last executing test programs:

45.253330245s ago: executing program 2 (id=1507):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, 0x9, 0x6, 0x201}, 0x14}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000050)

45.251538755s ago: executing program 2 (id=1509):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000002}, 0x0, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x2, 0x4, 0x3}]}]}, 0xfc}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001100)=@migrate={0x54, 0x21, 0x1, 0x0, 0x0, {{@in6=@private2, @in=@rand_addr=0x64010102, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, 0x4}, [@migrate={0x4}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x3347, 0x40100)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4})
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r2, 0xc01c64a3, &(0x7f0000000280)={0x3, r4, 0x1, 0xffff, 0xa, 0x1ff, 0x1})

45.175208404s ago: executing program 2 (id=1511):
r0 = openat$rdma_cm(0xffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000500)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000600)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x3, @private1, 0x1}, {0xa, 0x0, 0x20000005, @mcast2}, r1}}, 0x48)

45.122953544s ago: executing program 2 (id=1514):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = fanotify_init(0x10, 0x800)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="2c00844d1916000000000000000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00'})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00', @broadcast})
bind$inet(r2, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, &(0x7f00000a2000)={0x1, &(0x7f0000000200)=[{0x6}]}, 0x10)
listen(r2, 0x0)
fanotify_mark(r0, 0x455, 0x1, r1, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180), &(0x7f00000016c0))
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fdinfo/4\x00')
preadv(r5, &(0x7f0000000340)=[{&(0x7f00000008c0)=""/201, 0xc9}], 0x1, 0x0, 0x0)

45.044484015s ago: executing program 2 (id=1517):
syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x240)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
futex(&(0x7f0000000000), 0x8c, 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003300)=ANY=[@ANYBLOB="3c1100003e00010329bd700000dcdf250300000028"], 0x113c}}, 0x8004)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0xac, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @private0}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0xac}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x70, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r3, r3], 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xd, 0x5a87, 0x4, 0x1, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r4, 0x0, 0x8000000}, 0x27)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000400)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c000000100039042abd70000000000000000000", @ANYRES32=r6, @ANYBLOB="01180200031100002c0012800e00010069703665727370616e00000018000280040012"], 0x4c}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9, 0x0, 0x0, 0x4000000}, 0x0)
r8 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r8, 0x40086602, &(0x7f00000001c0)=0x20)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r9, 0x5402, &(0x7f0000000000)={0xfffffffc, 0x0, 0x0, 0x0, 0xff, "db8f2d2b3b7596160c6981acf8805944823a7f"})
write$binfmt_aout(r9, &(0x7f0000000380)=ANY=[], 0xff2e)
ioctl$TCSETS(r9, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r10 = syz_open_pts(r9, 0x0)
r11 = dup3(r10, r9, 0x0)
read$FUSE(r11, &(0x7f0000003f80)={0x2020}, 0x2020)

44.167198905s ago: executing program 2 (id=1529):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x78, 0x0, 0x0, {0x88, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x10000000, 0xffffffffffffffff, 0x0, 0x0, 0x9}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x21, 0x0, 0x2100083, 0x1, 0x0, 0xfffffffd}}, 0x50)
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

28.786206784s ago: executing program 32 (id=1529):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x78, 0x0, 0x0, {0x88, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x10000000, 0xffffffffffffffff, 0x0, 0x0, 0x9}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x21, 0x0, 0x2100083, 0x1, 0x0, 0xfffffffd}}, 0x50)
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

9.417376044s ago: executing program 0 (id=2024):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000280))
add_key(&(0x7f0000000380)='cifs.spnego\x00', &(0x7f00000003c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0100000000000000e006"])
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0xb, &(0x7f0000000140)=@framed={{}, [@printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x400}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x3e, &(0x7f0000000040)=ANY=[@ANYBLOB="0380c2000000bbbbbbbbbbbb08004500003000000000002f907864010101ac1414aa800090781200183f2500000000000000000000007f0000017f000001c751e57a020d7d3a619b5fe45d151d42398ac092e4f3e1b7317d62fbe79d36c80954ade983d960e3b0fb6f132f26183c24de79397e07f4c76f973b9258a8f25c82caf2fab6f4fb461e15821585c55fdf92d4e5f1f5263c8916fc2a04fcc9a680e168cb2cd0b03655a027dbff69452dbf85115e97d94874d3f9f2e334f9df2f43a343bc9545c1c7490f88ef3cca91b9c873a0f3904a109f2eda9b3e0d00"/232], 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DEST(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000480)={0x90, r4, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x800}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@rand_addr=0x64010100}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1000}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xa7}, @IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}]}, 0x90}, 0x1, 0x0, 0x0, 0x20000884}, 0x40)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000280)) (async)
add_key(&(0x7f0000000380)='cifs.spnego\x00', &(0x7f00000003c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0100000000000000e006"]) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0xb, &(0x7f0000000140)=@framed={{}, [@printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x400}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
syz_emit_ethernet(0x3e, &(0x7f0000000040)=ANY=[@ANYBLOB="0380c2000000bbbbbbbbbbbb08004500003000000000002f907864010101ac1414aa800090781200183f2500000000000000000000007f0000017f000001c751e57a020d7d3a619b5fe45d151d42398ac092e4f3e1b7317d62fbe79d36c80954ade983d960e3b0fb6f132f26183c24de79397e07f4c76f973b9258a8f25c82caf2fab6f4fb461e15821585c55fdf92d4e5f1f5263c8916fc2a04fcc9a680e168cb2cd0b03655a027dbff69452dbf85115e97d94874d3f9f2e334f9df2f43a343bc9545c1c7490f88ef3cca91b9c873a0f3904a109f2eda9b3e0d00"/232], 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff) (async)
sendmsg$IPVS_CMD_GET_DEST(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000480)={0x90, r4, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x800}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@rand_addr=0x64010100}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1000}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xa7}, @IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}]}, 0x90}, 0x1, 0x0, 0x0, 0x20000884}, 0x40) (async)

9.108636187s ago: executing program 0 (id=2030):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="300000001800ef0100000000000000000a000000fe800000000000001400050000000000000000000000000000000001"], 0x30}, 0x1, 0x11}, 0x0) (fail_nth: 9)

9.107854509s ago: executing program 0 (id=2032):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)={0x3c, r1, 0x132, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random="c4"}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x32}]]}, 0x3c}, 0x1, 0x0, 0x0, 0x200000d0}, 0x0)

9.030085763s ago: executing program 0 (id=2035):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)
listen(r1, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0xe1)
setxattr$system_posix_acl(&(0x7f0000000000)='./bus\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000680)={{}, {}, [], {}, [{0x8, 0x6}], {0x10, 0x1}}, 0x2c, 0x3)
getxattr(&(0x7f0000000040)='./bus\x00', &(0x7f00000000c0)=@known='system.posix_acl_access\x00', &(0x7f0000001140)=""/245, 0xf5)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f00000001c0)=0x10001)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
mkdirat(0xffffffffffffff9c, 0x0, 0x43)
mkdir(&(0x7f0000000300)='./bus\x00', 0x90)
mount$9p_virtio(&(0x7f0000000440), &(0x7f0000000480)='./bus\x00', &(0x7f00000004c0), 0x100c0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x6, &(0x7f0000000000)={0x1})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x26, &(0x7f0000000000)={0x1})
fcntl$lock(r4, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x8})
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
read$dsp(r2, &(0x7f0000000300)=""/178, 0xb2)
read$dsp(r2, &(0x7f00000000c0)=""/108, 0x6c)
syz_emit_ethernet(0x96, &(0x7f00000011c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60300600006006fffe8000000000000000000000000000bbfe8000000000000000000000000000aa01004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="84c20200907800091e0c7f000800000000000000131295a01f287338a600d9bf17d46fb28041fe0cf98962dd2a8a14d0168dfe0bf989cef0861218119c1e1489050000000000000008000000000000005a000000"], 0x0)

8.055475128s ago: executing program 0 (id=2048):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000000000)={0xa800000000000000, 0x1000, 0xffffffff, 0x0, 0x10})
unshare(0x22020400)
syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x200d01, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0))
socket$kcm(0x10, 0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r3}, 0x20)
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[0x0], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000140)})

7.70623257s ago: executing program 0 (id=2049):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000614c0000000000000000ffe43fecd68d"], 0x14}}, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a00)=@bridge_newvlan={0x18, 0x70, 0x239, 0x70bd2a, 0x25dfdbff, {0x7, 0x0, 0x0, r4}}, 0x18}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x3c, r2, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x4f}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x8001}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9dd6}]}, 0x3c}}, 0x4048801)
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r1, 0x20, 0x8, 0x25dfdbfe, {{}, {@void, @void}}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000004}, 0x4000000)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r5, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback, 0xe}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x200002, 0x30}, 0xc)
writev(r5, &(0x7f00000006c0)=[{&(0x7f00000005c0)="49e6", 0x2}], 0x1)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x38)
fcntl$setsig(r6, 0xa, 0x21)
flock(0xffffffffffffffff, 0x8)
fcntl$setlease(r6, 0x400, 0x1)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
sendmsg$inet6(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)='h', 0x1}], 0x1}, 0x20044800)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

7.621268815s ago: executing program 33 (id=2049):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000614c0000000000000000ffe43fecd68d"], 0x14}}, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a00)=@bridge_newvlan={0x18, 0x70, 0x239, 0x70bd2a, 0x25dfdbff, {0x7, 0x0, 0x0, r4}}, 0x18}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x3c, r2, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x4f}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x8001}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9dd6}]}, 0x3c}}, 0x4048801)
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r1, 0x20, 0x8, 0x25dfdbfe, {{}, {@void, @void}}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000004}, 0x4000000)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r5, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback, 0xe}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x200002, 0x30}, 0xc)
writev(r5, &(0x7f00000006c0)=[{&(0x7f00000005c0)="49e6", 0x2}], 0x1)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x38)
fcntl$setsig(r6, 0xa, 0x21)
flock(0xffffffffffffffff, 0x8)
fcntl$setlease(r6, 0x400, 0x1)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
sendmsg$inet6(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)='h', 0x1}], 0x1}, 0x20044800)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

6.143516089s ago: executing program 4 (id=2068):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0) (async)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0}) (async)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f00000008c0)={0xc0})
creat(&(0x7f0000000080)='./bus\x00', 0xa)
r5 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r6, 0x0) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x7}, {0xffff, 0xfff1}, {0xd, 0xe}}}, 0x24}}, 0x0) (async)
r7 = io_uring_setup(0x1694, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000600)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x14, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5}]}, @TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x800)

5.363272849s ago: executing program 4 (id=2069):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4})
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r2=>0x0], 0x0, 0x0, 0xfffffd52, 0x1})
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000040)={&(0x7f00005c5000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x4000})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = dup(r4)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$SIOCRSSL2CALL(r6, 0x541b, &(0x7f0000000000)=@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r8}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000380)='timer_start\x00', r9}, 0x18)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))
mlock2(&(0x7f0000200000/0x3000)=nil, 0x3000, 0x1)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x58, 0x2, 0x6, 0x3, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x4}]}]}, 0x58}}, 0x10)
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000280)={0x3, r2, 0x1, 0xffff, 0xa, 0x1ff, 0x1})

5.049424029s ago: executing program 4 (id=2072):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_hci(r0, 0x0, 0x2, 0x0, &(0x7f00000000c0))
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0xa22d1cba2adbba94, 0x0) (async)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0xa22d1cba2adbba94, 0x0)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r2, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)={'#! ', './file0'}, 0xb) (async)
write$binfmt_script(r2, &(0x7f00000001c0)={'#! ', './file0'}, 0xb)
mkdirat(r2, &(0x7f0000000080)='./file0\x00', 0x8)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x100021, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) (async)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x100021, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x5)
r5 = syz_open_dev$dri(&(0x7f0000000240), 0x2, 0x20000)
ioctl$DRM_IOCTL_GET_UNIQUE(r5, 0xc0106401, &(0x7f0000000300)={0x0, 0x0}) (async)
ioctl$DRM_IOCTL_GET_UNIQUE(r5, 0xc0106401, &(0x7f0000000300)={0x0, 0x0})
r6 = accept4(r4, 0x0, 0x0, 0x800)
r7 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8280, 0x0)
ioctl$TCSETS2(r7, 0x402c542b, &(0x7f0000002840)={0xfffff4ce, 0x6, 0x10001, 0x9, 0x9, "2ea468089ad0c9043d6e07b9f3c1bebdb0c261", 0x1ff, 0x4697})
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="400100001000080799be750000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000a3a38ea207934c256e8a80d364ac00000000763061f271da5f5740825fd1eb472e4e4429bebc9b1b5aadbf5e431685a7338dfb9b32ffe8854268fa4a762c6e2a6a9b2f197833ad47a1b9e8151fc027b038b665ac8e0b9bc7506581f3ecdb6969f2756068aefb4d5de025dbf970521110520c9606dea71fcbb7f3adc93fccb3eaf76a4a408aaf9c12abf5777d12a52129f63a627df29c34571d92fa182004", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000ffffe0000002000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000002000000000000000000000048000200656362286369706865725f6e756c6c290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000b0000000000"], 0x140}}, 0x0) (async)
sendmsg$nl_xfrm(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="400100001000080799be750000000000000000000000000000000000000000000000000000ffffac1414aa0000000000000000000000000000000000a3a38ea207934c256e8a80d364ac00000000763061f271da5f5740825fd1eb472e4e4429bebc9b1b5aadbf5e431685a7338dfb9b32ffe8854268fa4a762c6e2a6a9b2f197833ad47a1b9e8151fc027b038b665ac8e0b9bc7506581f3ecdb6969f2756068aefb4d5de025dbf970521110520c9606dea71fcbb7f3adc93fccb3eaf76a4a408aaf9c12abf5777d12a52129f63a627df29c34571d92fa182004", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000ffffe0000002000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000002000000000000000000000048000200656362286369706865725f6e756c6c290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000b0000000000"], 0x140}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r9, 0x6, 0x8, &(0x7f0000000140)=0xfffffffc, 0x4) (async)
setsockopt$inet6_tcp_int(r9, 0x6, 0x8, &(0x7f0000000140)=0xfffffffc, 0x4)
chdir(&(0x7f0000000080)='./file1\x00')
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) (async)
r10 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000100)={@map=r2, r10, 0x2a, 0x4, 0x0, @void, @value=r2}, 0x20)
ioctl$AUTOFS_IOC_READY(r10, 0xc0089364, 0x800000000000001)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r6)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r10, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x14, r11, 0x100, 0x70bd23, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000880}, 0x41)
ioctl$BLKRRPART(r2, 0x125f, 0x0)

2.423093751s ago: executing program 4 (id=2080):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xfe)
ftruncate(r2, 0x2008002)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="680000000206010300000000fffff000000000000500010006000000050005000a0000000900020073797a32000000000500040000000000140007800800064000000000080013400000004011000300686173683a6970"], 0x68}}, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043ef502"], 0xf8)

1.900802828s ago: executing program 1 (id=2084):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$unix(0x1, 0x1, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x2480)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f00000002c0)={r4, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00000014000800000000000000007f"}})
write$tun(r4, &(0x7f0000000340)={@void, @void, @llc={@snap={0x1, 0xab, "bd54", "cb9cfc", 0x886c, "a768013f58d789ec538dc5a6e066932f3e0affbd31dc457470a45cf76868611ac9180c46d0f90a25abacc3099abd51a02ec8eb34d1ea22104287996864ee802797437b1fb7f2e7abc9dcd900f4657f734c6760e3816413b24af479c507623c52feff3119e4d51a6356a1cf8638b284ea4acedd3b253f0049004331212a0bfb4adec00955a45dbfe05c896823b4861662297ce7c4b5e2490a954309a448a22ccb5c6d41bd56074deaa194f01653b06bfdf52df6a8337a022828f613c7365978aa46e8bdd8dd7f6145ff294e69289ec4349f51e0c1ab457d60c5de41b9ade3fc8898b80b0fdf007294e2d6fb0efe"}}}, 0xf6)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x400}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newtfilter={0x5c, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xf}, {}, {0x7, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0x2c, 0x2, [@TCA_FLOW_EMATCHES={0x28, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x7, 0x1, 0x1}, {0x5, 0xfffffffa, 0x7, 0x4, 0xd, 0x1}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.84197519s ago: executing program 4 (id=2085):
r0 = socket(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f00000006c0)=@base={0xf, 0x4, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r1, &(0x7f0000000340), &(0x7f00000001c0)=@tcp=r0}, 0x20)
recvfrom$inet(r0, 0x0, 0xfdfd, 0x2041, 0x0, 0x0)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
fchdir(r3)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r4}, 0xc)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[])
setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)={0x0, 0xfb, 0x3f, 0x2, 0x5, "7f8a2f45c10a64ee398ab4cd010e7a29", "3459e10e0e1d418b760f6d9bc908fa1bb1a71979e86fef3c106a3e3a212897a26d597be0bbdc4d958f74"}, 0x3f, 0x2)

1.797304579s ago: executing program 3 (id=2086):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r0, 0x3b87, &(0x7f0000000280)={0x18, 0x0, 0x1})
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
writev(r1, &(0x7f0000001480)=[{&(0x7f0000000100)="0c37f8246f3e4c0f268894edcd5b1a9964c8dae6b413288a16aa77bca416bb6c2ed80e4c948037035c05a3f6d188b7f720f619c3aed8885056565487fbfcf347f9759031056a5c6f6510bba78a970af194a3bfff9ee162bfd08f9d87b199bad71d4b704bbe05f9458f7edb6ea6df3da93d4439b26d0a2fd23b7969b4ccf926f6c02246b837960e2e6ffd0b", 0x8b}, {&(0x7f0000000440)='0', 0x1}], 0x2)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"})
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="000000001f0000001a"])
r3 = syz_io_uring_setup(0x1f88, &(0x7f0000000080)={0x0, 0x0, 0x13700, 0x0, 0x26b}, &(0x7f0000000300)=<r4=>0x0, &(0x7f0000000000)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r3, 0x54, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000008000000000000000200000d0000000006000000000000000700000003000000002e2e6100615f001a3de5b9b5b59a3dd105fb84b1f78e6f0d488409cd1ddf9541d54bac626cb6958e9b9e2379f4d7ef6174"], 0x0, 0x3c, 0x0, 0x1, 0xd, 0x0, @void, @value}, 0x28)

1.656832721s ago: executing program 3 (id=2087):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x20, 0x1402, 0x1, 0x70bd2a, 0x25dfdc02, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_DIM={0x5}]}, 0x20}, 0x1, 0xf00000000000000, 0x0, 0x4000801}, 0x40810)

1.623442242s ago: executing program 1 (id=2088):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="60000000020605000000000000000000000000001400078008000640001b0000080013400000000205000100060000000900020073797a32000000000500040000000000050005000a00000011000300686173683a69702c6d61726b"], 0x60}, 0x1, 0x0, 0x0, 0x4008840}, 0x300000000000000)

1.623054879s ago: executing program 3 (id=2089):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x58}}, 0x0) (async)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r1, 0x29, 0xcf, &(0x7f0000000000), 0x4) (async)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x8000, 0x1f7) (async)
r3 = fanotify_init(0x200, 0x0)
fanotify_mark(r3, 0x201, 0x4800003e, r2, 0x0) (async)
fanotify_mark(r3, 0x441, 0x48000001, r2, 0x0) (async)
mkdir(&(0x7f0000000200)='./bus\x00', 0x110) (async)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./bus\x00', 0x0, 0x0) (async)
syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x2, 0x47}, @l2cap_cid_signaling={{0x43}, [@l2cap_conn_rsp={{0x3, 0x76, 0x8}, {0x10, 0x4, 0x0, 0x7ff}}, @l2cap_move_chan_rsp={{0xf, 0xd, 0x4}, {0xffff}}, @l2cap_cmd_rej_unk={{0x1, 0x1, 0x2}, {0xd7}}, @l2cap_conn_rsp={{0x3, 0x2, 0x8}, {0x6, 0x2, 0x6, 0x2}}, @l2cap_move_chan_cfm={{0x10, 0x44, 0x4}, {0x81, 0x9b79}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x91, 0x2}}, @l2cap_move_chan_req={{0xe, 0x0, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x2, 0x4}, {0x4, 0xa29}}]}}, 0x4c)

