last executing test programs:

1m14.098081169s ago: executing program 0 (id=16):
connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x7, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}, 'macvlan1\x00'}}, 0x1e)
recvmmsg(0xffffffffffffffff, &(0x7f0000000900)=[{{0x0, 0xfffffffffffffe1f, 0x0}, 0x1}], 0x3fffffffffffd3c, 0x40018003, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000280), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="0700000040020000d85008591ac41dab843e40ceb3bfd99100000000000000", @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="04000040010000000300002003020000a2b6c6e317f93def"], 0x48}}, 0x20000080)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000200), 0xffffffffffffffff)

1m14.010402638s ago: executing program 0 (id=17):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000e2906fabf364d883770800dd9c00008ecee32663638bb7c88fb90a4ea4e49f1ad4421005e3e0861f52128d4dc9ff643cea61d0bd4c447368dd5cceaffe3925f7", @ANYRES16=r3, @ANYBLOB="010029bd7000fcdbdf257600000008000300", @ANYRES32=r4, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20004000}, 0x4010)
ioctl$TCXONC(r1, 0x540a, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000001c0)=ANY=[@ANYBLOB="fc000000190001000000000000000000200100000000000000000000000000006401010000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="ce67fd8d5da575ecf77949990c33c1f30930928575a0065bdcefee8c6875395524a4abffca3ef904c3d5b93cf49924bf3993cb091dfd2b40f6cf42ffc66e0e97", @ANYRESDEC=r1], 0xfc}}, 0x40000)
syz_emit_ethernet(0x9a, &(0x7f0000000c80)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6030031100642b00fc020000000000000000000000000000fe8000000000000000000000000000aa"], 0x0)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000180)={0x0, 0x1, 0x1c, 0x2, 0x1c6, &(0x7f00000004c0)="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"})

1m14.009400202s ago: executing program 0 (id=18):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
close(r1)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
writev(r0, &(0x7f0000000480)=[{&(0x7f0000000080)="2e9b5b0007e03dd65193dfb6c575963f86dd", 0x12}, {&(0x7f00000004c0)="b70000000180", 0x6}, {&(0x7f00000003c0)="06000000750d08c4daf10a7742e39e31ceefb1fcd2e5bc3fc84150da0d1787cc10d211447da94cb715e462e27318612235a604082c42", 0x36}], 0x3)

1m13.825427739s ago: executing program 0 (id=21):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000180)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x3ff, 0xfffffffffffffffe, 0xfffd, 0x9, 0x2, 0x8, 0x1, 0x6, 0x6})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)

1m13.769831592s ago: executing program 0 (id=24):
ioctl$COMEDI_INSN(0xffffffffffffffff, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x92, 0x0, 0x1, 0x80000000})

1m10.950695378s ago: executing program 0 (id=54):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES8=r1], 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x64, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x30, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFLA_GRE_REMOTE={0x14, 0x7, @private2}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x64}}, 0x0) (fail_nth: 4)
socket$nl_route(0x10, 0x3, 0x0)
recvmmsg$unix(r0, 0x0, 0x0, 0x26022, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24004000}, 0x20044810)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

1m10.898143008s ago: executing program 32 (id=54):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES8=r1], 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x64, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x30, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFLA_GRE_REMOTE={0x14, 0x7, @private2}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x64}}, 0x0) (fail_nth: 4)
socket$nl_route(0x10, 0x3, 0x0)
recvmmsg$unix(r0, 0x0, 0x0, 0x26022, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24004000}, 0x20044810)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

39.318641632s ago: executing program 2 (id=567):
syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB='\x00'/17], 0x11)
iopl(0x3)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, 'i'}]}], {0x14}}, 0x5c}, 0x1, 0x0, 0x0, 0x20008000}, 0x4000890)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r1 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r1, 0x1, 0xa, &(0x7f00006dbffc), 0xd)
syz_emit_vhci(&(0x7f0000000380)=ANY=[@ANYBLOB="0de069262855581ebeb415236e9e3f7f05c0918bc38112fc36f30b1716bee63b699a5b461197006d6018ca6563fcd690768d16783c05e0a583fdbdadff49edae2076340abc437700e8aa7a73bf0f26f1912396875a83de6763bd86794a504095a608ee39d095307b1cdae30c708672118218a0cfd15eadf56502db071f5f9a3c1f8f27c01bc903f4865e65baf47efed1887599ad2c25ed3dbfb8592f12e6c3dd1f7aa393a4e03042cc5bb067c4f98a81ddc9"], 0x4)
r2 = syz_clone3(&(0x7f000000c340)={0xa000000, 0x0, 0x0, 0x0, {0x2e}, 0x0, 0x0, 0x0, &(0x7f000000c2c0)=[0x0], 0x1}, 0x58)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000f00)=ANY=[@ANYBLOB="1800000014000100000080000000000008"], 0x18}], 0x1}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x1000d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3c}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r4, 0x8b2a, &(0x7f0000000040))
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="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"], 0x1b8}, 0x1, 0x0, 0x0, 0x8010}, 0x4000800)
ioctl(r5, 0x8b1a, &(0x7f0000000040))
process_vm_writev(r2, &(0x7f0000000240)=[{&(0x7f0000000440)=""/172, 0xac}, {&(0x7f0000000580)=""/206, 0xce}, {&(0x7f0000000680)=""/179, 0xb3}, {&(0x7f0000000740)=""/159, 0x9f}, {&(0x7f0000000800)=""/228, 0xe4}, {&(0x7f0000000900)=""/153, 0x99}, {&(0x7f0000000140)=""/127, 0x7f}], 0x7, &(0x7f0000000e40)=[{&(0x7f0000000a00)=""/237, 0xed}, {&(0x7f0000000cc0)=""/158, 0x9e}, {&(0x7f0000000d80)=""/146, 0x92}], 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000001840), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r8, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000000f40)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="11000000000000000e0001006e657464657673696d000000000d0087006c325f64726f70730000000005006c000000000000000000000000000000000000000000000000000072a8c03f06ca6ff189eaaf398575dad624a9061fc2696a2ec53a2d173c42100274792fc727a41ea3a94795bf122eff3d0fe2fc6cbf9aa289f183a4421cb99b9b3c436c5ba51989dc21059966d5272abc1680157fd150"], 0x4c}}, 0x41)
sendmsg$nl_route_sched(r7, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@newtaction={0x4c, 0x1e, 0x109, 0x0, 0x0, {}, [{0x38, 0x1, [@m_mirred={0x34, 0x0, 0x0, 0x0, {{0xb, 0x9}, {0x4, 0xe}, {0x6, 0x6, "6ed0"}, {0xc}, {0xc, 0x8, {0x1}}}}]}]}, 0x4c}, 0x1, 0x2b1e}, 0x0)
userfaultfd(0x180000)

39.200161228s ago: executing program 2 (id=568):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r0)
sendmsg$NLBL_MGMT_C_REMOVE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20048040}, 0x10000000)
r2 = fsmount(0xffffffffffffffff, 0x0, 0x84)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000000, 0x5d032, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000561000/0x4000)=nil, 0x4000, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x38, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_CQM={0x1c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x6f}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x5b}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x1}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x400}, 0x0)
sendmsg$NL80211_CMD_DISCONNECT(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x3c, r5, 0x400, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1c}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x22}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x29}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3c}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4080}, 0x4000)
sendmsg$NL80211_CMD_STOP_NAN(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x20, r5, 0x1, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x40000000, 0x30}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x46f6ca318bc4d44d}, 0x4004)

39.200012542s ago: executing program 2 (id=569):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newlink={0x40, 0x10, 0x401, 0x0, 0x3, {0x0, 0x0, 0x0, 0x0, 0xc010}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD1={0x8, 0x2, @udp=r1}]}}}, @IFLA_MASTER={0x8, 0x3}]}, 0x40}}, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="0100"])
r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x400000000000009, 0x4, 0x80000001, 0x800000010000, 0x4, 0x4002004c2, 0x0, 0x657, 0x0, 0x3ffffc, 0xfffffffffffffffa, 0x7fffffff, 0x20000000006, 0xffff, 0x4], 0x8080000, 0x804})
r5 = socket$l2tp6(0xa, 0x2, 0x73)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f00000017c0)={@loopback, 0xffffffac, 0x0, 0x1, 0x8, 0x4, 0xa9}, &(0x7f0000001800)=0x20)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

39.119265155s ago: executing program 2 (id=572):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0) (async, rerun: 64)
io_setup(0x2, &(0x7f0000000200)=<r2=>0x0) (rerun: 64)
r3 = eventfd2(0x0, 0x0)
io_submit(r2, 0x1, &(0x7f00000006c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) (async)
io_getevents(r2, 0x2, 0x2, &(0x7f0000001340)=[{}, {}], 0x0) (async, rerun: 32)
io_submit(r2, 0x1, &(0x7f0000000140)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x3, r3}]) (async, rerun: 32)
r4 = add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440)={'syz', 0x3}, &(0x7f0000000140)="04dac489", 0x4, r4)
keyctl$unlink(0x9, r5, r4) (async)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0041, 0x0) (async)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) (async, rerun: 64)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) (async, rerun: 64)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x8800, 0x0)
chdir(&(0x7f0000000100)='./file0\x00') (async)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000040), 0xfea7) (async, rerun: 32)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) (rerun: 32)
ioctl$TUNSETVNETHDRSZ(r6, 0x400454d8, &(0x7f0000000140)=0x90) (async)
getsockopt$inet_IP_IPSEC_POLICY(r7, 0x0, 0x10, &(0x7f0000000500)={{{@in6=@ipv4={""/10, ""/2, @broadcast}, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@dev}, 0x0, @in=@broadcast}}, &(0x7f0000000340)=0xe8)
read$FUSE(r7, &(0x7f0000001380)={0x2020, 0x0, 0x0, 0x0, <r9=>0x0}, 0x2020)
fchownat(r7, &(0x7f0000000300)='./file0\x00', r8, r9, 0x100) (async, rerun: 32)
r10 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301) (rerun: 32)
ioctl$USBDEVFS_GETDRIVER(r10, 0x41045508, &(0x7f0000000140)={0x0, "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"})
write$tun(r6, &(0x7f0000000500)=ANY=[], 0xfdef)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xaf4d}, 0x1c)

