, 0xa, 0x2, 0x0, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffa}}, @call={0x85, 0x0, 0x0, 0xc4}]}, &(0x7f0000000340)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x5, 0x4, 0x800, 0x1}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, &(0x7f0000000580)=[r5, r6, r7, r8, r9, 0x1, r14], &(0x7f00000005c0)=[{0x3, 0x2, 0xd, 0x9}, {0x2, 0x4, 0xd, 0x2}, {0x5, 0x4, 0x3, 0x4}, {0x1, 0x5, 0x7}], 0x10, 0x2, @void, @value}, 0x94)

820.187317ms ago: executing program 0 (id=610):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000240)={0x200, 0x1, 0x3, 0x301, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFQA_VLAN={0x2c, 0x13, 0x0, 0x1, [@NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_TCI={0x6}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x101}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}]}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x10001}, @NFQA_PAYLOAD={0x9d, 0xa, "5f679984aa99713b33bfe7ed62db1616b330d569359b547e70758bf48a742427c7725d74bbf7f31e66d56d6de7425f1a7bcfe9f0e0c68bf44c67851ef7a1efd9d57676b1fe9f122f28c437c0fb2930bc6c7be49b6a25405cacac180a18ec4b9f85e383cc585c2afd491a01093db55227ed006a06577384ad7a3ba4c2d4606a31cdb1f48ff2ea5da34b46ec528869a500a4a8141d959c155ba1"}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x8e400}}, @NFQA_VLAN={0x3c, 0x13, 0x0, 0x1, [@NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x3ff}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_TCI={0x6}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0xe}]}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x77}, @NFQA_PAYLOAD={0xc6, 0xa, "3e72988659ce3020569fbc3fcc24fd909d3b6291769c5f15a2e87269df1d3c509acd5377a3b8c31848828473286d81eb54645e24ef8df715517103a92b24bbd446dd2ca9d9a4b5b2434b93e2936e2927d7cc6ab32523d16cd6b6a39deb53b6ae3b0cabda20cd9ffcfa7cbd7029676849e4f0e775e2bd8e1708e012b5a30cb8af1c5307b5394b325fee2d686a91bc9ee0e1afa27e476d0dd16293d556613731829c211aa0e71cf2b2d01ea2b797a474e5b095c4a5ba387fdd92f3f5bca9dfb55ba305"}]}, 0x200}, 0x1, 0x0, 0x0, 0x404c050}, 0x40000c0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="e80000000008010100000000000000000100000a050003000600000006000240600600000900010073797a31000000002c00048008"], 0xe8}, 0x1, 0x0, 0x0, 0x4000}, 0x40008d8)

814.134849ms ago: executing program 0 (id=612):
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000001c0)={0x20000001})
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x57, 0xf7fe, 0x5ff, {0x0, 0x1}, {0x5e, 0x1000}, @cond=[{0x7, 0x218, 0x7, 0x0, 0x2, 0x3}, {0x8, 0x5, 0x1, 0x52, 0x9, 0xd}]})
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x4001, 0x0, @private2}, 0x1c)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r4 = socket(0x10, 0x3, 0x0)
unshare(0x22020400)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x84}}, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x60600, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
ioctl$KVM_CREATE_PIT2(r7, 0x4040ae77, &(0x7f0000000000)={0x3})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call={0x85, 0x0, 0x0, 0x7e}, @exit], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000b40)="f30f09ba6100b8c400ef66b9eb0a00000f3266b9830000c066b84700000066ba000000000f30f2a60fc75add650fdabc755ac09af67f0066b98004000066b8532ebe1866ba0bffd3710f3066b9830500000f32", 0x53}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, 0xffffffffffffffff, 0x0)
ioctl$I2C_SLAVE_FORCE(0xffffffffffffffff, 0x706, 0x3d3)
write(r4, &(0x7f00000000c0)="240000001a005f0214f9f407000904001f00000000010000000000000800040001000000", 0x24)
r9 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r9, &(0x7f0000000040)="e2", 0x12d8)

619.377457ms ago: executing program 2 (id=618):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text16={0x10, 0x0}], 0x1, 0xa, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@deltaction={0x28, 0x31, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}]}]}, 0x28}}, 0x4000001)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0x0, 0xd000})
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000b00)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
close(r4)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000b80)='./file0\x00', 0x105042, 0x0)
read$FUSE(r4, &(0x7f0000000640)={0x2020}, 0x2020)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

550.056828ms ago: executing program 2 (id=619):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000002c00000018000180140002007665746830"], 0x2c}}, 0x0) (async)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
close_range(r3, 0xffffffffffffffff, 0x0) (async)
ioctl$IOMMU_VFIO_IOMMU_MAP_DMA(r2, 0x3b71, &(0x7f0000000040)={0x20, 0x2, 0x0, 0x200804, 0x7}) (async)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000580)="d8000000180081034e91f783db4cb9040a1d020006007409e8fc55a10a0015000400142603600e120800060000000401a8000800080002000000000004000461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb71b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d4e1cace81ed0bffece0b42a9ecbeeccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d93000000000000004867edef090d82c399b3b549", 0xd8}], 0x1}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYRES32=r0, @ANYRES64, @ANYBLOB="e5c327e5ed162ac42001ab66ae3ae53ae8588029dfdf8cd5a0931d4a6f836a8832fa01a0b435fa799312b06f0ab8a910879a93da2418b584dc2f20a5d1dcb055f2e732e089f77960e548e8bc9c23512c123e72f1fc751fd93b5a0c3da97567e8e7aa24d58b63d2628964aec949ae5afcc1ddffb09410371bc76d694b3aa07f94cc0d3096b3dd7228c60ce63e6dcbe3934b5b1c9ca1569e192efc29afe7b02633bfe015149c9b04bef643b21180706a502a0d74908b4bbe79add0f0c35edb9d1d2a44cf2bc671ae9e169c9afb108734edb3051cd78ca1c03fea8961818e3f95f17849cc81d8152cc61f1c", @ANYBLOB="46b53d4c45b5eb5ead3d137d05ad594b1ca3b026250be6f35b3e3dd73828ad0a0a2fb4bcd4fd973d884d5b17f501dba0415c388cb3081b5fc4a5e5c8667463b64b3e53c95731c9cd024c99923aebd56e74", @ANYRES16=0x0], 0x0, 0x4, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet6(0xa, 0x3, 0x1003d71) (async)
timer_create(0x2, 0x0, &(0x7f0000000080)=<r6=>0x0) (async)
clock_gettime(0x0, &(0x7f00000000c0)={<r7=>0x0, <r8=>0x0})
r9 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
accept(r9, 0x0, 0x0) (async)
timer_settime(r6, 0x1, &(0x7f0000000100)={{}, {r7, r8+60000000}}, 0x0) (async)
timer_gettime(r6, &(0x7f0000000180)) (async)
timer_settime(r6, 0x0, &(0x7f0000000540)={{0x77359400}, {0x0, 0x989680}}, &(0x7f0000000280)) (async)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00"], 0xfdef) (async)
r10 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
getsockopt$inet_tcp_int(r10, 0x6, 0x9, &(0x7f0000000040), &(0x7f0000000100)=0x4)
r11 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x180) (async)
fcntl$setlease(r11, 0x400, 0x0)
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file1\x00') (async)
pread64(r10, &(0x7f0000001240)=""/102400, 0x19000, 0x2000000700) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

549.881361ms ago: executing program 2 (id=620):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000001540), 0xffffffffffffffff)
r2 = socket(0x1e, 0x1, 0x0)
recvmmsg(r2, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000003c0)=""/82, 0x52}], 0x1}, 0x4}], 0x1, 0x40000000, 0x0)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x34}, 0x1, 0x40030000000000}, 0x40080)
sendmsg$SMC_PNETID_GET(r2, &(0x7f0000000680)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x6c, r1, 0x100, 0x5, 0x25dfdbfb, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'lo\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000010}, 0x12)
ioctl$CDROM_MEDIA_CHANGED(0xffffffffffffffff, 0x5325, 0x300000)
setreuid(0xee01, 0xee01)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(0xffffffffffffffff, 0xc00464b4, &(0x7f0000000400))
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000380)={0xff, 0x3, 0xd83f})

457.345816ms ago: executing program 2 (id=621):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="a800000000010904000500000000000002000000240001801400018008000100e000000108000200ac1e01010c000280050001000000f74d0cd17f929439db6c09002400b29a9a377f47f1028014000180080001000000010908000200ac1e00010c000280050001000000000044000f800800795c693ba5a0a8a415830feb61e89624246023be22c8c6952a72b45b853c8d9ce297523dc1a93f"], 0xa8}}, 0x4004)
sendmsg$nl_route(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="30000000190001000000000000000000802000000011000500000000140009"], 0x30}}, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_open_dev$I2C(&(0x7f0000000ac0), 0x1, 0x6401)

400.12169ms ago: executing program 2 (id=623):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b0000005e140602000000000e0027001000000002800000121f", 0x2e}], 0x1}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x4, 0x7ba, 0x9, 0xc07b})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x5})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

399.377301ms ago: executing program 2 (id=625):
socket$l2tp(0x2, 0x2, 0x73)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100), 0x0, &(0x7f0000000000)={[{@metacopy_on}, {@redirect_dir_off}, {@nfs_export_on}]})
connect$bt_l2cap(r0, &(0x7f0000000700)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x1}, 0xe)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x8000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x10, 0x6, &(0x7f0000000c80)=ANY=[@ANYBLOB="18120000", @ANYRES32, @ANYBLOB="0030ea00000000000003000000400000850000000c00000000000000000400000000000000000007"], &(0x7f0000000180)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf3b1, @void, @value}, 0x94)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340))
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0xc, 0x20, 0x0, 0x7ffc0002}]})
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x200000, &(0x7f0000002140)=ANY=[@ANYRES8=r4, @ANYRESHEX=r4, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRES8=r0])
read$FUSE(r4, &(0x7f00000041c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x18408}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
creat(&(0x7f0000000280)='./file0\x00', 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x48, &(0x7f0000000040), 0x4)
getsockopt$inet6_int(r6, 0x29, 0x48, 0x0, &(0x7f00007d0000))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1d, 0xb, &(0x7f0000000100)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0xfff, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1d, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r7, 0x0, 0x8}, 0x18)

200.304211ms ago: executing program 1 (id=629):
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x72c88d25270cd60a, 0x11, r1, 0x75fb3000)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @local, 0x8001}, 0x1c)
r2 = socket$pppoe(0x18, 0x1, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000080)={0x18, 0x0, {0x8, @empty, 'bond0\x00'}}, 0x1e)
connect$pppoe(r2, &(0x7f0000000100)={0x18, 0x0, {0x1002, @multicast, 'veth1_to_team\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x4, @local, 'erspan0\x00'}})
connect$inet6(r0, &(0x7f0000000000)={0xa, 0xfffc, 0xfffffffd, @local, 0x2}, 0x1c)

200.113674ms ago: executing program 1 (id=630):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = socket$inet(0x2, 0xa, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x200047ad, &(0x7f0000000900)={0x2, 0x4e24, @local}, 0x12)
r2 = openat$cgroup_devices(r0, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x40000000941c0, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r4, 0x2c9ab000)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
write$cgroup_devices(r2, &(0x7f00000003c0)={'b', ' *:* ', 'r\x00'}, 0x8)

80.096787ms ago: executing program 1 (id=631):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x2c, r2, 0x1, 0x70bd2b, 0x25df5bff, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004040}, 0xc850)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f00000001c0)=@newtaction={0x64, 0x30, 0x9, 0x0, 0xffffffff, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8, 0x5, r3}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan0\x00'}) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) (async)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x2c, r2, 0x1, 0x70bd2b, 0x25df5bff, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004040}, 0xc850) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f00000001c0)=@newtaction={0x64, 0x30, 0x9, 0x0, 0xffffffff, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8, 0x5, r3}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)

77.242333ms ago: executing program 1 (id=632):
r0 = openat$nmem0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x4800)
pipe2(&(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
tee(r1, r2, 0x6d05, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x1714, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r8=>0x0, &(0x7f0000000080)=<r9=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r7, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r5, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x22}})
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000340)={0x8, {"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", 0x1000}}, 0x1006)
io_uring_enter(r7, 0x27e2, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000440)=ANY=[@ANYRESOCT=r6], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0xfffffffd}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xc6)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r10, 0xffffffffffffffff, 0x0)
close(0x4)
r11 = socket$inet6_sctp(0xa, 0x1, 0x84)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r11, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r12=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r4, 0x84, 0x23, &(0x7f00000000c0)={r12, 0x2259}, 0x8)
setsockopt$inet_int(r3, 0x0, 0x13, &(0x7f0000000040)=0x7ff, 0x4)

168.768µs ago: executing program 1 (id=633):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b0000005e140602000000000e0027001000000002800000121f", 0x2e}], 0x1}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x4, 0x7ba, 0x9, 0xc07b})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x5})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 1 (id=634):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002040)={0x18, 0x0, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0xf, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="1400"], 0x18}, 0x20000040)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
recvmmsg(r1, &(0x7f0000001140), 0x700, 0x2, 0x0)
capset(&(0x7f00000003c0)={0x19980330}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x7f})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = io_uring_setup(0x1696, &(0x7f0000000080)={0x0, 0x2, 0x2, 0x1000})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

kernel console output (not intermixed with test programs):