1.381012323s ago: executing program 1 (id=2090):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dedbfb, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x4000)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001340)=@newtfilter={0x3c, 0x2c, 0xd2b, 0x800, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x9}, {}, {0x7, 0xf}}, [@filter_kind_options=@f_basic={{0xa}, {0xc, 0x2, [@TCA_BASIC_CLASSID={0x8, 0x1, {0x1, 0x7}}]}}]}, 0x3c}}, 0x24044094) (fail_nth: 9)

1.380772406s ago: executing program 3 (id=2091):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000011c01000000000000000100000a20000000000a030000000000000000000a0000000900010073797a3000000000e8000000090a010400000000000000000700000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000000d5f001280140001800c000100636f756e7465720004000280180001800e000100636f6e6e6c696d697400000004000280480001800e000100627974656f726465720000003400028008000340000000000800024000000001080004400000009a080001400000000c0800014000000014080004"], 0x130}}, 0x20050800)

1.311472685s ago: executing program 3 (id=2092):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000001300)=@raw={'raw\x00', 0x3c1, 0x3, 0x410, 0x1c0, 0xc8, 0x8, 0x1c0, 0x5803, 0x340, 0x2e8, 0x2e8, 0x340, 0x2e8, 0x3, 0x0, {[{{@ipv6={@remote, @local, [0xffffffff], [0x0, 0x0, 0x0, 0xffffff00], 'vlan0\x00', 'geneve1\x00', {}, {}, 0x33, 0x0, 0x6}, 0x0, 0x190, 0x1c0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5df11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f35a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1, 0x2, {0xfffffffffffffffe}}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x98, 0x5df5, 0x800}}}, {{@ipv6={@mcast2, @private0, [0x0, 0x0, 0xff], [], 'batadv_slave_1\x00', 'bridge_slave_0\x00', {}, {}, 0x0, 0x0, 0x0, 0xc}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@hbh={{0x48}, {0x0, 0x0, 0x0, [0x0, 0x1ff, 0xfffd, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5], 0xff}}, @inet=@rpfilter={{0x28, 'rpfilter\x00', 0x2}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x6, 0x6, 0x1, 0x9, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x470)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000400)={0x1, 0x0, @pic={0x2, 0x9, 0x8, 0xf6, 0x8, 0x7, 0x68, 0x2, 0x3, 0x9c, 0xfd, 0xa6, 0x81, 0x2, 0x2, 0x5}})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x20000000, 0x440, 0x821, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000], 0x0, 0x200306})
r4 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r6)
r8 = socket$kcm(0x10, 0x2, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r11, @ANYBLOB="0c00990000000000000000000800a100ffff0000080026008d03000008009f"], 0x40}}, 0x0)
sendmsg$NL80211_CMD_GET_REG(r6, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001100)={0x14, r7, 0xf09, 0x70bd2d, 0x25dfdbfe}, 0x14}}, 0x8084)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r12, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r14=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r12, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x24, r13, 0x1, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r14}, @void}}, [@NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x48011}, 0x40)
sendmsg$NL80211_CMD_NEW_INTERFACE(r4, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0xd4, r7, 0x4, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x7a}, @val={0x8, 0x3, r14}, @val={0xc, 0x99, {0x3, 0x57}}}}, [@NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_4ADDR={0x5}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "bc46ea002d21a662299a9c6cecb62587ad3c4a5654a7560d"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}], @NL80211_ATTR_IFNAME={0x14, 0x4, 'dvmrp0\x00'}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'macsec0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x5}, @NL80211_ATTR_MESH_ID={0xa}]}, 0xd4}}, 0x40081)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r15=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd30, 0x0, {0x60, 0x0, 0x0, r15, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8, 0x2, 0xfff}}]}, 0x38}}, 0x44080)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000a40)=@newqdisc={0x34, 0x24, 0x400, 0x70bd25, 0x0, {0x60, 0x0, 0x0, r15, {0x0, 0xa}, {0xf, 0xa}, {0x0, 0x10}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), r6)

1.226107044s ago: executing program 1 (id=2093):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xfe)
ftruncate(r2, 0x2008002)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="680000000206010300000000fffff000000000000500010006000000050005000a0000000900020073797a32000000000500040000000000140007800800064000000000080013400000004011000300686173683a6970"], 0x68}}, 0x0)

701.155778ms ago: executing program 1 (id=2094):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
r1 = socket(0x10, 0x803, 0x0) (async, rerun: 32)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x80000)
sendmsg$alg(r3, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x890}, 0x0) (async)
recvmsg$can_raw(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000100)=""/3, 0x3}], 0x1}, 0x40) (async, rerun: 64)
open$dir(&(0x7f0000000100)='./file0\x00', 0x149800, 0x0) (async, rerun: 64)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb) (async, rerun: 64)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) (rerun: 64)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r1) (async)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'veth1_macvtap\x00', <r5=>0x0}) (async)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=ANY=[@ANYBLOB="540000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="1535010000000000240012800b0001006d616373656300001400028005000f0002000000050007000100000008000500", @ANYRES32=r5], 0x54}}, 0x0) (async)
listen(r0, 0x1) (async)
getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="000000004080000078001280085d63be6805f35e9d04311322e62534", @ANYRES32=r7, @ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x50}, 0x0) (async)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000040)={'sit0\x00', &(0x7f0000000400)={'sit0\x00', r7, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}}}}) (async)
setsockopt$inet_int(r1, 0x0, 0x32, &(0x7f0000000140)=0x68e, 0x4)

604.881515ms ago: executing program 3 (id=2101):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
creat(0x0, 0x0)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY(r2, 0x0, 0x1, &(0x7f0000000000)=0x1, 0x4)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)="e9ba8a21a61e68371100", 0xa}}, 0x20040814)
socket$rds(0x15, 0x5, 0x0)
sendmsg$802154_dgram(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x24, @long={0x3, 0x3, {0xaaaaaaaaaaaa0102}}}, 0x14, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x4004880}, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r4, 0x4018aee2, &(0x7f0000000080)=@attr_pmu_init)

313.954887ms ago: executing program 5 (id=2050):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$key(0xf, 0x3, 0x2)
inotify_init1(0x0)
getpid()
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0x8000}]}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
syz_open_dev$vim2m(0x0, 0x7, 0x2)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

73.832365ms ago: executing program 4 (id=2095):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r0, 0x3b87, &(0x7f0000000280)={0x18, 0x0, 0x1})
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
writev(r1, &(0x7f0000001480)=[{&(0x7f0000000100)="0c37f8246f3e4c0f268894edcd5b1a9964c8dae6b413288a16aa77bca416bb6c2ed80e4c948037035c05a3f6d188b7f720f619c3aed8885056565487fbfcf347f9759031056a5c6f6510bba78a970af194a3bfff9ee162bfd08f9d87b199bad71d4b704bbe05f9458f7edb6ea6df3da93d4439b26d0a2fd23b7969b4ccf926f6c02246b837960e2e6ffd0b", 0x8b}, {&(0x7f0000000440)='0', 0x1}], 0x2)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"})
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="000000001f0000001a"])
r3 = syz_io_uring_setup(0x1f88, &(0x7f0000000080)={0x0, 0x0, 0x13700, 0x0, 0x26b}, &(0x7f0000000300)=<r4=>0x0, &(0x7f0000000000)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r3, 0x54, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000008000000000000000200000d0000000006000000000000000700000003000000002e2e6100615f001a3de5b9b5b59a3dd105fb84b1f78e6f0d488409cd1ddf9541d54bac626cb6958e9b9e2379f4d7ef6174"], 0x0, 0x3c, 0x0, 0x1, 0xd, 0x0, @void, @value}, 0x28)

0s ago: executing program 1 (id=2096):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r1, 0x0, 0x0, 0xc9100120, 0x0, 0x0)

kernel console output (not intermixed with test programs):