38.958848761s ago: executing program 2 (id=574):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x88200200, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
setpgid(0x0, r0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0) (fail_nth: 5)

38.887389193s ago: executing program 2 (id=576):
add_key(0x0, 0x0, &(0x7f0000000080)="305c061ce1821f7051667557c7d7982b8f", 0x11, 0xfffffffffffffffe)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000000000000074d564b"]) (fail_nth: 5)

36.671522408s ago: executing program 3 (id=619):
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0)
syz_usb_connect$uac1(0x6, 0x71, &(0x7f0000000b80)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x20, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x3, 0x80, 0x2, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x3, 0x7}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x10, 0x4, 0x4, 0x5, {0x7, 0x25, 0x1, 0x0, 0x2, 0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x40, 0x9, 0x0, 0x3, {0x7, 0x25, 0x1, 0x81, 0x4, 0x8000}}}}}}}]}}, &(0x7f0000001040)={0x0, 0x0, 0x0, 0x0})
close_range(r0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)

36.129128631s ago: executing program 3 (id=627):
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES64=0x0], 0xf)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000041c0)={0x2020}, 0x2020)
syz_emit_vhci(&(0x7f0000000140)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
pipe(&(0x7f00000000c0))
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
read$FUSE(r3, &(0x7f0000001d80)={0x2020}, 0x2020)
close_range(r3, 0xffffffffffffffff, 0x0)
getsockopt(r0, 0x111, 0x3, 0x0, &(0x7f0000000080))
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x3ad80, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r4, 0x11, 0x65, &(0x7f0000000080)=0xa43, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_io_uring_setup(0x24fa, &(0x7f00000002c0)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0xfffffffd})
io_uring_enter(r5, 0x2d3e, 0x0, 0x4, 0x0, 0x0)
r8 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r8, 0x3b81, &(0x7f00000001c0)={0xc})
syz_init_net_socket$rose(0xb, 0x5, 0x0)

36.068929388s ago: executing program 3 (id=630):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000680)={0x0, 0xf0ff, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="110725bd7000fbdbc12504"], 0x14}, 0x1, 0x0, 0x0, 0x24004894}, 0x0)

36.067547283s ago: executing program 3 (id=632):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000340)='./file0/file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

36.009452894s ago: executing program 3 (id=633):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000780), 0x2, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000340)={{}, {}, [], {0x4, 0x4}, [], {}, {0x20, 0x5}}, 0x24, 0x2)
rmdir(&(0x7f0000000000)='./file0\x00')
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000000)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000340)=""/177, 0xb1, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000640)={0x2, 0x0, {&(0x7f0000001900)=""/4096, 0x1000, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000080)={0x2, 0x0, {&(0x7f0000000280)=""/141, 0xffffffffffffff04, 0x0, 0x2, 0x2}}, 0x48)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r2 = geteuid()
getresgid(&(0x7f0000000400), &(0x7f0000000440), &(0x7f0000000480)=<r3=>0x0)
mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f00000004c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@default_permissions}, {@allow_other}, {@allow_other}], [{@appraise}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@dont_measure}, {@smackfsfloor={'smackfsfloor', 0x3d, 'system.posix_acl_access\x00'}}, {@obj_role={'obj_role', 0x3d, 'system.posix_acl_access\x00'}}]}})
write$vhost_msg_v2(r0, &(0x7f00000006c0)={0x2, 0x0, {&(0x7f0000000600)=""/17, 0x11, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48)

35.880188255s ago: executing program 3 (id=637):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000200)=@newsa={0xf0, 0x1c, 0x1, 0x70bd28, 0x25dfdbff, {{@in=@empty, @in=@loopback, 0x4e23, 0x0, 0x2000, 0x8000, 0x0, 0x0, 0x80, 0xc}, {@in6=@mcast1, 0x20, 0x6c}, @in6=@mcast2, {0xfffffffffffffffe, 0x0, 0x9, 0x800000000000001, 0x10000000002c8, 0x6, 0x4000000000000, 0x1}, {0x1fffffffffff, 0x8, 0x0, 0x4}, {0xffffffff, 0x9}, 0x0, 0x8000000, 0xa, 0x1, 0x0, 0x3}}, 0xf0}, 0x1, 0x0, 0x0, 0x4075}, 0x20004800) (fail_nth: 2)

35.812354149s ago: executing program 33 (id=637):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000200)=@newsa={0xf0, 0x1c, 0x1, 0x70bd28, 0x25dfdbff, {{@in=@empty, @in=@loopback, 0x4e23, 0x0, 0x2000, 0x8000, 0x0, 0x0, 0x80, 0xc}, {@in6=@mcast1, 0x20, 0x6c}, @in6=@mcast2, {0xfffffffffffffffe, 0x0, 0x9, 0x800000000000001, 0x10000000002c8, 0x6, 0x4000000000000, 0x1}, {0x1fffffffffff, 0x8, 0x0, 0x4}, {0xffffffff, 0x9}, 0x0, 0x8000000, 0xa, 0x1, 0x0, 0x3}}, 0xf0}, 0x1, 0x0, 0x0, 0x4075}, 0x20004800) (fail_nth: 2)

29.098153451s ago: executing program 1 (id=751):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x22cc0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000100)={'team0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newtaction={0x70, 0x30, 0xb, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x6a00}, [{0x5c, 0x1, [@m_mirred={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x16, 0xff, 0xffffffffffffffff, 0x7, 0x6}, 0x3, r5}}]}, {0x9, 0xa, "d6a4eea88e"}, {0xc}, {0xc}}}]}]}, 0x70}}, 0x2000a804)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x4884)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x70bd29, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x14, 0x11d, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xb0}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x44)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfc, 0x2ffffffff}, 0xc)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'netpci0\x00', 0x7101})
r9 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r10=>0x0})
r11 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r11, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_channels={0x29, 0x0, 0x0, 0xfffffffe, 0x4, 0x1, 0x2}})
sendmsg$nl_route_sched(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r10, {0x0, 0x1}, {}, {0x8, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0xfffffffe}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x15625}]}}]}, 0x4c}}, 0x0)
r12 = socket(0x10, 0x803, 0x0)
r13 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r14=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r14, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$OSF_MSG_REMOVE(r0, &(0x7f000000b700)={0x0, 0x0, &(0x7f000000b6c0)={&(0x7f000000ad40)={0x268, 0x1, 0x5, 0x801, 0x0, 0x0, {0x0, 0x0, 0xa}, [{{0x254, 0x1, {{0x2, 0x7}, 0x8, 0x8, 0x1, 0x0, 0x16, 'syz0\x00', "0825643fa069091875c30df26b151e6548c07cff691576d5bc2489986357aa28", "40d062ca493c14b2bbb59012c3d049a19f52c9efca21d20faa5a8f6b6a6812be", [{0x6, 0x7fff, {0x3, 0x7}}, {0x100, 0xa2b, {0x0, 0x4}}, {0x97, 0x2, {0x0, 0xeedd}}, {0xfff, 0x1000, {0x1, 0x7e1e}}, {0x9, 0xfe, {0x2, 0x80}}, {0x401, 0x30, {0x3, 0x3}}, {0x1c8, 0x2, {0x2, 0xd}}, {0x7, 0x0, {0x2, 0x81}}, {0x7, 0x2, {0x1, 0x6}}, {0x10, 0xd, {0x1, 0x10001}}, {0x8ef4, 0xfffb, {0x1, 0x5}}, {0x2, 0x380, {0x2}}, {0xfb78, 0x1, {0x0, 0xab1d}}, {0x5, 0x429, {0x2, 0xfffffffd}}, {0x5, 0xa8, {0x3, 0xe}}, {0x4, 0x796, {0x3, 0x8001}}, {0xfff8, 0x6, {0x2}}, {0x0, 0x8, {0x1}}, {0x8a9, 0x4, {0x0, 0x7f}}, {0x6, 0xb, {0x3, 0xffffffff}}, {0x4, 0x3, {0x2, 0x8}}, {0x2, 0x3, {0x1, 0x5}}, {0x8, 0x7, {0x2, 0x3}}, {0x6, 0x400, {0x1, 0x80000000}}, {0x4, 0xa9b1, {0x0, 0x10}}, {0x2a, 0x5, {0x3, 0x6}}, {0xff, 0x9, {0x1, 0x5}}, {0x0, 0x319, {0x2, 0x5}}, {0xac2f, 0x80, {0x2, 0xffffffff}}, {0x1, 0x6, {0x0, 0xb}}, {0x2, 0x5, {0x2, 0x2}}, {0x5, 0x7821, {0x3, 0x7}}, {0x6000, 0xd36b, {0x1, 0x5}}, {0x2, 0x190, {0x0, 0x1}}, {0xf, 0x2, {0x1, 0xfffffff8}}, {0x4, 0x0, {0x0, 0x4}}, {0x9f, 0x5, {0x3, 0x5d}}, {0x4, 0x1000, {0x2, 0xbe}}, {0x3, 0x101, {0x1, 0x7b}}, {0x400, 0x8, {0x9cf0f0e93bdcd22f, 0x7}}]}}}]}, 0x268}}, 0x24000804)