h: hci0: command tx timeout
[   49.371495][ T6146] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   49.487054][ T6152] overlayfs: missing 'workdir'
[   49.583803][ T6161] kvm: user requested TSC rate below hardware speed
[   49.593931][ T6161] netlink: 64 bytes leftover after parsing attributes in process `syz.0.54'.
[   50.186015][ T6191] kvm: user requested TSC rate below hardware speed
[   50.212678][ T6194] FAULT_INJECTION: forcing a failure.
[   50.212678][ T6194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.216344][ T6194] CPU: 3 UID: 0 PID: 6194 Comm: syz.2.68 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   50.216356][ T6194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   50.216362][ T6194] Call Trace:
[   50.216365][ T6194]  <TASK>
[   50.216370][ T6194]  dump_stack_lvl+0x16c/0x1f0
[   50.216386][ T6194]  should_fail_ex+0x50a/0x650
[   50.216405][ T6194]  _copy_from_user+0x2e/0xd0
[   50.216415][ T6194]  input_event_from_user+0x134/0x3b0
[   50.216428][ T6194]  ? __pfx_input_event_from_user+0x10/0x10
[   50.216439][ T6194]  ? __pfx___might_resched+0x10/0x10
[   50.216456][ T6194]  ? input_inject_event+0x82/0x380
[   50.216468][ T6194]  evdev_write+0x377/0x750
[   50.216481][ T6194]  ? __pfx_evdev_write+0x10/0x10
[   50.216493][ T6194]  ? bpf_lsm_file_permission+0x9/0x10
[   50.216504][ T6194]  ? security_file_permission+0x71/0x210
[   50.216520][ T6194]  ? rw_verify_area+0xcf/0x680
[   50.216534][ T6194]  ? __pfx_evdev_write+0x10/0x10
[   50.216544][ T6194]  vfs_write+0x24c/0x1150
[   50.216560][ T6194]  ? __fget_files+0x1fc/0x3a0
[   50.216570][ T6194]  ? __pfx_lock_release+0x10/0x10
[   50.216584][ T6194]  ? __pfx_vfs_write+0x10/0x10
[   50.216599][ T6194]  ? lock_acquire+0x2f/0xb0
[   50.216612][ T6194]  ? __fget_files+0x40/0x3a0
[   50.216622][ T6194]  ? __fget_files+0x206/0x3a0
[   50.216635][ T6194]  ksys_write+0x207/0x250
[   50.216644][ T6194]  ? __pfx_ksys_write+0x10/0x10
[   50.216656][ T6194]  do_syscall_64+0xcd/0x250
[   50.216671][ T6194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.216684][ T6194] RIP: 0033:0x7f7624f8d169
[   50.216692][ T6194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.216701][ T6194] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   50.216711][ T6194] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   50.216717][ T6194] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   50.216722][ T6194] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   50.216727][ T6194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   50.216733][ T6194] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   50.216745][ T6194]  </TASK>
[   50.282431][    C3] vkms_vblank_simulate: vblank timer overrun
[   50.350979][ T6198] syz.0.71 uses obsolete (PF_INET,SOCK_PACKET)
[   50.354906][   T40] kauditd_printk_skb: 111 callbacks suppressed
[   50.354914][   T40] audit: type=1400 audit(1741402185.431:226): avc:  denied  { write } for  pid=6197 comm="syz.0.71" name="vmci" dev="devtmpfs" ino=708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.393135][ T6202] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[   50.405155][   T40] audit: type=1400 audit(1741402185.481:227): avc:  denied  { create } for  pid=6201 comm="syz.2.72" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   50.406674][ T6202] warning: `syz.2.72' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   50.415480][   T40] audit: type=1400 audit(1741402185.481:228): avc:  denied  { read } for  pid=6201 comm="syz.2.72" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   50.490582][   T40] audit: type=1400 audit(1741402185.561:229): avc:  denied  { mount } for  pid=6203 comm="syz.2.73" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   50.556323][    C1] Unknown status report in ack skb
[   50.559458][   T40] audit: type=1400 audit(1741402185.631:230): avc:  denied  { setopt } for  pid=6203 comm="syz.2.73" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   50.602012][ T6007] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   50.675476][   T40] audit: type=1400 audit(1741402185.751:231): avc:  denied  { read } for  pid=6137 comm="syz.3.48" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   50.681970][   T40] audit: type=1400 audit(1741402185.751:232): avc:  denied  { open } for  pid=6137 comm="syz.3.48" path="/dev/ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   50.734115][ T6214] netlink: 20 bytes leftover after parsing attributes in process `syz.1.76'.
[   50.750519][   T40] audit: type=1400 audit(1741402185.821:233): avc:  denied  { create } for  pid=6218 comm="syz.3.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   50.756620][   T40] audit: type=1400 audit(1741402185.821:234): avc:  denied  { setopt } for  pid=6218 comm="syz.3.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   50.766876][ T6007] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   50.769822][ T6007] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   50.772909][ T6007] usb 5-1: Product: syz
[   50.774278][   T40] audit: type=1400 audit(1741402185.831:235): avc:  denied  { ioctl } for  pid=6220 comm="syz.1.78" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=9722 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   50.781326][ T6007] usb 5-1: Manufacturer: syz
[   50.782765][ T6007] usb 5-1: SerialNumber: syz
[   50.796288][ T6007] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   50.830749][ T6007] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   50.928208][ T6224] mmap: syz.3.79 (6224) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   50.957212][ T6224] netlink: 8 bytes leftover after parsing attributes in process `syz.3.79'.
[   50.963782][ T6224] netlink: 8 bytes leftover after parsing attributes in process `syz.3.79'.
[   50.970185][ T6224] loop9: detected capacity change from 0 to 8
[   50.974958][ T6224]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[   50.976607][ T6224] loop9: partition table partially beyond EOD, truncated
[   50.978780][ T6224] loop9: p1 size 81768186 extends beyond EOD, truncated
[   50.994418][ T6229] kvm: user requested TSC rate below hardware speed
[   51.038461][ T6198] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   51.041578][ T6198] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   51.048908][   T31] usb 5-1: USB disconnect, device number 2
[   51.282977][ T5955] Bluetooth: hci3: command tx timeout
[   51.285711][ T6242] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   51.372176][ T5955] Bluetooth: hci0: command tx timeout
[   51.374295][ T5948] Bluetooth: hci2: command tx timeout
[   51.374491][ T5953] Bluetooth: hci1: command tx timeout
[   51.651453][ T6274] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6274 comm=syz.1.96
[   51.755002][ T6285] capability: warning: `syz.0.99' uses deprecated v2 capabilities in a way that may be insecure
[   51.832299][ T6309] ceph: Path missing in source
[   51.842320][ T6007] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[   51.845804][ T6007] ath9k_htc: Failed to initialize the device
[   51.862121][   T31] usb 5-1: ath9k_htc: USB layer deinitialized
[   51.934458][ T6327] SELinux:  policydb string  does not match my string SE Linux
[   51.937450][ T6327] SELinux: failed to load policy
[   52.047052][ T6335] geneve2: entered promiscuous mode
[   52.048634][ T6335] geneve2: entered allmulticast mode
[   52.102725][ T1341] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[   52.262943][ T1341] usb 7-1: too many configurations: 227, using maximum allowed: 8
[   52.272917][ T1341] usb 7-1: config index 0 descriptor too short (expected 30768, got 18)
[   52.276174][ T1341] usb 7-1: config 102 has too many interfaces: 102, using maximum allowed: 32
[   52.279671][ T1341] usb 7-1: config 102 has an invalid descriptor of length 102, skipping remainder of the config
[   52.298788][ T1341] usb 7-1: config 102 has 0 interfaces, different from the descriptor's value: 102
[   52.304351][ T1341] usb 7-1: config index 1 descriptor too short (expected 30768, got 18)
[   52.307659][ T1341] usb 7-1: config 102 has too many interfaces: 102, using maximum allowed: 32
[   52.310926][ T1341] usb 7-1: config 102 has an invalid descriptor of length 102, skipping remainder of the config
[   52.315259][ T1341] usb 7-1: config 102 has 0 interfaces, different from the descriptor's value: 102
[   52.319902][ T1341] usb 7-1: config index 2 descriptor too short (expected 30768, got 18)
[   52.323696][ T1341] usb 7-1: config 102 has too many interfaces: 102, using maximum allowed: 32
[   52.327036][ T1341] usb 7-1: config 102 has an invalid descriptor of length 102, skipping remainder of the config
[   52.330167][ T1341] usb 7-1: config 102 has 0 interfaces, different from the descriptor's value: 102
[   52.334520][ T1341] usb 7-1: config index 3 descriptor too short (expected 30768, got 18)
[   52.336768][ T1341] usb 7-1: config 102 has too many interfaces: 102, using maximum allowed: 32
[   52.339291][ T1341] usb 7-1: config 102 has an invalid descriptor of length 102, skipping remainder of the config
[   52.342929][ T1341] usb 7-1: config 102 has 0 interfaces, different from the descriptor's value: 102
[   52.346841][ T1341] usb 7-1: config index 4 descriptor too short (expected 30768, got 18)
[   52.349464][ T1341] usb 7-1: config 102 has too many interfaces: 102, using maximum allowed: 32
[   52.352840][ T1341] usb 7-1: config 102 has an invalid descriptor of length 102, skipping remainder of the config
[   52.355904][ T1341] usb 7-1: config 102 has 0 interfaces, different from the descriptor's value: 102
[   52.359802][ T1341] usb 7-1: config index 5 descriptor too short (expected 30768, got 18)
[   52.362385][ T1341] usb 7-1: config 102 has too many interfaces: 102, using maximum allowed: 32
[   52.365186][ T1341] usb 7-1: config 102 has an invalid descriptor of length 102, skipping remainder of the config
[   52.368450][ T1341] usb 7-1: config 102 has 0 interfaces, different from the descriptor's value: 102
[   52.372243][ T1341] usb 7-1: config index 6 descriptor too short (expected 30768, got 18)
[   52.374619][ T1341] usb 7-1: config 102 has too many interfaces: 102, using maximum allowed: 32
[   52.377292][ T1341] usb 7-1: config 102 has an invalid descriptor of length 102, skipping remainder of the config
[   52.380585][ T1341] usb 7-1: config 102 has 0 interfaces, different from the descriptor's value: 102
[   52.384528][ T1341] usb 7-1: config index 7 descriptor too short (expected 30768, got 18)
[   52.387462][ T1341] usb 7-1: config 102 has too many interfaces: 102, using maximum allowed: 32
[   52.390142][ T1341] usb 7-1: config 102 has an invalid descriptor of length 102, skipping remainder of the config
[   52.393598][ T1341] usb 7-1: config 102 has 0 interfaces, different from the descriptor's value: 102
[   52.396237][ T1341] usb 7-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[   52.398698][ T1341] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.651058][ T1341] usb 7-1: string descriptor 0 read error: -71
[   52.658918][ T1341] usb 7-1: USB disconnect, device number 2
[   53.029587][ T6363] FAULT_INJECTION: forcing a failure.
[   53.029587][ T6363] name failslab, interval 1, probability 0, space 0, times 1
[   53.034996][ T6363] CPU: 3 UID: 0 PID: 6363 Comm: syz.3.123 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   53.035011][ T6363] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.035017][ T6363] Call Trace:
[   53.035020][ T6363]  <TASK>
[   53.035025][ T6363]  dump_stack_lvl+0x16c/0x1f0
[   53.035058][ T6363]  should_fail_ex+0x50a/0x650
[   53.035083][ T6363]  ? fs_reclaim_acquire+0xae/0x150
[   53.035101][ T6363]  should_failslab+0xc2/0x120
[   53.035117][ T6363]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   53.035134][ T6363]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   53.035161][ T6363]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   53.035180][ T6363]  mmu_topup_memory_caches+0x25/0x170
[   53.035193][ T6363]  kvm_mmu_load+0xda/0x22a0
[   53.035207][ T6363]  ? kvm_apic_has_interrupt+0xb6/0x190
[   53.035224][ T6363]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   53.035239][ T6363]  ? kvm_guest_time_update+0x71e/0xeb0
[   53.035253][ T6363]  ? __pfx_kvm_mmu_load+0x10/0x10
[   53.035265][ T6363]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   53.035281][ T6363]  ? kvm_check_and_inject_events+0x725/0x12e0
[   53.035293][ T6363]  ? record_steal_time+0x61/0xbe0
[   53.035306][ T6363]  vcpu_run+0x338e/0x4f50
[   53.035318][ T6363]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   53.035335][ T6363]  ? __pfx_vcpu_run+0x10/0x10
[   53.035345][ T6363]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   53.035361][ T6363]  ? rcu_is_watching+0x12/0xc0
[   53.035372][ T6363]  ? trace_lock_acquire+0x14e/0x1f0
[   53.035384][ T6363]  ? __local_bh_enable_ip+0xa4/0x120
[   53.035400][ T6363]  ? lockdep_hardirqs_on+0x7c/0x110
[   53.035413][ T6363]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[   53.035428][ T6363]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   53.035440][ T6363]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   53.035456][ T6363]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   53.035470][ T6363]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   53.035486][ T6363]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   53.035505][ T6363]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   53.035524][ T6363]  ? __pfx_lock_release+0x10/0x10
[   53.035544][ T6363]  ? selinux_file_ioctl+0x180/0x270
[   53.035559][ T6363]  ? selinux_file_ioctl+0xb4/0x270
[   53.035576][ T6363]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   53.035593][ T6363]  __x64_sys_ioctl+0x190/0x200
[   53.035610][ T6363]  do_syscall_64+0xcd/0x250
[   53.035625][ T6363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.035640][ T6363] RIP: 0033:0x7f5e1898d169
[   53.035648][ T6363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.035658][ T6363] RSP: 002b:00007f5e197a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.035668][ T6363] RAX: ffffffffffffffda RBX: 00007f5e18ba5fa0 RCX: 00007f5e1898d169
[   53.035674][ T6363] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   53.035679][ T6363] RBP: 00007f5e197a9090 R08: 0000000000000000 R09: 0000000000000000
[   53.035685][ T6363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.035691][ T6363] R13: 0000000000000000 R14: 00007f5e18ba5fa0 R15: 00007ffecbd449f8
[   53.035703][ T6363]  </TASK>
[   53.140092][    C3] vkms_vblank_simulate: vblank timer overrun
[   53.361999][ T5955] Bluetooth: hci3: command tx timeout
[   53.441927][ T5955] Bluetooth: hci1: command tx timeout
[   53.451886][ T5955] Bluetooth: hci0: command tx timeout
[   53.452877][ T5948] Bluetooth: hci2: command tx timeout
[   53.516362][ T6399] kvm: vcpu 512: requested lapic timer restore with starting count register 0x390=4248550688 (67976811008 ns) > initial count (60420241152 ns). Using initial count to start timer.
[   53.539372][ T6418] FAULT_INJECTION: forcing a failure.
[   53.539372][ T6418] name failslab, interval 1, probability 0, space 0, times 0
[   53.544621][ T6418] CPU: 0 UID: 0 PID: 6418 Comm: syz.2.134 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   53.544635][ T6418] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.544641][ T6418] Call Trace:
[   53.544644][ T6418]  <TASK>
[   53.544648][ T6418]  dump_stack_lvl+0x16c/0x1f0
[   53.544665][ T6418]  should_fail_ex+0x50a/0x650
[   53.544681][ T6418]  ? fs_reclaim_acquire+0xae/0x150
[   53.544698][ T6418]  should_failslab+0xc2/0x120
[   53.544712][ T6418]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   53.544723][ T6418]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   53.544740][ T6418]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   53.544757][ T6418]  mmu_topup_memory_caches+0x25/0x170
[   53.544770][ T6418]  kvm_mmu_load+0xda/0x22a0
[   53.544812][ T6418]  ? kvm_apic_has_interrupt+0xb6/0x190
[   53.544831][ T6418]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   53.544846][ T6418]  ? kvm_guest_time_update+0x71e/0xeb0
[   53.544859][ T6418]  ? __pfx_kvm_mmu_load+0x10/0x10
[   53.544871][ T6418]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   53.544885][ T6418]  ? kvm_check_and_inject_events+0x725/0x12e0
[   53.544897][ T6418]  ? record_steal_time+0x61/0xbe0
[   53.544909][ T6418]  vcpu_run+0x338e/0x4f50
[   53.544921][ T6418]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   53.544937][ T6418]  ? __pfx_vcpu_run+0x10/0x10
[   53.544947][ T6418]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   53.544962][ T6418]  ? rcu_is_watching+0x12/0xc0
[   53.544973][ T6418]  ? trace_lock_acquire+0x14e/0x1f0
[   53.544984][ T6418]  ? __local_bh_enable_ip+0xa4/0x120
[   53.544999][ T6418]  ? lockdep_hardirqs_on+0x7c/0x110
[   53.545011][ T6418]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[   53.545026][ T6418]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   53.545038][ T6418]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   53.545053][ T6418]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   53.545066][ T6418]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   53.545081][ T6418]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   53.545099][ T6418]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   53.545117][ T6418]  ? __pfx_lock_release+0x10/0x10
[   53.545136][ T6418]  ? selinux_file_ioctl+0x180/0x270
[   53.545151][ T6418]  ? selinux_file_ioctl+0xb4/0x270
[   53.545167][ T6418]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   53.545179][ T6418]  __x64_sys_ioctl+0x190/0x200
[   53.545195][ T6418]  do_syscall_64+0xcd/0x250
[   53.545209][ T6418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.545223][ T6418] RIP: 0033:0x7f7624f8d169
[   53.545231][ T6418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.545240][ T6418] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.545250][ T6418] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   53.545256][ T6418] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   53.545261][ T6418] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   53.545267][ T6418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.545272][ T6418] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   53.545284][ T6418]  </TASK>
[   53.687961][ T6430] __nla_validate_parse: 121 callbacks suppressed
[   53.687972][ T6430] netlink: 596 bytes leftover after parsing attributes in process `syz.1.137'.
[   53.943437][ T6479] FAULT_INJECTION: forcing a failure.
[   53.943437][ T6479] name failslab, interval 1, probability 0, space 0, times 0
[   53.946996][ T6479] CPU: 3 UID: 0 PID: 6479 Comm: syz.2.149 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   53.947009][ T6479] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.947015][ T6479] Call Trace:
[   53.947018][ T6479]  <TASK>
[   53.947022][ T6479]  dump_stack_lvl+0x16c/0x1f0
[   53.947039][ T6479]  should_fail_ex+0x50a/0x650
[   53.947055][ T6479]  ? fs_reclaim_acquire+0xae/0x150
[   53.947072][ T6479]  should_failslab+0xc2/0x120
[   53.947084][ T6479]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   53.947094][ T6479]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   53.947111][ T6479]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   53.947128][ T6479]  mmu_topup_memory_caches+0x25/0x170
[   53.947142][ T6479]  kvm_mmu_load+0xda/0x22a0
[   53.947154][ T6479]  ? kvm_apic_has_interrupt+0xb6/0x190
