last executing test programs:

4.020428421s ago: executing program 3 (id=451):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0x3, &(0x7f0000000040)=@raw=[@map_fd={0x18, 0x4}, @ldst={0x1, 0x3, 0x4, 0x4, 0x0, 0x6, 0xfffffffffffffffc}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0xfffffff0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}}) (fail_nth: 5)

3.82998304s ago: executing program 3 (id=454):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket(0x23, 0x80805, 0x0)
r2 = accept(r1, 0x0, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000102c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0xfffffffc, 0x100, {0x0, 0x0, 0x0, 0x0, 0xc0, 0x8040}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_RESPONSE_INTVL={0xc, 0x22, 0xb3dd}]}}}]}, 0x40}}, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@can_newroute={0x2c, 0x18, 0x1, 0x0, 0x25dfdbfe, {}, [@CGW_MOD_OR={0x15, 0x2, {{{0x2, 0x1, 0x1}, 0x2, 0x7, 0x0, 0x0, "b90316a140a9f4f2"}, 0x7}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x64044050}, 0x0)
syz_emit_ethernet(0x12c0, &(0x7f00000002c0)={@local, @empty, @void, {@ipv6={0x86dd, @gre_packet={0xf, 0x6, "fed0c4", 0x128a, 0x2f, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, @empty, {[@routing={0x89, 0x14, 0x1, 0x1, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2c}}, @remote, @dev={0xfe, 0x80, '\x00', 0x3c}, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0x36}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @ipv4={'\x00', '\xff\xff', @broadcast}]}], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0xad, 0x1, [0x0, 0x7fff], "7a58edf0fddbf8ad15a5ee17e6164ef753f2f1354b79829fad29b8696a50b82774d60efc3e24e9bd96bead7e7d6da318be3f8cc9fdfc72023e78ecec0265367d3018100b450f7811fed77b84da7d615c6bc3a1db5f3e8dca935d43ef9e622d10256c17ca113d3fb2789a47136de64faf172b4d6734163a1a177353e29d701f2744435dfc844422e5d6d610249156bfb91c012ab92453e4fb91ec703516842d5e8c53c72280f18e2546dad55ddf"}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x5], "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"}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x86dd, [0xffc0, 0x1], "2856ef18836a68249cbb9cf220d4bdeb31ebe05611ef88c240b724be69d33fa755f2214cf32f40507a760b885807941566e43c92cb6e940d719674a12e4f546a53d8cce6a37fbbac7ba92b1a9e0d7066508fe2b452d2e27a106fd11e68cd6c99dc4e6fa9af8dab83d900f83785a56c4e9fcbfafb8d83f0eb9fb02e3bc16ea1537443c1d7e22034a58d7656b06f915a9cba1fedbd22206a8acac014154182dab1d7bd80e2a9fa8ee63fb85008eb1a95c6eb7031f7e0a34780761aa8fb6b7ff0b4bf3b"}, {0x8, 0x88be, 0x3, {{0x4, 0x1, 0x8, 0x0, 0x0, 0x1, 0x1, 0x12}, 0x1, {0x7}}}, {0x8, 0x22eb, 0x2, {{0x9, 0x2, 0x5, 0x3, 0x0, 0x3, 0x0, 0x1}, 0x2, {0x7, 0x1, 0x2, 0x6, 0x0, 0x0, 0x3, 0x1}}}, {0x8, 0x6558, 0x0, "86c2f143ea5482eac6bc6ba28ce1bbfee3ef35e1ab84d4906efc70320858c3b4bb8de77462"}}}}}}}, 0x0)
bind$rose(r2, &(0x7f0000000000)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x5, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x40)
socket$nl_route(0x10, 0x3, 0x0)

3.016797257s ago: executing program 3 (id=465):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000700)='source', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AO\x06)\xb03\xfcI\x95w\x96\x9b\xe9\xa6\x1a\x96\xael\x11\xa6\x06\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14ZM\xcb\xad\x92>\xe5\x01V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\x94\xc1\xae\x9c\xba\x1c\xfa\xbc\xa8\xbf\xff\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&t&A0\xa7\xef\x9cL\x8e1K', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000700)='source', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AO\x06)\xb03\xfcI\x95w\x96\x9b\xe9\xa6\x1a\x96\xael\x11\xa6\x06\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14ZM\xcb\xad\x92>\xe5\x01V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\x94\xc1\xae\x9c\xba\x1c\xfa\xbc\xa8\xbf\xff\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&\xc1&A0\xa7\xef\x9cL\x8e1K', 0x0)
prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000232000/0x1000)=nil)
syz_io_uring_setup(0x2, &(0x7f0000000000)={0x0, 0x15ea, 0x2000, 0xffffdc84, 0x15d}, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0))
syz_io_uring_setup(0x375e, &(0x7f0000000100)={0x0, 0x17f0, 0x1, 0x1, 0x3cd}, &(0x7f0000000180), &(0x7f00000001c0)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_LINK_TIMEOUT={0xf, 0x34, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x77359400}, 0x1, 0x8, 0x1, {0x0, r4}})
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)

2.099614128s ago: executing program 3 (id=472):
r0 = syz_usb_connect(0x5, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0xb, 0x408000)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000100)={0x5, 0x0, [{0xc0000000, 0x4, 0x6, 0x1e, 0xf8000000, 0xfffffbff, 0x6}, {0x80000019, 0xfffffff8, 0x6, 0x7, 0x5, 0x8000}, {0x40000001, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1000}, {0x0, 0xf, 0x7, 0x5e5, 0x7fff, 0x1, 0x7b2b}, {0x40000000, 0x0, 0x4, 0x5, 0x4, 0x5, 0x2}]})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xfffff7e8}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x0)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, &(0x7f0000000240)={0x14, &(0x7f0000000040)={0x40, 0x8, 0x51, {0x51, 0x22, "e3870b29c01300fc660838dd58fbbed3bd047a201dbae3ced6a13da81d389f9822adcfd16f59b67a56f6ddf568ef722752fb056781b1e88418b08b37de1193955ef0aa0745c0c4ff95b706a18b6e81"}}, &(0x7f0000000200)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000580)={0x44, &(0x7f0000000280)=ANY=[@ANYBLOB="4031fd00000088d8b36af2200421afdf71f0a6f1f01098d1e5b116d77fbcb9bcdd0db258a472f0c475f923a39c9cb065ef33fccf26296f8da3d1be0e20c2fc0bd217b96615ca123da85da709acae540df1784e5b92167b13fbd68054bf24f8804baf7e7472b040373cbed6975d2f6e9a19b7d426e49730cd2c8d14e9a1d129a4cc7083ec9f00d45179ecf4b4fdc5ca44db0d6f99b5c7598ac7ada29fbf45f9f927617f47f8bda7f970b9a8b25cedd26abaab01cb936fe9644737b2de69b32aeba87ce4e905b8473ffd6f09a465bfa960d8da8369fa0c58ca4cdd14d03ee08740ce40d1adc1ebc3ccb2ab2a2348a2680e1cfac0d77d27766163a94c3901a87923ad932e"], &(0x7f00000003c0)={0x0, 0xa, 0x1, 0x6}, &(0x7f0000000400)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000440)={0x20, 0x80, 0x1c, {0x8, 0xffff, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xe, 0x8eb, 0xfff, 0x4, 0x6}}, &(0x7f0000000480)={0x20, 0x85, 0x4, 0x1}, &(0x7f00000004c0)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000500)={0x20, 0x87, 0x2, 0x6}, &(0x7f0000000540)={0x20, 0x89, 0x2}})
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
mount$9p_rdma(0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)=ANY=[@ANYRESOCT=r2])
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='cifs\x00', 0x0, &(0x7f00000001c0)='=\n\x9b\xa1Q\x83\xe9\n@\xf6\"2a\xd7\x1fch\x1a}#\xfa\xe4`\xdc[\x03\x97\xcd\xf1\xa6b\x9a\x1f\xff\xff\xffIT\xe4\x8c&\xac\xe6:\xc5\xe8\xd9\"\x82\xd5\xeb\x90\xef1:\xba\xc3\xc3\xd3\xad\'\xc44\x17,,\x8dZz\x04\x17-#F\xc7<\xe6\xf5]%gC\x9e\xca\nS\xc3\xc8\x98\xd8\xc8\x9eZ\xa76\x9f\xc2=\xaa\xcet7\xb9\xbd\xd47\xe3\xc8@$8\v\x9f\xfd\xe1!\x11\x19Y\x06J\x8f\x80\xef9Tw8\x1b\xe2\xf3\x85\xd5}\xa5\xb7\xd5|')
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$sock_rose_SIOCRSCLRRT(0xffffffffffffffff, 0x89e4)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x8040ae9f, &(0x7f0000000600))
ioctl$EVIOCGMASK(r3, 0x80015b1a, 0x0)

2.000353119s ago: executing program 1 (id=473):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000340)=[@text32={0x20, &(0x7f0000000240)="d3cd640f38f67d3ac1a2b5000000110f21736466f30f350f01cb8fc978dbd066baf80cb8329c2f8fef66bafc0c66ed0f127c56ff3e0f16fb", 0x38}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 5)

1.929964319s ago: executing program 2 (id=474):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x1ff, 0x0, 0xdddd0000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, &(0x7f00000001c0))

1.820246367s ago: executing program 1 (id=475):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/37, @ANYRES32=0x41424344], 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x49, 0x0, 0x0)
write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='/'], 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.81995094s ago: executing program 2 (id=476):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000001000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.680231701s ago: executing program 2 (id=477):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x8000) (async)
mount(&(0x7f0000000580)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./file0\x00', &(0x7f0000000380)='xfs\x00', 0x10000, &(0x7f0000000080)='norecovery') (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x0) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
socket$packet(0x11, 0x2, 0x300) (async)
socket$packet(0x11, 0x2, 0x300) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
r2 = socket$packet(0x11, 0x3, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="1400000010000100000000000000000000000a20000000000a05000000000000002000010000000900010073797a3000000000440000000b0a03000000000000000000010000090900020073797a31000000000900010073797a300000001800118008000100647578000c000280080001400000001014000000060a0104000000000000000001000004140000001100010000000000000000000500000adce8"], 0xa0}}, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r3, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0xff8e}}, 0x40)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r2, &(0x7f0000000140)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x8, r5}, 0x80, &(0x7f00000004c0)=[{&(0x7f00000001c0)='C', 0x1}], 0x1}}], 0x1, 0x200400c1) (async)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000000140)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_DIRENT(r6, &(0x7f0000002380)={0x338, 0x0, r7, [{0x1400000000000007, 0x0, 0x30e, 0x0, 'L-/\\&\r\x80-\xf5\xd2\xa1z\xcb\x81\xd6\xf2\xa5nc\x93\x01\xa3uO\xed\xc1\xc3\xaa$-ez\xdf\x85^c\xaeC\xec\x975\xe2\xf6\xe8\a\x06\xe3\xca\x7f\xfd<\xb15\xe6\xe7\x19\x97\x91<Z\x9fj5\xab\x81\xff\xff\xa8\xa09\xf1$\x9b+\r\x1e\x91\xa4r\xbc(\x840X\x898=\x8aN_\xb8\b\x98\x91\xae\xc3\xaeNIC\xe5\x96\x8d8\x84uDy\x11\xe2\xd9nd}J`\xde\x84\xc2\xc5%\x13$\x03\x8e{GM+\x80jy\xde\xf3-\x16\x0e\xd2\xfa\xbf\x92\xc7C\xc7sGzW\xa9\xd7\x1dR\xb6\xece#,C\xf761\xf8\x9cC\xd3\x97\\\xbd\xb9PB\xd1),yYM\xfdi\xe5@\x03M\xe6\x03\xe0\x9e\x9a\x80y%\x8a\xfdj\nK{K\x81\xd7\nu|8\t\xf9\x8f\xc2\xe6o\x01_]\xcfO\\<\x8b\xaa\xec\xe1\x91B\xc5\x17z\xff\x01>l\x87k\x98\x1a\xfaU\xeby\xfaX\xa85\x88tZ\xc0\xdc\xa3 \xce\xf6\x97h/\xffpS\xe2w\xa2\xc0\x03\x94c\xf24\xb3\x99\xf0}6\xbd\nR\xf7)\xcd=\x1f9\x14@\xe0\xc9\xd4\x98\xa6\xfb\x81\x06\xf9\xdc\xf2$\xca\xd5\xf7\x7f\xa1j1-oc\xf3\xf5\xcbs\xa6\xfb\x86[\x92Jm\xec\xb3u\xf9]\x85M\xe5y\xaay\xd2\xff\xcb4\xab\x8f\xe7f\a6\xce\x8e\xd0\x86\x04\xc7\xb8\xacB\xc1M\x9b\xe1\xa3}\x8f\xe7g\xa2u?\\u&\xda\x1d\x00eQ\xef\r\x14\x8c\a\xccm\xc5\x80%\xe5\xe3\xf6P;T\x8d\xfd\x80\xc1\xce\xe138R\xdd2\xdf\xabJg\x06\xcb\xe9\xbe\xc6$\x82O\x8b\xb3k\x9eJ\xc7;fA\x1e\x99\xa0v#\xdc\x97\x8c5\xbc\x1f\xa1i\x93R/Ab?\r`W\x0e\x0e4\x96\xaf\xcdw\xd3F\xfe\xa3odADxa\xd4*\xb3\a\x92\x00\xda\xe1dP\xfc\x00O{S\x88n`\x8c\xa6\x9b\xc0\xadW\b\xabA{\xc9\x1e\x8e\xb1\xf4F4Q\x9a\xa4\xfb>\a\xeb\\\xe1\xef\xf0\xab\x01\xbaz\xf6\x8c0z,~XY\xa9+A}s\xce\x1a\x85F\x02\'%\xd3\xcb\xf3:\x84Ij!\xf3\x0f@\x9dQ\x85\xe5m\xdf\x91R\xde\xfaGQ\xe3\x8d\xf2\x96\x96q\v6*\xb35p)\xd9x\xd9\x16?,=\xbc1\xe1\x85\xae\x1e\x0fi\xcd>4\x10\x06\xec\xc1\xcf\v\xcb\xae\xdcn\x96R\x19\xf7\xab^]\x9e\xee\xc0\xe8|d\v\xbe\a\xa6\x1a\xc92\f\x92\x82t\xfb\x1a\xa7e\xea\x1b/\xb6eE\r\xd3\xb7#\xafO\x8c1\x15\xfe\a!\xbe\xec_4\xf1\xb1\x19\x13\x90y\xa0\\\x85\x06\x10\xed\x85\xaa\xe2\xe5\x00\xff\x8e&b\xac\xed%Z\x89\xf1W\xfa\xab)\xab\xd73\\\x1cmy\xad\t\xe5\xfb\xa0\x00\xd2\xadS\xfb\x87\x11\x1d\xa8\x82\xa8\xab\x80\xfdmM\x90\xc0\ri\xca_\x11\xbf\xc40\xcb\xb1\xb0\xdd\xaf;q\xc8]\xc2{\xeci\xb9\xeb79\xf1\x9d\xa9{\xd20\xd4\xb5\xdft\x95\xba~\xf8\xb1>V\xa4\x1b\xfb\xde\xc2Z\xc0\x18\\\x8d.9\xea\xc1O\x04C\x87\xab\xae\x90U\x99&\x86q\xff\x85\xb1\xcf\x04msf\xfbk\x9e\xbdc\xea\xf0\xb1\"'}]}, 0x338) (async)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0x7, 0xfffc, 0x360}, 0x8, 0x9, 0x80, 0x0, 0x0, 0x101, 0x0})
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r8, 0x18000000000002a0, 0x20, 0x0, &(0x7f00000021c0)="b98c390b0444a45987917c63d24c44c4ffae0000e00100000018a5ce2aa803cd", 0x0, 0xe00, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50) (async)
r9 = syz_init_net_socket$ax25(0x3, 0x5, 0xcc)
setsockopt$sock_void(r9, 0x1, 0x1b, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x8031, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

1.679895958s ago: executing program 2 (id=478):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x1, 0x0, 0x3, 0x0, 0xae3}})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x80000001}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x8}]}}}]}]}], {0x14}}, 0xe8}}, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000480)=ANY=[@ANYBLOB="aaaaaaaaaaaa3adb0500000086dd60cb653e00143a00fe800000000000000000000000000000ff020000004662b0a722f817643db75aea0000f80000009adfaaaf9f6aec20e0fc4c0000001600020003030090780200000060360d1f00008a00fc0000000000000000000000d174455dffd8cdfd2220cc050d504e19bc1815dd12a47044a6b35f64000000000000002b1857251693b7a1825ff4906bb0e20cac706e19f09609b5ca6df09f30b799750067297e7cdaca195ceb39c5b61265f71cfc40454a0b2aa3a4f495e8399e088db36d19bcfd67970bcae6062e90412d133a3060a6a79f47584c7918d6b8"], 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000200)={'syztnl1\x00', <r3=>0x0, 0x4, 0xfd, 0x5, 0x8, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, @empty, 0x10, 0x7, 0x80000001, 0xffffffff}})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000080)={'syztnl2\x00', &(0x7f0000000280)={'syztnl2\x00', r3, 0x4, 0x4, 0x3, 0x9f, 0xa, @ipv4={'\x00', '\xff\xff', @multicast2}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x10, 0x10050, 0x0, 0x8001}})

1.630262782s ago: executing program 1 (id=479):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000017c0)={"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"})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000580)={0x2, 0x0, @ioapic={0xd5dd0001, 0x800b, 0xe, 0xfffffffc, 0x0, [{0xc, 0x9, 0x8, '\x00', 0xb4}, {0x83, 0x9, 0x4, '\x00', 0x9b}, {0xf9, 0xe, 0x6, '\x00', 0xda}, {0x0, 0x5, 0x0, '\x00', 0x5}, {0x1, 0x10, 0x8}, {0xe8, 0x5, 0x6, '\x00', 0xff}, {0x6, 0xe, 0x4a, '\x00', 0x9}, {0x5, 0x90, 0x4, '\x00', 0xe9}, {0xe, 0x4, 0xa7, '\x00', 0x1}, {0x9, 0xcc, 0x6, '\x00', 0x4}, {0x0, 0x9, 0x4, '\x00', 0x8}, {0x0, 0x4, 0x5, '\x00', 0x7}, {0x1, 0x4, 0x80, '\x00', 0x4}, {0x3, 0xf5, 0x6, '\x00', 0xb2}, {0x7, 0x4, 0x0, '\x00', 0xfd}, {0x7, 0xa, 0x4, '\x00', 0xd}, {0x7, 0x2, 0x4, '\x00', 0x3}, {0xee, 0x3, 0x2, '\x00', 0x3}, {0xf, 0xf8, 0x6, '\x00', 0x1}, {0x9, 0x3, 0x53, '\x00', 0x1}, {0x9, 0x2, 0x7, '\x00', 0x4}, {0x65, 0x40, 0x7, '\x00', 0x6}, {0x1, 0xfd, 0x7, '\x00', 0x2}, {0xac, 0x8, 0xfa, '\x00', 0x1}]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 4)

1.549770832s ago: executing program 2 (id=480):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, 0x52f})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000940)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha384\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
r3 = accept4(r2, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f0000000880)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000680)=""/230, 0xe6}], 0x1}, 0x4}], 0x1, 0x1, 0x0)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x114, 0x2d, 0x1, 0x70bd26, 0x25dfdbfc, "", [@nested={0x104, 0xf2, 0x0, 0x1, [@typed={0xc, 0x16, 0x0, 0x0, @u64=0xfac0a}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x16}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b3625ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000080)={0x5, 0x3ff})
r5 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r5, &(0x7f00000024c0)={0xa, 0x7, 0x0, @dev={0xfe, 0x80, '\x00', 0xb}, 0x8}, 0x20)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC(r6, 0x4068aea3, &(0x7f00000000c0))
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1.359877062s ago: executing program 1 (id=481):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000003c0)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@delchain={0x24, 0x5f, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xf}, {0x5, 0x2}, {0x1, 0xe}}}, 0x24}}, 0x0)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
getsockopt(r3, 0x110, 0x6, 0x0, &(0x7f0000000280)=0x51)

1.359752875s ago: executing program 1 (id=482):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
syz_emit_ethernet(0x9a, &(0x7f0000000380)=ANY=[@ANYBLOB="79ee7ca42eeabbbbbbbbbbbb86dd6a00000000641100fe8000000000000000000000000000aaff0200000000000000000000000000014e214e20006490780200000000000000040000007d2a58d3d1bc393120755af399fd331b6ff9f05db886db33106e8efa063df1e656e26192849126844cc7efd176009a6b8540a41b613bc37f85d55a3b1d1d5284e7f0b7f82004c1ad9ea28c4798"], 0x0)

1.355352145s ago: executing program 2 (id=484):
r0 = syz_usb_connect(0x5, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x80015b1a, 0x0) (fail_nth: 4)

589.820067ms ago: executing program 0 (id=490):
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x501a, 0x3, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
syz_init_net_socket$ax25(0x3, 0x5, 0xc3)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newtaction={0x60, 0x30, 0x871a15abc695f839, 0x0, 0x0, {}, [{0xffffffffffffff56}]}, 0x60}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000006840)={0x2020, 0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x2b, 0x0, 0x1000, 0x4, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x6}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0xfffffffffffffffe, 0x0, {0x0, 0x20000000000, 0x0, 0xfffffffffffffffa, 0x0, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, r4, 0x0, 0x6}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x8000000000000, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
mount$overlay(0x0, &(0x7f0000000340)='./file0/file0\x00', 0x0, 0xa1001, 0x0)
open(&(0x7f00000001c0)='./file0/file0\x00', 0xc642, 0xe4)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)

589.541124ms ago: executing program 0 (id=491):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)={0x6})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@private0, @in=@multicast1}}, {{@in6=@local}, 0x0, @in6=@loopback}}, &(0x7f0000000440)=0xe8)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x290000, 0x0)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), r0)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, r5, 0x200, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x50)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fdb000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000001c0)="66ba4000ecc4a1fc283266bad004b8147b0000ef0f092e660f3a14c400c46225966ce5000f01c4c4231144b10050000068c7442400fb000000c744240200000000ff2c24410fc79806000000", 0x4c}], 0x5b, 0x3a, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_FILTER(r6, 0x0, 0x2, &(0x7f0000000180)={0xfffc, [0xd, 0x1], 0x15}, 0x10)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000080)={[{0x2923, 0x7, 0x6, 0x8, 0x27, 0x6, 0x2, 0x3, 0xef, 0xe7, 0x5f, 0x2, 0x484c}, {0x3, 0x1, 0x6, 0xb3, 0x7, 0x8, 0xc6, 0x5, 0x5, 0x6, 0x4, 0x1, 0x8}, {0xbfa8, 0xfffa, 0x8f, 0x9, 0x0, 0x7, 0x14, 0x3, 0x9, 0x13, 0x7d, 0x74, 0x6}], 0xd5d})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

450.070366ms ago: executing program 1 (id=492):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4)
sendmsg$netlink(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000900)=ANY=[@ANYBLOB="30000000120001000000000000000000100000000c0000000000000000000001"], 0x30}], 0x1}, 0x0)
openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x169101, 0x0)
prctl$PR_SET_IO_FLUSHER(0x41, 0x3)
chdir(&(0x7f0000000100)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(r1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000380)={0x2, &(0x7f0000000340)=[{0xa35, 0xbb, 0x5, 0x9}, {0x800, 0x5, 0xc, 0x9}]})
ioctl$SIOCSIFHWADDR(r1, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="060000000010"})
getpeername(r1, &(0x7f0000000140)=@caif=@util, &(0x7f0000000200)=0x80)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
r4 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0)
syz_usb_control_io(r4, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000140)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
writev(r5, &(0x7f00000023c0)=[{&(0x7f00000003c0)="d04a", 0x2}], 0x1)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x4000, 0x80600})
utimensat(r3, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={{}, {0x0, 0x2710}}, 0x100)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x891d, &(0x7f0000000040)={'ip6_vti0\x00', @random='\a\x00\x00 \x00'})
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r7, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
mknod$loop(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200, 0x1)