28.666477667s ago: executing program 1 (id=752):
socket(0x10, 0x3, 0x6)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0xc80, 0x0)
ioctl$BLKGETDISKSEQ(r1, 0x80081280, &(0x7f00000001c0)) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r2}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r0, &(0x7f0000000780)}, 0x20) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) (rerun: 64)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
getpeername$unix(0xffffffffffffffff, &(0x7f00000003c0)=@abs, &(0x7f0000000140)=0x6e)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000002d00091027bdfdffffffffffffff0000"], 0x14}}, 0x84) (async, rerun: 32)
r4 = syz_open_dev$video4linux(&(0x7f0000000540), 0xf, 0x101002) (rerun: 32)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r4, 0x4020565a, &(0x7f0000000580)={0x3, 0x7, 0x1}) (async)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0x20, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x40], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)

28.600268311s ago: executing program 1 (id=753):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
listen(r0, 0x3)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000100)=0x400, 0x4)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f00000010c0)={0xc, {"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", 0x1000}}, 0x1006)

28.599823745s ago: executing program 1 (id=754):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x88200200, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0) (fail_nth: 5)

28.457656838s ago: executing program 1 (id=756):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000)="05003f00010001", 0x7)

28.21391715s ago: executing program 1 (id=758):
socket$kcm(0x10, 0x2, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001900)=ANY=[], 0x24}}, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f00000005c0)={0x1, @pix_mp={0x3ff, 0x1, 0x3631564e, 0x9, 0x0, [{0x8, 0xf}, {0x8, 0x5d4}, {0xf, 0x8}, {0x5, 0x8}, {0x5, 0x3}, {0x4, 0x3}, {0x6, 0x40d}, {0x10001, 0x1800000}], 0x0, 0xd, 0x2, 0x3078182a34277310, 0x1}})

28.187043306s ago: executing program 34 (id=758):
socket$kcm(0x10, 0x2, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001900)=ANY=[], 0x24}}, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f00000005c0)={0x1, @pix_mp={0x3ff, 0x1, 0x3631564e, 0x9, 0x0, [{0x8, 0xf}, {0x8, 0x5d4}, {0xf, 0x8}, {0x5, 0x8}, {0x5, 0x3}, {0x4, 0x3}, {0x6, 0x40d}, {0x10001, 0x1800000}], 0x0, 0xd, 0x2, 0x3078182a34277310, 0x1}})

23.913108209s ago: executing program 35 (id=576):
add_key(0x0, 0x0, &(0x7f0000000080)="305c061ce1821f7051667557c7d7982b8f", 0x11, 0xfffffffffffffffe)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000000000000074d564b"]) (fail_nth: 5)

17.515664571s ago: executing program 4 (id=928):
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f00000003c0)=[{{&(0x7f0000000100)={0xa, 0x4e24, 0xfffffffe, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000740)=[@hopopts={{0x18, 0x29, 0x36, {0x2f}}}, @hoplimit={{0x14, 0x29, 0x34, 0x9}}], 0x30}}], 0x1, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x48, r0, 0x1, 0x0, 0x0, {}, [{@pci={{0x8}, {0xfffffffffffffecb}}, {0xd}, {0x5, 0x8e, 0x1}}]}, 0x48}}, 0x4040080)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000004c0)={r4, 0x20, &(0x7f0000000200)={&(0x7f0000000600)=""/118, 0x76, <r5=>0x0, &(0x7f0000001440)=""/4096, 0x1000}}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x5, &(0x7f0000000840)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x75}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='tlb_flush\x00', r6}, 0x10)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256\x00'}, 0x58)
accept4(r7, 0x0, 0x0, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r5, r3, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="00003ddd", @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1f, 0x19, &(0x7f0000000500)=ANY=[@ANYBLOB="180000001f000000000000007e00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000010100007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000008f000008500000082000000b7080000000100007baaf8ff00000000b5c149af1b918cf7825b377294080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffff", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000800000085000000b30000009500000000000000"], &(0x7f00000000c0)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xebfb}, 0x94)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
r10 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r10, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r10, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r11, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x3d, 0xfff6, 0x65, 0x5, 0x1, 0x4, 0x3, @multicast1, @local}}}}}}, 0x0)
r12 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r12, 0x0, 0xca, &(0x7f0000000080)={0x1, 0x1, 0x4, 0x2, @vifc_lcl_addr=@loopback, @remote}, 0x10)
setsockopt$MRT_ADD_MFC_PROXY(r12, 0xa4, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "fc79348df081496d0420922f45a71c1daa8b610468cd140526c41efcd3a4a422", 0x3, 0x1, 0x85}, 0x3c)

17.450270267s ago: executing program 4 (id=931):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x1c, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x9, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7177}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r3=>0x0]}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000080)={r3, @in={{0x2, 0x4e21, @empty}}, 0x5, 0x0, 0x81000003, 0x0, 0xe2d8f2eb1d010935, 0x1, 0x7}, 0x9c)
ioctl$CDROM_CLEAR_OPTIONS(r1, 0x5321, 0x2)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000700), 0xffffffffffffffff)
r5 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
getsockopt$packet_int(r5, 0x107, 0x7, &(0x7f0000000200), &(0x7f0000000080)=0x4)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000740)={0x3c, r4, 0x1, 0x70bd29, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8001}, 0xc0)

