last executing test programs:

5m39.989047842s ago: executing program 0 (id=1039):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="000000008c0000001800128008000100707070000c00028008000100", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x40}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000018c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_VFIO_SET_IOMMU(0xffffffffffffffff, 0x3b66, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)

5m39.899282484s ago: executing program 0 (id=1040):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000200000000000000000000030000000001000000030000000200000000000000000000020300000009"], 0x0, 0x4a}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="0c00990000000000000000000800a102ffff0000080026008d03000008009f"], 0x40}}, 0xe7030000)

5m39.898698347s ago: executing program 0 (id=1041):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x5)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x34014c40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000052b0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005468a9fe52386e52000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000da0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000f7ffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bb33ea699a80e3f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0xa}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000052b0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005468a9fe52386e52000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000da0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000f7ffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bb33ea699a80e3f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0xa}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x8, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3966, 0x1, 0x8000, 0xfffffffc, r2, r3, 0x1, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101) (async)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)
write$tcp_congestion(r4, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r4, r0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$VT_GETSTATE(0xffffffffffffffff, 0x5603, &(0x7f0000000040)={0x0, 0x4, 0x7}) (async)
ioctl$VT_GETSTATE(0xffffffffffffffff, 0x5603, &(0x7f0000000040)={0x0, 0x4, 0x7})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x10a)
mount$afs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x800000, 0x0)

5m39.729341432s ago: executing program 0 (id=1045):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2a03, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000017a000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x7, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x100005, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m39.60916503s ago: executing program 0 (id=1048):
r0 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000080)={0x8})
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3d0, 0x238, 0xc8, 0x8, 0x238, 0x5803, 0x300, 0x2e8, 0x2e8, 0x300, 0x2e8, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, [], [0x0, 0x0, 0xff000000], 'erspan0\x00', 'geneve1\x00', {}, {}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x210, 0x238, 0x0, {0x0, 0x2000000000000}, [@common=@ah={{0x30}, {[0x4d4, 0x4d2], 0x40, 0x3, 0x3}}, @common=@rt={{0x138}, {0xfffffffc, [0x5, 0x5], 0x400, 0x1, 0x1, [@private0={0xfc, 0x0, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x3a}, @private0={0xfc, 0x0, '\x00', 0x1}, @remote, @ipv4={'\x00', '\xff\xff', @empty}, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, @private0, @remote], 0x6}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x14, 0x7f, 0xfde3}}}, {{@ipv6={@remote, @mcast2, [0x0, 0x0, 0xff000000], [], 'macvtap0\x00', 'syzkaller1\x00'}, 0x0, 0xa8, 0xc8}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x430)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000001714"], 0x38}}, 0x800)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x413, &(0x7f0000000340)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}})
setreuid(0xee01, 0xee01)
syz_fuse_handle_req(r2, &(0x7f000000bb40)="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", 0x2000, &(0x7f00000001c0)={&(0x7f0000000000)={0x50, 0x0, 0x203, {0x7, 0x29, 0xf4ad, 0x702000a1, 0xdcf, 0x4, 0xb, 0x7fe, 0x0, 0x0, 0x4, 0x9b}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

5m39.608453756s ago: executing program 0 (id=1051):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000c30000001800128008000100707070000c00028008000100", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x40}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000018c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_VFIO_SET_IOMMU(0xffffffffffffffff, 0x3b66, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)

5m24.577591248s ago: executing program 32 (id=1051):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000c30000001800128008000100707070000c00028008000100", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x40}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000018c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_VFIO_SET_IOMMU(0xffffffffffffffff, 0x3b66, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1m9.583732932s ago: executing program 1 (id=5689):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000300)={0x0, {{0xa, 0x4e20, 0x0, @mcast1={0xff, 0xf}}}, {{0xa, 0x0, 0xfffffffe, @rand_addr=' \x01\x00'}}}, 0x108)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$TUNGETFILTER(r1, 0x801054db, &(0x7f0000000040)=""/74)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f00000001c0)={0xfffffffe, {{0xa, 0x0, 0x0, @mcast1={0xff, 0xf}}}, {{0xa, 0x0, 0x0, @private0, 0xfffffffe}}}, 0x108)

1m8.490384435s ago: executing program 1 (id=5693):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3c0, 0x210, 0x9403, 0x3002, 0x210, 0x2c0, 0x2f0, 0x3d8, 0x3d8, 0x2f0, 0x3d8, 0x3, 0x0, {[{{@ipv6={@private2, @remote, [0xffffff00, 0x0, 0xffffffff], [0xffffffff, 0xffffff00, 0xffffff00], 'macvlan1\x00', 'wg2\x00', {}, {0xa4c8dd0ffa9b1578}, 0x73, 0x9, 0x4, 0x48}, 0x0, 0x1c8, 0x210, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xc}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x80, 0x1, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@private1}}}, {{@uncond, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff, 0x0, 0x2}, {0x4, 0x5, 0x5}, {0x3, 0x4}, 0xbf, 0xb}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x420)
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='exfat\x00', 0x208000, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0) (async)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x4d, 0x0, 0x0) (async)
setsockopt$inet6_int(r1, 0x29, 0x4d, 0x0, 0x0)
socket(0x2, 0x80805, 0x0) (async)
r2 = socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000380)={{0x0, @multicast2, 0x4e01, 0x4, 'rr\x00', 0x4, 0xf, 0x4d}, {@remote, 0x4e20, 0x2000, 0xcd, 0x4000000, 0xd}}, 0x44)
syslog(0x2, &(0x7f0000000040)=""/10, 0xa)
syslog(0x9, 0x0, 0x0) (async)
syslog(0x9, 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_RW(r0, 0x3ba0, &(0x7f0000000300)={0x48, 0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540), 0x4}) (async)
ioctl$IOMMU_TEST_OP_ACCESS_RW(r0, 0x3ba0, &(0x7f0000000300)={0x48, 0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000540), 0x4})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r3, 0x800448d4, &(0x7f0000000000)={0x3, 0x9, "58d901", 0x40, 0xf}) (async)
ioctl$HCIINQUIRY(r3, 0x800448d4, &(0x7f0000000000)={0x3, 0x9, "58d901", 0x40, 0xf})
syslog(0x1, &(0x7f0000000440)=""/173, 0xad)
r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r4, 0xc100565c, &(0x7f0000000140)={0x0, 0x5, 0x1, {0xa, @pix_mp={0x9, 0x81, 0x0, 0x8, 0x6, [{0xd}, {0x3, 0x8000}, {0xa64a88ed, 0x7fffffff}, {0x200, 0x3ff}, {0x5, 0x1}, {0x4ce, 0x8}, {0x7ff, 0x9}, {0x6, 0x1}], 0x6, 0xff, 0x1, 0x1, 0x5}}, 0x56a})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r2)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000580)={'wlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000580)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_GET_WOWLAN(r2, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x24, r5, 0x2, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x77}, @val={0x8, 0x3, r6}, @void}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x40040)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x7)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, 0x0)
sendmsg$NFC_CMD_ENABLE_SE(0xffffffffffffffff, 0x0, 0x20040000)
timerfd_create(0x1, 0x0)
ioctl$KIOCSOUND(0xffffffffffffffff, 0x4b2f, 0x101)

1m8.410463402s ago: executing program 1 (id=5696):
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r3 = dup3(r2, r0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0})

1m8.237633286s ago: executing program 1 (id=5704):
r0 = socket$isdn_base(0x22, 0x3, 0x0)
symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x6000)
setresuid(r2, r2, r2)
fsetxattr$system_posix_acl(r1, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000280)=ANY=[@ANYBLOB="0200000001000100000000000400040000000000100002000000000020"], 0x24, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000140)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x800)

1m8.173917122s ago: executing program 1 (id=5706):
r0 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) (async, rerun: 64)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) (async)
r2 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000000300), 0x8040, 0x0)
ioctl$BLKGETZONESZ(r2, 0x80041284, &(0x7f0000000340)=0x101) (async)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
tkill(r0, 0x13) (async)
ptrace$PTRACE_SETSIGMASK(0x420b, r0, 0x8, &(0x7f0000000000)={[0x4]})
tkill(r0, 0x12) (async)
waitid(0x2, r0, 0x0, 0x4, &(0x7f0000000040)) (async, rerun: 64)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) (rerun: 64)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1b2fd2c5}]}]}, @NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}], {0x14}}, 0xb0}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@msize={'msize', 0x3d, 0x20590e85}}]}})
pipe(&(0x7f0000000240)={<r6=>0xffffffffffffffff})
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r5, &(0x7f0000000280)={r6, r5}) (async)
waitid$P_PIDFD(0x3, r5, &(0x7f0000000100), 0x1, &(0x7f0000000180))

1m8.066950829s ago: executing program 1 (id=5709):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x1)
write$binfmt_format(r1, &(0x7f0000000100)='0\x00', 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r1, &(0x7f0000000300)="ca0e808bb3", 0x5)
syz_emit_ethernet(0x4e, &(0x7f0000000880)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaaaa86dd6001044a00183afffc010000000000000000000000000001fe8000000000000000000000000000aa8800907800000a00fe8000000000000000000000000000bb"], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80600, 0x0)
ioctl$KDSETLED(0xffffffffffffffff, 0x4b32, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x42, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@newqdisc={0x24, 0x24, 0x3fe3aa0262d8c583, 0x70bd27, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xffff, 0xffff}, {0xfff1}}}, 0x24}}, 0x480c4)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7, 0x7], &(0x7f0000000240), 0x0, 0x2}}, 0x40)
r3 = add_key$user(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000280)="20582588", 0x4, 0xffffffffffffffff)
pipe2$watch_queue(&(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x0)
keyctl$invalidate(0x15, 0x0)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x80, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x133}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xcd}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x5ff}]}]}, 0x80}}, 0x0)
pipe2$watch_queue(&(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r9, 0x17)
keyctl$update(0x2, r3, &(0x7f00000002c0)="40c261fbbab87ebc6887c6c2d51ef2223a8bdff808b278373a953e32d1d496367d029f4926ccb7afceafa397ad253dd21ee3db942b2c7b6879aaa8d4a3bb9310b5492aca59b8277e67b00e5ea07401a401c28a71b2ea4e8bdede9a95626f68561576ce4dbf06a3dac0b331cb82459eb2add4b8c45b692ee6594363fb89c4abcfe76e0a436b652606c6e6665a2473e0", 0x8f)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000380)={{0x1, 0x1, 0x18, <r10=>r8}, './file0\x00'})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r11, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x14, r12, 0x211}, 0x14}}, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r10, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, r12, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40800)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYRES32=r4], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r8, 0x5760, 0x15)

1m8.023791396s ago: executing program 33 (id=5709):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x1)
write$binfmt_format(r1, &(0x7f0000000100)='0\x00', 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r1, &(0x7f0000000300)="ca0e808bb3", 0x5)
syz_emit_ethernet(0x4e, &(0x7f0000000880)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaaaa86dd6001044a00183afffc010000000000000000000000000001fe8000000000000000000000000000aa8800907800000a00fe8000000000000000000000000000bb"], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80600, 0x0)
ioctl$KDSETLED(0xffffffffffffffff, 0x4b32, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x42, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@newqdisc={0x24, 0x24, 0x3fe3aa0262d8c583, 0x70bd27, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xffff, 0xffff}, {0xfff1}}}, 0x24}}, 0x480c4)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7, 0x7], &(0x7f0000000240), 0x0, 0x2}}, 0x40)
r3 = add_key$user(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000280)="20582588", 0x4, 0xffffffffffffffff)
pipe2$watch_queue(&(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x0)
keyctl$invalidate(0x15, 0x0)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x80, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x133}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xcd}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x5ff}]}]}, 0x80}}, 0x0)
pipe2$watch_queue(&(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r9, 0x17)
keyctl$update(0x2, r3, &(0x7f00000002c0)="40c261fbbab87ebc6887c6c2d51ef2223a8bdff808b278373a953e32d1d496367d029f4926ccb7afceafa397ad253dd21ee3db942b2c7b6879aaa8d4a3bb9310b5492aca59b8277e67b00e5ea07401a401c28a71b2ea4e8bdede9a95626f68561576ce4dbf06a3dac0b331cb82459eb2add4b8c45b692ee6594363fb89c4abcfe76e0a436b652606c6e6665a2473e0", 0x8f)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000380)={{0x1, 0x1, 0x18, <r10=>r8}, './file0\x00'})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r11, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x14, r12, 0x211}, 0x14}}, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r10, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, r12, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40800)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYRES32=r4], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r8, 0x5760, 0x15)

1.217165138s ago: executing program 3 (id=6637):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c00028008000100", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x40}, 0x1, 0xffc3}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000018c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_VFIO_SET_IOMMU(0xffffffffffffffff, 0x3b66, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1.03982009s ago: executing program 3 (id=6639):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40046304, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x48, 0x7b, &(0x7f00000005c0)={@flat=@weak_handle={0x77682a85, 0x100, 0x2}, @flat=@binder={0x73622a85, 0x18a, 0x3}, @flat=@handle={0x73682a85, 0xa, 0x1}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})

1.039251766s ago: executing program 3 (id=6641):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000200)={0x30, 0x30, 0x30}}}], 0x0, 0x0, 0x0}) (fail_nth: 14)

921.536441ms ago: executing program 3 (id=6642):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0xfa}]})
bind$unix(0xffffffffffffffff, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
accept(0xffffffffffffffff, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x80}}, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
sendmmsg(r1, &(0x7f00000000c0), 0x2c8, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000001c0))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
syz_emit_ethernet(0x0, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x9a, 0xec, 0x4, 0x8b87}, {0xe707, 0xf4, 0x1, 0x5}]}, 0x10)
syz_open_dev$swradio(&(0x7f0000000140), 0x1, 0x2)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/cpu_byteorder', 0x307100, 0xd1)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWRULE={0x18, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}]}], {0x14}}, 0x40}}, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x89f1, 0x0)

772.344029ms ago: executing program 5 (id=6647):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="9feb01001800000000000000ac000000ac00000008000000000000000800000d00000000080000000200000009000000020000000d000000040000000b0000000400000002000000020000000500000005000000070000000500000001000000040000000c000000000000100c0000000a00000006000085060000000008000001000000050000000400000005000000030000000900000004000000000000000c00000003000000008000000b00000000000800040000000b0000000300000005000000005f0000005f6f00"], 0x0, 0xcc, 0x0, 0x1, 0x2}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, r0}, 0x94)
r1 = socket$inet6(0xa, 0x3, 0x3c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x5000, 0x0, @loopback, 0x5}, 0x1c)
syz_emit_ethernet(0x56, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaa4c77b99cbb86dd60c6ea090000000000000100000000e01f40000000000000ff0200000000000000000000000000010001c204dc"], 0x0)
socket(0xf, 0x2, 0x100)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xffdf}], 0x1)

761.306065ms ago: executing program 5 (id=6648):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c00028008000100", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x40}, 0x1, 0xfffe}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000018c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_VFIO_SET_IOMMU(0xffffffffffffffff, 0x3b66, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)

609.631964ms ago: executing program 5 (id=6652):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000400)='netfs_rreq_ref\x00', r0, 0x0, 0x9}, 0x18) (async)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000400)='netfs_rreq_ref\x00', r0, 0x0, 0x9}, 0x18)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000440), 0x10000, 0x0)
ioctl$CDROMREADTOCENTRY(r2, 0x5306, &(0x7f0000000480)={0x5, 0xb, 0x7, 0x0, @msf={0x0, 0x8, 0xb}, 0x73})
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r1}, 0x8)
close(r3)
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000580)="d8001c00180081064e81f782db44fd56170d12a0b9b545c7", 0x18}], 0x1}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r3) (async)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r3)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x131) (async)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x131)
flock(r5, 0x5) (async)
flock(r5, 0x5)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
flock(r6, 0x5)
socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$PNPIPE_IFINDEX(r3, 0x113, 0x2, &(0x7f00000000c0), &(0x7f00000002c0)=0x4)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x90, 0x0, 0x0, {0xf7ffffffffffffff, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f", 0x1f)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080"], 0x24}}, 0x0) (async)
sendmsg$nl_route(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080"], 0x24}}, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r8)
sendmsg$NL80211_CMD_VENDOR(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x24, r10, 0x2cb3b0415539fbbb, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x2}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffffff81}]}, 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x0)
syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r6, 0xc0405665, &(0x7f0000000140)={0x0, 0x2, 0xffffffff, 0x1008, 0x8, 0x7})
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@can_delroute={0x1c, 0x19, 0x11, 0x70bd27, 0x0, {}, [@CGW_LIM_HOPS={0x5, 0xd, 0xc}]}, 0x1c}}, 0x0) (async)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@can_delroute={0x1c, 0x19, 0x11, 0x70bd27, 0x0, {}, [@CGW_LIM_HOPS={0x5, 0xd, 0xc}]}, 0x1c}}, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SET_LINK_TOL(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002cbd7000fcdbdf25010000000000000007410000004c0018000000026962000000000000008200"/98], 0x68}, 0x1, 0x0, 0x0, 0x800}, 0x80)

609.150816ms ago: executing program 2 (id=6653):
r0 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
r1 = socket$caif_stream(0x25, 0x1, 0x5)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, &(0x7f0000000040)={{r1}, 0x7, &(0x7f0000000000)=[0x7fff, 0x9, 0x2bd, 0x5, 0xb4, 0xe6, 0xfff], 0x3, 0x0, 0x1})
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800007, 0x11, r0, 0x0)

608.983794ms ago: executing program 5 (id=6654):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'ip6erspan0\x00', <r1=>0x0})
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=@delqdisc={0x58, 0x25, 0x2, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0x8, 0x9}, {0x8, 0x1}, {0x0, 0xb}}, [@q_dsmark={{0xb}, {0x28, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xc800}, @TCA_DSMARK_INDICES={0x6, 0x1, 0xa}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xd9e}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x2}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x25)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x7}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000700)=ANY=[@ANYRES16=r4, @ANYRESDEC=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=r1, @ANYRESOCT, @ANYRESDEC=0x0, @ANYRES16=r0])
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r6, 0x8004e500, &(0x7f0000000140)=r5)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd28, 0x8800, {0x0, 0x0, 0x0, r4, {0x8, 0x7}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x4}, @TCA_FLOWER_KEY_ENC_OPTS={0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@ipv6_getaddr={0x17, 0x16, 0x1}, 0x18}}, 0x0)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540), r2)
sendmsg$TIPC_NL_MON_GET(r7, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x38, r8, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xb2d2}, @TIPC_NLA_MON_REF={0x8}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x4)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000100)=0x1, 0xffffffffffffffff, 0x0, 0x2, 0x4}}, 0x20)
r9 = creat(&(0x7f0000000300)='./file0\x00', 0xd931d3864d39ddd8)
write$binfmt_elf32(r9, &(0x7f0000000040)=ANY=[@ANYBLOB="5402"], 0x69)
close(r9)
ioctl$BLKSSZGET(r9, 0x1268, &(0x7f0000000040))
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffe, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @loopback, 0xfffffffc}, 0xffffffffffffffff, 0x400}}, 0x48)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000080)={0x10, 0x30, 0xfa00, {0x0, 0x1, {0xa, 0x4e20, 0x7fff, @empty, 0xff}}}, 0x38)

551.782394ms ago: executing program 2 (id=6655):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000000680)=[{{&(0x7f0000000180)={0x2, 0x4e22, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="10358380d9412e11b4abc4de0493ce46f2000000000000000000000007000000"], 0x10}}], 0x1, 0x20000084)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x50400, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000004c0)={&(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000400), &(0x7f0000000400)=[0x0, 0x0], &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, 0x2, 0x5}) (async, rerun: 64)
socket$inet_udp(0x2, 0x2, 0x0) (async, rerun: 64)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000440)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r4, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r3, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r4, 0x0, <r5=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r3, 0x3ba0, &(0x7f0000000100)={0x1a, 0x7, r5, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x334e8b})
ioctl$IOMMU_IOAS_UNMAP$ALL(r3, 0x3b86, &(0x7f0000000080)={0x18, r4}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000040)={0x28, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x5)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000540)="f30fc7b6ba800f01d10f21586767660f3833f03e65660f382b6300660f38384f056766c7442400003000006766c74424020a0000006766c744240600000000670f011c2466b80500000066b9009800000f01d92e0fc7ae0080660fbca20000", 0x5f}], 0x1, 0x70, &(0x7f0000000200)=[@vmwrite={0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x81a00000c}], 0x1) (async, rerun: 32)
ioctl$KVM_RUN(r9, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl(r6, 0x8b20, &(0x7f0000000040)) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB="58000000101e01042600", @ANYRES32=0x0, @ANYBLOB="03010000418c010024001280110018016272696467655f736c617665000000000c0005800500070001000000140003006272696467655f736c6176655f300000"], 0x58}, 0x1, 0x0, 0x0, 0x40801}, 0x48000)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="85000000070000004d000000000000004500000000000000950000000000000009c9bc6631c1248c81933e3784a658d0c4baeecff9b457e5a861fd3aa4037a72ab04501be580e00b22e241ad7bea36e2e3dfad39cc7e9db6f4e02b56989ec86839d86bc24762455d4efd69399a1c0712eb2dde"], &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94) (async, rerun: 64)
r10 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async, rerun: 64)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYBLOB="010000000000000000000c000000280005801400f48004000200000000000800010000000000080001"], 0x3c}}, 0x0)
r11 = socket$inet6(0x10, 0x1, 0x7)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac141400340008"], 0x2c}}, 0x0) (async)
sendto$inet6(r11, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
write$selinux_load(r10, &(0x7f0000000040)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e75782b65bce1eaadb44c8fc46c90e9125c5f1f00e2c49861610299bbef50bc4ad78154272713930042e5986699c23a"], 0x3d)

494.451437ms ago: executing program 5 (id=6656):
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x380, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0xf5, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "ffffffffffff00000000000200000000000000000000000000008879e66485201a0015ca8374000000ff00"/55}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x5, "d5170000dce9674a36da018dff16e70b8b14c4b7a94fe18e88605aa6be1a02a326a6bce65f81ed"}]}}}}}}, 0x0)