tch_sb watch_reads } for  pid=9910 comm="syz.3.1545" path="/434/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=2292 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  159.965213][ T9918] FAULT_INJECTION: forcing a failure.
[  159.965213][ T9918] name failslab, interval 1, probability 0, space 0, times 0
[  159.970472][ T9918] CPU: 2 UID: 0 PID: 9918 Comm: syz.3.1548 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  159.970490][ T9918] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.970497][ T9918] Call Trace:
[  159.970502][ T9918]  <TASK>
[  159.970507][ T9918]  dump_stack_lvl+0x16c/0x1f0
[  159.970536][ T9918]  should_fail_ex+0x512/0x640
[  159.970561][ T9918]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  159.970589][ T9918]  should_failslab+0xc2/0x120
[  159.970611][ T9918]  __kmalloc_cache_noprof+0x6a/0x3e0
[  159.970637][ T9918]  ? sctp_chunk_put+0x205/0x2c0
[  159.970661][ T9918]  ? sctp_datamsg_from_user+0x8d/0x1320
[  159.970684][ T9918]  sctp_datamsg_from_user+0x8d/0x1320
[  159.970698][ T9918]  ? __sk_mem_raise_allocated+0x895/0x1700
[  159.970714][ T9918]  ? sctp_prsctp_prune+0x5d0/0x7f0
[  159.970730][ T9918]  ? __sk_mem_schedule+0xd0/0x100
[  159.970744][ T9918]  sctp_sendmsg_to_asoc+0xaf5/0x1bf0
[  159.970769][ T9918]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  159.970788][ T9918]  ? do_raw_spin_lock+0x12c/0x2b0
[  159.970802][ T9918]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  159.970818][ T9918]  ? sctp_sendmsg_check_sflags+0x176/0x320
[  159.970837][ T9918]  sctp_sendmsg+0xef5/0x1ee0
[  159.970851][ T9918]  ? __pfx_avc_has_perm+0x10/0x10
[  159.970866][ T9918]  ? __pfx_sctp_sendmsg+0x10/0x10
[  159.970882][ T9918]  ? __pfx_sock_has_perm+0x10/0x10
[  159.970903][ T9918]  ? __pfx_sctp_sendmsg+0x10/0x10
[  159.970921][ T9918]  inet_sendmsg+0x119/0x140
[  159.970945][ T9918]  sock_write_iter+0x4aa/0x5b0
[  159.970967][ T9918]  ? __pfx_sock_write_iter+0x10/0x10
[  159.970998][ T9918]  ? __pfx_file_has_perm+0x10/0x10
[  159.971014][ T9918]  do_iter_readv_writev+0x657/0x950
[  159.971033][ T9918]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  159.971049][ T9918]  ? selinux_file_permission+0x11f/0x580
[  159.971070][ T9918]  ? bpf_lsm_file_permission+0x9/0x10
[  159.971086][ T9918]  ? security_file_permission+0x71/0x210
[  159.971105][ T9918]  ? rw_verify_area+0xcf/0x680
[  159.971122][ T9918]  vfs_writev+0x353/0xdc0
[  159.971143][ T9918]  ? __pfx_vfs_writev+0x10/0x10
[  159.971170][ T9918]  ? __fget_files+0x20e/0x3c0
[  159.971180][ T9918]  ? __fget_files+0x200/0x3c0
[  159.971194][ T9918]  ? do_writev+0x295/0x330
[  159.971209][ T9918]  do_writev+0x295/0x330
[  159.971226][ T9918]  ? __pfx_do_writev+0x10/0x10
[  159.971247][ T9918]  do_syscall_64+0xcd/0x260
[  159.971272][ T9918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.971285][ T9918] RIP: 0033:0x7f085bd8e969
[  159.971296][ T9918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.971308][ T9918] RSP: 002b:00007f085cb48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  159.971320][ T9918] RAX: ffffffffffffffda RBX: 00007f085bfb5fa0 RCX: 00007f085bd8e969
[  159.971327][ T9918] RDX: 0000000000000001 RSI: 00002000000003c0 RDI: 0000000000000003
[  159.971334][ T9918] RBP: 00007f085cb48090 R08: 0000000000000000 R09: 0000000000000000
[  159.971341][ T9918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.971348][ T9918] R13: 0000000000000000 R14: 00007f085bfb5fa0 R15: 00007ffeb636dd48
[  159.971362][ T9918]  </TASK>
[  160.113344][ T9921] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1550'.
[  160.118460][ T9921] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1550'.
[  160.122713][ T9923] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1550'.
[  160.127890][ T9923] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1550'.
[  160.140311][ T9925] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1551'.
[  160.151678][   T40] audit: type=1804 audit(1747166570.652:393): pid=9922 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.1549" name="/newroot/405/file0" dev="tmpfs" ino=2126 res=1 errno=0
[  160.314503][ T9936] process 'syz.3.1556' launched '/dev/fd/5' with NULL argv: empty string added
[  160.440417][ T9943] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  160.519155][ T9950] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1561'.
[  160.627180][ T9956] 9pnet_virtio: no channels available for device syz
[  160.737632][ T9959] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1564'.
[  160.958545][ T9972] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1569'.
[  161.048579][ T9984] fuse: Unknown parameter 'rmotmode'
[  161.158518][ T9989] 8021q: adding VLAN 0 to HW filter on device bond2
[  161.163651][ T9989] bond0: (slave bond2): Enslaving as an active interface with an up link
[  161.566423][T10023] FAULT_INJECTION: forcing a failure.
[  161.566423][T10023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.573577][T10023] CPU: 3 UID: 0 PID: 10023 Comm: syz.0.1587 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  161.573606][T10023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.573618][T10023] Call Trace:
[  161.573624][T10023]  <TASK>
[  161.573632][T10023]  dump_stack_lvl+0x16c/0x1f0
[  161.573662][T10023]  should_fail_ex+0x512/0x640
[  161.573691][T10023]  _copy_to_user+0x32/0xd0
[  161.573720][T10023]  simple_read_from_buffer+0xcb/0x170
[  161.573751][T10023]  proc_fail_nth_read+0x197/0x270
[  161.573780][T10023]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  161.573808][T10023]  ? rw_verify_area+0xcf/0x680
[  161.573832][T10023]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  161.573859][T10023]  vfs_read+0x1de/0xc70
[  161.573889][T10023]  ? __pfx___mutex_lock+0x10/0x10
[  161.573915][T10023]  ? __pfx_vfs_read+0x10/0x10
[  161.573949][T10023]  ? __fget_files+0x20e/0x3c0
[  161.573996][T10023]  ksys_read+0x12a/0x240
[  161.574020][T10023]  ? __pfx_ksys_read+0x10/0x10
[  161.574052][T10023]  do_syscall_64+0xcd/0x260
[  161.574076][T10023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.574092][T10023] RIP: 0033:0x7f2924d8d37c
[  161.574107][T10023] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  161.574124][T10023] RSP: 002b:00007f2925be7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  161.574140][T10023] RAX: ffffffffffffffda RBX: 00007f2924fb5fa0 RCX: 00007f2924d8d37c
[  161.574151][T10023] RDX: 000000000000000f RSI: 00007f2925be70a0 RDI: 0000000000000004
[  161.574162][T10023] RBP: 00007f2925be7090 R08: 0000000000000000 R09: 0000000000000000
[  161.574172][T10023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.574182][T10023] R13: 0000000000000000 R14: 00007f2924fb5fa0 R15: 00007ffdaedb6888
[  161.574206][T10023]  </TASK>
[  161.741236][ T5941] Bluetooth: hci1: adv larger than maximum supported
[  161.741253][ T5941] Bluetooth: hci1: Malformed LE Event: 0x0d
[  162.963343][T10087] netlink: 'syz.3.1612': attribute type 15 has an invalid length.
[  163.860979][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  163.860995][   T40] audit: type=1400 audit(1747166574.362:409): avc:  denied  { setopt } for  pid=10125 comm="syz.1.1627" laddr=fe80::a8aa:aaff:feaa:aa16 lport=4 faddr=ff01::1 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  163.930115][T10131] loop2: detected capacity change from 0 to 7
[  163.937506][T10131] Dev loop2: unable to read RDB block 7
[  163.939852][T10131]  loop2: AHDI p1 p2 p3
[  163.941651][T10131] loop2: partition table partially beyond EOD, truncated
[  163.953287][T10131] loop2: p1 start 1601398130 is beyond EOD, truncated
[  163.957279][T10131] loop2: p2 start 1702059890 is beyond EOD, truncated
[  164.007241][T10137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  164.301751][T10156] FAULT_INJECTION: forcing a failure.
[  164.301751][T10156] name failslab, interval 1, probability 0, space 0, times 0
[  164.307295][T10156] CPU: 0 UID: 0 PID: 10156 Comm: syz.3.1639 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  164.307318][T10156] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.307329][T10156] Call Trace:
[  164.307335][T10156]  <TASK>
[  164.307342][T10156]  dump_stack_lvl+0x16c/0x1f0
[  164.307391][T10156]  should_fail_ex+0x512/0x640
[  164.307424][T10156]  should_failslab+0xc2/0x120
[  164.307443][T10156]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  164.307461][T10156]  ? skb_clone+0x190/0x3f0
[  164.307484][T10156]  skb_clone+0x190/0x3f0
[  164.307510][T10156]  netlink_deliver_tap+0xabd/0xd30
[  164.307537][T10156]  netlink_unicast+0x5df/0x7f0
[  164.307561][T10156]  ? __pfx_netlink_unicast+0x10/0x10
[  164.307591][T10156]  netlink_sendmsg+0x8d1/0xdd0
[  164.307617][T10156]  ? __pfx_netlink_sendmsg+0x10/0x10
[  164.307649][T10156]  ____sys_sendmsg+0xa98/0xc70
[  164.307674][T10156]  ? copy_msghdr_from_user+0x10a/0x160
[  164.307694][T10156]  ? __pfx_____sys_sendmsg+0x10/0x10
[  164.307729][T10156]  ___sys_sendmsg+0x134/0x1d0
[  164.307750][T10156]  ? __pfx____sys_sendmsg+0x10/0x10
[  164.307802][T10156]  __sys_sendmsg+0x16d/0x220
[  164.307822][T10156]  ? __pfx___sys_sendmsg+0x10/0x10
[  164.307859][T10156]  do_syscall_64+0xcd/0x260
[  164.307886][T10156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.307905][T10156] RIP: 0033:0x7f085bd8e969
[  164.307920][T10156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.307937][T10156] RSP: 002b:00007f085cb48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  164.307955][T10156] RAX: ffffffffffffffda RBX: 00007f085bfb5fa0 RCX: 00007f085bd8e969
[  164.308001][T10156] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[  164.308011][T10156] RBP: 00007f085cb48090 R08: 0000000000000000 R09: 0000000000000000
[  164.308022][T10156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.308033][T10156] R13: 0000000000000000 R14: 00007f085bfb5fa0 R15: 00007ffeb636dd48
[  164.308058][T10156]  </TASK>
[  164.567680][T10162] __nla_validate_parse: 22 callbacks suppressed
[  164.567699][T10162] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1642'.
[  164.642753][   T40] audit: type=1400 audit(1747166575.142:410): avc:  denied  { name_bind } for  pid=10165 comm="syz.3.1644" path="socket:[30662]" dev="sockfs" ino=30662 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  165.061985][T10187] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1652'.
[  165.087806][T10188] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1651'.
[  165.093664][T10188] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1651'.
[  165.121990][T10190] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1653'.
[  165.130522][   T40] audit: type=1400 audit(1747166575.632:411): avc:  denied  { create } for  pid=10189 comm="syz.0.1653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  165.139597][   T40] audit: type=1400 audit(1747166575.642:412): avc:  denied  { bind } for  pid=10189 comm="syz.0.1653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  165.237758][   T40] audit: type=1400 audit(1747166575.742:413): avc:  denied  { setopt } for  pid=10193 comm="syz.3.1655" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  165.237828][T10194] random: crng reseeded on system resumption
[  165.251899][T10192] FAULT_INJECTION: forcing a failure.
[  165.251899][T10192] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.252807][   T40] audit: type=1400 audit(1747166575.742:414): avc:  denied  { write } for  pid=10193 comm="syz.3.1655" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  165.257334][T10192] CPU: 0 UID: 0 PID: 10192 Comm: syz.0.1654 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  165.257364][T10192] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.257376][T10192] Call Trace:
[  165.257384][T10192]  <TASK>
[  165.257392][T10192]  dump_stack_lvl+0x16c/0x1f0
[  165.257451][T10192]  should_fail_ex+0x512/0x640
[  165.257491][T10192]  _copy_from_user+0x2e/0xd0
[  165.257531][T10192]  restore_altstack+0x93/0x170
[  165.257563][T10192]  ? __pfx_restore_altstack+0x10/0x10
[  165.257594][T10192]  ? _raw_spin_unlock_irq+0x23/0x50
[  165.257620][T10192]  ? lockdep_hardirqs_on+0x7c/0x110
[  165.257646][T10192]  ? _raw_spin_unlock_irq+0x2e/0x50
[  165.257669][T10192]  ? set_current_blocked+0xdd/0x120
[  165.257691][T10192]  __do_sys_rt_sigreturn+0x13c/0x230
[  165.257723][T10192]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[  165.257759][T10192]  do_syscall_64+0xcd/0x260
[  165.257791][T10192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.257812][T10192] RIP: 0033:0x7f2924d2ab39
[  165.257831][T10192] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  165.257851][T10192] RSP: 002b:00007f2925be6340 EFLAGS: 00000206 ORIG_RAX: 000000000000000f
[  165.257872][T10192] RAX: ffffffffffffffda RBX: 00007f2924fb5fa0 RCX: 00007f2924d2ab39
[  165.257887][T10192] RDX: 00007f2925be6340 RSI: 00007f2925be6470 RDI: 0000000000000021
[  165.257900][T10192] RBP: 00007f2925be7090 R08: 0000000000000000 R09: 0000000000000000
[  165.257913][T10192] R10: 0000000000002000 R11: 0000000000000206 R12: 0000000000000001
[  165.257926][T10192] R13: 0000000000000000 R14: 00007f2924fb5fa0 R15: 00007ffdaedb6888
[  165.257954][T10192]  </TASK>
[  165.342688][   T40] audit: type=1400 audit(1747166575.742:415): avc:  denied  { open } for  pid=10193 comm="syz.3.1655" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  165.444504][   T40] audit: type=1400 audit(1747166575.952:416): avc:  denied  { ioctl } for  pid=10193 comm="syz.3.1655" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x3311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  165.541831][   T40] audit: type=1400 audit(1747166576.042:417): avc:  denied  { bind } for  pid=10206 comm="syz.0.1660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  165.626746][T10205] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1659'.
[  165.631308][T10205] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1659'.
[  165.662569][T10213] FAULT_INJECTION: forcing a failure.
[  165.662569][T10213] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.668345][T10213] CPU: 1 UID: 0 PID: 10213 Comm: syz.0.1662 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  165.668369][T10213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.668379][T10213] Call Trace:
[  165.668385][T10213]  <TASK>
[  165.668392][T10213]  dump_stack_lvl+0x16c/0x1f0
[  165.668420][T10213]  should_fail_ex+0x512/0x640
[  165.668455][T10213]  _copy_to_user+0x32/0xd0
[  165.668481][T10213]  simple_read_from_buffer+0xcb/0x170
[  165.668510][T10213]  proc_fail_nth_read+0x197/0x270
[  165.668536][T10213]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  165.668562][T10213]  ? rw_verify_area+0xcf/0x680
[  165.668584][T10213]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  165.668609][T10213]  vfs_read+0x1de/0xc70
[  165.668636][T10213]  ? __pfx___mutex_lock+0x10/0x10
[  165.668659][T10213]  ? __pfx_vfs_read+0x10/0x10
[  165.668690][T10213]  ? __fget_files+0x20e/0x3c0
[  165.668713][T10213]  ksys_read+0x12a/0x240
[  165.668738][T10213]  ? __pfx_ksys_read+0x10/0x10
[  165.668769][T10213]  do_syscall_64+0xcd/0x260
[  165.668796][T10213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.668814][T10213] RIP: 0033:0x7f2924d8d37c
[  165.668828][T10213] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  165.668844][T10213] RSP: 002b:00007f2925be7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  165.668862][T10213] RAX: ffffffffffffffda RBX: 00007f2924fb5fa0 RCX: 00007f2924d8d37c
[  165.668874][T10213] RDX: 000000000000000f RSI: 00007f2925be70a0 RDI: 0000000000000004
[  165.668884][T10213] RBP: 00007f2925be7090 R08: 0000000000000000 R09: 0000000000000000
[  165.668895][T10213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.668904][T10213] R13: 0000000000000000 R14: 00007f2924fb5fa0 R15: 00007ffdaedb6888
[  165.668928][T10213]  </TASK>
[  165.758356][T10218] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1665'.
[  166.252229][   T40] audit: type=1400 audit(1747166576.752:418): avc:  denied  { unmount } for  pid=10232 comm="syz.3.1670" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  166.259892][ T4578] Process accounting resumed
[  166.673175][ T4578] usb 8-1: new low-speed USB device number 3 using dummy_hcd
[  166.835826][ T4578] usb 8-1: config index 0 descriptor too short (expected 1307, got 27)
[  166.839356][ T4578] usb 8-1: config 0 has an invalid interface number: 0 but max is -1
[  166.842937][ T4578] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 0
[  166.846829][ T4578] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  166.850991][ T4578] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  166.855540][ T4578] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  166.863472][ T4578] usb 8-1: string descriptor 0 read error: -22
[  166.866567][ T4578] usb 8-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  166.870359][ T4578] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.884139][ T4578] usb 8-1: config 0 descriptor??
[  166.887127][T10237] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  166.892832][ T4578] hub 8-1:0.0: bad descriptor, ignoring hub
[  166.896125][ T4578] hub 8-1:0.0: probe with driver hub failed with error -5
[  166.906156][ T4578] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input22
[  167.163471][  T829] usb 8-1: USB disconnect, device number 3
[  167.240531][T10262] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1680'.
[  167.287123][T10264] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1681'.
[  167.931097][T10277] FAULT_INJECTION: forcing a failure.
[  167.931097][T10277] name failslab, interval 1, probability 0, space 0, times 0
[  167.937116][T10277] CPU: 0 UID: 0 PID: 10277 Comm: syz.1.1686 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  167.937142][T10277] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.937152][T10277] Call Trace:
[  167.937159][T10277]  <TASK>
[  167.937165][T10277]  dump_stack_lvl+0x16c/0x1f0
[  167.937194][T10277]  should_fail_ex+0x512/0x640
[  167.937226][T10277]  should_failslab+0xc2/0x120
[  167.937245][T10277]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  167.937262][T10277]  ? __alloc_skb+0x2b2/0x380
[  167.937285][T10277]  __alloc_skb+0x2b2/0x380
[  167.937301][T10277]  ? __pfx___alloc_skb+0x10/0x10
[  167.937319][T10277]  ? __print_lock_name+0xc0/0xe0
[  167.937341][T10277]  ? debug_object_activate+0x2ec/0x4c0
[  167.937363][T10277]  tcp_make_synack+0xf5/0x1d60
[  167.937381][T10277]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  167.937405][T10277]  ? __pfx_tcp_make_synack+0x10/0x10
[  167.937426][T10277]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  167.937447][T10277]  ? lockdep_hardirqs_on+0x7c/0x110
[  167.937477][T10277]  ? __pfx___mod_timer+0x10/0x10
[  167.937522][T10277]  tcp_v6_send_synack+0xcb/0xf70
[  167.937545][T10277]  ? __pfx_tcp_v6_send_synack+0x10/0x10
[  167.937565][T10277]  ? inet_csk_reqsk_queue_hash_add+0x9c/0x1e0
[  167.937587][T10277]  ? __pfx_inet_csk_reqsk_queue_hash_add+0x10/0x10
[  167.937607][T10277]  ? subflow_v6_send_synack+0xf6/0x190
[  167.937638][T10277]  tcp_conn_request+0x23bb/0x3eb0
[  167.937673][T10277]  ? __pfx_tcp_conn_request+0x10/0x10
[  167.937699][T10277]  ? __pfx___find_rr_leaf+0x10/0x10
[  167.937722][T10277]  ? fib6_node_lookup+0x12d/0x190
[  167.937757][T10277]  ? lock_acquire+0x179/0x350
[  167.937787][T10277]  ? subflow_v6_conn_request+0x1f5/0x4d0
[  167.937811][T10277]  subflow_v6_conn_request+0x1f5/0x4d0
[  167.937838][T10277]  tcp_rcv_state_process+0xa72/0x4df0
[  167.937862][T10277]  ? csum_partial+0x46/0x60
[  167.937877][T10277]  ? __pfx_csum_partial_ext+0x10/0x10
[  167.937897][T10277]  ? __skb_checksum+0x6ed/0xad0
[  167.937923][T10277]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[  167.937953][T10277]  ? __skb_checksum_complete+0x1cc/0x3f0
[  167.937980][T10277]  ? __pfx___skb_checksum_complete+0x10/0x10
[  167.938005][T10277]  ? __pfx_tcp_inbound_hash+0x10/0x10
[  167.938021][T10277]  ? __pfx_csum_partial_ext+0x10/0x10
[  167.938042][T10277]  ? __pfx_csum_block_add_ext+0x10/0x10
[  167.938070][T10277]  ? tcp_v6_do_rcv+0x492/0x1740
[  167.938088][T10277]  tcp_v6_do_rcv+0x492/0x1740
[  167.938107][T10277]  ? __kasan_check_write+0x20/0x20
[  167.938136][T10277]  tcp_v6_rcv+0x3b15/0x41e0
[  167.938171][T10277]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  167.938189][T10277]  ? __pfx_nf_nat_ipv6_local_in+0x10/0x10
[  167.938214][T10277]  ? lock_acquire+0x179/0x350
[  167.938244][T10277]  ? __pfx_raw6_local_deliver+0x10/0x10
[  167.938268][T10277]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  167.938287][T10277]  ip6_protocol_deliver_rcu+0x188/0x1520
[  167.938324][T10277]  ip6_input_finish+0x102/0x180
[  167.938348][T10277]  ip6_input+0x105/0x2f0
[  167.938369][T10277]  ? __pfx_ip6_input+0x10/0x10
[  167.938389][T10277]  ipv6_rcv+0x265/0x680
[  167.938411][T10277]  ? __pfx_ipv6_rcv+0x10/0x10
[  167.938431][T10277]  __netif_receive_skb_one_core+0x12d/0x1e0
[  167.938459][T10277]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  167.938486][T10277]  ? lock_acquire+0x179/0x350
[  167.938518][T10277]  __netif_receive_skb+0x1d/0x160
[  167.938544][T10277]  netif_receive_skb+0x137/0x7b0
[  167.938570][T10277]  ? __pfx_netif_receive_skb+0x10/0x10
[  167.938604][T10277]  tun_rx_batched.isra.0+0x3ee/0x740
[  167.938634][T10277]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  167.938666][T10277]  ? tun_get_user+0x1c0d/0x3b10
[  167.938689][T10277]  ? rcu_is_watching+0x12/0xc0
[  167.938713][T10277]  tun_get_user+0x2897/0x3b10
[  167.938750][T10277]  ? __pfx_tun_get_user+0x10/0x10
[  167.938774][T10277]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  167.938805][T10277]  ? find_held_lock+0x2b/0x80
[  167.938826][T10277]  ? tun_get+0x191/0x370
[  167.938855][T10277]  tun_chr_write_iter+0xdc/0x210
[  167.938873][T10277]  vfs_write+0x5bd/0x1180
[  167.938899][T10277]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  167.938918][T10277]  ? __pfx_vfs_write+0x10/0x10
[  167.938940][T10277]  ? find_held_lock+0x2b/0x80
[  167.938976][T10277]  ksys_write+0x12a/0x240
[  167.939000][T10277]  ? __pfx_ksys_write+0x10/0x10
[  167.939032][T10277]  do_syscall_64+0xcd/0x260
[  167.939058][T10277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.939074][T10277] RIP: 0033:0x7f5039b8d41f
[  167.939088][T10277] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  167.939104][T10277] RSP: 002b:00007f503aa71000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  167.939121][T10277] RAX: ffffffffffffffda RBX: 00007f5039db5fa0 RCX: 00007f5039b8d41f
[  167.939134][T10277] RDX: 0000000000000096 RSI: 00002000000011c0 RDI: 00000000000000c8
[  167.939144][T10277] RBP: 00007f503aa71090 R08: 0000000000000000 R09: 0000000000000000
[  167.939156][T10277] R10: 0000000000000096 R11: 0000000000000293 R12: 0000000000000001
[  167.939167][T10277] R13: 0000000000000000 R14: 00007f5039db5fa0 R15: 00007fffde6e8328
[  167.939192][T10277]  </TASK>
[  168.176608][T10280] Debayer A: =================  START STATUS  =================
[  168.179653][T10280] Debayer A: Debayer Mean Window Size: 3
[  168.182877][T10280] Debayer A: ==================  END STATUS  ==================
[  169.528789][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  169.528800][   T40] audit: type=1400 audit(1747166579.953:424): avc:  denied  { ioctl } for  pid=10321 comm="syz.0.1699" path="socket:[32079]" dev="sockfs" ino=32079 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  169.636174][T10326] Debayer A: =================  START STATUS  =================
[  169.639581][T10326] Debayer A: Debayer Mean Window Size: 3
[  169.645660][T10326] Debayer A: ==================  END STATUS  ==================
[  169.807062][T10333] Debayer A: =================  START STATUS  =================
[  169.810206][T10333] Debayer A: Debayer Mean Window Size: 3
[  169.812840][T10333] Debayer A: ==================  END STATUS  ==================
[  169.997728][T10343] FAULT_INJECTION: forcing a failure.
[  169.997728][T10343] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.003023][T10343] CPU: 2 UID: 0 PID: 10343 Comm: syz.1.1709 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  170.003050][T10343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.003061][T10343] Call Trace:
[  170.003069][T10343]  <TASK>
[  170.003077][T10343]  dump_stack_lvl+0x16c/0x1f0
[  170.003132][T10343]  should_fail_ex+0x512/0x640
[  170.003170][T10343]  _copy_to_iter+0x2a4/0x15a0
[  170.003198][T10343]  ? __pfx___up_read+0x10/0x10
[  170.003220][T10343]  ? traverse.part.0.constprop.0+0x2bd/0x640
[  170.003248][T10343]  ? __pfx__copy_to_iter+0x10/0x10
[  170.003277][T10343]  ? traverse.part.0.constprop.0+0x2c5/0x640
[  170.003313][T10343]  seq_read_iter+0x719/0x12c0
[  170.003360][T10343]  vfs_read+0x8cb/0xc70
[  170.003393][T10343]  ? __pfx_vfs_read+0x10/0x10
[  170.003418][T10343]  ? find_held_lock+0x2b/0x80
[  170.003457][T10343]  __x64_sys_pread64+0x1f4/0x250
[  170.003486][T10343]  ? __pfx___x64_sys_pread64+0x10/0x10
[  170.003523][T10343]  do_syscall_64+0xcd/0x260
[  170.003551][T10343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.003570][T10343] RIP: 0033:0x7f5039b8e969
[  170.003585][T10343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.003603][T10343] RSP: 002b:00007f503aa71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  170.003621][T10343] RAX: ffffffffffffffda RBX: 00007f5039db5fa0 RCX: 00007f5039b8e969
[  170.003634][T10343] RDX: 00000000000000ed RSI: 0000200000002240 RDI: 0000000000000003
[  170.003646][T10343] RBP: 00007f503aa71090 R08: 0000000000000000 R09: 0000000000000000
[  170.003658][T10343] R10: 00000000000004eb R11: 0000000000000246 R12: 0000000000000001
[  170.003671][T10343] R13: 0000000000000000 R14: 00007f5039db5fa0 R15: 00007fffde6e8328
[  170.003699][T10343]  </TASK>
[  170.119280][   T40] audit: type=1400 audit(1747166580.495:425): avc:  denied  { setopt } for  pid=10344 comm="syz.3.1710" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  170.133999][T10348] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  170.210703][T10354] __nla_validate_parse: 1 callbacks suppressed
[  170.210719][T10354] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1713'.
[  170.247216][T10356] Debayer A: =================  START STATUS  =================
[  170.250625][T10356] Debayer A: Debayer Mean Window Size: 3
[  170.253190][T10356] Debayer A: ==================  END STATUS  ==================
[  170.997081][ T1022] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  171.121325][T10384] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1724'.
[  171.171597][ T1022] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  171.176997][ T1022] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  171.184335][ T1022] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  171.184751][T10386] Debayer A: =================  START STATUS  =================
[  171.189236][ T1022] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.195254][T10386] Debayer A: Debayer Mean Window Size: 3
[  171.198264][T10386] Debayer A: ==================  END STATUS  ==================
[  171.198663][ T1022] usb 5-1: config 0 descriptor??
[  171.209174][ T1022] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  171.718432][T10401] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1731'.
[  171.765449][   T40] audit: type=1400 audit(1747166582.039:426): avc:  denied  { bind } for  pid=10402 comm="syz.3.1732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  171.779528][   T40] audit: type=1400 audit(1747166582.039:427): avc:  denied  { listen } for  pid=10402 comm="syz.3.1732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  171.787071][   T40] audit: type=1400 audit(1747166582.039:428): avc:  denied  { accept } for  pid=10402 comm="syz.3.1732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  171.801839][   T40] audit: type=1400 audit(1747166582.039:429): avc:  denied  { write } for  pid=10402 comm="syz.3.1732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  171.809408][   T40] audit: type=1400 audit(1747166582.058:430): avc:  denied  { read } for  pid=10402 comm="syz.3.1732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  171.927379][T10407] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1733'.
[  171.933335][T10407] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1733'.
[  171.936931][T10407] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1733'.
[  171.944029][T10407] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1733'.
[  172.338341][T10420] random: crng reseeded on system resumption
[  172.343337][   T40] audit: type=1400 audit(1747166582.581:431): avc:  denied  { append } for  pid=10419 comm="syz.1.1739" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  172.537514][T10420] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1739'.
[  172.541786][T10420] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1739'.
[  172.545627][T10420] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1739'.
[  173.143946][   T40] audit: type=1400 audit(1747166583.330:432): avc:  denied  { getopt } for  pid=10430 comm="syz.1.1742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  173.334393][   T40] audit: type=1800 audit(1747166583.507:433): pid=10435 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1744" name="bus" dev="9p" ino=35913881 res=0 errno=0
[  173.933336][ T6000] usb 5-1: USB disconnect, device number 7
[  174.215217][ T5287] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  174.220316][ T5287] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  174.224379][ T5287] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  174.233622][ T5287] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  174.239401][ T5287] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  174.432761][T10478] chnl_net:caif_netlink_parms(): no params data found
[  174.482992][  T829] libceph: connect (1)[c::]:6789 error -101
[  174.486470][  T829] libceph: mon0 (1)[c::]:6789 connect error
[  174.531223][ T5989] libceph: connect (1)[b::]:6789 error -101
[  174.536215][ T5989] libceph: mon0 (1)[b::]:6789 connect error
[  174.567086][T10478] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.569801][T10478] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.572234][T10478] bridge_slave_0: entered allmulticast mode
[  174.575573][T10478] bridge_slave_0: entered promiscuous mode
[  174.580228][T10478] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.583035][T10478] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.585453][T10478] bridge_slave_1: entered allmulticast mode
[  174.588222][T10478] bridge_slave_1: entered promiscuous mode