16.545243015s ago: executing program 4 (id=950):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="9ab1446569aa24b774753c9e994c09c24df9d42fa5a228e469b44cecf6f9f5ce5f77c93b1895aaac9cf34b37415f11fe22d6fa0162aa743b242e8fe0a8659e32fb543d7969d6513136a9f332a8074f8ee1e445277ddd5859eb5ac3321eb710be880a441031da9b31f791d54fb3c97cd8ee92b00cbf962be8eb5fd0b7cab207645f59cf87a8c41e2739dd8386b6bb84b627cbf5e09bac876ad4b215f0e510a853c5e8b9f7822b26771d72972290a1f9a6f0a46942be0d0eb7aa5145ff368863b14e9845926088f9f92d554e572926290dc6e6b574aea8c500fbe5697f881c0cec48282c6d07619248da0c3b9aa6f7c778525d1760051e4ba8ef31d3c8d3e1d4214ffa5261ce1fdbc12eba889968137f5c06fea233000296cf18df494b4e7b1bee7dc2f3751c37415d46f6d7ffb3d0f788f2100ee41266e6fba75b61af22e1d7b286507ff100cc34ed28d5a2c8be3231446874bbbde6f3c367ca802d64192ffcce1ea41b2cbc57f7500fc4f8f12fe02690c1c9785bbc35542b59d05600783cf4f4633b374101d8ed395303392b238d198f9f68c8ae928cbf3b558deec6d38ebaa526e749ac4e47dd5b838ec34f2820a1134252ae60159d4e030cf5e5d6f8de799a31e12ae57cfe5a1a3ded525c6e71271271d35a0056265362387a361f21ea0f4b6d46f6a83a8512687e43b31e11b1396d6e9e49cf42b693732e226b55d21a1203022f6be9f8ecccb68de3bf4ce99689514bd752f4e60bd2f8e376d7fae5b5fc8db0f53db8c52746671e361b9319419c1b3f3168b4797ebd2d118ee42dda4bc59dd0251236195c8cdafc0546354eeb28f4c7e71e8245a6ccaddfb858f61039c0ccf5acd924680aab38dd061fc7b123f24ac7f3d3c0cee43b61045bb1efea25af86088a0591f166e2f11ea4089860893b17ca5e3d99ec75131268e2e4e290c2bf15e4dde23284e4bdf6e549c096ce221d9c8a6c0fc78aa6a1c8b547c0e10738de2a1e8663e03ab0ce4594e244989f75b6672de1eee97ba7e6467a0da51c0e75d5866c405b03c4744d8d3fbb01eddba5a0361662269154c2f0e61a9433982eb904ff562896cbfa692eb1e6c644fcf6cbc103a76b712af706a47608d3e2f5d54d47d8e9906ab37ddf04004d32ce00200fc3c274666aeb618b27424d87b6a4b0262de4436b9e6f150bc798394c298b25a2c318fbe786185464057c0bcfcd1917230d78ee1a49eca12068fa676852c1099096c6cb98dfda27fedac41826516e42cc116f0cbb68f0f810418258dc5a65c0e1ada296176e17f8d762894c80542a79383cc1674a4f3d6520633ce80baba214c20628899f9ac826484c887713aed9c5caf13b40a598cb1e81f7b18dae39efc22dc99ff497e11f158edc2716ebe3bcd593691aa26523efc168e1394ab439c9a9270575ef34eeee9084b0a31b2d81d47c964ac61e600f75d9321d7474dde45bb8d0cc46510488ab68486d3ba6cc9c3ddb6f66f2e5d251ee285121e1645a2f5167fc5fb8ac4491c0d9d0423c7a8452efea2f5a30096a0fa47173f3a68500a5c755ea939c838d3be126a87ff6baa5a1fba638a5c64767d17f04201b935fcb1cb6afa175594f410f2ff773194c703e623876051e46bb0850a5016e65f8fa34b96bafdfe851a0756fe26fb63d52113c0935b0867f7dc8a94d887484b15e8f92b6a316a22c04a985cc94e432cd43f44001bcdbd48efcd463c402d3d181298e96db60fdb714b82e146567af5ae3fc0c3f9d241471b4d129f928d286f780facb1e84434610ab3379dfff0f64d57b4a1c2e96c98b693de952d26773d24e7a95eddbc450f79932d5332d27991c7bfbd3bc35bfeb9496fbebccb5e4c35c368e021dea643cb292d794d3d3bbcc960f989bef09763dc73d83cbf907485635265e81f87b712d958a66719230fc6466615a0e3bb998d48159e9e9c51959354a545966bcffa298c7673b4d32b991c886a997236642c0f104f6795feab9f48d0ffc74667f3f3e82473ac892ad25f4b13029b0b27fb1d86991ddc42bbc3fe584ed364e769f3bc72ed8749e7a654ec1a2ec7a01bd2d5caccdc6241a1b1ef2726db54d2c34ab47020b4c729b5994b43deb00ad959950e0051d2c0f27217397055e78f1dd3bd867a45e06c2134ae8981021aae881cc7b2049fe7c82d2127ec81d6430c8116355c8d0ab8b9291c688ed9b8dbb1ed6f1a99bb58a1be8d5737acbf9461b142c8982f52481195d35ef82aed4fa52385ea4ed00a739d01cad7af9f7c27d357748e24f28d22065ccb37300e8f5d8dae5ca79af7a50edc3e05184d1a2a6d59784d5ceeb1f1550a44ea03bee4dc5c27eb78f0032593c7d082e59211f83a8b91aa78bfb7e959328ee63af26a37b79ce5e5139eeebd12e28b2a26ad2fcbdca652524d036b324782d54247a48b9f8200b2d6d2c091c41366d677e3be6e136cec6c3080d608849135c6e3c7d695d2e226ae1ce999d730d7f79116ab85762e55a3e5a66a690ce0a4bb4fd1560c796e2797414b544ef78e29d55e4853fdbf3362085a65c46105f32c360a0a9867b984a5d0297fe0b06a45684ac801a8e66294cef6e5f3c48648884fbb2422fa00488df33a9a0ff1039c81f1939f2cd2f5fe8aa805af2d2332ac37244ed4a7b50265af8062752b0c16511e5f25e8aa2b60645675bc826557bb75474ca4787f6b584b2f83bc25192579104aa0baae79f396df0d31121f90db9acea9695ee0fe0c22df4db503ec8b2437b05f5d35a65722fa82eebd2aff4bcd3316a5cffc4b31913fd02f82130c77f320bf04bf8fa873d0e3f62122d6a5f87d3e908bedafed4a3cb6d9f73ff546f5a2b74a2493b1753e89b682352bb3166563518dcb190c7b3d9fd667c57978a670b192641a674dc92c2401d067b6767aa632ce32a401175c98200a52ab5d80dffa719746d0bff8a84bac4a56e0ab8124fc332b64ea662d01e1b73231a6638f01cf4d699448da228c16951149c8d3dab9a7e3be9a16c7d1ffb061818f8f9cb2b42739fae4a0d70c0701c8dceee785d36ef6413162de1917df01c693ef3e1f517e7fc46245209fee52f5c6a2f50ab3f56d67d1cd987282b24071d8ebb1bc5cd635957b2a7ad92d0650abd5bbc24b75885b6119592a3d715392718e52f9124c4ac95be3582abba4ac3a4049ee49fa8ceb9b59d4e1e2a069c9d482879fd8d27d5ac22ef870542453be22c2ec4ebf1472c19fbfb56aa0a3671297b020e3fe49d201a82a04420e90bda43691dacf92347bcbcae3742cc4abad4c8010c0afa15278795d4d76c482461ae78f30569e1dcf87b9b150d07a2bd81676ec6022422d490759ae1e861a6c4cd1f733bd772d60975a59356c385a4a390429f3d2131e7f616015261df6db3cc3ec261a53be10c4f197e71878984fee00e6d1069f79825194b7af434fb6bb86db18e11977f82928be35054543060cea94ebb4015d061f20f8454e056e7b6e4f9a1621ef2377d77659c20bf358c817519f1801be15ae3b5b42adfab367777a6789635a0dcdd1f2b97edecea0210768af67601d1b95a8850dddb6b1f4b0c2f52c835b0833d81966ad19e49ceb9dc9c729cd8334bc3ee5bb8c74186f5cc3e765b9fdd91d79baaab3d2ab64c15d655d1af7de9cf8d5d7c1baef24577843ce142331743b45b06104b6d0d4392e61ca8c07507ff5f831bbf720854db4debf64182aaebf899ba57626a48748fc2dcf016013d575595d24d383eef2da0ff0c9f6fe9c64b186cd4617e3f37635d7dacb58ec297f3ddb48ce4a5e00cc127267e18a1fdf209e098f2cb2e9c0630d15ec9b867b2b95ecf82ad2c0ba39df9c4d36d492bc9a55c4b767da966e4fd7f4d2fef5e91d0575177c05d240b50757031c76333d43bcc828ab2f0376e29d12d1261ce104a8ea488091326bc451c120c8c04d3e64835c893f55b312e248ad8fc1c32429d68e6b67bf45ab8a1cc3db22f9f01a2266b8349046d3d3e081eaa7f7020c73c0762d11a33b517b8f081da3c61ef63e1d40cd87d69c7ac7491fb61bb57c1fe2d218aff6d39b3e1fc847f0ed894e2f0b4d6a4ad03ba42e28bb1dfab645081f548e64ceb8ce15d2214bd66a14fe594aa447c3537eb493299fef0f9326236ea5dae44e23b34801fe06ee16c79545feaf2528421d6e7f9a256a7914d86bd053dc33c8c2043ba73714f5ff5f0507097a56c40b2190e77877d43be849ee2ac129e582930ced06d359eebb49eda4edb13819f91cecc449c9613d9659906179f8fefa34fecb7d21cdaf09a1ce8d094421da80796c97c02fc56171aaba53fd8a7f55de059044717df164f3571028f16995d51fc8829534cdf58dd134def1e43a34e4f5f372fa8e19d3b85881e99ecd45faa4fccfdb47e094ab06955f3960fac71294dd965f24a97cff36b9966cf1a4c3e96c3e14a3951dcc8a3e9371f7e1ae9df77ddb1a99172174adbee8ea57a0c9872a6d677c2875da88a6a7234bebf68a3cc0532a9809a4de4b4d419bff67b0ba825a7ae6e999087155378357ae67e2dd98697f1d10ffa4497dde6582571670456db995228b97d0ecb2fb30c2ba6c16038c40059815c56b35666cc1c5090f6c38e0f4c12abf79919951b85a2734d32dd12b239912d541f9163387a4aa0be0b7a12d9c6b56dbcf1e9aadcfd72e2664a84d6c5147c72bffe7c3560ccd8c447b748dcd26cc9ca2a85cded742a8dccdfd8e78c96e78d405a19faab9e57183b37583f94b3d416b2920c6b746427ed75c08dc3be02720c1edc4743229153c48f1239b222b9fe2e21c0ae28122bc44f9dc78a59f3485ac8057eb21f0857bcfea2d9ebbbcc197e7880d81515bb1cb7192d97c4258c09926d137e245977db40812b253f99a504bb68137d8d73ca4e7c808d50f1dcc600e6a6db90238ff44e075932fe668c066e6988a6a8b4a8485120c8e4d6511268a75d8f9b0f06689aac8cd621e90c62af1e59aa9efe928e9ea098661b408a2825c4f9aac1efd9d54d163a651054b9ab32719d2be3b176f6795ddad0f1310b9237181689f2f9dd34a41d4d4cd2d7569bf56e6a80bc24d90df3bdde0f9649e699f4ef70c4f3faf9553a231215416bba26c29f17861e0f265e9641b2307ed43d6fde23a378669f4ade874e54c20a5e902205dcaa79a3e8584a3f78a86e703451115a1717df882507c607297afac0a056a0f3509a57502fd2ffff6035d04b91f72f5e1a69ddafaf80f7b2f7a13f38c683988436585e6bc7fc2da328449675c234ec0acf5294ce06c72442beba15e65d6a3e1b5dc3c8f115e1005798383f79b0194f6b7d4b1b32371acbf22340af6e5ee3ea840f7ed451226daef3041fc194e051af2fb450022b394c774273b9575c974c324ecd7268435176ee28c54bb54c8e829232ca636f3bdef60ed460b5ff425936626dd16a3f436f08a863582a79f393378f60f6c8ecdd13d83073bfda2e9f8d0c74a841021cbb8c148e70bfc585627449cdd9fb3045db3ea08a96108b52ee8a4f5048a5d910355789f4bb85c1362955e267e719581c38a2648eaa0b516db6277d2ee3c6e1e1090df3f53a31b747d99887e337dadddab16a297d9e56797007a3d18ce333311c70bb1bf45bdae517ffc589419af643773bb30a1fbff7ecd4a8ae7456a608fe73547c2eda4f070d57dc70b65d867526c946a435ea581497da18646ce569eaf6ccf3474cd6e7aa3d6d4732836ff4167c9153757ce58a34864be6d479f7b4ea1d6480b9ac16c5bff346a74e74133234744df867e16b3d2f1f7db4b21b89019b520917ef863e60f52999d6946b9e09cb60054f49d8a255f02e4b62fff6e6adb9a167ea70a177d00b26f56e29b63138a2ebc30b956161a4ab25d5da1c207c3f762714f651341ae771e17d84fa1c86685f2fcb0a128c2e1208d1930e7ff0d8d55299154112af574b881be8b69cc1721d548ad4dc02632e184c47f9b394bf4a834e60fbead8c8bfbf5087f8454513b0b086ac97bbbb9aa342af9def758