494.023506ms ago: executing program 5 (id=6657):
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r0 = socket(0x6, 0x803, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="3c34000000000000040100c910fc02000000000000000000000000000107", @ANYRES32=r0], 0x1b0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, 0x0, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000100)=@newtaction={0xb8, 0x30, 0x9, 0x0, 0x0, {}, [{0xa4, 0x1, [@m_skbmod={0xa0, 0x1a, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0xfffb}]}, {0x6a, 0x6, "32dc4c332ae7725d3984cb6658251867f2a9f0476bd63f956d010004a6a0f2fab314e617ca71b30510efdd8b95a9abb3ab4b8c2753c71b500dbc63bf95f56d64ef08ba0bb2f20dc63095de4ba21169de75a6dc9f1ca07e3ee43cfe4a297cab14f50a56e49acc"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0xb8}}, 0x0)
sendto$inet(r2, &(0x7f00000000c0)="ab", 0xffe0, 0xc1, &(0x7f0000000280)={0x2, 0x4e22, @loopback}, 0x10)
futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x40000080, 0x80000000000d, 0x1, 0x0, 0x0, 0x2)
ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d3, &(0x7f0000000000))

388.488684ms ago: executing program 2 (id=6658):
r0 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800007, 0x11, r0, 0xa501)

387.497005ms ago: executing program 2 (id=6660):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x300, 0x20000000, 0x0, {0x0, 0x0, 0x0, 0x0, {0x4}, {0x0, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_NAT={0x8}, @TCA_CAKE_RTT={0x8, 0x7, 0x9}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
fanotify_init(0x2, 0x400) (async)
fanotify_init(0x2, 0x400)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xbb) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xbb)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r6 = io_uring_setup(0x6ddd, &(0x7f00000002c0))
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r6, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20) (async)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r6, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20)
clock_nanosleep(0x1, 0x1, &(0x7f0000000280), 0x0) (async)
clock_nanosleep(0x1, 0x1, &(0x7f0000000280), 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r6, 0xe, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000040)=[{0x0, 0xffffffff00000000}], &(0x7f0000000100), 0x7}, 0x20)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abb7000fddbdf250900020073797a30000000000800410073697600140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x40008c0}, 0x4400)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r4, 0xf504, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(0xffffffffffffffff, 0xc05c5340, &(0x7f0000000180)={0x8, 0xc, 0x8f, {0x2, 0x3}, 0xffffe298, 0x7})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r5}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r5}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0) (async)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
accept$nfc_llcp(r0, 0x0, &(0x7f0000000280))
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000001000010029bd7000ffdbdf2500000000", @ANYRES32=r10, @ANYBLOB="100804002010000024001280110001006272696467655f736c618c65000000000c0005800500194003"], 0x44}, 0x1, 0x0, 0x0, 0x404c1}, 0x40040d4) (async)
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000001000010029bd7000ffdbdf2500000000", @ANYRES32=r10, @ANYBLOB="100804002010000024001280110001006272696467655f736c618c65000000000c0005800500194003"], 0x44}, 0x1, 0x0, 0x0, 0x404c1}, 0x40040d4)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x24044040)
listen(r2, 0x3)
r11 = syz_socket_connect_nvme_tcp()
recvfrom$inet_nvme(r11, &(0x7f0000000340)=""/162, 0xa2, 0x2000, &(0x7f0000000580)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x4, 0x2, 0x2, {0xa, 0x4e24, 0x1, @loopback, 0x2}}}, 0x80)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x20008844)

287.484353ms ago: executing program 4 (id=6661):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c00028008000100", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x40}, 0x1, 0x20000}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000018c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_VFIO_SET_IOMMU(0xffffffffffffffff, 0x3b66, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)

287.164354ms ago: executing program 2 (id=6662):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x4008630a, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x48, 0x7b, &(0x7f00000005c0)={@flat=@weak_handle={0x77682a85, 0x100, 0x2}, @flat=@binder={0x73622a85, 0x18a, 0x3}, @flat=@handle={0x73682a85, 0xa, 0x1}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})

237.477323ms ago: executing program 2 (id=6663):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000000)=@qipcrtr={0x2a, 0x0, 0x1}, 0x80, &(0x7f00000001c0)=[{&(0x7f00000000c0)="f3133bc57cf8506f6c4323e1a52f747bfe0c64", 0x13}, {&(0x7f0000000100)="5e583f528aba8982660ea3bef2c22f548e19d8c2", 0x14}, {&(0x7f0000000180)="74d9", 0x2}, {&(0x7f00000002c0)="ab21bea4c24a10b699984f98eae4dde9cec11bebc3ed6de83433e9cdf740f87e76c69a75c5a22481357442b617bcd1181e965eb189a9d528344b052ab4a1b6d650311ce6bb78ee50e5de4b71843e7b38f04317fcc27bab013084645cfc01e868d5c142b1e85a895dd5b890d1edd453620403bfcb41a08e8ae07196478a3948589eb0c9c5b8a29e9ae6e34eb38b35fd7f5aaca73bac2b7b6e", 0x98}, {&(0x7f0000000440)="7b7d465eb9aef597ac740dc4373a6a5230684c778a0bbd8ee0071a394eaadbeb315ec4832a670ea9fcee298029fb9b73b4e2c68777f0a44f6401a5fb987148614f6d8450448701b9c4647d494699e597a23c2cd2c5039e6178dfe73fbdccd89347423cd8c95a4e5cffe594274c57f93b1ea3d9b9f6b3996c9801d642ff317ceb3c990887434dde52a1d09b97ab", 0x8d}], 0x5, &(0x7f0000000500)=[@txtime={{0x18, 0x1, 0x3d, 0x2abc0000000000}}, @txtime={{0x18, 0x1, 0x3d, 0xd997}}], 0x30}, 0x24008401)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x147040, 0x190)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x9, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x7, 0x10200014}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x1ff, {0x0, 0xa}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x68801, 0x124)
ioctl$KVM_SET_XCRS(r2, 0x40305829, &(0x7f0000019140)={0xa, 0x7ff, [{0x0, 0x0, 0x1}, {0x8001, 0x0, 0x1}, {0xd98, 0x0, 0x3}, {0x5, 0x0, 0x2}, {0x2, 0x0, 0xd}, {0x6, 0x0, 0x9}, {0x3b, 0x0, 0xc55}, {0x401, 0x0, 0x5}, {0x9, 0x0, 0xf}, {0x8, 0x0, 0xb}, {0xd, 0x0, 0x7fff}, {0x1, 0x0, 0xffffffffffff0001}, {0x8, 0x0, 0x9}, {0x6, 0x0, 0x4}, {0x4, 0x0, 0x2}, {0x1}]})

237.256357ms ago: executing program 4 (id=6664):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'ip6erspan0\x00', <r1=>0x0})
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=@delqdisc={0x58, 0x25, 0x2, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0x8, 0x9}, {0x8, 0x1}, {0x0, 0xb}}, [@q_dsmark={{0xb}, {0x28, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xc800}, @TCA_DSMARK_INDICES={0x6, 0x1, 0xa}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xd9e}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x2}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x25)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x7}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000700)=ANY=[@ANYRES16=r4, @ANYRESDEC=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=r1, @ANYRESOCT, @ANYRESDEC=0x0, @ANYRES16=r0])
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r6, 0x8004e500, &(0x7f0000000140)=r5)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd28, 0x8800, {0x0, 0x0, 0x0, r4, {0x8, 0x7}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x4}, @TCA_FLOWER_KEY_ENC_OPTS={0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@ipv6_getaddr={0x17, 0x16, 0x1}, 0x18}}, 0x0)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540), r2)
sendmsg$TIPC_NL_MON_GET(r7, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x38, r8, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xb2d2}, @TIPC_NLA_MON_REF={0x8}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x4)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000100)=0x1, 0xffffffffffffffff, 0x0, 0x2, 0x4}}, 0x20)
r9 = creat(&(0x7f0000000300)='./file0\x00', 0xd931d3864d39ddd8)
write$binfmt_elf32(r9, &(0x7f0000000040)=ANY=[@ANYBLOB="5402"], 0x69)
close(r9)
ioctl$BLKSSZGET(r9, 0x1268, &(0x7f0000000040))
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffe, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @loopback, 0xfffffffc}, 0xffffffffffffffff, 0x400}}, 0x48)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000080)={0x10, 0x30, 0xfa00, {0x0, 0x1, {0xa, 0x4e20, 0x7fff, @empty, 0xff}}}, 0x38)

130.802301ms ago: executing program 4 (id=6665):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000340)={@fda={0x66646185, 0x7, 0x2, 0x3}, @flat=@binder={0x73622a85, 0x18a, 0x3}, @flat=@handle={0x73682a85, 0x1, 0x1}}, &(0x7f0000000200)={0x0, 0x20, 0x38}}}], 0x0, 0x0, 0x0})
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r2, 0x810c5701, &(0x7f0000000400))

65.357294ms ago: executing program 4 (id=6666):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x100)
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0xffffffffffffffff, {0xffffffffffffffff, 0x0, 0x101, 0x0, 0x100, 0x10000000, {0x40, 0xd08, 0x0, 0x100, 0x0, 0x0, 0x7, 0x0, 0x122, 0x6000, 0x10000, 0x0, r2, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0xffffffff80000000, 0xfffc, 0x2, 0x6b, 0x2, 0x0, 0x0, 0x2, 0x933}}, 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
ioctl$TIOCGPTPEER(r3, 0x40480923, 0x200000000005)

65.079199ms ago: executing program 4 (id=6667):
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x6000) (async)
r1 = getgid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0, <r2=>0x0}, &(0x7f0000000300)=0xc) (async)
lstat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000400)={{}, {}, [{0x2, 0x0, r0}], {0x4, 0x5}, [{0x8, 0x3, r1}, {0x8, 0x2, r2}, {0x8, 0x4, r3}], {0x10, 0x6}, {0x20, 0x3}}, 0x44, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) (async)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) (async, rerun: 64)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) (rerun: 64)
readlink(&(0x7f0000000480)='./file0/../file0/../file0\x00', &(0x7f0000000680)=""/4096, 0x1000)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x12c5008, 0x0) (async, rerun: 32)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00') (rerun: 32)
r5 = open_tree(r4, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r5, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (async)
syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00')

1.207383ms ago: executing program 3 (id=6668):
r0 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800007, 0x11, r0, 0xf400)

870.814µs ago: executing program 4 (id=6669):
r0 = add_key$user(&(0x7f0000000240), &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000200)="1d", 0x1, 0xfffffffffffffffe)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_CAP_DISABLE_QUIRKS(r2, 0x4068aea3, &(0x7f0000000040)={0x74, 0x0, 0x54})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x5, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) (async)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0) (async)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$tcp_congestion(r4, &(0x7f00000001c0)='cubic\x00', 0x6) (async)
write$tcp_congestion(r4, &(0x7f00000001c0)='cubic\x00', 0x6)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000740)=[0x2], 0x0, 0x0, 0x1}}, 0x40)
r7 = add_key$user(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x0}, &(0x7f0000000740)="69bf", 0x2, 0xffffffffffffffff)
keyctl$update(0x2, r7, &(0x7f0000000800)="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", 0x801)
keyctl$dh_compute(0x17, &(0x7f0000000280)={r0, r7, r7}, 0x0, 0x0, 0x0)

0s ago: executing program 3 (id=6670):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0x20, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000140)={<r2=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000000)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r1, 0xc01864cd, &(0x7f0000000180)={&(0x7f00000000c0)=[r2, r3], 0x0, 0x2})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc03064ca, &(0x7f0000000380)={&(0x7f00000001c0), 0x0, 0x400000000009608, 0x3ffffffffffffd01, 0x6})
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfffff274}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x97, &(0x7f00000002c0)={@local, @local, @val={@void, {0x8100, 0x1}}, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x5d, 0x6, 0x1, @remote, @mcast1, {[@hopopts={0x2}], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x11, 0x0, 0x3, {[@sack_perm={0x4, 0x2}]}}, {"61314040f291dcf41c4ca71d298dcbc04f2e570bc53e1113c97aa30f40851e6989c95ca20ab0c19ac5252b66dae2cd641d26c673658a35ae531a9fefc3"}}}}}}}, 0x0)
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r5=>0x0}, &(0x7f0000000000)=0x8)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000004c80)={r5, 0xf3}, &(0x7f0000004d40)=0x8)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r4, 0x89fa, &(0x7f0000000040)={'sit0\x00', &(0x7f0000000000)={@local, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x11, 0x2}})

kernel console output (not intermixed with test programs):