359.334871ms ago: executing program 0 (id=493):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x626f}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x16, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xd40}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000400)='signal_generate\x00', r2}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

358.476931ms ago: executing program 0 (id=494):
r0 = syz_io_uring_setup(0x130, &(0x7f0000000140)={0x0, 0xf97, 0x1000, 0xfffffffc, 0x28a}, &(0x7f0000000300)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_ifreq(r3, 0x8943, &(0x7f0000000400)={'netdevsim0\x00', @ifru_settings={0xb21, 0x0, @te1=0x0}}) (async)
ioctl$sock_ifreq(r3, 0x8943, &(0x7f0000000400)={'netdevsim0\x00', @ifru_settings={0xb21, 0x0, @te1=0x0}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='io_uring_fail_link\x00', r5, 0x0, 0xffffffffffffbffe}, 0x18)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e1f1b"], 0x22)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40800})
io_uring_enter(r0, 0x47f4, 0x1386, 0xc, 0x0, 0x0) (async)
io_uring_enter(r0, 0x47f4, 0x1386, 0xc, 0x0, 0x0)

290.38771ms ago: executing program 0 (id=495):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x901800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fda000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f0000000080)="64f30fc7f80f01d10f00d53e32fa01df650f4021baa100ecba4200ec65f46766c7442400a60000006766c744240200b046576766c744240600000000670f011424", 0x41}], 0x1, 0x29, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0x3000, 0x1000, &(0x7f0000feb000/0x1000)=nil})
sendmsg$RDMA_NLDEV_CMD_PORT_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x840}, 0x40040)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_sock=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt(r1, 0x1, 0x5, &(0x7f0000000200)="807ce4e7f8021b86dc5b01bffa81c423dfa951ed6d25136a1a61ee0a04", 0x1d)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 2)

240.340903ms ago: executing program 3 (id=496):
socket$igmp6(0xa, 0x3, 0x2)
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) (async)
r0 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x1000) (async)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x1000)
socket$inet6_sctp(0xa, 0x6, 0x84)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000540)=ANY=[@ANYBLOB="1201000000000010ac0544020000000000010902240001000000000904000000030002"], 0x0) (async)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000540)=ANY=[@ANYBLOB="1201000000000010ac0544020000000000010902240001000000000904000000030002"], 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffff7f}]})
openat$mice(0xffffff9c, &(0x7f0000000080), 0x8000) (async)
r2 = openat$mice(0xffffff9c, &(0x7f0000000080), 0x8000)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r4 = socket(0xa, 0x801, 0x0)
getsockopt(r4, 0x29, 0x4b, 0x0, &(0x7f0000001ffc))
r5 = openat$vicodec1(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_open_dev$media(&(0x7f0000000040), 0x7ffffffe, 0x0) (async)
r6 = syz_open_dev$media(&(0x7f0000000040), 0x7ffffffe, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r6, 0x80047c05, &(0x7f0000000080)=<r7=>0xffffffffffffffff)
ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0205648, &(0x7f0000000000)={0xa30000, 0x0, 0x0, r7, 0x0, 0x0})
accept$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000240)=0x11) (async)
r8 = accept$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000240)=0x11)
listen(r8, 0x9)
recvfrom(r8, &(0x7f0000000080)=""/242, 0xf2, 0x40012140, &(0x7f0000000180)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80)

225.154µs ago: executing program 3 (id=497):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="340000003e0007010300000000000000017c0000040042800c00018006000600843b0000100002800c0009"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000002140)={0x2020, 0x0, <r2=>0x0}, 0x2020)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, &(0x7f0000000040)="9666400f3048b807000000000000000f23c80f21f835000040000f23f8f3400f07400f2177430f7992290000000f023bd9e966baf80cb8ae35f187ef66bafc0c66b8752566efc4e17a2d7399", 0x4c}], 0x1, 0x8, &(0x7f00000002c0)=[@cstype0={0x4, 0x7}], 0x1)
r4 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_script(r4, &(0x7f00000004c0)={'#! ', './file0/file0', [{0x20, 'fuse\x00'}, {0x20, '!.{(^\\\'(^'}, {0x20, '\xd0%T@'}, {0x20, '^/$'}, {}, {0x20, '-.!/&+'}, {0x20, '@],{\'@,'}], 0xa, "c1ec321993102940a54bc823e6a5c4327eb043d65d809bb9e6113a9936cef8f847088c1159dfb075ba71726b9d12fc4452fe89a41baf90e36227479b1c4cd60347d5211e5372e08a8eedbc772c3387c8180fe72512c231acf2debd1ade13ade8ad77cbc6ba82e262efff57061d9500abaf41c245d850ec5da6d7237b5e7070a36b3e5057ff29c39c99a73efb2ac7f36315b14b4f42121840f1f23741b905042b0e"}, 0xdb)
syz_fuse_handle_req(r1, &(0x7f0000004180)="92756f43b31ffe542788ef586b7c5a344424e3acac2590be6bbe37adface4a8f2e534ffe76a83a93f0b3680a72fddfde83f96d01982384e8d689219cb9669b14dbaa1b799f82ea1fc926126a4163618e16d4f94143a4e0f27c44fcef3920a0b3805ed4e78098d8689cc7791bd86648070718d238664332948d87866c8d2590fc0f017f9853abd9ed60b99f1aa6ae2dbd24ab6dbcebdb055246815ace147cc50fa3b2861148fcda374d5b203e51d72c45e4dde3e9ee9a47ffe458baf7bb49035135a8194aa1f0a83fa2abed56398f90daff679634619453f533f22583a6e0a4dc09e9de46684d5e0136e229510f3702cf3a4cd0065d3e5d3c419e38a80b070ca55010e082a9c510fd18cc0b26bb5e8e459e747befbc5c6b60ace80bf41417b7b78cf57e5b3984f0cdddc615c5e0000454d3f4a196fb6d18aa629cf0b0245f95ba958d86dc175616f8cd3ac473057dc3a5ff7107973326350107f4468e7ecd48d689b82c12d22ae5f1858302a1b4cfde8fd347a99ddcde40d1c49d9b5099fbccf09e782212be4b2ce36a2bc3c9ee794abffe72a5501e6c4f3f7f68b74761ffd6620609224a3bf11f655dadb5c8a5813b02fb46830e9ac6825f5d0e89910352eb3a58c0dd82d094f94dd2c85666f684a8f437bbd0e66b9f4d366117b67a054d212c4fbc287848cb0578391335d5d616b14d99a2e3df8e8a152d5de99bcefcaab5bb5cc71f3ddd66b379c104648e190e0b28a180d3aecc5423575d4ba7dbf31215c717da7b87dd454b6efcd36c91aaa631127f5bd88723d221752f102bc0c7ac6c5c7a1ad6747af40d01b6d39eab7b0e1292b44683c586386ad00acf60fb8f9bac551a6eb5bab7317b5d89f64db10bd9018dfa6d65d93862e851afbc30fd70fe5f0de322462045177231852ca80e4e78da4fea0c79ba354333026c8bc77d308a8d256a19ec45d2088c196691d3f9aac28ded36004a65ee1ce49ba9599ceee84534bb61d02d04a6732f1e27d72962f74b59f3522bf844c5022986d55934e48b8681b7f5b7532391448caeef00315d28320a46d8bd7813544e1e4bf994e14a519c2654ff20b42bdb69c262897e28eca528f0999840b00ed8256597d27cfc20d71d5f40d0bbca759f7594c6034aa1e16a84ed152fad0fdc1c303a7f61225712714f823afc5ea241d482d3585759623af8c97ca6a84a2033b3d7314ea0ef7ba9b288b362a294c92c8b9736829c16f61c5a1ee04aca965d71162292274595ea62c9c2918e8279c99f5d2830c617c58211fd7452330184b9428d5ec1d5cd75ddcc6de3326fdc70e891104b3b013c30ffccfaf3308d9671b01f6b080a930dac2052c6f39817a662121d90d40d6a1facfb50bec7d408030b6d0ae3e744f3bcc327c35dc43cf86b743db78ff2e593b19923235ed6467f299b08718fe1840c16a748935dff941150fb08b30573b37bf9af5c86cc8d9e229a832e4ef25ec91f71120f2b3e9062485976c280a2d172386029e2f2a4801197fca0a13514edacf5ddbac5a62e8bb13dd1572657a821a8739297f72e29239d1cdddf3e30cbe9af3141f2275ee4ae85d86ec888fe9a6751f252057e95b8beb055e276439581afee93cd44f1e92f70e5f725451d3ab662918ffbb1269509fbd511e95a00ec717f9d60d643864abd6ad1cc4dd7f933379a6078a86c2158db8076e7b660366fca7b1c46d09d2c8e67a6494bfb4c2c6750e76593895b5e2b2bc78093840c3c4a807826bc2750a96b4e1dd5b82b492bb2215518c92064d1763c37132604e52e73fac3f4511f791753aeecfbb19816e0da7a1bfbea9eeaa0f256eaedcb119a61f7d0ea0f5cd4969d45cb014800f2c888d5c2217cf0f69a7507779883b57352bb8883cc584891950d6e792537074f4fc4337aa19b9bf60e18edd939d289fb4a6b7aa6c66da20774e249ca4f779d3c910b1a9a8e4c38af6adecc87d5481d181fd66023ffff246f4e2556b218fe8110acebe20b1675f1de6f265b6d1d8514a53522396bf0e2f2b153c498e48b36d16f8b9bd56f45d7f5b9397d7f1339117a176d0bad0b68e800682416d3e18fe2197c7f8dc20600feb95cc6ba86ad47f113e159bd4389e30eab2874bd27eebc56020c4dab9973b13f3e82aa62a7e0a151d73de48cb811e32be63ffd303f5a6ea6f097ed763fbf36c430821e451146de79922348354ce285af0997bf3c66e6ef02942e24b8f1ccdd542f09cfe65c0da0094c0b5fd26bbc061538b41e5ed2cbb390ee29b10a4b7a696009e1b5b86c44c0a561a257c15415feaeb1433ea275ed6e4b228503fe71ee5942665164faaed6697112206be0fe7863aebd4bbe951d5dea1da294dba0793196385f4d5141c9d6c4b0fa22b2e200cfb70b52aca31655e71e5a576ccb8ccb5b1364748aa981edbb81a813b1aebc67be1f7619e7e197622d981280429f6ca5145c5b3b05e6bace9191e5c58fbf140f71f594cbfd4db0e9f6923f1758ff9464a61a720a5d4f09c622c3ce3f5d0d3a1d191111168108f41f12b16e9eaf3617c353715cd35260560cbfd0555d51ce5c40bbdb7c95ceaeadadb8902974de50b0863348183864f5ea682e678286a06a6f396af29a7c7fb33a3579e25835963612f3c0d4cf369d85959a0adeda94d35824050e6fba7f83f90867583f713d7783323c7010e94c9be331f860db395dbde6face5bfdb616fcefa9c6b01f6963daa840a31ff554a458c0c50cb5e09f91f54f63234589decaf45bbfbaef0dcbff4ae6e65ca26a530261c491ef8eb9a855a1d7463391c9b66be96cf24c3c321ee5a5bdc857f60b582683c6ae1e3775b62a9f19ff8fa51380ca8a2a3c6de79012f5727ba12025e7e6723a23a81e067ca6e54c7b38ff64880d235d21e7ee5258953dcbf9e2a962f006ca4ffe870859242c850cbae4222b3b72c4f86934379ba2ead1dcde906241b994d95c88355af5a9a30ace9c933a6942f341ad221dd825846a8fd44c03e2eaa9311c26e15a1bd7cbba961a22ef23d7ebba0e34cec5ef09b1ce72814a97e33bd29f3d9ec80a4f45d1d29486accf15c11f1a800bd84918e7626f678275d7c7acb02cc0e6e34bb766ba6b75c3ad14fca9352e09c3b69390c045cfc842ff9ade8ca693c07fadc7047a946e6e570c3afc5b501c964103397f5ddadc2d59a048348dd42f07cfe31bc9b5ae453f5086bb41bba4c8a3e518e30b0855184b053f923025dd72ce1bcbf41231978b34a8547c71d7313992165078903c61d312b0d9469413c9fd97ccdf0ea270fb6c47ec8861a1c8d909eeace761b5a06ba46e25785ff87f867777abb237c6c980687991f1ed0157d58492260c712cec34c1fc0962103955db4d5090b6e8409cf3c3c79d0e691cf4fbc0b2251a016dcd456969cd32e5429533bf0d6f8bda84c05f0e2040de8b53bfb8676eec4b76c3df6f46b1e43732035dda577e75f640777f6ae90fd2f1af42ba462dac732019c599bfef01acd6a0d4d1796bcb8f58519d6f9ad9a3206704a94d472516b988141f44ecd2e6f28a49aa0c449db87972fc995a97379914546ea43143ea2cf779a9cbe81f111fe89129db3610492164ab2598eca7e60d9a6963d8ba03a86729db86e420fd96d61b8fb11edc2b339b57a740074ae5b775eaf60cd85dc934e604bf2b4bd58ee01205b4df57ac20ff8db45a05982b579643882407050c005102a2e71f1e56dc76dbf5331112e83e48bfb5cf2a78a893190d78426175c162ffaa7278a43b9932318fc17fb8cb0dfac610b1ad235b91f9cb7623b155117e07f7b876a3c37627aa31eafed141cc0c5491c4f621a66b6d837a144d78719c46511c04a093cf65fce9fabe5bd6d499eceb63538ece3cf19053550a239bf978c08c879f9954485a4e3e0d5bedb84b407ced85c4dfc4d75af116815992c29f0bc927c4a990c38ae4fcc9feb90fec1b1b555e04d010423010855394d5ccfc8ed21164190cd8f83be5debb70290c3547f07e4dc42814f1e001798e6ceee2558b0c6ff8c1759f90269ee226131116332b99ac8dd104c92088e1f91ace3198c0f59bfb75c4e4a697660eed43a29c831a552de37fce6dce96fa51b6e2111f3071a4e94422d15e102e5f67da7ca6cae6bed7743ebffacb8a811a143605791d17232181a517e872f71262c3c73668f0ef83aad498f67fa26bae698cf78f24c2dbecd399a190e6b8d0684e929f2e8083765eb2c67793a1adbb89d36b58bfb197cdc5f3c894ac9d886e8f3b0936fabd233c09de8fab8099f72a74d908ba5c5e4d39790b0bf9e45b710f5587b7c937c76690c5c5fce621a53a9fd03b0a4ee6d8d1abbe2ed561820a77f12a08cad0755540ab6dd1604b7c30a8652995ab80b85e919011de9438a4637eb0291124ed4b745e782cff98510cb03be79c2a81351abf276584d75cdd96b9c97e73eb71000b3ab7c3c19c2cab4497298fcb3052b5d4503d05e7f310318be6f848547b1a4f4db82caee190801478be28065036aa4d91f290c1f396343e73a5fe8bb5ccf0a317177ed1f77acda1a4a49dccfcab8d1b5d79f015f788b6d5e9f8228a8bcdc0696e6b19f5edffbcd7e9509c87fbe1f726b93bf8c6d8d37428763e142560c46c9e894f7317859000c25abc4f3691ebcd020171e0d4911b5d97a238109aedeb00b2eb475c1e7b45175f8aa85193b5c0f43b434c15de01610c4d022646cd6e3637f349a434a77f571ac1c5d698452d1b991e267f78dca5e592ecd31ccafcad84e4e98d134b4adc525b81bd6843428883023a6ea407201738c8bf16b541ff7280274a34d4cf14819f2dbae167ca0cae8471c495e006b45194ad91c4516f21cbb10e0d26fd5d734cd7725df5b3fbe92955f4a9bb3b9b813aeeff79d6ed5db92def19d060a208c3ec8c42c110786f1e1496c50a7249b03fc792764366894a35320b99d0bef9fd0b6a246c36a357c6b985dc83a37a8d9b8b9ad643dea94860cbe763bb73cc8422b69d4d12332242c8954075fb7117a6679638073617abcdb4619855b2036af160647f66b3531645a3bf047ae290d6ae2249f114e7a8464278bae1486022bcc7c37390c8d9a0efb0e1cfa0da8ef7a5e072f99a47ecc75e4e442880375193db49bb82ba34901286ca473ed5b63e4048db4dc455e74b3fdd2e7898ca3f4c3a02d435cde6141eea645055123a7dcf0d22057f8d425701afc55859f5147954e719d58c7486b1e02ac16cb799b77632c66bb78e6e52e11017c1736424fa4d433f1e19b4c881d23f0b2a12d5fae3ae24339088088d9b496ad97bd9f6e20a8597d1452a0c72dcf43dbbda8f18166585c06d21fbffe5fe7b55f71c9b9f1b34a02bd05ca63c7c1b1bebbb9dd24fb10291b04c665d45154dd28b85d821ce7e613119128996785e1006a8dabc4899b10d2671107d5a0658ed363b9d4b39d02f8cc5e350fbf0a31048adecd1f9e2ca749bd86f195eb48e9b4605f050de03d642940d79184618f7f88a9a0a4683ad84d6134e395305bc1d4d9d17cc334b97653529d6682a87a5fac80a6d46d6e72fc22e58be7b8f8617b3372ef2622110ab1ec448717118b257acffe55d18c7855e9e8710ad977a6792b2315a189eb4468c68641e9b60c0dab7016ac1ad63cd8004b6eca8fc88b1e4263acc00499255c16b11487a0af858075f9c892dc8044c4146e5a5677c4a2cb24bde5e078985020d4ab1e4c87492e76b7e6f4bbd71d84bab1885c9702849e70cf728776b1a94c2a8fb8c7ca01b6111ef6f2032a290949bfe473fe215273b8b5b3ad540f187490f63077dccbca6f62f0a7a66717c596cdef412f2560b10685ede967b3ee68b8c951959aeb1d7564c3b9d806b2ce858381393a79916b78f7e90beadae30ffc0b2b614380f1c2cc551a44565209db3516be379ef566ab00c673fd8aaeeecdcf1168c1960e9a477b9e13757498a44ff089351d1f27abf9fd76816f924504647d1247715ca861ebe624172c322146d66eb2b247f8ecb3e1b5ddca89b287c57510cec40fcf89d802cf4368a861af320e01e34f7a6177d4bc549181b5e87ecdfe02f78c9a59a3bf91ebb6364023ec06410e7b4476ec4e3685bfa3bfe9ef9ecc12dcd899abe0f3c7f16b4686801c0c0a949aa26bed57df56f2bc54ef19af7fcbc7b0d691075f42a4a67acf980b568acb2342f42249f7c1ee3527c13182b096064ecd250887a942d26f637e1c4041b139659d2462a68680bb04387a3b399e396b9fe74de10356125fa47d0a20827370cbf36a79b6fffade91c439dd6cfff4bbe0dd3efefb61c491ee32f935d62307cba369ac8c20f6fe3d4857ce6d240ece5e4d149f0587155a8350fcc18efae2ff11cdbe15218a82499a1996df8b5462ee170b284321e76bbe5c3f4158387644d95f087c598e3d46fbe27f63fa784bda239512113424045a2c5dbc6bc3662ca730a86d13cf8f6fe2743224ca7b535caf6b4701a7dae9cfad3d7290104bbba15b6a064ae6e909a099f75fbe47c9e654d8e3b8dc0f3dbffe829e6c56f7a241e565136812a857f59ab565a9991c6b1d8abcc94c6b33bba314f6e5060e657e4647f969a551dd6c51dfca0ff5d9e4f401fedbc2c927eb1ed95ef25f4e5accba4999322ba1539499310dd5875433a22835cfd42fd77fd4680b7fe767d7aa5c33acde04a65bd3a663fcde4c80e9f2af498f13bf9abbaa1c1265edc691e94abdcc92270c05811cd2a8104eb18efbfec9e4ba9ae5cde211b9b93082ce034b6cd5fbe9cfbac4f7e2404ef159766124f73017cc3600f3c81cd78db25fc3459629eaf20dfdb062c7e502aa69412381d847a9d254d5befc451cda3606f0bc8ae62e0aee928f9ed0b21d705a8d31b899e16445ee064563d32f7b6bb5ad197023cf528d9b329ec67815c6ddf27d2a6ffa7328bb993407cde3d166159fd49fe469254b84c2916daea8df9d69bef019f1351b9bce193e30278835b82ea5f60dc0bdd7f7452b7a820ae7cd6dc29d7ac6a6c1b6411711a96338b1e769146b2a385d282bfaae61b041166efafab2d89a4567b9460cc22d752f8e9aacaaa0db7c84879f5359662d55df6570d4214740851c74574ced733807cbb54571110410892394c3dea07bd4154d0e5689d57c3360207dac951f96a358e9c466a5c5113f3a632e184f57f075edef4dcc9721b963beb95df09dedf848260cbc1ebfdc7408218eaba6d2c51928cd37c4c0c9f321fbb0994a56947cfd9643056db5dbea60a241f8f004c932bc8e645b2ec2eb9bc4e9e2f4156293234d05e70cb26b8a370b0206c756bda6defc11c5eb386640f535a4ffb714168defc6d82f40d8f5ba8768537ead5773c53bd779ca899a2dd31c9138569ff5107c2fb12b804375c3b3dc9b828bfd550328adf358f71e86a0c49fb119f5ef9e06c13855cbfc7d1a62ca2ea655ed912a6dc7bb8b18656e8923fc7a1702ab36947d79384d681c31923e98cf40209f776bc2b219a7ccd139e756a905aa351e6eaae90770c8a193f96cd5c66e4d77a357985556e14333716d80204a5c390e0d76f4081afe917f99ad8a0976b3342f51854b374b4baa9a7f22124d2b82749446e30d9795acb9c3c3a305a6d273ac528e8e9c95c37a78e765fdda55982c2961fbc85a14fc095a78b4654ee6dfc3298749a639ab9c8e155af3a77f8a409ce174532a492ef550a140f774d77d732b3b4ca5bc41fa4488ce5957ce219b032ae1f585273748d81b19edcf3e6cb9a93ec24e41c6b3c472f9baf3ca46cb8b9a91df18acebe7d83bd4473750c4f26806da2f95b9ea48b342460af729ab15e9f033eda67feec645f985d4b9489cf6ceec1b100d007bf46c74be53c7ea17296f9c5b5cbae736491213c93b513009ebdecfcd60d46d7b86c6e3b5e288f2ba5867c07936e7bd1b00de52191eb8630ff82ccafb27a59295164751811bf74eff1e5e2abdf3c93bc5dc9814be83b2562477935e2fa30db7ebb6ec380170cf10c1f98f8c5eb71c730c2b31b55a1dd1c12a64802ab95b63c529e0a96cec8f38680221d6089926d8309796c79994d63b67bfb62f66b4a502f30ed12be41e896e88bc45a160a526fbd5f002e677322f116ec5740d7563cd23ee853c008b84998e38fdf158556e28a532573956e7c00f91f08ca245c295a3d5e003a99ea727f61d12893b435d4c8f2f5cce00c6a3091e2a47f290c07168975c53d7529b71d10faf42d2bac9db8d53669cf59c709c25e9e40b5feaed4c37dde8b84c4961c00712326fb6aaa06e80d766b40b72480f3971def61d1d129676df2478e778d899ed317426ec33e496d1fdd2ec27128f8faee92828e13da72d6aee8330a7988ea1cc8b64ec4d8b20990864c16c52c4be6d00b304b87d97bffdd9c66a740b517223089d9f3f414abedc53c768dab9220b980e6c18d5f20ba8994cc8886d7bdee213442f456d79fce1b1eb48fbf600a666c8ade24d118e6328251cf7b57a6285c650e019850f392b1c29aec5c8fc489a3819d60d5de377d4c11b8ee5625b7c02c5d50d2af3397006f2e2a41a06f039229eef5878ed91f9f6be7e988924dbaeb8455f616275e8698d93fb536e2c839b203aa69bceceddbf9c53f8addba53d50ca0f7a4729a42ac6eb757f1b408ad4a0147546173e62f7621eb18a9e1681510cceb48e0a30ab7a1bf71d56742d5f034f2d725e7ea68a011dbb100fa6eefe4ee093873de366d34f4240ca027a25c5b979c9ac47dd1dcb6ed82c4aee09dcc23cf329a8644f89b5cf00e5683934b1837574e9b39b31b1009f276e15aa040959fdf100838ca3f5ab17e45036668d06044e3a13f3a0a6f68579e50d5b0164f900d7bcfcde78396cf30f0b1dff76dc397ab1a5a44b207eb1eaaf73b945c575029ae2dce20724991e6550155ded6a42672609f2439c5aab4882b2ffaf7da787b71d05d15516bd68c6f1a9d79b675395845f24ee853f877e72c14b6c6702f7b8775ca1bfabbbcf4019f7bccf07f1c211531dfc66a7a1df79e92a20dd1cbe1b22e1209e7e3ecb9d3c2450fc22a57bfe09bd735f61c361cdac2488ae0adc7885edc0712655daaf535e1de96ccbe7869d531d8bf3db512fbd17c772332a3f8cf1e052ee0202eb99a36a0f8d7219888acbb57090cdaf3b28e1e62e8fc2ec237bdf18592a7afe4d8390dcb5e7fcc31bf4f797e6f5710070902265cc2e8c459b7da1451046abd6c8c5b02c0be2d2f505a65376266563ac7b59ef3b4e2570a6cb0bd94d46ad861317c743ce1de12bfa2295a98cdded4414d87a1580b1e4675bbdf73a22cac4a1d8d456d089e0b60cbfd16158f073bd1dac481db49fa5d8801d0fb0844b4afec1bab4e61fa0f381fa667880a1cd8163953be7b591cc9dfd7f91902370b783ae8a0f3c7cbefa7d229a37c00f523529e159b11d2e240629b64af2d11404773e991207a722c320221ce23baed7cbe40a440c5680814b122cfba9092fe03478f85adcbdeacb76d6cbf2491eafae98327b278e267821a0e1cd06ef90cb0328e246c19d8c63b9332291a89bc9f989effc675c79a870ac024756c6f5a7e32babd69625d61487ae7399490b70dd0fade7d70ad9b0757300a2dde77abaff4f63a0303853589d44efa968e10d36561f04408ad0cc227fc6b2f904cead189a0fcca9b2e6cbde5498652e0b3bc9d8b7921474403718feb5cc750dc70f5a9b1a0ae2c642015b6a1a8ab0572182b4e39e0c869cbdc60c9465f5d564d18ba2f5b3bc3e05a458744077430c5ea031ee02dd8f0a65d7dd8d90dd9b8717f77d202239a5778719423fb2aec7ca86eb07c39de65a34b988d65377a7473e9145f16d79593e96903330bbf3a8024fc15519d9baa0fae2018786f4b1846fca355ff0fccf65cccad1896309a5ccf2056dd542c929850cc91cd655962360fe316557ab3fb378328f77a07d9da24447d3fa2020b382ed2e808ec9529a01273434c64b0b7c35a06a019e4ab51cdc9c0f266ab25b6984338a0ba910d1060283b636c5d7e8a3f969c1ee1c99b54bba7ff3679fbeecbb70349f076480a867cc4ee4cacaea39c80f642533599486d2ffb77b8c9109a9d25fa0b06e58eca764f7d56469eb9547036bbea9d5c3d35b4c1fbc3d39a372c2b7ad184965cad3819c8928f1588d00949949c0c4c93d30ac7f6665247c0108bd89dff3aafe780ac66febfacc8c6a3cc387d09da6de700487a80e2c8d56df94d7ebd3e1d9e06411a6c5f7eb6da41c6f52997b5ad47ba985261103fdf12eb4a2828b248f652ef00b6abccab2eb161b878b9dbc0aa911405b6f67adda83c16187748d7b524ffe6381f489f432d592e6171bd9ccb2cd52f977143f57fbf2ab0b823d449ae55f02440972334344cda01837b93afa4f46a2fdefe27e92764cf9596780846de2e3b1ea83e62ee43b1c05aee675e25363504addfaa68e7c53ed685413f5ba951f120d0a646e474872c81e5a887464c19f8460ae814ffff24cb51dd2dca28d597ab2ea60949f8dbbe67f263e722fdb51bce4e328a19f5ff1218e1f63b8da6d40dbd5490964499b2522ea323310634893ead661407966207a66ab13adfcf1a725ed14339c46011c0e0401f2386b47cd9f902fdf84bc85e74d3ae7cc544e4d65670a554a537712c6ee9f75191631d2a4c4da06fc38423b1d5b828d7201235b2974164f52aa16bee70ee509250752f4fdd6b9f8d021943df8320682a6f80ff0d67ab7a4ceea807bd5b3b7b6380b0c7f0caa67b0208ba71317f0355a3b755af0e2c007186389438615df80b7b25104a733fc90625b62682198733c0f1625dfaa08cf81e3df043094b7b5a098b3b36f803b5b0f10a057bf814ae3579932c0a5f208985bab3d817f975283b8838ae5cb709be72b58df7425e059fdbf4e0ee51b3da01fe0b44963c1196baee5ec5909ad80d9d1660f3edd90374952a0bf8b3bece2c2f944593f4de7de5e05ded096b8f4f05d65dfc2e806f78220d84b3db564fb12f4e5e8f5eab316591f004e9374cce8e787263bc3827affe6793c130b8621d3bbb2a86fd87f070ea21718281ee7aec4bb3bb71af4bf5721cecd139c4be8c9df4ec8dfb09a5cf1d86a25d39faa9f064a997c214f334e4410917fc3b4d67ada8d87a38c0f86b02bf653dddaeb5b75b300f8bcfd792858bef8ab23e063421939c59212964c9ed5dd56e215db58cef53d31a966bb8ce4ed56287fecb3a85ba435e0b41b20ba1164b9c9f2c49fa0f7b17a89e0ec47eefe992d63ee29c8c0a1ece2664fee8edadd43636a54c48519b4fcf55b0d9103602b92441a5f85cf8c5e406d0f5815f8f37309934bd78fbc2acf0a03b051b4528db4f7c09de7d0aabafca3736b8259c818ca338ca6754e0747717c2794d664a1cacc1e9c52764a308e6df73d975638630b74cce6c49b1bac16454e96852c4f9d8ed118e86d2f1c8dc33bccd4a07be128db5e80f5684ddcc1158e744411acde590f902f0987cfb750bb5bfeed53bff076868986b566d7701f48ddfcacbd325c8d930bcef26713bf60585d5c991e2a6cc33ccbc27f7ddfba18f998497c2eb378cc8f2cc07a1b4f141c5e0fb6f52e18242e505bcf6dd20e33a469d056a0b4fd5e72d0da9d0bcce1e2f9e9dc7d1c7b6cb0f3604287eca", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = syz_open_dev$dri(&(0x7f0000000040), 0x20, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r5, 0xc010640c, &(0x7f00000000c0)={0x7})
write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x1, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r6, 0x932, 0x8)