[  174.628138][T10478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  174.633450][T10478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  174.673764][T10478] team0: Port device team_slave_0 added
[  174.678928][T10478] team0: Port device team_slave_1 added
[  174.717356][T10478] batman_adv: batadv0: Adding interface: batadv_slave_0
[  174.721983][T10478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.732189][T10478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  174.738240][T10478] batman_adv: batadv0: Adding interface: batadv_slave_1
[  174.743266][T10478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.755189][T10478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  174.763978][  T829] libceph: connect (1)[c::]:6789 error -101
[  174.766396][  T829] libceph: mon0 (1)[c::]:6789 connect error
[  174.801622][T10478] hsr_slave_0: entered promiscuous mode
[  174.804418][T10478] hsr_slave_1: entered promiscuous mode
[  174.807330][T10478] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  174.810629][T10478] Cannot create hsr debugfs directory
[  174.817543][   T34] libceph: connect (1)[b::]:6789 error -101
[  174.819695][   T34] libceph: mon0 (1)[b::]:6789 connect error
[  174.982914][T10478] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  174.989427][T10478] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  174.994253][T10478] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  175.000663][T10478] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  175.014606][T10478] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.016929][T10478] bridge0: port 2(bridge_slave_1) entered forwarding state
[  175.019637][T10478] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.022152][T10478] bridge0: port 1(bridge_slave_0) entered forwarding state
[  175.057535][T10478] 8021q: adding VLAN 0 to HW filter on device bond0
[  175.070284][ T1142] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.076214][ T1142] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.097474][T10478] 8021q: adding VLAN 0 to HW filter on device team0
[  175.108452][ T6289] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.110874][ T6289] bridge0: port 1(bridge_slave_0) entered forwarding state
[  175.118966][ T6289] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.122222][ T6289] bridge0: port 2(bridge_slave_1) entered forwarding state
[  175.243737][T10512] block nbd0: shutting down sockets
[  175.308859][  T829] libceph: connect (1)[c::]:6789 error -101
[  175.311911][  T829] libceph: mon0 (1)[c::]:6789 connect error
[  175.314131][T10478] 8021q: adding VLAN 0 to HW filter on device batadv0
[  175.354257][T10496] ceph: No mds server is up or the cluster is laggy
[  175.354260][T10502] ceph: No mds server is up or the cluster is laggy
[  175.364199][ T5989] libceph: connect (1)[b::]:6789 error -101
[  175.368047][ T5989] libceph: mon0 (1)[b::]:6789 connect error
[  175.394257][T10524] FAULT_INJECTION: forcing a failure.
[  175.394257][T10524] name failslab, interval 1, probability 0, space 0, times 0
[  175.405802][T10524] CPU: 0 UID: 0 PID: 10524 Comm: syz.0.1770 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  175.405917][T10524] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.405930][T10524] Call Trace:
[  175.405939][T10524]  <TASK>
[  175.405947][T10524]  dump_stack_lvl+0x16c/0x1f0
[  175.406023][T10524]  should_fail_ex+0x512/0x640
[  175.406091][T10524]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  175.406175][T10524]  should_failslab+0xc2/0x120
[  175.406198][T10524]  __kmalloc_cache_noprof+0x6a/0x3e0
[  175.406225][T10524]  ? nfnl_err_add+0x4e/0x2d0
[  175.406296][T10524]  nfnl_err_add+0x4e/0x2d0
[  175.406363][T10524]  nfnetlink_rcv_batch+0xca3/0x2350
[  175.406446][T10524]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  175.406476][T10524]  ? find_held_lock+0x2b/0x80
[  175.406596][T10524]  ? avc_has_perm_noaudit+0x149/0x3b0
[  175.406683][T10524]  ? __nla_parse+0x40/0x60
[  175.406705][T10524]  nfnetlink_rcv+0x3c1/0x430
[  175.406769][T10524]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  175.406801][T10524]  netlink_unicast+0x53d/0x7f0
[  175.406906][T10524]  ? __pfx_netlink_unicast+0x10/0x10
[  175.406938][T10524]  netlink_sendmsg+0x8d1/0xdd0
[  175.407004][T10524]  ? __pfx_netlink_sendmsg+0x10/0x10
[  175.407079][T10524]  ____sys_sendmsg+0xa98/0xc70
[  175.407152][T10524]  ? copy_msghdr_from_user+0x10a/0x160
[  175.407214][T10524]  ? __pfx_____sys_sendmsg+0x10/0x10
[  175.407253][T10524]  ___sys_sendmsg+0x134/0x1d0
[  175.407315][T10524]  ? __pfx____sys_sendmsg+0x10/0x10
[  175.407367][T10524]  __sys_sendmsg+0x16d/0x220
[  175.407388][T10524]  ? __pfx___sys_sendmsg+0x10/0x10
[  175.407415][T10524]  ? rcu_is_watching+0x12/0xc0
[  175.407445][T10524]  do_syscall_64+0xcd/0x260
[  175.407474][T10524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.407493][T10524] RIP: 0033:0x7f2924d8e969
[  175.407509][T10524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.407528][T10524] RSP: 002b:00007f2925be7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  175.407547][T10524] RAX: ffffffffffffffda RBX: 00007f2924fb5fa0 RCX: 00007f2924d8e969
[  175.407559][T10524] RDX: 0000000004040084 RSI: 00002000000000c0 RDI: 0000000000000003
[  175.407571][T10524] RBP: 00007f2925be7090 R08: 0000000000000000 R09: 0000000000000000
[  175.407582][T10524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.407593][T10524] R13: 0000000000000000 R14: 00007f2924fb5fa0 R15: 00007ffdaedb6888
[  175.407618][T10524]  </TASK>
[  175.613194][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  175.613208][   T40] audit: type=1400 audit(1747166585.640:440): avc:  denied  { read } for  pid=10531 comm="syz.3.1773" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  175.631150][T10478] veth0_vlan: entered promiscuous mode
[  175.642160][T10478] veth1_vlan: entered promiscuous mode
[  175.658169][T10538] Debayer A: =================  START STATUS  =================
[  175.661956][T10538] Debayer A: Debayer Mean Window Size: 3
[  175.665969][T10538] Debayer A: ==================  END STATUS  ==================
[  175.682888][T10539] __nla_validate_parse: 9 callbacks suppressed
[  175.682905][T10539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1773'.
[  175.692326][T10478] veth0_macvtap: entered promiscuous mode
[  175.698301][T10478] veth1_macvtap: entered promiscuous mode
[  175.729541][T10478] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.734071][T10478] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.738921][T10478] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.741788][   T40] audit: type=1400 audit(1747166585.762:441): avc:  denied  { module_request } for  pid=10542 comm="syz.3.1777" kmod="crypto-cryptd(__ghash-pclmulqdqni)" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  175.742660][T10478] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.743929][T10478] batman_adv: batadv0: Interface activated: batadv_slave_0
[  175.764856][T10478] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  175.769753][T10478] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.775388][T10478] batman_adv: batadv0: Interface activated: batadv_slave_1
[  175.787552][T10478] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  175.799313][T10478] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  175.802761][T10478] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  175.806709][T10478] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  175.828892][T10543] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1777'.
[  175.904343][   T97] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  175.912767][   T97] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  175.947056][ T6289] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  175.951041][ T6289] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  175.951177][   T40] audit: type=1400 audit(2000000000.130:442): avc:  denied  { read } for  pid=10555 comm="syz.1.1781" name="file0" dev="fuse" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  175.973768][   T40] audit: type=1400 audit(2000000000.130:443): avc:  denied  { open } for  pid=10555 comm="syz.1.1781" path="/394/file0/file0" dev="fuse" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  175.985334][   T40] audit: type=1400 audit(2000000000.149:444): avc:  denied  { mounton } for  pid=10478 comm="syz-executor" path="/syzkaller.4qihhq/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  175.992971][T10561] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1782'.
[  176.011225][T10563] Debayer A: =================  START STATUS  =================
[  176.020660][T10563] Debayer A: Debayer Mean Window Size: 3
[  176.023566][T10563] Debayer A: ==================  END STATUS  ==================
[  176.061901][T10565] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1784'.
[  176.115039][T10574] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1788'.
[  176.179175][T10582] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1790'.
[  176.185172][T10582] FAULT_INJECTION: forcing a failure.
[  176.185172][T10582] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.190284][T10582] CPU: 0 UID: 0 PID: 10582 Comm: syz.3.1790 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  176.190312][T10582] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.190322][T10582] Call Trace:
[  176.190328][T10582]  <TASK>
[  176.190334][T10582]  dump_stack_lvl+0x16c/0x1f0
[  176.190362][T10582]  should_fail_ex+0x512/0x640
[  176.190387][T10582]  _copy_from_user+0x2e/0xd0
[  176.190410][T10582]  copy_from_sockptr_offset+0x15c/0x1b0
[  176.190431][T10582]  ? __pfx_copy_from_sockptr_offset+0x10/0x10
[  176.190452][T10582]  ? avc_has_perm+0x11a/0x1c0
[  176.190471][T10582]  do_tcp_setsockopt+0x13e/0x2640
[  176.190489][T10582]  ? __pfx_do_tcp_setsockopt+0x10/0x10
[  176.190503][T10582]  ? sock_has_perm+0x259/0x2f0
[  176.190520][T10582]  ? __pfx_sock_has_perm+0x10/0x10
[  176.190537][T10582]  ? selinux_netlbl_socket_setsockopt+0x183/0x470
[  176.190560][T10582]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  176.190581][T10582]  ? proc_fail_nth_write+0x9f/0x250
[  176.190606][T10582]  ? __lock_acquire+0x5ca/0x1ba0
[  176.190635][T10582]  tcp_setsockopt+0xe2/0x100
[  176.190649][T10582]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  176.190670][T10582]  do_sock_setsockopt+0x224/0x470
[  176.190690][T10582]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  176.190720][T10582]  __sys_setsockopt+0x1a0/0x230
[  176.190739][T10582]  __x64_sys_setsockopt+0xbd/0x160
[  176.190752][T10582]  ? do_syscall_64+0x91/0x260
[  176.190773][T10582]  ? lockdep_hardirqs_on+0x7c/0x110
[  176.190792][T10582]  do_syscall_64+0xcd/0x260
[  176.190815][T10582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.190830][T10582] RIP: 0033:0x7f085bd8e969
[  176.190843][T10582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.190857][T10582] RSP: 002b:00007f085cb48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  176.190872][T10582] RAX: ffffffffffffffda RBX: 00007f085bfb5fa0 RCX: 00007f085bd8e969
[  176.190882][T10582] RDX: 0000000000000013 RSI: 0000000000000006 RDI: 0000000000000004
[  176.190890][T10582] RBP: 00007f085cb48090 R08: 0000000000000004 R09: 0000000000000000
[  176.190899][T10582] R10: 00002000000001c0 R11: 0000000000000246 R12: 0000000000000001
[  176.190908][T10582] R13: 0000000000000000 R14: 00007f085bfb5fa0 R15: 00007ffeb636dd48
[  176.190927][T10582]  </TASK>
[  176.323247][   T40] audit: type=1400 audit(2000000000.420:445): avc:  denied  { checkpoint_restore } for  pid=10588 comm="syz.0.1792" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  176.364954][T10594] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1793'.
[  176.429853][ T5941] Bluetooth: hci3: command tx timeout
[  176.565905][T10600] Debayer A: =================  START STATUS  =================
[  176.569253][T10600] Debayer A: Debayer Mean Window Size: 3
[  176.571755][T10600] Debayer A: ==================  END STATUS  ==================
[  176.670166][T10608] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1799'.
[  176.699938][T10610] FAULT_INJECTION: forcing a failure.
[  176.699938][T10610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.706282][T10610] CPU: 2 UID: 0 PID: 10610 Comm: syz.0.1800 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  176.706314][T10610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.706324][T10610] Call Trace:
[  176.706331][T10610]  <TASK>
[  176.706337][T10610]  dump_stack_lvl+0x16c/0x1f0
[  176.706367][T10610]  should_fail_ex+0x512/0x640
[  176.706393][T10610]  _copy_from_iter+0x2a4/0x15b0
[  176.706423][T10610]  ? __pfx__copy_from_iter+0x10/0x10
[  176.706447][T10610]  ? _copy_from_iter+0x161/0x15b0
[  176.706479][T10610]  skb_copy_datagram_from_iter+0x124/0x740
[  176.706509][T10610]  ? __pfx__kstrtoull+0x10/0x10
[  176.706526][T10610]  ? iov_iter_advance+0x7d/0x6c0
[  176.706554][T10610]  tun_get_user+0x17ac/0x3b10
[  176.706591][T10610]  ? __pfx_tun_get_user+0x10/0x10
[  176.706617][T10610]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  176.706646][T10610]  ? find_held_lock+0x2b/0x80
[  176.706669][T10610]  ? tun_get+0x191/0x370
[  176.706698][T10610]  tun_chr_write_iter+0xdc/0x210
[  176.706717][T10610]  vfs_write+0x5bd/0x1180
[  176.706743][T10610]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  176.706762][T10610]  ? __pfx_vfs_write+0x10/0x10
[  176.706804][T10610]  ? find_held_lock+0x2b/0x80
[  176.706839][T10610]  ksys_write+0x12a/0x240
[  176.706864][T10610]  ? __pfx_ksys_write+0x10/0x10
[  176.706884][T10610]  ? rcu_is_watching+0x12/0xc0
[  176.706909][T10610]  do_syscall_64+0xcd/0x260
[  176.706934][T10610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.706950][T10610] RIP: 0033:0x7f2924d8e969
[  176.706966][T10610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.706981][T10610] RSP: 002b:00007f2925be7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  176.706998][T10610] RAX: ffffffffffffffda RBX: 00007f2924fb5fa0 RCX: 00007f2924d8e969
[  176.707009][T10610] RDX: 000000000000fdef RSI: 00002000000003c0 RDI: 0000000000000004
[  176.707020][T10610] RBP: 00007f2925be7090 R08: 0000000000000000 R09: 0000000000000000
[  176.707030][T10610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.707040][T10610] R13: 0000000000000000 R14: 00007f2924fb5fa0 R15: 00007ffdaedb6888
[  176.707061][T10610]  </TASK>
[  176.815233][T10614] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1802'.
[  176.991378][T10621] Debayer A: =================  START STATUS  =================
[  176.995056][T10621] Debayer A: Debayer Mean Window Size: 3
[  176.998161][T10621] Debayer A: ==================  END STATUS  ==================
[  177.357925][T10647] netlink: 'syz.0.1814': attribute type 30 has an invalid length.
[  177.484614][T10661] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1819'.
[  177.801528][T10672] FAULT_INJECTION: forcing a failure.
[  177.801528][T10672] name failslab, interval 1, probability 0, space 0, times 0
[  177.806825][T10672] CPU: 1 UID: 0 PID: 10672 Comm: syz.4.1823 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  177.806849][T10672] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  177.806860][T10672] Call Trace:
[  177.806868][T10672]  <TASK>
[  177.806875][T10672]  dump_stack_lvl+0x16c/0x1f0
[  177.806905][T10672]  should_fail_ex+0x512/0x640
[  177.806927][T10672]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  177.806955][T10672]  should_failslab+0xc2/0x120
[  177.806973][T10672]  __kmalloc_cache_noprof+0x6a/0x3e0
[  177.806997][T10672]  ? rtnl_newlink+0x11b/0x2000
[  177.807020][T10672]  ? __pfx_rtnl_newlink+0x10/0x10
[  177.807037][T10672]  rtnl_newlink+0x11b/0x2000
[  177.807065][T10672]  ? __pfx_rtnl_newlink+0x10/0x10
[  177.807090][T10672]  ? find_held_lock+0x2b/0x80
[  177.807112][T10672]  ? avc_has_perm_noaudit+0x117/0x3b0
[  177.807132][T10672]  ? avc_has_perm_noaudit+0x149/0x3b0
[  177.807155][T10672]  ? __lock_acquire+0x5ca/0x1ba0
[  177.807190][T10672]  ? find_held_lock+0x2b/0x80
[  177.807208][T10672]  ? __pfx_rtnl_newlink+0x10/0x10
[  177.807225][T10672]  ? __pfx_rtnl_newlink+0x10/0x10
[  177.807241][T10672]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  177.807260][T10672]  ? __pfx_rtnl_newlink+0x10/0x10
[  177.807279][T10672]  rtnetlink_rcv_msg+0x95b/0xe90
[  177.807300][T10672]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  177.807329][T10672]  netlink_rcv_skb+0x16a/0x440
[  177.807350][T10672]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  177.807369][T10672]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  177.807403][T10672]  ? netlink_deliver_tap+0x1ae/0xd30
[  177.807427][T10672]  netlink_unicast+0x53d/0x7f0
[  177.807451][T10672]  ? __pfx_netlink_unicast+0x10/0x10
[  177.807479][T10672]  netlink_sendmsg+0x8d1/0xdd0
[  177.807502][T10672]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.807531][T10672]  ____sys_sendmsg+0xa98/0xc70
[  177.807555][T10672]  ? copy_msghdr_from_user+0x10a/0x160
[  177.807572][T10672]  ? __pfx_____sys_sendmsg+0x10/0x10
[  177.807604][T10672]  ___sys_sendmsg+0x134/0x1d0
[  177.807623][T10672]  ? __pfx____sys_sendmsg+0x10/0x10
[  177.807670][T10672]  __sys_sendmsg+0x16d/0x220
[  177.807691][T10672]  ? __pfx___sys_sendmsg+0x10/0x10
[  177.807727][T10672]  do_syscall_64+0xcd/0x260
[  177.807757][T10672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.807777][T10672] RIP: 0033:0x7f8c4558e969
[  177.807793][T10672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.807811][T10672] RSP: 002b:00007f8c46375038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  177.807829][T10672] RAX: ffffffffffffffda RBX: 00007f8c457b5fa0 RCX: 00007f8c4558e969
[  177.807886][T10672] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000006
[  177.807898][T10672] RBP: 00007f8c46375090 R08: 0000000000000000 R09: 0000000000000000
[  177.807910][T10672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.807920][T10672] R13: 0000000000000000 R14: 00007f8c457b5fa0 R15: 00007fffb539a738
[  177.807946][T10672]  </TASK>
[  178.090072][T10679] netfs: Couldn't get user pages (rc=-14)
[  178.100291][   T40] audit: type=1804 audit(2000000002.142:446): pid=10679 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.1826" name="/newroot/10/bus/file1" dev="9p" ino=35913888 res=1 errno=0
[  178.102830][T10679] syz.4.1826: attempt to access beyond end of device
[  178.102830][T10679] loop4: rw=0, sector=64, nr_sectors = 1 limit=0
[  178.110635][   T40] audit: type=1400 audit(2000000002.142:447): avc:  denied  { mounton } for  pid=10678 comm="syz.4.1826" path="/10/bus/file1" dev="9p" ino=35913888 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  178.115961][T10679] syz.4.1826: attempt to access beyond end of device
[  178.115961][T10679] loop4: rw=0, sector=256, nr_sectors = 1 limit=0
[  178.131406][T10679] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  178.135326][T10679] syz.4.1826: attempt to access beyond end of device
[  178.135326][T10679] loop4: rw=0, sector=512, nr_sectors = 1 limit=0
[  178.141866][T10679] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  178.145918][T10679] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  178.148427][T10679] UDF-fs: Scanning with blocksize 512 failed
[  178.152329][T10679] syz.4.1826: attempt to access beyond end of device
[  178.152329][T10679] loop4: rw=0, sector=64, nr_sectors = 2 limit=0
[  178.157535][T10679] syz.4.1826: attempt to access beyond end of device
[  178.157535][T10679] loop4: rw=0, sector=512, nr_sectors = 2 limit=0
[  178.162663][T10679] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  178.166356][T10679] syz.4.1826: attempt to access beyond end of device
[  178.166356][T10679] loop4: rw=0, sector=1024, nr_sectors = 2 limit=0
[  178.172403][T10679] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  178.175432][T10679] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  178.178239][T10679] UDF-fs: Scanning with blocksize 1024 failed
[  178.180617][T10679] syz.4.1826: attempt to access beyond end of device
[  178.180617][T10679] loop4: rw=0, sector=64, nr_sectors = 4 limit=0
[  178.185675][T10679] syz.4.1826: attempt to access beyond end of device
[  178.185675][T10679] loop4: rw=0, sector=1024, nr_sectors = 4 limit=0
[  178.190834][T10679] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  178.195503][T10679] syz.4.1826: attempt to access beyond end of device
[  178.195503][T10679] loop4: rw=0, sector=2048, nr_sectors = 4 limit=0
[  178.201017][T10679] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  178.204954][T10679] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  178.208390][T10679] UDF-fs: Scanning with blocksize 2048 failed
[  178.210710][T10679] syz.4.1826: attempt to access beyond end of device
[  178.210710][T10679] loop4: rw=0, sector=64, nr_sectors = 8 limit=0
[  178.215182][T10679] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  178.218776][T10679] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[  178.222018][T10679] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  178.224763][T10679] UDF-fs: Scanning with blocksize 4096 failed
[  178.227231][T10679] UDF-fs: warning (device loop4): udf_fill_super: No partition found (1)
[  178.466416][T10688] binder: BC_ACQUIRE_RESULT not supported
[  178.468890][T10688] binder: 10686:10688 ioctl c0306201 200000000100 returned -22
[  178.473030][T10688] binder: BC_ACQUIRE_RESULT not supported
[  178.475866][T10688] binder: 10686:10688 ioctl c0306201 200000000100 returned -22
[  178.479263][T10688] binder: BC_ACQUIRE_RESULT not supported
[  178.482465][T10688] binder: 10686:10688 ioctl c0306201 200000000100 returned -22
[  178.486090][T10688] binder: BC_ACQUIRE_RESULT not supported
[  178.489073][T10688] binder: 10686:10688 ioctl c0306201 200000000100 returned -22
[  178.494664][T10688] binder: BC_ACQUIRE_RESULT not supported
[  178.502015][T10688] binder: 10686:10688 ioctl c0306201 200000000100 returned -22
[  178.534128][T10696] FAULT_INJECTION: forcing a failure.
[  178.534128][T10696] name failslab, interval 1, probability 0, space 0, times 0
[  178.546295][T10696] CPU: 0 UID: 0 PID: 10696 Comm: syz.4.1833 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  178.546315][T10696] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.546322][T10696] Call Trace:
[  178.546327][T10696]  <TASK>
[  178.546332][T10696]  dump_stack_lvl+0x16c/0x1f0
[  178.546354][T10696]  should_fail_ex+0x512/0x640
[  178.546395][T10696]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  178.546415][T10696]  should_failslab+0xc2/0x120
[  178.546429][T10696]  __kmalloc_cache_noprof+0x6a/0x3e0
[  178.546447][T10696]  ? ip_set_create+0x346/0x14d0
[  178.546469][T10696]  ip_set_create+0x346/0x14d0
[  178.546491][T10696]  ? __pfx_ip_set_create+0x10/0x10
[  178.546519][T10696]  ? find_held_lock+0x2b/0x80
[  178.546538][T10696]  nfnetlink_rcv_msg+0x9fc/0x1200
[  178.546560][T10696]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  178.546576][T10696]  ? kmem_cache_free+0x2d4/0x4d0
[  178.546609][T10696]  ? avc_has_perm_noaudit+0x117/0x3b0
[  178.546626][T10696]  netlink_rcv_skb+0x16a/0x440
[  178.546642][T10696]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  178.546659][T10696]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  178.546681][T10696]  ? bpf_lsm_capable+0x9/0x10
[  178.546692][T10696]  ? security_capable+0x7e/0x260
[  178.546707][T10696]  ? ns_capable+0xd7/0x110
[  178.546723][T10696]  nfnetlink_rcv+0x1b3/0x430
[  178.546739][T10696]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  178.546769][T10696]  ? netlink_deliver_tap+0x1ae/0xd30
[  178.546786][T10696]  netlink_unicast+0x53d/0x7f0
[  178.546803][T10696]  ? __pfx_netlink_unicast+0x10/0x10
[  178.546822][T10696]  netlink_sendmsg+0x8d1/0xdd0
[  178.546840][T10696]  ? __pfx_netlink_sendmsg+0x10/0x10
[  178.546861][T10696]  ____sys_sendmsg+0xa98/0xc70
[  178.546879][T10696]  ? copy_msghdr_from_user+0x10a/0x160
[  178.546892][T10696]  ? __pfx_____sys_sendmsg+0x10/0x10
[  178.546915][T10696]  ___sys_sendmsg+0x134/0x1d0
[  178.546929][T10696]  ? __pfx____sys_sendmsg+0x10/0x10
[  178.546961][T10696]  __sys_sendmsg+0x16d/0x220
[  178.546974][T10696]  ? __pfx___sys_sendmsg+0x10/0x10
[  178.546992][T10696]  ? rcu_is_watching+0x12/0xc0
[  178.547010][T10696]  do_syscall_64+0xcd/0x260
[  178.547029][T10696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.547041][T10696] RIP: 0033:0x7f8c4558e969
[  178.547051][T10696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.547063][T10696] RSP: 002b:00007f8c46375038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  178.547076][T10696] RAX: ffffffffffffffda RBX: 00007f8c457b5fa0 RCX: 00007f8c4558e969
[  178.547083][T10696] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  178.547091][T10696] RBP: 00007f8c46375090 R08: 0000000000000000 R09: 0000000000000000
[  178.547098][T10696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.547105][T10696] R13: 0000000000000000 R14: 00007f8c457b5fa0 R15: 00007fffb539a738
[  178.547122][T10696]  </TASK>
[  178.674909][ T5941] Bluetooth: hci3: command tx timeout
[  178.700164][T10703] netlink: 'syz.4.1836': attribute type 1 has an invalid length.
[  178.809646][T10713] FAULT_INJECTION: forcing a failure.
[  178.809646][T10713] name failslab, interval 1, probability 0, space 0, times 0
[  178.815798][T10713] CPU: 3 UID: 0 PID: 10713 Comm: syz.0.1839 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  178.815823][T10713] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.815862][T10713] Call Trace:
[  178.815869][T10713]  <TASK>
[  178.815875][T10713]  dump_stack_lvl+0x16c/0x1f0
[  178.815903][T10713]  should_fail_ex+0x512/0x640
[  178.815924][T10713]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  178.815950][T10713]  should_failslab+0xc2/0x120
[  178.815968][T10713]  __kmalloc_cache_noprof+0x6a/0x3e0
[  178.815992][T10713]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  178.816020][T10713]  snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  178.816048][T10713]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  178.816074][T10713]  ? snd_pcm_oss_change_params_locked+0x958/0x3b40
[  178.816104][T10713]  snd_pcm_oss_change_params_locked+0x9cd/0x3b40
[  178.816147][T10713]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  178.816172][T10713]  ? snd_pcm_oss_write+0x4a2/0xa10
[  178.816203][T10713]  ? find_held_lock+0x2b/0x80
[  178.816228][T10713]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  178.816250][T10713]  snd_pcm_oss_write+0x4c3/0xa10
[  178.816275][T10713]  ? bpf_lsm_file_permission+0x9/0x10
[  178.816297][T10713]  ? security_file_permission+0x71/0x210
[  178.816328][T10713]  vfs_write+0x25c/0x1180
[  178.816350][T10713]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  178.816378][T10713]  ? __pfx_vfs_write+0x10/0x10
[  178.816400][T10713]  ? find_held_lock+0x2b/0x80
[  178.816421][T10713]  ? __fget_files+0x204/0x3c0
[  178.816442][T10713]  ? __fget_files+0x20e/0x3c0
[  178.816463][T10713]  ksys_write+0x12a/0x240
[  178.816486][T10713]  ? __pfx_ksys_write+0x10/0x10
[  178.816508][T10713]  ? rcu_is_watching+0x12/0xc0
[  178.816532][T10713]  do_syscall_64+0xcd/0x260
[  178.816559][T10713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.816576][T10713] RIP: 0033:0x7f2924d8e969
[  178.816591][T10713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.816607][T10713] RSP: 002b:00007f2925be7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  178.816622][T10713] RAX: ffffffffffffffda RBX: 00007f2924fb5fa0 RCX: 00007f2924d8e969
[  178.816633][T10713] RDX: 000000000000fdbc RSI: 0000200000000500 RDI: 0000000000000004
[  178.816643][T10713] RBP: 00007f2925be7090 R08: 0000000000000000 R09: 0000000000000000
[  178.816653][T10713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.816663][T10713] R13: 0000000000000000 R14: 00007f2924fb5fa0 R15: 00007ffdaedb6888
[  178.816686][T10713]  </TASK>
[  179.065973][T10727] netlink: 'syz.3.1845': attribute type 4 has an invalid length.
[  179.079510][T10727] netlink: 'syz.3.1845': attribute type 4 has an invalid length.
[  179.130084][T10727] sctp: [Deprecated]: syz.3.1845 (pid 10727) Use of int in maxseg socket option.
[  179.130084][T10727] Use struct sctp_assoc_value instead
[  179.694913][   T40] audit: type=1400 audit(2000000003.629:448): avc:  denied  { open } for  pid=10747 comm="syz.1.1852" path="/dev/ttyq7" dev="devtmpfs" ino=390 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  179.808310][T10756] FAULT_INJECTION: forcing a failure.
[  179.808310][T10756] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.814156][T10756] CPU: 2 UID: 0 PID: 10756 Comm: syz.4.1854 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  179.814182][T10756] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.814193][T10756] Call Trace:
[  179.814200][T10756]  <TASK>
[  179.814207][T10756]  dump_stack_lvl+0x16c/0x1f0
[  179.814237][T10756]  should_fail_ex+0x512/0x640
[  179.814264][T10756]  _copy_from_user+0x2e/0xd0
[  179.814291][T10756]  copy_msghdr_from_user+0x98/0x160
[  179.814312][T10756]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  179.814336][T10756]  ? __pfx__kstrtoull+0x10/0x10
[  179.814366][T10756]  ___sys_sendmsg+0xfe/0x1d0
[  179.814387][T10756]  ? __pfx____sys_sendmsg+0x10/0x10
[  179.814418][T10756]  ? find_held_lock+0x2b/0x80
[  179.814455][T10756]  __sys_sendmmsg+0x200/0x420
[  179.814478][T10756]  ? __pfx___sys_sendmmsg+0x10/0x10
[  179.814506][T10756]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  179.814542][T10756]  ? fput+0x70/0xf0
[  179.814563][T10756]  ? ksys_write+0x1b9/0x240
[  179.814587][T10756]  ? __pfx_ksys_write+0x10/0x10
[  179.814611][T10756]  ? rcu_is_watching+0x12/0xc0
[  179.814637][T10756]  __x64_sys_sendmmsg+0x9c/0x100
[  179.814656][T10756]  ? lockdep_hardirqs_on+0x7c/0x110
[  179.814680][T10756]  do_syscall_64+0xcd/0x260
[  179.814707][T10756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.814725][T10756] RIP: 0033:0x7f8c4558e969
[  179.814739][T10756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.814756][T10756] RSP: 002b:00007f8c46375038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  179.814774][T10756] RAX: ffffffffffffffda RBX: 00007f8c457b5fa0 RCX: 00007f8c4558e969
[  179.814786][T10756] RDX: 0000000000000001 RSI: 0000200000006780 RDI: 0000000000000003
[  179.814797][T10756] RBP: 00007f8c46375090 R08: 0000000000000000 R09: 0000000000000000
[  179.814808][T10756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.814818][T10756] R13: 0000000000000000 R14: 00007f8c457b5fa0 R15: 00007fffb539a738
[  179.814843][T10756]  </TASK>
[  179.981647][T10764] FAULT_INJECTION: forcing a failure.
[  179.981647][T10764] name failslab, interval 1, probability 0, space 0, times 0