fe88f1e4570e65f93fd4a9868665d08fac0cf6ebde786995c433504ca01cdf83311aaae20cc76f819a4344a8ee4e26c1094cb00d2c8a67c733fffcd89e97534cacb08a64d75e8594fa31f0dcfcafb0d1bc184c7067fec6a48ddefd580d4d9a4128d8f70f6fc6562da683904766e982ecd0286064db6844131bb7962a0a497f7b97fefad88a0b128bdf8cca774b1c32cb4af259bfebccda036e7e4ea8962838dbb5c04ffab0a2f1481848a27f06171645daf5246a2e563f3ed60097a9d7023d6ba5c8a58d39f733b12baf0863d82c427460f51cf9e3f77281a42221725b7bb75c2116ab31f704661f090d3eeddd2aa6efc619946b4933c398b635fd04ba3758294965c568997e1ef44b0562804e6c64558f6cfa87662a988c321a856ead51c848528a4954f9ff1948d517d67bc11db66801648848bfb7ee12296428bc3ffec863e9c77ff31ee386197679adab2a0e93bbe0c66ffe9c4b09b636f6216faa373aa8271678cc57ad46898222df7e2d8b14a5b70130596c0430997c4c04d9b5187fd9bb26b71fd19aacc8e08a3239f0eebca7b2873062a19f327a4a282012ebf9898a5ab6310b8623c864d4dada3ded00ad201ce8f3973f90396f5edc1ba466e16247fe6b0ee98acfd53792cc0fea33647b841596655b8d9efbc14b50fe0b588e4c41e2cbd0a700529e7ca91122d3d1b26e52bf44a0c9fe37cdbc352357f13b2adc68e78a00f6dc88a8e6ea54bd0b2c8276f9e1bfebc8655a1f47b72c25ffa97f4463630cc21428ca3bb381a6d3171d28bb946f746f820247bf3f7bb69caaeb5c47026ca9997e586e657a9e1569312bb443299ef4cfeacc9aaf4fc3aaa4a77a21579234d2aab6fd0234398ae07ca7c57ac6d6a51e025744b1430abce27f7f9b0d0e45c051e34d20db95cadcc0e4e327dbd979166b33e39a3951d0b8dd62c0d1542b69583cfc07b127243cac4b052cb29ccb3592972698fa4cd84633d222d78b8741d5f903f8636d95cddfe2ef13829df9ce32705edfda51ded2f0ef38f60a33a2e00373107eef56a01acb5e05d849279b5987343c8bbc73ea660ceaf7c9b90c0a8e1412ff3f517cef8fe604d7a26e085170a76e1bf43f5d1bb77ee771fe841d59fe2cc2874d25bf991b4af6bf9ffe1bfbf3a5587006b60bab5bdfd5a3192e82d474ecab0ab656967856c84cba9469c5823c1d1bf104d2a21c071bb08b2a137883dd9c8f545d6958db8efa45263ae303de76e70f2f6a10e1858e6654004f2a099dc31950ee730c465e0a1822935e309d41650fba489aa3050eedbf3f058d24d1f04fc340966e42d72052d84a66789ccf75000c3fc83b8842badd6b22ddaaaf53ed34e25c1b638e3630d66a7903405052902cf8e7395d54679e2f4a2bf7c8c89b0dc38969376ea164fe97b37b1172e6e8f05a929aa373108e891a64e38e18b432a115a44d754811e03c4f4ae7c525a6b9b92aab0d16967ee1a64eeeb2207c094f6aa96f126d058eff22435a4ae76c31f888ee13b327d2cab4ab5a56abf4cae88c583dd67129271708aa17f4f10886ead0e12734314bd4a49e64349beba4abdf94a1fb23a72cf7e16b5af2f1706d9646a5ff7dbf5c7b1cb2c3781346167b15d4625841d9f3d14392db1d39101d37175c42c522229db0708544058d75cebf3e399cd443d1b943c6f3017a898bd49836a8d92519deb810712aed76602682ef0df2be270734eeda7f289a76f4684baf75702a1ac3da005e62b83f794b934cf882db5d50e5ed4aca868e300d690c0b10daf0a47486e9f49d1b08eac6cf5090ddd2443b1459b2df86ab3447b2b5c6afe8aadb410de6a84b640e326eb882832d1a9cb12e0b8f13aef579f404af8631cdd5a30a031dad19cdf247575dd223229330f19fe4d88c51242217397acf66b86c743de283d5df7212fce59af17eb702eccab192f56f054a33709d41841e4a39638e02b4210559593f9b5c44fd22d9da637ef1a3a0a41c40469990dc4beec30a05b67931c0560d9a59fa875f3e26fd1eb32655aa30c7a1cd3d541716fdaacdda206328f3cbc8f16fc2be26690f18963a16febbaf2cb6c199330579ca067c60b54cbdd211c1350e066448fb50ae28ed58788ac98f0ded3414c8735ab90639916e26ab29102cc2609035e56d9b9d2dbc98118835bcf0e437c77052efe2293d9f19b7197aa1b94b10997b0b1efdef251de8945a97fec885f032c3bee2447335230b866d7aef515b04664d0c59e18233f9a229969e3e17d69716413ca3bc55f5959e340627ea803f7b26f4a74295b295344a3685287093998a1ce75b1ed5d730c9aec812617b4c200a0250c9ef8ef7d2fcfc59ef97422eca746bc6451a5b77307d14c1cfa0ea2c8eb7cf7819644577a6456efec0af058a0e3c8ec371019009462bfe174a11368b57fbe3090208a57b2236b97edc32cda5c6fc988cbaaf91c4020a06a7ad45519eaa761e045fc84d3219b287206282347a031ef1e7b7dbc67de738fa8f9fe71c44201fd1d548f8aebe93bf502d64d4b5f470a419e3fcd87f0616b9813048311ed20ac2efd7f18dcd6889542208b50c28c8c0700f73fa33a964e38d699819cab2098c6ff081266721cdced87ff41948c84037485f30d38a99eeeb3ff4c3049742a29eb09bb35c358e732546267c165a62fee9e25abdafdb8a48785bd432d160797e7a41d580f59d7d8e59b3e6b954d39f86db33b8f7cabde43e8e04cac1fcf9aa6fdbe4326e0d9c782d9a630055b36f85c2b8efebf18f42ef14ee5eb1d33ca322db69704f8bb90bf30eb05908b8d8ed169580923f53a6539cc3b55baa47718053d2ff103c23d90f9cb49ddc7d759950f605bafabcb7953c042c0523b84da994529a87ad68fc6f0709fd7af5fc20e53a17d3f5fd4d25fc5ff6598c6ddfc34668a08ee5e066d81a65e7979c50c08febf76dc5a3a405f551bb8449d94ea0dfdad6dd6dd6d6e4486f4ae1d2523c05f46198d8af4da12873ebdf7d6b5f2d0f1b2d29759ab0d78e34ae6f17b7ab83518cf8b18836ea5630ee934e5ecc123f0d3fe6b803ae1f735d65dcadcaaf6660e02ecad0290f6ead0594733a10b2b1654a44244424fa8b3180b551ac401828203e61603b017106e2256f01b9f26db33897167d9defb54ddfe49334150574493895370bad46cc658667aa9a8ed333c86f112b2a542936af92e2f933254b6fb0b1a599eec3bf2e476ae6714e2486dd31b29e4d26838d84bd7a62c62beab3ba71642278ecaf2e50d70670d9fdff105019791d36321bc57fdfd8f65f2ea1cb188035ecabf6140e777b7e6d2177ac29e9a1a2f87dd54d96184bb1a855bd9efdadfc606f13621f40e07cd8be9c2435c8c90b4ccba5eb7ddcf8cf1f76617c9a9e011abf4a63ffe31df63ecacb8b1d2d653e613cb399ce079392f9ca2e226c60b6e8103447c24c1f80d42e1ee747997602ae3ccff8f9f98ce9b56f6f3e3c0ba507df8b2169539cfc946c42da72644feb9b3b582ce332f8b2eda02192958194903d17b3e9b4bd60d08cd9a7989d946ece6d8dc01d6b66a7851bb11e4b075d38081d3ce7bf1875fec9daf47a589abdb72763c9747b83a28389238b0279c8e41db6521130420851acac463664a97be2190aff921923475f2c1f8a87d1169229e5f10dd0a92221e61358b156020f2c9ca2cb6580743a8d5e3c59e6fd97a7a246211450c7c62f1891cedb434102f8794d81c1caf2c1b4ae18b7c4b9c88de5c51da33e3343cef76da0d00341c2e60c4562c162e41a7efa8290cc9061f3d6a592d5f104c5018f31bcaf912bdd37370fbf8fedf0aa9026c1142299197d67ab026756927b5864ea42c45a82c23c275697d31a1b7900670c9a3c967d12974543c11f20c367a336bea9b9ebe480f9c806528138dff35c5f56b1199b75748e9c5cf50e6a32397dc3eeb04c3636c0848a5e13df8a9758bacea231f34cba13b466360b0dec69f74f8bf9a2dcf3dd94fa3a7d27e8caae00240559d75875ef9c619416593ca0072e7f38caae5a530c62dbe00e38c12cb8b924d63fca4d5c3a4c8f50e8f4f86fc1fe2b163219c46c21eb783e587e18e07ab7e1927a646c4f154c5000cb65ce9528457c3c66f43d9ab7d61580df0ecfb31cb38e4cbcdc3dafcca57311abec6b74048c8b74505ba678a4db07ed7243c70a821aee66a487bf91fd273418f8ef657d1eeb9ea6f095d47641e9f9fa30599e8b9c6b4453a1a5e8afd86fcafb46dd095fa4a98a2b26470e2c799b08c6000f5c3c4e28961463724377f37813f3922484fda986eb7c93ae8365baf648acbb344ca7e044d7ba93e7ba35c31085f3f99c5fdb2f9f2845f00b8590395e8ff730b86f5dd7f52297b8ecd5d5a6bb452bcd12b98d6adb27e7ef0e84b9567c66093ca3edab7e64ac4f56360501d81823ea2b1595f934c5f61c8558304c16154109a983a2af8725c7af91b5bc57e555768aa8115236a6ccc921d472b608eb6b82c4ba3747d79027d7856fae5369aa325df6a76138a5b41a94377eeeb251087e0b8510d8890e3f7a0cffaeddb9d2c29bc89f952489f82ee2e2b485cd297e6d30683701623cf73ee9ee606baeae9c3afba287eff57731b9cfaf034b1f56c8b31a32a1078c4fcab298c3f925a8e7cacceb9edf7ba2e54d31033a25462021e4a3c0bf5af341b462ee4417024da7c12c7f385de3af129aef1338a9c1fd68323d07ff47ec8bcca66b44300624d02c9202a2d093c3c85fd922b57b3bd14162c8ca5690734b7e4e4b8980b73a8e9908a9fa3dd508b30e3b1e1fd4ec388affa27c4bc26ca2820e0a902d51ff94984e8894fa5fca7b8704b7600ca6d6b1b1527ea999fcdf8fe3b290ec0036cad222f92cf8a5a54d0fa91de6e74ef61f60a233c9f15fdc86226c3f688de15ed8f0c3f1bc3afcad87cee47a19384afc6a804f197339ebce4aca211dbe0504a000755d18f20c4ecacd4123acdff7653cbb26456499495662508c8186afb883f5481c6bdf88cf137e263bde9d62f054573e0d1454cc119c95d4d9011332bd77682f79debcf5c21f0be7e9a83a58cec34e7cfb17a8122e030669228e4d3d9e274a678c5b77e6180aacc2fa8eb9952c5b04de6b2c7bee591badab96a3c3248c275b5b8faf5394eacc427a840570033be5006c33ce2d2c6e54f08681c3f74ad2fe54bca6dc62a9d84f6c58509c1e5dd5cfcc7a358493d428de48dfc1bc3f74154801c97e6aae38445045320b4cf66c1e56eb6ea2c1218de65f120b463c5cfb9255b3a25eb6e848cbd977f0605d71c561c2a754f5761c31f84101ee8178782cc8cf70b41a2204c5cb2f3134d572327fe4bbc1792249dfcf0ae7ba5d81fb5ae4a7978d044085f3b7f2e398c05733e2bf456cae898f8b5a81e9c79179bb5ca716713fce643dabe21eaee4386e646e25ad3adc5a4ad40f9bd6743f5f742efb1a674ffdbd2ced56c646ae590eb8f10283b47f57e6f96ad76adebecb24df74020b096fdee3c8d780d563a915f73c8b0246b861cd3a8580d5cf75798e8cf1c5875724661a39277e7165fe48ed8d5e6a20d68239f626fe8ea434a4e6e03ea434ec68c4b92a0fc2af15a135d6cbaeeca39a0c1896dab33daac", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f00000013c0)={0x50, 0x0, r1, {0x7, 0x2b, 0x1, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xf, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x7, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x3, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)
r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
ppoll(&(0x7f0000000440)=[{0xffffffffffffffff, 0x11}, {0xffffffffffffffff, 0x4000}, {r3, 0x1401}, {r0, 0x1a2}, {r3, 0x4400}, {r3, 0x40d3}, {r4, 0x80}, {0xffffffffffffffff, 0x1}, {0xffffffffffffffff, 0x1040}], 0x9, &(0x7f00000004c0), &(0x7f0000000500)={[0xfffffffffffffff9]}, 0x8)