[   53.947170][ T6479]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   53.947185][ T6479]  ? kvm_guest_time_update+0x71e/0xeb0
[   53.947198][ T6479]  ? __pfx_kvm_mmu_load+0x10/0x10
[   53.947210][ T6479]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   53.947224][ T6479]  ? kvm_check_and_inject_events+0x725/0x12e0
[   53.947236][ T6479]  ? record_steal_time+0x61/0xbe0
[   53.947248][ T6479]  vcpu_run+0x338e/0x4f50
[   53.947260][ T6479]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   53.947275][ T6479]  ? __pfx_vcpu_run+0x10/0x10
[   53.947285][ T6479]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   53.947300][ T6479]  ? rcu_is_watching+0x12/0xc0
[   53.947311][ T6479]  ? trace_lock_acquire+0x14e/0x1f0
[   53.947322][ T6479]  ? __local_bh_enable_ip+0xa4/0x120
[   53.947337][ T6479]  ? lockdep_hardirqs_on+0x7c/0x110
[   53.947349][ T6479]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[   53.947363][ T6479]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   53.947375][ T6479]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   53.947389][ T6479]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   53.947402][ T6479]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   53.947418][ T6479]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   53.947435][ T6479]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   53.947453][ T6479]  ? __pfx_lock_release+0x10/0x10
[   53.947472][ T6479]  ? selinux_file_ioctl+0x180/0x270
[   53.947487][ T6479]  ? selinux_file_ioctl+0xb4/0x270
[   53.947503][ T6479]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   53.947515][ T6479]  __x64_sys_ioctl+0x190/0x200
[   53.947530][ T6479]  do_syscall_64+0xcd/0x250
[   53.947544][ T6479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.947558][ T6479] RIP: 0033:0x7f7624f8d169
[   53.947566][ T6479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.947579][ T6479] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.947588][ T6479] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   53.947594][ T6479] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   53.947600][ T6479] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   53.947605][ T6479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.947610][ T6479] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   53.947622][ T6479]  </TASK>
[   53.958063][ T6454] process 'syz.1.146' launched './file0' with NULL argv: empty string added
[   54.185592][ T6507] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[   54.195896][ T6509] netlink: 12 bytes leftover after parsing attributes in process `syz.0.158'.
[   54.235493][ T6513] block nbd2: NBD_DISCONNECT
[   54.351484][ T6519] FAULT_INJECTION: forcing a failure.
[   54.351484][ T6519] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.356973][ T6519] CPU: 3 UID: 0 PID: 6519 Comm: syz.0.161 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   54.356993][ T6519] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.357003][ T6519] Call Trace:
[   54.357008][ T6519]  <TASK>
[   54.357014][ T6519]  dump_stack_lvl+0x16c/0x1f0
[   54.357040][ T6519]  should_fail_ex+0x50a/0x650
[   54.357068][ T6519]  _copy_from_user+0x2e/0xd0
[   54.357086][ T6519]  input_event_from_user+0x134/0x3b0
[   54.357106][ T6519]  ? __pfx_input_event_from_user+0x10/0x10
[   54.357126][ T6519]  ? __pfx___might_resched+0x10/0x10
[   54.357151][ T6519]  ? input_inject_event+0x51/0x380
[   54.357171][ T6519]  evdev_write+0x377/0x750
[   54.357191][ T6519]  ? __pfx_evdev_write+0x10/0x10
[   54.357210][ T6519]  ? bpf_lsm_file_permission+0x9/0x10
[   54.357228][ T6519]  ? security_file_permission+0x71/0x210
[   54.357253][ T6519]  ? rw_verify_area+0xcf/0x680
[   54.357277][ T6519]  ? __pfx_evdev_write+0x10/0x10
[   54.357293][ T6519]  vfs_write+0x24c/0x1150
[   54.357318][ T6519]  ? __fget_files+0x1fc/0x3a0
[   54.357334][ T6519]  ? __pfx_lock_release+0x10/0x10
[   54.357358][ T6519]  ? __pfx_vfs_write+0x10/0x10
[   54.357384][ T6519]  ? lock_acquire+0x2f/0xb0
[   54.357404][ T6519]  ? __fget_files+0x40/0x3a0
[   54.357423][ T6519]  ? __fget_files+0x206/0x3a0
[   54.357446][ T6519]  ksys_write+0x207/0x250
[   54.357459][ T6519]  ? __pfx_ksys_write+0x10/0x10
[   54.357481][ T6519]  do_syscall_64+0xcd/0x250
[   54.357505][ T6519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.357527][ T6519] RIP: 0033:0x7fe4f438d169
[   54.357540][ T6519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.357555][ T6519] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   54.357570][ T6519] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   54.357579][ T6519] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   54.357588][ T6519] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   54.357596][ T6519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   54.357604][ T6519] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   54.357624][ T6519]  </TASK>
[   54.438845][    C3] vkms_vblank_simulate: vblank timer overrun
[   54.596716][ T6532] FAULT_INJECTION: forcing a failure.
[   54.596716][ T6532] name failslab, interval 1, probability 0, space 0, times 0
[   54.600130][ T6532] CPU: 1 UID: 0 PID: 6532 Comm: syz.2.165 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   54.600148][ T6532] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.600156][ T6532] Call Trace:
[   54.600161][ T6532]  <TASK>
[   54.600167][ T6532]  dump_stack_lvl+0x16c/0x1f0
[   54.600190][ T6532]  should_fail_ex+0x50a/0x650
[   54.600212][ T6532]  ? fs_reclaim_acquire+0xae/0x150
[   54.600237][ T6532]  should_failslab+0xc2/0x120
[   54.600253][ T6532]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   54.600269][ T6532]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   54.600288][ T6532]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   54.600305][ T6532]  mmu_topup_memory_caches+0x25/0x170
[   54.600318][ T6532]  kvm_mmu_load+0xda/0x22a0
[   54.600331][ T6532]  ? kvm_apic_has_interrupt+0xb6/0x190
[   54.600347][ T6532]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   54.600362][ T6532]  ? kvm_guest_time_update+0x71e/0xeb0
[   54.600375][ T6532]  ? __pfx_kvm_mmu_load+0x10/0x10
[   54.600387][ T6532]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   54.600401][ T6532]  ? kvm_check_and_inject_events+0x725/0x12e0
[   54.600413][ T6532]  ? record_steal_time+0x61/0xbe0
[   54.600425][ T6532]  vcpu_run+0x338e/0x4f50
[   54.600436][ T6532]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   54.600452][ T6532]  ? __pfx_vcpu_run+0x10/0x10
[   54.600462][ T6532]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   54.600478][ T6532]  ? rcu_is_watching+0x12/0xc0
[   54.600488][ T6532]  ? trace_lock_acquire+0x14e/0x1f0
[   54.600500][ T6532]  ? __local_bh_enable_ip+0xa4/0x120
[   54.600515][ T6532]  ? lockdep_hardirqs_on+0x7c/0x110
[   54.600527][ T6532]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[   54.600542][ T6532]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   54.600554][ T6532]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   54.600571][ T6532]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   54.600584][ T6532]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   54.600599][ T6532]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   54.600617][ T6532]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   54.600635][ T6532]  ? __pfx_lock_release+0x10/0x10
[   54.600655][ T6532]  ? selinux_file_ioctl+0x180/0x270
[   54.600670][ T6532]  ? selinux_file_ioctl+0xb4/0x270
[   54.600685][ T6532]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   54.600698][ T6532]  __x64_sys_ioctl+0x190/0x200
[   54.600714][ T6532]  do_syscall_64+0xcd/0x250
[   54.600728][ T6532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.600742][ T6532] RIP: 0033:0x7f7624f8d169
[   54.600750][ T6532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.600759][ T6532] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   54.600791][ T6532] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   54.600799][ T6532] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   54.600805][ T6532] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   54.600814][ T6532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   54.600819][ T6532] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   54.600832][ T6532]  </TASK>
[   54.928457][ T6549] FAULT_INJECTION: forcing a failure.
[   54.928457][ T6549] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.933572][ T6549] CPU: 3 UID: 0 PID: 6549 Comm: syz.0.172 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   54.933592][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.933602][ T6549] Call Trace:
[   54.933607][ T6549]  <TASK>
[   54.933613][ T6549]  dump_stack_lvl+0x16c/0x1f0
[   54.933651][ T6549]  should_fail_ex+0x50a/0x650
[   54.933685][ T6549]  _copy_from_user+0x2e/0xd0
[   54.933703][ T6549]  input_event_from_user+0x134/0x3b0
[   54.933724][ T6549]  ? __pfx_input_event_from_user+0x10/0x10
[   54.933743][ T6549]  ? __pfx___might_resched+0x10/0x10
[   54.933768][ T6549]  ? input_inject_event+0x1a0/0x380
[   54.933788][ T6549]  evdev_write+0x377/0x750
[   54.933809][ T6549]  ? __pfx_evdev_write+0x10/0x10
[   54.933829][ T6549]  ? bpf_lsm_file_permission+0x9/0x10
[   54.933847][ T6549]  ? security_file_permission+0x71/0x210
[   54.933873][ T6549]  ? rw_verify_area+0xcf/0x680
[   54.933897][ T6549]  ? __pfx_evdev_write+0x10/0x10
[   54.933914][ T6549]  vfs_write+0x24c/0x1150
[   54.933940][ T6549]  ? __fget_files+0x1fc/0x3a0
[   54.933955][ T6549]  ? __pfx_lock_release+0x10/0x10
[   54.933979][ T6549]  ? __pfx_vfs_write+0x10/0x10
[   54.934004][ T6549]  ? lock_acquire+0x2f/0xb0
[   54.934024][ T6549]  ? __fget_files+0x40/0x3a0
[   54.934043][ T6549]  ? __fget_files+0x206/0x3a0
[   54.934065][ T6549]  ksys_write+0x207/0x250
[   54.934080][ T6549]  ? __pfx_ksys_write+0x10/0x10
[   54.934101][ T6549]  do_syscall_64+0xcd/0x250
[   54.934125][ T6549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.934147][ T6549] RIP: 0033:0x7fe4f438d169
[   54.934160][ T6549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.934175][ T6549] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   54.934190][ T6549] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   54.934201][ T6549] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   54.934210][ T6549] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   54.934220][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   54.934229][ T6549] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   54.934251][ T6549]  </TASK>
[   54.991942][ T6550] cgroup: release_agent respecified
[   54.992999][    C3] vkms_vblank_simulate: vblank timer overrun
[   55.049296][ T6557] kvm: user requested TSC rate below hardware speed
[   55.060343][ T6561] netlink: 'syz.1.177': attribute type 1 has an invalid length.
[   55.082584][ T6559] FAULT_INJECTION: forcing a failure.
[   55.082584][ T6559] name failslab, interval 1, probability 0, space 0, times 0
[   55.086142][ T6559] CPU: 0 UID: 0 PID: 6559 Comm: syz.0.178 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   55.086156][ T6559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.086162][ T6559] Call Trace:
[   55.086165][ T6559]  <TASK>
[   55.086169][ T6559]  dump_stack_lvl+0x16c/0x1f0
[   55.086185][ T6559]  should_fail_ex+0x50a/0x650
[   55.086202][ T6559]  ? fs_reclaim_acquire+0xae/0x150
[   55.086218][ T6559]  should_failslab+0xc2/0x120
[   55.086230][ T6559]  __kmalloc_node_noprof+0xd1/0x510
[   55.086240][ T6559]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   55.086252][ T6559]  ? alloc_slab_obj_exts+0x41/0xa0
[   55.086269][ T6559]  alloc_slab_obj_exts+0x41/0xa0
[   55.086284][ T6559]  new_slab+0x285/0x330
[   55.086299][ T6559]  ___slab_alloc+0xc5d/0x1720
[   55.086314][ T6559]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   55.086335][ T6559]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   55.086349][ T6559]  ? __slab_alloc.constprop.0+0x56/0xb0
[   55.086364][ T6559]  __slab_alloc.constprop.0+0x56/0xb0
[   55.086381][ T6559]  kmem_cache_alloc_noprof+0xfa/0x3d0
[   55.086392][ T6559]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   55.086407][ T6559]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   55.086424][ T6559]  mmu_topup_memory_caches+0x25/0x170
[   55.086437][ T6559]  kvm_mmu_load+0xda/0x22a0
[   55.086449][ T6559]  ? kvm_apic_has_interrupt+0xb6/0x190
[   55.086465][ T6559]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   55.086480][ T6559]  ? kvm_guest_time_update+0x71e/0xeb0
[   55.086492][ T6559]  ? __pfx_kvm_mmu_load+0x10/0x10
[   55.086504][ T6559]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   55.086518][ T6559]  ? kvm_check_and_inject_events+0x725/0x12e0
[   55.086530][ T6559]  ? record_steal_time+0x61/0xbe0
[   55.086542][ T6559]  vcpu_run+0x338e/0x4f50
[   55.086553][ T6559]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   55.086569][ T6559]  ? __pfx_vcpu_run+0x10/0x10
[   55.086579][ T6559]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   55.086594][ T6559]  ? rcu_is_watching+0x12/0xc0
[   55.086604][ T6559]  ? trace_lock_acquire+0x14e/0x1f0
[   55.086615][ T6559]  ? __local_bh_enable_ip+0xa4/0x120
[   55.086630][ T6559]  ? lockdep_hardirqs_on+0x7c/0x110
[   55.086642][ T6559]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[   55.086657][ T6559]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   55.086668][ T6559]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   55.086683][ T6559]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   55.086696][ T6559]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   55.086711][ T6559]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   55.086729][ T6559]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   55.086747][ T6559]  ? __pfx_lock_release+0x10/0x10
[   55.086765][ T6559]  ? selinux_file_ioctl+0x180/0x270
[   55.086780][ T6559]  ? selinux_file_ioctl+0xb4/0x270
[   55.086795][ T6559]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   55.086812][ T6559]  __x64_sys_ioctl+0x190/0x200
[   55.086827][ T6559]  do_syscall_64+0xcd/0x250
[   55.086841][ T6559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.086855][ T6559] RIP: 0033:0x7fe4f438d169
[   55.086864][ T6559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.086873][ T6559] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   55.086882][ T6559] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   55.086888][ T6559] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   55.086894][ T6559] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   55.086899][ T6559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   55.086904][ T6559] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   55.086916][ T6559]  </TASK>
[   55.261002][ T6573] syz.2.182 (6573) used greatest stack depth: 20640 bytes left
[   55.294168][    C3] Unknown status report in ack skb
[   55.307159][ T6581] netlink: 24 bytes leftover after parsing attributes in process `syz.0.186'.
[   55.457850][   T40] kauditd_printk_skb: 72 callbacks suppressed
[   55.457860][   T40] audit: type=1400 audit(1741402190.531:308): avc:  denied  { create } for  pid=6595 comm="syz.1.192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   55.467178][   T40] audit: type=1400 audit(1741402190.541:309): avc:  denied  { bind } for  pid=6595 comm="syz.1.192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   55.474806][   T40] audit: type=1400 audit(1741402190.541:310): avc:  denied  { name_bind } for  pid=6595 comm="syz.1.192" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   55.480852][   T40] audit: type=1400 audit(1741402190.541:311): avc:  denied  { node_bind } for  pid=6595 comm="syz.1.192" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[   55.486971][   T40] audit: type=1400 audit(1741402190.541:312): avc:  denied  { write } for  pid=6595 comm="syz.1.192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   55.499961][ T6597] kvm: user requested TSC rate below hardware speed
[   55.672612][ T6613] ptm ptm42: ldisc open failed (-12), clearing slot 42
[   55.833397][   T40] audit: type=1400 audit(1741402190.911:313): avc:  denied  { read write } for  pid=6626 comm="syz.2.201" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   55.840312][   T40] audit: type=1400 audit(1741402190.911:314): avc:  denied  { open } for  pid=6626 comm="syz.2.201" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   55.847201][   T40] audit: type=1400 audit(1741402190.911:315): avc:  denied  { ioctl } for  pid=6626 comm="syz.2.201" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   56.026711][ T6629] netlink: 36 bytes leftover after parsing attributes in process `syz.0.202'.
[   56.041578][ T6629] netlink: 8 bytes leftover after parsing attributes in process `syz.0.202'.
[   56.047318][ T6629] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=58648 sclass=netlink_route_socket pid=6629 comm=syz.0.202
[   56.071869][   T58] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   56.150095][ T6639] netlink: 32 bytes leftover after parsing attributes in process `syz.3.205'.
[   56.162216][ T6639] netlink: 32 bytes leftover after parsing attributes in process `syz.3.205'.
[   56.200268][ T6645] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6645 comm=syz.0.206
[   56.205925][ T6645] netlink: 'syz.0.206': attribute type 1 has an invalid length.
[   56.217686][ T6645] bond1: entered promiscuous mode
[   56.219163][ T6645] bond1: entered allmulticast mode
[   56.221943][   T58] usb 7-1: Using ep0 maxpacket: 16
[   56.225928][   T58] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[   56.228230][ T6645] bond2: entered allmulticast mode
[   56.229294][   T58] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[   56.229316][   T58] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[   56.233266][   T40] audit: type=1400 audit(1741402191.301:316): avc:  denied  { create } for  pid=6644 comm="syz.0.206" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   56.235542][   T58] usb 7-1: config 0 interface 0 has no altsetting 0
[   56.240949][   T40] audit: type=1400 audit(1741402191.311:317): avc:  denied  { connect } for  pid=6644 comm="syz.0.206" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   56.248151][   T58] usb 7-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[   56.257831][   T58] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   56.260599][   T58] usb 7-1: Product: syz
[   56.262173][   T58] usb 7-1: Manufacturer: syz
[   56.263762][   T58] usb 7-1: SerialNumber: syz
[   56.268515][   T58] usb 7-1: config 0 descriptor??
[   56.380724][ T6645] netlink: 28 bytes leftover after parsing attributes in process `syz.0.206'.
[   56.560413][ T6670] FAULT_INJECTION: forcing a failure.
[   56.560413][ T6670] name failslab, interval 1, probability 0, space 0, times 0
[   56.567313][ T6670] CPU: 1 UID: 0 PID: 6670 Comm: syz.3.214 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   56.567335][ T6670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.567344][ T6670] Call Trace:
[   56.567349][ T6670]  <TASK>
[   56.567355][ T6670]  dump_stack_lvl+0x16c/0x1f0
[   56.567380][ T6670]  should_fail_ex+0x50a/0x650
[   56.567402][ T6670]  ? fs_reclaim_acquire+0xae/0x150
[   56.567426][ T6670]  should_failslab+0xc2/0x120
[   56.567443][ T6670]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   56.567459][ T6670]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   56.567484][ T6670]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   56.567509][ T6670]  mmu_topup_memory_caches+0x25/0x170
[   56.567527][ T6670]  kvm_mmu_load+0xda/0x22a0