1 comm=syz.5.6175
[  413.800115][   T40] kauditd_printk_skb: 23 callbacks suppressed
[  413.800126][   T40] audit: type=1400 audit(2000000364.636:1955): avc:  denied  { map } for  pid=23640 comm="syz.2.6192" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  413.811823][   T40] audit: type=1400 audit(2000000364.636:1956): avc:  denied  { execute } for  pid=23640 comm="syz.2.6192" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  413.824757][T23638] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  413.829046][T23638] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23638 comm=syz.5.6191
[  413.859434][ T6340] bridge_slave_1: left allmulticast mode
[  413.863535][ T6340] bridge_slave_1: left promiscuous mode
[  413.866008][ T6340] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.873243][ T6340] bridge_slave_0: left allmulticast mode
[  413.875583][ T6340] bridge_slave_0: left promiscuous mode
[  413.878015][ T6340] bridge0: port 1(bridge_slave_0) entered disabled state
[  414.041293][T23659] binder: 23655:23659 ioctl c0306201 0 returned -14
[  414.515765][ T6340] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  414.521789][ T6340] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  414.528046][ T6340] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[  414.533360][ T6340] bond0 (unregistering): Released all slaves
[  414.545039][ T6340] bond1 (unregistering): Released all slaves
[  414.559088][ T6340] bond2 (unregistering): Released all slaves
[  414.612520][T23663] binder: 23662:23663 ioctl c0306201 0 returned -14
[  414.665033][   T40] audit: type=1400 audit(2000000365.450:1957): avc:  denied  { mounton } for  pid=23666 comm="syz.2.6201" path="/syzcgroup/unified/syz2" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1
[  414.675285][   T40] audit: type=1400 audit(2000000365.450:1958): avc:  denied  { read } for  pid=23664 comm="syz.4.6199" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  414.681134][T23667] qnx6: unable to set blocksize
[  414.683074][   T40] audit: type=1400 audit(2000000365.450:1959): avc:  denied  { open } for  pid=23664 comm="syz.4.6199" path="/112/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  414.689552][T23667] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6201'.
[  414.692843][   T40] audit: type=1400 audit(2000000365.459:1960): avc:  denied  { ioctl } for  pid=23664 comm="syz.4.6199" path="/112/file0/file0" dev="fuse" ino=64 ioctlcmd=0x923 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  414.723019][T23665] md: superblock version 1852990827 not known
[  414.727319][T23665] md: couldn't set array info. -22
[  414.730068][T23665] netlink: 60 bytes leftover after parsing attributes in process `syz.4.6199'.
[  414.736800][T23667] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  414.740216][T23667] team0: Device ipvlan2 is already an upper device of the team interface
[  414.836169][T23675] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  414.840445][T23675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23675 comm=syz.4.6203
[  414.900363][ T6340] hsr_slave_0: left promiscuous mode
[  414.909392][ T6340] hsr_slave_1: left promiscuous mode
[  414.912470][ T6340] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  414.915518][ T6340] batman_adv: batadv0: Removing interface: batadv_slave_1
[  414.929422][T23683] fuse: Unknown parameter '0x0000000000000004'
[  414.937922][   T40] audit: type=1326 audit(2000000365.702:1961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23684 comm="syz.2.6207" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4fe838f6c9 code=0x0
[  414.955547][ T6340] veth1_macvtap: left promiscuous mode
[  414.958010][ T6340] veth0_macvtap: left promiscuous mode
[  414.960505][ T6340] veth1_vlan: left promiscuous mode
[  414.964165][ T6340] veth0_vlan: left promiscuous mode
[  415.015674][T23690] binder: 23689:23690 ioctl c0306201 0 returned -14
[  415.016893][T23692] FAULT_INJECTION: forcing a failure.
[  415.016893][T23692] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  415.024232][T23692] CPU: 3 UID: 0 PID: 23692 Comm: syz.4.6210 Not tainted syzkaller #0 PREEMPT(full) 
[  415.024254][T23692] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  415.024265][T23692] Call Trace:
[  415.024272][T23692]  <TASK>
[  415.024280][T23692]  dump_stack_lvl+0x16c/0x1f0
[  415.024312][T23692]  should_fail_ex+0x512/0x640
[  415.024337][T23692]  should_fail_alloc_page+0xe7/0x130
[  415.024361][T23692]  prepare_alloc_pages+0x3c2/0x610
[  415.024386][T23692]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  415.024408][T23692]  ? __alloc_frozen_pages_noprof+0x292/0x2470
[  415.024434][T23692]  ? look_up_lock_class+0x6b/0x150
[  415.024462][T23692]  ? register_lock_class+0x41/0x4c0
[  415.024480][T23692]  ? find_held_lock+0x2b/0x80
[  415.024503][T23692]  ? ima_match_policy+0x7ed/0x22d0
[  415.024531][T23692]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  415.024556][T23692]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  415.024585][T23692]  ? __lock_acquire+0x622/0x1c90
[  415.024622][T23692]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  415.024647][T23692]  ? policy_nodemask+0xea/0x4e0
[  415.024670][T23692]  alloc_pages_mpol+0x1fb/0x550
[  415.024706][T23692]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  415.024726][T23692]  ? do_raw_spin_lock+0x12c/0x2b0
[  415.024744][T23692]  ? find_held_lock+0x2b/0x80
[  415.024770][T23692]  alloc_pages_noprof+0x131/0x390
[  415.024793][T23692]  __pmd_alloc+0x3b/0x8b0
[  415.024812][T23692]  ? __pud_alloc+0x51f/0x6b0
[  415.024832][T23692]  __handle_mm_fault+0xada/0x2aa0
[  415.024860][T23692]  ? mt_find+0x3e2/0xa20
[  415.024878][T23692]  ? __pfx___handle_mm_fault+0x10/0x10
[  415.024900][T23692]  ? __pfx_mt_find+0x10/0x10
[  415.024932][T23692]  ? find_vma+0xbf/0x140
[  415.024950][T23692]  ? __pfx_find_vma+0x10/0x10
[  415.024970][T23692]  handle_mm_fault+0x589/0xd10
[  415.024996][T23692]  ? __pkru_allows_pkey+0x11/0xb0
[  415.025016][T23692]  do_user_addr_fault+0x7a6/0x1370
[  415.025038][T23692]  ? rcu_is_watching+0x12/0xc0
[  415.025064][T23692]  exc_page_fault+0x64/0xc0
[  415.025096][T23692]  asm_exc_page_fault+0x26/0x30
[  415.025114][T23692] RIP: 0010:_copy_from_user+0x93/0xd0
[  415.025136][T23692] Code: 42 18 fd 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 39 d7 80 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 f5 3d
[  415.025152][T23692] RSP: 0018:ffffc9000da1fb58 EFLAGS: 00050246
[  415.025167][T23692] RAX: 0000000000000001 RBX: 0000200000000100 RCX: 0000000000000018
[  415.025179][T23692] RDX: fffff52001b43f83 RSI: 0000200000000100 RDI: ffffc9000da1fc00
[  415.025190][T23692] RBP: 0000000000000018 R08: 0000000000000001 R09: fffff52001b43f82
[  415.025200][T23692] R10: ffffc9000da1fc17 R11: 0000000000000001 R12: 0000000000000000
[  415.025211][T23692] R13: ffffc9000da1fc00 R14: 00000000800452d3 R15: 0000200000000100
[  415.025345][T23692]  ? _copy_from_user+0x87/0xd0
[  415.025367][T23692]  rfcomm_dev_ioctl+0x330/0x1c90
[  415.025391][T23692]  ? __pfx_bt_sock_ioctl+0x10/0x10
[  415.025416][T23692]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  415.025442][T23692]  ? tomoyo_path_number_perm+0x18d/0x580
[  415.025475][T23692]  rfcomm_sock_ioctl+0xaa/0xd0
[  415.025504][T23692]  sock_do_ioctl+0x118/0x280
[  415.025534][T23692]  ? __pfx_sock_do_ioctl+0x10/0x10
[  415.025568][T23692]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  415.025594][T23692]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  415.025620][T23692]  sock_ioctl+0x227/0x6b0
[  415.025639][T23692]  ? __pfx_sock_ioctl+0x10/0x10
[  415.025654][T23692]  ? hook_file_ioctl_common+0x145/0x410
[  415.025683][T23692]  ? selinux_file_ioctl+0x180/0x270
[  415.025701][T23692]  ? selinux_file_ioctl+0xb4/0x270
[  415.025722][T23692]  ? __pfx_sock_ioctl+0x10/0x10
[  415.025741][T23692]  __x64_sys_ioctl+0x18e/0x210
[  415.025767][T23692]  do_syscall_64+0xcd/0xfa0
[  415.025795][T23692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.025811][T23692] RIP: 0033:0x7fb08958f6c9
[  415.025826][T23692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.025842][T23692] RSP: 002b:00007fb08a3fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  415.025859][T23692] RAX: ffffffffffffffda RBX: 00007fb0897e5fa0 RCX: 00007fb08958f6c9
[  415.025870][T23692] RDX: 0000200000000100 RSI: 00000000800452d3 RDI: 0000000000000004
[  415.025879][T23692] RBP: 00007fb08a3fa090 R08: 0000000000000000 R09: 0000000000000000
[  415.025889][T23692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  415.025900][T23692] R13: 00007fb0897e6038 R14: 00007fb0897e5fa0 R15: 00007fff0ed0c038
[  415.025926][T23692]  </TASK>
[  415.189773][    C3] vkms_vblank_simulate: vblank timer overrun
[  415.955082][ T6340] team0 (unregistering): Port device team_slave_0 removed
[  416.519200][T23695] team0: Device ipvlan2 is already an upper device of the team interface
[  416.657408][   T40] audit: type=1326 audit(2000000367.310:1962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23697 comm="syz.4.6220" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb08958f6c9 code=0x0
[  416.659337][T23701] FAULT_INJECTION: forcing a failure.
[  416.659337][T23701] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  416.669782][T23701] CPU: 0 UID: 0 PID: 23701 Comm: syz.2.6213 Not tainted syzkaller #0 PREEMPT(full) 
[  416.669803][T23701] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  416.669813][T23701] Call Trace:
[  416.669819][T23701]  <TASK>
[  416.669825][T23701]  dump_stack_lvl+0x16c/0x1f0
[  416.669859][T23701]  should_fail_ex+0x512/0x640
[  416.669897][T23701]  _copy_from_user+0x2e/0xd0
[  416.669930][T23701]  binder_ioctl+0x57a/0x73b0
[  416.669969][T23701]  ? tomoyo_path_number_perm+0x18d/0x580
[  416.670002][T23701]  ? __pfx_binder_ioctl+0x10/0x10
[  416.670028][T23701]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  416.670054][T23701]  ? do_vfs_ioctl+0x128/0x14f0
[  416.670078][T23701]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  416.670100][T23701]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  416.670127][T23701]  ? hook_file_ioctl_common+0x145/0x410
[  416.670158][T23701]  ? selinux_file_ioctl+0x180/0x270
[  416.670177][T23701]  ? selinux_file_ioctl+0xb4/0x270
[  416.670197][T23701]  ? __pfx_binder_ioctl+0x10/0x10
[  416.670224][T23701]  __x64_sys_ioctl+0x18e/0x210
[  416.670247][T23701]  do_syscall_64+0xcd/0xfa0
[  416.670275][T23701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  416.670292][T23701] RIP: 0033:0x7f4fe838f6c9
[  416.670307][T23701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  416.670324][T23701] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  416.670339][T23701] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  416.670350][T23701] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  416.670361][T23701] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  416.670372][T23701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  416.670383][T23701] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  416.670408][T23701]  </TASK>
[  416.670461][T23701] binder: 23699:23701 ioctl c0306201 200000000300 returned -14
[  416.775084][T23702] netlink: 60 bytes leftover after parsing attributes in process `syz.5.6212'.
[  416.813386][T23698] md: superblock version 1852990827 not known
[  416.819973][T23698] md: couldn't set array info. -22
[  416.830237][T23705] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  416.834012][T23705] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23705 comm=syz.2.6214
[  416.973011][T23717] binder: 23716:23717 ioctl c0306201 0 returned -14
[  417.055792][T23170] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  417.057571][   T40] audit: type=1800 audit(2000000367.675:1963): pid=23721 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.5.6222" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  417.156042][T23725] binder: 23724:23725 unknown command 0
[  417.158334][T23725] binder: 23724:23725 ioctl c0306201 200000000300 returned -22
[  417.214695][T23728] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  417.218065][T23728] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23728 comm=syz.3.6225
[  417.261369][T23737] netlink: 72 bytes leftover after parsing attributes in process `syz.2.6230'.
[  417.358970][T23738] md: superblock version 1852990827 not known
[  417.361613][T23738] md: couldn't set array info. -22
[  417.365386][T23738] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6228'.
[  417.416022][   T40] audit: type=1400 audit(2000000368.021:1964): avc:  denied  { ioctl } for  pid=23746 comm="syz.3.6233" path="socket:[107178]" dev="sockfs" ino=107178 ioctlcmd=0x52d3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  417.521325][T23753] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  417.526712][T23753] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23753 comm=syz.5.6236
[  417.533888][T23762] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6239'.
[  417.619021][T23773] binder: 23772:23773 ioctl c0306201 0 returned -14
[  417.723032][T23769] md: superblock version 1852990827 not known
[  417.725786][T23769] md: couldn't set array info. -22
[  417.774529][T23786] binder: BINDER_SET_CONTEXT_MGR already set
[  417.776610][T23782] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  417.777196][T23786] binder: 23785:23786 ioctl 4018620d 200000000100 returned -16
[  417.780604][T23782] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23782 comm=syz.3.6248
[  417.784376][T23786] binder: BINDER_SET_CONTEXT_MGR already set
[  417.788642][T23786] binder: 23785:23786 ioctl 4018620d 2000000002c0 returned -16
[  417.793060][T23786] binder: 23785:23786 ioctl c0306201 0 returned -14
[  417.834253][T23792] binder: BINDER_SET_CONTEXT_MGR already set
[  417.836915][T23792] binder: 23791:23792 ioctl 4018620d 200000000100 returned -16
[  417.842258][T23792] binder: BINDER_SET_CONTEXT_MGR already set
[  417.844925][T23792] binder: 23791:23792 ioctl 4018620d 2000000002c0 returned -16
[  417.875377][T23794] FAULT_INJECTION: forcing a failure.
[  417.875377][T23794] name failslab, interval 1, probability 0, space 0, times 0
[  417.879572][T23794] CPU: 0 UID: 0 PID: 23794 Comm: syz.5.6253 Not tainted syzkaller #0 PREEMPT(full) 
[  417.879587][T23794] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  417.879594][T23794] Call Trace:
[  417.879598][T23794]  <TASK>
[  417.879603][T23794]  dump_stack_lvl+0x16c/0x1f0
[  417.879624][T23794]  should_fail_ex+0x512/0x640
[  417.879637][T23794]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  417.879654][T23794]  should_failslab+0xc2/0x120
[  417.879667][T23794]  kmem_cache_alloc_noprof+0x75/0x6e0
[  417.879683][T23794]  ? __pmd_alloc+0xbf/0x8b0
[  417.879698][T23794]  ? __pmd_alloc+0xbf/0x8b0
[  417.879709][T23794]  __pmd_alloc+0xbf/0x8b0
[  417.879720][T23794]  ? __pud_alloc+0x51f/0x6b0
[  417.879733][T23794]  __handle_mm_fault+0xada/0x2aa0
[  417.879749][T23794]  ? mt_find+0x3e2/0xa20
[  417.879760][T23794]  ? __pfx___handle_mm_fault+0x10/0x10
[  417.879807][T23794]  ? __pfx_mt_find+0x10/0x10
[  417.879826][T23794]  ? find_vma+0xbf/0x140
[  417.879837][T23794]  ? __pfx_find_vma+0x10/0x10
[  417.879848][T23794]  handle_mm_fault+0x589/0xd10
[  417.879863][T23794]  ? __pkru_allows_pkey+0x11/0xb0
[  417.879875][T23794]  do_user_addr_fault+0x7a6/0x1370
[  417.879913][T23794]  ? rcu_is_watching+0x12/0xc0
[  417.879929][T23794]  exc_page_fault+0x64/0xc0
[  417.879945][T23794]  asm_exc_page_fault+0x26/0x30
[  417.879955][T23794] RIP: 0010:_copy_from_user+0x93/0xd0
[  417.879969][T23794] Code: 42 18 fd 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 39 d7 80 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 f5 3d
[  417.879979][T23794] RSP: 0018:ffffc9000346fb58 EFLAGS: 00050246
[  417.879989][T23794] RAX: 0000000000000001 RBX: 0000200000000100 RCX: 0000000000000018
[  417.879996][T23794] RDX: fffff5200068df83 RSI: 0000200000000100 RDI: ffffc9000346fc00
[  417.880002][T23794] RBP: 0000000000000018 R08: 0000000000000001 R09: fffff5200068df82
[  417.880008][T23794] R10: ffffc9000346fc17 R11: 0000000000000001 R12: 0000000000000000
[  417.880015][T23794] R13: ffffc9000346fc00 R14: 00000000800452d3 R15: 0000200000000100
[  417.880028][T23794]  ? _copy_from_user+0x87/0xd0
[  417.880041][T23794]  rfcomm_dev_ioctl+0x330/0x1c90
[  417.880055][T23794]  ? __pfx_bt_sock_ioctl+0x10/0x10
[  417.880075][T23794]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  417.880090][T23794]  ? tomoyo_path_number_perm+0x18d/0x580
[  417.880110][T23794]  rfcomm_sock_ioctl+0xaa/0xd0
[  417.880126][T23794]  sock_do_ioctl+0x118/0x280
[  417.880144][T23794]  ? __pfx_sock_do_ioctl+0x10/0x10
[  417.880164][T23794]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  417.880180][T23794]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  417.880195][T23794]  sock_ioctl+0x227/0x6b0
[  417.880206][T23794]  ? __pfx_sock_ioctl+0x10/0x10
[  417.880215][T23794]  ? hook_file_ioctl_common+0x145/0x410
[  417.880233][T23794]  ? selinux_file_ioctl+0x180/0x270
[  417.880243][T23794]  ? selinux_file_ioctl+0xb4/0x270
[  417.880255][T23794]  ? __pfx_sock_ioctl+0x10/0x10
[  417.880266][T23794]  __x64_sys_ioctl+0x18e/0x210
[  417.880281][T23794]  do_syscall_64+0xcd/0xfa0
[  417.880298][T23794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.880309][T23794] RIP: 0033:0x7f8d0818f6c9
[  417.880317][T23794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.880327][T23794] RSP: 002b:00007f8d09089038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  417.880363][T23794] RAX: ffffffffffffffda RBX: 00007f8d083e5fa0 RCX: 00007f8d0818f6c9
[  417.880424][T23794] RDX: 0000200000000100 RSI: 00000000800452d3 RDI: 0000000000000004
[  417.880430][T23794] RBP: 00007f8d09089090 R08: 0000000000000000 R09: 0000000000000000
[  417.880436][T23794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.880442][T23794] R13: 00007f8d083e6038 R14: 00007f8d083e5fa0 R15: 00007ffef8019f28
[  417.880457][T23794]  </TASK>
[  418.055408][T23804] FAULT_INJECTION: forcing a failure.
[  418.055408][T23804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  418.059422][T23804] CPU: 1 UID: 0 PID: 23804 Comm: syz.5.6256 Not tainted syzkaller #0 PREEMPT(full) 
[  418.059443][T23804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  418.059453][T23804] Call Trace:
[  418.059460][T23804]  <TASK>
[  418.059467][T23804]  dump_stack_lvl+0x16c/0x1f0
[  418.059496][T23804]  should_fail_ex+0x512/0x640
[  418.059520][T23804]  _copy_from_user+0x2e/0xd0
[  418.059541][T23804]  binder_thread_write+0xa5c/0x4e70
[  418.059577][T23804]  ? __pfx_binder_thread_write+0x10/0x10
[  418.059602][T23804]  ? binder_debug+0xde/0x1a0
[  418.059626][T23804]  ? binder_debug+0xde/0x1a0
[  418.059642][T23804]  ? __pfx_binder_debug+0x10/0x10
[  418.059656][T23804]  ? find_held_lock+0x2b/0x80
[  418.059676][T23804]  binder_ioctl+0x26db/0x73b0
[  418.059697][T23804]  ? tomoyo_path_number_perm+0x18d/0x580
[  418.059719][T23804]  ? __pfx_binder_ioctl+0x10/0x10
[  418.059736][T23804]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  418.059751][T23804]  ? do_vfs_ioctl+0x128/0x14f0
[  418.059766][T23804]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  418.059781][T23804]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  418.059799][T23804]  ? hook_file_ioctl_common+0x145/0x410
[  418.059820][T23804]  ? selinux_file_ioctl+0x180/0x270
[  418.059831][T23804]  ? selinux_file_ioctl+0xb4/0x270
[  418.059842][T23804]  ? __pfx_binder_ioctl+0x10/0x10
[  418.059858][T23804]  __x64_sys_ioctl+0x18e/0x210
[  418.059874][T23804]  do_syscall_64+0xcd/0xfa0
[  418.059910][T23804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.059921][T23804] RIP: 0033:0x7f8d0818f6c9
[  418.059930][T23804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  418.059940][T23804] RSP: 002b:00007f8d09089038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  418.059950][T23804] RAX: ffffffffffffffda RBX: 00007f8d083e5fa0 RCX: 00007f8d0818f6c9
[  418.059957][T23804] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  418.059963][T23804] RBP: 00007f8d09089090 R08: 0000000000000000 R09: 0000000000000000
[  418.059969][T23804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  418.059975][T23804] R13: 00007f8d083e6038 R14: 00007f8d083e5fa0 R15: 00007ffef8019f28
[  418.059988][T23804]  </TASK>
[  418.059995][T23804] binder: 23803:23804 ioctl c0306201 200000000300 returned -14
[  418.356955][T23811] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  418.360731][T23811] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23811 comm=syz.4.6258
[  419.459360][T23817] binder: 23816:23817 ioctl c0306201 0 returned -14
[  419.544629][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  419.544651][   T40] audit: type=1326 audit(2000000370.013:1966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23828 comm="syz.4.6267" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb08958f6c9 code=0x0
[  419.612426][T23833] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  419.616683][T23833] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23833 comm=syz.3.6269
[  419.637159][T23837] binder: 23836:23837 ioctl c0306201 0 returned -14
[  419.867422][   T40] audit: type=1400 audit(2000000370.312:1967): avc:  denied  { ioctl } for  pid=23845 comm="syz.3.6274" path="/dev/usbmon2" dev="devtmpfs" ino=743 ioctlcmd=0x9205 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  420.835114][   T40] audit: type=1400 audit(2000000371.219:1968): avc:  denied  { write } for  pid=23850 comm="syz.2.6275" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  420.890331][T23847] netlink: 'syz.3.6274': attribute type 12 has an invalid length.
[  420.922162][T23855] binder: BINDER_SET_CONTEXT_MGR already set
[  420.924664][T23855] binder: 23854:23855 ioctl 4018620d 200000000100 returned -16
[  420.929811][T23855] binder: BINDER_SET_CONTEXT_MGR already set
[  420.932465][T23855] binder: 23854:23855 ioctl 4018620d 2000000002c0 returned -16
[  421.030985][T23862] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  421.033919][T23862] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23862 comm=syz.4.6280