[  179.988458][T10764] CPU: 1 UID: 0 PID: 10764 Comm: syz.4.1857 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  179.988487][T10764] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.988499][T10764] Call Trace:
[  179.988506][T10764]  <TASK>
[  179.988514][T10764]  dump_stack_lvl+0x16c/0x1f0
[  179.988546][T10764]  should_fail_ex+0x512/0x640
[  179.988570][T10764]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  179.988593][T10764]  should_failslab+0xc2/0x120
[  179.988614][T10764]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  179.988632][T10764]  ? __alloc_skb+0x2b2/0x380
[  179.988657][T10764]  __alloc_skb+0x2b2/0x380
[  179.988676][T10764]  ? __pfx___alloc_skb+0x10/0x10
[  179.988697][T10764]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  179.988726][T10764]  netlink_alloc_large_skb+0x69/0x130
[  179.988751][T10764]  netlink_sendmsg+0x6a1/0xdd0
[  179.988777][T10764]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.988811][T10764]  ____sys_sendmsg+0xa98/0xc70
[  179.988837][T10764]  ? copy_msghdr_from_user+0x10a/0x160
[  179.988857][T10764]  ? __pfx_____sys_sendmsg+0x10/0x10
[  179.988893][T10764]  ___sys_sendmsg+0x134/0x1d0
[  179.988914][T10764]  ? __pfx____sys_sendmsg+0x10/0x10
[  179.988994][T10764]  __sys_sendmsg+0x16d/0x220
[  179.989017][T10764]  ? __pfx___sys_sendmsg+0x10/0x10
[  179.989045][T10764]  ? rcu_is_watching+0x12/0xc0
[  179.989076][T10764]  do_syscall_64+0xcd/0x260
[  179.989104][T10764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.989124][T10764] RIP: 0033:0x7f8c4558e969
[  179.989139][T10764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.989175][T10764] RSP: 002b:00007f8c46375038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  179.989197][T10764] RAX: ffffffffffffffda RBX: 00007f8c457b5fa0 RCX: 00007f8c4558e969
[  179.989210][T10764] RDX: 0000000004000050 RSI: 0000200000000000 RDI: 0000000000000003
[  179.989223][T10764] RBP: 00007f8c46375090 R08: 0000000000000000 R09: 0000000000000000
[  179.989235][T10764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.989246][T10764] R13: 0000000000000000 R14: 00007f8c457b5fa0 R15: 00007fffb539a738
[  179.989272][T10764]  </TASK>
[  180.086471][   T40] audit: type=1800 audit(2000000003.966:449): pid=10765 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.1856" name="bus" dev="9p" ino=35913881 res=0 errno=0
[  180.498136][T10768] vxcan1: entered allmulticast mode
[  180.523326][T10768] vxcan1: left allmulticast mode
[  180.642199][ T5982] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  180.807629][ T5982] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  180.812216][ T5982] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  180.816216][ T5982] usb 5-1: Product: syz
[  180.818060][ T5982] usb 5-1: Manufacturer: syz
[  180.820096][ T5982] usb 5-1: SerialNumber: syz
[  180.826142][ T5982] usb 5-1: config 0 descriptor??
[  180.881090][ T5941] Bluetooth: hci3: command tx timeout
[  180.890118][T10809] nbd: socks must be embedded in a SOCK_ITEM attr
[  181.048339][   T34] usb 5-1: USB disconnect, device number 8
[  181.064580][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  181.064594][   T40] audit: type=1326 audit(2000000004.910:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10817 comm="syz.1.1874" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5039b8e969 code=0x0
[  181.782675][T10832] 9pnet_fd: Insufficient options for proto=fd
[  181.785978][T10832] netlink: 'syz.3.1877': attribute type 1 has an invalid length.
[  181.789587][T10832] netlink: 'syz.3.1877': attribute type 2 has an invalid length.
[  181.798276][   T40] audit: type=1400 audit(2000000005.603:453): avc:  denied  { mount } for  pid=10831 comm="syz.3.1877" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  181.905465][T10838] __nla_validate_parse: 18 callbacks suppressed
[  181.905483][T10838] netlink: 172 bytes leftover after parsing attributes in process `syz.4.1880'.
[  182.147994][   T40] audit: type=1400 audit(2000000005.921:454): avc:  denied  { getopt } for  pid=10851 comm="syz.3.1886" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  182.197303][T10854] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1887'.
[  182.534387][   T40] audit: type=1400 audit(2000000006.295:455): avc:  denied  { append } for  pid=10869 comm="syz.3.1893" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  182.685457][T10878] FAULT_INJECTION: forcing a failure.
[  182.685457][T10878] name failslab, interval 1, probability 0, space 0, times 0
[  182.691599][T10878] CPU: 2 UID: 0 PID: 10878 Comm: syz.3.1896 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  182.691626][T10878] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  182.691638][T10878] Call Trace:
[  182.691646][T10878]  <TASK>
[  182.691654][T10878]  dump_stack_lvl+0x16c/0x1f0
[  182.691685][T10878]  should_fail_ex+0x512/0x640
[  182.691709][T10878]  ? fs_reclaim_acquire+0xae/0x150
[  182.691735][T10878]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  182.691760][T10878]  should_failslab+0xc2/0x120
[  182.691781][T10878]  __kmalloc_noprof+0xd2/0x510
[  182.691836][T10878]  tomoyo_realpath_from_path+0xc2/0x6e0
[  182.691866][T10878]  ? tomoyo_profile+0x47/0x60
[  182.691886][T10878]  tomoyo_path_number_perm+0x245/0x580
[  182.691907][T10878]  ? tomoyo_path_number_perm+0x237/0x580
[  182.691933][T10878]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  182.691956][T10878]  ? find_held_lock+0x2b/0x80
[  182.692002][T10878]  ? find_held_lock+0x2b/0x80
[  182.692022][T10878]  ? hook_file_ioctl_common+0x145/0x410
[  182.692047][T10878]  ? __fget_files+0x20e/0x3c0
[  182.692068][T10878]  security_file_ioctl+0x9b/0x240
[  182.692096][T10878]  __x64_sys_ioctl+0xb7/0x200
[  182.692121][T10878]  do_syscall_64+0xcd/0x260
[  182.692149][T10878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.692167][T10878] RIP: 0033:0x7f085bd8e969
[  182.692183][T10878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.692199][T10878] RSP: 002b:00007f085cb48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  182.692217][T10878] RAX: ffffffffffffffda RBX: 00007f085bfb5fa0 RCX: 00007f085bd8e969
[  182.692229][T10878] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 0000000000000008
[  182.692239][T10878] RBP: 00007f085cb48090 R08: 0000000000000000 R09: 0000000000000000
[  182.692250][T10878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.692261][T10878] R13: 0000000000000000 R14: 00007f085bfb5fa0 R15: 00007ffeb636dd48
[  182.692285][T10878]  </TASK>
[  182.692294][T10878] ERROR: Out of memory at tomoyo_realpath_from_path.
[  182.736879][   T40] audit: type=1400 audit(2000000006.463:456): avc:  denied  { connect } for  pid=10879 comm="syz.0.1897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  182.858939][   T40] audit: type=1400 audit(2000000006.594:457): avc:  denied  { connect } for  pid=10881 comm="syz.3.1899" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  182.877195][   T40] audit: type=1400 audit(2000000006.613:458): avc:  denied  { write } for  pid=10884 comm="syz.4.1900" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  182.938232][   T40] audit: type=1400 audit(2000000006.660:459): avc:  denied  { shutdown } for  pid=10881 comm="syz.3.1899" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  182.946936][T10882] tmpfs: Unknown parameter 'á1"‡%}§»r—´´KLt¥ß¢­†|j­å§ï/Ñ�Æ°ÃNÊÖ
[  182.946936][T10882] (Ù8ß²ØI'
[  183.103025][ T5941] Bluetooth: hci3: command tx timeout
[  183.350623][T10904] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1904'.
[  183.354434][T10904] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1904'.
[  183.358518][T10904] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1904'.
[  183.363025][T10904] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1904'.
[  183.551127][T10907] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard
[  183.556568][T10907] exFAT-fs (nullb0): invalid boot record signature
[  183.559379][T10907] exFAT-fs (nullb0): failed to read boot sector
[  183.563672][T10907] exFAT-fs (nullb0): failed to recognize exfat type
[  183.704292][T10916] openvswitch: netlink: Geneve opt len 126 is not a multiple of 4.
[  184.242353][   T40] audit: type=1400 audit(2000000007.885:460): avc:  denied  { mounton } for  pid=10925 comm="syz.1.1913" path="/423/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1
[  184.424522][   T40] audit: type=1400 audit(2000000008.053:461): avc:  denied  { connect } for  pid=10925 comm="syz.1.1913" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  184.475890][T10931] block nbd4: shutting down sockets
[  184.531531][T10944] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1918'.
[  184.606634][T10947] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1920'.
[  185.332025][T10970] FAULT_INJECTION: forcing a failure.
[  185.332025][T10970] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.337742][T10970] CPU: 0 UID: 0 PID: 10970 Comm: syz.3.1928 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  185.337766][T10970] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.337776][T10970] Call Trace:
[  185.337782][T10970]  <TASK>
[  185.337789][T10970]  dump_stack_lvl+0x16c/0x1f0
[  185.337818][T10970]  should_fail_ex+0x512/0x640
[  185.337845][T10970]  _copy_from_iter+0x2a4/0x15b0
[  185.337873][T10970]  ? _copy_from_iter+0x161/0x15b0
[  185.337897][T10970]  ? __pfx__copy_from_iter+0x10/0x10
[  185.337924][T10970]  ? __pfx__copy_from_iter+0x10/0x10
[  185.337949][T10970]  ? _copy_from_iter+0x161/0x15b0
[  185.337977][T10970]  copy_page_from_iter+0xa5/0x120
[  185.338005][T10970]  skb_copy_datagram_from_iter+0x2a0/0x740
[  185.338042][T10970]  tun_get_user+0x17ac/0x3b10
[  185.338082][T10970]  ? __pfx_tun_get_user+0x10/0x10
[  185.338107][T10970]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  185.338140][T10970]  ? find_held_lock+0x2b/0x80
[  185.338162][T10970]  ? tun_get+0x191/0x370
[  185.338193][T10970]  tun_chr_write_iter+0xdc/0x210
[  185.338212][T10970]  vfs_write+0x5bd/0x1180
[  185.338239][T10970]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  185.338259][T10970]  ? __pfx_vfs_write+0x10/0x10
[  185.338288][T10970]  ? find_held_lock+0x2b/0x80
[  185.338324][T10970]  ksys_write+0x12a/0x240
[  185.338349][T10970]  ? __pfx_ksys_write+0x10/0x10
[  185.338373][T10970]  ? rcu_is_watching+0x12/0xc0
[  185.338401][T10970]  do_syscall_64+0xcd/0x260
[  185.338428][T10970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.338446][T10970] RIP: 0033:0x7f085bd8e969
[  185.338461][T10970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.338477][T10970] RSP: 002b:00007f085cb48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  185.338494][T10970] RAX: ffffffffffffffda RBX: 00007f085bfb5fa0 RCX: 00007f085bd8e969
[  185.338504][T10970] RDX: 000000000000fdef RSI: 00002000000003c0 RDI: 0000000000000004
[  185.338515][T10970] RBP: 00007f085cb48090 R08: 0000000000000000 R09: 0000000000000000
[  185.338525][T10970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.338535][T10970] R13: 0000000000000000 R14: 00007f085bfb5fa0 R15: 00007ffeb636dd48
[  185.338559][T10970]  </TASK>
[  185.493178][T10972] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  185.498146][T10972] bond0: (slave lo): Error: Device can not be enslaved while up
[  185.507322][T10972] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  185.512161][T10972] qnx6: wrong signature (magic) in superblock #1.
[  185.514561][T10972] qnx6: unable to read the first superblock
[  185.594820][T10983] FAULT_INJECTION: forcing a failure.
[  185.594820][T10983] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.600598][T10983] CPU: 1 UID: 0 PID: 10983 Comm: syz.0.1933 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  185.600624][T10983] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.600634][T10983] Call Trace:
[  185.600641][T10983]  <TASK>
[  185.600648][T10983]  dump_stack_lvl+0x16c/0x1f0
[  185.600679][T10983]  should_fail_ex+0x512/0x640
[  185.600707][T10983]  _copy_to_user+0x32/0xd0
[  185.600735][T10983]  simple_read_from_buffer+0xcb/0x170
[  185.600765][T10983]  proc_fail_nth_read+0x197/0x270
[  185.600792][T10983]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  185.600818][T10983]  ? rw_verify_area+0xcf/0x680
[  185.600853][T10983]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  185.600879][T10983]  vfs_read+0x1de/0xc70
[  185.600906][T10983]  ? __pfx___mutex_lock+0x10/0x10
[  185.600930][T10983]  ? __pfx_vfs_read+0x10/0x10
[  185.600962][T10983]  ? __fget_files+0x20e/0x3c0
[  185.600988][T10983]  ksys_read+0x12a/0x240
[  185.601012][T10983]  ? __pfx_ksys_read+0x10/0x10
[  185.601036][T10983]  ? rcu_is_watching+0x12/0xc0
[  185.601070][T10983]  do_syscall_64+0xcd/0x260
[  185.601098][T10983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.601116][T10983] RIP: 0033:0x7f2924d8d37c
[  185.601131][T10983] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  185.601147][T10983] RSP: 002b:00007f2925be7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  185.601165][T10983] RAX: ffffffffffffffda RBX: 00007f2924fb5fa0 RCX: 00007f2924d8d37c
[  185.601176][T10983] RDX: 000000000000000f RSI: 00007f2925be70a0 RDI: 0000000000000005
[  185.601186][T10983] RBP: 00007f2925be7090 R08: 0000000000000000 R09: 0000000000000000
[  185.601197][T10983] R10: 00000000000004eb R11: 0000000000000246 R12: 0000000000000001
[  185.601207][T10983] R13: 0000000000000000 R14: 00007f2924fb5fa0 R15: 00007ffdaedb6888
[  185.601231][T10983]  </TASK>
[  185.693510][T10985] openvswitch: netlink: Missing key (keys=40, expected=100)
[  185.839305][T10991] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1936'.
[  186.008640][ T6000] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  186.034454][T11002] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1941'.
[  186.179355][ T6000] usb 5-1: Using ep0 maxpacket: 16
[  186.183647][ T6000] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  186.188327][ T6000] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  186.201781][ T6000] usb 5-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  186.206012][ T6000] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.209543][ T6000] usb 5-1: Product: syz
[  186.219735][ T6000] usb 5-1: Manufacturer: syz
[  186.221807][ T6000] usb 5-1: SerialNumber: syz
[  186.233835][ T6000] usb 5-1: config 0 descriptor??
[  186.551225][ T6000] appledisplay 5-1:0.0: Error while getting initial brightness: -110
[  186.571022][ T6000] appledisplay 5-1:0.0: probe with driver appledisplay failed with error -110
[  186.697310][ T5982] usb 5-1: USB disconnect, device number 9
[  186.834092][T11025] CUSE: unknown device info "ÿ
"
[  186.836198][T11025] CUSE: zero length info key specified
[  186.934015][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  186.934033][   T40] audit: type=1400 audit(2000000010.401:465): avc:  denied  { sqpoll } for  pid=11026 comm="syz.4.1949" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  186.983440][T11031] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  187.260604][T11044] FAULT_INJECTION: forcing a failure.
[  187.260604][T11044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.268056][T11044] CPU: 1 UID: 0 PID: 11044 Comm: syz.1.1955 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  187.268080][T11044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.268089][T11044] Call Trace:
[  187.268095][T11044]  <TASK>
[  187.268101][T11044]  dump_stack_lvl+0x16c/0x1f0
[  187.268129][T11044]  should_fail_ex+0x512/0x640
[  187.268153][T11044]  _copy_to_user+0x32/0xd0
[  187.268178][T11044]  simple_read_from_buffer+0xcb/0x170
[  187.268204][T11044]  proc_fail_nth_read+0x197/0x270
[  187.268227][T11044]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  187.268253][T11044]  ? rw_verify_area+0xcf/0x680
[  187.268273][T11044]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  187.268304][T11044]  vfs_read+0x1de/0xc70
[  187.268329][T11044]  ? __pfx___mutex_lock+0x10/0x10
[  187.268350][T11044]  ? __pfx_vfs_read+0x10/0x10
[  187.268378][T11044]  ? __fget_files+0x20e/0x3c0
[  187.268399][T11044]  ksys_read+0x12a/0x240
[  187.268438][T11044]  ? __pfx_ksys_read+0x10/0x10
[  187.268459][T11044]  ? rcu_is_watching+0x12/0xc0
[  187.268483][T11044]  do_syscall_64+0xcd/0x260
[  187.268506][T11044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.268522][T11044] RIP: 0033:0x7f5039b8d37c
[  187.268536][T11044] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  187.268549][T11044] RSP: 002b:00007f503aa50030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  187.268564][T11044] RAX: ffffffffffffffda RBX: 00007f5039db6080 RCX: 00007f5039b8d37c
[  187.268573][T11044] RDX: 000000000000000f RSI: 00007f503aa500a0 RDI: 0000000000000004
[  187.268582][T11044] RBP: 00007f503aa50090 R08: 0000000000000000 R09: 0000000000000000
[  187.268590][T11044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.268599][T11044] R13: 0000000000000000 R14: 00007f5039db6080 R15: 00007fffde6e8328
[  187.268620][T11044]  </TASK>
[  187.332254][   T40] audit: type=1400 audit(2000000010.775:466): avc:  denied  { name_bind } for  pid=11045 comm="syz.4.1957" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  187.352831][T11053] binder: 11052:11053 ioctl 4018620d 0 returned -22
[  187.379447][T11053] __nla_validate_parse: 1 callbacks suppressed
[  187.379460][T11053] netlink: 596 bytes leftover after parsing attributes in process `syz.1.1959'.
[  187.387389][ T5980] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  187.407261][T11055] openvswitch: netlink: Key type 30 is not supported
[  187.415675][T11055] cgroup: subsys name conflicts with all
[  187.526383][ T5980] usb 8-1: device descriptor read/64, error -71
[  187.679572][T11074] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1968'.
[  187.754135][T11079] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1965'.
[  187.757885][T11079] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1965'.
[  187.766491][T11079] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1965'.
[  187.771236][T11079] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1965'.
[  187.804404][ T5980] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  187.816731][   T40] audit: type=1400 audit(2000000012.236:467): avc:  denied  { mount } for  pid=11080 comm="syz.4.1971" name="/" dev="hugetlbfs" ino=40011 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  187.853161][   T40] audit: type=1400 audit(2000000012.264:468): avc:  denied  { mounton } for  pid=11080 comm="syz.4.1971" path="/46/file0" dev="hugetlbfs" ino=40011 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  187.853640][T11081] overlayfs: maximum fs stacking depth exceeded
[  187.954260][ T5980] usb 8-1: device descriptor read/64, error -71
[  187.972415][   T40] audit: type=1400 audit(2000000012.367:469): avc:  denied  { unmount } for  pid=10478 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  188.082609][ T5980] usb usb8-port1: attempt power cycle
[  188.390829][   T40] audit: type=1400 audit(2000000012.760:470): avc:  denied  { read } for  pid=11106 comm="syz.4.1982" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  188.456644][ T5980] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  188.466209][T11114] xt_l2tp: v2 doesn't support IP mode
[  188.489675][ T5980] usb 8-1: device descriptor read/8, error -71
[  188.581681][T11119] FAULT_INJECTION: forcing a failure.
[  188.581681][T11119] name failslab, interval 1, probability 0, space 0, times 0
[  188.589650][T11119] CPU: 3 UID: 0 PID: 11119 Comm: syz.1.1984 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  188.589684][T11119] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  188.589696][T11119] Call Trace:
[  188.589704][T11119]  <TASK>
[  188.589712][T11119]  dump_stack_lvl+0x16c/0x1f0
[  188.589750][T11119]  should_fail_ex+0x512/0x640
[  188.589779][T11119]  ? fs_reclaim_acquire+0xae/0x150
[  188.589811][T11119]  ? tomoyo_encode2+0x100/0x3e0
[  188.589841][T11119]  should_failslab+0xc2/0x120
[  188.589865][T11119]  __kmalloc_noprof+0xd2/0x510
[  188.589887][T11119]  ? d_absolute_path+0x136/0x1a0
[  188.589921][T11119]  tomoyo_encode2+0x100/0x3e0
[  188.589958][T11119]  tomoyo_encode+0x29/0x50
[  188.589988][T11119]  tomoyo_realpath_from_path+0x18f/0x6e0
[  188.590039][T11119]  tomoyo_path_number_perm+0x245/0x580
[  188.590066][T11119]  ? tomoyo_path_number_perm+0x237/0x580
[  188.590093][T11119]  ? core_kernel_text+0xa6/0xb0
[  188.590119][T11119]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  188.590144][T11119]  ? unwind_get_return_address+0x59/0xa0
[  188.590172][T11119]  ? arch_stack_walk+0xa6/0x100
[  188.590230][T11119]  ? __kasan_slab_free+0x51/0x70
[  188.590250][T11119]  ? kmem_cache_free+0x2d4/0x4d0
[  188.590281][T11119]  ? putname+0x154/0x1a0
[  188.590308][T11119]  ? from_kuid+0x8d/0xd0
[  188.590330][T11119]  ? __pfx_from_kuid+0x10/0x10
[  188.590359][T11119]  tomoyo_path_chown+0x173/0x1b0
[  188.590383][T11119]  ? __pfx_tomoyo_path_chown+0x10/0x10
[  188.590406][T11119]  ? from_vfsuid+0xea/0x140
[  188.590433][T11119]  ? __pfx_from_vfsuid+0x10/0x10
[  188.590464][T11119]  security_path_chown+0x12a/0x2e0
[  188.590497][T11119]  chown_common+0x3bb/0x670
[  188.590529][T11119]  ? __pfx_chown_common+0x10/0x10
[  188.590552][T11119]  ? find_held_lock+0x2b/0x80
[  188.590588][T11119]  ? mnt_get_write_access+0x20c/0x300
[  188.590623][T11119]  do_fchownat+0x1a7/0x200
[  188.590648][T11119]  ? __pfx_do_fchownat+0x10/0x10
[  188.590675][T11119]  ? __pfx_ksys_write+0x10/0x10
[  188.590706][T11119]  ? rcu_is_watching+0x12/0xc0
[  188.590736][T11119]  __x64_sys_fchownat+0xbd/0x160
[  188.590758][T11119]  ? do_syscall_64+0x91/0x260
[  188.590788][T11119]  ? lockdep_hardirqs_on+0x7c/0x110
[  188.590816][T11119]  do_syscall_64+0xcd/0x260
[  188.590848][T11119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.590869][T11119] RIP: 0033:0x7f5039b8e969
[  188.590887][T11119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.590908][T11119] RSP: 002b:00007f503aa71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000104
[  188.590930][T11119] RAX: ffffffffffffffda RBX: 00007f5039db5fa0 RCX: 00007f5039b8e969
[  188.590944][T11119] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  188.590957][T11119] RBP: 00007f503aa71090 R08: 0000000000000000 R09: 0000000000000000
[  188.590969][T11119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.590982][T11119] R13: 0000000000000000 R14: 00007f5039db5fa0 R15: 00007fffde6e8328
[  188.591010][T11119]  </TASK>
[  188.591050][T11119] ERROR: Out of memory at tomoyo_realpath_from_path.
[  188.682979][T11110] kvm: MWAIT instruction emulated as NOP!
[  188.788088][ T5980] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  188.809858][ T5980] usb 8-1: device descriptor read/8, error -71
[  188.812112][T11125] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1986'.
[  188.939113][ T5980] usb usb8-port1: unable to enumerate USB device
[  189.038533][T11131] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=553 sclass=netlink_route_socket pid=11131 comm=syz.0.1989
[  189.725317][    C3] vcan0: j1939_tp_rxtimer: 0xffff88803724c400: rx timeout, send abort
[  189.732110][   T40] audit: type=1400 audit(2000000014.022:471): avc:  denied  { read } for  pid=5329 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  189.743046][   T40] audit: type=1400 audit(2000000014.022:472): avc:  denied  { search } for  pid=5329 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  189.752545][   T40] audit: type=1400 audit(2000000014.022:473): avc:  denied  { write } for  pid=5329 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  189.765190][   T40] audit: type=1400 audit(2000000014.022:474): avc:  denied  { add_name } for  pid=5329 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  190.265619][    C3] vcan0: j1939_tp_rxtimer: 0xffff88803724c400: abort rx timeout. Force session deactivation
[  190.523833][T11159] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1998'.
[  190.529347][T11159] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1998'.
[  190.702736][T11166] FAULT_INJECTION: forcing a failure.
[  190.702736][T11166] name failslab, interval 1, probability 0, space 0, times 0
[  190.708423][T11166] CPU: 1 UID: 0 PID: 11166 Comm: syz.1.1999 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  190.708447][T11166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  190.708457][T11166] Call Trace:
[  190.708465][T11166]  <TASK>
[  190.708473][T11166]  dump_stack_lvl+0x16c/0x1f0
[  190.708504][T11166]  should_fail_ex+0x512/0x640
[  190.708523][T11166]  ? __kvmalloc_node_noprof+0x122/0x600
[  190.708543][T11166]  should_failslab+0xc2/0x120
[  190.708555][T11166]  __kvmalloc_node_noprof+0x135/0x600
[  190.708573][T11166]  ? __pfx___mutex_lock+0x10/0x10
[  190.708589][T11166]  ? traverse.part.0.constprop.0+0x392/0x640
[  190.708632][T11166]  ? traverse.part.0.constprop.0+0x392/0x640
[  190.708648][T11166]  traverse.part.0.constprop.0+0x392/0x640
[  190.708669][T11166]  seq_read_iter+0x932/0x12c0
[  190.708687][T11166]  ? __pfx__kstrtoull+0x10/0x10
[  190.708701][T11166]  seq_read+0x39e/0x4e0
[  190.708717][T11166]  ? __pfx_seq_read+0x10/0x10
[  190.708739][T11166]  ? avc_policy_seqno+0x9/0x20
[  190.708752][T11166]  ? __pfx_seq_read+0x10/0x10
[  190.708768][T11166]  proc_reg_read+0x23d/0x330
[  190.708781][T11166]  ? __pfx_proc_reg_read+0x10/0x10
[  190.708793][T11166]  vfs_readv+0x6bf/0x8a0
[  190.708808][T11166]  ? get_pid_task+0x106/0x250
[  190.708822][T11166]  ? __pfx_vfs_readv+0x10/0x10
[  190.708838][T11166]  ? find_held_lock+0x2b/0x80
[  190.708859][T11166]  ? __fget_files+0x20e/0x3c0
[  190.708873][T11166]  ? do_preadv+0x1af/0x270
[  190.708887][T11166]  do_preadv+0x1af/0x270
[  190.708903][T11166]  ? __pfx_do_preadv+0x10/0x10
[  190.708922][T11166]  do_syscall_64+0xcd/0x260
[  190.708939][T11166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.708950][T11166] RIP: 0033:0x7f5039b8e969
[  190.708961][T11166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.708971][T11166] RSP: 002b:00007f503aa71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  190.708984][T11166] RAX: ffffffffffffffda RBX: 00007f5039db5fa0 RCX: 00007f5039b8e969
[  190.708991][T11166] RDX: 0000000000000001 RSI: 0000200000000380 RDI: 0000000000000003
[  190.708998][T11166] RBP: 00007f503aa71090 R08: 00000000ddd073cf R09: 0000000000000000
[  190.709004][T11166] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000001
[  190.709011][T11166] R13: 0000000000000000 R14: 00007f5039db5fa0 R15: 00007fffde6e8328
[  190.709025][T11166]  </TASK>
[  191.679572][T11195] FAULT_INJECTION: forcing a failure.
[  191.679572][T11195] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  191.686744][T11195] CPU: 1 UID: 0 PID: 11195 Comm: syz.3.2010 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  191.686774][T11195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  191.686785][T11195] Call Trace:
[  191.686793][T11195]  <TASK>
[  191.686801][T11195]  dump_stack_lvl+0x16c/0x1f0
[  191.686837][T11195]  should_fail_ex+0x512/0x640
[  191.686869][T11195]  _copy_to_user+0x32/0xd0
[  191.686901][T11195]  simple_read_from_buffer+0xcb/0x170
[  191.686947][T11195]  proc_fail_nth_read+0x197/0x270
[  191.686979][T11195]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  191.687012][T11195]  ? rw_verify_area+0xcf/0x680
[  191.687039][T11195]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  191.687069][T11195]  vfs_read+0x1de/0xc70
[  191.687103][T11195]  ? __pfx___mutex_lock+0x10/0x10
[  191.687131][T11195]  ? __pfx_vfs_read+0x10/0x10
[  191.687167][T11195]  ? __fget_files+0x20e/0x3c0
[  191.687193][T11195]  ksys_read+0x12a/0x240
[  191.687221][T11195]  ? __pfx_ksys_read+0x10/0x10
[  191.687258][T11195]  do_syscall_64+0xcd/0x260
[  191.687291][T11195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.687310][T11195] RIP: 0033:0x7f085bd8d37c
[  191.687328][T11195] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  191.687347][T11195] RSP: 002b:00007f085cb48030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  191.687368][T11195] RAX: ffffffffffffffda RBX: 00007f085bfb5fa0 RCX: 00007f085bd8d37c
[  191.687381][T11195] RDX: 000000000000000f RSI: 00007f085cb480a0 RDI: 0000000000000010
[  191.687393][T11195] RBP: 00007f085cb48090 R08: 0000000000000000 R09: 0000000000000000
[  191.687406][T11195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.687418][T11195] R13: 0000000000000000 R14: 00007f085bfb5fa0 R15: 00007ffeb636dd48
[  191.687446][T11195]  </TASK>
[  192.240977][ T5989] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  192.425956][ T5989] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  192.432355][ T5989] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  192.439528][ T5989] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.449782][ T5989] usb 8-1: config 0 descriptor??
[  192.456257][ T5989] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  192.526776][T11220] loop2: detected capacity change from 0 to 7
[  192.535343][ T6767] Dev loop2: unable to read RDB block 7
[  192.537824][ T6767]  loop2: AHDI p2
[  192.539509][ T6767] loop2: partition table partially beyond EOD, truncated
[  192.567060][T11220] Dev loop2: unable to read RDB block 7
[  192.570802][T11220]  loop2: AHDI p2
[  192.573123][T11220] loop2: partition table partially beyond EOD, truncated
[  192.580318][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  192.580334][   T40] audit: type=1326 audit(2000000016.679:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11219 comm="syz.1.2022" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5039b8e969 code=0x0
[  193.021297][ T5287] Bluetooth: hci0: command 0x0406 tx timeout
[  193.021322][ T5951] Bluetooth: hci1: command 0x0406 tx timeout
[  193.463245][   T40] audit: type=1400 audit(2000000017.511:487): avc:  denied  { name_bind 0x1000000 } for  pid=11238 comm="syz.4.2027" path="socket:[39705]" dev="sockfs" ino=39705 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  193.743866][T11258] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2034'.
[  193.843606][   T40] audit: type=1400 audit(2000000017.858:488): avc:  denied  { lock } for  pid=11259 comm="syz.0.2035" path="/536/file0/bus/cpuset.effective_cpus" dev="9p" ino=35913986 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  193.869377][   T40] audit: type=1400 audit(2000000017.867:489): avc:  denied  { write } for  pid=11259 comm="syz.0.2035" name="cpuset.effective_cpus" dev="9p" ino=35913986 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  194.299140][T11291] 9pnet_virtio: no channels available for device syz
[  194.310175][T11291] FAULT_INJECTION: forcing a failure.
[  194.310175][T11291] name failslab, interval 1, probability 0, space 0, times 0