[   56.567545][ T6670]  ? kvm_apic_has_interrupt+0xb6/0x190
[   56.567568][ T6670]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   56.567588][ T6670]  ? kvm_guest_time_update+0x71e/0xeb0
[   56.567606][ T6670]  ? __pfx_kvm_mmu_load+0x10/0x10
[   56.567623][ T6670]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   56.567644][ T6670]  ? kvm_check_and_inject_events+0x725/0x12e0
[   56.567661][ T6670]  ? record_steal_time+0x61/0xbe0
[   56.567679][ T6670]  vcpu_run+0x338e/0x4f50
[   56.567697][ T6670]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   56.567721][ T6670]  ? __pfx_vcpu_run+0x10/0x10
[   56.567734][ T6670]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   56.567755][ T6670]  ? rcu_is_watching+0x12/0xc0
[   56.567776][ T6670]  ? trace_lock_acquire+0x14e/0x1f0
[   56.567791][ T6670]  ? __local_bh_enable_ip+0xa4/0x120
[   56.567812][ T6670]  ? lockdep_hardirqs_on+0x7c/0x110
[   56.567828][ T6670]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[   56.567850][ T6670]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   56.567867][ T6670]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   56.567889][ T6670]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   56.567909][ T6670]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   56.567933][ T6670]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   56.567957][ T6670]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   56.567984][ T6670]  ? __pfx_lock_release+0x10/0x10
[   56.568012][ T6670]  ? selinux_file_ioctl+0x180/0x270
[   56.568033][ T6670]  ? selinux_file_ioctl+0xb4/0x270
[   56.568056][ T6670]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   56.568075][ T6670]  __x64_sys_ioctl+0x190/0x200
[   56.568096][ T6670]  do_syscall_64+0xcd/0x250
[   56.568115][ T6670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.568134][ T6670] RIP: 0033:0x7f5e1898d169
[   56.568145][ T6670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.568158][ T6670] RSP: 002b:00007f5e197a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.568172][ T6670] RAX: ffffffffffffffda RBX: 00007f5e18ba5fa0 RCX: 00007f5e1898d169
[   56.568180][ T6670] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   56.568188][ T6670] RBP: 00007f5e197a9090 R08: 0000000000000000 R09: 0000000000000000
[   56.568196][ T6670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   56.568204][ T6670] R13: 0000000000000000 R14: 00007f5e18ba5fa0 R15: 00007ffecbd449f8
[   56.568224][ T6670]  </TASK>
[   56.761057][   T58] usb 7-1: Can not set alternate setting to 1, error: -71
[   56.763292][   T58] synaptics_usb 7-1:0.0: probe with driver synaptics_usb failed with error -71
[   56.770143][   T58] usb 7-1: USB disconnect, device number 3
[   56.792122][ T6677] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[   56.794541][ T6677] SELinux: failed to load policy
[   56.857911][ T6686] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6686 comm=syz.0.220
[   56.863767][ T6686] netlink: 12 bytes leftover after parsing attributes in process `syz.0.220'.
[   56.877574][ T6686] 8021q: adding VLAN 0 to HW filter on device bond3
[   56.894371][ T6686] 8021q: adding VLAN 0 to HW filter on device bond3
[   56.897169][ T6686] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address
[   56.901934][ T6686] bond3: (slave vxcan3): Error -95 calling set_mac_address
[   56.941207][ T6696] netlink: 16 bytes leftover after parsing attributes in process `syz.0.220'.
[   57.012910][ T6704] XFS (nbd0): no-recovery mounts must be read-only.
[   57.285759][ T6707] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   57.348196][ T6709] netlink: 'syz.2.229': attribute type 21 has an invalid length.
[   57.432465][ T6713] FAULT_INJECTION: forcing a failure.
[   57.432465][ T6713] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.436130][ T6713] CPU: 3 UID: 0 PID: 6713 Comm: syz.2.231 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   57.436142][ T6713] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.436149][ T6713] Call Trace:
[   57.436152][ T6713]  <TASK>
[   57.436156][ T6713]  dump_stack_lvl+0x16c/0x1f0
[   57.436180][ T6713]  should_fail_ex+0x50a/0x650
[   57.436203][ T6713]  _copy_from_user+0x2e/0xd0
[   57.436214][ T6713]  input_event_from_user+0x134/0x3b0
[   57.436227][ T6713]  ? __pfx_input_event_from_user+0x10/0x10
[   57.436243][ T6713]  ? __pfx___might_resched+0x10/0x10
[   57.436259][ T6713]  ? input_inject_event+0x51/0x380
[   57.436272][ T6713]  evdev_write+0x377/0x750
[   57.436285][ T6713]  ? __pfx_evdev_write+0x10/0x10
[   57.436296][ T6713]  ? bpf_lsm_file_permission+0x9/0x10
[   57.436307][ T6713]  ? security_file_permission+0x71/0x210
[   57.436323][ T6713]  ? rw_verify_area+0xcf/0x680
[   57.436338][ T6713]  ? __pfx_evdev_write+0x10/0x10
[   57.436348][ T6713]  vfs_write+0x24c/0x1150
[   57.436364][ T6713]  ? __fget_files+0x1fc/0x3a0
[   57.436373][ T6713]  ? __pfx_lock_release+0x10/0x10
[   57.436388][ T6713]  ? __pfx_vfs_write+0x10/0x10
[   57.436403][ T6713]  ? lock_acquire+0x2f/0xb0
[   57.436416][ T6713]  ? __fget_files+0x40/0x3a0
[   57.436426][ T6713]  ? __fget_files+0x206/0x3a0
[   57.436439][ T6713]  ksys_write+0x207/0x250
[   57.436448][ T6713]  ? __pfx_ksys_write+0x10/0x10
[   57.436460][ T6713]  do_syscall_64+0xcd/0x250
[   57.436475][ T6713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.436489][ T6713] RIP: 0033:0x7f7624f8d169
[   57.436497][ T6713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.436506][ T6713] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   57.436515][ T6713] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   57.436521][ T6713] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   57.436526][ T6713] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   57.436532][ T6713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   57.436537][ T6713] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   57.436549][ T6713]  </TASK>
[   57.519856][    C3] vkms_vblank_simulate: vblank timer overrun
[   57.915420][ T6736] syz.3.240: attempt to access beyond end of device
[   57.915420][ T6736] nbd3: rw=0, sector=64, nr_sectors = 1 limit=0
[   57.919789][ T6736] syz.3.240: attempt to access beyond end of device
[   57.919789][ T6736] nbd3: rw=0, sector=256, nr_sectors = 1 limit=0
[   57.924130][ T6736] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[   57.926984][ T6736] syz.3.240: attempt to access beyond end of device
[   57.926984][ T6736] nbd3: rw=0, sector=512, nr_sectors = 1 limit=0
[   57.929943][ T6740] netlink: 'syz.0.242': attribute type 1 has an invalid length.
[   57.930604][ T6736] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[   57.936564][ T6736] syz.3.240: attempt to access beyond end of device
[   57.936564][ T6736] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[   57.941402][ T6736] syz.3.240: attempt to access beyond end of device
[   57.941402][ T6736] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[   57.942602][ T6740] bond4: entered promiscuous mode
[   57.945207][ T6736] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[   57.946962][ T6740] 8021q: adding VLAN 0 to HW filter on device bond4
[   57.949302][ T6736] syz.3.240: attempt to access beyond end of device
[   57.949302][ T6736] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[   57.953380][ T6740] netlink: 'syz.0.242': attribute type 1 has an invalid length.
[   57.955487][ T6736] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[   57.957826][ T6740] netlink: 'syz.0.242': attribute type 1 has an invalid length.
[   57.960605][ T6736] syz.3.240: attempt to access beyond end of device
[   57.960605][ T6736] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[   57.963167][ T6740] netlink: 'syz.0.242': attribute type 1 has an invalid length.
[   57.968262][ T6736] syz.3.240: attempt to access beyond end of device
[   57.968262][ T6736] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[   57.970442][ T6740] netlink: 'syz.0.242': attribute type 1 has an invalid length.
[   57.974128][ T6736] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[   57.974248][ T6736] syz.3.240: attempt to access beyond end of device
[   57.974248][ T6736] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[   57.977336][ T6740] netlink: 'syz.0.242': attribute type 1 has an invalid length.
[   57.980700][ T6736] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[   57.985499][ T6740] netlink: 'syz.0.242': attribute type 1 has an invalid length.
[   57.988109][ T6736] syz.3.240: attempt to access beyond end of device
[   57.988109][ T6736] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[   57.998894][ T6736] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[   58.002757][ T6736] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[   58.006358][ T6736] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[   58.024013][ T6736] program syz.3.240 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.063916][ T6753] tmpfs: Bad value for 'grpquota_block_hardlimit'
[   58.121939][   T36] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   58.271891][   T36] usb 7-1: Using ep0 maxpacket: 16
[   58.276150][   T36] usb 7-1: config 1 interface 0 altsetting 202 bulk endpoint 0x82 has invalid maxpacket 8
[   58.279801][   T36] usb 7-1: config 1 interface 0 has no altsetting 0
[   58.285613][   T36] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   58.289159][   T36] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   58.292886][   T36] usb 7-1: Product: 䠦킫絘塗喸၇픜씇呕梦٢뭟커㲸隨뎥炐雼ၯ年鴷⻜摢ᖜ헌릍฽鱏ᛌ䶡輡찓豳͍╬硾㴑퍢贽ꆏ늒蹉跆⃷㷅訆罜ì᪕ﰦ߇䲔윔땉⼆쁤옐뉰齙뛠࣫杯믨⻉布
[   58.300981][   T36] usb 7-1: Manufacturer: ᐇ
[   58.303475][   T36] usb 7-1: SerialNumber: 踒෯歰歠ࡽ顷槧ᨠ굘뱭冷嵭௜ꬡ솈驋焲届㬭㗣颪豛㴿㬷㗞겏俐勨ᙟƬ淈ꥄ䢾ᙅ촯얞ₚ䪹魱㔪蓚↰͠ẖ井꥿❦弩圇塤䥖킨砃㻒쳕᳴彼愖嬓葷僎꽕饡㴇蓧∌쓁쨒톌埝Ⳋ䙘혫迺厑ትⱨ芎ೳ筕륢뵉俲勨촫玍详윉︮挳눧䠿꾛쎲ﶂ갧﷦쿵혱壛Ἰ卯
[   58.310199][ T6729] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   58.434766][ T6801] FAULT_INJECTION: forcing a failure.
[   58.434766][ T6801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.438437][ T6801] CPU: 0 UID: 0 PID: 6801 Comm: syz.0.264 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   58.438451][ T6801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.438457][ T6801] Call Trace:
[   58.438461][ T6801]  <TASK>
[   58.438465][ T6801]  dump_stack_lvl+0x16c/0x1f0
[   58.438491][ T6801]  should_fail_ex+0x50a/0x650
[   58.438513][ T6801]  _copy_from_user+0x2e/0xd0
[   58.438524][ T6801]  input_event_from_user+0x134/0x3b0
[   58.438537][ T6801]  ? __pfx_input_event_from_user+0x10/0x10
[   58.438549][ T6801]  ? __pfx___might_resched+0x10/0x10
[   58.438565][ T6801]  ? input_inject_event+0x51/0x380
[   58.438578][ T6801]  evdev_write+0x377/0x750
[   58.438591][ T6801]  ? __pfx_evdev_write+0x10/0x10
[   58.438602][ T6801]  ? bpf_lsm_file_permission+0x9/0x10
[   58.438613][ T6801]  ? security_file_permission+0x71/0x210
[   58.438629][ T6801]  ? rw_verify_area+0xcf/0x680
[   58.438644][ T6801]  ? __pfx_evdev_write+0x10/0x10
[   58.438654][ T6801]  vfs_write+0x24c/0x1150
[   58.438670][ T6801]  ? __fget_files+0x1fc/0x3a0
[   58.438680][ T6801]  ? __pfx_lock_release+0x10/0x10
[   58.438694][ T6801]  ? __pfx_vfs_write+0x10/0x10
[   58.438710][ T6801]  ? lock_acquire+0x2f/0xb0
[   58.438723][ T6801]  ? __fget_files+0x40/0x3a0
[   58.438737][ T6801]  ? __fget_files+0x206/0x3a0
[   58.438750][ T6801]  ksys_write+0x207/0x250
[   58.438759][ T6801]  ? __pfx_ksys_write+0x10/0x10
[   58.438771][ T6801]  do_syscall_64+0xcd/0x250
[   58.438786][ T6801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.438800][ T6801] RIP: 0033:0x7fe4f438d169
[   58.438809][ T6801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.438817][ T6801] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   58.438826][ T6801] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   58.438832][ T6801] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   58.438838][ T6801] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   58.438843][ T6801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   58.438848][ T6801] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   58.438860][ T6801]  </TASK>
[   58.458710][ T6803] openvswitch: netlink: IP tunnel dst address not specified
[   58.535426][   T36] usblp 7-1:1.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 202 proto 3 vid 0x0525 pid 0xA4A8
[   58.539855][   T36] usb 7-1: USB disconnect, device number 4
[   58.544033][   T36] usblp0: removed
[   58.730468][ T6821] ERROR: device name not specified.
[   58.818365][   T36] IPVS: starting estimator thread 0...
[   58.866411][ T6829] vlan2: entered allmulticast mode
[   58.867902][ T6829] vlan1: entered allmulticast mode
[   58.869344][ T6829] veth0_vlan: entered allmulticast mode
[   58.911939][ T6828] IPVS: using max 36 ests per chain, 86400 per kthread
[   59.890233][ T6902] FAULT_INJECTION: forcing a failure.
[   59.890233][ T6902] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.894069][ T6902] CPU: 2 UID: 0 PID: 6902 Comm: syz.0.296 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   59.894082][ T6902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.894088][ T6902] Call Trace:
[   59.894091][ T6902]  <TASK>
[   59.894095][ T6902]  dump_stack_lvl+0x16c/0x1f0
[   59.894112][ T6902]  should_fail_ex+0x50a/0x650
[   59.894137][ T6902]  _copy_from_user+0x2e/0xd0
[   59.894154][ T6902]  input_event_from_user+0x134/0x3b0
[   59.894172][ T6902]  ? __pfx_input_event_from_user+0x10/0x10
[   59.894188][ T6902]  ? __pfx___might_resched+0x10/0x10
[   59.894204][ T6902]  ? input_inject_event+0x51/0x380
[   59.894217][ T6902]  evdev_write+0x377/0x750
[   59.894230][ T6902]  ? __pfx_evdev_write+0x10/0x10
[   59.894247][ T6902]  ? bpf_lsm_file_permission+0x9/0x10
[   59.894263][ T6902]  ? security_file_permission+0x71/0x210
[   59.894286][ T6902]  ? rw_verify_area+0xcf/0x680
[   59.894306][ T6902]  ? __pfx_evdev_write+0x10/0x10
[   59.894316][ T6902]  vfs_write+0x24c/0x1150
[   59.894331][ T6902]  ? __fget_files+0x1fc/0x3a0
[   59.894341][ T6902]  ? __pfx_lock_release+0x10/0x10
[   59.894355][ T6902]  ? __pfx_vfs_write+0x10/0x10
[   59.894371][ T6902]  ? lock_acquire+0x2f/0xb0
[   59.894383][ T6902]  ? __fget_files+0x40/0x3a0
[   59.894394][ T6902]  ? __fget_files+0x206/0x3a0
[   59.894407][ T6902]  ksys_write+0x207/0x250
[   59.894416][ T6902]  ? __pfx_ksys_write+0x10/0x10
[   59.894428][ T6902]  do_syscall_64+0xcd/0x250
[   59.894443][ T6902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.894459][ T6902] RIP: 0033:0x7fe4f438d169
[   59.894472][ T6902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.894485][ T6902] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   59.894499][ T6902] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   59.894509][ T6902] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   59.894518][ T6902] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   59.894526][ T6902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   59.894534][ T6902] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   59.894553][ T6902]  </TASK>
[   60.051517][ T6908] __nla_validate_parse: 2 callbacks suppressed
[   60.051532][ T6908] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.299'.
[   60.395612][ T6909] erspan0: default FDB implementation only supports local addresses
[   60.459403][ T6926] FAULT_INJECTION: forcing a failure.
[   60.459403][ T6926] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.465143][ T6926] CPU: 2 UID: 0 PID: 6926 Comm: syz.2.306 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   60.465163][ T6926] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.465172][ T6926] Call Trace:
[   60.465177][ T6926]  <TASK>
[   60.465182][ T6926]  dump_stack_lvl+0x16c/0x1f0
[   60.465203][ T6926]  should_fail_ex+0x50a/0x650
[   60.465226][ T6926]  _copy_from_user+0x2e/0xd0
[   60.465240][ T6926]  input_event_from_user+0x134/0x3b0
[   60.465256][ T6926]  ? __pfx_input_event_from_user+0x10/0x10
[   60.465272][ T6926]  ? __pfx___might_resched+0x10/0x10
[   60.465291][ T6926]  ? input_inject_event+0x82/0x380
[   60.465308][ T6926]  evdev_write+0x377/0x750
[   60.465324][ T6926]  ? __pfx_evdev_write+0x10/0x10
[   60.465339][ T6926]  ? bpf_lsm_file_permission+0x9/0x10
[   60.465353][ T6926]  ? security_file_permission+0x71/0x210
[   60.465372][ T6926]  ? rw_verify_area+0xcf/0x680
[   60.465391][ T6926]  ? __pfx_evdev_write+0x10/0x10
[   60.465405][ T6926]  vfs_write+0x24c/0x1150
[   60.465425][ T6926]  ? __fget_files+0x1fc/0x3a0
[   60.465437][ T6926]  ? __pfx_lock_release+0x10/0x10
[   60.465456][ T6926]  ? __pfx_vfs_write+0x10/0x10
[   60.465475][ T6926]  ? lock_acquire+0x2f/0xb0
[   60.465492][ T6926]  ? __fget_files+0x40/0x3a0
[   60.465506][ T6926]  ? __fget_files+0x206/0x3a0
[   60.465524][ T6926]  ksys_write+0x207/0x250
[   60.465535][ T6926]  ? __pfx_ksys_write+0x10/0x10
[   60.465552][ T6926]  do_syscall_64+0xcd/0x250
[   60.465571][ T6926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.465590][ T6926] RIP: 0033:0x7f7624f8d169
[   60.465600][ T6926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.465613][ T6926] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   60.465626][ T6926] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   60.465635][ T6926] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   60.465643][ T6926] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   60.465650][ T6926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   60.465658][ T6926] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   60.465676][ T6926]  </TASK>
[   60.467809][   T40] kauditd_printk_skb: 144 callbacks suppressed
[   60.467823][   T40] audit: type=1400 audit(1741402195.601:462): avc:  denied  { create } for  pid=6925 comm="syz.0.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   60.533541][ T6932] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   60.536496][   T40] audit: type=1400 audit(1741402195.621:463): avc:  denied  { setopt } for  pid=6925 comm="syz.0.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   60.553378][ T6932] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   60.566943][ T6933] fuse: Bad value for 'user_id'
[   60.573105][ T6933] fuse: Bad value for 'user_id'
[   60.590745][   T40] audit: type=1400 audit(1741402195.721:464): avc:  denied  { bind } for  pid=6931 comm="syz.1.308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   60.610001][ T6937] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.310'.
[   60.615835][   T40] audit: type=1400 audit(1741402195.751:465): avc:  denied  { create } for  pid=6938 comm="syz.0.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   60.624389][   T40] audit: type=1400 audit(1741402195.761:466): avc:  denied  { write } for  pid=6938 comm="syz.0.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   60.635009][   T40] audit: type=1400 audit(1741402195.771:467): avc:  denied  { read } for  pid=6938 comm="syz.0.311" path="socket:[13957]" dev="sockfs" ino=13957 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   60.635506][ T6942] netlink: 256 bytes leftover after parsing attributes in process `syz.0.311'.
[   60.820403][   T40] audit: type=1400 audit(1741402195.951:468): avc:  denied  { bind } for  pid=6955 comm="syz.2.316" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   60.899482][ T6960] FAULT_INJECTION: forcing a failure.
[   60.899482][ T6960] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.904695][ T6960] CPU: 2 UID: 0 PID: 6960 Comm: syz.2.318 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   60.904723][ T6960] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.904730][ T6960] Call Trace:
[   60.904733][ T6960]  <TASK>
[   60.904737][ T6960]  dump_stack_lvl+0x16c/0x1f0
[   60.904755][ T6960]  should_fail_ex+0x50a/0x650
[   60.904772][ T6960]  _copy_from_user+0x2e/0xd0
[   60.904783][ T6960]  input_event_from_user+0x134/0x3b0
[   60.904796][ T6960]  ? __pfx_input_event_from_user+0x10/0x10
[   60.904807][ T6960]  ? __pfx___might_resched+0x10/0x10
[   60.904828][ T6960]  ? input_inject_event+0x51/0x380
[   60.904840][ T6960]  evdev_write+0x377/0x750
[   60.904853][ T6960]  ? __pfx_evdev_write+0x10/0x10
[   60.904864][ T6960]  ? bpf_lsm_file_permission+0x9/0x10
[   60.904876][ T6960]  ? security_file_permission+0x71/0x210
[   60.904893][ T6960]  ? rw_verify_area+0xcf/0x680
[   60.904908][ T6960]  ? __pfx_evdev_write+0x10/0x10
[   60.904918][ T6960]  vfs_write+0x24c/0x1150
[   60.904934][ T6960]  ? __fget_files+0x1fc/0x3a0
[   60.904943][ T6960]  ? __pfx_lock_release+0x10/0x10
[   60.904958][ T6960]  ? __pfx_vfs_write+0x10/0x10
[   60.904974][ T6960]  ? lock_acquire+0x2f/0xb0
[   60.904986][ T6960]  ? __fget_files+0x40/0x3a0
[   60.904997][ T6960]  ? __fget_files+0x206/0x3a0
[   60.905010][ T6960]  ksys_write+0x207/0x250
[   60.905018][ T6960]  ? __pfx_ksys_write+0x10/0x10
[   60.905031][ T6960]  do_syscall_64+0xcd/0x250
[   60.905045][ T6960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.905059][ T6960] RIP: 0033:0x7f7624f8d169
[   60.905068][ T6960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.905077][ T6960] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   60.905086][ T6960] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   60.905092][ T6960] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   60.905098][ T6960] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   60.905103][ T6960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   60.905108][ T6960] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   60.905120][ T6960]  </TASK>
[   61.007685][   T40] audit: type=1400 audit(1741402196.141:469): avc:  denied  { mount } for  pid=6963 comm="syz.3.320" name="/" dev="9p" ino=35913861 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   61.046161][ T6964] validate_nla: 26 callbacks suppressed
[   61.046172][ T6964] netlink: 'syz.3.320': attribute type 15 has an invalid length.
[   61.049818][ T6964] netlink: 24 bytes leftover after parsing attributes in process `syz.3.320'.
[   61.064790][   T40] audit: type=1400 audit(1741402196.201:470): avc:  denied  { unmount } for  pid=5949 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   61.078474][ T6967] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.321'.
[   61.195887][   T40] audit: type=1400 audit(1741402196.331:471): avc:  denied  { write } for  pid=6974 comm="syz.2.326" name="ptp1" dev="devtmpfs" ino=1288 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   61.223213][ T6977] trusted_key: syz.3.322 sent an empty control message without MSG_MORE.
[   61.338453][ T6986] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.329'.
[   61.393450][ T6990] usb usb4: usbfs: process 6990 (syz.2.331) did not claim interface 0 before use
[   61.913316][ T7035] netlink: 32 bytes leftover after parsing attributes in process `syz.1.347'.
[   61.963211][ T7037] dccp_invalid_packet: P.type (CLOSE) not Data || [Data]Ack, while P.X == 0
[   62.088361][  T836] hid-generic 0001:0007:0004.0002: item fetching failed at offset 0/3
[   62.089735][ T7050] netlink: 16 bytes leftover after parsing attributes in process `syz.2.350'.
[   62.093701][  T836] hid-generic 0001:0007:0004.0002: probe with driver hid-generic failed with error -22
[   62.101382][ T7045] netlink: 'syz.2.350': attribute type 29 has an invalid length.
[   62.111951][ T7045] netlink: 'syz.2.350': attribute type 29 has an invalid length.
[   62.117445][ T7045] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   62.120106][ T7045] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   62.122592][ T7045] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   62.124942][ T7045] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   62.135197][ T7045] random: crng reseeded on system resumption
[   62.273825][ T7068] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   62.276093][ T7068] overlayfs: failed to set xattr on upper
[   62.277813][ T7068] overlayfs: ...falling back to redirect_dir=nofollow.
[   62.279863][ T7068] overlayfs: ...falling back to index=off.
[   62.281763][ T7068] overlayfs: ...falling back to uuid=null.
[   62.284173][ T7068] overlayfs: ...falling back to xino=off.
[   62.285873][ T7068] overlayfs: NFS export requires "index=on", falling back to nfs_export=off.
[   62.288351][ T7068] overlayfs: maximum fs stacking depth exceeded
[   62.340276][ T7073] kvm: user requested TSC rate below hardware speed
[   62.483182][ T7088] FAULT_INJECTION: forcing a failure.
[   62.483182][ T7088] name failslab, interval 1, probability 0, space 0, times 0
[   62.486958][ T7088] CPU: 2 UID: 0 PID: 7088 Comm: syz.0.368 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   62.486971][ T7088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.486977][ T7088] Call Trace:
[   62.486980][ T7088]  <TASK>
[   62.486984][ T7088]  dump_stack_lvl+0x16c/0x1f0
[   62.487011][ T7088]  should_fail_ex+0x50a/0x650
[   62.487031][ T7088]  ? fs_reclaim_acquire+0xae/0x150
[   62.487048][ T7088]  ? tomoyo_encode2+0x100/0x3e0
[   62.487063][ T7088]  should_failslab+0xc2/0x120
[   62.487074][ T7088]  __kmalloc_noprof+0xcb/0x510
[   62.487086][ T7088]  ? rcu_is_watching+0x12/0xc0
[   62.487098][ T7088]  tomoyo_encode2+0x100/0x3e0
[   62.487114][ T7088]  tomoyo_encode+0x29/0x50
[   62.487128][ T7088]  tomoyo_realpath_from_path+0x19d/0x720
[   62.487143][ T7088]  ? tomoyo_path_number_perm+0x235/0x590
[   62.487158][ T7088]  tomoyo_path_number_perm+0x248/0x590
[   62.487170][ T7088]  ? tomoyo_path_number_perm+0x235/0x590
[   62.487183][ T7088]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   62.487208][ T7088]  ? __pfx_lock_release+0x10/0x10
[   62.487222][ T7088]  ? trace_lock_acquire+0x14e/0x1f0
[   62.487235][ T7088]  ? lock_acquire+0x2f/0xb0
[   62.487248][ T7088]  ? __fget_files+0x40/0x3a0
[   62.487260][ T7088]  ? __fget_files+0x206/0x3a0
[   62.487271][ T7088]  security_file_ioctl+0x9b/0x240
[   62.487286][ T7088]  __x64_sys_ioctl+0xb7/0x200
[   62.487301][ T7088]  do_syscall_64+0xcd/0x250
[   62.487315][ T7088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.487330][ T7088] RIP: 0033:0x7fe4f438d169
[   62.487338][ T7088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.487348][ T7088] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.487357][ T7088] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   62.487363][ T7088] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   62.487369][ T7088] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   62.487374][ T7088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.487380][ T7088] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   62.487392][ T7088]  </TASK>
[   62.487400][ T7088] ERROR: Out of memory at tomoyo_realpath_from_path.
[   62.970528][ T7125] bio_check_eod: 2 callbacks suppressed
[   62.970537][ T7125] syz.2.379: attempt to access beyond end of device
[   62.970537][ T7125] nbd2: rw=6144, sector=128, nr_sectors = 8 limit=0
[   62.977049][ T7125] gfs2: error -5 reading superblock
[   62.983278][ T7126] kAFS: unparsable volume name
[   63.132132][   T26] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   63.253495][ T7144] 9pnet_virtio: no channels available for device syz
[   63.275743][ T7146] tmpfs: Bad value for 'mpol'
[   63.311842][   T26] usb 5-1: Using ep0 maxpacket: 16
[   63.317440][   T26] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[   63.320215][   T26] usb 5-1: config 0 has no interface number 0
[   63.324917][   T26] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   63.328187][   T26] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   63.332965][   T26] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[   63.336346][   T26] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[   63.338440][   T26] usb 5-1: Product: syz
[   63.339533][   T26] usb 5-1: SerialNumber: syz
[   63.341761][   T26] usb 5-1: config 0 descriptor??
[   63.345538][   T26] cm109 5-1:0.8: invalid payload size 0, expected 4
[   63.348295][   T26] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input6
[   63.483842][ T7158] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[   63.552889][    C2] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[   63.614944][ T7169] FAULT_INJECTION: forcing a failure.
[   63.614944][ T7169] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.618735][ T7169] CPU: 0 UID: 0 PID: 7169 Comm: syz.2.396 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   63.618754][ T7169] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.618760][ T7169] Call Trace:
[   63.618763][ T7169]  <TASK>
[   63.618768][ T7169]  dump_stack_lvl+0x16c/0x1f0
[   63.618799][ T7169]  should_fail_ex+0x50a/0x650
[   63.618831][ T7169]  _copy_from_user+0x2e/0xd0
[   63.618847][ T7169]  input_event_from_user+0x134/0x3b0
[   63.618865][ T7169]  ? __pfx_input_event_from_user+0x10/0x10
[   63.618883][ T7169]  ? __pfx___might_resched+0x10/0x10
[   63.618906][ T7169]  ? input_inject_event+0x1a0/0x380
[   63.618923][ T7169]  evdev_write+0x377/0x750
[   63.618940][ T7169]  ? __pfx_evdev_write+0x10/0x10
[   63.618955][ T7169]  ? bpf_lsm_file_permission+0x9/0x10
[   63.618968][ T7169]  ? security_file_permission+0x71/0x210
[   63.618988][ T7169]  ? rw_verify_area+0xcf/0x680
[   63.619007][ T7169]  ? __pfx_evdev_write+0x10/0x10
[   63.619020][ T7169]  vfs_write+0x24c/0x1150
[   63.619040][ T7169]  ? __fget_files+0x1fc/0x3a0
[   63.619052][ T7169]  ? __pfx_lock_release+0x10/0x10
[   63.619071][ T7169]  ? __pfx_vfs_write+0x10/0x10
[   63.619090][ T7169]  ? lock_acquire+0x2f/0xb0
[   63.619105][ T7169]  ? __fget_files+0x40/0x3a0
[   63.619120][ T7169]  ? __fget_files+0x206/0x3a0
[   63.619137][ T7169]  ksys_write+0x207/0x250
[   63.619148][ T7169]  ? __pfx_ksys_write+0x10/0x10
[   63.619167][ T7169]  do_syscall_64+0xcd/0x250
[   63.619187][ T7169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.619207][ T7169] RIP: 0033:0x7f7624f8d169
[   63.619219][ T7169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.619233][ T7169] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   63.619247][ T7169] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   63.619257][ T7169] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   63.619266][ T7169] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   63.619274][ T7169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   63.619282][ T7169] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   63.619302][ T7169]  </TASK>
[   63.716823][ T7172] block device autoloading is deprecated and will be removed.
[   63.827315][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[   63.827432][   T26] usb 5-1: USB disconnect, device number 3
[   63.829295][    C1] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[   63.868797][   T26] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[   64.076320][ T7212] FAULT_INJECTION: forcing a failure.
[   64.076320][ T7212] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.081115][ T7212] CPU: 2 UID: 0 PID: 7212 Comm: syz.3.412 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   64.081136][ T7212] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.081147][ T7212] Call Trace:
[   64.081153][ T7212]  <TASK>
[   64.081160][ T7212]  dump_stack_lvl+0x16c/0x1f0
[   64.081186][ T7212]  should_fail_ex+0x50a/0x650
[   64.081215][ T7212]  _copy_from_user+0x2e/0xd0
[   64.081234][ T7212]  input_event_from_user+0x134/0x3b0
[   64.081254][ T7212]  ? __pfx_input_event_from_user+0x10/0x10
[   64.081274][ T7212]  ? __pfx___might_resched+0x10/0x10
[   64.081309][ T7212]  ? input_inject_event+0x51/0x380
[   64.081331][ T7212]  evdev_write+0x377/0x750
[   64.081354][ T7212]  ? __pfx_evdev_write+0x10/0x10
[   64.081374][ T7212]  ? bpf_lsm_file_permission+0x9/0x10
[   64.081393][ T7212]  ? security_file_permission+0x71/0x210
[   64.081419][ T7212]  ? rw_verify_area+0xcf/0x680
[   64.081444][ T7212]  ? __pfx_evdev_write+0x10/0x10
[   64.081461][ T7212]  vfs_write+0x24c/0x1150
[   64.081490][ T7212]  ? __fget_files+0x1fc/0x3a0
[   64.081507][ T7212]  ? __pfx_lock_release+0x10/0x10
[   64.081529][ T7212]  ? __pfx_vfs_write+0x10/0x10
[   64.081554][ T7212]  ? lock_acquire+0x2f/0xb0
[   64.081574][ T7212]  ? __fget_files+0x40/0x3a0
[   64.081593][ T7212]  ? __fget_files+0x206/0x3a0
[   64.081615][ T7212]  ksys_write+0x207/0x250
[   64.081630][ T7212]  ? __pfx_ksys_write+0x10/0x10
[   64.081652][ T7212]  do_syscall_64+0xcd/0x250
[   64.081676][ T7212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.081697][ T7212] RIP: 0033:0x7f5e1898d169
[   64.081708][ T7212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.081722][ T7212] RSP: 002b:00007f5e197a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   64.081738][ T7212] RAX: ffffffffffffffda RBX: 00007f5e18ba5fa0 RCX: 00007f5e1898d169
[   64.081748][ T7212] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   64.081758][ T7212] RBP: 00007f5e197a9090 R08: 0000000000000000 R09: 0000000000000000
[   64.081767][ T7212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   64.081789][ T7212] R13: 0000000000000000 R14: 00007f5e18ba5fa0 R15: 00007ffecbd449f8
[   64.081813][ T7212]  </TASK>
[   64.172490][ T7218] FAULT_INJECTION: forcing a failure.
[   64.172490][ T7218] name failslab, interval 1, probability 0, space 0, times 0
[   64.177318][ T7218] CPU: 3 UID: 0 PID: 7218 Comm: syz.2.415 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   64.177338][ T7218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.177347][ T7218] Call Trace:
[   64.177352][ T7218]  <TASK>
[   64.177358][ T7218]  dump_stack_lvl+0x16c/0x1f0
[   64.177382][ T7218]  should_fail_ex+0x50a/0x650
[   64.177405][ T7218]  ? fs_reclaim_acquire+0xae/0x150
[   64.177429][ T7218]  should_failslab+0xc2/0x120
[   64.177447][ T7218]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   64.177463][ T7218]  ? alloc_pid+0xc7/0xbd0
[   64.177485][ T7218]  alloc_pid+0xc7/0xbd0
[   64.177508][ T7218]  copy_process+0x3901/0x8c50
[   64.177522][ T7218]  ? kasan_save_stack+0x33/0x60
[   64.177536][ T7218]  ? kasan_save_track+0x14/0x30
[   64.177549][ T7218]  ? __kasan_kmalloc+0xaa/0xb0
[   64.177562][ T7218]  ? vhost_task_create+0xe6/0x2e0
[   64.177580][ T7218]  ? kvm_mmu_post_init_vm+0x1b7/0x370
[   64.177599][ T7218]  ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[   64.177616][ T7218]  ? kvm_vcpu_ioctl+0x5ea/0x16b0
[   64.177633][ T7218]  ? __x64_sys_ioctl+0x190/0x200
[   64.177653][ T7218]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.177691][ T7218]  ? __pfx_copy_process+0x10/0x10
[   64.177718][ T7218]  ? lockdep_init_map_type+0x16d/0x7d0
[   64.177740][ T7218]  ? __raw_spin_lock_init+0x3a/0x110
[   64.177755][ T7218]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   64.177779][ T7218]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   64.177807][ T7218]  vhost_task_create+0x1d3/0x2e0
[   64.177826][ T7218]  ? __pfx_vhost_task_create+0x10/0x10
[   64.177845][ T7218]  ? kvm_mmu_post_init_vm+0xb4/0x370
[   64.177869][ T7218]  ? __pfx_vhost_task_fn+0x10/0x10
[   64.177890][ T7218]  ? lock_acquire.part.0+0x11b/0x380
[   64.177911][ T7218]  ? find_held_lock+0x2d/0x110
[   64.177933][ T7218]  kvm_mmu_post_init_vm+0x1b7/0x370
[   64.177954][ T7218]  kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[   64.177972][ T7218]  ? lock_acquire+0x2f/0xb0
[   64.177991][ T7218]  ? kvm_vcpu_ioctl+0x14be/0x16b0
[   64.178013][ T7218]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   64.178033][ T7218]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.178058][ T7218]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   64.178084][ T7218]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   64.178112][ T7218]  ? __pfx_lock_release+0x10/0x10
[   64.178142][ T7218]  ? selinux_file_ioctl+0x180/0x270
[   64.178165][ T7218]  ? selinux_file_ioctl+0xb4/0x270
[   64.178189][ T7218]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.178208][ T7218]  __x64_sys_ioctl+0x190/0x200
[   64.178230][ T7218]  do_syscall_64+0xcd/0x250
[   64.178253][ T7218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.178273][ T7218] RIP: 0033:0x7f7624f8d169
[   64.178285][ T7218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.178299][ T7218] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.178313][ T7218] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   64.178322][ T7218] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   64.178330][ T7218] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   64.178339][ T7218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.178361][ T7218] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   64.178382][ T7218]  </TASK>
[   64.292895][    C3] vkms_vblank_simulate: vblank timer overrun
[   64.590840][ T7239] overlayfs: missing 'lowerdir'
[   64.659402][   T26] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   64.682682][ T7245] FAULT_INJECTION: forcing a failure.
[   64.682682][ T7245] name failslab, interval 1, probability 0, space 0, times 0
[   64.687534][ T7245] CPU: 3 UID: 0 PID: 7245 Comm: syz.0.427 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   64.687555][ T7245] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.687565][ T7245] Call Trace:
[   64.687571][ T7245]  <TASK>
[   64.687578][ T7245]  dump_stack_lvl+0x16c/0x1f0
[   64.687603][ T7245]  should_fail_ex+0x50a/0x650
[   64.687628][ T7245]  ? fs_reclaim_acquire+0xae/0x150
[   64.687655][ T7245]  should_failslab+0xc2/0x120
[   64.687675][ T7245]  __kmalloc_cache_node_noprof+0x6e/0x420
[   64.687693][ T7245]  ? __get_vm_area_node+0x101/0x2f0
[   64.687720][ T7245]  __get_vm_area_node+0x101/0x2f0
[   64.687748][ T7245]  __vmalloc_node_range_noprof+0x26a/0x1530
[   64.687774][ T7245]  ? vhost_task_create+0x1d3/0x2e0
[   64.687800][ T7245]  ? mod_objcg_state+0x4c4/0x8d0
[   64.687825][ T7245]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.687847][ T7245]  ? vhost_task_create+0x1d3/0x2e0
[   64.687873][ T7245]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   64.687900][ T7245]  ? rcu_is_watching+0x12/0xc0
[   64.687919][ T7245]  ? trace_kmem_cache_alloc+0x2d/0xd0
[   64.687941][ T7245]  ? kmem_cache_alloc_node_noprof+0x272/0x3c0
[   64.687955][ T7245]  ? mark_held_locks+0x9f/0xe0
[   64.687975][ T7245]  ? copy_process+0x4be/0x8c50
[   64.687990][ T7245]  ? vhost_task_create+0x1d3/0x2e0
[   64.688010][ T7245]  copy_process+0x2ef2/0x8c50
[   64.688023][ T7245]  ? vhost_task_create+0x1d3/0x2e0
[   64.688039][ T7245]  ? kasan_save_stack+0x33/0x60
[   64.688053][ T7245]  ? kasan_save_track+0x14/0x30
[   64.688067][ T7245]  ? __kasan_kmalloc+0xaa/0xb0
[   64.688080][ T7245]  ? vhost_task_create+0xe6/0x2e0
[   64.688095][ T7245]  ? kvm_mmu_post_init_vm+0x1b7/0x370
[   64.688110][ T7245]  ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[   64.688125][ T7245]  ? kvm_vcpu_ioctl+0x5ea/0x16b0
[   64.688142][ T7245]  ? __x64_sys_ioctl+0x190/0x200
[   64.688163][ T7245]  ? do_syscall_64+0xcd/0x250
[   64.688182][ T7245]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.688214][ T7245]  ? __pfx_copy_process+0x10/0x10
[   64.688244][ T7245]  ? lockdep_init_map_type+0x16d/0x7d0
[   64.688263][ T7245]  ? __raw_spin_lock_init+0x3a/0x110