[  421.061452][   T40] audit: type=1326 audit(2000000371.434:1969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23875 comm="syz.4.6286" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb08958f6c9 code=0x0
[  421.199833][T23878] CIFS: iocharset name too long
[  421.375206][   T40] audit: type=1400 audit(2000000371.724:1970): avc:  denied  { unlink } for  pid=23888 comm="syz.2.6291" name="#3d" dev="tmpfs" ino=1758 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  421.384001][   T40] audit: type=1400 audit(2000000371.724:1971): avc:  denied  { mount } for  pid=23888 comm="syz.2.6291" name="/" dev="overlay" ino=1753 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  421.415720][T23895] FAULT_INJECTION: forcing a failure.
[  421.415720][T23895] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  421.420958][T23895] CPU: 1 UID: 0 PID: 23895 Comm: syz.2.6292 Not tainted syzkaller #0 PREEMPT(full) 
[  421.420974][T23895] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  421.420981][T23895] Call Trace:
[  421.420985][T23895]  <TASK>
[  421.420990][T23895]  dump_stack_lvl+0x16c/0x1f0
[  421.421011][T23895]  should_fail_ex+0x512/0x640
[  421.421026][T23895]  should_fail_alloc_page+0xe7/0x130
[  421.421040][T23895]  prepare_alloc_pages+0x3c2/0x610
[  421.421055][T23895]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  421.421071][T23895]  ? arch_stack_walk+0xa6/0x100
[  421.421089][T23895]  ? stack_trace_save+0x8e/0xc0
[  421.421106][T23895]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  421.421122][T23895]  ? stack_depot_save_flags+0x29/0x9c0
[  421.421139][T23895]  ? __kasan_slab_alloc+0x89/0x90
[  421.421149][T23895]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  421.421164][T23895]  ? __pmd_alloc+0xbf/0x8b0
[  421.421175][T23895]  ? __handle_mm_fault+0xada/0x2aa0
[  421.421189][T23895]  ? handle_mm_fault+0x589/0xd10
[  421.421202][T23895]  ? do_user_addr_fault+0x7a6/0x1370
[  421.421212][T23895]  ? exc_page_fault+0x64/0xc0
[  421.421227][T23895]  ? asm_exc_page_fault+0x26/0x30
[  421.421237][T23895]  ? _copy_from_user+0x93/0xd0
[  421.421249][T23895]  ? rfcomm_dev_ioctl+0x330/0x1c90
[  421.421260][T23895]  ? rfcomm_sock_ioctl+0xaa/0xd0
[  421.421275][T23895]  ? sock_do_ioctl+0x118/0x280
[  421.421291][T23895]  ? sock_ioctl+0x227/0x6b0
[  421.421300][T23895]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  421.421315][T23895]  ? policy_nodemask+0xea/0x4e0
[  421.421328][T23895]  alloc_pages_mpol+0x1fb/0x550
[  421.421341][T23895]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  421.421357][T23895]  alloc_pages_noprof+0x131/0x390
[  421.421370][T23895]  pte_alloc_one+0x1e/0x350
[  421.421383][T23895]  __pte_alloc+0x6d/0x380
[  421.421393][T23895]  ? __pfx___pte_alloc+0x10/0x10
[  421.421405][T23895]  ? do_raw_spin_lock+0x12c/0x2b0
[  421.421419][T23895]  do_pte_missing+0x282c/0x3ba0
[  421.421434][T23895]  ? do_raw_spin_unlock+0x172/0x230
[  421.421446][T23895]  ? _raw_spin_unlock+0x28/0x50
[  421.421460][T23895]  ? __pmd_alloc+0x64f/0x8b0
[  421.421473][T23895]  __handle_mm_fault+0x1556/0x2aa0
[  421.421490][T23895]  ? mt_find+0x3e2/0xa20
[  421.421501][T23895]  ? __pfx___handle_mm_fault+0x10/0x10
[  421.421514][T23895]  ? __pfx_mt_find+0x10/0x10
[  421.421531][T23895]  ? find_vma+0xbf/0x140
[  421.421541][T23895]  ? __pfx_find_vma+0x10/0x10
[  421.421553][T23895]  handle_mm_fault+0x589/0xd10
[  421.421568][T23895]  ? __pkru_allows_pkey+0x11/0xb0
[  421.421579][T23895]  do_user_addr_fault+0x7a6/0x1370
[  421.421591][T23895]  ? rcu_is_watching+0x12/0xc0
[  421.421607][T23895]  exc_page_fault+0x64/0xc0
[  421.421622][T23895]  asm_exc_page_fault+0x26/0x30
[  421.421632][T23895] RIP: 0010:_copy_from_user+0x93/0xd0
[  421.421645][T23895] Code: 42 18 fd 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 39 d7 80 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 f5 3d
[  421.421655][T23895] RSP: 0018:ffffc9000da2fb58 EFLAGS: 00050246
[  421.421665][T23895] RAX: 0000000000000001 RBX: 0000200000000100 RCX: 0000000000000018
[  421.421671][T23895] RDX: fffff52001b45f83 RSI: 0000200000000100 RDI: ffffc9000da2fc00
[  421.421678][T23895] RBP: 0000000000000018 R08: 0000000000000001 R09: fffff52001b45f82
[  421.421684][T23895] R10: ffffc9000da2fc17 R11: 0000000000000001 R12: 0000000000000000
[  421.421691][T23895] R13: ffffc9000da2fc00 R14: 00000000800452d3 R15: 0000200000000100
[  421.421704][T23895]  ? _copy_from_user+0x87/0xd0
[  421.421717][T23895]  rfcomm_dev_ioctl+0x330/0x1c90
[  421.421730][T23895]  ? __pfx_bt_sock_ioctl+0x10/0x10
[  421.421745][T23895]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  421.421760][T23895]  ? tomoyo_path_number_perm+0x18d/0x580
[  421.421780][T23895]  rfcomm_sock_ioctl+0xaa/0xd0
[  421.421796][T23895]  sock_do_ioctl+0x118/0x280
[  421.421813][T23895]  ? __pfx_sock_do_ioctl+0x10/0x10
[  421.421833][T23895]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  421.421853][T23895]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  421.421868][T23895]  sock_ioctl+0x227/0x6b0
[  421.421879][T23895]  ? __pfx_sock_ioctl+0x10/0x10
[  421.421889][T23895]  ? hook_file_ioctl_common+0x145/0x410
[  421.421907][T23895]  ? selinux_file_ioctl+0x180/0x270
[  421.421917][T23895]  ? selinux_file_ioctl+0xb4/0x270
[  421.421929][T23895]  ? __pfx_sock_ioctl+0x10/0x10
[  421.421940][T23895]  __x64_sys_ioctl+0x18e/0x210
[  421.421956][T23895]  do_syscall_64+0xcd/0xfa0
[  421.421973][T23895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.421983][T23895] RIP: 0033:0x7f4fe838f6c9
[  421.422004][T23895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.422014][T23895] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  421.422024][T23895] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  421.422030][T23895] RDX: 0000200000000100 RSI: 00000000800452d3 RDI: 0000000000000004
[  421.422036][T23895] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  421.422043][T23895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.422048][T23895] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  421.422063][T23895]  </TASK>
[  421.633450][T23897] FAULT_INJECTION: forcing a failure.
[  421.633450][T23897] name failslab, interval 1, probability 0, space 0, times 0
[  421.637516][T23897] CPU: 2 UID: 0 PID: 23897 Comm: syz.2.6293 Not tainted syzkaller #0 PREEMPT(full) 
[  421.637531][T23897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  421.637538][T23897] Call Trace:
[  421.637542][T23897]  <TASK>
[  421.637546][T23897]  dump_stack_lvl+0x16c/0x1f0
[  421.637566][T23897]  should_fail_ex+0x512/0x640
[  421.637579][T23897]  ? __kmalloc_cache_noprof+0x5f/0x780
[  421.637596][T23897]  should_failslab+0xc2/0x120
[  421.637608][T23897]  __kmalloc_cache_noprof+0x72/0x780
[  421.637623][T23897]  ? binder_transaction+0x6d8/0x9d10
[  421.637642][T23897]  ? binder_transaction+0x6d8/0x9d10
[  421.637657][T23897]  ? _raw_spin_unlock+0x28/0x50
[  421.637671][T23897]  binder_transaction+0x6d8/0x9d10
[  421.637694][T23897]  ? __lock_acquire+0x622/0x1c90
[  421.637714][T23897]  ? __lock_acquire+0x622/0x1c90
[  421.637731][T23897]  ? __pfx_binder_transaction+0x10/0x10
[  421.637752][T23897]  ? find_held_lock+0x2b/0x80
[  421.637765][T23897]  ? is_bpf_text_address+0x8a/0x1a0
[  421.637780][T23897]  ? __lock_acquire+0xb8a/0x1c90
[  421.637802][T23897]  ? find_held_lock+0x2b/0x80
[  421.637814][T23897]  ? __might_fault+0xe3/0x190
[  421.637830][T23897]  ? __might_fault+0xe3/0x190
[  421.637844][T23897]  ? __might_fault+0x13b/0x190
[  421.637864][T23897]  binder_thread_write+0xaae/0x4e70
[  421.637886][T23897]  ? __pfx_binder_thread_write+0x10/0x10
[  421.637902][T23897]  ? binder_debug+0xde/0x1a0
[  421.637918][T23897]  ? binder_debug+0xde/0x1a0
[  421.637931][T23897]  ? __pfx_binder_debug+0x10/0x10
[  421.637945][T23897]  ? find_held_lock+0x2b/0x80
[  421.637964][T23897]  binder_ioctl+0x26db/0x73b0
[  421.637985][T23897]  ? tomoyo_path_number_perm+0x18d/0x580
[  421.638006][T23897]  ? __pfx_binder_ioctl+0x10/0x10
[  421.638023][T23897]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  421.638038][T23897]  ? do_vfs_ioctl+0x128/0x14f0
[  421.638053][T23897]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  421.638068][T23897]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  421.638084][T23897]  ? hook_file_ioctl_common+0x145/0x410
[  421.638107][T23897]  ? selinux_file_ioctl+0x180/0x270
[  421.638118][T23897]  ? selinux_file_ioctl+0xb4/0x270
[  421.638130][T23897]  ? __pfx_binder_ioctl+0x10/0x10
[  421.638146][T23897]  __x64_sys_ioctl+0x18e/0x210
[  421.638162][T23897]  do_syscall_64+0xcd/0xfa0
[  421.638179][T23897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.638190][T23897] RIP: 0033:0x7f4fe838f6c9
[  421.638199][T23897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.638209][T23897] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  421.638219][T23897] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  421.638226][T23897] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  421.638232][T23897] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  421.638238][T23897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.638245][T23897] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  421.638258][T23897]  </TASK>
[  421.922453][T23906] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  422.742102][T23922] binder: BINDER_SET_CONTEXT_MGR already set
[  422.744107][T23922] binder: 23920:23922 ioctl 4018620d 200000000100 returned -16
[  422.747792][T23922] binder: BINDER_SET_CONTEXT_MGR already set
[  422.750774][T23922] binder: 23920:23922 ioctl 4018620d 2000000002c0 returned -16
[  422.795470][   T40] audit: type=1326 audit(2000000373.051:1972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23928 comm="syz.5.6306" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8d0818f6c9 code=0x0
[  422.809656][T23926] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  422.844493][   T40] audit: type=1400 audit(2000000373.089:1973): avc:  denied  { setopt } for  pid=23931 comm="syz.4.6307" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  424.247607][T23952] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  424.253099][T23960] binder: 23959:23960 ioctl c004562f 2000000001c0 returned -22
[  424.314950][   T40] audit: type=1326 audit(2000000374.472:1974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23964 comm="syz.4.6320" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb08958f6c9 code=0x0
[  424.315447][    T9] IPVS: starting estimator thread 0...
[  424.417353][T23967] IPVS: using max 26 ests per chain, 62400 per kthread
[  424.481233][   T40] audit: type=1400 audit(2000000374.622:1975): avc:  denied  { append } for  pid=23979 comm="syz.2.6326" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  424.526990][T23980] binder: 23979:23980 ioctl c0306201 0 returned -14
[  424.530057][T23980] binder: 23979:23980 ioctl 3b80 200000000300 returned -22
[  424.659833][T23985] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  424.717306][T23986] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23986 comm=syz.2.6327
[  425.684737][T23997] FAULT_INJECTION: forcing a failure.
[  425.684737][T23997] name failslab, interval 1, probability 0, space 0, times 0
[  425.688644][T23997] CPU: 3 UID: 0 PID: 23997 Comm: syz.2.6332 Not tainted syzkaller #0 PREEMPT(full) 
[  425.688659][T23997] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  425.688665][T23997] Call Trace:
[  425.688670][T23997]  <TASK>
[  425.688674][T23997]  dump_stack_lvl+0x16c/0x1f0
[  425.688695][T23997]  should_fail_ex+0x512/0x640
[  425.688708][T23997]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  425.688726][T23997]  should_failslab+0xc2/0x120
[  425.688739][T23997]  kmem_cache_alloc_noprof+0x75/0x6e0
[  425.688755][T23997]  ? ptlock_alloc+0x1f/0x70
[  425.688771][T23997]  ? ptlock_alloc+0x1f/0x70
[  425.688784][T23997]  ptlock_alloc+0x1f/0x70
[  425.688797][T23997]  pte_alloc_one+0x84/0x350
[  425.688811][T23997]  __pte_alloc+0x6d/0x380
[  425.688821][T23997]  ? __pfx___pte_alloc+0x10/0x10
[  425.688833][T23997]  ? do_raw_spin_lock+0x12c/0x2b0
[  425.688847][T23997]  do_pte_missing+0x282c/0x3ba0
[  425.688862][T23997]  ? do_raw_spin_unlock+0x172/0x230
[  425.688874][T23997]  ? _raw_spin_unlock+0x28/0x50
[  425.688888][T23997]  ? __pmd_alloc+0x64f/0x8b0
[  425.688901][T23997]  __handle_mm_fault+0x1556/0x2aa0
[  425.688917][T23997]  ? mt_find+0x3e2/0xa20
[  425.688928][T23997]  ? __pfx___handle_mm_fault+0x10/0x10
[  425.688941][T23997]  ? __pfx_mt_find+0x10/0x10
[  425.688958][T23997]  ? find_vma+0xbf/0x140
[  425.688969][T23997]  ? __pfx_find_vma+0x10/0x10
[  425.688980][T23997]  handle_mm_fault+0x589/0xd10
[  425.688996][T23997]  ? __pkru_allows_pkey+0x11/0xb0
[  425.689007][T23997]  do_user_addr_fault+0x7a6/0x1370
[  425.689019][T23997]  ? rcu_is_watching+0x12/0xc0
[  425.689035][T23997]  exc_page_fault+0x64/0xc0
[  425.689051][T23997]  asm_exc_page_fault+0x26/0x30
[  425.689065][T23997] RIP: 0010:_copy_from_user+0x93/0xd0
[  425.689088][T23997] Code: 42 18 fd 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 39 d7 80 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 f5 3d
[  425.689102][T23997] RSP: 0018:ffffc90004837b58 EFLAGS: 00050246
[  425.689116][T23997] RAX: 0000000000000001 RBX: 0000200000000100 RCX: 0000000000000018
[  425.689124][T23997] RDX: fffff52000906f83 RSI: 0000200000000100 RDI: ffffc90004837c00
[  425.689130][T23997] RBP: 0000000000000018 R08: 0000000000000001 R09: fffff52000906f82
[  425.689136][T23997] R10: ffffc90004837c17 R11: 0000000000000001 R12: 0000000000000000
[  425.689143][T23997] R13: ffffc90004837c00 R14: 00000000800452d3 R15: 0000200000000100
[  425.689157][T23997]  ? _copy_from_user+0x87/0xd0
[  425.689169][T23997]  rfcomm_dev_ioctl+0x330/0x1c90
[  425.689183][T23997]  ? __pfx_bt_sock_ioctl+0x10/0x10
[  425.689198][T23997]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  425.689214][T23997]  ? tomoyo_path_number_perm+0x18d/0x580
[  425.689246][T23997]  rfcomm_sock_ioctl+0xaa/0xd0
[  425.689264][T23997]  sock_do_ioctl+0x118/0x280
[  425.689281][T23997]  ? __pfx_sock_do_ioctl+0x10/0x10
[  425.689301][T23997]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  425.689317][T23997]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  425.689332][T23997]  sock_ioctl+0x227/0x6b0
[  425.689343][T23997]  ? __pfx_sock_ioctl+0x10/0x10
[  425.689352][T23997]  ? hook_file_ioctl_common+0x145/0x410
[  425.689371][T23997]  ? selinux_file_ioctl+0x180/0x270
[  425.689382][T23997]  ? selinux_file_ioctl+0xb4/0x270
[  425.689394][T23997]  ? __pfx_sock_ioctl+0x10/0x10
[  425.689405][T23997]  __x64_sys_ioctl+0x18e/0x210
[  425.689420][T23997]  do_syscall_64+0xcd/0xfa0
[  425.689437][T23997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.689447][T23997] RIP: 0033:0x7f4fe838f6c9
[  425.689456][T23997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.689466][T23997] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  425.689476][T23997] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  425.689482][T23997] RDX: 0000200000000100 RSI: 00000000800452d3 RDI: 0000000000000004
[  425.689488][T23997] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  425.689494][T23997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.689500][T23997] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  425.689514][T23997]  </TASK>
[  425.867725][T24005] FAULT_INJECTION: forcing a failure.
[  425.867725][T24005] name failslab, interval 1, probability 0, space 0, times 0
[  425.871716][T24005] CPU: 2 UID: 0 PID: 24005 Comm: syz.2.6336 Not tainted syzkaller #0 PREEMPT(full) 
[  425.871730][T24005] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  425.871737][T24005] Call Trace:
[  425.871751][T24005]  <TASK>
[  425.871757][T24005]  dump_stack_lvl+0x16c/0x1f0
[  425.871776][T24005]  should_fail_ex+0x512/0x640
[  425.871790][T24005]  ? __kmalloc_cache_noprof+0x5f/0x780
[  425.871828][T24005]  should_failslab+0xc2/0x120
[  425.871846][T24005]  __kmalloc_cache_noprof+0x72/0x780
[  425.871864][T24005]  ? binder_transaction+0x19c1/0x9d10
[  425.871883][T24005]  ? binder_transaction+0x19c1/0x9d10
[  425.871898][T24005]  ? _raw_spin_unlock+0x28/0x50
[  425.871912][T24005]  binder_transaction+0x19c1/0x9d10
[  425.871940][T24005]  ? __lock_acquire+0x622/0x1c90
[  425.871960][T24005]  ? __pfx_binder_transaction+0x10/0x10
[  425.871981][T24005]  ? find_held_lock+0x2b/0x80
[  425.871994][T24005]  ? is_bpf_text_address+0x8a/0x1a0
[  425.872009][T24005]  ? __lock_acquire+0xb8a/0x1c90
[  425.872033][T24005]  ? find_held_lock+0x2b/0x80
[  425.872045][T24005]  ? __might_fault+0xe3/0x190
[  425.872060][T24005]  ? __might_fault+0xe3/0x190
[  425.872075][T24005]  ? __might_fault+0x13b/0x190
[  425.872095][T24005]  binder_thread_write+0xaae/0x4e70
[  425.872118][T24005]  ? __pfx_binder_thread_write+0x10/0x10
[  425.872134][T24005]  ? binder_debug+0xde/0x1a0
[  425.872150][T24005]  ? binder_debug+0xde/0x1a0
[  425.872163][T24005]  ? __pfx_binder_debug+0x10/0x10
[  425.872177][T24005]  ? find_held_lock+0x2b/0x80
[  425.872197][T24005]  binder_ioctl+0x26db/0x73b0
[  425.872218][T24005]  ? tomoyo_path_number_perm+0x18d/0x580
[  425.872240][T24005]  ? __pfx_binder_ioctl+0x10/0x10
[  425.872258][T24005]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  425.872272][T24005]  ? do_vfs_ioctl+0x128/0x14f0
[  425.872287][T24005]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  425.872302][T24005]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  425.872319][T24005]  ? hook_file_ioctl_common+0x145/0x410
[  425.872337][T24005]  ? selinux_file_ioctl+0x180/0x270
[  425.872348][T24005]  ? selinux_file_ioctl+0xb4/0x270
[  425.872360][T24005]  ? __pfx_binder_ioctl+0x10/0x10
[  425.872380][T24005]  __x64_sys_ioctl+0x18e/0x210
[  425.872397][T24005]  do_syscall_64+0xcd/0xfa0
[  425.872414][T24005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.872424][T24005] RIP: 0033:0x7f4fe838f6c9
[  425.872433][T24005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.872443][T24005] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  425.872453][T24005] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  425.872460][T24005] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  425.872467][T24005] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  425.872473][T24005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.872479][T24005] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  425.872493][T24005]  </TASK>
[  425.941247][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  425.941262][   T40] audit: type=1326 audit(2000000375.987:1977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24009 comm="syz.3.6338" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d4d78f6c9 code=0x0
[  426.044100][T24014] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  426.049169][T24014] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24014 comm=syz.2.6340
[  426.639077][ T1461] IPVS: starting estimator thread 0...
[  426.727514][T24025] IPVS: using max 44 ests per chain, 105600 per kthread
[  426.774023][T24031] binder: BINDER_SET_CONTEXT_MGR already set
[  426.775960][T24031] binder: 24030:24031 ioctl 4018620d 200000000100 returned -16
[  426.779722][T24031] binder: BINDER_SET_CONTEXT_MGR already set
[  426.782808][T24031] binder: 24030:24031 ioctl 4018620d 2000000002c0 returned -16
[  426.808398][T24033] binder: BINDER_SET_CONTEXT_MGR already set
[  426.810571][T24033] binder: 24032:24033 ioctl 4018620d 200000000100 returned -16
[  426.815487][T24033] binder: BINDER_SET_CONTEXT_MGR already set
[  426.817858][T24033] binder: 24032:24033 ioctl 4018620d 2000000002c0 returned -16
[  426.856275][T24035] binder: BINDER_SET_CONTEXT_MGR already set
[  426.858253][T24035] binder: 24034:24035 ioctl 4018620d 200000000100 returned -16
[  426.862498][T24035] binder: BINDER_SET_CONTEXT_MGR already set
[  426.864329][T24035] binder: 24034:24035 ioctl 4018620d 2000000002c0 returned -16
[  427.442667][   T40] audit: type=1400 audit(2000000377.390:1978): avc:  denied  { getopt } for  pid=24045 comm="syz.2.6351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  427.443727][T24040] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  427.454838][T24040] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24040 comm=syz.3.6349
[  427.488474][   T40] audit: type=1400 audit(2000000377.436:1979): avc:  denied  { mount } for  pid=24051 comm="syz.3.6353" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  427.507973][   T40] audit: type=1400 audit(2000000377.446:1980): avc:  denied  { unmount } for  pid=19823 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  427.557442][T24059] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6356'.
[  427.563551][T24059] binder: BINDER_SET_CONTEXT_MGR already set
[  427.565968][T24059] binder: 24058:24059 ioctl 4018620d 2000000002c0 returned -16
[  427.581813][   T40] audit: type=1326 audit(2000000377.521:1981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24060 comm="syz.3.6357" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d4d78f6c9 code=0x0
[  427.636762][T24065] FAULT_INJECTION: forcing a failure.
[  427.636762][T24065] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  427.641611][T24065] CPU: 3 UID: 0 PID: 24065 Comm: syz.2.6359 Not tainted syzkaller #0 PREEMPT(full) 
[  427.641634][T24065] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  427.641645][T24065] Call Trace:
[  427.641652][T24065]  <TASK>
[  427.641660][T24065]  dump_stack_lvl+0x16c/0x1f0
[  427.641691][T24065]  should_fail_ex+0x512/0x640
[  427.641715][T24065]  _copy_to_user+0x32/0xd0
[  427.641740][T24065]  simple_read_from_buffer+0xcb/0x170
[  427.641764][T24065]  proc_fail_nth_read+0x197/0x240
[  427.641787][T24065]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  427.641809][T24065]  ? rw_verify_area+0xcf/0x6c0
[  427.641835][T24065]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  427.641855][T24065]  vfs_read+0x1e4/0xcf0
[  427.641876][T24065]  ? __pfx___mutex_lock+0x10/0x10
[  427.641893][T24065]  ? __pfx_vfs_read+0x10/0x10
[  427.641917][T24065]  ? __fget_files+0x20e/0x3c0