[  194.317005][T11291] CPU: 2 UID: 0 PID: 11291 Comm: syz.4.2046 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  194.317034][T11291] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  194.317046][T11291] Call Trace:
[  194.317053][T11291]  <TASK>
[  194.317060][T11291]  dump_stack_lvl+0x16c/0x1f0
[  194.317090][T11291]  should_fail_ex+0x512/0x640
[  194.317114][T11291]  ? __kmalloc_noprof+0xbf/0x510
[  194.317133][T11291]  ? ovl_lookup+0x11d2/0x2270
[  194.317149][T11291]  should_failslab+0xc2/0x120
[  194.317169][T11291]  __kmalloc_noprof+0xd2/0x510
[  194.317199][T11291]  ovl_lookup+0x11d2/0x2270
[  194.317228][T11291]  ? __pfx_ovl_lookup+0x10/0x10
[  194.317248][T11291]  ? d_alloc_parallel+0x6ae/0x12e0
[  194.317281][T11291]  ? register_lock_class+0x41/0x4c0
[  194.317311][T11291]  ? __lock_acquire+0xaa4/0x1ba0
[  194.317337][T11291]  ? __pfx_d_alloc_parallel+0x10/0x10
[  194.317369][T11291]  ? lockdep_init_map_type+0x5c/0x280
[  194.317392][T11291]  __lookup_slow+0x24e/0x460
[  194.317417][T11291]  ? __pfx___lookup_slow+0x10/0x10
[  194.317460][T11291]  ? lookup_fast+0x156/0x610
[  194.317491][T11291]  walk_component+0x353/0x5b0
[  194.317519][T11291]  path_lookupat+0x17e/0x780
[  194.317551][T11291]  filename_lookup+0x224/0x5f0
[  194.317583][T11291]  ? __pfx_filename_lookup+0x10/0x10
[  194.317634][T11291]  ? __might_fault+0xe3/0x190
[  194.317652][T11291]  ? __might_fault+0xe3/0x190
[  194.317667][T11291]  ? __might_fault+0x13b/0x190
[  194.317694][T11291]  filename_setxattr+0x9d/0x1d0
[  194.317714][T11291]  ? __pfx_filename_setxattr+0x10/0x10
[  194.317733][T11291]  ? getname_flags.part.0+0x1c5/0x550
[  194.317762][T11291]  path_setxattrat+0x1de/0x2a0
[  194.317780][T11291]  ? __pfx_path_setxattrat+0x10/0x10
[  194.317803][T11291]  ? ksys_write+0x190/0x240
[  194.317855][T11291]  ? fput+0x70/0xf0
[  194.317875][T11291]  ? ksys_write+0x1b9/0x240
[  194.317902][T11291]  ? __pfx_ksys_write+0x10/0x10
[  194.317928][T11291]  ? rcu_is_watching+0x12/0xc0
[  194.317952][T11291]  __x64_sys_lsetxattr+0xc9/0x140
[  194.317970][T11291]  ? do_syscall_64+0x91/0x260
[  194.318017][T11291]  ? lockdep_hardirqs_on+0x7c/0x110
[  194.318043][T11291]  do_syscall_64+0xcd/0x260
[  194.318070][T11291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.318089][T11291] RIP: 0033:0x7f8c4558e969
[  194.318104][T11291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.318121][T11291] RSP: 002b:00007f8c46375038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  194.318140][T11291] RAX: ffffffffffffffda RBX: 00007f8c457b5fa0 RCX: 00007f8c4558e969
[  194.318152][T11291] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000200000000040
[  194.318163][T11291] RBP: 00007f8c46375090 R08: 0000000000000001 R09: 0000000000000000
[  194.318174][T11291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.318185][T11291] R13: 0000000000000000 R14: 00007f8c457b5fa0 R15: 00007fffb539a738
[  194.318215][T11291]  </TASK>
[  194.519410][   T40] audit: type=1400 audit(2000000018.503:490): avc:  denied  { connect } for  pid=11292 comm="syz.4.2047" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  194.527830][   T40] audit: type=1400 audit(2000000018.503:491): avc:  denied  { read } for  pid=11292 comm="syz.4.2047" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  194.575977][T11294] fuse: Unknown parameter ''
[  195.051001][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.171932][ T6000] usb 8-1: USB disconnect, device number 8
[  195.203577][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.302476][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.408390][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.413465][ T5941] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  195.422773][ T5941] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  195.428507][ T5941] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  195.433496][ T5941] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  195.438509][ T5941] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  195.488463][   T40] audit: type=1400 audit(2000000019.401:492): avc:  denied  { bind } for  pid=11314 comm="syz.4.2055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  195.495938][T11309] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode
[  195.542058][   T40] audit: type=1400 audit(2000000019.448:493): avc:  denied  { accept } for  pid=11318 comm="syz.3.2057" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  195.605110][T11324] netlink: 'syz.3.2059': attribute type 1 has an invalid length.
[  195.761025][T11333] FAULT_INJECTION: forcing a failure.
[  195.761025][T11333] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  195.766987][T11333] CPU: 3 UID: 0 PID: 11333 Comm: syz.4.2062 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  195.767012][T11333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  195.767022][T11333] Call Trace:
[  195.767028][T11333]  <TASK>
[  195.767035][T11333]  dump_stack_lvl+0x16c/0x1f0
[  195.767059][T11333]  should_fail_ex+0x512/0x640
[  195.767084][T11333]  _copy_from_iter+0x2a4/0x15b0
[  195.767111][T11333]  ? __alloc_skb+0x200/0x380
[  195.767129][T11333]  ? __pfx__copy_from_iter+0x10/0x10
[  195.767149][T11333]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  195.767178][T11333]  netlink_sendmsg+0x829/0xdd0
[  195.767202][T11333]  ? __pfx_netlink_sendmsg+0x10/0x10
[  195.767226][T11333]  ____sys_sendmsg+0xa98/0xc70
[  195.767247][T11333]  ? copy_msghdr_from_user+0x10a/0x160
[  195.767264][T11333]  ? __pfx_____sys_sendmsg+0x10/0x10
[  195.767297][T11333]  ___sys_sendmsg+0x134/0x1d0
[  195.767312][T11333]  ? __pfx____sys_sendmsg+0x10/0x10
[  195.767357][T11333]  __sys_sendmsg+0x16d/0x220
[  195.767376][T11333]  ? __pfx___sys_sendmsg+0x10/0x10
[  195.767395][T11333]  ? rcu_is_watching+0x12/0xc0
[  195.767420][T11333]  do_syscall_64+0xcd/0x260
[  195.767444][T11333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.767460][T11333] RIP: 0033:0x7f8c4558e969
[  195.767472][T11333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.767485][T11333] RSP: 002b:00007f8c46375038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  195.767500][T11333] RAX: ffffffffffffffda RBX: 00007f8c457b5fa0 RCX: 00007f8c4558e969
[  195.767510][T11333] RDX: 0000000004000050 RSI: 0000200000000000 RDI: 0000000000000003
[  195.767521][T11333] RBP: 00007f8c46375090 R08: 0000000000000000 R09: 0000000000000000
[  195.767531][T11333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.767540][T11333] R13: 0000000000000000 R14: 00007f8c457b5fa0 R15: 00007fffb539a738
[  195.767558][T11333]  </TASK>
[  196.027658][   T40] audit: type=1400 audit(2000000019.915:494): avc:  denied  { setopt } for  pid=11339 comm="syz.4.2064" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  196.037222][   T40] audit: type=1400 audit(2000000019.915:495): avc:  denied  { write } for  pid=11339 comm="syz.4.2064" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  196.735868][   T12] bond0 (unregistering): (slave bond2): Releasing backup interface
[  196.764585][   T12] bond0 (unregistering): Released all slaves
[  196.970559][   T12] bond1 (unregistering): Released all slaves
[  197.098672][   T12] bond2 (unregistering): Released all slaves
[  197.112297][   T12] bond3 (unregistering): Released all slaves
[  197.124745][   T12] bond4 (unregistering): Released all slaves
[  197.188096][T11335] sp0: Synchronizing with TNC
[  197.198403][T11310] chnl_net:caif_netlink_parms(): no params data found
[  197.639704][ T5952] Bluetooth: hci1: command tx timeout
[  197.687253][T11310] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.690931][T11310] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.696865][T11310] bridge_slave_0: entered allmulticast mode
[  197.704009][T11310] bridge_slave_0: entered promiscuous mode
[  197.719789][T11310] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.727805][T11310] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.742790][T11310] bridge_slave_1: entered allmulticast mode
[  197.748148][T11310] bridge_slave_1: entered promiscuous mode
[  197.872966][T11310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  197.881110][T11310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  197.978957][   T12] hsr_slave_0: left promiscuous mode
[  197.983382][   T12] hsr_slave_1: left promiscuous mode
[  198.043190][   T12] veth1_macvtap: left promiscuous mode
[  198.046778][   T12] veth0_macvtap: left promiscuous mode
[  198.049068][   T12] veth1_vlan: left promiscuous mode
[  198.050186][   T40] audit: type=1400 audit(2000000021.805:496): avc:  denied  { read } for  pid=11386 comm="syz.1.2074" name="msr" dev="devtmpfs" ino=89 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  198.051461][   T12] veth0_vlan: left promiscuous mode
[  198.059522][   T40] audit: type=1400 audit(2000000021.805:497): avc:  denied  { open } for  pid=11386 comm="syz.1.2074" path="/dev/cpu/1/msr" dev="devtmpfs" ino=89 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  198.098356][T11387] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2074'.
[  198.100497][   T40] audit: type=1400 audit(2000000021.852:498): avc:  denied  { unmount } for  pid=5939 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  198.369337][T11394] FAULT_INJECTION: forcing a failure.
[  198.369337][T11394] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.375031][T11394] CPU: 3 UID: 0 PID: 11394 Comm: syz.3.2076 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  198.375055][T11394] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  198.375066][T11394] Call Trace:
[  198.375073][T11394]  <TASK>
[  198.375081][T11394]  dump_stack_lvl+0x16c/0x1f0
[  198.375110][T11394]  should_fail_ex+0x512/0x640
[  198.375145][T11394]  _copy_to_user+0x32/0xd0
[  198.375174][T11394]  simple_read_from_buffer+0xcb/0x170
[  198.375204][T11394]  proc_fail_nth_read+0x197/0x270
[  198.375231][T11394]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  198.375259][T11394]  ? rw_verify_area+0xcf/0x680
[  198.375282][T11394]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  198.375309][T11394]  vfs_read+0x1de/0xc70
[  198.375338][T11394]  ? __pfx___mutex_lock+0x10/0x10
[  198.375362][T11394]  ? __pfx_vfs_read+0x10/0x10
[  198.375395][T11394]  ? __fget_files+0x20e/0x3c0
[  198.375419][T11394]  ksys_read+0x12a/0x240
[  198.375443][T11394]  ? __pfx_ksys_read+0x10/0x10
[  198.375465][T11394]  ? rcu_is_watching+0x12/0xc0
[  198.375494][T11394]  do_syscall_64+0xcd/0x260
[  198.375521][T11394]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.375538][T11394] RIP: 0033:0x7f085bd8d37c
[  198.375551][T11394] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  198.375569][T11394] RSP: 002b:00007f085cb48030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  198.375586][T11394] RAX: ffffffffffffffda RBX: 00007f085bfb5fa0 RCX: 00007f085bd8d37c
[  198.375597][T11394] RDX: 000000000000000f RSI: 00007f085cb480a0 RDI: 0000000000000004
[  198.375606][T11394] RBP: 00007f085cb48090 R08: 0000000000000000 R09: 0000000000000000
[  198.375614][T11394] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000001
[  198.375623][T11394] R13: 0000000000000000 R14: 00007f085bfb5fa0 R15: 00007ffeb636dd48
[  198.375642][T11394]  </TASK>
[  198.619345][T11374] [U] è
[  199.878127][ T5952] Bluetooth: hci1: command tx timeout
[  200.127433][T11310] team0: Port device team_slave_0 added
[  200.131122][T11387] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2074'.
[  200.134994][T11387] tipc: Invalid UDP bearer configuration
[  200.135046][T11387] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  200.204833][T11310] team0: Port device team_slave_1 added
[  200.311364][T11310] batman_adv: batadv0: Adding interface: batadv_slave_0
[  200.317157][T11310] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.331284][T11310] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  200.338896][T11310] batman_adv: batadv0: Adding interface: batadv_slave_1
[  200.341860][T11310] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.354589][T11310] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  200.458703][T11409] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2080'.
[  200.467694][T11310] hsr_slave_0: entered promiscuous mode
[  200.475108][ T5952] Bluetooth: hci3: unknown advertising packet type: 0x65
[  200.475156][ T5952] Bluetooth: hci3: unknown advertising packet type: 0x20
[  200.479178][ T5952] Bluetooth: hci3: Dropping invalid advertising data
[  200.488348][ T5952] Bluetooth: hci3: Malformed LE Event: 0x02
[  200.492502][T11310] hsr_slave_1: entered promiscuous mode
[  200.497360][T11310] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  200.501267][T11310] Cannot create hsr debugfs directory
[  200.882183][T11310] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  200.907037][T11310] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  200.920119][T11310] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  200.944443][T11310] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  201.000037][   T40] audit: type=1404 audit(2000000024.564:499): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  201.031958][   T40] audit: type=1404 audit(2000000024.592:500): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  201.060043][   T40] audit: type=1400 audit(2000000024.611:501): avc:  denied  { search } for  pid=11424 comm="cmp" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  201.068662][T11426] program syz.3.2086 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  201.077287][   T40] audit: type=1400 audit(2000000024.620:502): avc:  denied  { read } for  pid=11425 comm="syz.3.2086" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  201.087569][   T40] audit: type=1400 audit(2000000024.620:503): avc:  denied  { open } for  pid=11425 comm="syz.3.2086" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  201.117018][   T40] audit: type=1400 audit(2000000024.620:504): avc:  denied  { read } for  pid=11424 comm="cmp" name="resolv.conf" dev="tmpfs" ino=4 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  201.122255][T11310] 8021q: adding VLAN 0 to HW filter on device bond0
[  201.149093][   T40] audit: type=1400 audit(2000000024.620:505): avc:  denied  { open } for  pid=11424 comm="cmp" path="/tmp/resolv.conf" dev="tmpfs" ino=4 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  201.204577][T11310] 8021q: adding VLAN 0 to HW filter on device team0
[  201.214495][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.217755][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  201.245768][T11439] FAULT_INJECTION: forcing a failure.
[  201.245768][T11439] name failslab, interval 1, probability 0, space 0, times 0
[  201.251021][T11439] CPU: 1 UID: 0 PID: 11439 Comm: syz.1.2090 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  201.251045][T11439] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  201.251057][T11439] Call Trace:
[  201.251064][T11439]  <TASK>
[  201.251071][T11439]  dump_stack_lvl+0x16c/0x1f0
[  201.251100][T11439]  should_fail_ex+0x512/0x640
[  201.251122][T11439]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  201.251155][T11439]  ? __pfx_basic_classify+0x10/0x10
[  201.251173][T11439]  should_failslab+0xc2/0x120
[  201.251192][T11439]  __kmalloc_cache_noprof+0x6a/0x3e0
[  201.251217][T11439]  ? _raw_read_unlock+0x28/0x50
[  201.251236][T11439]  ? basic_init+0x43/0x1f0
[  201.251255][T11439]  ? __pfx_basic_classify+0x10/0x10
[  201.251272][T11439]  basic_init+0x43/0x1f0
[  201.251291][T11439]  tc_new_tfilter+0x114a/0x2340
[  201.251323][T11439]  ? avc_has_perm_noaudit+0x117/0x3b0
[  201.251342][T11439]  ? __pfx_tc_new_tfilter+0x10/0x10
[  201.251368][T11439]  ? __lock_acquire+0x5ca/0x1ba0
[  201.251407][T11439]  ? find_held_lock+0x2b/0x80
[  201.251426][T11439]  ? __pfx_tc_new_tfilter+0x10/0x10
[  201.251446][T11439]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  201.251467][T11439]  ? __pfx_tc_new_tfilter+0x10/0x10
[  201.251490][T11439]  rtnetlink_rcv_msg+0x95b/0xe90
[  201.251513][T11439]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  201.251544][T11439]  netlink_rcv_skb+0x16a/0x440
[  201.251566][T11439]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  201.251588][T11439]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  201.251621][T11439]  ? netlink_deliver_tap+0x1ae/0xd30
[  201.251677][T11439]  netlink_unicast+0x53d/0x7f0
[  201.251701][T11439]  ? __pfx_netlink_unicast+0x10/0x10
[  201.251728][T11439]  netlink_sendmsg+0x8d1/0xdd0
[  201.251753][T11439]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.251784][T11439]  ____sys_sendmsg+0xa98/0xc70
[  201.251808][T11439]  ? copy_msghdr_from_user+0x10a/0x160
[  201.251825][T11439]  ? __pfx_____sys_sendmsg+0x10/0x10
[  201.251858][T11439]  ___sys_sendmsg+0x134/0x1d0
[  201.251877][T11439]  ? __pfx____sys_sendmsg+0x10/0x10
[  201.251927][T11439]  __sys_sendmsg+0x16d/0x220
[  201.251944][T11439]  ? __pfx___sys_sendmsg+0x10/0x10
[  201.251971][T11439]  ? rcu_is_watching+0x12/0xc0
[  201.251999][T11439]  do_syscall_64+0xcd/0x260
[  201.252027][T11439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.252042][T11439] RIP: 0033:0x7f5039b8e969
[  201.252059][T11439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.252076][T11439] RSP: 002b:00007f503aa71038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  201.252093][T11439] RAX: ffffffffffffffda RBX: 00007f5039db5fa0 RCX: 00007f5039b8e969
[  201.252105][T11439] RDX: 0000000024044094 RSI: 0000200000006040 RDI: 0000000000000004
[  201.252115][T11439] RBP: 00007f503aa71090 R08: 0000000000000000 R09: 0000000000000000
[  201.252124][T11439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.252141][T11439] R13: 0000000000000000 R14: 00007f5039db5fa0 R15: 00007fffde6e8328
[  201.252163][T11439]  </TASK>
[  201.273842][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.279798][T11441] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2091'.
[  201.280853][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  201.601919][T11446] unknown channel width for channel at 909000KHz?
[  201.643663][T11457] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2093'.
[  201.732782][T11310] 8021q: adding VLAN 0 to HW filter on device batadv0
[  201.756163][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  201.758903][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  202.061300][T11310] veth0_vlan: entered promiscuous mode
[  202.067459][T11310] veth1_vlan: entered promiscuous mode
[  202.098426][ T5952] Bluetooth: hci1: command tx timeout
[  202.101276][T11310] veth0_macvtap: entered promiscuous mode
[  202.110225][T11310] veth1_macvtap: entered promiscuous mode
[  202.135357][T11310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  202.139758][T11310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  202.146450][T11310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  202.151343][T11310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  202.158398][T11310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  202.166418][T11310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  202.184489][T11310] batman_adv: batadv0: Interface activated: batadv_slave_0
[  202.198489][T11476] ieee802154 phy0 wpan0: encryption failed: -22
[  202.207210][T11310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  202.212160][T11310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  202.225861][T11310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  202.230116][T11310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  202.235105][T11310] batman_adv: batadv0: Interface activated: batadv_slave_1
[  202.248025][T11310] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  202.258193][T11310] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  202.261691][T11310] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  202.265219][T11310] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  202.379915][   T89] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  202.383176][   T89] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  202.413066][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  202.416070][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  202.643226][T11491] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2094'.
[  202.780189][T11496] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2096'.
[  202.798575][T11499] bpf_jit: fatal error
[  202.841785][T11500] program syz.4.2095 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  202.906475][ T5941] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  202.913491][ T5941] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  202.918148][ T5941] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  202.925149][ T5941] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  202.929143][ T5941] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  203.013345][T11509] FAULT_INJECTION: forcing a failure.
[  203.013345][T11509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.038397][T11509] CPU: 2 UID: 0 PID: 11509 Comm: syz.4.2098 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  203.038426][T11509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  203.038437][T11509] Call Trace:
[  203.038443][T11509]  <TASK>
[  203.038449][T11509]  dump_stack_lvl+0x16c/0x1f0
[  203.038477][T11509]  should_fail_ex+0x512/0x640
[  203.038503][T11509]  _copy_from_iter+0x2a4/0x15b0
[  203.038528][T11509]  ? _copy_from_iter+0x161/0x15b0
[  203.038551][T11509]  ? __pfx__copy_from_iter+0x10/0x10
[  203.038576][T11509]  ? __pfx__copy_from_iter+0x10/0x10
[  203.038600][T11509]  ? _copy_from_iter+0x161/0x15b0
[  203.038627][T11509]  copy_page_from_iter+0xa5/0x120
[  203.038651][T11509]  skb_copy_datagram_from_iter+0x2a0/0x740
[  203.038684][T11509]  tun_get_user+0x17ac/0x3b10
[  203.038719][T11509]  ? __pfx_tun_get_user+0x10/0x10
[  203.038742][T11509]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  203.038769][T11509]  ? find_held_lock+0x2b/0x80
[  203.038789][T11509]  ? tun_get+0x191/0x370
[  203.038816][T11509]  tun_chr_write_iter+0xdc/0x210
[  203.038832][T11509]  vfs_write+0x5bd/0x1180
[  203.038859][T11509]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  203.038876][T11509]  ? __pfx_vfs_write+0x10/0x10
[  203.038899][T11509]  ? find_held_lock+0x2b/0x80
[  203.038933][T11509]  ksys_write+0x12a/0x240
[  203.038957][T11509]  ? __pfx_ksys_write+0x10/0x10
[  203.038980][T11509]  ? rcu_is_watching+0x12/0xc0
[  203.039006][T11509]  do_syscall_64+0xcd/0x260
[  203.039033][T11509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.039058][T11509] RIP: 0033:0x7f8c4558e969
[  203.039096][T11509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.039113][T11509] RSP: 002b:00007f8c46375038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  203.039131][T11509] RAX: ffffffffffffffda RBX: 00007f8c457b5fa0 RCX: 00007f8c4558e969
[  203.039142][T11509] RDX: 000000000000fdef RSI: 00002000000003c0 RDI: 0000000000000004
[  203.039152][T11509] RBP: 00007f8c46375090 R08: 0000000000000000 R09: 0000000000000000
[  203.039162][T11509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  203.039171][T11509] R13: 0000000000000000 R14: 00007f8c457b5fa0 R15: 00007fffb539a738
[  203.039194][T11509]  </TASK>
[  203.199114][ T6000] ------------[ cut here ]------------
[  203.203577][ T6000] WARNING: CPU: 0 PID: 6000 at kernel/bpf/core.c:2357 __bpf_prog_ret0_warn+0xa/0x20
[  203.208004][ T6000] Modules linked in:
[  203.210051][ T6000] CPU: 0 UID: 0 PID: 6000 Comm: kworker/0:4 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  203.216787][ T6000] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  203.222621][ T6000] Workqueue: mld mld_ifc_work
[  203.224938][ T6000] RIP: 0010:__bpf_prog_ret0_warn+0xa/0x20
[  203.228551][ T6000] Code: f3 0f 1e fa e8 27 c8 f0 ff 31 c0 e9 c0 6a a5 09 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa e8 07 c8 f0 ff 90 <0f> 0b 90 31 c0 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 90
[  203.241815][ T6000] RSP: 0018:ffffc900045cf550 EFLAGS: 00010293
[  203.244779][ T6000] RAX: 0000000000000000 RBX: ffffc90003d91000 RCX: 0000000000000000
[  203.253309][ T6000] RDX: ffff888026942440 RSI: ffffffff81ca7e39 RDI: ffff888027b6c280
[  203.256696][ T6000] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  203.261296][ T6000] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888027b6c280
[  203.265030][ T6000] R13: ffff888027b6c280 R14: 0000000000000001 R15: ffff888050f96002
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  203.274139][ T6000] FS:  0000000000000000(0000) GS:ffff8880d69df000(0000) knlGS:0000000000000000
[  203.278405][ T6000] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  203.281205][ T6000] CR2: 000056140569c300 CR3: 000000005e6cd000 CR4: 0000000000352ef0
[  203.284551][ T6000] Call Trace:
[  203.286688][ T6000]  <TASK>
[  203.288396][ T6000]  bpf_prog_run_clear_cb+0xa6/0x1d0
[  203.290659][ T6000]  run_filter+0xd8/0x2c0
[  203.302081][ T6000]  packet_rcv+0x3e1/0x15a0
[  203.304240][ T6000]  ? __pfx_packet_rcv+0x10/0x10
[  203.306442][ T6000]  dev_queue_xmit_nit+0x8f1/0xca0
[  203.308830][ T6000]  dev_hard_start_xmit+0x5b6/0x740
[  203.311261][ T6000]  __dev_queue_xmit+0x7eb/0x43e0
[  203.313423][ T6000]  ? ip6mr_fib_lookup+0x136/0x1a0
[  203.315592][ T6000]  ? __pfx___dev_queue_xmit+0x10/0x10
[  203.317998][ T6000]  ? register_lock_class+0x41/0x4c0
[  203.320074][ T6000]  ? __lock_acquire+0x5ca/0x1ba0
[  203.322354][ T6000]  ? __lock_acquire+0xaa4/0x1ba0
[  203.324767][ T6000]  ? find_held_lock+0x2b/0x80
[  203.326969][ T6000]  ip6_finish_output2+0xe98/0x2020
[  203.329624][ T6000]  ip6_finish_output+0x3f9/0x1360
[  203.331519][ T6000]  ip6_output+0x1f9/0x540
[  203.333301][ T6000]  mld_sendpack+0x9e9/0x1220
[  203.335662][ T6000]  ? __pfx_mld_sendpack+0x10/0x10
[  203.338217][ T6000]  mld_ifc_work+0x740/0xca0
[  203.340604][ T6000]  process_one_work+0x9cf/0x1b70
[  203.343010][ T6000]  ? __pfx_process_one_work+0x10/0x10
[  203.346298][ T6000]  ? assign_work+0x1a0/0x250
[  203.348637][ T6000]  worker_thread+0x6c8/0xf10
[  203.350705][ T6000]  ? __kthread_parkme+0x19e/0x250
[  203.352753][ T6000]  ? __pfx_worker_thread+0x10/0x10
[  203.354797][ T6000]  kthread+0x3c2/0x780
[  203.356495][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.359062][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.361727][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.363772][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.367995][ T6000]  ? rcu_is_watching+0x12/0xc0
[  203.370831][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.372885][ T6000]  ret_from_fork+0x45/0x80
[  203.374602][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.376369][ T6000]  ret_from_fork_asm+0x1a/0x30
[  203.378434][ T6000]  </TASK>
[  203.379828][ T6000] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  203.383377][ T6000] CPU: 0 UID: 0 PID: 6000 Comm: kworker/0:4 Not tainted 6.15.0-rc6-syzkaller-00047-ge9565e23cd89 #0 PREEMPT(full) 
[  203.391505][ T6000] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  203.396701][ T6000] Workqueue: mld mld_ifc_work
[  203.398777][ T6000] Call Trace:
[  203.400070][ T6000]  <TASK>
[  203.401145][ T6000]  dump_stack_lvl+0x3d/0x1f0
[  203.403199][ T6000]  panic+0x71c/0x800
[  203.404876][ T6000]  ? __pfx_panic+0x10/0x10
[  203.406729][ T6000]  ? show_trace_log_lvl+0x29b/0x3e0
[  203.408980][ T6000]  ? check_panic_on_warn+0x1f/0xb0
[  203.411048][ T6000]  ? __bpf_prog_ret0_warn+0xa/0x20
[  203.412860][ T6000]  check_panic_on_warn+0xab/0xb0
[  203.414508][ T6000]  __warn+0xf6/0x3c0
[  203.415949][ T6000]  ? __bpf_prog_ret0_warn+0xa/0x20
[  203.418484][ T6000]  report_bug+0x3c3/0x580
[  203.420526][ T6000]  ? __bpf_prog_ret0_warn+0xa/0x20
[  203.422660][ T6000]  handle_bug+0x184/0x210
[  203.424232][ T6000]  exc_invalid_op+0x17/0x50
[  203.425585][ T6000]  asm_exc_invalid_op+0x1a/0x20
[  203.427002][ T6000] RIP: 0010:__bpf_prog_ret0_warn+0xa/0x20
[  203.428912][ T6000] Code: f3 0f 1e fa e8 27 c8 f0 ff 31 c0 e9 c0 6a a5 09 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa e8 07 c8 f0 ff 90 <0f> 0b 90 31 c0 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 90
[  203.435876][ T6000] RSP: 0018:ffffc900045cf550 EFLAGS: 00010293
[  203.438601][ T6000] RAX: 0000000000000000 RBX: ffffc90003d91000 RCX: 0000000000000000
[  203.441959][ T6000] RDX: ffff888026942440 RSI: ffffffff81ca7e39 RDI: ffff888027b6c280
[  203.445016][ T6000] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  203.448531][ T6000] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888027b6c280
[  203.451571][ T6000] R13: ffff888027b6c280 R14: 0000000000000001 R15: ffff888050f96002
[  203.454779][ T6000]  ? __bpf_prog_ret0_warn+0x9/0x20
[  203.456779][ T6000]  bpf_prog_run_clear_cb+0xa6/0x1d0
[  203.458805][ T6000]  run_filter+0xd8/0x2c0
[  203.460382][ T6000]  packet_rcv+0x3e1/0x15a0
[  203.461977][ T6000]  ? __pfx_packet_rcv+0x10/0x10
[  203.463638][ T6000]  dev_queue_xmit_nit+0x8f1/0xca0
[  203.465582][ T6000]  dev_hard_start_xmit+0x5b6/0x740
[  203.467571][ T6000]  __dev_queue_xmit+0x7eb/0x43e0
[  203.469328][ T6000]  ? ip6mr_fib_lookup+0x136/0x1a0
[  203.470999][ T6000]  ? __pfx___dev_queue_xmit+0x10/0x10
[  203.472793][ T6000]  ? register_lock_class+0x41/0x4c0
[  203.474299][ T6000]  ? __lock_acquire+0x5ca/0x1ba0
[  203.477771][ T6000]  ? __lock_acquire+0xaa4/0x1ba0
[  203.479886][ T6000]  ? find_held_lock+0x2b/0x80
[  203.481662][ T6000]  ip6_finish_output2+0xe98/0x2020
[  203.483709][ T6000]  ip6_finish_output+0x3f9/0x1360
[  203.486157][ T6000]  ip6_output+0x1f9/0x540
[  203.488115][ T6000]  mld_sendpack+0x9e9/0x1220
[  203.489856][ T6000]  ? __pfx_mld_sendpack+0x10/0x10
[  203.491936][ T6000]  mld_ifc_work+0x740/0xca0
[  203.493758][ T6000]  process_one_work+0x9cf/0x1b70
[  203.495711][ T6000]  ? __pfx_process_one_work+0x10/0x10
[  203.497817][ T6000]  ? assign_work+0x1a0/0x250
[  203.499672][ T6000]  worker_thread+0x6c8/0xf10
[  203.501533][ T6000]  ? __kthread_parkme+0x19e/0x250
[  203.503426][ T6000]  ? __pfx_worker_thread+0x10/0x10
[  203.505261][ T6000]  kthread+0x3c2/0x780
[  203.507251][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.508879][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.510571][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.512357][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.514253][ T6000]  ? rcu_is_watching+0x12/0xc0
[  203.516207][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.517966][ T6000]  ret_from_fork+0x45/0x80
[  203.519738][ T6000]  ? __pfx_kthread+0x10/0x10
[  203.521569][ T6000]  ret_from_fork_asm+0x1a/0x30
[  203.523554][ T6000]  </TASK>
[  203.525888][ T6000] Kernel Offset: disabled
[  203.527871][ T6000] Rebooting in 86400 seconds..