[   64.688275][ T7245]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   64.688294][ T7245]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   64.688314][ T7245]  vhost_task_create+0x1d3/0x2e0
[   64.688329][ T7245]  ? __pfx_vhost_task_create+0x10/0x10
[   64.688345][ T7245]  ? kvm_mmu_post_init_vm+0xb4/0x370
[   64.688372][ T7245]  ? __pfx_vhost_task_fn+0x10/0x10
[   64.688392][ T7245]  ? lock_acquire.part.0+0x11b/0x380
[   64.688408][ T7245]  ? find_held_lock+0x2d/0x110
[   64.688448][ T7245]  kvm_mmu_post_init_vm+0x1b7/0x370
[   64.688481][ T7245]  kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[   64.688497][ T7245]  ? lock_acquire+0x2f/0xb0
[   64.688512][ T7245]  ? kvm_vcpu_ioctl+0x14be/0x16b0
[   64.688537][ T7245]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   64.688558][ T7245]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.688578][ T7245]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   64.688600][ T7245]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   64.688623][ T7245]  ? __pfx_lock_release+0x10/0x10
[   64.688648][ T7245]  ? selinux_file_ioctl+0x180/0x270
[   64.688666][ T7245]  ? selinux_file_ioctl+0xb4/0x270
[   64.688708][ T7245]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.688724][ T7245]  __x64_sys_ioctl+0x190/0x200
[   64.688743][ T7245]  do_syscall_64+0xcd/0x250
[   64.688762][ T7245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.688784][ T7245] RIP: 0033:0x7fe4f438d169
[   64.688798][ T7245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.688812][ T7245] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.688824][ T7245] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   64.688832][ T7245] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   64.688842][ T7245] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   64.688850][ T7245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.688860][ T7245] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   64.688882][ T7245]  </TASK>
[   64.689139][ T7245] syz.0.427: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   64.811995][   T26] usb 7-1: Using ep0 maxpacket: 32
[   64.815460][ T7245] CPU: 3 UID: 0 PID: 7245 Comm: syz.0.427 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   64.815479][ T7245] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.815485][ T7245] Call Trace:
[   64.815489][ T7245]  <TASK>
[   64.815494][ T7245]  dump_stack_lvl+0x16c/0x1f0
[   64.815512][ T7245]  warn_alloc+0x24d/0x3a0
[   64.815525][ T7245]  ? __pfx_warn_alloc+0x10/0x10
[   64.815535][ T7245]  ? rcu_is_watching+0x12/0xc0
[   64.815547][ T7245]  ? __kmalloc_cache_node_noprof+0x2ad/0x420
[   64.815560][ T7245]  ? __kasan_kmalloc+0x8a/0xb0
[   64.815570][ T7245]  ? __get_vm_area_node+0x1dc/0x2f0
[   64.815588][ T7245]  __vmalloc_node_range_noprof+0xd24/0x1530
[   64.815606][ T7245]  ? mod_objcg_state+0x4c4/0x8d0
[   64.815622][ T7245]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.815636][ T7245]  ? vhost_task_create+0x1d3/0x2e0
[   64.815652][ T7245]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   64.815669][ T7245]  ? rcu_is_watching+0x12/0xc0
[   64.815679][ T7245]  ? trace_kmem_cache_alloc+0x2d/0xd0
[   64.815693][ T7245]  ? kmem_cache_alloc_node_noprof+0x272/0x3c0
[   64.815703][ T7245]  ? mark_held_locks+0x9f/0xe0
[   64.815717][ T7245]  ? copy_process+0x4be/0x8c50
[   64.815727][ T7245]  ? vhost_task_create+0x1d3/0x2e0
[   64.815739][ T7245]  copy_process+0x2ef2/0x8c50
[   64.815749][ T7245]  ? vhost_task_create+0x1d3/0x2e0
[   64.815760][ T7245]  ? kasan_save_stack+0x33/0x60
[   64.815769][ T7245]  ? kasan_save_track+0x14/0x30
[   64.815778][ T7245]  ? __kasan_kmalloc+0xaa/0xb0
[   64.815786][ T7245]  ? vhost_task_create+0xe6/0x2e0
[   64.815798][ T7245]  ? kvm_mmu_post_init_vm+0x1b7/0x370
[   64.815811][ T7245]  ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[   64.815822][ T7245]  ? kvm_vcpu_ioctl+0x5ea/0x16b0
[   64.815834][ T7245]  ? __x64_sys_ioctl+0x190/0x200
[   64.815847][ T7245]  ? do_syscall_64+0xcd/0x250
[   64.815859][ T7245]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.815881][ T7245]  ? __pfx_copy_process+0x10/0x10
[   64.815898][ T7245]  ? lockdep_init_map_type+0x16d/0x7d0
[   64.815912][ T7245]  ? __raw_spin_lock_init+0x3a/0x110
[   64.815923][ T7245]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   64.815938][ T7245]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   64.815956][ T7245]  vhost_task_create+0x1d3/0x2e0
[   64.815968][ T7245]  ? __pfx_vhost_task_create+0x10/0x10
[   64.815981][ T7245]  ? kvm_mmu_post_init_vm+0xb4/0x370
[   64.815997][ T7245]  ? __pfx_vhost_task_fn+0x10/0x10
[   64.816011][ T7245]  ? lock_acquire.part.0+0x11b/0x380
[   64.816025][ T7245]  ? find_held_lock+0x2d/0x110
[   64.816039][ T7245]  kvm_mmu_post_init_vm+0x1b7/0x370
[   64.816053][ T7245]  kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[   64.816064][ T7245]  ? lock_acquire+0x2f/0xb0
[   64.816077][ T7245]  ? kvm_vcpu_ioctl+0x14be/0x16b0
[   64.816091][ T7245]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   64.816104][ T7245]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.816120][ T7245]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   64.816139][ T7245]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   64.816157][ T7245]  ? __pfx_lock_release+0x10/0x10
[   64.816176][ T7245]  ? selinux_file_ioctl+0x180/0x270
[   64.816191][ T7245]  ? selinux_file_ioctl+0xb4/0x270
[   64.816207][ T7245]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.816220][ T7245]  __x64_sys_ioctl+0x190/0x200
[   64.816235][ T7245]  do_syscall_64+0xcd/0x250
[   64.816248][ T7245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.816262][ T7245] RIP: 0033:0x7fe4f438d169
[   64.816271][ T7245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.816280][ T7245] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.816289][ T7245] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   64.816295][ T7245] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   64.816301][ T7245] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   64.816306][ T7245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.816312][ T7245] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   64.816324][ T7245]  </TASK>
[   64.816328][ T7245] Mem-Info:
[   64.826566][   T26] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   64.837636][ T7245] active_anon:6144 inactive_anon:0 isolated_anon:0
[   64.837636][ T7245]  active_file:4754 inactive_file:48702 isolated_file:0
[   64.837636][ T7245]  unevictable:1768 dirty:1932 writeback:0
[   64.837636][ T7245]  slab_reclaimable:11553 slab_unreclaimable:69883
[   64.837636][ T7245]  mapped:24139 shmem:2455 pagetables:927
[   64.837636][ T7245]  sec_pagetables:296 bounce:0
[   64.837636][ T7245]  kernel_misc_reclaimable:0
[   64.837636][ T7245]  free:475181 free_pcp:1351 free_cma:0
[   64.844098][   T26] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   64.844520][ T7245] Node 0 active_anon:24576kB inactive_anon:0kB active_file:19016kB inactive_file:194736kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:96556kB dirty:7724kB writeback:0kB shmem:6284kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12176kB pagetables:3708kB sec_pagetables:1184kB all_unreclaimable? no
[   64.845994][   T26] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   64.848316][ T7245] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[   64.849893][   T26] usb 7-1: Product: syz
[   64.849902][   T26] usb 7-1: Manufacturer: syz
[   64.849910][   T26] usb 7-1: SerialNumber: syz
[   64.852005][ T7245] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   64.857567][   T26] usb 7-1: config 0 descriptor??
[   64.857850][ T7245] lowmem_reserve[]:
[   64.860040][ T7228] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   64.866635][ T7245]  0 1240 0 0 0
[   65.037251][ T7245] Node 0 DMA32 free:298452kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:24576kB inactive_anon:0kB active_file:19016kB inactive_file:194736kB unevictable:3536kB writepending:7724kB present:2080628kB managed:1270140kB mlocked:0kB bounce:0kB free_pcp:3884kB local_pcp:1380kB free_cma:0kB
[   65.046326][ T7245] lowmem_reserve[]: 0 0 0 0 0
[   65.048195][ T7245] Node 1 Normal free:1586724kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:696kB local_pcp:0kB free_cma:0kB
[   65.056297][ T7245] lowmem_reserve[]: 0 0 0 0 0
[   65.059066][ T7245] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   65.064064][ T7245] Node 0 DMA32: 1*4kB (M) 28*8kB (UME) 245*16kB (UME) 327*32kB (UM) 177*64kB (UM) 62*128kB (UME) 51*256kB (ME) 44*512kB (UM) 33*1024kB (UME) 15*2048kB (UME) 40*4096kB (UM) = 297812kB
[   65.071006][ T7245] Node 1 Normal: 3*4kB (UME) 13*8kB (UME) 53*16kB (UME) 169*32kB (UME) 65*64kB (UME) 23*128kB (UME) 6*256kB (UE) 6*512kB (UME) 2*1024kB (UE) 1*2048kB (M) 382*4096kB (M) = 1586852kB
[   65.077872][ T7245] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   65.081497][ T7245] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   65.085536][ T7245] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   65.089504][ T7245] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   65.093149][ T7245] 55911 total pagecache pages
[   65.095038][ T7245] 0 pages in swap cache
[   65.096728][ T7245] Free swap  = 124408kB
[   65.098345][ T7245] Total swap = 124996kB
[   65.099949][ T7245] 1048443 pages RAM
[   65.101457][ T7245] 0 pages HighMem/MovableOnly
[   65.103328][ T7245] 281587 pages reserved
[   65.104913][ T7245] 0 pages cma reserved
[   65.125566][ T6007] usb 7-1: USB disconnect, device number 5
[   65.522379][   T40] kauditd_printk_skb: 55 callbacks suppressed
[   65.522390][   T40] audit: type=1400 audit(1741402200.661:527): avc:  denied  { name_bind } for  pid=7279 comm="syz.3.438" src=255 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   65.530697][ T7280] syzkaller1: entered promiscuous mode
[   65.532647][ T7280] syzkaller1: entered allmulticast mode
[   65.544326][ T7280] hfsplus: unable to find HFS+ superblock
[   65.735019][ T7296] FAULT_INJECTION: forcing a failure.
[   65.735019][ T7296] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.738426][   T40] audit: type=1400 audit(1741402200.871:528): avc:  denied  { connect } for  pid=7294 comm="syz.3.445" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   65.739662][   T40] audit: type=1400 audit(1741402200.871:529): avc:  denied  { mount } for  pid=7294 comm="syz.3.445" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   65.743586][ T7296] CPU: 1 UID: 0 PID: 7296 Comm: syz.2.444 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   65.743601][ T7296] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.743607][ T7296] Call Trace:
[   65.743610][ T7296]  <TASK>
[   65.743614][ T7296]  dump_stack_lvl+0x16c/0x1f0
[   65.743631][ T7296]  should_fail_ex+0x50a/0x650
[   65.743648][ T7296]  _copy_from_user+0x2e/0xd0
[   65.743659][ T7296]  input_event_from_user+0x134/0x3b0
[   65.743672][ T7296]  ? __pfx_input_event_from_user+0x10/0x10
[   65.743683][ T7296]  ? __pfx___might_resched+0x10/0x10
[   65.743699][ T7296]  ? input_inject_event+0x51/0x380
[   65.743712][ T7296]  evdev_write+0x377/0x750
[   65.743725][ T7296]  ? __pfx_evdev_write+0x10/0x10
[   65.743736][ T7296]  ? bpf_lsm_file_permission+0x9/0x10
[   65.743747][ T7296]  ? security_file_permission+0x71/0x210
[   65.743764][ T7296]  ? rw_verify_area+0xcf/0x680
[   65.743779][ T7296]  ? __pfx_evdev_write+0x10/0x10
[   65.743789][ T7296]  vfs_write+0x24c/0x1150
[   65.743805][ T7296]  ? __fget_files+0x1fc/0x3a0
[   65.743815][ T7296]  ? __pfx_lock_release+0x10/0x10
[   65.743829][ T7296]  ? __pfx_vfs_write+0x10/0x10
[   65.743845][ T7296]  ? lock_acquire+0x2f/0xb0
[   65.743858][ T7296]  ? __fget_files+0x40/0x3a0
[   65.743869][ T7296]  ? __fget_files+0x206/0x3a0
[   65.743882][ T7296]  ksys_write+0x207/0x250
[   65.743890][ T7296]  ? __pfx_ksys_write+0x10/0x10
[   65.743903][ T7296]  do_syscall_64+0xcd/0x250
[   65.743917][ T7296]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.743931][ T7296] RIP: 0033:0x7f7624f8d169
[   65.743940][ T7296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.743950][ T7296] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   65.743960][ T7296] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   65.743966][ T7296] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   65.743972][ T7296] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   65.743977][ T7296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   65.743983][ T7296] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   65.743995][ T7296]  </TASK>
[   65.823003][   T40] audit: type=1400 audit(1741402200.891:530): avc:  denied  { getopt } for  pid=7285 comm="syz.1.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   65.828153][   T40] audit: type=1400 audit(1741402200.891:531): avc:  denied  { ioctl } for  pid=7285 comm="syz.1.441" path="socket:[17289]" dev="sockfs" ino=17289 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   65.841882][   T31] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   65.939646][   T40] audit: type=1400 audit(1741402201.071:532): avc:  denied  { unmount } for  pid=5949 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   65.961304][   T40] audit: type=1400 audit(1741402201.091:533): avc:  denied  { unlink } for  pid=7301 comm="syz.3.448" name="#7" dev="tmpfs" ino=570 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   65.968557][   T40] audit: type=1400 audit(1741402201.091:534): avc:  denied  { mount } for  pid=7301 comm="syz.3.448" name="/" dev="overlay" ino=565 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   65.975353][ T7302] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[   65.992925][   T31] usb 5-1: Using ep0 maxpacket: 32
[   65.995613][   T31] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[   65.998045][   T31] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   66.000937][   T31] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[   66.005306][   T31] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   66.008776][   T31] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   66.012717][   T31] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   66.016525][   T31] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   66.019046][   T31] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.022913][   T31] usb 5-1: config 0 descriptor??
[   66.101928][   T40] audit: type=1400 audit(1741402201.231:535): avc:  denied  { read } for  pid=7301 comm="syz.3.448" name="file0" dev="9p" ino=35913862 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   66.110896][   T40] audit: type=1400 audit(1741402201.241:536): avc:  denied  { open } for  pid=7301 comm="syz.3.448" path="/104/file1/file0/file0" dev="9p" ino=35913862 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   66.229712][   T31] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   66.235152][   T31] usb 5-1: USB disconnect, device number 4
[   66.237991][   T31] usblp0: removed
[   66.453165][ T7322] FAULT_INJECTION: forcing a failure.
[   66.453165][ T7322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.458444][ T7322] CPU: 0 UID: 0 PID: 7322 Comm: syz.2.454 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   66.458476][ T7322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.458485][ T7322] Call Trace:
[   66.458490][ T7322]  <TASK>
[   66.458496][ T7322]  dump_stack_lvl+0x16c/0x1f0
[   66.458521][ T7322]  should_fail_ex+0x50a/0x650
[   66.458548][ T7322]  _copy_from_user+0x2e/0xd0
[   66.458563][ T7322]  input_event_from_user+0x134/0x3b0
[   66.458582][ T7322]  ? __pfx_input_event_from_user+0x10/0x10
[   66.458599][ T7322]  ? __pfx___might_resched+0x10/0x10
[   66.458623][ T7322]  ? input_inject_event+0x1a0/0x380
[   66.458642][ T7322]  evdev_write+0x377/0x750
[   66.458661][ T7322]  ? __pfx_evdev_write+0x10/0x10
[   66.458679][ T7322]  ? bpf_lsm_file_permission+0x9/0x10
[   66.458695][ T7322]  ? security_file_permission+0x71/0x210
[   66.458725][ T7322]  ? rw_verify_area+0xcf/0x680
[   66.458746][ T7322]  ? __pfx_evdev_write+0x10/0x10
[   66.458761][ T7322]  vfs_write+0x24c/0x1150
[   66.458785][ T7322]  ? __fget_files+0x1fc/0x3a0
[   66.458800][ T7322]  ? __pfx_lock_release+0x10/0x10
[   66.458821][ T7322]  ? __pfx_vfs_write+0x10/0x10
[   66.458842][ T7322]  ? lock_acquire+0x2f/0xb0
[   66.458859][ T7322]  ? __fget_files+0x40/0x3a0
[   66.458875][ T7322]  ? __fget_files+0x206/0x3a0
[   66.458897][ T7322]  ksys_write+0x207/0x250
[   66.458910][ T7322]  ? __pfx_ksys_write+0x10/0x10
[   66.458930][ T7322]  do_syscall_64+0xcd/0x250
[   66.458950][ T7322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.458969][ T7322] RIP: 0033:0x7f7624f8d169
[   66.458982][ T7322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.458997][ T7322] RSP: 002b:00007f7625e2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   66.459012][ T7322] RAX: ffffffffffffffda RBX: 00007f76251a5fa0 RCX: 00007f7624f8d169
[   66.459021][ T7322] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   66.459030][ T7322] RBP: 00007f7625e2e090 R08: 0000000000000000 R09: 0000000000000000
[   66.459039][ T7322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   66.459047][ T7322] R13: 0000000000000000 R14: 00007f76251a5fa0 R15: 00007ffdd62eaed8
[   66.459068][ T7322]  </TASK>
[   66.672070][ T7338] FAULT_INJECTION: forcing a failure.
[   66.672070][ T7338] name failslab, interval 1, probability 0, space 0, times 0
[   66.676077][ T7338] CPU: 0 UID: 0 PID: 7338 Comm: syz.0.462 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   66.676101][ T7338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.676108][ T7338] Call Trace:
[   66.676111][ T7338]  <TASK>
[   66.676115][ T7338]  dump_stack_lvl+0x16c/0x1f0
[   66.676132][ T7338]  should_fail_ex+0x50a/0x650
[   66.676148][ T7338]  ? fs_reclaim_acquire+0xae/0x150
[   66.676167][ T7338]  ? kernfs_fop_write_iter+0x223/0x500
[   66.676183][ T7338]  should_failslab+0xc2/0x120
[   66.676198][ T7338]  __kmalloc_noprof+0xcb/0x510
[   66.676212][ T7338]  ? rcu_is_watching+0x12/0xc0
[   66.676234][ T7338]  kernfs_fop_write_iter+0x223/0x500
[   66.676255][ T7338]  vfs_write+0x5ae/0x1150
[   66.676279][ T7338]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   66.676297][ T7338]  ? __pfx___mutex_lock+0x10/0x10
[   66.676317][ T7338]  ? __pfx_vfs_write+0x10/0x10
[   66.676356][ T7338]  ksys_write+0x12b/0x250
[   66.676370][ T7338]  ? __pfx_ksys_write+0x10/0x10
[   66.676389][ T7338]  do_syscall_64+0xcd/0x250
[   66.676408][ T7338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.676429][ T7338] RIP: 0033:0x7fe4f438d169
[   66.676442][ T7338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.676457][ T7338] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   66.676471][ T7338] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   66.676481][ T7338] RDX: 0000000000000008 RSI: 00004000000003c0 RDI: 0000000000000004
[   66.676490][ T7338] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   66.676499][ T7338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.676508][ T7338] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   66.676536][ T7338]  </TASK>
[   66.819329][ T7356] FAULT_INJECTION: forcing a failure.
[   66.819329][ T7356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.825211][ T7356] CPU: 3 UID: 0 PID: 7356 Comm: syz.1.466 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   66.825234][ T7356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.825244][ T7356] Call Trace:
[   66.825249][ T7356]  <TASK>
[   66.825255][ T7356]  dump_stack_lvl+0x16c/0x1f0
[   66.825282][ T7356]  should_fail_ex+0x50a/0x650