0s ago: executing program 0 (id=498):
socket(0x10, 0x3, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f0000000080)=@arm64_extra={0x603000000013c02e, &(0x7f0000000000)=0x7})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000140)='fib_table_lookup\x00', r1, 0x0, 0x417}, 0x18)
r2 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x41, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x3)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r3, 0x4068aea3, &(0x7f0000000200)={0x8f, 0x0, 0xe})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r5, &(0x7f0000000680)={&(0x7f0000000000)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10, &(0x7f0000001780)=[{&(0x7f0000000240)="f9", 0x1}], 0x1}, 0x4000080)
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f0000000040)=0x90000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000240)={@hyper})

kernel console output (not intermixed with test programs):

bian-1.16.3-2~bpo12+1 04/01/2014
[   71.851408][ T6715] Call Trace:
[   71.851412][ T6715]  <TASK>
[   71.851416][ T6715]  dump_stack_lvl+0x16c/0x1f0
[   71.851434][ T6715]  should_fail_ex+0x512/0x640
[   71.851448][ T6715]  ? fs_reclaim_acquire+0xae/0x150
[   71.851463][ T6715]  ? tomoyo_encode2+0x100/0x3e0
[   71.851475][ T6715]  should_failslab+0xc2/0x120
[   71.851487][ T6715]  __kmalloc_noprof+0xd2/0x510
[   71.851501][ T6715]  tomoyo_encode2+0x100/0x3e0
[   71.851514][ T6715]  tomoyo_encode+0x29/0x50
[   71.851557][ T6715]  tomoyo_realpath_from_path+0x18f/0x6e0
[   71.851571][ T6715]  ? tomoyo_profile+0x47/0x60
[   71.851587][ T6715]  tomoyo_path_number_perm+0x245/0x580
[   71.851603][ T6715]  ? tomoyo_path_number_perm+0x237/0x580
[   71.851621][ T6715]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   71.851638][ T6715]  ? find_held_lock+0x2b/0x80
[   71.851665][ T6715]  ? find_held_lock+0x2b/0x80
[   71.851679][ T6715]  ? hook_file_ioctl_common+0x145/0x410
[   71.851697][ T6715]  ? __fget_files+0x20e/0x3c0
[   71.851720][ T6715]  security_file_ioctl+0x9b/0x240
[   71.851733][ T6715]  __x64_sys_ioctl+0xb7/0x210
[   71.851749][ T6715]  do_syscall_64+0xcd/0x4c0
[   71.851764][ T6715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.851776][ T6715] RIP: 0033:0x7f6eed78e9a9
[   71.851785][ T6715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.851797][ T6715] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   71.851809][ T6715] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   71.851816][ T6715] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   71.851822][ T6715] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   71.851829][ T6715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.851835][ T6715] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   71.851849][ T6715]  </TASK>
[   71.851860][ T6715] ERROR: Out of memory at tomoyo_realpath_from_path.
[   71.917420][ T6721] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2856151591 (22849212728 ns) > initial count (5743301600 ns). Using initial count to start timer.
[   72.144196][   T40] kauditd_printk_skb: 29 callbacks suppressed
[   72.144208][   T40] audit: type=1400 audit(1753760047.227:278): avc:  denied  { create } for  pid=6725 comm="syz.2.237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   72.152376][   T40] audit: type=1400 audit(1753760047.227:279): avc:  denied  { write } for  pid=6725 comm="syz.2.237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   72.158295][   T40] audit: type=1400 audit(1753760047.227:280): avc:  denied  { create } for  pid=6724 comm="syz.0.236" name="#9" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   72.164807][   T40] audit: type=1400 audit(1753760047.227:281): avc:  denied  { link } for  pid=6724 comm="syz.0.236" name="#9" dev="tmpfs" ino=376 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   72.173508][   T40] audit: type=1400 audit(1753760047.227:282): avc:  denied  { rename } for  pid=6724 comm="syz.0.236" name="#a" dev="tmpfs" ino=376 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   72.203992][   T40] audit: type=1400 audit(1753760047.287:283): avc:  denied  { read } for  pid=6734 comm="syz.2.241" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   72.212079][   T40] audit: type=1400 audit(1753760047.287:284): avc:  denied  { ioctl } for  pid=6734 comm="syz.2.241" path="socket:[17693]" dev="sockfs" ino=17693 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   72.218447][ T6735] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[   72.288726][   T40] audit: type=1400 audit(1753760047.367:285): avc:  denied  { read write } for  pid=6742 comm="syz.2.242" name="file0" dev="tmpfs" ino=304 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   72.296033][   T40] audit: type=1400 audit(1753760047.367:286): avc:  denied  { open } for  pid=6742 comm="syz.2.242" path="/50/file0" dev="tmpfs" ino=304 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   72.489167][ T6754] netlink: 'syz.0.246': attribute type 1 has an invalid length.
[   72.653914][ T6757] netlink: 12 bytes leftover after parsing attributes in process `syz.0.246'.
[   72.708606][   T40] audit: type=1400 audit(1753760047.787:287): avc:  denied  { ioctl } for  pid=6761 comm="syz.1.248" path="socket:[16943]" dev="sockfs" ino=16943 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   72.717027][ T6754] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.746457][ T6760] FAULT_INJECTION: forcing a failure.
[   72.746457][ T6760] name failslab, interval 1, probability 0, space 0, times 0
[   72.750491][ T6760] CPU: 3 UID: 0 PID: 6760 Comm: syz.2.247 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   72.750506][ T6760] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.750512][ T6760] Call Trace:
[   72.750516][ T6760]  <TASK>
[   72.750520][ T6760]  dump_stack_lvl+0x16c/0x1f0
[   72.750537][ T6760]  should_fail_ex+0x512/0x640
[   72.750550][ T6760]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   72.750567][ T6760]  should_failslab+0xc2/0x120
[   72.750578][ T6760]  __kmalloc_cache_noprof+0x6a/0x3e0
[   72.750593][ T6760]  ? __pfx___might_resched+0x10/0x10
[   72.750608][ T6760]  ? vhost_task_create+0xe5/0x2e0
[   72.750618][ T6760]  ? rcu_is_watching+0x12/0xc0
[   72.750632][ T6760]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   72.750649][ T6760]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   72.750663][ T6760]  vhost_task_create+0xe5/0x2e0
[   72.750674][ T6760]  ? __pfx_vhost_task_create+0x10/0x10
[   72.750689][ T6760]  ? __pfx_vhost_task_fn+0x10/0x10
[   72.750715][ T6760]  kvm_mmu_post_init_vm+0x1b7/0x370
[   72.750736][ T6760]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   72.750751][ T6760]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   72.750767][ T6760]  kvm_vcpu_ioctl+0x5eb/0x1690
[   72.750786][ T6760]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   72.750800][ T6760]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   72.750815][ T6760]  ? do_vfs_ioctl+0x128/0x14f0
[   72.750830][ T6760]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   72.750844][ T6760]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   72.750861][ T6760]  ? hook_file_ioctl_common+0x145/0x410
[   72.750878][ T6760]  ? selinux_file_ioctl+0x180/0x270
[   72.750887][ T6760]  ? selinux_file_ioctl+0xb4/0x270
[   72.750898][ T6760]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   72.750912][ T6760]  __x64_sys_ioctl+0x18b/0x210
[   72.750928][ T6760]  do_syscall_64+0xcd/0x4c0
[   72.750942][ T6760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.750952][ T6760] RIP: 0033:0x7f647db8e9a9
[   72.750961][ T6760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.750971][ T6760] RSP: 002b:00007f647ea7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   72.750981][ T6760] RAX: ffffffffffffffda RBX: 00007f647ddb5fa0 RCX: 00007f647db8e9a9
[   72.750987][ T6760] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   72.750993][ T6760] RBP: 00007f647ea7a090 R08: 0000000000000000 R09: 0000000000000000
[   72.750999][ T6760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.751005][ T6760] R13: 0000000000000000 R14: 00007f647ddb5fa0 R15: 00007ffe50f84f08
[   72.751018][ T6760]  </TASK>
[   72.833139][    C3] vkms_vblank_simulate: vblank timer overrun
[   72.842404][ T6769] md: md2 stopped.
[   72.969748][ T6785] block device autoloading is deprecated and will be removed.
[   73.075160][ T6792] FAULT_INJECTION: forcing a failure.
[   73.075160][ T6792] name failslab, interval 1, probability 0, space 0, times 0
[   73.080058][ T6792] CPU: 2 UID: 0 PID: 6792 Comm: syz.1.256 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   73.080075][ T6792] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.080081][ T6792] Call Trace:
[   73.080085][ T6792]  <TASK>
[   73.080089][ T6792]  dump_stack_lvl+0x16c/0x1f0
[   73.080106][ T6792]  should_fail_ex+0x512/0x640
[   73.080119][ T6792]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   73.080136][ T6792]  should_failslab+0xc2/0x120
[   73.080148][ T6792]  __kmalloc_cache_noprof+0x6a/0x3e0
[   73.080162][ T6792]  ? __pfx___might_resched+0x10/0x10
[   73.080177][ T6792]  ? vhost_task_create+0xe5/0x2e0
[   73.080188][ T6792]  ? rcu_is_watching+0x12/0xc0
[   73.080202][ T6792]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   73.080219][ T6792]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   73.080232][ T6792]  vhost_task_create+0xe5/0x2e0
[   73.080243][ T6792]  ? __pfx_vhost_task_create+0x10/0x10
[   73.080258][ T6792]  ? __pfx_vhost_task_fn+0x10/0x10
[   73.080275][ T6792]  kvm_mmu_post_init_vm+0x1b7/0x370
[   73.080291][ T6792]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   73.080305][ T6792]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   73.080324][ T6792]  kvm_vcpu_ioctl+0x5eb/0x1690
[   73.080340][ T6792]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   73.080354][ T6792]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   73.080368][ T6792]  ? do_vfs_ioctl+0x128/0x14f0
[   73.080383][ T6792]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   73.080397][ T6792]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   73.080414][ T6792]  ? hook_file_ioctl_common+0x145/0x410
[   73.080431][ T6792]  ? selinux_file_ioctl+0x180/0x270
[   73.080441][ T6792]  ? selinux_file_ioctl+0xb4/0x270
[   73.080452][ T6792]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   73.080466][ T6792]  __x64_sys_ioctl+0x18b/0x210
[   73.080481][ T6792]  do_syscall_64+0xcd/0x4c0
[   73.080495][ T6792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.080506][ T6792] RIP: 0033:0x7f6eed78e9a9
[   73.080515][ T6792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.080525][ T6792] RSP: 002b:00007f6eee53d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   73.080535][ T6792] RAX: ffffffffffffffda RBX: 00007f6eed9b6080 RCX: 00007f6eed78e9a9
[   73.080542][ T6792] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   73.080548][ T6792] RBP: 00007f6eee53d090 R08: 0000000000000000 R09: 0000000000000000
[   73.080564][ T6792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.080570][ T6792] R13: 0000000000000001 R14: 00007f6eed9b6080 R15: 00007ffc5d4eee68
[   73.080583][ T6792]  </TASK>
[   73.138536][ T6797] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   73.192021][ T6797] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[   73.197412][ T6797] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   73.334525][ T6808] create_pit_timer: 4 callbacks suppressed
[   73.334534][ T6808] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   73.342267][ T6808] FAULT_INJECTION: forcing a failure.
[   73.342267][ T6808] name failslab, interval 1, probability 0, space 0, times 0
[   73.347582][ T6808] CPU: 2 UID: 0 PID: 6808 Comm: syz.2.264 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   73.347610][ T6808] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.347620][ T6808] Call Trace:
[   73.347627][ T6808]  <TASK>
[   73.347634][ T6808]  dump_stack_lvl+0x16c/0x1f0
[   73.347658][ T6808]  should_fail_ex+0x512/0x640
[   73.347673][ T6808]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   73.347703][ T6808]  should_failslab+0xc2/0x120
[   73.347730][ T6808]  __kmalloc_cache_noprof+0x6a/0x3e0
[   73.347753][ T6808]  ? __pfx___might_resched+0x10/0x10
[   73.347779][ T6808]  ? vhost_task_create+0xe5/0x2e0
[   73.347797][ T6808]  ? rcu_is_watching+0x12/0xc0
[   73.347819][ T6808]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   73.347848][ T6808]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   73.347870][ T6808]  vhost_task_create+0xe5/0x2e0
[   73.347890][ T6808]  ? __pfx_vhost_task_create+0x10/0x10
[   73.347918][ T6808]  ? __pfx_vhost_task_fn+0x10/0x10
[   73.347950][ T6808]  kvm_mmu_post_init_vm+0x1b7/0x370
[   73.347975][ T6808]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   73.348000][ T6808]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   73.348031][ T6808]  kvm_vcpu_ioctl+0x5eb/0x1690
[   73.348053][ T6808]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   73.348077][ T6808]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   73.348100][ T6808]  ? do_vfs_ioctl+0x128/0x14f0
[   73.348125][ T6808]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   73.348150][ T6808]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   73.348181][ T6808]  ? hook_file_ioctl_common+0x145/0x410
[   73.348210][ T6808]  ? selinux_file_ioctl+0x180/0x270
[   73.348229][ T6808]  ? selinux_file_ioctl+0xb4/0x270
[   73.348247][ T6808]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   73.348286][ T6808]  __x64_sys_ioctl+0x18b/0x210
[   73.348313][ T6808]  do_syscall_64+0xcd/0x4c0
[   73.348338][ T6808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.348357][ T6808] RIP: 0033:0x7f647db8e9a9
[   73.348373][ T6808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.348390][ T6808] RSP: 002b:00007f647ea7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   73.348408][ T6808] RAX: ffffffffffffffda RBX: 00007f647ddb5fa0 RCX: 00007f647db8e9a9
[   73.348420][ T6808] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   73.348431][ T6808] RBP: 00007f647ea7a090 R08: 0000000000000000 R09: 0000000000000000
[   73.348443][ T6808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.348452][ T6808] R13: 0000000000000000 R14: 00007f647ddb5fa0 R15: 00007ffe50f84f08
[   73.348477][ T6808]  </TASK>
[   73.554512][ T6814] netlink: 12 bytes leftover after parsing attributes in process `syz.2.266'.
[   73.716677][ T6821] netfs: Couldn't get user pages (rc=-14)
[   73.876019][ T6829] netlink: 'syz.1.273': attribute type 9 has an invalid length.
[   73.955423][ T6834] evm: overlay not supported
[   74.001684][ T6840] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   74.005943][ T6840] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[   74.010110][ T6840] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   74.161453][ T6854] =======================================================
[   74.161453][ T6854] WARNING: The mand mount option has been deprecated and
[   74.161453][ T6854]          and is ignored by this kernel. Remove the mand
[   74.161453][ T6854]          option from the mount to silence this warning.
[   74.161453][ T6854] =======================================================
[   74.181342][ T1021] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   74.202658][ T6854] 9pnet: Could not find request transport: viQo
[   74.247795][ T6859] loop1: detected capacity change from 0 to 7
[   74.252061][ T6859] Dev loop1: unable to read RDB block 7
[   74.253878][ T6859]  loop1: unable to read partition table
[   74.256078][ T6859] loop1: partition table beyond EOD, truncated
[   74.258668][ T6859] loop_reread_partitions: partition scan of loop1 (þ被xü—ŸÑà–e) failed (rc=-5)
[   74.331331][ T1021] usb 7-1: Using ep0 maxpacket: 8
[   74.335045][ T1021] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   74.338438][ T1021] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   74.342486][ T1021] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.346162][ T1021] usb 7-1: config 0 descriptor??
[   74.531544][  T835] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   74.554641][ T1021] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   74.669430][ T6875] netlink: 12 bytes leftover after parsing attributes in process `syz.3.289'.
[   74.680506][ T6875] bridge1: port 1(veth0_to_bond) entered blocking state
[   74.683323][ T6875] bridge1: port 1(veth0_to_bond) entered disabled state
[   74.685661][ T6875] veth0_to_bond: entered allmulticast mode
[   74.688592][ T6875] veth0_to_bond: entered promiscuous mode
[   74.692160][  T835] usb 6-1: Using ep0 maxpacket: 8
[   74.695958][  T835] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[   74.698462][  T835] usb 6-1: config 179 has no interface number 0
[   74.700368][  T835] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[   74.704453][  T835] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[   74.707959][  T835] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   74.711591][  T835] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   74.716791][  T835] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[   74.720265][  T835] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.727753][ T6862] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   74.824310][ T6880] befs: (nbd0): No write support. Marking filesystem read-only
[   74.828488][ T6880] syz.0.291: attempt to access beyond end of device
[   74.828488][ T6880] nbd0: rw=0, sector=0, nr_sectors = 2 limit=0
[   74.834296][ T6880] befs: (nbd0): unable to read superblock
[   74.856818][   T59] usb 7-1: USB disconnect, device number 5
[   74.956526][  T835] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:179.65/input/input5
[   75.011895][ T6897] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   75.079923][ T6901] overlayfs: missing 'lowerdir'
[   75.116569][ T6899] FAULT_INJECTION: forcing a failure.
[   75.116569][ T6899] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.122321][ T6899] CPU: 2 UID: 0 PID: 6899 Comm: syz.2.297 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   75.122344][ T6899] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.122355][ T6899] Call Trace:
[   75.122361][ T6899]  <TASK>
[   75.122368][ T6899]  dump_stack_lvl+0x16c/0x1f0
[   75.122393][ T6899]  should_fail_ex+0x512/0x640
[   75.122419][ T6899]  _copy_from_user+0x2e/0xd0
[   75.122443][ T6899]  copy_msghdr_from_user+0x98/0x160
[   75.122466][ T6899]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   75.122493][ T6899]  ? kfree+0x24f/0x4d0
[   75.122517][ T6899]  ? __lock_acquire+0x622/0x1c90
[   75.122540][ T6899]  ___sys_recvmsg+0xdb/0x1a0
[   75.122562][ T6899]  ? __pfx____sys_recvmsg+0x10/0x10
[   75.122598][ T6899]  ? __pfx___might_resched+0x10/0x10
[   75.122629][ T6899]  do_recvmmsg+0x2fe/0x750
[   75.122655][ T6899]  ? __pfx_do_recvmmsg+0x10/0x10
[   75.122682][ T6899]  ? __mutex_unlock_slowpath+0x161/0x6a0
[   75.122714][ T6899]  ? __fget_files+0x20e/0x3c0
[   75.122737][ T6899]  __x64_sys_recvmmsg+0x22a/0x280
[   75.122762][ T6899]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[   75.122791][ T6899]  do_syscall_64+0xcd/0x4c0
[   75.122816][ T6899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.122833][ T6899] RIP: 0033:0x7f647db8e9a9
[   75.122847][ T6899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.122864][ T6899] RSP: 002b:00007f647ea7a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   75.122881][ T6899] RAX: ffffffffffffffda RBX: 00007f647ddb5fa0 RCX: 00007f647db8e9a9
[   75.122892][ T6899] RDX: 040000000000012d RSI: 0000200000000080 RDI: 0000000000000003
[   75.122903][ T6899] RBP: 00007f647ea7a090 R08: 0000000000000000 R09: 0000000000000000
[   75.122913][ T6899] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[   75.122923][ T6899] R13: 0000000000000000 R14: 00007f647ddb5fa0 R15: 00007ffe50f84f08
[   75.122946][ T6899]  </TASK>
[   75.214947][  T835] usb 6-1: USB disconnect, device number 4
[   75.216682][    C0] xpad 6-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[   75.216704][    C0] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   75.340863][ T6910] netlink: 8 bytes leftover after parsing attributes in process `syz.3.301'.
[   75.344311][ T6910] netlink: 'syz.3.301': attribute type 5 has an invalid length.
[   75.352228][ T6910] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   75.355207][ T6910] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   75.358070][ T6910] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   75.360893][ T6910] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   75.875338][ T6927] overlayfs: missing 'lowerdir'
[   75.886900][ T6929] FAULT_INJECTION: forcing a failure.
[   75.886900][ T6929] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.891463][ T6929] CPU: 3 UID: 0 PID: 6929 Comm: syz.0.309 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   75.891499][ T6929] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.891511][ T6929] Call Trace:
[   75.891517][ T6929]  <TASK>
[   75.891522][ T6929]  dump_stack_lvl+0x16c/0x1f0
[   75.891539][ T6929]  should_fail_ex+0x512/0x640
[   75.891554][ T6929]  _copy_from_iter+0x29f/0x16f0
[   75.891570][ T6929]  ? __alloc_skb+0x200/0x380
[   75.891583][ T6929]  ? __pfx__copy_from_iter+0x10/0x10
[   75.891597][ T6929]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   75.891617][ T6929]  netlink_sendmsg+0x829/0xdd0
[   75.891634][ T6929]  ? __pfx_netlink_sendmsg+0x10/0x10
[   75.891654][ T6929]  ____sys_sendmsg+0xa95/0xc70
[   75.891671][ T6929]  ? copy_msghdr_from_user+0x10a/0x160
[   75.891684][ T6929]  ? __pfx_____sys_sendmsg+0x10/0x10
[   75.891706][ T6929]  ___sys_sendmsg+0x134/0x1d0
[   75.891719][ T6929]  ? __pfx____sys_sendmsg+0x10/0x10
[   75.891731][ T6929]  ? __lock_acquire+0x622/0x1c90
[   75.891757][ T6929]  __sys_sendmsg+0x16d/0x220
[   75.891770][ T6929]  ? __pfx___sys_sendmsg+0x10/0x10
[   75.891788][ T6929]  ? fput+0x70/0xf0
[   75.891803][ T6929]  do_syscall_64+0xcd/0x4c0
[   75.891817][ T6929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.891827][ T6929] RIP: 0033:0x7f6952b8e9a9
[   75.891836][ T6929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.891847][ T6929] RSP: 002b:00007f6953a42038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.891857][ T6929] RAX: ffffffffffffffda RBX: 00007f6952db5fa0 RCX: 00007f6952b8e9a9
[   75.891863][ T6929] RDX: 0000000020000000 RSI: 0000200000000000 RDI: 0000000000000003
[   75.891869][ T6929] RBP: 00007f6953a42090 R08: 0000000000000000 R09: 0000000000000000
[   75.891875][ T6929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.891881][ T6929] R13: 0000000000000000 R14: 00007f6952db5fa0 R15: 00007fff0cd9cc38
[   75.891893][ T6929]  </TASK>
[   76.114263][ T6941] FAULT_INJECTION: forcing a failure.
[   76.114263][ T6941] name failslab, interval 1, probability 0, space 0, times 0
[   76.120758][ T6941] CPU: 1 UID: 0 PID: 6941 Comm: syz.1.313 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   76.120783][ T6941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.120793][ T6941] Call Trace:
[   76.120798][ T6941]  <TASK>
[   76.120806][ T6941]  dump_stack_lvl+0x16c/0x1f0
[   76.120833][ T6941]  should_fail_ex+0x512/0x640
[   76.120853][ T6941]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   76.120885][ T6941]  should_failslab+0xc2/0x120
[   76.120905][ T6941]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   76.120932][ T6941]  ? copy_process+0x4b6/0x7650
[   76.120960][ T6941]  copy_process+0x4b6/0x7650
[   76.120995][ T6941]  ? __pfx_copy_process+0x10/0x10
[   76.121024][ T6941]  ? lockdep_init_map_type+0x5c/0x280
[   76.121046][ T6941]  ? lockdep_init_map_type+0x5c/0x280
[   76.121062][ T6941]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   76.121084][ T6941]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   76.121105][ T6941]  vhost_task_create+0x1d2/0x2e0
[   76.121125][ T6941]  ? __pfx_vhost_task_create+0x10/0x10
[   76.121150][ T6941]  ? __pfx_vhost_task_fn+0x10/0x10
[   76.121183][ T6941]  kvm_mmu_post_init_vm+0x1b7/0x370
[   76.121206][ T6941]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   76.121225][ T6941]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   76.121270][ T6941]  kvm_vcpu_ioctl+0x5eb/0x1690
[   76.121298][ T6941]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   76.121321][ T6941]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   76.121346][ T6941]  ? do_vfs_ioctl+0x128/0x14f0
[   76.121369][ T6941]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   76.121391][ T6941]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   76.121418][ T6941]  ? hook_file_ioctl_common+0x145/0x410
[   76.121447][ T6941]  ? selinux_file_ioctl+0x180/0x270
[   76.121461][ T6941]  ? selinux_file_ioctl+0xb4/0x270
[   76.121476][ T6941]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   76.121496][ T6941]  __x64_sys_ioctl+0x18b/0x210
[   76.121520][ T6941]  do_syscall_64+0xcd/0x4c0
[   76.121545][ T6941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.121561][ T6941] RIP: 0033:0x7f6eed78e9a9