VM DIAGNOSIS:
20:03:33  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854f7835 RDI=ffffffff9adf9560 RBP=ffffffff9adf9520 RSP=ffffc900045ceec0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9adf9520 R15=ffffffff854f77d0
RIP=ffffffff854f785f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69df000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000056140569c300 CR3=000000005e6cd000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 010000110208ffff ffffffff00000080
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f10411a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f10411a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f10411a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f10411aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f10411b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f10411c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f10583488 00007f8f10583480 00007f8f10583478 00007f8f10583450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f110ed100 00007f8f10583440 00007f8f10580004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8f10583498 00007f8f10583490 00007f8f10583488 00007f8f10583480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff95aac4d8 RBX=ffff88801e695370 RCX=00000000fffffffe RDX=0000000000000000
RSI=ffff88801e695370 RDI=ffff88801e695370 RBP=ffff88801e695370 RSP=ffffc900006771e0
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000007 R13=0000000000000000 R14=ffff88801e694880 R15=0000000000000000
RIP=ffffffff81980833 RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6adf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005614056a9480 CR3=0000000027d2b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000010000000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bb9000000000000 0000000000000000 bd22000000000001 0000ffffffff8993
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bb9000000000000 0000000000000000 bd23000000000001 0000ffffffff8993
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bb9000000000000 0000000000000000 bd24000000000001 0000ffffffff8993
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bb9000000000000 0000000000000000 bd28000000000001 0000ffffffff8993
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bb9000000000000 0000000000000000 bd27000000000001 0000ffffffff8993
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bb9000000000000 0000000000000000 bd26000000000001 0000ffffffff8993
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bb9000000000000 0000000000000000 bd25000000000001 0000ffffffff8993
ZMM24=f316f99cf316f99c f316f99cf316f99c f316f99cf316f99c f316f99cf316f99c f316f99cf316f99c f316f99cf316f99c f316f99cf316f99c f316f99cf316f99c
ZMM25=909b4aed909b4aed 909b4aed909b4aed 909b4aed909b4aed 909b4aed909b4aed 909b4aed909b4aed 909b4aed909b4aed 909b4aed909b4aed 909b4aed909b4aed
ZMM26=411912f0411912f0 411912f0411912f0 411912f0411912f0 411912f0411912f0 411912f0411912f0 411912f0411912f0 411912f0411912f0 411912f0411912f0
ZMM27=cc3de259cc3de259 cc3de259cc3de259 cc3de259cc3de259 cc3de259cc3de259 cc3de259cc3de259 cc3de259cc3de259 cc3de259cc3de259 cc3de259cc3de259
ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=230f0000230f0000 230f0000230f0000 230f0000230f0000 230f0000230f0000 230f0000230f0000 230f0000230f0000 230f0000230f0000 230f0000230f0000
info registers vcpu 2