[  427.641944][T24065]  ksys_read+0x12a/0x250
[  427.641966][T24065]  ? __pfx_ksys_read+0x10/0x10
[  427.641983][T24065]  ? fput+0x9b/0xd0
[  427.642002][T24065]  do_syscall_64+0xcd/0xfa0
[  427.642029][T24065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.642047][T24065] RIP: 0033:0x7f4fe838e0dc
[  427.642062][T24065] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  427.642078][T24065] RSP: 002b:00007f4fe9193030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  427.642095][T24065] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838e0dc
[  427.642107][T24065] RDX: 000000000000000f RSI: 00007f4fe91930a0 RDI: 0000000000000003
[  427.642117][T24065] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  427.642128][T24065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  427.642138][T24065] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  427.642164][T24065]  </TASK>
[  428.342795][T24070] binder: BINDER_SET_CONTEXT_MGR already set
[  428.345211][T24070] binder: 24069:24070 ioctl 4018620d 200000000100 returned -16
[  428.349482][T24070] binder: BINDER_SET_CONTEXT_MGR already set
[  428.351544][T24070] binder: 24069:24070 ioctl 4018620d 2000000002c0 returned -16
[  428.355290][T24070] FAULT_INJECTION: forcing a failure.
[  428.355290][T24070] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  428.359469][T24070] CPU: 3 UID: 0 PID: 24070 Comm: syz.4.6361 Not tainted syzkaller #0 PREEMPT(full) 
[  428.359483][T24070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  428.359490][T24070] Call Trace:
[  428.359495][T24070]  <TASK>
[  428.359500][T24070]  dump_stack_lvl+0x16c/0x1f0
[  428.359520][T24070]  should_fail_ex+0x512/0x640
[  428.359549][T24070]  _copy_to_user+0x32/0xd0
[  428.359564][T24070]  simple_read_from_buffer+0xcb/0x170
[  428.359582][T24070]  proc_fail_nth_read+0x197/0x240
[  428.359596][T24070]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  428.359609][T24070]  ? rw_verify_area+0xcf/0x6c0
[  428.359627][T24070]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  428.359644][T24070]  vfs_read+0x1e4/0xcf0
[  428.359662][T24070]  ? __pfx___mutex_lock+0x10/0x10
[  428.359679][T24070]  ? __pfx_vfs_read+0x10/0x10
[  428.359701][T24070]  ? __fget_files+0x20e/0x3c0
[  428.359726][T24070]  ksys_read+0x12a/0x250
[  428.359742][T24070]  ? __pfx_ksys_read+0x10/0x10
[  428.359758][T24070]  ? fput+0x9b/0xd0
[  428.359808][T24070]  do_syscall_64+0xcd/0xfa0
[  428.359838][T24070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.359855][T24070] RIP: 0033:0x7fb08958e0dc
[  428.359869][T24070] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  428.359886][T24070] RSP: 002b:00007fb08a3fa030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  428.359902][T24070] RAX: ffffffffffffffda RBX: 00007fb0897e5fa0 RCX: 00007fb08958e0dc
[  428.359913][T24070] RDX: 000000000000000f RSI: 00007fb08a3fa0a0 RDI: 0000000000000006
[  428.359924][T24070] RBP: 00007fb08a3fa090 R08: 0000000000000000 R09: 0000000000000000
[  428.359935][T24070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  428.359945][T24070] R13: 00007fb0897e6038 R14: 00007fb0897e5fa0 R15: 00007fff0ed0c038
[  428.359970][T24070]  </TASK>
[  428.555419][T24075] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  428.610805][T24079] openvswitch: netlink: EtherType 53b is less than min 600
[  428.613356][T24079] binder: 24078:24079 ioctl 8983 200000000500 returned -22
[  428.615693][T24079] netlink: 'syz.5.6364': attribute type 1 has an invalid length.
[  429.137019][   T40] audit: type=1400 audit(2000000378.979:1982): avc:  denied  { ioctl } for  pid=24093 comm="syz.3.6370" path="socket:[108040]" dev="sockfs" ino=108040 ioctlcmd=0x942c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  429.198070][T24104] FAULT_INJECTION: forcing a failure.
[  429.198070][T24104] name failslab, interval 1, probability 0, space 0, times 0
[  429.202346][T24104] CPU: 3 UID: 0 PID: 24104 Comm: syz.2.6374 Not tainted syzkaller #0 PREEMPT(full) 
[  429.202361][T24104] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  429.202368][T24104] Call Trace:
[  429.202372][T24104]  <TASK>
[  429.202376][T24104]  dump_stack_lvl+0x16c/0x1f0
[  429.202395][T24104]  should_fail_ex+0x512/0x640
[  429.202409][T24104]  ? fs_reclaim_acquire+0xae/0x150
[  429.202422][T24104]  should_failslab+0xc2/0x120
[  429.202435][T24104]  __kmalloc_noprof+0xdd/0x880
[  429.202450][T24104]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  429.202466][T24104]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  429.202478][T24104]  tomoyo_realpath_from_path+0xc2/0x6e0
[  429.202491][T24104]  ? tomoyo_profile+0x47/0x60
[  429.202506][T24104]  tomoyo_path_number_perm+0x245/0x580
[  429.202523][T24104]  ? tomoyo_path_number_perm+0x237/0x580
[  429.202541][T24104]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  429.202559][T24104]  ? find_held_lock+0x2b/0x80
[  429.202584][T24104]  ? find_held_lock+0x2b/0x80
[  429.202597][T24104]  ? hook_file_ioctl_common+0x145/0x410
[  429.202614][T24104]  ? __fget_files+0x20e/0x3c0
[  429.202627][T24104]  security_file_ioctl+0x9b/0x240
[  429.202641][T24104]  __x64_sys_ioctl+0xb7/0x210
[  429.202657][T24104]  do_syscall_64+0xcd/0xfa0
[  429.202674][T24104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.202685][T24104] RIP: 0033:0x7f4fe838f6c9
[  429.202693][T24104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.202703][T24104] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  429.202714][T24104] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  429.202721][T24104] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  429.202728][T24104] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  429.202734][T24104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  429.202740][T24104] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  429.202754][T24104]  </TASK>
[  429.202759][T24104] ERROR: Out of memory at tomoyo_realpath_from_path.
[  429.371923][T24110] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6377'.
[  429.379980][T24110] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6377'.
[  429.427813][   T40] audit: type=1326 audit(2000000379.250:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24111 comm="syz.2.6378" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4fe838f6c9 code=0x0
[  429.768805][T24115] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  431.321030][T24138] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  431.341921][T24147] FAULT_INJECTION: forcing a failure.
[  431.341921][T24147] name failslab, interval 1, probability 0, space 0, times 0
[  431.346023][T24147] CPU: 2 UID: 0 PID: 24147 Comm: syz.5.6390 Not tainted syzkaller #0 PREEMPT(full) 
[  431.346038][T24147] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  431.346045][T24147] Call Trace:
[  431.346049][T24147]  <TASK>
[  431.346054][T24147]  dump_stack_lvl+0x16c/0x1f0
[  431.346073][T24147]  should_fail_ex+0x512/0x640
[  431.346086][T24147]  ? fs_reclaim_acquire+0xae/0x150
[  431.346100][T24147]  should_failslab+0xc2/0x120
[  431.346113][T24147]  __kmalloc_noprof+0xdd/0x880
[  431.346128][T24147]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  431.346144][T24147]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  431.346155][T24147]  tomoyo_realpath_from_path+0xc2/0x6e0
[  431.346169][T24147]  ? tomoyo_profile+0x47/0x60
[  431.346184][T24147]  tomoyo_path_number_perm+0x245/0x580
[  431.346200][T24147]  ? tomoyo_path_number_perm+0x237/0x580
[  431.346218][T24147]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  431.346236][T24147]  ? find_held_lock+0x2b/0x80
[  431.346262][T24147]  ? find_held_lock+0x2b/0x80
[  431.346274][T24147]  ? hook_file_ioctl_common+0x145/0x410
[  431.346292][T24147]  ? __fget_files+0x20e/0x3c0
[  431.346305][T24147]  security_file_ioctl+0x9b/0x240
[  431.346318][T24147]  __x64_sys_ioctl+0xb7/0x210
[  431.346334][T24147]  do_syscall_64+0xcd/0xfa0
[  431.346351][T24147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.346362][T24147] RIP: 0033:0x7f8d0818f6c9
[  431.346371][T24147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.346381][T24147] RSP: 002b:00007f8d09089038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  431.346392][T24147] RAX: ffffffffffffffda RBX: 00007f8d083e5fa0 RCX: 00007f8d0818f6c9
[  431.346398][T24147] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  431.346405][T24147] RBP: 00007f8d09089090 R08: 0000000000000000 R09: 0000000000000000
[  431.346411][T24147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  431.346417][T24147] R13: 00007f8d083e6038 R14: 00007f8d083e5fa0 R15: 00007ffef8019f28
[  431.346430][T24147]  </TASK>
[  431.346435][T24147] ERROR: Out of memory at tomoyo_realpath_from_path.
[  431.367326][   T40] audit: type=1326 audit(2000000381.055:1984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24148 comm="syz.3.6391" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d4d78f6c9 code=0x0
[  431.465319][T24161] binder: 24160:24161 ioctl 89f8 200000000140 returned -22
[  432.271248][T24170] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6397'.
[  432.483951][T24173] binder: BINDER_SET_CONTEXT_MGR already set
[  432.485982][T24173] binder: 24172:24173 ioctl 4018620d 200000000100 returned -16
[  432.489645][T24173] binder: BINDER_SET_CONTEXT_MGR already set
[  432.491651][T24173] binder: 24172:24173 ioctl 4018620d 2000000002c0 returned -16
[  432.635021][T24180] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  432.735989][T24184] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6401'.
[  432.737465][T24185] FAULT_INJECTION: forcing a failure.
[  432.737465][T24185] name failslab, interval 1, probability 0, space 0, times 0
[  432.743195][T24185] CPU: 2 UID: 0 PID: 24185 Comm: syz.2.6402 Not tainted syzkaller #0 PREEMPT(full) 
[  432.743211][T24185] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  432.743217][T24185] Call Trace:
[  432.743222][T24185]  <TASK>
[  432.743226][T24185]  dump_stack_lvl+0x16c/0x1f0
[  432.743246][T24185]  should_fail_ex+0x512/0x640
[  432.743259][T24185]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  432.743277][T24185]  should_failslab+0xc2/0x120
[  432.743290][T24185]  kmem_cache_alloc_noprof+0x75/0x6e0
[  432.743305][T24185]  ? vm_area_dup+0x27/0x8d0
[  432.743322][T24185]  ? vm_area_dup+0x27/0x8d0
[  432.743336][T24185]  vm_area_dup+0x27/0x8d0
[  432.743351][T24185]  __split_vma+0x18e/0x1070
[  432.743382][T24185]  ? __pfx___split_vma+0x10/0x10
[  432.743397][T24185]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[  432.743420][T24185]  vms_gather_munmap_vmas+0x3aa/0x1340
[  432.743438][T24185]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  432.743455][T24185]  ? mas_walk+0x6f5/0x980
[  432.743474][T24185]  __mmap_region+0x434/0x27a0
[  432.743491][T24185]  ? __pfx___mmap_region+0x10/0x10
[  432.743510][T24185]  ? find_held_lock+0x2b/0x80
[  432.743528][T24185]  ? kernel_text_address+0x8d/0x100
[  432.743540][T24185]  ? __kernel_text_address+0xd/0x40
[  432.743555][T24185]  ? find_held_lock+0x2b/0x80
[  432.743568][T24185]  ? process_measurement+0x1e6/0x23e0
[  432.743598][T24185]  ? __lock_acquire+0xb8a/0x1c90
[  432.743618][T24185]  mmap_region+0x32b/0x3f0
[  432.743637][T24185]  do_mmap+0xa3e/0x1210
[  432.743651][T24185]  ? __pfx_do_mmap+0x10/0x10
[  432.743663][T24185]  ? __pfx_down_write_killable+0x10/0x10
[  432.743677][T24185]  vm_mmap_pgoff+0x29e/0x470
[  432.743692][T24185]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  432.743706][T24185]  ? __fget_files+0x20e/0x3c0
[  432.743720][T24185]  ksys_mmap_pgoff+0x32c/0x5c0
[  432.743731][T24185]  ? __pfx_ksys_write+0x10/0x10
[  432.743765][T24185]  __x64_sys_mmap+0x125/0x190
[  432.743781][T24185]  do_syscall_64+0xcd/0xfa0
[  432.743798][T24185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.743809][T24185] RIP: 0033:0x7f4fe838f6c9
[  432.743818][T24185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  432.743828][T24185] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  432.743838][T24185] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  432.743857][T24185] RDX: 0000000000800007 RSI: 0000000000002000 RDI: 0000200000000000
[  432.743864][T24185] RBP: 00007f4fe9193090 R08: 0000000000000003 R09: 0000000000000000
[  432.743870][T24185] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  432.743877][T24185] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  432.743891][T24185]  </TASK>
[  433.063132][T24200] FAULT_INJECTION: forcing a failure.
[  433.063132][T24200] name failslab, interval 1, probability 0, space 0, times 0
[  433.067432][T24200] CPU: 0 UID: 0 PID: 24200 Comm: syz.2.6408 Not tainted syzkaller #0 PREEMPT(full) 
[  433.067454][T24200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  433.067464][T24200] Call Trace:
[  433.067471][T24200]  <TASK>
[  433.067478][T24200]  dump_stack_lvl+0x16c/0x1f0
[  433.067505][T24200]  should_fail_ex+0x512/0x640
[  433.067524][T24200]  ? fs_reclaim_acquire+0xae/0x150
[  433.067546][T24200]  should_failslab+0xc2/0x120
[  433.067565][T24200]  __kmalloc_noprof+0xdd/0x880
[  433.067588][T24200]  ? tomoyo_encode2+0x100/0x3e0
[  433.067611][T24200]  ? tomoyo_encode2+0x100/0x3e0
[  433.067628][T24200]  tomoyo_encode2+0x100/0x3e0
[  433.067649][T24200]  tomoyo_encode+0x29/0x50
[  433.067666][T24200]  tomoyo_realpath_from_path+0x18f/0x6e0
[  433.067692][T24200]  tomoyo_path_number_perm+0x245/0x580
[  433.067717][T24200]  ? tomoyo_path_number_perm+0x237/0x580
[  433.067764][T24200]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  433.067791][T24200]  ? find_held_lock+0x2b/0x80
[  433.067834][T24200]  ? find_held_lock+0x2b/0x80
[  433.067853][T24200]  ? hook_file_ioctl_common+0x145/0x410
[  433.067881][T24200]  ? __fget_files+0x20e/0x3c0
[  433.067920][T24200]  security_file_ioctl+0x9b/0x240
[  433.067942][T24200]  __x64_sys_ioctl+0xb7/0x210
[  433.067966][T24200]  do_syscall_64+0xcd/0xfa0
[  433.067993][T24200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.068009][T24200] RIP: 0033:0x7f4fe838f6c9
[  433.068023][T24200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  433.068038][T24200] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  433.068055][T24200] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  433.068066][T24200] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  433.068076][T24200] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  433.068085][T24200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  433.068095][T24200] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  433.068119][T24200]  </TASK>
[  433.068164][T24200] ERROR: Out of memory at tomoyo_realpath_from_path.
[  433.186540][T24202] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  433.321837][   T40] audit: type=1326 audit(2000000382.887:1985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24209 comm="syz.2.6412" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4fe838f6c9 code=0x0
[  433.637091][T24216] 
@0Ù: renamed from bond_slave_1 (while UP)
[  433.795170][T24223] fuse: Unknown parameter 'group_iÃ'
[  433.893772][T24224] xt_hashlimit: invalid interval
[  434.958833][T24228] binder: BINDER_SET_CONTEXT_MGR already set
[  434.960724][T24228] binder: 24227:24228 ioctl 4018620d 200000000100 returned -16
[  434.971896][T24228] binder: BINDER_SET_CONTEXT_MGR already set
[  434.974463][T24228] binder: 24227:24228 ioctl 4018620d 2000000002c0 returned -16
[  434.999755][T24234] binder: BINDER_SET_CONTEXT_MGR already set
[  435.001546][T24234] binder: 24233:24234 ioctl 4018620d 200000000100 returned -16
[  435.005806][T24234] binder: BINDER_SET_CONTEXT_MGR already set
[  435.007571][T24234] binder: 24233:24234 ioctl 4018620d 2000000002c0 returned -16
[  435.018604][T24231] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  435.029972][T24237] FAULT_INJECTION: forcing a failure.
[  435.029972][T24237] name failslab, interval 1, probability 0, space 0, times 0
[  435.034773][T24237] CPU: 0 UID: 0 PID: 24237 Comm: syz.3.6421 Not tainted syzkaller #0 PREEMPT(full) 
[  435.034789][T24237] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  435.034796][T24237] Call Trace:
[  435.034801][T24237]  <TASK>
[  435.034805][T24237]  dump_stack_lvl+0x16c/0x1f0
[  435.034826][T24237]  should_fail_ex+0x512/0x640
[  435.034840][T24237]  ? fs_reclaim_acquire+0xae/0x150
[  435.034855][T24237]  should_failslab+0xc2/0x120
[  435.034868][T24237]  __kmalloc_noprof+0xdd/0x880
[  435.034884][T24237]  ? tomoyo_encode2+0x100/0x3e0
[  435.034900][T24237]  ? tomoyo_encode2+0x100/0x3e0
[  435.034912][T24237]  tomoyo_encode2+0x100/0x3e0
[  435.034931][T24237]  tomoyo_encode+0x29/0x50
[  435.034943][T24237]  tomoyo_realpath_from_path+0x18f/0x6e0
[  435.034960][T24237]  tomoyo_path_number_perm+0x245/0x580
[  435.034978][T24237]  ? tomoyo_path_number_perm+0x237/0x580
[  435.034997][T24237]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  435.035016][T24237]  ? find_held_lock+0x2b/0x80
[  435.035042][T24237]  ? find_held_lock+0x2b/0x80
[  435.035056][T24237]  ? hook_file_ioctl_common+0x145/0x410
[  435.035074][T24237]  ? __fget_files+0x20e/0x3c0
[  435.035088][T24237]  security_file_ioctl+0x9b/0x240
[  435.035102][T24237]  __x64_sys_ioctl+0xb7/0x210
[  435.035118][T24237]  do_syscall_64+0xcd/0xfa0
[  435.035137][T24237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.035148][T24237] RIP: 0033:0x7f1d4d78f6c9
[  435.035158][T24237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  435.035169][T24237] RSP: 002b:00007f1d4b9ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  435.035180][T24237] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78f6c9
[  435.035187][T24237] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  435.035194][T24237] RBP: 00007f1d4b9ee090 R08: 0000000000000000 R09: 0000000000000000
[  435.035201][T24237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  435.035207][T24237] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  435.035230][T24237]  </TASK>
[  435.035245][T24237] ERROR: Out of memory at tomoyo_realpath_from_path.
[  435.061744][T24243] binder: BINDER_SET_CONTEXT_MGR already set
[  435.109073][T24243] binder: 24242:24243 ioctl 4018620d 200000000100 returned -16
[  435.114707][T24243] IPVS: length: 24 != 1190616
[  435.121741][T24243] binder: 24242:24243 ioctl 4018aebd 200000000000 returned -22
[  435.125458][T24243] binder: BINDER_SET_CONTEXT_MGR already set
[  435.127578][T24243] binder: 24242:24243 ioctl 4018620d 2000000002c0 returned -16
[  435.171911][   T40] audit: type=1326 audit(2000000384.617:1986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24252 comm="syz.3.6427" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d4d78f6c9 code=0x0
[  436.127149][T24265] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  436.186785][T24266] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24266 comm=syz.2.6431
[  436.293775][T24268] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6432'.
[  436.543988][T24281] FAULT_INJECTION: forcing a failure.
[  436.543988][T24281] name failslab, interval 1, probability 0, space 0, times 0
[  436.553270][T24281] CPU: 1 UID: 0 PID: 24281 Comm: syz.2.6437 Not tainted syzkaller #0 PREEMPT(full) 
[  436.553288][T24281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  436.553295][T24281] Call Trace:
[  436.553299][T24281]  <TASK>
[  436.553304][T24281]  dump_stack_lvl+0x16c/0x1f0
[  436.553325][T24281]  should_fail_ex+0x512/0x640
[  436.553340][T24281]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  436.553359][T24281]  should_failslab+0xc2/0x120
[  436.553372][T24281]  kmem_cache_alloc_noprof+0x75/0x6e0
[  436.553388][T24281]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  436.553402][T24281]  ? mas_preallocate+0xe6a/0x11f0
[  436.553416][T24281]  ? mas_preallocate+0xe6a/0x11f0
[  436.553425][T24281]  mas_preallocate+0xe6a/0x11f0
[  436.553438][T24281]  ? __pfx_mas_preallocate+0x10/0x10
[  436.553448][T24281]  ? rcu_is_watching+0x12/0xc0
[  436.553467][T24281]  ? anon_vma_name+0x81/0x2f0
[  436.553483][T24281]  __split_vma+0x34a/0x1070
[  436.553501][T24281]  ? __pfx___split_vma+0x10/0x10
[  436.553516][T24281]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[  436.553539][T24281]  vms_gather_munmap_vmas+0x3aa/0x1340
[  436.553558][T24281]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  436.553576][T24281]  ? mas_walk+0x6f5/0x980
[  436.553596][T24281]  __mmap_region+0x434/0x27a0
[  436.553614][T24281]  ? __pfx___mmap_region+0x10/0x10
[  436.553634][T24281]  ? find_held_lock+0x2b/0x80
[  436.553660][T24281]  ? kernel_text_address+0x8d/0x100
[  436.553673][T24281]  ? __kernel_text_address+0xd/0x40
[  436.553689][T24281]  ? find_held_lock+0x2b/0x80
[  436.553702][T24281]  ? process_measurement+0x1e6/0x23e0
[  436.553734][T24281]  ? __lock_acquire+0xb8a/0x1c90
[  436.553755][T24281]  mmap_region+0x32b/0x3f0
[  436.553775][T24281]  do_mmap+0xa3e/0x1210
[  436.553790][T24281]  ? __pfx_do_mmap+0x10/0x10
[  436.553803][T24281]  ? __pfx_down_write_killable+0x10/0x10
[  436.553818][T24281]  vm_mmap_pgoff+0x29e/0x470
[  436.553833][T24281]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  436.553848][T24281]  ? __fget_files+0x20e/0x3c0
[  436.553862][T24281]  ksys_mmap_pgoff+0x32c/0x5c0
[  436.553874][T24281]  ? __pfx_ksys_write+0x10/0x10
[  436.553886][T24281]  __x64_sys_mmap+0x125/0x190
[  436.553899][T24281]  do_syscall_64+0xcd/0xfa0
[  436.553917][T24281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.553928][T24281] RIP: 0033:0x7f4fe838f6c9
[  436.553938][T24281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  436.553949][T24281] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  436.553959][T24281] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  436.553967][T24281] RDX: 0000000000800007 RSI: 0000000000002000 RDI: 0000200000000000
[  436.553973][T24281] RBP: 00007f4fe9193090 R08: 0000000000000003 R09: 0000000000000000
[  436.553980][T24281] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  436.553987][T24281] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  436.554001][T24281]  </TASK>
[  437.496590][T24297] FAULT_INJECTION: forcing a failure.