16.54459969s ago: executing program 4 (id=952):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000000240)={0x24000000, 0x0, 0x0, 0x0, {0x23}, &(0x7f00000000c0)=""/193, 0xc1, 0x0, 0x0}, 0x58)
ioprio_set$pid(0x2, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000480)='./bus\x00')
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
write$tun(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="9b40f912a1"], 0xa)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_buf(r2, 0x0, 0x20, &(0x7f0000000680)="17000000020001000003d68c", 0xc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r3, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000500)=[0x4], 0x0, 0x0, 0x1}}, 0x40)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000000380)={0x2140280, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r4 = open(&(0x7f0000000580)='./file1\x00', 0x80342, 0x1df2a23c5997fa5f)
sendfile(r4, r4, 0x0, 0x7f03)

16.479941769s ago: executing program 4 (id=954):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000000906010200000c0000000000020000000900020073797a310000000005000100070000002c0007801800018014000240fe8000000000000000000000000000bb060004404e1f0000"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

16.129643153s ago: executing program 4 (id=961):
r0 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000440)={r2, 0x0, 0x0, 0x0, 0x0, [], [], [0x0, 0x0, 0x0, 0xffffffff]})
r3 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f0000000ac0)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000440)={r5, 0x0, 0x0, 0x0, 0x0, [], [0x0, 0x0, 0x0, 0x7ff], [0x0, 0xd0c, 0x0, 0x8000], [0x0, 0x100000000, 0xffffffffffffffff]}) (fail_nth: 6)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, 0x0)

16.047913811s ago: executing program 36 (id=961):
r0 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000440)={r2, 0x0, 0x0, 0x0, 0x0, [], [], [0x0, 0x0, 0x0, 0xffffffff]})
r3 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f0000000ac0)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000440)={r5, 0x0, 0x0, 0x0, 0x0, [], [0x0, 0x0, 0x0, 0x7ff], [0x0, 0xd0c, 0x0, 0x8000], [0x0, 0x100000000, 0xffffffffffffffff]}) (fail_nth: 6)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, 0x0)

2.228402599s ago: executing program 8 (id=1145):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r4=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x11, 0xc0}, [@ldst={0x5}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48) (async)
ioctl$IOMMU_VFIO_IOAS$SET(r3, 0x3b88, &(0x7f0000000200)={0xc, r4}) (async)
ioctl$IOMMU_VFIO_CHECK_EXTENSION(r3, 0x3b65, 0x4) (async, rerun: 32)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xc) (rerun: 32)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x3, 0x2, 0x8000000, 0x1000, &(0x7f0000fef000/0x1000)=nil}) (async)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCGARP(r6, 0x8954, &(0x7f0000000000)={{0x2, 0x4e21, @empty}, {0x1, @random="9b499754bb98"}, 0x2c, {0x2, 0x4e20, @empty}, 'lo\x00'}) (async)
memfd_secret(0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0) (async, rerun: 64)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000080)="9a0f001d0039040f01c2670f01c4660f3adf2eea0f04baa10066edf080ac1e007dbaa100b06feeba4000b042ee66b9800000c00f326635010000000f30", 0x3d}], 0x1, 0x7d, 0x0, 0x0) (rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.079023153s ago: executing program 8 (id=1150):
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0])
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

2.07786421s ago: executing program 8 (id=1151):
socket$inet_smc(0x2b, 0x1, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setownex(r1, 0xf, &(0x7f0000000100)={0x2})
sendmsg$unix(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="b5", 0x1}], 0x1}, 0x24008881)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r2, 0x40085112, &(0x7f0000000140)=@l={0x92, 0x0, 0xe0})
preadv(r2, &(0x7f0000000400)=[{&(0x7f0000000040)=""/185, 0x8}, {0x0, 0x4}], 0x2, 0x0, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
syz_emit_ethernet(0x7a, &(0x7f0000000680)={@broadcast, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "76db40", 0x44, 0x2f, 0x0, @dev={0xfe, 0x80, '\x00', 0x21}, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}, {}, {}, {0x8, 0x88be, 0x4}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4, 0x10}, 0x2, {0x8, 0x1}}}}}}}}}, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000540)={0x1f, 0xfffe, @none, 0x6, 0x2}, 0xe)
listen(r3, 0x0)
r4 = accept4(r3, 0x0, 0x0, 0x80000)
fcntl$F_GET_RW_HINT(r2, 0x40b, &(0x7f0000000100))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r4)
sendmsg$TIPC_NL_SOCK_GET(r4, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x60, r6, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xffffffb9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x200}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2e43}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x800}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000000}, 0x90)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0xbc}}, 0x20050800)
r7 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r7, 0x40045010, &(0x7f0000000000)=0x9)
socket$inet(0xa, 0x801, 0x84)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x1, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

1.189950326s ago: executing program 8 (id=1155):
syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)

1.089907888s ago: executing program 8 (id=1156):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r0, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c00000007060108008670373d0000000a0000040500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)