CPU#2
RAX=000000000028984d RBX=0000000000000002 RCX=ffffffff8b6d0419 RDX=0000000000000000
RSI=ffffffff8dbe2848 RDI=ffffffff8bf48920 RBP=ffffed1003b5b910 RSP=ffffc90000187df8
R8 =0000000000000001 R9 =ffffed100d4c65bd R10=ffff88806a632deb R11=0000000000000000
R12=0000000000000002 R13=ffff88801dadc880 R14=ffffffff9084ff10 R15=0000000000000000
RIP=ffffffff8b6cecaf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000056140569c300 CR3=00000000410ec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5039c11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5039c11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5039c11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5039c11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5039c11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5039c11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000003300000085 00000000000004b7 00000008000003b7 fffffff8000002a6
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9500000033000000 8500000000000004 b700000008000004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a6000000000000a2 bc00000000fff88a 7b00000000000008 b700000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=fffff94000353bb8 RBX=00000000000000a2 RCX=ffffffff81f2cebd RDX=0000000000000000
RSI=0000000000000008 RDI=ffffea0001a9ddc0 RBP=fffff94000353bb8 RSP=ffffc9000fa2fa40
R8 =0000000000000000 R9 =fffff94000353bb8 R10=ffffea0001a9ddc7 R11=0000000000000000
R12=0000000000000000 R13=ffffea0001a9ddc0 R14=ffffc9000fa2fd70 R15=dffffc0000000000
RIP=ffffffff8220b99a RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f451d385c80 ffffffff 00c00000
GS =0000 ffff8880d6cdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f451d4ff950 CR3=000000005e8bc000 CR4=00352ef0
DR0=0000040000000000 DR1=000000000000000c DR2=000000000000400a DR3=0000000000000006 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f451d6fa868 00007f451d72fda0
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f451d6fa868
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007000700020007 0007000700000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000615f6c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f495f0074696e69 6572705f74696475
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000558
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000840
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f451d6f0b20 00007f451d6f1050
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000