[   76.121575][ T6941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.121591][ T6941] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.121608][ T6941] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   76.121617][ T6941] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   76.121627][ T6941] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   76.121636][ T6941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.121646][ T6941] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   76.121667][ T6941]  </TASK>
[   76.201125][ T6946] syz.2.315 (6946): /proc/6943/oom_adj is deprecated, please use /proc/6943/oom_score_adj instead.
[   76.366043][ T6953] FAULT_INJECTION: forcing a failure.
[   76.366043][ T6953] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.370841][ T6953] CPU: 0 UID: 0 PID: 6953 Comm: syz.3.318 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   76.370862][ T6953] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.370873][ T6953] Call Trace:
[   76.370878][ T6953]  <TASK>
[   76.370883][ T6953]  dump_stack_lvl+0x16c/0x1f0
[   76.370908][ T6953]  should_fail_ex+0x512/0x640
[   76.370933][ T6953]  _copy_to_user+0x32/0xd0
[   76.370964][ T6953]  kvm_get_dirty_log_protect+0x4c0/0x770
[   76.370998][ T6953]  kvm_vm_ioctl+0x152f/0x3dd0
[   76.371026][ T6953]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   76.371058][ T6953]  ? kasan_quarantine_put+0x10a/0x240
[   76.371084][ T6953]  ? lockdep_hardirqs_on+0x7c/0x110
[   76.371108][ T6953]  ? find_held_lock+0x2b/0x80
[   76.371132][ T6953]  ? tomoyo_path_number_perm+0x295/0x580
[   76.371163][ T6953]  ? tomoyo_path_number_perm+0x18d/0x580
[   76.371191][ T6953]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   76.371217][ T6953]  ? find_held_lock+0x2b/0x80
[   76.371258][ T6953]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   76.371285][ T6953]  ? do_vfs_ioctl+0x128/0x14f0
[   76.371309][ T6953]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   76.371333][ T6953]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   76.371360][ T6953]  ? hook_file_ioctl_common+0x145/0x410
[   76.371390][ T6953]  ? selinux_file_ioctl+0x180/0x270
[   76.371404][ T6953]  ? selinux_file_ioctl+0xb4/0x270
[   76.371419][ T6953]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   76.371437][ T6953]  __x64_sys_ioctl+0x18b/0x210
[   76.371461][ T6953]  do_syscall_64+0xcd/0x4c0
[   76.371506][ T6953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.371524][ T6953] RIP: 0033:0x7fa7a798e9a9
[   76.371539][ T6953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.371556][ T6953] RSP: 002b:00007fa7a88d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.371571][ T6953] RAX: ffffffffffffffda RBX: 00007fa7a7bb5fa0 RCX: 00007fa7a798e9a9
[   76.371582][ T6953] RDX: 0000200000000240 RSI: 000000004010ae42 RDI: 0000000000000004
[   76.371592][ T6953] RBP: 00007fa7a88d2090 R08: 0000000000000000 R09: 0000000000000000
[   76.371601][ T6953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.371610][ T6953] R13: 0000000000000000 R14: 00007fa7a7bb5fa0 R15: 00007ffc894f5d68
[   76.371632][ T6953]  </TASK>
[   76.494646][ T6963] Invalid logical block size (18)
[   76.522058][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   76.556536][ T6965] netlink: 8 bytes leftover after parsing attributes in process `syz.0.323'.
[   76.566838][ T6967] FAULT_INJECTION: forcing a failure.
[   76.566838][ T6967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.571194][ T6967] CPU: 2 UID: 0 PID: 6967 Comm: syz.2.324 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   76.571210][ T6967] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.571216][ T6967] Call Trace:
[   76.571221][ T6967]  <TASK>
[   76.571226][ T6967]  dump_stack_lvl+0x16c/0x1f0
[   76.571243][ T6967]  should_fail_ex+0x512/0x640
[   76.571271][ T6967]  _copy_to_user+0x32/0xd0
[   76.571286][ T6967]  simple_read_from_buffer+0xcb/0x170
[   76.571305][ T6967]  proc_fail_nth_read+0x197/0x270
[   76.571317][ T6967]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.571328][ T6967]  ? rw_verify_area+0xcf/0x680
[   76.571343][ T6967]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.571353][ T6967]  vfs_read+0x1e1/0xc60
[   76.571372][ T6967]  ? __pfx___mutex_lock+0x10/0x10
[   76.571385][ T6967]  ? __pfx_vfs_read+0x10/0x10
[   76.571405][ T6967]  ? __fget_files+0x20e/0x3c0
[   76.571419][ T6967]  ksys_read+0x12a/0x250
[   76.571428][ T6967]  ? __pfx_ksys_read+0x10/0x10
[   76.571437][ T6967]  ? fput+0x70/0xf0
[   76.571452][ T6967]  do_syscall_64+0xcd/0x4c0
[   76.571466][ T6967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.571498][ T6967] RIP: 0033:0x7f647db8d3bc
[   76.571512][ T6967] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   76.571523][ T6967] RSP: 002b:00007f647ea7a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   76.571534][ T6967] RAX: ffffffffffffffda RBX: 00007f647ddb5fa0 RCX: 00007f647db8d3bc
[   76.571541][ T6967] RDX: 000000000000000f RSI: 00007f647ea7a0a0 RDI: 0000000000000005
[   76.571547][ T6967] RBP: 00007f647ea7a090 R08: 0000000000000000 R09: 0000000000000000
[   76.571553][ T6967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.571558][ T6967] R13: 0000000000000000 R14: 00007f647ddb5fa0 R15: 00007ffe50f84f08
[   76.571572][ T6967]  </TASK>
[   77.033618][ T6990] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2856151591 (22849212728 ns) > initial count (5743301600 ns). Using initial count to start timer.
[   77.165107][ T6994] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2856151591 (22849212728 ns) > initial count (5743301600 ns). Using initial count to start timer.
[   77.173868][ T6994] kvm: Disabled LAPIC found during irq injection
[   77.215325][ T6996] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2856151591 (22849212728 ns) > initial count (5743301600 ns). Using initial count to start timer.
[   77.222704][ T6996] FAULT_INJECTION: forcing a failure.
[   77.222704][ T6996] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.228078][ T6996] CPU: 0 UID: 0 PID: 6996 Comm: syz.2.334 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   77.228101][ T6996] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.228111][ T6996] Call Trace:
[   77.228117][ T6996]  <TASK>
[   77.228124][ T6996]  dump_stack_lvl+0x16c/0x1f0
[   77.228148][ T6996]  should_fail_ex+0x512/0x640
[   77.228172][ T6996]  _copy_from_user+0x2e/0xd0
[   77.228194][ T6996]  memdup_user+0x6b/0xe0
[   77.228211][ T6996]  kvm_arch_vm_ioctl+0x11ca/0x1cf0
[   77.228234][ T6996]  ? ima_match_policy+0x7ed/0x22d0
[   77.228254][ T6996]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[   77.228277][ T6996]  ? __lock_acquire+0x622/0x1c90
[   77.228298][ T6996]  ? __lock_acquire+0x622/0x1c90
[   77.228319][ T6996]  ? __lock_acquire+0x622/0x1c90
[   77.228340][ T6996]  ? __lock_acquire+0x622/0x1c90
[   77.228374][ T6996]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   77.228400][ T6996]  ? is_bpf_text_address+0x94/0x1a0
[   77.228421][ T6996]  ? kernel_text_address+0x8d/0x100
[   77.228441][ T6996]  ? __kernel_text_address+0xd/0x40
[   77.228459][ T6996]  ? unwind_get_return_address+0x59/0xa0
[   77.228477][ T6996]  ? arch_stack_walk+0xa6/0x100
[   77.228505][ T6996]  ? stack_trace_save+0x8e/0xc0
[   77.228528][ T6996]  ? __pfx_stack_trace_save+0x10/0x10
[   77.228550][ T6996]  ? stack_depot_save_flags+0x28/0xa40
[   77.228570][ T6996]  ? __lock_acquire+0xb8a/0x1c90
[   77.228588][ T6996]  ? kasan_save_stack+0x42/0x60
[   77.228601][ T6996]  ? kasan_save_stack+0x33/0x60
[   77.228613][ T6996]  ? kasan_save_track+0x14/0x30
[   77.228625][ T6996]  ? kasan_save_free_info+0x3b/0x60
[   77.228644][ T6996]  ? __kasan_slab_free+0x51/0x70
[   77.228657][ T6996]  ? kfree+0x2b4/0x4d0
[   77.228676][ T6996]  ? tomoyo_path_number_perm+0x470/0x580
[   77.228698][ T6996]  ? security_file_ioctl+0x9b/0x240
[   77.228713][ T6996]  ? __x64_sys_ioctl+0xb7/0x210
[   77.228733][ T6996]  ? do_syscall_64+0xcd/0x4c0
[   77.228762][ T6996]  kvm_vm_ioctl+0x19d3/0x3dd0
[   77.228788][ T6996]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   77.228816][ T6996]  ? kasan_quarantine_put+0x10a/0x240
[   77.228839][ T6996]  ? lockdep_hardirqs_on+0x7c/0x110
[   77.228863][ T6996]  ? find_held_lock+0x2b/0x80
[   77.228886][ T6996]  ? tomoyo_path_number_perm+0x295/0x580
[   77.228913][ T6996]  ? tomoyo_path_number_perm+0x18d/0x580
[   77.228939][ T6996]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   77.228965][ T6996]  ? find_held_lock+0x2b/0x80
[   77.228990][ T6996]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   77.229010][ T6996]  ? do_vfs_ioctl+0x128/0x14f0
[   77.229032][ T6996]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   77.229052][ T6996]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   77.229078][ T6996]  ? hook_file_ioctl_common+0x145/0x410
[   77.229106][ T6996]  ? selinux_file_ioctl+0x180/0x270
[   77.229121][ T6996]  ? selinux_file_ioctl+0xb4/0x270
[   77.229139][ T6996]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   77.229156][ T6996]  __x64_sys_ioctl+0x18b/0x210
[   77.229179][ T6996]  do_syscall_64+0xcd/0x4c0
[   77.229200][ T6996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.229217][ T6996] RIP: 0033:0x7f647db8e9a9
[   77.229231][ T6996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.229247][ T6996] RSP: 002b:00007f647ea7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   77.229263][ T6996] RAX: ffffffffffffffda RBX: 00007f647ddb5fa0 RCX: 00007f647db8e9a9
[   77.229273][ T6996] RDX: 0000200000000580 RSI: 000000008208ae63 RDI: 0000000000000004
[   77.229283][ T6996] RBP: 00007f647ea7a090 R08: 0000000000000000 R09: 0000000000000000
[   77.229293][ T6996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.229302][ T6996] R13: 0000000000000000 R14: 00007f647ddb5fa0 R15: 00007ffe50f84f08
[   77.229324][ T6996]  </TASK>
[   77.380357][   T40] kauditd_printk_skb: 39 callbacks suppressed
[   77.380369][   T40] audit: type=1400 audit(1753760052.457:327): avc:  denied  { setopt } for  pid=6997 comm="syz.3.335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   77.624540][   T40] audit: type=1400 audit(1753760052.707:328): avc:  denied  { open } for  pid=7007 comm="syz.2.339" path="/dev/ptyq9" dev="devtmpfs" ino=136 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[   77.717991][ T7016] FAULT_INJECTION: forcing a failure.
[   77.717991][ T7016] name failslab, interval 1, probability 0, space 0, times 0
[   77.722506][ T7016] CPU: 0 UID: 0 PID: 7016 Comm: syz.3.341 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   77.722521][ T7016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.722527][ T7016] Call Trace:
[   77.722531][ T7016]  <TASK>
[   77.722535][ T7016]  dump_stack_lvl+0x16c/0x1f0
[   77.722552][ T7016]  should_fail_ex+0x512/0x640
[   77.722565][ T7016]  ? fs_reclaim_acquire+0xae/0x150
[   77.722580][ T7016]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   77.722592][ T7016]  should_failslab+0xc2/0x120
[   77.722604][ T7016]  __kmalloc_noprof+0xd2/0x510
[   77.722616][ T7016]  tomoyo_realpath_from_path+0xc2/0x6e0
[   77.722629][ T7016]  ? tomoyo_profile+0x47/0x60
[   77.722649][ T7016]  tomoyo_path_number_perm+0x245/0x580
[   77.722665][ T7016]  ? tomoyo_path_number_perm+0x237/0x580
[   77.722682][ T7016]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   77.722699][ T7016]  ? find_held_lock+0x2b/0x80
[   77.722725][ T7016]  ? find_held_lock+0x2b/0x80
[   77.722738][ T7016]  ? hook_file_ioctl_common+0x145/0x410
[   77.722754][ T7016]  ? __fget_files+0x20e/0x3c0
[   77.722767][ T7016]  security_file_ioctl+0x9b/0x240
[   77.722780][ T7016]  __x64_sys_ioctl+0xb7/0x210
[   77.722795][ T7016]  do_syscall_64+0xcd/0x4c0
[   77.722816][ T7016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.722837][ T7016] RIP: 0033:0x7fa7a798e9a9
[   77.722850][ T7016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.722869][ T7016] RSP: 002b:00007fa7a88d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   77.722889][ T7016] RAX: ffffffffffffffda RBX: 00007fa7a7bb5fa0 RCX: 00007fa7a798e9a9
[   77.722900][ T7016] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   77.722910][ T7016] RBP: 00007fa7a88d2090 R08: 0000000000000000 R09: 0000000000000000
[   77.722919][ T7016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.722928][ T7016] R13: 0000000000000000 R14: 00007fa7a7bb5fa0 R15: 00007ffc894f5d68
[   77.722951][ T7016]  </TASK>
[   77.722957][ T7016] ERROR: Out of memory at tomoyo_realpath_from_path.
[   77.851880][ T7019] netlink: 32 bytes leftover after parsing attributes in process `syz.0.342'.
[   77.873801][   T40] audit: type=1400 audit(1753760052.957:329): avc:  denied  { mount } for  pid=7018 comm="syz.0.342" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   77.884048][   T40] audit: type=1400 audit(1753760052.957:330): avc:  denied  { remount } for  pid=7018 comm="syz.0.342" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   77.962140][   T40] audit: type=1400 audit(1753760053.047:331): avc:  denied  { unmount } for  pid=5947 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   77.986409][ T7024] FAULT_INJECTION: forcing a failure.
[   77.986409][ T7024] name failslab, interval 1, probability 0, space 0, times 0
[   77.991012][ T7024] CPU: 2 UID: 0 PID: 7024 Comm: syz.0.344 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   77.991027][ T7024] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.991034][ T7024] Call Trace:
[   77.991038][ T7024]  <TASK>
[   77.991043][ T7024]  dump_stack_lvl+0x16c/0x1f0
[   77.991060][ T7024]  should_fail_ex+0x512/0x640
[   77.991074][ T7024]  ? fs_reclaim_acquire+0xae/0x150
[   77.991089][ T7024]  ? tomoyo_encode2+0x100/0x3e0
[   77.991100][ T7024]  should_failslab+0xc2/0x120
[   77.991112][ T7024]  __kmalloc_noprof+0xd2/0x510
[   77.991121][ T7024]  ? d_absolute_path+0x136/0x1a0
[   77.991137][ T7024]  tomoyo_encode2+0x100/0x3e0
[   77.991150][ T7024]  tomoyo_encode+0x29/0x50
[   77.991160][ T7024]  tomoyo_realpath_from_path+0x18f/0x6e0
[   77.991176][ T7024]  tomoyo_path_perm+0x274/0x460
[   77.991190][ T7024]  ? tomoyo_path_perm+0x260/0x460
[   77.991206][ T7024]  ? __pfx_tomoyo_path_perm+0x10/0x10
[   77.991221][ T7024]  ? try_to_unlazy+0x2a9/0x660
[   77.991266][ T7024]  ? __d_lookup+0x25c/0x4a0
[   77.991287][ T7024]  tomoyo_path_rmdir+0x91/0xe0
[   77.991300][ T7024]  ? __pfx_tomoyo_path_rmdir+0x10/0x10
[   77.991313][ T7024]  ? lookup_dcache+0x66/0x170
[   77.991328][ T7024]  security_path_rmdir+0x145/0x2b0
[   77.991345][ T7024]  do_rmdir+0x27b/0x3c0
[   77.991357][ T7024]  ? __pfx_do_rmdir+0x10/0x10
[   77.991371][ T7024]  ? getname_flags.part.0+0x1c5/0x550
[   77.991387][ T7024]  __x64_sys_rmdir+0xc5/0x110
[   77.991397][ T7024]  do_syscall_64+0xcd/0x4c0
[   77.991411][ T7024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.991422][ T7024] RIP: 0033:0x7f6952b8e9a9
[   77.991431][ T7024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.991441][ T7024] RSP: 002b:00007f6953a42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[   77.991451][ T7024] RAX: ffffffffffffffda RBX: 00007f6952db5fa0 RCX: 00007f6952b8e9a9
[   77.991458][ T7024] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000380
[   77.991488][ T7024] RBP: 00007f6953a42090 R08: 0000000000000000 R09: 0000000000000000
[   77.991497][ T7024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.991503][ T7024] R13: 0000000000000000 R14: 00007f6952db5fa0 R15: 00007fff0cd9cc38
[   77.991517][ T7024]  </TASK>
[   78.068984][ T7024] ERROR: Out of memory at tomoyo_realpath_from_path.
[   78.122060][ T7028] netlink: 'syz.1.346': attribute type 11 has an invalid length.
[   78.124514][ T7028] netlink: 149476 bytes leftover after parsing attributes in process `syz.1.346'.
[   78.140373][ T7027] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   78.178105][ T7036] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[   78.364187][ T7044] FAULT_INJECTION: forcing a failure.
[   78.364187][ T7044] name failslab, interval 1, probability 0, space 0, times 0
[   78.368835][ T7044] CPU: 1 UID: 0 PID: 7044 Comm: syz.0.352 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   78.368856][ T7044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.368864][ T7044] Call Trace:
[   78.368870][ T7044]  <TASK>
[   78.368876][ T7044]  dump_stack_lvl+0x16c/0x1f0
[   78.368900][ T7044]  should_fail_ex+0x512/0x640
[   78.368918][ T7044]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   78.368949][ T7044]  should_failslab+0xc2/0x120
[   78.368965][ T7044]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   78.368988][ T7044]  ? copy_process+0x4b6/0x7650
[   78.369012][ T7044]  copy_process+0x4b6/0x7650
[   78.369041][ T7044]  ? __pfx_copy_process+0x10/0x10
[   78.369064][ T7044]  ? lockdep_init_map_type+0x5c/0x280
[   78.369081][ T7044]  ? lockdep_init_map_type+0x5c/0x280
[   78.369096][ T7044]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   78.369120][ T7044]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   78.369137][ T7044]  vhost_task_create+0x1d2/0x2e0
[   78.369152][ T7044]  ? __pfx_vhost_task_create+0x10/0x10
[   78.369174][ T7044]  ? __pfx_vhost_task_fn+0x10/0x10
[   78.369199][ T7044]  kvm_mmu_post_init_vm+0x1b7/0x370
[   78.369221][ T7044]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   78.369240][ T7044]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   78.369264][ T7044]  kvm_vcpu_ioctl+0x5eb/0x1690
[   78.369285][ T7044]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   78.369304][ T7044]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   78.369322][ T7044]  ? do_vfs_ioctl+0x128/0x14f0
[   78.369343][ T7044]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   78.369362][ T7044]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   78.369385][ T7044]  ? hook_file_ioctl_common+0x145/0x410
[   78.369409][ T7044]  ? selinux_file_ioctl+0x180/0x270
[   78.369423][ T7044]  ? selinux_file_ioctl+0xb4/0x270
[   78.369438][ T7044]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   78.369457][ T7044]  __x64_sys_ioctl+0x18b/0x210
[   78.369478][ T7044]  do_syscall_64+0xcd/0x4c0
[   78.369499][ T7044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.369512][ T7044] RIP: 0033:0x7f6952b8e9a9
[   78.369524][ T7044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.369538][ T7044] RSP: 002b:00007f6953a42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   78.369553][ T7044] RAX: ffffffffffffffda RBX: 00007f6952db5fa0 RCX: 00007f6952b8e9a9
[   78.369562][ T7044] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   78.369570][ T7044] RBP: 00007f6953a42090 R08: 0000000000000000 R09: 0000000000000000
[   78.369579][ T7044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.369587][ T7044] R13: 0000000000000000 R14: 00007f6952db5fa0 R15: 00007fff0cd9cc38
[   78.369606][ T7044]  </TASK>
[   78.584703][ T7053] QAT: Device 2 not found
[   78.586423][ T7053] netlink: 12 bytes leftover after parsing attributes in process `syz.0.355'.
[   79.039187][   T40] audit: type=1400 audit(1753760054.117:332): avc:  denied  { mount } for  pid=7068 comm="syz.1.361" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   79.046125][   T40] audit: type=1400 audit(1753760054.117:333): avc:  denied  { mounton } for  pid=7068 comm="syz.1.361" path="/94/file0" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   79.074839][   T40] audit: type=1400 audit(1753760054.157:334): avc:  denied  { unmount } for  pid=5958 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   79.112489][ T7074] warning: `syz.3.362' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   79.138544][ T7074] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1881944114 (3763888228 ns) > initial count (1489689298 ns). Using initial count to start timer.
[   79.821402][   T29] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   80.001411][   T29] usb 6-1: Using ep0 maxpacket: 16
[   80.007324][   T29] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   80.011916][   T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   80.016412][   T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7
[   80.020964][   T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   80.024955][   T29] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   80.031871][   T29] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[   80.035393][   T29] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[   80.037903][   T29] usb 6-1: Manufacturer: syz
[   80.046036][   T29] usb 6-1: config 0 descriptor??
[   80.154037][   T40] audit: type=1400 audit(1753760055.237:335): avc:  denied  { shutdown } for  pid=7103 comm="syz.3.373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   80.301679][   T29] rc_core: IR keymap rc-hauppauge not found
[   80.303601][   T29] Registered IR keymap rc-empty
[   80.305815][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.309826][ T7115] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2856151591 (22849212728 ns) > initial count (5743301600 ns). Using initial count to start timer.
[   80.317711][ T7115] kvm: Disabled LAPIC found during irq injection
[   80.325768][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.341447][ T7114] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2856151591 (22849212728 ns) > initial count (5743301600 ns). Using initial count to start timer.
[   80.342300][   T29] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[   80.347212][ T7114] kvm: Disabled LAPIC found during irq injection
[   80.352508][   T29] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input6
[   80.355511][ T7114] FAULT_INJECTION: forcing a failure.
[   80.355511][ T7114] name failslab, interval 1, probability 0, space 0, times 0
[   80.362168][ T7114] CPU: 2 UID: 0 PID: 7114 Comm: syz.3.377 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   80.362182][ T7114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.362188][ T7114] Call Trace:
[   80.362192][ T7114]  <TASK>
[   80.362196][ T7114]  dump_stack_lvl+0x16c/0x1f0
[   80.362212][ T7114]  should_fail_ex+0x512/0x640
[   80.362225][ T7114]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   80.362242][ T7114]  should_failslab+0xc2/0x120
[   80.362254][ T7114]  __kmalloc_cache_noprof+0x6a/0x3e0
[   80.362269][ T7114]  ? __pfx___might_resched+0x10/0x10
[   80.362284][ T7114]  ? vhost_task_create+0xe5/0x2e0
[   80.362295][ T7114]  ? rcu_is_watching+0x12/0xc0
[   80.362309][ T7114]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   80.362326][ T7114]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   80.362338][ T7114]  vhost_task_create+0xe5/0x2e0
[   80.362349][ T7114]  ? __pfx_vhost_task_create+0x10/0x10
[   80.362364][ T7114]  ? __pfx_vhost_task_fn+0x10/0x10
[   80.362382][ T7114]  kvm_mmu_post_init_vm+0x1b7/0x370
[   80.362397][ T7114]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   80.362411][ T7114]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   80.362428][ T7114]  kvm_vcpu_ioctl+0x5eb/0x1690
[   80.362443][ T7114]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   80.362457][ T7114]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   80.362470][ T7114]  ? do_vfs_ioctl+0x128/0x14f0
[   80.362485][ T7114]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   80.362499][ T7114]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   80.362516][ T7114]  ? hook_file_ioctl_common+0x145/0x410
[   80.362533][ T7114]  ? selinux_file_ioctl+0x180/0x270
[   80.362542][ T7114]  ? selinux_file_ioctl+0xb4/0x270
[   80.362554][ T7114]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   80.362568][ T7114]  __x64_sys_ioctl+0x18b/0x210
[   80.362583][ T7114]  do_syscall_64+0xcd/0x4c0
[   80.362597][ T7114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.362607][ T7114] RIP: 0033:0x7fa7a798e9a9
[   80.362616][ T7114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.362626][ T7114] RSP: 002b:00007fa7a88d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   80.362636][ T7114] RAX: ffffffffffffffda RBX: 00007fa7a7bb5fa0 RCX: 00007fa7a798e9a9
[   80.362642][ T7114] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   80.362648][ T7114] RBP: 00007fa7a88d2090 R08: 0000000000000000 R09: 0000000000000000
[   80.362654][ T7114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.362664][ T7114] R13: 0000000000000000 R14: 00007fa7a7bb5fa0 R15: 00007ffc894f5d68
[   80.362677][ T7114]  </TASK>
[   80.363387][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.457913][   T40] audit: type=1400 audit(1753760055.537:336): avc:  denied  { append } for  pid=7091 comm="syz.1.368" name="radio1" dev="devtmpfs" ino=981 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   80.471402][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.507090][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.544239][ T7119] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2856151591 (22849212728 ns) > initial count (5743301600 ns). Using initial count to start timer.
[   80.552400][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.559038][ T7119] kvm: Disabled LAPIC found during irq injection