[   66.825311][ T7356]  _copy_from_user+0x2e/0xd0
[   66.825329][ T7356]  input_event_from_user+0x134/0x3b0
[   66.825350][ T7356]  ? __pfx_input_event_from_user+0x10/0x10
[   66.825370][ T7356]  ? __pfx___might_resched+0x10/0x10
[   66.825396][ T7356]  ? input_inject_event+0x51/0x380
[   66.825418][ T7356]  evdev_write+0x377/0x750
[   66.825441][ T7356]  ? __pfx_evdev_write+0x10/0x10
[   66.825467][ T7356]  ? bpf_lsm_file_permission+0x9/0x10
[   66.825485][ T7356]  ? security_file_permission+0x71/0x210
[   66.825511][ T7356]  ? rw_verify_area+0xcf/0x680
[   66.825536][ T7356]  ? __pfx_evdev_write+0x10/0x10
[   66.825554][ T7356]  vfs_write+0x24c/0x1150
[   66.825581][ T7356]  ? __fget_files+0x1fc/0x3a0
[   66.825597][ T7356]  ? __pfx_lock_release+0x10/0x10
[   66.825621][ T7356]  ? __pfx_vfs_write+0x10/0x10
[   66.825647][ T7356]  ? lock_acquire+0x2f/0xb0
[   66.825669][ T7356]  ? __fget_files+0x40/0x3a0
[   66.825688][ T7356]  ? __fget_files+0x206/0x3a0
[   66.825711][ T7356]  ksys_write+0x207/0x250
[   66.825726][ T7356]  ? __pfx_ksys_write+0x10/0x10
[   66.825750][ T7356]  do_syscall_64+0xcd/0x250
[   66.825773][ T7356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.825795][ T7356] RIP: 0033:0x7f810518d169
[   66.825809][ T7356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.825824][ T7356] RSP: 002b:00007f8106084038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   66.825840][ T7356] RAX: ffffffffffffffda RBX: 00007f81053a5fa0 RCX: 00007f810518d169
[   66.825850][ T7356] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   66.825860][ T7356] RBP: 00007f8106084090 R08: 0000000000000000 R09: 0000000000000000
[   66.825870][ T7356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   66.825879][ T7356] R13: 0000000000000000 R14: 00007f81053a5fa0 R15: 00007ffd7aad7c08
[   66.825901][ T7356]  </TASK>
[   66.916133][    C3] vkms_vblank_simulate: vblank timer overrun
[   67.124575][ T7377] FAULT_INJECTION: forcing a failure.
[   67.124575][ T7377] name failslab, interval 1, probability 0, space 0, times 0
[   67.128167][ T7377] CPU: 1 UID: 0 PID: 7377 Comm: syz.1.476 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   67.128180][ T7377] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.128186][ T7377] Call Trace:
[   67.128190][ T7377]  <TASK>
[   67.128194][ T7377]  dump_stack_lvl+0x16c/0x1f0
[   67.128211][ T7377]  should_fail_ex+0x50a/0x650
[   67.128226][ T7377]  ? fs_reclaim_acquire+0xae/0x150
[   67.128243][ T7377]  should_failslab+0xc2/0x120
[   67.128254][ T7377]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   67.128266][ T7377]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   67.128282][ T7377]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   67.128300][ T7377]  mmu_topup_memory_caches+0x25/0x170
[   67.128313][ T7377]  kvm_mmu_load+0xda/0x22a0
[   67.128325][ T7377]  ? kvm_apic_has_interrupt+0xb6/0x190
[   67.128341][ T7377]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   67.128356][ T7377]  ? kvm_guest_time_update+0x71e/0xeb0
[   67.128369][ T7377]  ? __pfx_kvm_mmu_load+0x10/0x10
[   67.128381][ T7377]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   67.128396][ T7377]  ? kvm_check_and_inject_events+0x725/0x12e0
[   67.128407][ T7377]  ? record_steal_time+0x61/0xbe0
[   67.128420][ T7377]  vcpu_run+0x338e/0x4f50
[   67.128431][ T7377]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   67.128447][ T7377]  ? __pfx_vcpu_run+0x10/0x10
[   67.128457][ T7377]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   67.128474][ T7377]  ? rcu_is_watching+0x12/0xc0
[   67.128486][ T7377]  ? trace_lock_acquire+0x14e/0x1f0
[   67.128497][ T7377]  ? __local_bh_enable_ip+0xa4/0x120
[   67.128512][ T7377]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.128524][ T7377]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[   67.128539][ T7377]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   67.128551][ T7377]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   67.128566][ T7377]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   67.128579][ T7377]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   67.128595][ T7377]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   67.128612][ T7377]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   67.128631][ T7377]  ? __pfx_lock_release+0x10/0x10
[   67.128669][ T7377]  ? selinux_file_ioctl+0x180/0x270
[   67.128687][ T7377]  ? selinux_file_ioctl+0xb4/0x270
[   67.128703][ T7377]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   67.128720][ T7377]  __x64_sys_ioctl+0x190/0x200
[   67.128735][ T7377]  do_syscall_64+0xcd/0x250
[   67.128749][ T7377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.128763][ T7377] RIP: 0033:0x7f810518d169
[   67.128771][ T7377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.128781][ T7377] RSP: 002b:00007f8106084038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   67.128791][ T7377] RAX: ffffffffffffffda RBX: 00007f81053a5fa0 RCX: 00007f810518d169
[   67.128797][ T7377] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   67.128803][ T7377] RBP: 00007f8106084090 R08: 0000000000000000 R09: 0000000000000000
[   67.128809][ T7377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.128814][ T7377] R13: 0000000000000000 R14: 00007f81053a5fa0 R15: 00007ffd7aad7c08
[   67.128827][ T7377]  </TASK>
[   67.294456][ T7389] 8021q: VLANs not supported on vcan0
[   67.542037][ T7416] FAULT_INJECTION: forcing a failure.
[   67.542037][ T7416] name failslab, interval 1, probability 0, space 0, times 0
[   67.545878][ T7416] CPU: 2 UID: 0 PID: 7416 Comm: syz.1.490 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   67.545901][ T7416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.545907][ T7416] Call Trace:
[   67.545911][ T7416]  <TASK>
[   67.545915][ T7416]  dump_stack_lvl+0x16c/0x1f0
[   67.545932][ T7416]  should_fail_ex+0x50a/0x650
[   67.545948][ T7416]  ? fs_reclaim_acquire+0xae/0x150
[   67.545965][ T7416]  should_failslab+0xc2/0x120
[   67.545977][ T7416]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   67.545988][ T7416]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   67.546005][ T7416]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   67.546020][ T7416]  ? mark_held_locks+0x9f/0xe0
[   67.546036][ T7416]  mmu_topup_memory_caches+0x25/0x170
[   67.546049][ T7416]  kvm_mmu_load+0xda/0x22a0
[   67.546062][ T7416]  ? kvm_apic_has_interrupt+0xb6/0x190
[   67.546078][ T7416]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   67.546094][ T7416]  ? vmx_flush_tlb_all+0x18e/0x2f0
[   67.546108][ T7416]  ? __pfx_kvm_mmu_load+0x10/0x10
[   67.546119][ T7416]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[   67.546134][ T7416]  ? kvm_check_and_inject_events+0x725/0x12e0
[   67.546146][ T7416]  ? record_steal_time+0x61/0xbe0
[   67.546159][ T7416]  vcpu_run+0x338e/0x4f50
[   67.546175][ T7416]  ? __pfx_vcpu_run+0x10/0x10
[   67.546185][ T7416]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   67.546200][ T7416]  ? rcu_is_watching+0x12/0xc0
[   67.546211][ T7416]  ? trace_lock_acquire+0x14e/0x1f0
[   67.546222][ T7416]  ? __local_bh_enable_ip+0xa4/0x120
[   67.546238][ T7416]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.546249][ T7416]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[   67.546264][ T7416]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   67.546276][ T7416]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[   67.546291][ T7416]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   67.546304][ T7416]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   67.546320][ T7416]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   67.546338][ T7416]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   67.546356][ T7416]  ? __pfx_lock_release+0x10/0x10
[   67.546375][ T7416]  ? selinux_file_ioctl+0x180/0x270
[   67.546390][ T7416]  ? selinux_file_ioctl+0xb4/0x270
[   67.546412][ T7416]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   67.546425][ T7416]  __x64_sys_ioctl+0x190/0x200
[   67.546440][ T7416]  do_syscall_64+0xcd/0x250
[   67.546455][ T7416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.546469][ T7416] RIP: 0033:0x7f810518d169
[   67.546482][ T7416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.546492][ T7416] RSP: 002b:00007f8106084038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   67.546502][ T7416] RAX: ffffffffffffffda RBX: 00007f81053a5fa0 RCX: 00007f810518d169
[   67.546508][ T7416] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   67.546513][ T7416] RBP: 00007f8106084090 R08: 0000000000000000 R09: 0000000000000000
[   67.546519][ T7416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.546524][ T7416] R13: 0000000000000000 R14: 00007f81053a5fa0 R15: 00007ffd7aad7c08
[   67.546537][ T7416]  </TASK>
[   67.724954][ T7427] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[   67.885280][ T7442] FAULT_INJECTION: forcing a failure.
[   67.885280][ T7442] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.889116][ T7442] CPU: 3 UID: 0 PID: 7442 Comm: syz.0.499 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   67.889130][ T7442] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.889136][ T7442] Call Trace:
[   67.889139][ T7442]  <TASK>
[   67.889143][ T7442]  dump_stack_lvl+0x16c/0x1f0
[   67.889160][ T7442]  should_fail_ex+0x50a/0x650
[   67.889178][ T7442]  _copy_from_user+0x2e/0xd0
[   67.889189][ T7442]  input_event_from_user+0x134/0x3b0
[   67.889202][ T7442]  ? __pfx_input_event_from_user+0x10/0x10
[   67.889213][ T7442]  ? __pfx___might_resched+0x10/0x10
[   67.889229][ T7442]  ? input_inject_event+0x51/0x380
[   67.889242][ T7442]  evdev_write+0x377/0x750
[   67.889255][ T7442]  ? __pfx_evdev_write+0x10/0x10
[   67.889267][ T7442]  ? bpf_lsm_file_permission+0x9/0x10
[   67.889278][ T7442]  ? security_file_permission+0x71/0x210
[   67.889294][ T7442]  ? rw_verify_area+0xcf/0x680
[   67.889309][ T7442]  ? __pfx_evdev_write+0x10/0x10
[   67.889319][ T7442]  vfs_write+0x24c/0x1150
[   67.889335][ T7442]  ? __fget_files+0x1fc/0x3a0
[   67.889346][ T7442]  ? __pfx_lock_release+0x10/0x10
[   67.889360][ T7442]  ? __pfx_vfs_write+0x10/0x10
[   67.889376][ T7442]  ? lock_acquire+0x2f/0xb0
[   67.889388][ T7442]  ? __fget_files+0x40/0x3a0
[   67.889400][ T7442]  ? __fget_files+0x206/0x3a0
[   67.889413][ T7442]  ksys_write+0x207/0x250
[   67.889422][ T7442]  ? __pfx_ksys_write+0x10/0x10
[   67.889435][ T7442]  do_syscall_64+0xcd/0x250
[   67.889449][ T7442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.889464][ T7442] RIP: 0033:0x7fe4f438d169
[   67.889472][ T7442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.889482][ T7442] RSP: 002b:00007fe4f5166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   67.889492][ T7442] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438d169
[   67.889498][ T7442] RDX: 00000000000012d8 RSI: 0000400000000040 RDI: 0000000000000005
[   67.889504][ T7442] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   67.889509][ T7442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.889515][ T7442] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   67.889527][ T7442]  </TASK>
[   67.952378][    C3] vkms_vblank_simulate: vblank timer overrun
[   68.052690][ T7444] FAULT_INJECTION: forcing a failure.
[   68.052690][ T7444] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.056849][ T7444] CPU: 3 UID: 0 PID: 7444 Comm: syz.0.500 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   68.056863][ T7444] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.056869][ T7444] Call Trace:
[   68.056872][ T7444]  <TASK>
[   68.056876][ T7444]  dump_stack_lvl+0x16c/0x1f0
[   68.056893][ T7444]  should_fail_ex+0x50a/0x650
[   68.056911][ T7444]  _copy_to_user+0x32/0xd0
[   68.056923][ T7444]  simple_read_from_buffer+0xd0/0x160
[   68.056939][ T7444]  proc_fail_nth_read+0x198/0x270
[   68.056954][ T7444]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   68.056969][ T7444]  ? rw_verify_area+0xcf/0x680
[   68.056983][ T7444]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   68.056997][ T7444]  vfs_read+0x1df/0xbf0
[   68.057012][ T7444]  ? __fget_files+0x1fc/0x3a0
[   68.057022][ T7444]  ? __pfx___mutex_lock+0x10/0x10
[   68.057035][ T7444]  ? __pfx_vfs_read+0x10/0x10
[   68.057054][ T7444]  ? __fget_files+0x206/0x3a0
[   68.057067][ T7444]  ksys_read+0x12b/0x250
[   68.057082][ T7444]  ? __pfx_ksys_read+0x10/0x10
[   68.057100][ T7444]  do_syscall_64+0xcd/0x250
[   68.057114][ T7444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.057129][ T7444] RIP: 0033:0x7fe4f438bb7c
[   68.057137][ T7444] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   68.057147][ T7444] RSP: 002b:00007fe4f5166030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   68.057157][ T7444] RAX: ffffffffffffffda RBX: 00007fe4f45a5fa0 RCX: 00007fe4f438bb7c
[   68.057163][ T7444] RDX: 000000000000000f RSI: 00007fe4f51660a0 RDI: 0000000000000005
[   68.057168][ T7444] RBP: 00007fe4f5166090 R08: 0000000000000000 R09: 0000000000000000
[   68.057174][ T7444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.057180][ T7444] R13: 0000000000000000 R14: 00007fe4f45a5fa0 R15: 00007ffcda027808
[   68.057192][ T7444]  </TASK>
[   68.113567][    C3] vkms_vblank_simulate: vblank timer overrun
[   68.452144][ T7496] futex_wake_op: syz.2.520 tries to shift op by -1; fix this program
[   70.022260][ T7645] netlink: 'syz.0.586': attribute type 16 has an invalid length.
[   70.024617][ T7645] netlink: 64138 bytes leftover after parsing attributes in process `syz.0.586'.
MAR  8 02:50:05 SYZKALLER KERN.WARN KERNEL: [   70.022260][ T7645] NETLINK: 'SYZ.0.586': ATTRIBUTE TYPE 16 HAS AN INVALID LENGTH.
MAR  8 02:50:05 SYZKALLER KERN.WARN KERNEL: [   70.024617][ T7645] NETLINK: 64138 BYTES LEFTOVER AFTER PARSING ATTRIBUTES IN PROCESS `SYZ.0.586'.
[   70.132533][ T7659] syz.3.590 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
MAR  8 02:50:05 SYZKALLER KERN.WARN KERNEL: [   70.132533][ T7659] SYZ.3.590 CALLS SETITIMER() WITH NEW_VALUE NULL POINTER. MISFEATURE SUPPORT WILL BE REMOVED
[   70.540365][   T40] kauditd_printk_skb: 8400 callbacks suppressed
[   70.540380][   T40] audit: type=1400 audit(1741402205.671:8937): avc:  denied  { create } for  pid=7714 comm="syz.2.615" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=0
MAR  8 02:50:05 SYZKALLER KERN.WARN KERNEL: [   70.540365][   T40] KAUDITD_PRINTK_SKB: 8400 CALLBACKS SUPPRESSED
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.540380][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.671:8937): A[   70.561946][   T40] audit: type=1400 audit(1741402205.671:8938): avc:  denied  { create } for  pid=7714 comm="syz.2.615" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=0
VC:  DENIED  { CREATE }[   70.568596][   T40] audit: type=1400 audit(1741402205.681:8939): avc:  denied  { create } for  pid=7714 comm="syz.2.615" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=0
 FOR  PID=7714 COMM="SYZ.2.615" SCONTEXT=ROOT:SYSADM_R:SYSADM_T TCONTEXT=ROOT:SYSADM_R:SYSADM_T TCLASS=NETLIN[   70.579775][   T40] audit: type=1400 audit(1741402205.681:8940): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
K_GENERIC_SOCKET PERMISSIVE
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.561946][   T40] AUDIT: TYPE=1400 AUDIT(17414022[   70.592553][   T40] audit: type=1400 audit(1741402205.681:8941): avc:  denied  { read write } for  pid=5946 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
05.671:8938): AVC:  DENIED  { CREATE } FOR  PID=7714 COMM="SYZ.2.615" SCONTEXT=ROOT:SYSADM_R:SYSADM_T TCONTEXT=ROOT:SYSADM_[   70.605427][   T40] audit: type=1400 audit(1741402205.691:8942): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
R:SYSADM_T TCLASS=ALG_SOCKET PERMISSIVE=0
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.568596][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.681:8939): AVC:  DENIED  { CREATE } FOR  PID=7714 COMM="SYZ.2.615" SCONTEXT=R[   70.621473][   T40] audit: type=1400 audit(1741402205.721:8943): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[   70.627468][   T40] audit: type=1400 audit(1741402205.731:8944): avc:  denied  { read write } for  pid=5946 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   70.634042][   T40] audit: type=1400 audit(1741402205.751:8945): avc:  denied  { read } for  pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[   70.640030][   T40] audit: type=1400 audit(1741402205.761:8946): avc:  denied  { create } for  pid=7718 comm="syz.2.617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=0
OOT:SYSADM_R:SYSADM_T TCONTEXT=ROOT:SYSADM_R:SYSADM_T TCLASS=NETLINK_GENERIC_SOCKET PERMISSIVE
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.579775][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.681:8940): AVC:  DENIED  { READ } FOR  PID=5334 COMM="SYSLOGD" NAME="LOG" DEV="SDA1" INO=1915 SCONTEXT=SYSTEM_U:SYSTEM_R:SYSLOGD_T TCONTEXT=SYSTEM_U:OBJECT_R:VAR_T TCLASS=
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.592553][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.681:8941): AVC:  DENIED  { READ WRITE } FOR  PID=5946 COMM="SYZ-EXECUTOR" NAME="LOOP2" DEV="DEVTMPFS" INO=660 SCONTEXT=ROOT:SYSADM_R:SYSADM_T TCONTEXT=SYSTEM_U:OBJECT_R:FI
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.605427][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.691:8942): AVC:  DENIED  { READ } FOR  PID=5334 COMM="SYSLOGD" NAME="LOG" DEV="SDA1" INO=1915 SCONTEXT=SYSTEM_U:SYSTEM_R:SYSLOGD_T TCONTEXT=SYSTEM_U:OBJECT_R:VAR_T TCLASS=
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.621473][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.721:8943): AVC:  DENIED  { READ } FOR  PID=5334 COMM="SYSLOGD" NAME="LOG" DEV="SDA1" INO=1915 SCONTEXT=SYSTEM_U:SYSTEM_R:SYSLOGD_T TCONTEXT=SYSTEM_U:OBJECT_R:VAR_T TCLASS=
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.627468][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.731:8944): AVC:  DENIED  { READ WRITE } FOR  PID=5946 COMM="SYZ-EXECUTOR" NAME="LOOP2" DEV="DEVTMPFS" INO=660 SCONTEXT=ROOT:SYSADM_R:SYSADM_T TCONTEXT=SYSTEM_U:OBJECT_R:FI
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.634042][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.751:8945): AVC:  DENIED  { READ } FOR  PID=5334 COMM="SYSLOGD" NAME="LOG" DEV="SDA1" INO=1915 SCONTEXT=SYSTEM_U:SYSTEM_R:SYSLOGD_T TCONTEXT=SYSTEM_U:OBJECT_R:VAR_T TCLASS=
MAR  8 02:50:05 SYZKALLER KERN.NOTICE KERNEL: [   70.640030][   T40] AUDIT: TYPE=1400 AUDIT(1741402205.761:8946): AVC:  DENIED  { CREATE } FOR  PID=7718 COMM="SYZ.2.617" SCONTEXT=ROOT:SYSADM_R:SYSADM_T TCONTEXT=ROOT:SYSADM_R:SYSADM_T TCLASS=NETLINK_GENERIC_SOCKET PERMISSIVE
[   70.911350][ T7745] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=20 sclass=netlink_audit_socket pid=7745 comm=syz.1.627
MAR  8 02:50:06 SYZKALLER KERN.WARN KERNEL: [   70.911350][ T7745] SELINUX: UNRECOGNIZED NETLINK MESSAGE: PROTOCOL=9 NLMSG_TYPE=20 SCLASS=NETLINK_AUDIT_SOCKET PID=7745 COMM=SYZ.1.627
[   71.139281][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
MAR  8 02:50:06 SYZKALLER KERN.WARN KERNEL: [   71.139281][ T1419] IEEE80[   71.147378][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
2154 PHY0 WPAN0: ENCRYPTION FAILED: -22
MAR  8 02:50:06 SYZKALLER KERN.WARN KERNEL: [   71.147378][ T1419] IEEE802154 PHY1 WPAN1: ENCRYPTION FAILED: -22
[   71.281044][ T7767] capability: warning: `syz.1.634' uses 32-bit capabilities (legacy support in use)
MAR  8 02:50:06 SYZKALLER KERN.INFO KERNEL: [   71.281044][ T7767] CAPABILITY: WARNING: `SYZ.1.634' USES 32-BIT CAPABILITIES (LEGACY SUPPORT IN USE)