1.000123943s ago: executing program 8 (id=1157):
r0 = accept4$nfc_llcp(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x80000)
getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000040)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000080)=0x28)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0xe002180, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r5, 0x29, 0x21, 0x0, &(0x7f00007d0000))
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000500)={"34b30f02c5ccf6e3b71cda04b68b6891370cd0a442844b737a7254514f9ff20d0954650127067cd50d8f25db5fc9ccd4dbb2ecc29dc8dc51bcd2291a6a12912a3ce524ba851af6d1366d2b46f9f063dde6bea45fb0f4ab6a35088ea81c8a5ea6d0c3fbc6a89ae582119699a04f2be00b3aa3766c9f658af98e3122b00522a2ee14e3746ec2266e538c13710185ec5a7e4936e212c07483e1798957ffbb6311f2a13a7109d4293b216f78d59d41eb3af775e48d7a82a6c8f6476e2456a1a4288c672fbf1072ae9c51060f80707d1bc48eb1802a805df2ee990bcece5fe8b0ebba31c4d5efa47b3353aa02663aca26e817c88dc094d75330fbe2fea0037d4f92435d2eed5585bfaeddfdb50bb10bed6860313613f4a96d7d0b263cb0930f155ed09f2ff433f90d5065a376d43502ac8f17257c0fe5f448d9805a835286f2ff887e02e8a243902c124d3d52a1057f20a29ca1c012869a6d606e3440cc51cca66021bae0cf8c0a5af7a21c79481b1a31b98fe0c29fb5dfc5737442cdfad6421ec95345bd0165c6f6123e616873d97282e5098add56b95e805782aa67f237269b5b2b3e24edd1dc78f25130926496f5623ae306bc3d72d2b80f8939e60526330f873d00360441d906627f0183607151b1f03602050670984a3640871c2690496bbc8949fb63abd5033e508055dc0dd759913beba87e39e7af72170d622e2ecf9aeb4e479bbff8ad292a3a5bd70f8f433bc4b89be144ace57501f8f016868ed7dd8bab97f4f3feb242f4f620913c478058c036df363abbf7c239d340017c2de6b688e322c9b51c269aa110def3ad16337d197f3c452ac661bac7c0531c4d98618f99d750b0c3d8539051188a0f4583dd3538982e8a84121055cd721571ca98bb0c3ec3e446c4c7bc5c9b800367a859a00ef3a505327f9f2da247ce118a82deeb04ad22eeaf97dbd454518defd5adeb288a7842e9e2839ec587e3275abf3a812154080aa60182e60cb73b2020d2865551141ac1e077a3a3a764fff1b024346594f3a004197673c896069dc253f81dac7ca4e906bf2c0d241f59e4b8dad8549871e94b33755db2526223d1e290e300701a0a926033d515429f751f72a87f2eb0336cc72be75af2b75b82c70807718604aa9c6b3c2bc27551f1a0dcffc5eef025f86c13f1fbb426de372b15e4d6a63c4754cecd5071e25e8d6f5796830e7ef62b65c5c076ad2a9ab0850f97c5765ece5885caf0ca0d63a56c45d09c77553ba254983c05d7c722bd7e2061bb71e8e9a7cc444a24643ff32bb80f95ddf50455ed9b59288df68da87510cc3ff08521b39002fe8ea04ee30135324934c286cebc277a9189ac3322b96e8df8bd2a00a0a3da54b3dbe4e9cd46b762ac7f2c7ded1aa8c9741b675f7fe2dc699ab9a2615924fda6e879fc2ae27030d149ed88482945304447d8d027"})
ioctl$KVM_GET_LAPIC(r6, 0x8400ae8e, &(0x7f0000000900))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r7, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)

907.047957ms ago: executing program 7 (id=1159):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000340)=[{{&(0x7f0000000140)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x300}}], 0x1, 0x0)

906.546803ms ago: executing program 7 (id=1161):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f000020a000/0x13000)=nil, 0x13000, 0x200000d, 0x10, r0, 0x6e89d000)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be7d6a14fc29", 0xb)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3", 0x8}], 0x1}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
write$binfmt_aout(r1, 0x0, 0xffffffdb)

709.335645ms ago: executing program 7 (id=1164):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x1000, 0x201)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000100)={0x9e0000, 0x1, 0x1903, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0xa00901, 0xd35b, '\x00', @string=0x0}})
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)

707.823755ms ago: executing program 7 (id=1166):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080003"], 0x44}}, 0x0) (fail_nth: 7)

648.896053ms ago: executing program 7 (id=1168):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x101800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fda000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f00000000c0)="b9800000c00f3235004000000f30b9fa000000130f01d9d90f78c4020a1bf7b805000000b90000c0fe0f3cae0a41d941d9000f32ba000000000f30660fc775022e0fba600c9864660ffc76002f3166b857000f00d0", 0x55}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f00000001c0)=ANY=[]) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

448.335108ms ago: executing program 7 (id=1174):
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0xe0c81)
syz_usb_connect(0x0, 0x3d, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

448.220517ms ago: executing program 6 (id=1175):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="5300033f02"], 0x8)

447.544993ms ago: executing program 6 (id=1176):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000003c0)=[@text32={0x20, 0x0}], 0x1, 0x34, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000008c04"])

380.203005ms ago: executing program 5 (id=1177):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="01"], 0xa)

380.021938ms ago: executing program 5 (id=1178):
keyctl$restrict_keyring(0xa, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043ef502"], 0xf8)

250.015334ms ago: executing program 5 (id=1179):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x20000)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000280)=0x11, 0x4)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000240)={0x7, 0x1, 0xa0008000})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f00000000c0)={0x4, 0x1fe, 0x4e43})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0xb, 0x100})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000080)={0x2, 0x5, 0x3})
r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x5, 0x7})
r5 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
r6 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r6, &(0x7f0000000280)={0x2, 0x4e21, @broadcast}, 0x10)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000040)={0x49, 0x7fff, 0x4})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000140)={0x6, 0x1000, 0x800})
r7 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
ioctl$SNDCTL_DSP_SPEED(r7, 0xc0045002, &(0x7f00000002c0)=0x6)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000380)={0x100, 0x1, 0xaef})
close_range(r1, 0xffffffffffffffff, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[], 0xb8}, 0x1, 0x0, 0x0, 0x1}, 0x0)

249.703782ms ago: executing program 5 (id=1180):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
mount$9p_virtio(&(0x7f0000000040), &(0x7f00000000c0)='./file1\x00', &(0x7f0000000180), 0x42, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=virtio,aname=-'])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)

249.053628ms ago: executing program 6 (id=1181):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="f00000001000000328bd700000000000ac1e4101000000000000000000000000ac1414aa0000000000000001000000000a0000002c000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe880000000000000000000000000001000000003200000020010000000000000000000000000001ffffffffffffffff0000000000000000080000000000000001"], 0xf0}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x40080)
syz_emit_ethernet(0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6000ed6a000b2c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa2c"], 0x0)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=ANY=[@ANYBLOB="3800000054000100010000000000000007000000", @ANYRES32=0x0, @ANYRES32=r0, @ANYRES32=0x0, @ANYBLOB="010002006401010000000000000000000000000086dd"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x4000880)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03333f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0)

170.082288ms ago: executing program 5 (id=1182):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b19, &(0x7f0000000000)={'wlan1\x00', @random="0200"})

169.902864ms ago: executing program 6 (id=1183):
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = fsopen(&(0x7f0000000000)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
fstat(r2, &(0x7f00000014c0))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0xffbf, 0x9}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r3, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={&(0x7f0000000140)="482b11195f5b3ae9", 0x0, 0x0, 0x0, 0xe}, 0x38)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtaction={0x12c, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x118, 0x1, [@m_sample={0xac, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x7f, 0x6, "b8f4aa95562d583d599c96ec4a565be25803996c527b27e45178162e18edc5545995b390de649f7b847ecee540b096ab05b230580a565bf4d0b0948e622446df7ba7694208d87aa93dedca9d27e9e3359efb456e4d8feafabc95f868ba3e6dc0f217ef595293752b6f6a91a4ca64239844ab5717cba39053bab287"}, {0xc}, {0xc, 0x4, {0x3}}}}, @m_tunnel_key={0x68, 0x20, 0x0, 0x0, {{0xf}, {0xc, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @loopback}]}, {0x2f, 0x6, "d7ecbf9b56311e819e06e83ab4723079118e16e45b51a57f36991c2bd60f524b3fe56bb161aa4f02795a72"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0x12c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=ANY=[@ANYBLOB="3800000054000100010000000000000007000000", @ANYRES32=0x0, @ANYBLOB="21000100", @ANYRES32=0x0, @ANYBLOB="01000300ac1e000100000000000000000000000086dd"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0xfffffe11, &(0x7f0000000200)}, 0x4000080)

169.806472ms ago: executing program 6 (id=1184):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b19, &(0x7f0000000000)={'wlan1\x00', @random="0200"}) (fail_nth: 2)

69.790974ms ago: executing program 5 (id=1185):
pipe(&(0x7f0000000100))
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000002c0)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001c40)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc6751dfb265a0e3ccae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af9cc9e5ef6bda9df2c3af36effff9af2551ce935b0f327cb3f011a2fd52347125907000000000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7511d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df262ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71d20fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada12f7a1525320e716660000000000b02b001500a710eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d3294000000000000000000000000000000000000000000000000000000000000000000000000c52f4ebd2c893bb97a068bd10738d3c9f7a98eccb26f7e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18a904c0e585a66c3b84b138efc20a546d3d5227e23b03f2a834391ad24fe977076ce7d9b20cf92cb151763d41f5c76e2ff3e93ee296c4082ee73e7e197253a2b66c353312c9d75711ce1623e9c54bdff59d1a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1c77a211bfa02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc084075ad10727522934a87a4ddcdb112754ca5bdec0ead14b6c0f19a4b126bbe0c2b8c9ff68236c8600000000000000000000000066e034c81c3cab4e33fc8dc55ce0ada18dcb1a47a87baf63e4edf11c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f2243471221c158ae8f44bfbfa7c2730302b66a99f66705b71e6205e7cbf36435e1eabb9a63fcd604d5cc27e1317ad94cf438d7187a2fe4e06fa6cbf84ef1efa82cb2c4af6bd1370616cdbe2b98fd89b79824ba089df1f81e6fcef073059f5f1d6a221d791839d7826ed1759c2153532c393fd1bd7be2e7f5abf2f0800000000ea46c07adee10d0f2bc85cf37182256e4fd8f56942726efc07180eaa5421d697665c8bacd39cdb392e6153af80bc1a69e3bfab032e78c9a96eab13be845a0d44ef2a4ab414ac2e4802a3b5d3aa2a4a4fc259206d97d0cc1602d6b45ff414c53fc9f5f68438f0423e168a97923ca0464b40b2f797841fb2bb2e5ad9feff37220ab7c34f4c382c247e7735adb55c209f7c0f8880733dbd3f5a095cc6a2"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write(r4, &(0x7f0000000080)="09000200010005", 0x7)
r5 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r3, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PID={0x8, 0x1c, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000) (fail_nth: 7)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=@newlink={0xcc, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2031}, [@IFLA_AF_SPEC={0xa4, 0x1a, 0x0, 0x1, [@AF_MPLS={0x4}, @AF_MPLS={0x4}, @AF_INET={0x50, 0x2, 0x0, 0x1, {0x4c, 0x1, 0x0, 0x1, [{0x8, 0x18, 0x0, 0x0, 0x1}, {0x8, 0x1e, 0x0, 0x0, 0xad93}, {0x8, 0x1d, 0x0, 0x0, 0xffffff01}, {0x8, 0x0, 0x0, 0x0, 0x9}, {0x8, 0x5, 0x0, 0x0, 0xffffffff}, {0x8, 0x15, 0x0, 0x0, 0x5}, {0x8, 0x5, 0x0, 0x0, 0x7ff}, {0x8, 0x1b, 0x0, 0x0, 0xffffff10}, {0x8, 0x5, 0x0, 0x0, 0x4}]}}, @AF_INET={0x48, 0x2, 0x0, 0x1, {0x44, 0x1, 0x0, 0x1, [{0x8, 0x1d, 0x0, 0x0, 0xc4b}, {0x8, 0x1e, 0x0, 0x0, 0x3}, {0x8, 0xf, 0x0, 0x0, 0x4}, {0x8, 0x1b, 0x0, 0x0, 0xe}, {0x8, 0x12}, {0x8, 0xa, 0x0, 0x0, 0x8}, {0x8, 0xf, 0x0, 0x0, 0x3}, {0x8, 0xa, 0x0, 0x0, 0x9}]}}]}, @IFLA_GROUP={0x8}]}, 0xcc}, 0x1, 0x0, 0x0, 0x20048054}, 0x0)
close(0x4)