[   80.571545][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.591456][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.612713][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.631523][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.651461][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.671500][   T29] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[   80.693900][   T29] mceusb 6-1:0.0: Registered 424242424242 with mce emulator interface version 1
[   80.696834][   T29] mceusb 6-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[   80.703759][   T29] usb 6-1: USB disconnect, device number 5
[   80.990530][ T7131] FAULT_INJECTION: forcing a failure.
[   80.990530][ T7131] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.996320][ T7131] CPU: 1 UID: 0 PID: 7131 Comm: syz.1.381 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   80.996335][ T7131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.996342][ T7131] Call Trace:
[   80.996346][ T7131]  <TASK>
[   80.996350][ T7131]  dump_stack_lvl+0x16c/0x1f0
[   80.996381][ T7131]  should_fail_ex+0x512/0x640
[   80.996396][ T7131]  _copy_to_user+0x32/0xd0
[   80.996411][ T7131]  simple_read_from_buffer+0xcb/0x170
[   80.996429][ T7131]  proc_fail_nth_read+0x197/0x270
[   80.996441][ T7131]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   80.996453][ T7131]  ? rw_verify_area+0xcf/0x680
[   80.996467][ T7131]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   80.996477][ T7131]  vfs_read+0x1e1/0xc60
[   80.996495][ T7131]  ? __pfx___mutex_lock+0x10/0x10
[   80.996509][ T7131]  ? __pfx_vfs_read+0x10/0x10
[   80.996528][ T7131]  ? __fget_files+0x20e/0x3c0
[   80.996542][ T7131]  ksys_read+0x12a/0x250
[   80.996551][ T7131]  ? __pfx_ksys_read+0x10/0x10
[   80.996564][ T7131]  do_syscall_64+0xcd/0x4c0
[   80.996578][ T7131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.996589][ T7131] RIP: 0033:0x7f6eed78d3bc
[   80.996598][ T7131] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   80.996609][ T7131] RSP: 002b:00007f6eee55f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   80.996619][ T7131] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78d3bc
[   80.996625][ T7131] RDX: 000000000000000f RSI: 00007f6eee55f0a0 RDI: 0000000000000004
[   80.996631][ T7131] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   80.996637][ T7131] R10: 0000000000000066 R11: 0000000000000246 R12: 0000000000000001
[   80.996643][ T7131] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   80.996661][ T7131]  </TASK>
[   81.475068][ T7147] 9pnet_fd: Insufficient options for proto=fd
[   81.484485][   T10] cfg80211: failed to load regulatory.db
[   81.538604][ T7152] ip6t_REJECT: TCP_RESET illegal for non-tcp
[   81.548262][ T7152] netlink: 120 bytes leftover after parsing attributes in process `syz.2.389'.
[   81.631142][ T7158] FAULT_INJECTION: forcing a failure.
[   81.631142][ T7158] name failslab, interval 1, probability 0, space 0, times 0
[   81.636492][ T7158] CPU: 0 UID: 0 PID: 7158 Comm: syz.0.391 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   81.636515][ T7158] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.636525][ T7158] Call Trace:
[   81.636530][ T7158]  <TASK>
[   81.636537][ T7158]  dump_stack_lvl+0x16c/0x1f0
[   81.636563][ T7158]  should_fail_ex+0x512/0x640
[   81.636582][ T7158]  ? fs_reclaim_acquire+0xae/0x150
[   81.636612][ T7158]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   81.636630][ T7158]  should_failslab+0xc2/0x120
[   81.636648][ T7158]  __kmalloc_noprof+0xd2/0x510
[   81.636669][ T7158]  tomoyo_realpath_from_path+0xc2/0x6e0
[   81.636689][ T7158]  ? tomoyo_profile+0x47/0x60
[   81.636712][ T7158]  tomoyo_path_number_perm+0x245/0x580
[   81.636736][ T7158]  ? tomoyo_path_number_perm+0x237/0x580
[   81.636763][ T7158]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   81.636790][ T7158]  ? find_held_lock+0x2b/0x80
[   81.636833][ T7158]  ? find_held_lock+0x2b/0x80
[   81.636853][ T7158]  ? hook_file_ioctl_common+0x145/0x410
[   81.636879][ T7158]  ? __fget_files+0x20e/0x3c0
[   81.636900][ T7158]  security_file_ioctl+0x9b/0x240
[   81.636921][ T7158]  __x64_sys_ioctl+0xb7/0x210
[   81.636947][ T7158]  do_syscall_64+0xcd/0x4c0
[   81.636971][ T7158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.636989][ T7158] RIP: 0033:0x7f6952b8e9a9
[   81.637003][ T7158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.637019][ T7158] RSP: 002b:00007f6953a42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.637036][ T7158] RAX: ffffffffffffffda RBX: 00007f6952db5fa0 RCX: 00007f6952b8e9a9
[   81.637048][ T7158] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   81.637058][ T7158] RBP: 00007f6953a42090 R08: 0000000000000000 R09: 0000000000000000
[   81.637069][ T7158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.637079][ T7158] R13: 0000000000000000 R14: 00007f6952db5fa0 R15: 00007fff0cd9cc38
[   81.637103][ T7158]  </TASK>
[   81.637111][ T7158] ERROR: Out of memory at tomoyo_realpath_from_path.
[   81.679183][ T7168] kAFS: unparsable volume name
[   81.869439][ T7185] FAULT_INJECTION: forcing a failure.
[   81.869439][ T7185] name failslab, interval 1, probability 0, space 0, times 0
[   81.874343][ T7185] CPU: 3 UID: 0 PID: 7185 Comm: syz.0.400 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   81.874367][ T7185] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.874378][ T7185] Call Trace:
[   81.874384][ T7185]  <TASK>
[   81.874391][ T7185]  dump_stack_lvl+0x16c/0x1f0
[   81.874435][ T7185]  should_fail_ex+0x512/0x640
[   81.874456][ T7185]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   81.874489][ T7185]  should_failslab+0xc2/0x120
[   81.874508][ T7185]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   81.874535][ T7185]  ? copy_process+0x4b6/0x7650
[   81.874564][ T7185]  copy_process+0x4b6/0x7650
[   81.874600][ T7185]  ? __pfx_copy_process+0x10/0x10
[   81.874629][ T7185]  ? lockdep_init_map_type+0x5c/0x280
[   81.874650][ T7185]  ? lockdep_init_map_type+0x5c/0x280
[   81.874669][ T7185]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   81.874696][ T7185]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   81.874718][ T7185]  vhost_task_create+0x1d2/0x2e0
[   81.874738][ T7185]  ? __pfx_vhost_task_create+0x10/0x10
[   81.874764][ T7185]  ? __pfx_vhost_task_fn+0x10/0x10
[   81.874795][ T7185]  kvm_mmu_post_init_vm+0x1b7/0x370
[   81.874822][ T7185]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   81.874845][ T7185]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   81.874871][ T7185]  kvm_vcpu_ioctl+0x5eb/0x1690
[   81.874896][ T7185]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   81.874919][ T7185]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   81.874947][ T7185]  ? do_vfs_ioctl+0x128/0x14f0
[   81.874972][ T7185]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   81.874996][ T7185]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   81.875024][ T7185]  ? hook_file_ioctl_common+0x145/0x410
[   81.875055][ T7185]  ? selinux_file_ioctl+0x180/0x270
[   81.875071][ T7185]  ? selinux_file_ioctl+0xb4/0x270
[   81.875089][ T7185]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   81.875111][ T7185]  __x64_sys_ioctl+0x18b/0x210
[   81.875135][ T7185]  do_syscall_64+0xcd/0x4c0
[   81.875160][ T7185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.875176][ T7185] RIP: 0033:0x7f6952b8e9a9
[   81.875191][ T7185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.875207][ T7185] RSP: 002b:00007f6953a42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.875224][ T7185] RAX: ffffffffffffffda RBX: 00007f6952db5fa0 RCX: 00007f6952b8e9a9
[   81.875234][ T7185] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   81.875244][ T7185] RBP: 00007f6953a42090 R08: 0000000000000000 R09: 0000000000000000
[   81.875255][ T7185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.875265][ T7185] R13: 0000000000000000 R14: 00007f6952db5fa0 R15: 00007fff0cd9cc38
[   81.875289][ T7185]  </TASK>
[   81.986424][    C3] vkms_vblank_simulate: vblank timer overrun
[   82.110160][ T7193] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   82.113233][ T6189] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   82.120977][ T7193] FAULT_INJECTION: forcing a failure.
[   82.120977][ T7193] name failslab, interval 1, probability 0, space 0, times 0
[   82.126858][ T7193] CPU: 0 UID: 0 PID: 7193 Comm: syz.0.403 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   82.126873][ T7193] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.126880][ T7193] Call Trace:
[   82.126883][ T7193]  <TASK>
[   82.126887][ T7193]  dump_stack_lvl+0x16c/0x1f0
[   82.126904][ T7193]  should_fail_ex+0x512/0x640
[   82.126917][ T7193]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   82.126934][ T7193]  should_failslab+0xc2/0x120
[   82.126946][ T7193]  __kmalloc_cache_noprof+0x6a/0x3e0
[   82.126960][ T7193]  ? __pfx___might_resched+0x10/0x10
[   82.126978][ T7193]  ? vhost_task_create+0xe5/0x2e0
[   82.126989][ T7193]  ? rcu_is_watching+0x12/0xc0
[   82.127003][ T7193]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   82.127020][ T7193]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   82.127033][ T7193]  vhost_task_create+0xe5/0x2e0
[   82.127044][ T7193]  ? __pfx_vhost_task_create+0x10/0x10
[   82.127059][ T7193]  ? __pfx_vhost_task_fn+0x10/0x10
[   82.127076][ T7193]  kvm_mmu_post_init_vm+0x1b7/0x370
[   82.127092][ T7193]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   82.127106][ T7193]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   82.127122][ T7193]  kvm_vcpu_ioctl+0x5eb/0x1690
[   82.127137][ T7193]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   82.127151][ T7193]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   82.127165][ T7193]  ? do_vfs_ioctl+0x128/0x14f0
[   82.127179][ T7193]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   82.127193][ T7193]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   82.127215][ T7193]  ? hook_file_ioctl_common+0x145/0x410
[   82.127232][ T7193]  ? selinux_file_ioctl+0x180/0x270
[   82.127242][ T7193]  ? selinux_file_ioctl+0xb4/0x270
[   82.127253][ T7193]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   82.127267][ T7193]  __x64_sys_ioctl+0x18b/0x210
[   82.127283][ T7193]  do_syscall_64+0xcd/0x4c0
[   82.127297][ T7193]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.127307][ T7193] RIP: 0033:0x7f6952b8e9a9
[   82.127316][ T7193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.127326][ T7193] RSP: 002b:00007f6953a42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   82.127337][ T7193] RAX: ffffffffffffffda RBX: 00007f6952db5fa0 RCX: 00007f6952b8e9a9
[   82.127344][ T7193] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   82.127350][ T7193] RBP: 00007f6953a42090 R08: 0000000000000000 R09: 0000000000000000
[   82.127356][ T7193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.127361][ T7193] R13: 0000000000000000 R14: 00007f6952db5fa0 R15: 00007fff0cd9cc38
[   82.127374][ T7193]  </TASK>
[   82.146688][ T7196] option changes via remount are deprecated (pid=7195 comm=syz.3.404)
[   82.261440][ T6189] usb 7-1: Using ep0 maxpacket: 8
[   82.270242][ T6189] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   82.275339][ T6189] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   82.278419][ T6189] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   82.280521][ T7201] FAULT_INJECTION: forcing a failure.
[   82.280521][ T7201] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.283456][ T6189] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   82.287006][ T7201] CPU: 3 UID: 0 PID: 7201 Comm: syz.3.406 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   82.287030][ T7201] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.287041][ T7201] Call Trace:
[   82.287047][ T7201]  <TASK>
[   82.287054][ T7201]  dump_stack_lvl+0x16c/0x1f0
[   82.287079][ T7201]  should_fail_ex+0x512/0x640
[   82.287102][ T7201]  _copy_from_iter+0x29f/0x16f0
[   82.287126][ T7201]  ? __alloc_skb+0x200/0x380
[   82.287147][ T7201]  ? __pfx__copy_from_iter+0x10/0x10
[   82.287168][ T7201]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   82.287199][ T7201]  netlink_sendmsg+0x829/0xdd0
[   82.287225][ T7201]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.287257][ T7201]  ____sys_sendmsg+0xa95/0xc70
[   82.287282][ T7201]  ? copy_msghdr_from_user+0x10a/0x160
[   82.287302][ T7201]  ? __pfx_____sys_sendmsg+0x10/0x10
[   82.287337][ T7201]  ___sys_sendmsg+0x134/0x1d0
[   82.287357][ T7201]  ? __pfx____sys_sendmsg+0x10/0x10
[   82.287375][ T7201]  ? __lock_acquire+0x622/0x1c90
[   82.287438][ T7201]  __sys_sendmsg+0x16d/0x220
[   82.287459][ T7201]  ? __pfx___sys_sendmsg+0x10/0x10
[   82.287496][ T7201]  do_syscall_64+0xcd/0x4c0
[   82.287519][ T7201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.287535][ T7201] RIP: 0033:0x7fa7a798e9a9
[   82.287549][ T7201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.287565][ T7201] RSP: 002b:00007fa7a88d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   82.287581][ T7201] RAX: ffffffffffffffda RBX: 00007fa7a7bb5fa0 RCX: 00007fa7a798e9a9
[   82.287591][ T7201] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000004
[   82.287601][ T7201] RBP: 00007fa7a88d2090 R08: 0000000000000000 R09: 0000000000000000
[   82.287615][ T7201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.287625][ T7201] R13: 0000000000000000 R14: 00007fa7a7bb5fa0 R15: 00007ffc894f5d68
[   82.287647][ T7201]  </TASK>
[   82.362741][ T7209] loop2: detected capacity change from 0 to 7
[   82.365919][ T6189] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   82.370754][ T5955] Dev loop2: unable to read RDB block 7
[   82.371538][ T6189] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.372496][ T5955]  loop2: unable to read partition table
[   82.393383][ T5955] loop2: partition table beyond EOD, truncated
[   82.397922][ T7209] Dev loop2: unable to read RDB block 7
[   82.400319][ T7209]  loop2: unable to read partition table
[   82.403282][ T7209] loop2: partition table beyond EOD, truncated
[   82.405933][ T7209] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[   82.559404][ T7215] overlay: ./bus is not a directory
[   82.585784][ T6189] usb 7-1: GET_CAPABILITIES returned 0
[   82.587584][ T6189] usbtmc 7-1:16.0: can't read capabilities
[   82.634848][ T7225] FAULT_INJECTION: forcing a failure.
[   82.634848][ T7225] name failslab, interval 1, probability 0, space 0, times 0
[   82.638745][ T7225] CPU: 0 UID: 0 PID: 7225 Comm: syz.3.416 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   82.638761][ T7225] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.638768][ T7225] Call Trace:
[   82.638772][ T7225]  <TASK>
[   82.638777][ T7225]  dump_stack_lvl+0x16c/0x1f0
[   82.638809][ T7225]  should_fail_ex+0x512/0x640
[   82.638826][ T7225]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   82.638845][ T7225]  should_failslab+0xc2/0x120
[   82.638856][ T7225]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   82.638872][ T7225]  ? fput+0x70/0xf0
[   82.638883][ T7225]  ? getname_flags.part.0+0x4c/0x550
[   82.638900][ T7225]  getname_flags.part.0+0x4c/0x550
[   82.638915][ T7225]  __x64_sys_rmdir+0xb0/0x110
[   82.638926][ T7225]  do_syscall_64+0xcd/0x4c0
[   82.638940][ T7225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.638951][ T7225] RIP: 0033:0x7fa7a798e9a9
[   82.638960][ T7225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.638970][ T7225] RSP: 002b:00007fa7a88d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[   82.638981][ T7225] RAX: ffffffffffffffda RBX: 00007fa7a7bb5fa0 RCX: 00007fa7a798e9a9
[   82.638987][ T7225] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000380
[   82.638993][ T7225] RBP: 00007fa7a88d2090 R08: 0000000000000000 R09: 0000000000000000
[   82.638999][ T7225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.639005][ T7225] R13: 0000000000000000 R14: 00007fa7a7bb5fa0 R15: 00007ffc894f5d68
[   82.639017][ T7225]  </TASK>
[   82.745212][   T40] kauditd_printk_skb: 6 callbacks suppressed
[   82.745222][   T40] audit: type=1400 audit(1753760057.827:343): avc:  denied  { append } for  pid=7230 comm="syz.1.419" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   82.746164][ T7231] random: crng reseeded on system resumption
[   82.747616][   T40] audit: type=1400 audit(1753760057.827:344): avc:  denied  { open } for  pid=7230 comm="syz.1.419" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   82.780286][ T7231] Restarting kernel threads ...
[   82.781236][   T40] audit: type=1400 audit(1753760057.857:345): avc:  denied  { ioctl } for  pid=7230 comm="syz.1.419" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x3305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   82.792372][    C3] usbtmc 7-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[   82.797956][ T7181] usbtmc 7-1:16.0: Unable to send data, error -71
[   82.798479][ T7231] Done restarting kernel threads.
[   82.808134][ T6223] usb 7-1: USB disconnect, device number 6
[   82.808816][ T7231] netlink: 28 bytes leftover after parsing attributes in process `syz.1.419'.
[   82.814206][ T7231] netlink: 28 bytes leftover after parsing attributes in process `syz.1.419'.
[   82.957897][ T7240] FAULT_INJECTION: forcing a failure.
[   82.957897][ T7240] name failslab, interval 1, probability 0, space 0, times 0
[   82.964588][ T7240] CPU: 2 UID: 0 PID: 7240 Comm: syz.1.422 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   82.964620][ T7240] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.964631][ T7240] Call Trace:
[   82.964638][ T7240]  <TASK>
[   82.964645][ T7240]  dump_stack_lvl+0x16c/0x1f0
[   82.964672][ T7240]  should_fail_ex+0x512/0x640
[   82.964692][ T7240]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   82.964720][ T7240]  should_failslab+0xc2/0x120
[   82.964736][ T7240]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   82.964762][ T7240]  ? security_file_alloc+0x34/0x2b0
[   82.964782][ T7240]  security_file_alloc+0x34/0x2b0
[   82.964801][ T7240]  init_file+0x93/0x4c0
[   82.964819][ T7240]  alloc_empty_file+0x73/0x1e0
[   82.964841][ T7240]  path_openat+0xda/0x2cb0
[   82.964856][ T7240]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.964878][ T7240]  ? __pfx_path_openat+0x10/0x10
[   82.964894][ T7240]  do_filp_open+0x20b/0x470
[   82.964904][ T7240]  ? __pfx_do_filp_open+0x10/0x10
[   82.964923][ T7240]  ? _raw_spin_unlock+0x28/0x50
[   82.964934][ T7240]  ? alloc_fd+0x471/0x7d0
[   82.964948][ T7240]  do_sys_openat2+0x11b/0x1d0
[   82.964961][ T7240]  ? __pfx_do_sys_openat2+0x10/0x10
[   82.964975][ T7240]  ? __fget_files+0x20e/0x3c0
[   82.964987][ T7240]  __x64_sys_open+0x153/0x1e0
[   82.965000][ T7240]  ? __pfx___x64_sys_open+0x10/0x10
[   82.965015][ T7240]  ? rcu_is_watching+0x12/0xc0
[   82.965031][ T7240]  do_syscall_64+0xcd/0x4c0
[   82.965045][ T7240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.965055][ T7240] RIP: 0033:0x7f6eed78e9a9
[   82.965064][ T7240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.965074][ T7240] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   82.965085][ T7240] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   82.965092][ T7240] RDX: 0000000000000000 RSI: 000000000016927f RDI: 0000200000000100
[   82.965098][ T7240] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   82.965104][ T7240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.965110][ T7240] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   82.965122][ T7240]  </TASK>
[   83.076903][   T40] audit: type=1400 audit(1753760058.157:346): avc:  denied  { ioctl } for  pid=7241 comm="syz.1.423" path="pid:[4026532875]" dev="nsfs" ino=4026532875 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   83.096827][   T40] audit: type=1400 audit(1753760058.177:347): avc:  denied  { write } for  pid=7241 comm="syz.1.423" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   83.299565][ T7248] Cannot find set identified by id 0 to match
[   83.304607][   T40] audit: type=1400 audit(1753760058.387:348): avc:  denied  { sqpoll } for  pid=7247 comm="syz.1.425" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   83.532279][ T7262] FAULT_INJECTION: forcing a failure.
[   83.532279][ T7262] name failslab, interval 1, probability 0, space 0, times 0
[   83.537278][ T7262] CPU: 0 UID: 0 PID: 7262 Comm: syz.1.427 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   83.537302][ T7262] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.537313][ T7262] Call Trace:
[   83.537320][ T7262]  <TASK>
[   83.537327][ T7262]  dump_stack_lvl+0x16c/0x1f0
[   83.537353][ T7262]  should_fail_ex+0x512/0x640
[   83.537374][ T7262]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   83.537406][ T7262]  should_failslab+0xc2/0x120
[   83.537425][ T7262]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   83.537453][ T7262]  ? find_held_lock+0x2b/0x80
[   83.537474][ T7262]  ? fuse_request_alloc+0x22/0x200
[   83.537504][ T7262]  fuse_request_alloc+0x22/0x200
[   83.537530][ T7262]  fuse_get_req+0x748/0xfd0
[   83.537562][ T7262]  ? __pfx_fuse_get_req+0x10/0x10
[   83.537594][ T7262]  ? __lock_acquire+0xb8a/0x1c90
[   83.537617][ T7262]  __fuse_simple_request+0xb8/0xcb0
[   83.537639][ T7262]  fuse_lseek+0x359/0x530
[   83.537661][ T7262]  ? __lock_acquire+0xb80/0x1c90
[   83.537678][ T7262]  ? __pfx_fuse_lseek+0x10/0x10
[   83.537721][ T7262]  ? down_write+0x14d/0x200
[   83.537744][ T7262]  ? __pfx_down_write+0x10/0x10
[   83.537767][ T7262]  ? __fget_files+0x20e/0x3c0
[   83.537788][ T7262]  fuse_file_llseek+0xba/0x140
[   83.537813][ T7262]  ksys_lseek+0xf3/0x1b0
[   83.537839][ T7262]  do_syscall_64+0xcd/0x4c0
[   83.537863][ T7262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.537881][ T7262] RIP: 0033:0x7f6eed78e9a9
[   83.537900][ T7262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.537917][ T7262] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[   83.537933][ T7262] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   83.537944][ T7262] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000004
[   83.537954][ T7262] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   83.537964][ T7262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.537974][ T7262] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   83.537998][ T7262]  </TASK>
[   83.582327][ T7275] netlink: 108 bytes leftover after parsing attributes in process `syz.0.436'.
[   83.625535][ T7275] netlink: 108 bytes leftover after parsing attributes in process `syz.0.436'.
[   83.629913][ T7275] netlink: 84 bytes leftover after parsing attributes in process `syz.0.436'.
[   83.716536][   T40] audit: type=1400 audit(1753760058.797:349): avc:  denied  { map } for  pid=7283 comm="syz.3.440" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=748 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   83.812817][ T7292] netlink: 4 bytes leftover after parsing attributes in process `syz.3.443'.
[   83.862132][ T7297] Invalid logical block size (66)
[   83.867609][ T7299] xt_hashlimit: size too large, truncated to 1048576
[   83.926920][ T7302] FAULT_INJECTION: forcing a failure.
[   83.926920][ T7302] name failslab, interval 1, probability 0, space 0, times 0
[   83.934135][ T7302] CPU: 1 UID: 0 PID: 7302 Comm: syz.2.446 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   83.934159][ T7302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.934169][ T7302] Call Trace:
[   83.934176][ T7302]  <TASK>
[   83.934183][ T7302]  dump_stack_lvl+0x16c/0x1f0
[   83.934210][ T7302]  should_fail_ex+0x512/0x640
[   83.934231][ T7302]  ? __kmalloc_noprof+0xbf/0x510
[   83.934250][ T7302]  ? lsm_blob_alloc+0x68/0x90
[   83.934272][ T7302]  should_failslab+0xc2/0x120
[   83.934291][ T7302]  __kmalloc_noprof+0xd2/0x510
[   83.934307][ T7302]  ? __pfx_perf_event_init_task+0x10/0x10
[   83.934329][ T7302]  ? audit_alloc+0xa2/0x7b0
[   83.934352][ T7302]  ? __pfx_audit_alloc+0x10/0x10
[   83.934376][ T7302]  lsm_blob_alloc+0x68/0x90
[   83.934398][ T7302]  security_task_alloc+0x2d/0x260
[   83.934417][ T7302]  copy_process+0x2205/0x7650
[   83.934451][ T7302]  ? __pfx_copy_process+0x10/0x10
[   83.934479][ T7302]  ? lockdep_init_map_type+0x5c/0x280
[   83.934497][ T7302]  ? lockdep_init_map_type+0x5c/0x280
[   83.934513][ T7302]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   83.934537][ T7302]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   83.934556][ T7302]  vhost_task_create+0x1d2/0x2e0
[   83.934574][ T7302]  ? __pfx_vhost_task_create+0x10/0x10
[   83.934598][ T7302]  ? __pfx_vhost_task_fn+0x10/0x10
[   83.934630][ T7302]  kvm_mmu_post_init_vm+0x1b7/0x370
[   83.934655][ T7302]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   83.934674][ T7302]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   83.934702][ T7302]  kvm_vcpu_ioctl+0x5eb/0x1690
[   83.934724][ T7302]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   83.934743][ T7302]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   83.934761][ T7302]  ? do_vfs_ioctl+0x128/0x14f0
[   83.934781][ T7302]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   83.934803][ T7302]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   83.934828][ T7302]  ? hook_file_ioctl_common+0x145/0x410
[   83.934847][ T7302]  ? selinux_file_ioctl+0x180/0x270
[   83.934857][ T7302]  ? selinux_file_ioctl+0xb4/0x270