[  437.496590][T24297] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  437.503146][T24297] CPU: 2 UID: 0 PID: 24297 Comm: syz.3.6442 Not tainted syzkaller #0 PREEMPT(full) 
[  437.503170][T24297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  437.503181][T24297] Call Trace:
[  437.503189][T24297]  <TASK>
[  437.503196][T24297]  dump_stack_lvl+0x16c/0x1f0
[  437.503228][T24297]  should_fail_ex+0x512/0x640
[  437.503254][T24297]  _copy_from_user+0x2e/0xd0
[  437.503275][T24297]  binder_ioctl+0x57a/0x73b0
[  437.503314][T24297]  ? tomoyo_path_number_perm+0x18d/0x580
[  437.503350][T24297]  ? __pfx_binder_ioctl+0x10/0x10
[  437.503378][T24297]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  437.503404][T24297]  ? do_vfs_ioctl+0x128/0x14f0
[  437.503428][T24297]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  437.503447][T24297]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  437.503476][T24297]  ? hook_file_ioctl_common+0x145/0x410
[  437.503504][T24297]  ? selinux_file_ioctl+0x180/0x270
[  437.503520][T24297]  ? selinux_file_ioctl+0xb4/0x270
[  437.503541][T24297]  ? __pfx_binder_ioctl+0x10/0x10
[  437.503567][T24297]  __x64_sys_ioctl+0x18e/0x210
[  437.503594][T24297]  do_syscall_64+0xcd/0xfa0
[  437.503622][T24297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.503641][T24297] RIP: 0033:0x7f1d4d78f6c9
[  437.503656][T24297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.503672][T24297] RSP: 002b:00007f1d4b9ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  437.503690][T24297] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78f6c9
[  437.503724][T24297] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  437.503734][T24297] RBP: 00007f1d4b9ee090 R08: 0000000000000000 R09: 0000000000000000
[  437.503743][T24297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  437.503751][T24297] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  437.503776][T24297]  </TASK>
[  437.503784][T24297] binder: 24296:24297 ioctl c0306201 200000000300 returned -14
[  437.534361][   T40] audit: type=1326 audit(2000000386.833:1987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24301 comm="syz.5.6444" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8d0818f6c9 code=0x0
[  437.579723][T24304] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6445'.
[  437.591609][T24304] binder: 24303:24304 ioctl 541b 200000000000 returned -22
[  437.676403][T24307] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  437.680351][T24307] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24307 comm=syz.4.6446
[  438.993255][T24325] binder: 24323:24325 ioctl c0306201 200000000080 returned -14
[  438.997295][   T40] audit: type=1400 audit(2000000388.198:1988): avc:  denied  { write } for  pid=24323 comm="syz.3.6454" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  439.000616][T24325] binder: 24323:24325 ioctl c0306201 2000000003c0 returned -14
[  439.007465][T24325] binder: 24323:24325 ioctl c0306201 200000000300 returned -14
[  439.102691][T24333] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  439.106760][T24333] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24333 comm=syz.3.6456
[  439.150283][T24337] netlink: 'syz.3.6457': attribute type 1 has an invalid length.
[  439.152972][T24337] netlink: 'syz.3.6457': attribute type 2 has an invalid length.
[  439.161871][T24337] macvtap0: entered allmulticast mode
[  439.163665][T24337] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  439.201897][   T40] audit: type=1400 audit(2000000388.385:1989): avc:  denied  { read } for  pid=24338 comm="syz.3.6458" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  439.831461][T24342] FAULT_INJECTION: forcing a failure.
[  439.831461][T24342] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  439.835480][T24342] CPU: 3 UID: 0 PID: 24342 Comm: syz.3.6459 Not tainted syzkaller #0 PREEMPT(full) 
[  439.835495][T24342] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  439.835502][T24342] Call Trace:
[  439.835506][T24342]  <TASK>
[  439.835511][T24342]  dump_stack_lvl+0x16c/0x1f0
[  439.835530][T24342]  should_fail_ex+0x512/0x640
[  439.835545][T24342]  _copy_from_user+0x2e/0xd0
[  439.835559][T24342]  binder_ioctl+0x57a/0x73b0
[  439.835582][T24342]  ? tomoyo_path_number_perm+0x18d/0x580
[  439.835603][T24342]  ? __pfx_binder_ioctl+0x10/0x10
[  439.835621][T24342]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  439.835641][T24342]  ? do_vfs_ioctl+0x128/0x14f0
[  439.835657][T24342]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  439.835690][T24342]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  439.835713][T24342]  ? hook_file_ioctl_common+0x145/0x410
[  439.835731][T24342]  ? selinux_file_ioctl+0x180/0x270
[  439.835742][T24342]  ? selinux_file_ioctl+0xb4/0x270
[  439.835754][T24342]  ? __pfx_binder_ioctl+0x10/0x10
[  439.835770][T24342]  __x64_sys_ioctl+0x18e/0x210
[  439.835786][T24342]  do_syscall_64+0xcd/0xfa0
[  439.835803][T24342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.835814][T24342] RIP: 0033:0x7f1d4d78f6c9
[  439.835823][T24342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.835833][T24342] RSP: 002b:00007f1d4b9ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  439.835843][T24342] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78f6c9
[  439.835850][T24342] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  439.835856][T24342] RBP: 00007f1d4b9ee090 R08: 0000000000000000 R09: 0000000000000000
[  439.835863][T24342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  439.835869][T24342] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  439.835882][T24342]  </TASK>
[  439.835887][T24342] binder: 24341:24342 ioctl c0306201 200000000300 returned -14
[  439.923575][   T40] audit: type=1326 audit(2000000389.058:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24343 comm="syz.3.6461" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d4d78f6c9 code=0x0
[  439.955111][T24352] binder: BINDER_SET_CONTEXT_MGR already set
[  439.957260][T24352] binder: 24350:24352 ioctl 4018620d 200000000100 returned -16
[  439.968064][T24352] binder: 24350:24352 ioctl c0306201 200000000080 returned -14
[  439.975114][T24352] binder: BINDER_SET_CONTEXT_MGR already set
[  439.977816][T24352] binder: 24350:24352 ioctl 4018620d 2000000002c0 returned -16
[  440.055216][T24365] FAULT_INJECTION: forcing a failure.
[  440.055216][T24365] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  440.057154][T24359] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  440.059550][T24365] CPU: 1 UID: 0 PID: 24365 Comm: syz.2.6466 Not tainted syzkaller #0 PREEMPT(full) 
[  440.059565][T24365] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  440.059572][T24365] Call Trace:
[  440.059576][T24365]  <TASK>
[  440.059580][T24365]  dump_stack_lvl+0x16c/0x1f0
[  440.059600][T24365]  should_fail_ex+0x512/0x640
[  440.059616][T24365]  _copy_from_iter+0x29f/0x1720
[  440.059633][T24365]  ? __pfx__copy_from_iter+0x10/0x10
[  440.059650][T24365]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  440.059668][T24365]  copy_page_from_iter+0xde/0x180
[  440.059707][T24365]  tun_build_skb.constprop.0+0x2e8/0x1510
[  440.059727][T24365]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  440.059742][T24365]  ? unwind_get_return_address+0x59/0xa0
[  440.059755][T24365]  ? arch_stack_walk+0xa6/0x100
[  440.059774][T24365]  ? _kstrtoull+0x145/0x200
[  440.059792][T24365]  tun_get_user+0x149c/0x3cc0
[  440.059812][T24365]  ? __pfx_tun_get_user+0x10/0x10
[  440.059828][T24365]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  440.059920][T24365]  ? find_held_lock+0x2b/0x80
[  440.059936][T24365]  ? tun_get+0x191/0x370
[  440.059952][T24365]  tun_chr_write_iter+0xdc/0x210
[  440.059967][T24365]  vfs_write+0x7d3/0x11d0
[  440.059978][T24365]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  440.059995][T24365]  ? __pfx_vfs_write+0x10/0x10
[  440.060003][T24365]  ? find_held_lock+0x2b/0x80
[  440.060024][T24365]  ksys_write+0x12a/0x250
[  440.060033][T24365]  ? __pfx_ksys_write+0x10/0x10
[  440.060047][T24365]  do_syscall_64+0xcd/0xfa0
[  440.060065][T24365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.060075][T24365] RIP: 0033:0x7f4fe838e17f
[  440.060085][T24365] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  440.060095][T24365] RSP: 002b:00007f4fe9193000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  440.060105][T24365] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838e17f
[  440.060112][T24365] RDX: 0000000000000093 RSI: 0000200000000380 RDI: 00000000000000c8
[  440.060118][T24365] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  440.060124][T24365] R10: 0000000000000093 R11: 0000000000000293 R12: 0000000000000001
[  440.060130][T24365] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  440.060144][T24365]  </TASK>
[  440.113860][T24368] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24368 comm=syz.4.6465
[  440.179078][   T40] audit: type=1400 audit(2000000389.302:1991): avc:  denied  { write } for  pid=24373 comm="syz.4.6469" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  440.190444][   T40] audit: type=1326 audit(2000000389.302:1992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24373 comm="syz.4.6469" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb08958f6c9 code=0x0
[  440.256671][T24380] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24380 comm=syz.4.6469
[  440.324222][T24388] binder: 24387:24388 unknown command 0
[  440.326018][T24388] binder: 24387:24388 ioctl c0306201 200000000300 returned -22
[  441.084170][T24403] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  441.089416][T24403] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24403 comm=syz.3.6477
[  441.092995][T24407] SELinux:  truncated policydb string identifier
[  441.096710][T24407] SELinux: failed to load policy
[  441.139617][T24409] FAULT_INJECTION: forcing a failure.
[  441.139617][T24409] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  441.143715][T24409] CPU: 2 UID: 0 PID: 24409 Comm: syz.3.6479 Not tainted syzkaller #0 PREEMPT(full) 
[  441.143730][T24409] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  441.143737][T24409] Call Trace:
[  441.143741][T24409]  <TASK>
[  441.143746][T24409]  dump_stack_lvl+0x16c/0x1f0
[  441.143767][T24409]  should_fail_ex+0x512/0x640
[  441.143782][T24409]  _copy_from_user+0x2e/0xd0
[  441.143796][T24409]  binder_thread_write+0xa5c/0x4e70
[  441.143820][T24409]  ? __pfx_binder_thread_write+0x10/0x10
[  441.143837][T24409]  ? binder_debug+0xde/0x1a0
[  441.143852][T24409]  ? binder_debug+0xde/0x1a0
[  441.143865][T24409]  ? __pfx_binder_debug+0x10/0x10
[  441.143879][T24409]  ? find_held_lock+0x2b/0x80
[  441.143901][T24409]  binder_ioctl+0x26db/0x73b0
[  441.143926][T24409]  ? tomoyo_path_number_perm+0x18d/0x580
[  441.143948][T24409]  ? __pfx_binder_ioctl+0x10/0x10
[  441.143965][T24409]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  441.143981][T24409]  ? do_vfs_ioctl+0x128/0x14f0
[  441.143997][T24409]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  441.144012][T24409]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  441.144029][T24409]  ? hook_file_ioctl_common+0x145/0x410
[  441.144046][T24409]  ? selinux_file_ioctl+0x180/0x270
[  441.144057][T24409]  ? selinux_file_ioctl+0xb4/0x270
[  441.144069][T24409]  ? __pfx_binder_ioctl+0x10/0x10
[  441.144085][T24409]  __x64_sys_ioctl+0x18e/0x210
[  441.144101][T24409]  do_syscall_64+0xcd/0xfa0
[  441.144118][T24409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.144129][T24409] RIP: 0033:0x7f1d4d78f6c9
[  441.144138][T24409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.144148][T24409] RSP: 002b:00007f1d4b9ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  441.144159][T24409] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78f6c9
[  441.144166][T24409] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  441.144172][T24409] RBP: 00007f1d4b9ee090 R08: 0000000000000000 R09: 0000000000000000
[  441.144178][T24409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  441.144184][T24409] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  441.144197][T24409]  </TASK>
[  441.144203][T24409] binder: 24408:24409 ioctl c0306201 200000000300 returned -14
[  441.149017][   T40] audit: type=1400 audit(2000000390.209:1993): avc:  denied  { unmount } for  pid=22532 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  441.170430][T24413] binder: BINDER_SET_CONTEXT_MGR already set
[  441.236053][T24413] binder: 24412:24413 ioctl 4018620d 200000000100 returned -16
[  441.236139][T24419] binder: BINDER_SET_CONTEXT_MGR already set
[  441.242085][T24419] binder: 24412:24419 ioctl 4018620d 2000000002c0 returned -16
[  441.281537][   T40] audit: type=1400 audit(2000000390.330:1994): avc:  denied  { name_bind } for  pid=24420 comm="syz.3.6482" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  441.317279][   T40] audit: type=1326 audit(2000000390.358:1995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24424 comm="syz.3.6484" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d4d78f6c9 code=0x0
[  441.608509][T24442] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  441.612976][T24442] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24442 comm=syz.2.6487
[  441.664706][T23170] Bluetooth: hci4: unexpected event for opcode 0x0c26
[  441.666620][T24449] binder: 24448:24449 ioctl 4b72 2000000000c0 returned -22
[  441.756965][T24454] bridge5: entered allmulticast mode
[  442.259812][T24459] FAULT_INJECTION: forcing a failure.
[  442.259812][T24459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.264868][T24459] CPU: 1 UID: 0 PID: 24459 Comm: syz.3.6493 Not tainted syzkaller #0 PREEMPT(full) 
[  442.264892][T24459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  442.264904][T24459] Call Trace:
[  442.264911][T24459]  <TASK>
[  442.264919][T24459]  dump_stack_lvl+0x16c/0x1f0
[  442.264949][T24459]  should_fail_ex+0x512/0x640
[  442.264974][T24459]  _copy_from_user+0x2e/0xd0
[  442.264998][T24459]  binder_thread_write+0xa5c/0x4e70
[  442.265036][T24459]  ? __pfx_binder_thread_write+0x10/0x10
[  442.265063][T24459]  ? binder_debug+0xde/0x1a0
[  442.265088][T24459]  ? binder_debug+0xde/0x1a0
[  442.265108][T24459]  ? __pfx_binder_debug+0x10/0x10
[  442.265131][T24459]  ? find_held_lock+0x2b/0x80
[  442.265166][T24459]  binder_ioctl+0x26db/0x73b0
[  442.265202][T24459]  ? tomoyo_path_number_perm+0x18d/0x580
[  442.265237][T24459]  ? __pfx_binder_ioctl+0x10/0x10
[  442.265266][T24459]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  442.265290][T24459]  ? do_vfs_ioctl+0x128/0x14f0
[  442.265315][T24459]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  442.265339][T24459]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  442.265368][T24459]  ? hook_file_ioctl_common+0x145/0x410
[  442.265398][T24459]  ? selinux_file_ioctl+0x180/0x270
[  442.265417][T24459]  ? selinux_file_ioctl+0xb4/0x270
[  442.265437][T24459]  ? __pfx_binder_ioctl+0x10/0x10
[  442.265465][T24459]  __x64_sys_ioctl+0x18e/0x210
[  442.265491][T24459]  do_syscall_64+0xcd/0xfa0
[  442.265519][T24459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.265537][T24459] RIP: 0033:0x7f1d4d78f6c9
[  442.265552][T24459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.265569][T24459] RSP: 002b:00007f1d4b9ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  442.265586][T24459] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78f6c9
[  442.265604][T24459] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  442.265615][T24459] RBP: 00007f1d4b9ee090 R08: 0000000000000000 R09: 0000000000000000
[  442.265626][T24459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.265636][T24459] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  442.265662][T24459]  </TASK>
[  442.265672][T24459] binder: 24458:24459 ioctl c0306201 200000000300 returned -14
[  442.578968][T24468] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  442.583731][T24468] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24468 comm=syz.4.6497
[  442.655289][   T40] audit: type=1326 audit(2000000391.620:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24478 comm="syz.4.6500" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb08958f6c9 code=0x0
[  442.867230][T24494] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  442.871151][T24494] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24494 comm=syz.2.6507
[  442.919328][T24501] FAULT_INJECTION: forcing a failure.
[  442.919328][T24501] name failslab, interval 1, probability 0, space 0, times 0
[  442.924536][T24501] CPU: 3 UID: 0 PID: 24501 Comm: syz.2.6509 Not tainted syzkaller #0 PREEMPT(full) 
[  442.924557][T24501] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  442.924567][T24501] Call Trace:
[  442.924575][T24501]  <TASK>
[  442.924583][T24501]  dump_stack_lvl+0x16c/0x1f0
[  442.924614][T24501]  should_fail_ex+0x512/0x640
[  442.924635][T24501]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  442.924665][T24501]  should_failslab+0xc2/0x120
[  442.924685][T24501]  kmem_cache_alloc_noprof+0x75/0x6e0
[  442.924709][T24501]  ? vm_area_alloc+0x1f/0x160
[  442.924734][T24501]  ? vm_area_alloc+0x1f/0x160
[  442.924753][T24501]  vm_area_alloc+0x1f/0x160
[  442.924778][T24501]  __mmap_region+0xf85/0x27a0
[  442.924808][T24501]  ? __pfx___mmap_region+0x10/0x10
[  442.924840][T24501]  ? find_held_lock+0x2b/0x80
[  442.924876][T24501]  ? kernel_text_address+0x8d/0x100
[  442.924937][T24501]  ? __lock_acquire+0xb8a/0x1c90
[  442.924972][T24501]  mmap_region+0x32b/0x3f0
[  442.925003][T24501]  do_mmap+0xa3e/0x1210
[  442.925029][T24501]  ? __pfx_do_mmap+0x10/0x10
[  442.925048][T24501]  ? __pfx_down_write_killable+0x10/0x10
[  442.925070][T24501]  vm_mmap_pgoff+0x29e/0x470
[  442.925093][T24501]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  442.925116][T24501]  ? __fget_files+0x20e/0x3c0
[  442.925140][T24501]  ksys_mmap_pgoff+0x32c/0x5c0
[  442.925159][T24501]  ? __pfx_ksys_write+0x10/0x10
[  442.925179][T24501]  __x64_sys_mmap+0x125/0x190
[  442.925201][T24501]  do_syscall_64+0xcd/0xfa0
[  442.925227][T24501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.925243][T24501] RIP: 0033:0x7f4fe838f6c9
[  442.925257][T24501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.925272][T24501] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  442.925288][T24501] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  442.925301][T24501] RDX: 0000000000800007 RSI: 0000000000002000 RDI: 0000200000000000
[  442.925312][T24501] RBP: 00007f4fe9193090 R08: 0000000000000003 R09: 0000000000000000
[  442.925323][T24501] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  442.925333][T24501] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  442.925360][T24501]  </TASK>
[  443.124565][T24508] FAULT_INJECTION: forcing a failure.
[  443.124565][T24508] name failslab, interval 1, probability 0, space 0, times 0
[  443.129488][T24508] CPU: 2 UID: 0 PID: 24508 Comm: syz.3.6512 Not tainted syzkaller #0 PREEMPT(full) 
[  443.129511][T24508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  443.129522][T24508] Call Trace:
[  443.129529][T24508]  <TASK>
[  443.129538][T24508]  dump_stack_lvl+0x16c/0x1f0
[  443.129567][T24508]  should_fail_ex+0x512/0x640
[  443.129588][T24508]  ? __kmalloc_cache_noprof+0x5f/0x780
[  443.129616][T24508]  should_failslab+0xc2/0x120
[  443.129638][T24508]  __kmalloc_cache_noprof+0x72/0x780
[  443.129662][T24508]  ? binder_transaction+0x6d8/0x9d10
[  443.129694][T24508]  ? binder_transaction+0x6d8/0x9d10
[  443.129718][T24508]  ? _raw_spin_unlock+0x28/0x50
[  443.129741][T24508]  binder_transaction+0x6d8/0x9d10
[  443.129781][T24508]  ? __lock_acquire+0x622/0x1c90
[  443.129820][T24508]  ? __lock_acquire+0x622/0x1c90
[  443.129849][T24508]  ? __pfx_binder_transaction+0x10/0x10
[  443.129883][T24508]  ? find_held_lock+0x2b/0x80
[  443.129906][T24508]  ? is_bpf_text_address+0x8a/0x1a0
[  443.129931][T24508]  ? __lock_acquire+0xb8a/0x1c90
[  443.129969][T24508]  ? find_held_lock+0x2b/0x80
[  443.129990][T24508]  ? __might_fault+0xe3/0x190
[  443.130016][T24508]  ? __might_fault+0xe3/0x190
[  443.130040][T24508]  ? __might_fault+0x13b/0x190
[  443.130074][T24508]  binder_thread_write+0xaae/0x4e70
[  443.130114][T24508]  ? __pfx_binder_thread_write+0x10/0x10
[  443.130140][T24508]  ? binder_debug+0xde/0x1a0
[  443.130166][T24508]  ? binder_debug+0xde/0x1a0
[  443.130187][T24508]  ? __pfx_binder_debug+0x10/0x10
[  443.130210][T24508]  ? find_held_lock+0x2b/0x80
[  443.130242][T24508]  binder_ioctl+0x26db/0x73b0
[  443.130278][T24508]  ? tomoyo_path_number_perm+0x18d/0x580
[  443.130314][T24508]  ? __pfx_binder_ioctl+0x10/0x10
[  443.130344][T24508]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  443.130367][T24508]  ? do_vfs_ioctl+0x128/0x14f0
[  443.130393][T24508]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  443.130417][T24508]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  443.130446][T24508]  ? hook_file_ioctl_common+0x145/0x410
[  443.130476][T24508]  ? selinux_file_ioctl+0x180/0x270
[  443.130495][T24508]  ? selinux_file_ioctl+0xb4/0x270
[  443.130515][T24508]  ? __pfx_binder_ioctl+0x10/0x10
[  443.130542][T24508]  __x64_sys_ioctl+0x18e/0x210
[  443.130568][T24508]  do_syscall_64+0xcd/0xfa0
[  443.130596][T24508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.130613][T24508] RIP: 0033:0x7f1d4d78f6c9
[  443.130628][T24508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.130646][T24508] RSP: 002b:00007f1d4b9ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  443.130662][T24508] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78f6c9
[  443.130674][T24508] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  443.130686][T24508] RBP: 00007f1d4b9ee090 R08: 0000000000000000 R09: 0000000000000000
[  443.130696][T24508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  443.130706][T24508] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  443.130731][T24508]  </TASK>
[  443.470416][T24513] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5126 sclass=netlink_route_socket pid=24513 comm=syz.3.6514