VM DIAGNOSIS:
02:50:06  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=1ffff9200051ef91 RCX=ffffffff8196a169 RDX=0000000000000000
RSI=ffffffff8bd367e0 RDI=ffff88802146d36c RBP=ffffffff90629534 RSP=ffffc900028f7c78
R8 =0000000000000000 R9 =fffffbfff20c4c42 R10=ffffffff90626217 R11=0000000000000000
R12=ffff8880338ddbe0 R13=ffffc900028f7de0 R14=ffff88802146c880 R15=0000000000000000
RIP=ffffffff8196a1e9 RFL=00000a03 [-O----C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555555848500 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f81053762d8 CR3=000000003064e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000010102040 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd7aad7f90 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f810520f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f810520f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f810520f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f810520f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f810520f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f810520f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000084de1 RBX=0000000000000001 RCX=ffffffff8b576469 RDX=0000000000000000
RSI=ffffffff8b6cfb00 RDI=ffffffff8bd36860 RBP=ffffed1003ad2000 RSP=ffffc90000197e08
R8 =0000000000000001 R9 =ffffed100d4e6f85 R10=ffff88806a737c2b R11=0000000000000000
R12=0000000000000001 R13=ffff88801d690000 R14=ffffffff90626210 R15=0000000000000000
RIP=ffffffff8b57784f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f8106083f98 CR3=000000003220c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555f36fc9c 000055555f369180
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555f3002ee 000055555f300100
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0399c08ce008000f 80031fffffffffff ff040410001c8010 0045800401000002
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a0030008000a9803 0008000a90030008 000a88030008000a 80030008000f8803
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8080801000000406 013dc60a80040f80 04040102f2000800 0aa80301fe08000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 02b00300080002a0 0340800800029803 0408000290030408 000288031c100008
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0120808080808080 84b410000b800400 1000010000040806 08010cf604a08080
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 10000b90035c8004 0b80030280045aac 080004040dba0000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001ffffffffff ffffffe70802b803 01080002b0030008 0002a00340800800
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0298030408000290 030408000288031c 1000088080801000 000406013dc60a80
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000076b11 RBX=0000000000000002 RCX=ffffffff8b576469 RDX=0000000000000000
RSI=ffffffff8b6cfb00 RDI=ffffffff8bd36860 RBP=ffffed1003ad2488 RSP=ffffc900001a7e08
R8 =0000000000000001 R9 =ffffed100d506f85 R10=ffff88806a837c2b R11=0000000000000000
R12=0000000000000002 R13=ffff88801d692440 R14=ffffffff90626210 R15=0000000000000000
RIP=ffffffff8b57784f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c246a4a CR3=000000002912e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000200000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcaf95a090 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 635f6d646165675f 3a6e696c723d6e3d 6573616c63742074 5f6d64617379733a
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000069d7f RBX=0000000000000003 RCX=ffffffff8b576469 RDX=0000000000000000
RSI=ffffffff8b6cfb00 RDI=ffffffff8bd36860 RBP=ffffed1003ad2910 RSP=ffffc900001b7e08
R8 =0000000000000001 R9 =ffffed100d526f85 R10=ffff88806a937c2b R11=0000000000000000
R12=0000000000000003 R13=ffff88801d694880 R14=ffffffff90626210 R15=0000000000000000
RIP=ffffffff8b57784f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f8106082568 CR3=00000000547e2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000