[   83.934868][ T7302]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   83.934882][ T7302]  __x64_sys_ioctl+0x18b/0x210
[   83.934898][ T7302]  do_syscall_64+0xcd/0x4c0
[   83.934913][ T7302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.934923][ T7302] RIP: 0033:0x7f647db8e9a9
[   83.934932][ T7302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.934943][ T7302] RSP: 002b:00007f647ea7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   83.934958][ T7302] RAX: ffffffffffffffda RBX: 00007f647ddb5fa0 RCX: 00007f647db8e9a9
[   83.934964][ T7302] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   83.934970][ T7302] RBP: 00007f647ea7a090 R08: 0000000000000000 R09: 0000000000000000
[   83.934977][ T7302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.934983][ T7302] R13: 0000000000000000 R14: 00007f647ddb5fa0 R15: 00007ffe50f84f08
[   83.934996][ T7302]  </TASK>
[   84.045132][    C1] vkms_vblank_simulate: vblank timer overrun
[   84.080970][ T7305] netlink: 'syz.3.447': attribute type 10 has an invalid length.
[   84.085363][ T7305] batman_adv: batadv0: Adding interface: team0
[   84.088011][ T7305] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.098887][ T7305] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   84.105974][ T7305] netlink: 'syz.3.447': attribute type 10 has an invalid length.
[   84.109102][ T7305] netlink: 2 bytes leftover after parsing attributes in process `syz.3.447'.
[   84.112938][ T7305] team0: entered promiscuous mode
[   84.114825][ T7305] team_slave_0: entered promiscuous mode
[   84.117291][ T7305] team_slave_1: entered promiscuous mode
[   84.120814][ T7305] 8021q: adding VLAN 0 to HW filter on device team0
[   84.124340][ T7305] batman_adv: batadv0: Interface activated: team0
[   84.126935][ T7305] batman_adv: batadv0: Interface deactivated: team0
[   84.129593][ T7305] batman_adv: batadv0: Removing interface: team0
[   84.133947][ T7305] bridge0: port 3(team0) entered blocking state
[   84.136530][ T7305] bridge0: port 3(team0) entered disabled state
[   84.139161][ T7305] team0: entered allmulticast mode
[   84.141077][ T7305] team_slave_0: entered allmulticast mode
[   84.142882][ T7305] team_slave_1: entered allmulticast mode
[   84.287637][ T7312] mmap: syz.2.450 (7312): VmData 37466112 exceed data ulimit 4. Update limits or use boot option ignore_rlimit_data.
[   84.323023][ T7315] FAULT_INJECTION: forcing a failure.
[   84.323023][ T7315] name failslab, interval 1, probability 0, space 0, times 0
[   84.328342][ T7315] CPU: 0 UID: 0 PID: 7315 Comm: syz.3.451 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   84.328364][ T7315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.328374][ T7315] Call Trace:
[   84.328380][ T7315]  <TASK>
[   84.328387][ T7315]  dump_stack_lvl+0x16c/0x1f0
[   84.328411][ T7315]  should_fail_ex+0x512/0x640
[   84.328425][ T7315]  ? fs_reclaim_acquire+0xae/0x150
[   84.328440][ T7315]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   84.328452][ T7315]  should_failslab+0xc2/0x120
[   84.328464][ T7315]  __kmalloc_noprof+0xd2/0x510
[   84.328491][ T7315]  tomoyo_realpath_from_path+0xc2/0x6e0
[   84.328506][ T7315]  ? tomoyo_profile+0x47/0x60
[   84.328520][ T7315]  tomoyo_path_perm+0x274/0x460
[   84.328534][ T7315]  ? tomoyo_path_perm+0x260/0x460
[   84.328551][ T7315]  ? __pfx_tomoyo_path_perm+0x10/0x10
[   84.328567][ T7315]  ? __lock_acquire+0xb8a/0x1c90
[   84.328590][ T7315]  ? __mutex_trylock_common+0xe9/0x250
[   84.328602][ T7315]  ? __pfx___mutex_trylock_common+0x10/0x10
[   84.328614][ T7315]  ? __pfx___might_resched+0x10/0x10
[   84.328630][ T7315]  security_inode_getattr+0x116/0x290
[   84.328641][ T7315]  vfs_getattr+0x25/0x60
[   84.328655][ T7315]  loop_query_min_dio_size.isra.0+0x117/0x250
[   84.328667][ T7315]  ? __pfx_loop_query_min_dio_size.isra.0+0x10/0x10
[   84.328692][ T7315]  ? filemap_write_and_wait_range+0x7d/0x130
[   84.328707][ T7315]  loop_configure+0x84e/0x1710
[   84.328723][ T7315]  ? stack_trace_save+0x8e/0xc0
[   84.328741][ T7315]  ? __lock_acquire+0xb8a/0x1c90
[   84.328751][ T7315]  ? __pfx_loop_configure+0x10/0x10
[   84.328774][ T7315]  lo_ioctl+0x265/0x20b0
[   84.328788][ T7315]  ? __pfx_lo_ioctl+0x10/0x10
[   84.328797][ T7315]  ? __pfx_avc_has_extended_perms+0x10/0x10
[   84.328811][ T7315]  ? kasan_quarantine_put+0x10a/0x240
[   84.328826][ T7315]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.328841][ T7315]  ? blk_get_meta_cap+0x482/0x700
[   84.328862][ T7315]  ? __pfx_blk_get_meta_cap+0x10/0x10
[   84.328881][ T7315]  ? blkdev_common_ioctl+0x1d6/0x2470
[   84.328914][ T7315]  ? __pfx_lo_ioctl+0x10/0x10
[   84.328924][ T7315]  blkdev_ioctl+0x274/0x6d0
[   84.328940][ T7315]  ? __pfx_blkdev_ioctl+0x10/0x10
[   84.328954][ T7315]  ? selinux_file_ioctl+0x180/0x270
[   84.328964][ T7315]  ? selinux_file_ioctl+0xb4/0x270
[   84.328975][ T7315]  ? __pfx_blkdev_ioctl+0x10/0x10
[   84.328991][ T7315]  __x64_sys_ioctl+0x18b/0x210
[   84.329007][ T7315]  do_syscall_64+0xcd/0x4c0
[   84.329021][ T7315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.329031][ T7315] RIP: 0033:0x7fa7a798e9a9
[   84.329041][ T7315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.329051][ T7315] RSP: 002b:00007fa7a88d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   84.329061][ T7315] RAX: ffffffffffffffda RBX: 00007fa7a7bb5fa0 RCX: 00007fa7a798e9a9
[   84.329067][ T7315] RDX: 00002000000002c0 RSI: 0000000000004c0a RDI: 0000000000000003
[   84.329073][ T7315] RBP: 00007fa7a88d2090 R08: 0000000000000000 R09: 0000000000000000
[   84.329079][ T7315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.329085][ T7315] R13: 0000000000000000 R14: 00007fa7a7bb5fa0 R15: 00007ffc894f5d68
[   84.329098][ T7315]  </TASK>
[   84.329131][ T7315] ERROR: Out of memory at tomoyo_realpath_from_path.
[   84.356884][ T7317] smc: net device bond0 applied user defined pnetid SYZ0
[   84.359216][ T7315] loop2: detected capacity change from 0 to 7
[   84.465979][ T5946]  loop2:
[   84.467047][ T5946] loop2: partition table partially beyond EOD, truncated
[   84.470569][ T7315]  loop2:
[   84.471500][   T40] audit: type=1400 audit(1753760059.557:350): avc:  denied  { create } for  pid=7316 comm="syz.1.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   84.472041][ T7315] loop2: partition table partially beyond EOD, truncated
[   84.525351][   T40] audit: type=1400 audit(1753760059.607:351): avc:  denied  { setopt } for  pid=7316 comm="syz.1.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   84.531980][   T40] audit: type=1400 audit(1753760059.607:352): avc:  denied  { write } for  pid=7316 comm="syz.1.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   84.666419][ T7338] FAULT_INJECTION: forcing a failure.
[   84.666419][ T7338] name failslab, interval 1, probability 0, space 0, times 0
[   84.671225][ T7338] CPU: 0 UID: 0 PID: 7338 Comm: syz.1.458 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   84.671262][ T7338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.671274][ T7338] Call Trace:
[   84.671280][ T7338]  <TASK>
[   84.671288][ T7338]  dump_stack_lvl+0x16c/0x1f0
[   84.671315][ T7338]  should_fail_ex+0x512/0x640
[   84.671336][ T7338]  ? fs_reclaim_acquire+0xae/0x150
[   84.671360][ T7338]  ? tomoyo_encode2+0x100/0x3e0
[   84.671378][ T7338]  should_failslab+0xc2/0x120
[   84.671397][ T7338]  __kmalloc_noprof+0xd2/0x510
[   84.671439][ T7338]  tomoyo_encode2+0x100/0x3e0
[   84.671457][ T7338]  tomoyo_encode+0x29/0x50
[   84.671473][ T7338]  tomoyo_realpath_from_path+0x18f/0x6e0
[   84.671493][ T7338]  ? tomoyo_profile+0x47/0x60
[   84.671517][ T7338]  tomoyo_path_number_perm+0x245/0x580
[   84.671541][ T7338]  ? tomoyo_path_number_perm+0x237/0x580
[   84.671568][ T7338]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   84.671596][ T7338]  ? find_held_lock+0x2b/0x80
[   84.671640][ T7338]  ? find_held_lock+0x2b/0x80
[   84.671662][ T7338]  ? hook_file_ioctl_common+0x145/0x410
[   84.671688][ T7338]  ? __fget_files+0x20e/0x3c0
[   84.671709][ T7338]  security_file_ioctl+0x9b/0x240
[   84.671729][ T7338]  __x64_sys_ioctl+0xb7/0x210
[   84.671752][ T7338]  do_syscall_64+0xcd/0x4c0
[   84.671773][ T7338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.671787][ T7338] RIP: 0033:0x7f6eed78e9a9
[   84.671805][ T7338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.671819][ T7338] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   84.671833][ T7338] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   84.671849][ T7338] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   84.671859][ T7338] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   84.671869][ T7338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.671879][ T7338] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   84.671904][ T7338]  </TASK>
[   84.746658][ T7338] ERROR: Out of memory at tomoyo_realpath_from_path.
[   85.382880][ T7353] FAULT_INJECTION: forcing a failure.
[   85.382880][ T7353] name failslab, interval 1, probability 0, space 0, times 0
[   85.388840][ T7353] CPU: 0 UID: 0 PID: 7353 Comm: syz.2.464 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   85.388865][ T7353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.388876][ T7353] Call Trace:
[   85.388882][ T7353]  <TASK>
[   85.388888][ T7353]  dump_stack_lvl+0x16c/0x1f0
[   85.388915][ T7353]  should_fail_ex+0x512/0x640
[   85.388937][ T7353]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   85.388968][ T7353]  should_failslab+0xc2/0x120
[   85.388987][ T7353]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   85.389012][ T7353]  ? make_vfsuid+0xec/0x140
[   85.389035][ T7353]  ? alloc_empty_file+0x55/0x1e0
[   85.389062][ T7353]  alloc_empty_file+0x55/0x1e0
[   85.389085][ T7353]  dentry_open+0x46/0xd0
[   85.389108][ T7353]  ovl_path_open+0x198/0x1f0
[   85.389130][ T7353]  ovl_dir_read_merged+0x349/0x5c0
[   85.389152][ T7353]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[   85.389178][ T7353]  ? __pfx_ovl_fill_merge+0x10/0x10
[   85.389207][ T7353]  ? avc_has_perm_noaudit+0x149/0x3b0
[   85.389234][ T7353]  ovl_check_empty_dir+0xaf/0x4c0
[   85.389254][ T7353]  ? avc_has_perm+0x11a/0x1c0
[   85.389277][ T7353]  ? __pfx_ovl_check_empty_dir+0x10/0x10
[   85.389306][ T7353]  ovl_do_remove+0xcf/0x1040
[   85.389325][ T7353]  ? may_link+0x3a4/0x520
[   85.389344][ T7353]  ? __pfx_may_link+0x10/0x10
[   85.389365][ T7353]  ? __pfx_ovl_do_remove+0x10/0x10
[   85.389390][ T7353]  vfs_rmdir+0x206/0x690
[   85.389416][ T7353]  do_rmdir+0x2e8/0x3c0
[   85.389435][ T7353]  ? __pfx_do_rmdir+0x10/0x10
[   85.389444][ T6189] libceph: connect (1)[c::]:6789 error -101
[   85.389461][ T7353]  ? getname_flags.part.0+0x1c5/0x550
[   85.389486][ T7353]  __x64_sys_rmdir+0xc5/0x110
[   85.389505][ T7353]  do_syscall_64+0xcd/0x4c0
[   85.389530][ T7353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.389548][ T7353] RIP: 0033:0x7f647db8e9a9
[   85.389563][ T7353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.389580][ T7353] RSP: 002b:00007f647ea7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[   85.389597][ T7353] RAX: ffffffffffffffda RBX: 00007f647ddb5fa0 RCX: 00007f647db8e9a9
[   85.389608][ T7353] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000380
[   85.389619][ T7353] RBP: 00007f647ea7a090 R08: 0000000000000000 R09: 0000000000000000
[   85.389636][ T7353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.389647][ T7353] R13: 0000000000000000 R14: 00007f647ddb5fa0 R15: 00007ffe50f84f08
[   85.389673][ T7353]  </TASK>
[   85.453570][   T10] libceph: connect (1)[c::]:6789 error -101
[   85.456193][ T6189] libceph: mon0 (1)[c::]:6789 connect error
[   85.458395][   T10] libceph: mon0 (1)[c::]:6789 connect error
[   85.462030][ T6189] libceph: connect (1)[c::]:6789 error -101
[   85.481060][ T6189] libceph: mon0 (1)[c::]:6789 connect error
[   85.507285][ T7369] bond0: (slave batadv_slave_0): Releasing backup interface
[   85.584849][ T7373] FAULT_INJECTION: forcing a failure.
[   85.584849][ T7373] name failslab, interval 1, probability 0, space 0, times 0
[   85.590199][ T7373] CPU: 2 UID: 0 PID: 7373 Comm: syz.1.468 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   85.590224][ T7373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.590234][ T7373] Call Trace:
[   85.590243][ T7373]  <TASK>
[   85.590250][ T7373]  dump_stack_lvl+0x16c/0x1f0
[   85.590275][ T7373]  should_fail_ex+0x512/0x640
[   85.590296][ T7373]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[   85.590326][ T7373]  should_failslab+0xc2/0x120
[   85.590345][ T7373]  __kmalloc_cache_node_noprof+0x6d/0x420
[   85.590373][ T7373]  ? __get_vm_area_node+0x101/0x330
[   85.590399][ T7373]  __get_vm_area_node+0x101/0x330
[   85.590425][ T7373]  __vmalloc_node_range_noprof+0x271/0x14b0
[   85.590451][ T7373]  ? vhost_task_create+0x1d2/0x2e0
[   85.590471][ T7373]  ? local_lock_release+0x99/0x140
[   85.590497][ T7373]  ? vhost_task_create+0x1d2/0x2e0
[   85.590515][ T7373]  ? rcu_read_unlock+0x17/0x60
[   85.590538][ T7373]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   85.590561][ T7373]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[   85.590591][ T7373]  ? vhost_task_create+0x1d2/0x2e0
[   85.590608][ T7373]  __vmalloc_node_noprof+0xad/0xf0
[   85.590631][ T7373]  ? vhost_task_create+0x1d2/0x2e0
[   85.590652][ T7373]  copy_process+0x2c70/0x7650
[   85.590690][ T7373]  ? __pfx_copy_process+0x10/0x10
[   85.590718][ T7373]  ? lockdep_init_map_type+0x5c/0x280
[   85.590738][ T7373]  ? lockdep_init_map_type+0x5c/0x280
[   85.590756][ T7373]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   85.590785][ T7373]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   85.590806][ T7373]  vhost_task_create+0x1d2/0x2e0
[   85.590824][ T7373]  ? __pfx_vhost_task_create+0x10/0x10
[   85.590851][ T7373]  ? __pfx_vhost_task_fn+0x10/0x10
[   85.590888][ T7373]  kvm_mmu_post_init_vm+0x1b7/0x370
[   85.590915][ T7373]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   85.590938][ T7373]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   85.590966][ T7373]  kvm_vcpu_ioctl+0x5eb/0x1690
[   85.590992][ T7373]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   85.591014][ T7373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   85.591037][ T7373]  ? do_vfs_ioctl+0x128/0x14f0
[   85.591062][ T7373]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   85.591086][ T7373]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   85.591115][ T7373]  ? hook_file_ioctl_common+0x145/0x410
[   85.591145][ T7373]  ? selinux_file_ioctl+0x180/0x270
[   85.591161][ T7373]  ? selinux_file_ioctl+0xb4/0x270
[   85.591180][ T7373]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   85.591203][ T7373]  __x64_sys_ioctl+0x18b/0x210
[   85.591229][ T7373]  do_syscall_64+0xcd/0x4c0
[   85.591268][ T7373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.591287][ T7373] RIP: 0033:0x7f6eed78e9a9
[   85.591301][ T7373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.591318][ T7373] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.591336][ T7373] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   85.591347][ T7373] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   85.591357][ T7373] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   85.591367][ T7373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.591376][ T7373] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   85.591420][ T7373]  </TASK>
[   85.712744][ T7373] syz.1.468: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   85.717406][ T7373] CPU: 3 UID: 0 PID: 7373 Comm: syz.1.468 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   85.717421][ T7373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.717428][ T7373] Call Trace:
[   85.717432][ T7373]  <TASK>
[   85.717436][ T7373]  dump_stack_lvl+0x16c/0x1f0
[   85.717454][ T7373]  warn_alloc+0x248/0x3a0
[   85.717472][ T7373]  ? __pfx_warn_alloc+0x10/0x10
[   85.717501][ T7373]  ? rcu_is_watching+0x12/0xc0
[   85.717515][ T7373]  ? trace_kmalloc+0x2b/0xd0
[   85.717526][ T7373]  ? __kmalloc_cache_node_noprof+0x272/0x420
[   85.717544][ T7373]  ? __kasan_kmalloc+0x8a/0xb0
[   85.717553][ T7373]  ? __get_vm_area_node+0x208/0x330
[   85.717571][ T7373]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[   85.717586][ T7373]  ? local_lock_release+0x99/0x140
[   85.717606][ T7373]  ? vhost_task_create+0x1d2/0x2e0
[   85.717618][ T7373]  ? rcu_read_unlock+0x17/0x60
[   85.717632][ T7373]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   85.717646][ T7373]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[   85.717662][ T7373]  ? vhost_task_create+0x1d2/0x2e0
[   85.717673][ T7373]  __vmalloc_node_noprof+0xad/0xf0
[   85.717686][ T7373]  ? vhost_task_create+0x1d2/0x2e0
[   85.717699][ T7373]  copy_process+0x2c70/0x7650
[   85.717720][ T7373]  ? __pfx_copy_process+0x10/0x10
[   85.717737][ T7373]  ? lockdep_init_map_type+0x5c/0x280
[   85.717749][ T7373]  ? lockdep_init_map_type+0x5c/0x280
[   85.717760][ T7373]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   85.717777][ T7373]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   85.717789][ T7373]  vhost_task_create+0x1d2/0x2e0
[   85.717800][ T7373]  ? __pfx_vhost_task_create+0x10/0x10
[   85.717816][ T7373]  ? __pfx_vhost_task_fn+0x10/0x10
[   85.717833][ T7373]  kvm_mmu_post_init_vm+0x1b7/0x370
[   85.717856][ T7373]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   85.717878][ T7373]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   85.717905][ T7373]  kvm_vcpu_ioctl+0x5eb/0x1690
[   85.717929][ T7373]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   85.717953][ T7373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   85.717968][ T7373]  ? do_vfs_ioctl+0x128/0x14f0
[   85.717983][ T7373]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   85.717997][ T7373]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   85.718014][ T7373]  ? hook_file_ioctl_common+0x145/0x410
[   85.718032][ T7373]  ? selinux_file_ioctl+0x180/0x270
[   85.718042][ T7373]  ? selinux_file_ioctl+0xb4/0x270
[   85.718053][ T7373]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   85.718067][ T7373]  __x64_sys_ioctl+0x18b/0x210
[   85.718082][ T7373]  do_syscall_64+0xcd/0x4c0
[   85.718097][ T7373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.718108][ T7373] RIP: 0033:0x7f6eed78e9a9
[   85.718117][ T7373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.718127][ T7373] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.718137][ T7373] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   85.718143][ T7373] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   85.718149][ T7373] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   85.718155][ T7373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.718161][ T7373] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   85.718174][ T7373]  </TASK>
[   85.718190][ T7373] Mem-Info:
[   85.722794][   T10] libceph: connect (1)[c::]:6789 error -101
[   85.726588][ T7373] active_anon:9096 inactive_anon:0 isolated_anon:0
[   85.726588][ T7373]  active_file:14653 inactive_file:40797 isolated_file:0
[   85.726588][ T7373]  unevictable:1768 dirty:48 writeback:0
[   85.726588][ T7373]  slab_reclaimable:11795 slab_unreclaimable:69191
[   85.726588][ T7373]  mapped:25576 shmem:2397 pagetables:1307
[   85.726588][ T7373]  sec_pagetables:306 bounce:0
[   85.726588][ T7373]  kernel_misc_reclaimable:0
[   85.726588][ T7373]  free:458095 free_pcp:12867 free_cma:0
[   85.727952][   T10] libceph: mon0 (1)[c::]:6789 connect error
[   85.728131][ T7373] Node 0 active_anon:36248kB inactive_anon:0kB active_file:58548kB inactive_file:162984kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:102256kB dirty:188kB writeback:0kB shmem:6052kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:12944kB pagetables:5036kB sec_pagetables:1224kB all_unreclaimable? no Balloon:0kB
[   85.742523][ T6189] libceph: connect (1)[c::]:6789 error -101
[   85.744687][ T7373] Node 1 active_anon:136kB inactive_anon:0kB active_file:64kB inactive_file:204kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:48kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:192kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   85.746730][ T6189] libceph: mon0 (1)[c::]:6789 connect error
[   85.748301][ T7373] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   85.748344][ T7373] lowmem_reserve[]: 0 1234 1234 1234 1234
[   85.885283][ T7373] Node 0 
[   85.885286][   T59] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   85.888897][ T7373] DMA32 free:226628kB boost:0kB min:27516kB low:34392kB high:41268kB reserved_highatomic:0KB free_highatomic:0KB active_anon:36248kB inactive_anon:0kB active_file:58548kB inactive_file:162984kB unevictable:3536kB writepending:188kB present:2080628kB managed:1263964kB mlocked:0kB bounce:0kB free_pcp:21364kB local_pcp:4856kB free_cma:0kB
[   85.899068][ T7373] lowmem_reserve[]: 0 0 0 0 0
[   85.900809][ T7373] Node 1 Normal free:1590400kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:136kB inactive_anon:0kB active_file:64kB inactive_file:204kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781956kB mlocked:0kB bounce:0kB free_pcp:29968kB local_pcp:11012kB free_cma:0kB
[   85.913347][ T7373] lowmem_reserve[]: 0 0 0 0 0
[   85.915259][ T7373] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   85.920508][ T7373] Node 0 DMA32: 873*4kB (UME) 1448*8kB (UME) 686*16kB (UME) 1038*32kB (UME) 547*64kB (UME) 104*128kB (UME) 53*256kB (UM) 38*512kB (UME) 36*1024kB (UM) 10*2048kB (UM) 7*4096kB (UM) = 226628kB
[   85.927537][ T7373] Node 1 Normal: 39*4kB (UME) 63*8kB (UME) 97*16kB (UE) 27*32kB (UE) 22*64kB (UE) 14*128kB (UE) 16*256kB (UME) 6*512kB (UE) 2*1024kB (UE) 1*2048kB (E) 384*4096kB (UM) = 1590404kB
[   85.933292][ T7373] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   85.936295][ T7373] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   85.939875][ T7373] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   85.943066][ T7373] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   85.945746][ T7373] 57843 total pagecache pages
[   85.947266][ T7373] 0 pages in swap cache
[   85.948583][ T7373] Free swap  = 124996kB
[   85.949885][ T7373] Total swap = 124996kB
[   85.951193][ T7373] 1048443 pages RAM
[   85.953866][ T7373] 0 pages HighMem/MovableOnly
[   85.955626][ T7373] 283123 pages reserved
[   85.957361][ T7373] 0 pages cma reserved
[   86.031378][   T59] usb 5-1: Using ep0 maxpacket: 8
[   86.034856][   T59] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   86.038183][   T59] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   86.041888][   T59] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   86.044962][   T59] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   86.048896][   T59] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   86.051794][   T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.214982][ T7355] ceph: No mds server is up or the cluster is laggy
[   86.215178][ T7362] ceph: No mds server is up or the cluster is laggy
[   86.248317][   T10] libceph: connect (1)[c::]:6789 error -101
[   86.250604][   T10] libceph: mon0 (1)[c::]:6789 connect error
[   86.263162][   T59] usb 5-1: GET_CAPABILITIES returned 0
[   86.265474][   T59] usbtmc 5-1:16.0: can't read capabilities
[   86.323970][ T7386] FAULT_INJECTION: forcing a failure.
[   86.323970][ T7386] name failslab, interval 1, probability 0, space 0, times 0
[   86.329612][ T7386] CPU: 3 UID: 0 PID: 7386 Comm: syz.1.473 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   86.329628][ T7386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.329634][ T7386] Call Trace:
[   86.329639][ T7386]  <TASK>
[   86.329643][ T7386]  dump_stack_lvl+0x16c/0x1f0
[   86.329661][ T7386]  should_fail_ex+0x512/0x640
[   86.329682][ T7386]  ? __kmalloc_noprof+0xbf/0x510
[   86.329694][ T7386]  ? lsm_blob_alloc+0x68/0x90
[   86.329707][ T7386]  should_failslab+0xc2/0x120
[   86.329718][ T7386]  __kmalloc_noprof+0xd2/0x510
[   86.329728][ T7386]  ? __pfx_perf_event_init_task+0x10/0x10
[   86.329741][ T7386]  ? audit_alloc+0xa2/0x7b0
[   86.329755][ T7386]  ? __pfx_audit_alloc+0x10/0x10
[   86.329770][ T7386]  lsm_blob_alloc+0x68/0x90
[   86.329784][ T7386]  security_task_alloc+0x2d/0x260
[   86.329797][ T7386]  copy_process+0x2205/0x7650
[   86.329818][ T7386]  ? __pfx_copy_process+0x10/0x10
[   86.329835][ T7386]  ? lockdep_init_map_type+0x5c/0x280
[   86.329848][ T7386]  ? lockdep_init_map_type+0x5c/0x280
[   86.329858][ T7386]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   86.329875][ T7386]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   86.329889][ T7386]  vhost_task_create+0x1d2/0x2e0
[   86.329901][ T7386]  ? __pfx_vhost_task_create+0x10/0x10
[   86.329916][ T7386]  ? __pfx_vhost_task_fn+0x10/0x10
[   86.329933][ T7386]  kvm_mmu_post_init_vm+0x1b7/0x370
[   86.329949][ T7386]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   86.329963][ T7386]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   86.329980][ T7386]  kvm_vcpu_ioctl+0x5eb/0x1690
[   86.329994][ T7386]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   86.330008][ T7386]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   86.330022][ T7386]  ? do_vfs_ioctl+0x128/0x14f0