[  443.725668][T24527] 9pnet_fd: p9_fd_create_unix (24527): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  443.762200][T24530] program syz.5.6519 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  443.771749][T24533] FAULT_INJECTION: forcing a failure.
[  443.771749][T24533] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  443.807090][T24533] CPU: 0 UID: 0 PID: 24533 Comm: syz.4.6521 Not tainted syzkaller #0 PREEMPT(full) 
[  443.807113][T24533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  443.807123][T24533] Call Trace:
[  443.807143][T24533]  <TASK>
[  443.807151][T24533]  dump_stack_lvl+0x16c/0x1f0
[  443.807181][T24533]  should_fail_ex+0x512/0x640
[  443.807202][T24533]  _copy_to_user+0x32/0xd0
[  443.807224][T24533]  simple_read_from_buffer+0xcb/0x170
[  443.807250][T24533]  proc_fail_nth_read+0x197/0x240
[  443.807270][T24533]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  443.807289][T24533]  ? rw_verify_area+0xcf/0x6c0
[  443.807311][T24533]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  443.807329][T24533]  vfs_read+0x1e4/0xcf0
[  443.807347][T24533]  ? __pfx___mutex_lock+0x10/0x10
[  443.807362][T24533]  ? __pfx_vfs_read+0x10/0x10
[  443.807383][T24533]  ? __fget_files+0x20e/0x3c0
[  443.807405][T24533]  ksys_read+0x12a/0x250
[  443.807420][T24533]  ? __pfx_ksys_read+0x10/0x10
[  443.807441][T24533]  do_syscall_64+0xcd/0xfa0
[  443.807466][T24533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.807482][T24533] RIP: 0033:0x7fb08958e0dc
[  443.807496][T24533] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  443.807511][T24533] RSP: 002b:00007fb08a3fa030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  443.807526][T24533] RAX: ffffffffffffffda RBX: 00007fb0897e5fa0 RCX: 00007fb08958e0dc
[  443.807536][T24533] RDX: 000000000000000f RSI: 00007fb08a3fa0a0 RDI: 0000000000000004
[  443.807546][T24533] RBP: 00007fb08a3fa090 R08: 0000000000000000 R09: 0000000000000000
[  443.807555][T24533] R10: 0000000000000093 R11: 0000000000000246 R12: 0000000000000001
[  443.807565][T24533] R13: 00007fb0897e6038 R14: 00007fb0897e5fa0 R15: 00007fff0ed0c038
[  443.807588][T24533]  </TASK>
[  444.171499][T24562] md: superblock version 1852990827 not known
[  444.173512][T24562] md: couldn't set array info. -22
[  444.263525][T24581] binder: BINDER_SET_CONTEXT_MGR already set
[  444.265979][T24581] binder: 24580:24581 ioctl 4018620d 200000000100 returned -16
[  444.271721][T24581] binder: BINDER_SET_CONTEXT_MGR already set
[  444.273298][   T40] audit: type=1400 audit(2000000393.126:1997): avc:  denied  { watch } for  pid=24582 comm="syz.2.6541" path="/404/file0" dev="tmpfs" ino=2199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  444.273704][T24581] binder: 24580:24581 ioctl 4018620d 2000000002c0 returned -16
[  444.280842][   T40] audit: type=1400 audit(2000000393.126:1998): avc:  denied  { watch_sb } for  pid=24582 comm="syz.2.6541" path="/404/file0" dev="tmpfs" ino=2199 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  444.322100][T24587] binder: 24586:24587 unknown command 1078485781
[  444.324220][T24587] binder: 24586:24587 ioctl c0306201 200000000300 returned -22
[  444.352166][T24589] binder: BINDER_SET_CONTEXT_MGR already set
[  444.355684][T24589] binder: 24588:24589 ioctl 4018620d 200000000100 returned -16
[  444.365268][T24591] /dev/sg0: Can't lookup blockdev
[  444.443458][   T40] audit: type=1400 audit(2000000393.285:1999): avc:  denied  { ioctl } for  pid=24588 comm="syz.4.6544" path="socket:[109101]" dev="sockfs" ino=109101 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  444.444988][T24594] binder: BINDER_SET_CONTEXT_MGR already set
[  444.453409][T24594] binder: 24588:24594 ioctl 4018620d 2000000002c0 returned -16
[  444.460529][T24594] binder: 24588:24594 ioctl c0306201 200000000140 returned -14
[  444.502833][T24593] md: superblock version 1852990827 not known
[  444.505464][T24593] md: couldn't set array info. -22
[  444.591991][T24600] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  444.595414][T24600] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24600 comm=syz.3.6548
[  444.735253][   T40] audit: type=1400 audit(2000000393.556:2000): avc:  denied  { setattr } for  pid=24611 comm="syz.3.6553" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  444.764495][T24615] FAULT_INJECTION: forcing a failure.
[  444.764495][T24615] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  444.768546][T24615] CPU: 1 UID: 0 PID: 24615 Comm: syz.3.6554 Not tainted syzkaller #0 PREEMPT(full) 
[  444.768561][T24615] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  444.768568][T24615] Call Trace:
[  444.768572][T24615]  <TASK>
[  444.768577][T24615]  dump_stack_lvl+0x16c/0x1f0
[  444.768597][T24615]  should_fail_ex+0x512/0x640
[  444.768612][T24615]  _copy_to_user+0x32/0xd0
[  444.768632][T24615]  simple_read_from_buffer+0xcb/0x170
[  444.768650][T24615]  proc_fail_nth_read+0x197/0x240
[  444.768664][T24615]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  444.768677][T24615]  ? rw_verify_area+0xcf/0x6c0
[  444.768692][T24615]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  444.768704][T24615]  vfs_read+0x1e4/0xcf0
[  444.768716][T24615]  ? __pfx___mutex_lock+0x10/0x10
[  444.768727][T24615]  ? __pfx_vfs_read+0x10/0x10
[  444.768740][T24615]  ? __fget_files+0x20e/0x3c0
[  444.768754][T24615]  ksys_read+0x12a/0x250
[  444.768764][T24615]  ? __pfx_ksys_read+0x10/0x10
[  444.768777][T24615]  do_syscall_64+0xcd/0xfa0
[  444.768794][T24615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.768806][T24615] RIP: 0033:0x7f1d4d78e0dc
[  444.768815][T24615] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  444.768826][T24615] RSP: 002b:00007f1d4b9ee030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  444.768841][T24615] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78e0dc
[  444.768848][T24615] RDX: 000000000000000f RSI: 00007f1d4b9ee0a0 RDI: 0000000000000004
[  444.768854][T24615] RBP: 00007f1d4b9ee090 R08: 0000000000000000 R09: 0000000000000000
[  444.768860][T24615] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  444.768866][T24615] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  444.768879][T24615]  </TASK>
[  444.769743][   T40] audit: type=1400 audit(2000000393.593:2001): avc:  denied  { watch_sb watch_reads } for  pid=24614 comm="syz.2.6555" path="/409/file0" dev="tmpfs" ino=2227 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  444.965069][T24624] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  444.969712][T24624] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24624 comm=syz.5.6558
[  444.975371][   T40] audit: type=1326 audit(2000000393.790:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24629 comm="syz.3.6560" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d4d78f6c9 code=0x0
[  445.046848][   T40] audit: type=1400 audit(2000000393.846:2003): avc:  denied  { watch_mount } for  pid=24633 comm="syz.5.6562" path="/218" dev="tmpfs" ino=1177 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  445.177887][T24634] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6562'.
[  445.339352][   T40] audit: type=1400 audit(2000000394.126:2004): avc:  denied  { connect } for  pid=24641 comm="syz.4.6565" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  445.348545][   T40] audit: type=1400 audit(2000000394.126:2005): avc:  denied  { setopt } for  pid=24641 comm="syz.4.6565" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  445.404314][   T40] audit: type=1400 audit(2000000394.192:2006): avc:  denied  { mount } for  pid=24643 comm="syz.4.6567" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  445.420521][T24651] FAULT_INJECTION: forcing a failure.
[  445.420521][T24651] name failslab, interval 1, probability 0, space 0, times 0
[  445.426371][T24651] CPU: 3 UID: 0 PID: 24651 Comm: syz.5.6568 Not tainted syzkaller #0 PREEMPT(full) 
[  445.426400][T24651] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  445.426415][T24651] Call Trace:
[  445.426421][T24651]  <TASK>
[  445.426429][T24651]  dump_stack_lvl+0x16c/0x1f0
[  445.426461][T24651]  should_fail_ex+0x512/0x640
[  445.426482][T24651]  ? __kmalloc_cache_noprof+0x5f/0x780
[  445.426518][T24651]  should_failslab+0xc2/0x120
[  445.426539][T24651]  __kmalloc_cache_noprof+0x72/0x780
[  445.426564][T24651]  ? binder_alloc_new_buf+0x1c0/0x3190
[  445.426586][T24651]  ? binder_alloc_new_buf+0x1c0/0x3190
[  445.426611][T24651]  binder_alloc_new_buf+0x1c0/0x3190
[  445.426631][T24651]  ? __pfx_binder_debug+0x10/0x10
[  445.426662][T24651]  ? __pfx_binder_alloc_new_buf+0x10/0x10
[  445.426688][T24651]  binder_transaction+0x1d09/0x9d10
[  445.426737][T24651]  ? __lock_acquire+0x622/0x1c90
[  445.426769][T24651]  ? __pfx_binder_transaction+0x10/0x10
[  445.426804][T24651]  ? find_held_lock+0x2b/0x80
[  445.426827][T24651]  ? is_bpf_text_address+0x8a/0x1a0
[  445.426854][T24651]  ? __lock_acquire+0xb8a/0x1c90
[  445.426899][T24651]  ? find_held_lock+0x2b/0x80
[  445.426920][T24651]  ? __might_fault+0xe3/0x190
[  445.426946][T24651]  ? __might_fault+0xe3/0x190
[  445.426970][T24651]  ? __might_fault+0x13b/0x190
[  445.427005][T24651]  binder_thread_write+0xaae/0x4e70
[  445.427044][T24651]  ? __pfx_binder_thread_write+0x10/0x10
[  445.427072][T24651]  ? binder_debug+0xde/0x1a0
[  445.427098][T24651]  ? binder_debug+0xde/0x1a0
[  445.427120][T24651]  ? __pfx_binder_debug+0x10/0x10
[  445.427144][T24651]  ? find_held_lock+0x2b/0x80
[  445.427178][T24651]  binder_ioctl+0x26db/0x73b0
[  445.427221][T24651]  ? tomoyo_path_number_perm+0x18d/0x580
[  445.427259][T24651]  ? __pfx_binder_ioctl+0x10/0x10
[  445.427289][T24651]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.427314][T24651]  ? do_vfs_ioctl+0x128/0x14f0
[  445.427340][T24651]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  445.427365][T24651]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  445.427415][T24651]  ? hook_file_ioctl_common+0x145/0x410
[  445.427446][T24651]  ? selinux_file_ioctl+0x180/0x270
[  445.427465][T24651]  ? selinux_file_ioctl+0xb4/0x270
[  445.427486][T24651]  ? __pfx_binder_ioctl+0x10/0x10
[  445.427514][T24651]  __x64_sys_ioctl+0x18e/0x210
[  445.427541][T24651]  do_syscall_64+0xcd/0xfa0
[  445.427570][T24651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.427588][T24651] RIP: 0033:0x7f8d0818f6c9
[  445.427604][T24651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.427642][T24651] RSP: 002b:00007f8d09089038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  445.427660][T24651] RAX: ffffffffffffffda RBX: 00007f8d083e5fa0 RCX: 00007f8d0818f6c9
[  445.427672][T24651] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  445.427683][T24651] RBP: 00007f8d09089090 R08: 0000000000000000 R09: 0000000000000000
[  445.427694][T24651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  445.427704][T24651] R13: 00007f8d083e6038 R14: 00007f8d083e5fa0 R15: 00007ffef8019f28
[  445.427730][T24651]  </TASK>
[  445.461959][T24653] binder: BINDER_SET_CONTEXT_MGR already set
[  445.542270][T24653] binder: 24652:24653 ioctl 4018620d 200000000100 returned -16
[  445.543553][T24656] binder: BINDER_SET_CONTEXT_MGR already set
[  445.547338][T24656] binder: 24652:24656 ioctl 4018620d 2000000002c0 returned -16
[  445.700775][T24669] ip6tnl1: entered promiscuous mode
[  445.876033][T24682] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  445.880494][T24682] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24682 comm=syz.2.6581
[  445.960438][T24703] binder: BINDER_SET_CONTEXT_MGR already set
[  445.962947][T24703] binder: 24702:24703 ioctl 4018620d 200000000100 returned -16
[  445.965367][T24705] FAULT_INJECTION: forcing a failure.
[  445.965367][T24705] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  445.973491][T24707] netlink: 52 bytes leftover after parsing attributes in process `syz.5.6591'.
[  445.973535][T24703] netlink: 1347 bytes leftover after parsing attributes in process `syz.4.6589'.
[  445.976099][T24705] CPU: 1 UID: 0 PID: 24705 Comm: syz.2.6590 Not tainted syzkaller #0 PREEMPT(full) 
[  445.976124][T24705] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  445.976138][T24705] Call Trace:
[  445.976144][T24705]  <TASK>
[  445.976153][T24705]  dump_stack_lvl+0x16c/0x1f0
[  445.976186][T24705]  should_fail_ex+0x512/0x640
[  445.976213][T24705]  should_fail_alloc_page+0xe7/0x130
[  445.976238][T24705]  prepare_alloc_pages+0x3c2/0x610
[  445.976261][T24705]  ? look_up_lock_class+0x59/0x150
[  445.976292][T24705]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  445.976326][T24705]  ? __lock_acquire+0xb8a/0x1c90
[  445.976359][T24705]  ? kasan_save_stack+0x33/0x60
[  445.976377][T24705]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  445.976410][T24705]  ? __pfx___mutex_trylock_common+0x10/0x10
[  445.976432][T24705]  ? rcu_is_watching+0x12/0xc0
[  445.976457][T24705]  ? trace_contention_end+0xdd/0x130
[  445.976476][T24705]  ? find_held_lock+0x2b/0x80
[  445.976499][T24705]  ? binder_alloc_new_buf+0x1590/0x3190
[  445.976515][T24705]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.976542][T24705]  ? policy_nodemask+0xea/0x4e0
[  445.976566][T24705]  alloc_pages_mpol+0x1fb/0x550
[  445.976590][T24705]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  445.976612][T24705]  ? rcu_is_watching+0x12/0xc0
[  445.976634][T24705]  ? kfree+0x252/0x6d0
[  445.976662][T24705]  alloc_pages_noprof+0x131/0x390
[  445.976685][T24705]  binder_alloc_new_buf+0x17d2/0x3190
[  445.976716][T24705]  ? __pfx_binder_alloc_new_buf+0x10/0x10
[  445.976741][T24705]  binder_transaction+0x1d09/0x9d10
[  445.976798][T24705]  ? __lock_acquire+0x622/0x1c90
[  445.976830][T24705]  ? __pfx_binder_transaction+0x10/0x10
[  445.976864][T24705]  ? find_held_lock+0x2b/0x80
[  445.976887][T24705]  ? is_bpf_text_address+0x8a/0x1a0
[  445.976913][T24705]  ? __lock_acquire+0xb8a/0x1c90
[  445.976953][T24705]  ? find_held_lock+0x2b/0x80
[  445.976975][T24705]  ? __might_fault+0xe3/0x190
[  445.977001][T24705]  ? __might_fault+0xe3/0x190
[  445.977025][T24705]  ? __might_fault+0x13b/0x190
[  445.977063][T24705]  binder_thread_write+0xaae/0x4e70
[  445.977102][T24705]  ? __pfx_binder_thread_write+0x10/0x10
[  445.977131][T24705]  ? binder_debug+0xde/0x1a0
[  445.977158][T24705]  ? binder_debug+0xde/0x1a0
[  445.977182][T24705]  ? __pfx_binder_debug+0x10/0x10
[  445.977206][T24705]  ? find_held_lock+0x2b/0x80
[  445.977241][T24705]  binder_ioctl+0x26db/0x73b0
[  445.977279][T24705]  ? tomoyo_path_number_perm+0x18d/0x580
[  445.977313][T24705]  ? __pfx_binder_ioctl+0x10/0x10
[  445.977342][T24705]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.977365][T24705]  ? do_vfs_ioctl+0x128/0x14f0
[  445.977390][T24705]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  445.977415][T24705]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  445.977444][T24705]  ? hook_file_ioctl_common+0x145/0x410
[  445.977474][T24705]  ? selinux_file_ioctl+0x180/0x270
[  445.977492][T24705]  ? selinux_file_ioctl+0xb4/0x270
[  445.977512][T24705]  ? __pfx_binder_ioctl+0x10/0x10
[  445.977536][T24705]  __x64_sys_ioctl+0x18e/0x210
[  445.977562][T24705]  do_syscall_64+0xcd/0xfa0
[  445.977590][T24705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.977609][T24705] RIP: 0033:0x7f4fe838f6c9
[  445.977624][T24705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.977641][T24705] RSP: 002b:00007f4fe9193038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  445.977659][T24705] RAX: ffffffffffffffda RBX: 00007f4fe85e5fa0 RCX: 00007f4fe838f6c9
[  445.977670][T24705] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  445.977681][T24705] RBP: 00007f4fe9193090 R08: 0000000000000000 R09: 0000000000000000
[  445.977692][T24705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  445.977702][T24705] R13: 00007f4fe85e6038 R14: 00007f4fe85e5fa0 R15: 00007ffdbc108348
[  445.977728][T24705]  </TASK>
[  446.032320][T24715] binder: BINDER_SET_CONTEXT_MGR already set
[  446.114612][T24715] binder: 24702:24715 ioctl 4018620d 2000000002c0 returned -16
[  446.180161][T24731] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  446.206705][T24738] FAULT_INJECTION: forcing a failure.
[  446.206705][T24738] name failslab, interval 1, probability 0, space 0, times 0
[  446.241006][T24738] CPU: 2 UID: 0 PID: 24738 Comm: syz.5.6601 Not tainted syzkaller #0 PREEMPT(full) 
[  446.241031][T24738] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  446.241041][T24738] Call Trace:
[  446.241049][T24738]  <TASK>
[  446.241056][T24738]  dump_stack_lvl+0x16c/0x1f0
[  446.241084][T24738]  should_fail_ex+0x512/0x640
[  446.241101][T24738]  ? __kmalloc_cache_noprof+0x5f/0x780
[  446.241127][T24738]  should_failslab+0xc2/0x120
[  446.241148][T24738]  __kmalloc_cache_noprof+0x72/0x780
[  446.241186][T24738]  ? kfree+0x252/0x6d0
[  446.241208][T24738]  ? binder_alloc_new_buf+0x180f/0x3190
[  446.241230][T24738]  ? binder_alloc_new_buf+0x180f/0x3190
[  446.241246][T24738]  binder_alloc_new_buf+0x180f/0x3190
[  446.241276][T24738]  ? __pfx_binder_alloc_new_buf+0x10/0x10
[  446.241301][T24738]  binder_transaction+0x1d09/0x9d10
[  446.241349][T24738]  ? __lock_acquire+0x622/0x1c90
[  446.241376][T24738]  ? __pfx_binder_transaction+0x10/0x10
[  446.241408][T24738]  ? find_held_lock+0x2b/0x80
[  446.241429][T24738]  ? is_bpf_text_address+0x8a/0x1a0
[  446.241454][T24738]  ? __lock_acquire+0xb8a/0x1c90
[  446.241492][T24738]  ? find_held_lock+0x2b/0x80
[  446.241512][T24738]  ? __might_fault+0xe3/0x190
[  446.241536][T24738]  ? __might_fault+0xe3/0x190
[  446.241559][T24738]  ? __might_fault+0x13b/0x190
[  446.241591][T24738]  binder_thread_write+0xaae/0x4e70
[  446.241634][T24738]  ? __pfx_binder_thread_write+0x10/0x10
[  446.241661][T24738]  ? binder_debug+0xde/0x1a0
[  446.241687][T24738]  ? binder_debug+0xde/0x1a0
[  446.241708][T24738]  ? __pfx_binder_debug+0x10/0x10
[  446.241730][T24738]  ? find_held_lock+0x2b/0x80
[  446.241765][T24738]  binder_ioctl+0x26db/0x73b0
[  446.241802][T24738]  ? tomoyo_path_number_perm+0x18d/0x580
[  446.241838][T24738]  ? __pfx_binder_ioctl+0x10/0x10
[  446.241867][T24738]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  446.241890][T24738]  ? do_vfs_ioctl+0x128/0x14f0
[  446.241914][T24738]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  446.241939][T24738]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  446.241967][T24738]  ? hook_file_ioctl_common+0x145/0x410
[  446.241998][T24738]  ? selinux_file_ioctl+0x180/0x270
[  446.242015][T24738]  ? selinux_file_ioctl+0xb4/0x270
[  446.242035][T24738]  ? __pfx_binder_ioctl+0x10/0x10
[  446.242062][T24738]  __x64_sys_ioctl+0x18e/0x210
[  446.242087][T24738]  do_syscall_64+0xcd/0xfa0
[  446.242116][T24738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.242133][T24738] RIP: 0033:0x7f8d0818f6c9
[  446.242147][T24738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.242163][T24738] RSP: 002b:00007f8d09089038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  446.242180][T24738] RAX: ffffffffffffffda RBX: 00007f8d083e5fa0 RCX: 00007f8d0818f6c9
[  446.242191][T24738] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  446.242201][T24738] RBP: 00007f8d09089090 R08: 0000000000000000 R09: 0000000000000000
[  446.242211][T24738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  446.242220][T24738] R13: 00007f8d083e6038 R14: 00007f8d083e5fa0 R15: 00007ffef8019f28
[  446.242245][T24738]  </TASK>
[  446.358014][    C2] vkms_vblank_simulate: vblank timer overrun
[  446.557291][T24766] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6611'.
[  447.793948][T24793] FAULT_INJECTION: forcing a failure.
[  447.793948][T24793] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  447.800023][T24793] CPU: 3 UID: 0 PID: 24793 Comm: syz.5.6615 Not tainted syzkaller #0 PREEMPT(full) 
[  447.800039][T24793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  447.800046][T24793] Call Trace:
[  447.800050][T24793]  <TASK>
[  447.800054][T24793]  dump_stack_lvl+0x16c/0x1f0
[  447.800074][T24793]  should_fail_ex+0x512/0x640
[  447.800089][T24793]  should_fail_alloc_page+0xe7/0x130
[  447.800102][T24793]  prepare_alloc_pages+0x3c2/0x610
[  447.800117][T24793]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  447.800138][T24793]  ? find_held_lock+0x2b/0x80
[  447.800152][T24793]  ? is_bpf_text_address+0x8a/0x1a0
[  447.800166][T24793]  ? bpf_ksym_find+0x127/0x1c0
[  447.800180][T24793]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  447.800196][T24793]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  447.800212][T24793]  ? kernel_text_address+0x8d/0x100
[  447.800225][T24793]  ? __kernel_text_address+0xd/0x40
[  447.800237][T24793]  ? look_up_lock_class+0x6b/0x150
[  447.800254][T24793]  ? register_lock_class+0x41/0x4c0
[  447.800265][T24793]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  447.800280][T24793]  ? policy_nodemask+0xea/0x4e0
[  447.800294][T24793]  alloc_pages_mpol+0x1fb/0x550
[  447.800307][T24793]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  447.800322][T24793]  alloc_pages_noprof+0x131/0x390
[  447.800335][T24793]  pte_alloc_one+0x1e/0x350
[  447.800349][T24793]  __pte_alloc+0x6d/0x380
[  447.800360][T24793]  ? __pfx___pte_alloc+0x10/0x10
[  447.800372][T24793]  ? walk_to_pmd+0x305/0x4c0
[  447.800386][T24793]  __get_locked_pte+0xa1/0xc0
[  447.800399][T24793]  insert_page+0x101/0x200
[  447.800412][T24793]  ? __pfx_insert_page+0x10/0x10
[  447.800428][T24793]  vm_insert_page+0x2c1/0x440
[  447.800439][T24793]  ? kasan_save_track+0x14/0x30
[  447.800451][T24793]  binder_alloc_new_buf+0x21ac/0x3190
[  447.800469][T24793]  ? __pfx_binder_alloc_new_buf+0x10/0x10
[  447.800484][T24793]  binder_transaction+0x1d09/0x9d10
[  447.800511][T24793]  ? __lock_acquire+0x622/0x1c90
[  447.800533][T24793]  ? __pfx_binder_transaction+0x10/0x10
[  447.800554][T24793]  ? find_held_lock+0x2b/0x80
[  447.800567][T24793]  ? is_bpf_text_address+0x8a/0x1a0
[  447.800582][T24793]  ? __lock_acquire+0xb8a/0x1c90
[  447.800605][T24793]  ? find_held_lock+0x2b/0x80
[  447.800617][T24793]  ? __might_fault+0xe3/0x190
[  447.800631][T24793]  ? __might_fault+0xe3/0x190
[  447.800646][T24793]  ? __might_fault+0x13b/0x190