[   86.330037][ T7386]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   86.330051][ T7386]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   86.330067][ T7386]  ? hook_file_ioctl_common+0x145/0x410
[   86.330084][ T7386]  ? selinux_file_ioctl+0x180/0x270
[   86.330094][ T7386]  ? selinux_file_ioctl+0xb4/0x270
[   86.330105][ T7386]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   86.330119][ T7386]  __x64_sys_ioctl+0x18b/0x210
[   86.330135][ T7386]  do_syscall_64+0xcd/0x4c0
[   86.330149][ T7386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.330159][ T7386] RIP: 0033:0x7f6eed78e9a9
[   86.330168][ T7386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.330179][ T7386] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.330189][ T7386] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   86.330195][ T7386] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   86.330201][ T7386] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   86.330207][ T7386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.330213][ T7386] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   86.330226][ T7386]  </TASK>
[   86.470144][    C1] usbtmc 5-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[   86.473234][ T7374] usbtmc 5-1:16.0: Unable to send data, error -71
[   86.478820][ T6189] usb 5-1: USB disconnect, device number 3
[   86.571413][   T10] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   86.720957][ T7401] ALSA: seq fatal error: cannot create timer (-19)
[   86.731447][   T10] usb 8-1: Using ep0 maxpacket: 8
[   86.734415][   T10] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   86.737018][   T10] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   86.740136][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   86.743565][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   86.747419][   T10] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   86.752241][   T10] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   86.755659][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.786484][ T7405] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2856151591 (22849212728 ns) > initial count (5743301600 ns). Using initial count to start timer.
[   86.794271][ T7405] kvm: Disabled LAPIC found during irq injection
[   86.797546][ T7405] FAULT_INJECTION: forcing a failure.
[   86.797546][ T7405] name failslab, interval 1, probability 0, space 0, times 0
[   86.803025][ T7405] CPU: 3 UID: 0 PID: 7405 Comm: syz.1.479 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   86.803050][ T7405] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.803060][ T7405] Call Trace:
[   86.803066][ T7405]  <TASK>
[   86.803073][ T7405]  dump_stack_lvl+0x16c/0x1f0
[   86.803101][ T7405]  should_fail_ex+0x512/0x640
[   86.803121][ T7405]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   86.803153][ T7405]  should_failslab+0xc2/0x120
[   86.803173][ T7405]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   86.803201][ T7405]  ? copy_process+0x4b6/0x7650
[   86.803231][ T7405]  copy_process+0x4b6/0x7650
[   86.803267][ T7405]  ? __pfx_copy_process+0x10/0x10
[   86.803297][ T7405]  ? lockdep_init_map_type+0x5c/0x280
[   86.803317][ T7405]  ? lockdep_init_map_type+0x5c/0x280
[   86.803336][ T7405]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   86.803364][ T7405]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   86.803414][ T7405]  vhost_task_create+0x1d2/0x2e0
[   86.803435][ T7405]  ? __pfx_vhost_task_create+0x10/0x10
[   86.803461][ T7405]  ? __pfx_vhost_task_fn+0x10/0x10
[   86.803493][ T7405]  kvm_mmu_post_init_vm+0x1b7/0x370
[   86.803520][ T7405]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   86.803543][ T7405]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   86.803571][ T7405]  kvm_vcpu_ioctl+0x5eb/0x1690
[   86.803597][ T7405]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   86.803621][ T7405]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   86.803645][ T7405]  ? do_vfs_ioctl+0x128/0x14f0
[   86.803671][ T7405]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   86.803695][ T7405]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   86.803724][ T7405]  ? hook_file_ioctl_common+0x145/0x410
[   86.803754][ T7405]  ? selinux_file_ioctl+0x180/0x270
[   86.803771][ T7405]  ? selinux_file_ioctl+0xb4/0x270
[   86.803791][ T7405]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   86.803820][ T7405]  __x64_sys_ioctl+0x18b/0x210
[   86.803847][ T7405]  do_syscall_64+0xcd/0x4c0
[   86.803873][ T7405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.803890][ T7405] RIP: 0033:0x7f6eed78e9a9
[   86.803905][ T7405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.803921][ T7405] RSP: 002b:00007f6eee55f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.803938][ T7405] RAX: ffffffffffffffda RBX: 00007f6eed9b5fa0 RCX: 00007f6eed78e9a9
[   86.803949][ T7405] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   86.803960][ T7405] RBP: 00007f6eee55f090 R08: 0000000000000000 R09: 0000000000000000
[   86.803969][ T7405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.803979][ T7405] R13: 0000000000000000 R14: 00007f6eed9b5fa0 R15: 00007ffc5d4eee68
[   86.804004][ T7405]  </TASK>
[   86.831158][ T7408] netlink: 'syz.2.480': attribute type 11 has an invalid length.
[   86.917870][ T7408] netlink: 'syz.2.480': attribute type 11 has an invalid length.
[   86.920528][ T7408] netlink: 224 bytes leftover after parsing attributes in process `syz.2.480'.
[   86.971781][   T10] usb 8-1: usb_control_msg returned -32
[   86.974210][   T10] usbtmc 8-1:16.0: can't read capabilities
[   87.100380][ T7430] fuse: Bad value for 'user_id'
[   87.102301][ T7430] fuse: Bad value for 'user_id'
[   87.108369][   T59] IPVS: starting estimator thread 0...
[   87.211534][ T7431] IPVS: using max 42 ests per chain, 100800 per kthread
[   87.293833][   T10] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   87.318560][ T7444] netlink: 'syz.3.472': attribute type 4 has an invalid length.
[   87.325167][ T7444] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[   87.335854][ T7444] CIFS mount error: No usable UNC path provided in device string!
[   87.335854][ T7444] 
[   87.339168][ T7444] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[   87.346696][ T7444] usbtmc 8-1:16.0: control status returned 0
[   87.453643][   T10] usb 7-1: Using ep0 maxpacket: 8
[   87.457619][   T10] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[   87.461347][   T10] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   87.465457][   T10] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   87.469936][   T10] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   87.474133][   T10] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   87.479031][   T10] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   87.482117][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.498696][ T7448] new mount options do not match the existing superblock, will be ignored
[   87.551113][ T1021] usb 8-1: USB disconnect, device number 2
[   87.554404][ T7450] FAULT_INJECTION: forcing a failure.
[   87.554404][ T7450] name failslab, interval 1, probability 0, space 0, times 0
[   87.559521][ T7450] CPU: 3 UID: 0 PID: 7450 Comm: syz.0.489 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   87.559543][ T7450] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.559554][ T7450] Call Trace:
[   87.559560][ T7450]  <TASK>
[   87.559566][ T7450]  dump_stack_lvl+0x16c/0x1f0
[   87.559591][ T7450]  should_fail_ex+0x512/0x640
[   87.559610][ T7450]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[   87.559640][ T7450]  should_failslab+0xc2/0x120
[   87.559660][ T7450]  __kmalloc_cache_node_noprof+0x6d/0x420
[   87.559687][ T7450]  ? __get_vm_area_node+0x101/0x330
[   87.559712][ T7450]  __get_vm_area_node+0x101/0x330
[   87.559736][ T7450]  __vmalloc_node_range_noprof+0x271/0x14b0
[   87.559759][ T7450]  ? vhost_task_create+0x1d2/0x2e0
[   87.559777][ T7450]  ? local_lock_release+0x99/0x140
[   87.559802][ T7450]  ? vhost_task_create+0x1d2/0x2e0
[   87.559826][ T7450]  ? rcu_read_unlock+0x17/0x60
[   87.559862][ T7450]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   87.559885][ T7450]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[   87.559913][ T7450]  ? vhost_task_create+0x1d2/0x2e0
[   87.559930][ T7450]  __vmalloc_node_noprof+0xad/0xf0
[   87.559952][ T7450]  ? vhost_task_create+0x1d2/0x2e0
[   87.559972][ T7450]  copy_process+0x2c70/0x7650
[   87.560006][ T7450]  ? __pfx_copy_process+0x10/0x10
[   87.560033][ T7450]  ? lockdep_init_map_type+0x5c/0x280
[   87.560053][ T7450]  ? lockdep_init_map_type+0x5c/0x280
[   87.560070][ T7450]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   87.560096][ T7450]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   87.560115][ T7450]  vhost_task_create+0x1d2/0x2e0
[   87.560132][ T7450]  ? __pfx_vhost_task_create+0x10/0x10
[   87.560156][ T7450]  ? __pfx_vhost_task_fn+0x10/0x10
[   87.560186][ T7450]  kvm_mmu_post_init_vm+0x1b7/0x370
[   87.560210][ T7450]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[   87.560231][ T7450]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[   87.560258][ T7450]  kvm_vcpu_ioctl+0x5eb/0x1690
[   87.560281][ T7450]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   87.560303][ T7450]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   87.560325][ T7450]  ? do_vfs_ioctl+0x128/0x14f0
[   87.560347][ T7450]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   87.560370][ T7450]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   87.560397][ T7450]  ? hook_file_ioctl_common+0x145/0x410
[   87.560442][ T7450]  ? selinux_file_ioctl+0x180/0x270
[   87.560458][ T7450]  ? selinux_file_ioctl+0xb4/0x270
[   87.560476][ T7450]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   87.560498][ T7450]  __x64_sys_ioctl+0x18b/0x210
[   87.560523][ T7450]  do_syscall_64+0xcd/0x4c0
[   87.560544][ T7450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.560560][ T7450] RIP: 0033:0x7f6952b8e9a9
[   87.560573][ T7450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.560588][ T7450] RSP: 002b:00007f6953a42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   87.560603][ T7450] RAX: ffffffffffffffda RBX: 00007f6952db5fa0 RCX: 00007f6952b8e9a9
[   87.560614][ T7450] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   87.560623][ T7450] RBP: 00007f6953a42090 R08: 0000000000000000 R09: 0000000000000000
[   87.560633][ T7450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.560642][ T7450] R13: 0000000000000000 R14: 00007f6952db5fa0 R15: 00007fff0cd9cc38
[   87.560665][ T7450]  </TASK>
[   87.688115][   T10] usb 7-1: usb_control_msg returned -32
[   87.689895][   T10] usbtmc 7-1:16.0: can't read capabilities
[   87.852435][   T40] kauditd_printk_skb: 23 callbacks suppressed
[   87.852451][   T40] audit: type=1400 audit(1753760062.937:376): avc:  denied  { setopt } for  pid=7453 comm="syz.0.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   88.040515][ T7464] FAULT_INJECTION: forcing a failure.
[   88.040515][ T7464] name failslab, interval 1, probability 0, space 0, times 0
[   88.045630][ T7464] CPU: 0 UID: 0 PID: 7464 Comm: syz.2.484 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   88.045652][ T7464] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.045662][ T7464] Call Trace:
[   88.045667][ T7464]  <TASK>
[   88.045674][ T7464]  dump_stack_lvl+0x16c/0x1f0
[   88.045699][ T7464]  should_fail_ex+0x512/0x640
[   88.045717][ T7464]  ? fs_reclaim_acquire+0xae/0x150
[   88.045740][ T7464]  should_failslab+0xc2/0x120
[   88.045757][ T7464]  __kmalloc_cache_noprof+0x6a/0x3e0
[   88.045780][ T7464]  ? usb_control_msg+0xbc/0x4a0
[   88.045806][ T7464]  usb_control_msg+0xbc/0x4a0
[   88.045829][ T7464]  ? __pfx_usb_control_msg+0x10/0x10
[   88.045864][ T7464]  usbtmc_get_stb+0x212/0xa70
[   88.045886][ T7464]  ? __pfx___mutex_lock+0x10/0x10
[   88.045907][ T7464]  ? tomoyo_path_number_perm+0x18d/0x580
[   88.045933][ T7464]  ? __pfx_usbtmc_get_stb+0x10/0x10
[   88.045963][ T7464]  usbtmc_ioctl+0x3e5/0x2900
[   88.045981][ T7464]  ? do_vfs_ioctl+0x128/0x14f0
[   88.046002][ T7464]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   88.046023][ T7464]  ? __pfx_usbtmc_ioctl+0x10/0x10
[   88.046039][ T7464]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   88.046065][ T7464]  ? hook_file_ioctl_common+0x145/0x410
[   88.046093][ T7464]  ? selinux_file_ioctl+0x180/0x270
[   88.046109][ T7464]  ? selinux_file_ioctl+0xb4/0x270
[   88.046126][ T7464]  ? __pfx_usbtmc_ioctl+0x10/0x10
[   88.046145][ T7464]  __x64_sys_ioctl+0x18b/0x210
[   88.046169][ T7464]  do_syscall_64+0xcd/0x4c0
[   88.046192][ T7464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.046208][ T7464] RIP: 0033:0x7f647db8e9a9
[   88.046221][ T7464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.046237][ T7464] RSP: 002b:00007f647ea59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   88.046252][ T7464] RAX: ffffffffffffffda RBX: 00007f647ddb6080 RCX: 00007f647db8e9a9
[   88.046263][ T7464] RDX: 0000000000000000 RSI: 0000000080015b1a RDI: 0000000000000004
[   88.046273][ T7464] RBP: 00007f647ea59090 R08: 0000000000000000 R09: 0000000000000000
[   88.046282][ T7464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.046291][ T7464] R13: 0000000000000000 R14: 00007f647ddb6080 R15: 00007ffe50f84f08
[   88.046314][ T7464]  </TASK>
[   88.046323][ T7464] usbtmc 7-1:16.0: stb usb_control_msg returned -12
[   88.154442][   T59] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   88.158748][ T7466] FAULT_INJECTION: forcing a failure.
[   88.158748][ T7466] name failslab, interval 1, probability 0, space 0, times 0
[   88.162464][ T7473] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.163643][ T7466] CPU: 2 UID: 0 PID: 7466 Comm: syz.0.495 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   88.163666][ T7466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.163677][ T7466] Call Trace:
[   88.163683][ T7466]  <TASK>
[   88.163689][ T7466]  dump_stack_lvl+0x16c/0x1f0
[   88.163714][ T7466]  should_fail_ex+0x512/0x640
[   88.163734][ T7466]  ? fs_reclaim_acquire+0xae/0x150
[   88.163757][ T7466]  ? tomoyo_encode2+0x100/0x3e0
[   88.163774][ T7466]  should_failslab+0xc2/0x120
[   88.163792][ T7466]  __kmalloc_noprof+0xd2/0x510
[   88.163816][ T7466]  tomoyo_encode2+0x100/0x3e0
[   88.163836][ T7466]  tomoyo_encode+0x29/0x50
[   88.163853][ T7466]  tomoyo_realpath_from_path+0x18f/0x6e0
[   88.163872][ T7466]  ? tomoyo_profile+0x47/0x60
[   88.163896][ T7466]  tomoyo_path_number_perm+0x245/0x580
[   88.163920][ T7466]  ? tomoyo_path_number_perm+0x237/0x580
[   88.163948][ T7466]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   88.163975][ T7466]  ? find_held_lock+0x2b/0x80
[   88.164020][ T7466]  ? find_held_lock+0x2b/0x80
[   88.164042][ T7466]  ? hook_file_ioctl_common+0x145/0x410
[   88.164066][ T7466]  ? __fget_files+0x20e/0x3c0
[   88.164083][ T7466]  security_file_ioctl+0x9b/0x240
[   88.164100][ T7466]  __x64_sys_ioctl+0xb7/0x210
[   88.164126][ T7466]  do_syscall_64+0xcd/0x4c0
[   88.164150][ T7466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.164167][ T7466] RIP: 0033:0x7f6952b8e9a9
[   88.164181][ T7466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.164197][ T7466] RSP: 002b:00007f6953a42038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   88.164213][ T7466] RAX: ffffffffffffffda RBX: 00007f6952db5fa0 RCX: 00007f6952b8e9a9
[   88.164223][ T7466] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   88.164233][ T7466] RBP: 00007f6953a42090 R08: 0000000000000000 R09: 0000000000000000
[   88.164243][ T7466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.164253][ T7466] R13: 0000000000000000 R14: 00007f6952db5fa0 R15: 00007fff0cd9cc38
[   88.164274][ T7466]  </TASK>
[   88.164289][ T7466] ERROR: Out of memory at tomoyo_realpath_from_path.
[   88.166674][ T7473] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.254604][   T40] audit: type=1400 audit(1753760063.337:377): avc:  denied  { read } for  pid=7467 comm="syz.3.496" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[   88.263736][   T40] audit: type=1400 audit(1753760063.337:378): avc:  denied  { open } for  pid=7467 comm="syz.3.496" path="/dev/input/mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[   88.333083][   T59] usb 6-1: Using ep0 maxpacket: 8
[   88.338090][   T59] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   88.342743][   T59] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   88.345414][ T7478] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   88.347013][   T59] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   88.354143][   T59] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   88.359696][   T59] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   88.363849][   T59] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.407164][ T7478] md: md2 stopped.
[   88.463176][ T7477] ------------[ cut here ]------------
[   88.464834][ T7477] ODEBUG: free active (active state 0) object: ffff88802a446448 object type: work_struct hint: mddev_delayed_delete+0x0/0x20
[   88.468843][ T7477] WARNING: CPU: 0 PID: 7477 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[   88.471943][ T7477] Modules linked in:
[   88.473513][ T7477] CPU: 0 UID: 0 PID: 7477 Comm: syz.3.497 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   88.479453][ T7477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.483038][ T7477] RIP: 0010:debug_print_object+0x1a2/0x2b0
[   88.484788][ T7477] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 00 d0 15 8c 4c 89 e6 48 c7 c7 80 c4 15 8c e8 9f 1b 94 fc 90 <0f> 0b 90 90 58 83 05 c6 ae c2 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[   88.490497][ T7477] RSP: 0018:ffffc900065cfb48 EFLAGS: 00010282
[   88.492856][ T7477] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817b01b8
[   88.495262][ T7477] RDX: ffff88802230a440 RSI: ffffffff817b01c5 RDI: 0000000000000001
[   88.497595][ T7477] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   88.500352][ T7477] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff8c15cb20
[   88.503155][ T7477] R13: ffffffff8bac1f40 R14: ffffffff88512e60 R15: ffffc900065cfc48
[   88.505580][ T7477] FS:  000055558263b500(0000) GS:ffff8880d66f9000(0000) knlGS:0000000000000000
[   88.508266][ T7477] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   88.510269][ T7477] CR2: 000000110c2be67d CR3: 000000002b26e000 CR4: 0000000000352ef0
[   88.512915][ T7477] DR0: 0000000000008009 DR1: 0000000000000000 DR2: 0000000000000000
[   88.515315][ T7477] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[   88.517744][ T7477] Call Trace:
[   88.518785][ T7477]  <TASK>
[   88.519740][ T7477]  ? __pfx_mddev_delayed_delete+0x10/0x10
[   88.521598][ T7477]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   88.523472][ T7477]  debug_check_no_obj_freed+0x4b7/0x600
[   88.525176][ T7477]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[   88.527047][ T7477]  ? kasan_quarantine_put+0x10a/0x240
[   88.528752][ T7477]  ? kfree+0x2b4/0x4d0
[   88.530080][ T7477]  ? percpu_ref_exit+0xfb/0x150
[   88.531744][ T7477]  kfree+0x28f/0x4d0
[   88.532972][ T7477]  ? percpu_ref_exit+0xfb/0x150
[   88.534499][ T7477]  ? disk_release+0x2a1/0x410
[   88.536005][ T7477]  ? __pfx_md_free_disk+0x10/0x10
[   88.537591][ T7477]  disk_release+0x2a1/0x410
[   88.539043][ T7477]  ? __pfx_disk_release+0x10/0x10
[   88.540657][ T7477]  device_release+0xa1/0x240
[   88.542193][ T7477]  kobject_put+0x1e7/0x5a0
[   88.543640][ T7477]  ? __pfx_blkdev_release+0x10/0x10
[   88.545283][ T7477]  put_device+0x1f/0x30
[   88.546595][ T7477]  blkdev_release+0x15/0x20
[   88.548037][ T7477]  __fput+0x402/0xb70
[   88.549311][ T7477]  ? _raw_spin_unlock_irq+0x23/0x50
[   88.550946][ T7477]  task_work_run+0x14d/0x240
[   88.552510][ T7477]  ? __pfx_task_work_run+0x10/0x10
[   88.554124][ T7477]  ? __pfx___do_sys_close_range+0x10/0x10
[   88.555882][ T7477]  exit_to_user_mode_loop+0xeb/0x110
[   88.557532][ T7477]  do_syscall_64+0x3f6/0x4c0
[   88.558986][ T7477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.560848][ T7477] RIP: 0033:0x7fa7a798e9a9
[   88.562286][ T7477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.568100][ T7477] RSP: 002b:00007ffc894f5ec8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   88.570374][   T59] usb 6-1: GET_CAPABILITIES returned 0
[   88.570692][ T7477] RAX: 0000000000000000 RBX: 00007fa7a7bb7ba0 RCX: 00007fa7a798e9a9
[   88.570702][ T7477] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   88.573382][   T59] usbtmc 6-1:16.0: can't read capabilities
[   88.575442][ T7477] RBP: 00007fa7a7bb7ba0 R08: 000000000000011c R09: 00000010894f61bf
[   88.575454][ T7477] R10: 00000000003ffcc0 R11: 0000000000000246 R12: 0000000000015bca
[   88.575460][ T7477] R13: 00007ffc894f5fc0 R14: ffffffffffffffff R15: 00007ffc894f5fe0
[   88.575474][ T7477]  </TASK>
[   88.575480][ T7477] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   88.575489][ T7477] CPU: 0 UID: 0 PID: 7477 Comm: syz.3.497 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[   88.575502][ T7477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.575509][ T7477] Call Trace:
[   88.575513][ T7477]  <TASK>
[   88.575517][ T7477]  dump_stack_lvl+0x3d/0x1f0
[   88.575533][ T7477]  panic+0x71c/0x800
[   88.575544][ T7477]  ? __pfx_panic+0x10/0x10
[   88.575554][ T7477]  ? show_trace_log_lvl+0x29b/0x3e0
[   88.575574][ T7477]  ? check_panic_on_warn+0x1f/0xb0
[   88.575585][ T7477]  ? debug_print_object+0x1a2/0x2b0
[   88.575600][ T7477]  check_panic_on_warn+0xab/0xb0
[   88.575610][ T7477]  __warn+0xf6/0x3c0
[   88.575620][ T7477]  ? debug_print_object+0x1a2/0x2b0
[   88.575635][ T7477]  report_bug+0x3c3/0x580
[   88.575647][ T7477]  ? debug_print_object+0x1a2/0x2b0
[   88.575662][ T7477]  handle_bug+0x184/0x210
[   88.575677][ T7477]  exc_invalid_op+0x17/0x50
[   88.575691][ T7477]  asm_exc_invalid_op+0x1a/0x20
[   88.575701][ T7477] RIP: 0010:debug_print_object+0x1a2/0x2b0
[   88.575716][ T7477] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 00 d0 15 8c 4c 89 e6 48 c7 c7 80 c4 15 8c e8 9f 1b 94 fc 90 <0f> 0b 90 90 58 83 05 c6 ae c2 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[   88.575727][ T7477] RSP: 0018:ffffc900065cfb48 EFLAGS: 00010282
[   88.575736][ T7477] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817b01b8
[   88.575743][ T7477] RDX: ffff88802230a440 RSI: ffffffff817b01c5 RDI: 0000000000000001
[   88.575749][ T7477] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   88.575755][ T7477] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff8c15cb20
[   88.575762][ T7477] R13: ffffffff8bac1f40 R14: ffffffff88512e60 R15: ffffc900065cfc48
[   88.575769][ T7477]  ? __pfx_mddev_delayed_delete+0x10/0x10
[   88.575786][ T7477]  ? __warn_printk+0x198/0x350
[   88.575795][ T7477]  ? __warn_printk+0x1a5/0x350
[   88.575806][ T7477]  ? debug_print_object+0x1a1/0x2b0
[   88.575820][ T7477]  ? __pfx_mddev_delayed_delete+0x10/0x10
[   88.575834][ T7477]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   88.575848][ T7477]  debug_check_no_obj_freed+0x4b7/0x600
[   88.575868][ T7477]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[   88.575884][ T7477]  ? kasan_quarantine_put+0x10a/0x240
[   88.575907][ T7477]  ? kfree+0x2b4/0x4d0
[   88.575921][ T7477]  ? percpu_ref_exit+0xfb/0x150
[   88.575933][ T7477]  kfree+0x28f/0x4d0
[   88.575947][ T7477]  ? percpu_ref_exit+0xfb/0x150
[   88.575956][ T7477]  ? disk_release+0x2a1/0x410
[   88.575968][ T7477]  ? __pfx_md_free_disk+0x10/0x10
[   88.575979][ T7477]  disk_release+0x2a1/0x410
[   88.575989][ T7477]  ? __pfx_disk_release+0x10/0x10
[   88.575999][ T7477]  device_release+0xa1/0x240
[   88.576010][ T7477]  kobject_put+0x1e7/0x5a0
[   88.576025][ T7477]  ? __pfx_blkdev_release+0x10/0x10
[   88.576034][ T7477]  put_device+0x1f/0x30
[   88.576044][ T7477]  blkdev_release+0x15/0x20
[   88.576054][ T7477]  __fput+0x402/0xb70
[   88.576067][ T7477]  ? _raw_spin_unlock_irq+0x23/0x50
[   88.576079][ T7477]  task_work_run+0x14d/0x240
[   88.576092][ T7477]  ? __pfx_task_work_run+0x10/0x10
[   88.576104][ T7477]  ? __pfx___do_sys_close_range+0x10/0x10
[   88.576119][ T7477]  exit_to_user_mode_loop+0xeb/0x110
[   88.576133][ T7477]  do_syscall_64+0x3f6/0x4c0
[   88.576147][ T7477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.576157][ T7477] RIP: 0033:0x7fa7a798e9a9
[   88.576166][ T7477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.576176][ T7477] RSP: 002b:00007ffc894f5ec8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   88.576186][ T7477] RAX: 0000000000000000 RBX: 00007fa7a7bb7ba0 RCX: 00007fa7a798e9a9
[   88.576192][ T7477] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   88.576199][ T7477] RBP: 00007fa7a7bb7ba0 R08: 000000000000011c R09: 00000010894f61bf
[   88.576205][ T7477] R10: 00000000003ffcc0 R11: 0000000000000246 R12: 0000000000015bca
[   88.576212][ T7477] R13: 00007ffc894f5fc0 R14: ffffffffffffffff R15: 00007ffc894f5fe0
[   88.576224][ T7477]  </TASK>
[   88.579355][ T7477] Kernel Offset: disabled

VM DIAGNOSIS:
03:34:23  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000043 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8560d865 RDI=ffffffff9b0e1160 RBP=ffffffff9b0e1120 RSP=ffffc900065cf4b0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000043 R14=ffffffff9b0e1120 R15=ffffffff8560d800
RIP=ffffffff8560d88f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 000055558263b500 ffffffff 00c00000
GS =0000 ffff8880d66f9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2be67d CR3=000000002b26e000 CR4=00352ef0
DR0=0000000000008009 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7b86488 00007fa7a7b86480 00007fa7a7b86478 00007fa7a7b86450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a86ed100 00007fa7a7b86440 00007fa7a7b80004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7b86498 00007fa7a7b86490 00007fa7a7b86488 00007fa7a7b86480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0e2b0405b94137f2 f1401812424f4bb1 1563f3c72afb3ea7 999cc329ff57503e
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6ba370705e7b23d7 a65dec50d845c241 afab00951d0657ff ef62e282bac6cb77
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ade8ad13de1abdde f2ac31c21225e70f 18c887332c77bced 8e8ae072531e21d5
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4703d64c1c9b4727 62e390af1ba489fe 5244fc129d6b7271 ba75b0df59118c08
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000009c3a7 RBX=0000000000000001 RCX=ffffffff8b8d1c99 RDX=0000000000000000
RSI=ffffffff8de35f27 RDI=ffffffff8c15bf20 RBP=ffffed1003c53488 RSP=ffffc90000177df8
R8 =0000000000000001 R9 =ffffed100d4a6645 R10=ffff88806a53322b R11=0000000000000001
R12=0000000000000001 R13=ffff88801e29a440 R14=ffffffff90a96150 R15=0000000000000000
RIP=ffffffff8b8d07ff RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67f9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b2f51fffc CR3=0000000063dcc000 CR4=00352ef0
DR0=0000000000008009 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dd86488 00007f647dd86480 00007f647dd86478 00007f647dd86450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647e8ed100 00007f647dd86440 00007f647dd86458 0004000b000c0008
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dd86498 00007f647dd86490 00007f647dd86488 00007f647dd86480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88806a4420a0 RCX=ffffffff81afe47d RDX=ffff888021e3c880
RSI=ffffffff81afe459 RDI=0000000000000005 RBP=0000000000000001 RSP=ffffc900007ef8a0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=dffffc0000000000 R13=0000000000000003 R14=ffffed100d488415 R15=ffff88806a63b580
RIP=ffffffff81afe45b RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d68f9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa7a7972760 CR3=000000000e382000 CR4=00352ef0
DR0=0000000000008009 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000002000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe50f85290 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f647dc11ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffed100d4e4771 RBX=ffffed100d4e4772 RCX=ffffffff816a40f2 RDX=0000000000000001
RSI=0000000000000008 RDI=ffff88806a723b88 RBP=ffffed100d4e4771 RSP=ffffc900006f8fa0
R8 =0000000000000001 R9 =ffffed100d4e4771 R10=ffff88806a723b8f R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff82214cb6 RFL=00000083 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69f9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f6953a40568 CR3=000000004f932000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000002000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc894f60f0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa7a7a11ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000