[  447.800666][T24793]  binder_thread_write+0xaae/0x4e70
[  447.800688][T24793]  ? __pfx_binder_thread_write+0x10/0x10
[  447.800705][T24793]  ? binder_debug+0xde/0x1a0
[  447.800720][T24793]  ? binder_debug+0xde/0x1a0
[  447.800733][T24793]  ? __pfx_binder_debug+0x10/0x10
[  447.800747][T24793]  ? find_held_lock+0x2b/0x80
[  447.800766][T24793]  binder_ioctl+0x26db/0x73b0
[  447.800787][T24793]  ? tomoyo_path_number_perm+0x18d/0x580
[  447.800809][T24793]  ? __pfx_binder_ioctl+0x10/0x10
[  447.800827][T24793]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  447.800841][T24793]  ? do_vfs_ioctl+0x128/0x14f0
[  447.800856][T24793]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  447.800871][T24793]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  447.800888][T24793]  ? hook_file_ioctl_common+0x145/0x410
[  447.800906][T24793]  ? selinux_file_ioctl+0x180/0x270
[  447.800917][T24793]  ? selinux_file_ioctl+0xb4/0x270
[  447.800929][T24793]  ? __pfx_binder_ioctl+0x10/0x10
[  447.800946][T24793]  __x64_sys_ioctl+0x18e/0x210
[  447.800961][T24793]  do_syscall_64+0xcd/0xfa0
[  447.800978][T24793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  447.800989][T24793] RIP: 0033:0x7f8d0818f6c9
[  447.800998][T24793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  447.801008][T24793] RSP: 002b:00007f8d09089038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  447.801019][T24793] RAX: ffffffffffffffda RBX: 00007f8d083e5fa0 RCX: 00007f8d0818f6c9
[  447.801025][T24793] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000004
[  447.801031][T24793] RBP: 00007f8d09089090 R08: 0000000000000000 R09: 0000000000000000
[  447.801038][T24793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  447.801044][T24793] R13: 00007f8d083e6038 R14: 00007f8d083e5fa0 R15: 00007ffef8019f28
[  447.801057][T24793]  </TASK>
[  447.801076][T24793] binder_alloc: 24792: binder_install_single_page failed to insert page at offset 0 with -12
[  447.849901][T24795] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=24795 comm=syz.4.6616
[  447.908025][T24799] qnx4: no qnx4 filesystem (no root dir).
[  447.960578][T24795] Bluetooth: MGMT ver 1.23
[  448.119131][T24806] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  448.128036][T24806] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  449.251937][T24795] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  449.344560][T24817] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24817 comm=syz.3.6621
[  449.367785][T24809] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  449.374127][T24809] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24809 comm=syz.4.6619
[  449.574352][T24835] binder: 24834:24835 unknown command 1
[  449.576429][T24835] binder: 24834:24835 ioctl c0306201 200000000300 returned -22
[  449.802037][T24847] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  449.806528][T24847] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24847 comm=syz.2.6634
[  449.951384][T24859] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6638'.
[  450.002539][T24861] binder: 24860:24861 unknown command 0
[  450.004846][T24861] binder: 24860:24861 ioctl c0306201 200000000300 returned -22
[  450.015605][T24857] binder: BINDER_SET_CONTEXT_MGR already set
[  450.017649][T24857] binder: 24856:24857 ioctl 4018620d 2000000002c0 returned -16
[  450.039211][T24865] FAULT_INJECTION: forcing a failure.
[  450.039211][T24865] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  450.044426][T24865] CPU: 3 UID: 0 PID: 24865 Comm: syz.3.6641 Not tainted syzkaller #0 PREEMPT(full) 
[  450.044442][T24865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  450.044449][T24865] Call Trace:
[  450.044453][T24865]  <TASK>
[  450.044457][T24865]  dump_stack_lvl+0x16c/0x1f0
[  450.044479][T24865]  should_fail_ex+0x512/0x640
[  450.044505][T24865]  _copy_to_user+0x32/0xd0
[  450.044520][T24865]  simple_read_from_buffer+0xcb/0x170
[  450.044539][T24865]  proc_fail_nth_read+0x197/0x240
[  450.044552][T24865]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  450.044565][T24865]  ? rw_verify_area+0xcf/0x6c0
[  450.044581][T24865]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  450.044593][T24865]  vfs_read+0x1e4/0xcf0
[  450.044604][T24865]  ? __pfx___mutex_lock+0x10/0x10
[  450.044615][T24865]  ? __pfx_vfs_read+0x10/0x10
[  450.044628][T24865]  ? __fget_files+0x20e/0x3c0
[  450.044643][T24865]  ksys_read+0x12a/0x250
[  450.044652][T24865]  ? __pfx_ksys_read+0x10/0x10
[  450.044662][T24865]  ? fput+0x9b/0xd0
[  450.044677][T24865]  do_syscall_64+0xcd/0xfa0
[  450.044696][T24865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.044707][T24865] RIP: 0033:0x7f1d4d78e0dc
[  450.044715][T24865] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  450.044726][T24865] RSP: 002b:00007f1d4b9ee030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  450.044738][T24865] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78e0dc
[  450.044745][T24865] RDX: 000000000000000f RSI: 00007f1d4b9ee0a0 RDI: 0000000000000006
[  450.044751][T24865] RBP: 00007f1d4b9ee090 R08: 0000000000000000 R09: 0000000000000000
[  450.044757][T24865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  450.044763][T24865] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  450.044777][T24865]  </TASK>
[  450.109745][T23170] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  450.128495][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  450.128506][   T40] audit: type=1326 audit(2000000398.595:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24867 comm="syz.3.6642" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d4d78f6c9 code=0x0
[  450.346241][T24870] MTD: Attempt to mount non-MTD device "/dev/nbd2"
[  450.351492][T24870] cramfs: wrong magic
[  450.430492][T24894] binder: 24893:24894 unknown command 0
[  450.432273][T24894] binder: 24893:24894 ioctl c0306201 200000000300 returned -22
[  450.520558][T24901] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  450.525186][T24901] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24901 comm=syz.5.6654
[  450.784920][T24932] binder: BC_ATTEMPT_ACQUIRE not supported
[  450.786786][T24932] binder: 24931:24932 ioctl c0306201 200000000300 returned -22
[  450.886810][T24936] fuse: Unknown parameter 'ÿÿ00000000000000000006'
[  450.890375][T24936] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24936 comm=syz.4.6664
[  450.932709][T24941] binder: BINDER_SET_CONTEXT_MGR already set
[  450.935206][T24941] binder: 24940:24941 ioctl 4018620d 200000000100 returned -16
[  450.940601][T24941] binder: BINDER_SET_CONTEXT_MGR already set
[  450.943212][T24941] binder: 24940:24941 ioctl 4018620d 2000000002c0 returned -16
[  450.946251][T24941] binder: 24940:24941 ioctl 810c5701 200000000400 returned -22
[  450.989285][T24943] fuse: Bad value for 'fd'
[  451.100428][T24955] ------------[ cut here ]------------
[  451.102661][T24955] WARNING: CPU: 3 PID: 24955 at mm/page_alloc.c:5159 __alloc_frozen_pages_noprof+0x309/0x2470
[  451.106611][T24955] Modules linked in:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  451.108239][T24955] CPU: 3 UID: 0 PID: 24955 Comm: syz.3.6670 Not tainted syzkaller #0 PREEMPT(full) 
[  451.108833][   T40] audit: type=1400 audit(2000000399.521:2017): avc:  denied  { write } for  pid=5916 comm="syz-executor" path="pipe:[2842]" dev="pipefs" ino=2842 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  451.112897][T24955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  451.112913][T24955] RIP: 0010:__alloc_frozen_pages_noprof+0x309/0x2470
[  451.112946][T24955] Code: f0 5b 5d 41 5c 41 5d 41 5e 41 5f e9 11 61 4b 09 83 fe 0a 0f 86 0c fe ff ff 80 3d f6 6e 52 0e 00 75 0b c6 05 ed 6e 52 0e 01 90 <0f> 0b 90 45 31 f6 eb 81 4d 85 f6 74 22 44 89 fa 89 ee 4c 89 f7 e8
[  451.112963][T24955] RSP: 0018:ffffc9000d30f7b8 EFLAGS: 00010246
[  451.112979][T24955] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  451.112993][T24955] RDX: 0000000000000000 RSI: 0000000000000016 RDI: 0000000000040cc0
[  451.113004][T24955] RBP: 0000000000000016 R08: 0000000000000005 R09: 0000000000000009
[  451.113014][T24955] R10: 0000000000000016 R11: 0000000000000001 R12: 0000000000040cc0
[  451.113025][T24955] R13: 1ffff92001a61f0d R14: ffffffff9ab2e4a4 R15: 0000000000000016
[  451.113036][T24955] FS:  00007f1d4b9ee6c0(0000) GS:ffff8880d6d08000(0000) knlGS:0000000000000000
[  451.113068][T24955] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  451.113081][T24955] CR2: 00007f1d4d773360 CR3: 0000000024e09000 CR4: 0000000000352ef0
[  451.158220][T24955] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000010000
[  451.160701][T24955] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  451.163704][T24955] Call Trace:
[  451.164969][T24955]  <TASK>
[  451.165942][T24955]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  451.168304][T24955]  ? is_bpf_text_address+0x94/0x1a0
[  451.170348][T24955]  ? kernel_text_address+0x8d/0x100
[  451.172236][T24955]  ? widen_string+0xdc/0x2d0
[  451.173802][T24955]  ? __kernel_text_address+0xd/0x40
[  451.175946][T24955]  ? unwind_get_return_address+0x59/0xa0
[  451.178260][T24955]  ? arch_stack_walk+0xa6/0x100
[  451.180198][T24955]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  451.182374][T24955]  ? stack_depot_save_flags+0x29/0x9c0
[  451.184572][T24955]  ? __lock_acquire+0xb8a/0x1c90
[  451.186570][T24955]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  451.188927][T24955]  ? policy_nodemask+0xea/0x4e0
[  451.190610][T24955]  alloc_pages_mpol+0x1fb/0x550
[  451.192610][T24955]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  451.194755][T24955]  ___kmalloc_large_node+0xed/0x160
[  451.196857][T24955]  __kmalloc_large_node_noprof+0x1c/0x70
[  451.199028][T24955]  ? avc_has_extended_perms+0x47c/0x1090
[  451.201030][T24955]  __kmalloc_noprof.cold+0xc/0x62
[  451.203064][T24955]  ? drm_syncobj_array_find+0x35/0x3c0
[  451.205261][T24955]  ? drm_syncobj_array_find+0x35/0x3c0
[  451.207433][T24955]  ? kasan_quarantine_put+0x10a/0x240
[  451.209326][T24955]  drm_syncobj_array_find+0x35/0x3c0
[  451.211457][T24955]  drm_syncobj_timeline_wait_ioctl+0x238/0x390
[  451.213949][T24955]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[  451.216592][T24955]  ? find_held_lock+0x2b/0x80
[  451.218238][T24955]  ? drm_dev_exit+0x41/0x60
[  451.219980][T24955]  drm_ioctl_kernel+0x1f4/0x3e0
[  451.221926][T24955]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[  451.224596][T24955]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  451.226736][T24955]  drm_ioctl+0x5c9/0xc30
[  451.228456][T24955]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[  451.230786][T24955]  ? __pfx_drm_ioctl+0x10/0x10
[  451.232725][T24955]  ? selinux_file_ioctl+0x180/0x270
[  451.234822][T24955]  ? selinux_file_ioctl+0xb4/0x270
[  451.236879][T24955]  ? __pfx_drm_ioctl+0x10/0x10
[  451.238618][T24955]  __x64_sys_ioctl+0x18e/0x210
[  451.240242][T24955]  do_syscall_64+0xcd/0xfa0
[  451.242139][T24955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.244265][T24955] RIP: 0033:0x7f1d4d78f6c9
[  451.245721][T24955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.252731][T24955] RSP: 002b:00007f1d4b9ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  451.255551][T24955] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78f6c9
[  451.258612][T24955] RDX: 0000200000000380 RSI: 00000000c03064ca RDI: 0000000000000004
[  451.261184][T24955] RBP: 00007f1d4d811f91 R08: 0000000000000000 R09: 0000000000000000
[  451.264314][T24955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  451.266867][T24955] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  451.269865][T24955]  </TASK>
[  451.270852][T24955] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  451.273572][T24955] CPU: 3 UID: 0 PID: 24955 Comm: syz.3.6670 Not tainted syzkaller #0 PREEMPT(full) 
[  451.276653][T24955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  451.280589][T24955] Call Trace:
[  451.281652][T24955]  <TASK>
[  451.282840][T24955]  dump_stack_lvl+0x3d/0x1f0
[  451.284732][T24955]  vpanic+0x640/0x6f0
[  451.286007][T24955]  ? __alloc_frozen_pages_noprof+0x309/0x2470
[  451.288229][T24955]  panic+0xca/0xd0
[  451.289754][T24955]  ? __pfx_panic+0x10/0x10
[  451.291179][T24955]  check_panic_on_warn+0xab/0xb0
[  451.292995][T24955]  __warn+0xf6/0x3c0
[  451.294574][T24955]  ? __alloc_frozen_pages_noprof+0x309/0x2470
[  451.297006][T24955]  report_bug+0x3c3/0x580
[  451.298445][T24955]  ? __alloc_frozen_pages_noprof+0x309/0x2470
[  451.300802][T24955]  handle_bug+0x184/0x210
[  451.302535][T24955]  exc_invalid_op+0x17/0x50
[  451.304349][T24955]  asm_exc_invalid_op+0x1a/0x20
[  451.306046][T24955] RIP: 0010:__alloc_frozen_pages_noprof+0x309/0x2470
[  451.308334][T24955] Code: f0 5b 5d 41 5c 41 5d 41 5e 41 5f e9 11 61 4b 09 83 fe 0a 0f 86 0c fe ff ff 80 3d f6 6e 52 0e 00 75 0b c6 05 ed 6e 52 0e 01 90 <0f> 0b 90 45 31 f6 eb 81 4d 85 f6 74 22 44 89 fa 89 ee 4c 89 f7 e8
[  451.315242][T24955] RSP: 0018:ffffc9000d30f7b8 EFLAGS: 00010246
[  451.317479][T24955] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  451.320198][T24955] RDX: 0000000000000000 RSI: 0000000000000016 RDI: 0000000000040cc0
[  451.323197][T24955] RBP: 0000000000000016 R08: 0000000000000005 R09: 0000000000000009
[  451.325906][T24955] R10: 0000000000000016 R11: 0000000000000001 R12: 0000000000040cc0
[  451.328987][T24955] R13: 1ffff92001a61f0d R14: ffffffff9ab2e4a4 R15: 0000000000000016
[  451.331596][T24955]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  451.334103][T24955]  ? is_bpf_text_address+0x94/0x1a0
[  451.336096][T24955]  ? kernel_text_address+0x8d/0x100
[  451.337726][T24955]  ? widen_string+0xdc/0x2d0
[  451.339594][T24955]  ? __kernel_text_address+0xd/0x40
[  451.341653][T24955]  ? unwind_get_return_address+0x59/0xa0
[  451.343386][T24955]  ? arch_stack_walk+0xa6/0x100
[  451.345298][T24955]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  451.347855][T24955]  ? stack_depot_save_flags+0x29/0x9c0
[  451.350052][T24955]  ? __lock_acquire+0xb8a/0x1c90
[  451.352063][T24955]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  451.354460][T24955]  ? policy_nodemask+0xea/0x4e0
[  451.356441][T24955]  alloc_pages_mpol+0x1fb/0x550
[  451.358409][T24955]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  451.360578][T24955]  ___kmalloc_large_node+0xed/0x160
[  451.362677][T24955]  __kmalloc_large_node_noprof+0x1c/0x70
[  451.364981][T24955]  ? avc_has_extended_perms+0x47c/0x1090
[  451.366906][T24955]  __kmalloc_noprof.cold+0xc/0x62
[  451.368671][T24955]  ? drm_syncobj_array_find+0x35/0x3c0
[  451.370873][T24955]  ? drm_syncobj_array_find+0x35/0x3c0
[  451.372851][T24955]  ? kasan_quarantine_put+0x10a/0x240
[  451.374587][T24955]  drm_syncobj_array_find+0x35/0x3c0
[  451.376640][T24955]  drm_syncobj_timeline_wait_ioctl+0x238/0x390
[  451.379011][T24955]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[  451.381203][T24955]  ? find_held_lock+0x2b/0x80
[  451.382964][T24955]  ? drm_dev_exit+0x41/0x60
[  451.384850][T24955]  drm_ioctl_kernel+0x1f4/0x3e0
[  451.386739][T24955]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[  451.389120][T24955]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  451.390939][T24955]  drm_ioctl+0x5c9/0xc30
[  451.392618][T24955]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[  451.395173][T24955]  ? __pfx_drm_ioctl+0x10/0x10
[  451.397033][T24955]  ? selinux_file_ioctl+0x180/0x270
[  451.398595][T24955]  ? selinux_file_ioctl+0xb4/0x270
[  451.400493][T24955]  ? __pfx_drm_ioctl+0x10/0x10
[  451.402349][T24955]  __x64_sys_ioctl+0x18e/0x210
[  451.404229][T24955]  do_syscall_64+0xcd/0xfa0
[  451.405989][T24955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.407985][T24955] RIP: 0033:0x7f1d4d78f6c9
[  451.409480][T24955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.416239][T24955] RSP: 002b:00007f1d4b9ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  451.419366][T24955] RAX: ffffffffffffffda RBX: 00007f1d4d9e5fa0 RCX: 00007f1d4d78f6c9
[  451.421852][T24955] RDX: 0000200000000380 RSI: 00000000c03064ca RDI: 0000000000000004
[  451.424659][T24955] RBP: 00007f1d4d811f91 R08: 0000000000000000 R09: 0000000000000000
[  451.427082][T24955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  451.429727][T24955] R13: 00007f1d4d9e6038 R14: 00007f1d4d9e5fa0 R15: 00007ffff2b56348
[  451.432933][T24955]  </TASK>
[  451.434978][T24955] Kernel Offset: disabled
[  451.436667][T24955] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:41:43  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000000a RBX=0000000000000001 RCX=9fca7c1737387eae RDX=0000000000000000
RSI=ffff88802c988b58 RDI=ffff88802c988000 RBP=ffff88802c988000 RSP=ffffc90005cd73a0
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000028 R11=0000000000000001
R12=ffff88802c988b30 R13=ffff88802c988b58 R14=0000000000000001 R15=0000000000000001
RIP=ffffffff8198cb6b RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fb08a3fa6c0 ffffffff 00c00000
GS =0000 ffff8880d6a08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fb08a3f8568 CR3=000000004e8a2000 CR4=00352ef0
DR0=0000000000000000 DR1=00000000000000d8 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb089613050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb08961305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb089613057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb08961306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0896130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0896131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0897b74a8 00007fb0897b74a0 00007fb0897b7498 00007fb0897b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb08a31d100 00007fb0897b7460 00007fb0897b7478 00007fb0897b74c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0897b74b8 00007fb0897b74b0 00007fb0897b74a8 00007fb0897b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=00000000000000ef RCX=ffffffff819bf1c1 RDX=ffff88801cb08000
RSI=ffffffff819bf1af RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc9000078fb88
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=1ffff920000f1f73 R13=0000000000000200 R14=ffff88805551c900 R15=ffffc9000078fc50
RIP=ffffffff819bf1b8 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6b08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fb08a3d8f98 CR3=000000003239d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe8413050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe841305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe8413057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe841306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe84130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe84131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ab979bd0a152de4d 438708993ceb7c31 ff42d601986c99b3 f6b9d9a31e3bf957
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4c2794e5ff5c4e5a c9d83c424793d8cc bd3fe7df78619e03 c5d22c3ca297e599
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 46497d64c4b90187 4450846d4f614871 98fba501644fa4f0 7787c6e2b4739bfb
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 298029eefca90e67 2a83c45e31ebdbaa 4e391a07e08ebd0b 8a774c6830526a3a
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffffff911ac2e4 RBX=ffffffff90962a80 RCX=dffffc0000000000 RDX=ffffffff81a808e3
RSI=0000000000000000 RDI=ffffffff90962a68 RBP=ffffffff90962a80 RSP=ffffc90003c8f030
R8 =ffffffff911ac326 R9 =0000000000000000 R10=0000000000000000 R11=000000000000a808
R12=ffffffff90962a84 R13=ffffffff81a808bd R14=ffffffff90962a68 R15=ffffffff90962a7c
RIP=ffffffff816c0bae RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6c08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f00f8d17d60 CR3=0000000032156000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f00f81b76c3 00007f00f81b76c3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffca7aa4200 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555faf3f4c 000055555faf3ec0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f00f81b7d20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555faec122 000055555faeba70
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555fae3f48
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a40404002c032204 0028030220808080 8200260300020024 033c0200220302d8
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0101800404a7f408 0001000008080606 013da40404002c03 2204002803022080
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8080820026030002 0024033c02002203 02d80200200302d4 02001e0300000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001ffffffffffff ffffe50804030280 0200020303fc0200
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0003000401a00300 0000000000000000 0000003074697301 ffffffffffffffff
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85296435 RDI=ffffffff9add8780 RBP=ffffffff9add8740 RSP=ffffc9000d30f120
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=000000000000002e R14=ffffffff9add8740 R15=ffffffff852963d0
RIP=ffffffff8529645f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f1d4b9ee6c0 ffffffff 00c00000
GS =0000 ffff8880d6d08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f1d4d773360 CR3=0000000024e09000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000010000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe8413050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe841305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe8413057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe841306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe84130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4fe84131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ab979bd0a152de4d 438708993ceb7c31 ff42d601986c99b3 f6b9d9a31e3bf957
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4c2794e5ff5c4e5a c9d83c424793d8cc bd3fe7df78619e03 c5d22c3ca297e599
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 46497d64c4b90187 4450846d4f614871 98fba501644fa4f0 7787c6e2b4739bfb
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 298029eefca90e67 2a83c45e31ebdbaa 4e391a07e08ebd0b 8a774c6830526a3a
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000