0s ago: executing program 6 (id=1186):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r0, 0x26, &(0x7f00000031c0))
fcntl$lock(r0, 0x7, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
ioctl$mixer_OSS_GETVERSION(r1, 0x80044d76, &(0x7f0000000080))

kernel console output (not intermixed with test programs):

uppressed
[  102.854110][   T40] audit: type=1400 audit(1755268811.187:475): avc:  denied  { write } for  pid=8704 comm="syz.4.876" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  102.991990][ T6050] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  103.141935][ T6050] usb 11-1: Using ep0 maxpacket: 8
[  103.145914][ T6050] usb 11-1: config 0 has an invalid interface number: 55 but max is 0
[  103.149347][ T6050] usb 11-1: config 0 has no interface number 0
[  103.152291][ T6050] usb 11-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  103.156944][ T6050] usb 11-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  103.161758][ T6050] usb 11-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  103.167082][ T6050] usb 11-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  103.172676][ T6050] usb 11-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  103.176464][ T6050] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.182178][ T6050] usb 11-1: config 0 descriptor??
[  103.188970][ T6050] ldusb 11-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  103.284123][   T40] audit: type=1400 audit(1755268811.617:476): avc:  denied  { getopt } for  pid=8713 comm="syz.5.878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  103.284863][ T8714] tmpfs: Invalid gid '0x00000000ffffffff'
[  103.290983][   T40] audit: type=1400 audit(1755268811.617:477): avc:  denied  { getopt } for  pid=8713 comm="syz.5.878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  103.389828][   T24] usb 11-1: USB disconnect, device number 3
[  103.395054][   T24] ldusb 11-1:0.55: LD USB Device #0 now disconnected
[  103.483234][ T8720] netlink: 'syz.5.879': attribute type 4 has an invalid length.
[  103.655324][ T8730] FAULT_INJECTION: forcing a failure.
[  103.655324][ T8730] name failslab, interval 1, probability 0, space 0, times 0
[  103.659626][ T8730] CPU: 1 UID: 0 PID: 8730 Comm: syz.5.884 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  103.659642][ T8730] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.659650][ T8730] Call Trace:
[  103.659654][ T8730]  <TASK>
[  103.659659][ T8730]  dump_stack_lvl+0x16c/0x1f0
[  103.659674][ T8730]  should_fail_ex+0x512/0x640
[  103.659687][ T8730]  ? __kernel_text_address+0xd/0x40
[  103.659702][ T8730]  should_failslab+0xc2/0x120
[  103.659729][ T8730]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  103.659743][ T8730]  ? skb_clone+0x190/0x3f0
[  103.659756][ T8730]  skb_clone+0x190/0x3f0
[  103.659767][ T8730]  dev_queue_xmit_nit+0x3e7/0xca0
[  103.659783][ T8730]  dev_hard_start_xmit+0x5c3/0x740
[  103.659811][ T8730]  ? skb_clone+0x190/0x3f0
[  103.659823][ T8730]  __dev_queue_xmit+0xa46/0x4490
[  103.659844][ T8730]  ? __pfx___dev_queue_xmit+0x10/0x10
[  103.659870][ T8730]  ? __asan_memcpy+0x3c/0x60
[  103.659888][ T8730]  ? __asan_memcpy+0x3c/0x60
[  103.659905][ T8730]  ? __skb_clone+0x570/0x760
[  103.659924][ T8730]  netlink_deliver_tap+0xa87/0xd30
[  103.659939][ T8730]  netlink_unicast+0x64c/0x870
[  103.659953][ T8730]  ? __pfx_netlink_unicast+0x10/0x10
[  103.659965][ T8730]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  103.659981][ T8730]  netlink_sendmsg+0x8d1/0xdd0
[  103.659995][ T8730]  ? __pfx_netlink_sendmsg+0x10/0x10
[  103.660012][ T8730]  ____sys_sendmsg+0xa95/0xc70
[  103.660027][ T8730]  ? copy_msghdr_from_user+0x10a/0x160
[  103.660038][ T8730]  ? __pfx_____sys_sendmsg+0x10/0x10
[  103.660059][ T8730]  ___sys_sendmsg+0x134/0x1d0
[  103.660070][ T8730]  ? __pfx____sys_sendmsg+0x10/0x10
[  103.660093][ T8730]  ? __mutex_unlock_slowpath+0x100/0x800
[  103.660109][ T8730]  __sys_sendmsg+0x16d/0x220
[  103.660120][ T8730]  ? __pfx___sys_sendmsg+0x10/0x10
[  103.660166][ T8730]  do_syscall_64+0xcd/0x4c0
[  103.660180][ T8730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.660191][ T8730] RIP: 0033:0x7f413a98ebe9
[  103.660201][ T8730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.660212][ T8730] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  103.660223][ T8730] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  103.660230][ T8730] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 000000000000000f
[  103.660236][ T8730] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  103.660243][ T8730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.660249][ T8730] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  103.660263][ T8730]  </TASK>
[  103.661722][ T8732] FAULT_INJECTION: forcing a failure.
[  103.661722][ T8732] name failslab, interval 1, probability 0, space 0, times 0
[  103.673319][ T8734] netlink: 'syz.7.886': attribute type 4 has an invalid length.
[  103.675153][ T8732] CPU: 0 UID: 0 PID: 8732 Comm: syz.4.885 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  103.675169][ T8732] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.675176][ T8732] Call Trace:
[  103.675180][ T8732]  <TASK>
[  103.675185][ T8732]  dump_stack_lvl+0x16c/0x1f0
[  103.675200][ T8732]  should_fail_ex+0x512/0x640
[  103.675213][ T8732]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  103.675227][ T8732]  should_failslab+0xc2/0x120
[  103.675240][ T8732]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  103.675251][ T8732]  ? __alloc_skb+0x2b2/0x380
[  103.675271][ T8732]  __alloc_skb+0x2b2/0x380
[  103.675289][ T8732]  ? __pfx___alloc_skb+0x10/0x10
[  103.675305][ T8732]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  103.675325][ T8732]  netlink_ack+0x15d/0xb80
[  103.675341][ T8732]  netlink_rcv_skb+0x332/0x420
[  103.675354][ T8732]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  103.675369][ T8732]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  103.675401][ T8732]  ? netlink_deliver_tap+0x1ae/0xd30
[  103.675425][ T8732]  netlink_unicast+0x5aa/0x870
[  103.675449][ T8732]  ? __pfx_netlink_unicast+0x10/0x10
[  103.675469][ T8732]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  103.675497][ T8732]  netlink_sendmsg+0x8d1/0xdd0
[  103.675521][ T8732]  ? __pfx_netlink_sendmsg+0x10/0x10
[  103.675538][ T8732]  ____sys_sendmsg+0xa95/0xc70
[  103.675555][ T8732]  ? copy_msghdr_from_user+0x10a/0x160
[  103.675566][ T8732]  ? __pfx_____sys_sendmsg+0x10/0x10
[  103.675582][ T8732]  ? __pfx__kstrtoull+0x10/0x10
[  103.675603][ T8732]  ___sys_sendmsg+0x134/0x1d0
[  103.675615][ T8732]  ? __pfx____sys_sendmsg+0x10/0x10
[  103.675634][ T8732]  ? find_held_lock+0x2b/0x80
[  103.675657][ T8732]  __sys_sendmmsg+0x200/0x420
[  103.675669][ T8732]  ? __pfx___sys_sendmmsg+0x10/0x10
[  103.675685][ T8732]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  103.675703][ T8732]  ? fput+0x9b/0xd0
[  103.675717][ T8732]  ? ksys_write+0x1ac/0x250
[  103.675729][ T8732]  ? __pfx_ksys_write+0x10/0x10
[  103.675743][ T8732]  __x64_sys_sendmmsg+0x9c/0x100
[  103.675754][ T8732]  ? lockdep_hardirqs_on+0x7c/0x110
[  103.675764][ T8732]  do_syscall_64+0xcd/0x4c0
[  103.675778][ T8732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.675789][ T8732] RIP: 0033:0x7fd8f3f8ebe9
[  103.675799][ T8732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.675809][ T8732] RSP: 002b:00007fd8f4dcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  103.675820][ T8732] RAX: ffffffffffffffda RBX: 00007fd8f41b5fa0 RCX: 00007fd8f3f8ebe9
[  103.675827][ T8732] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000005
[  103.675834][ T8732] RBP: 00007fd8f4dcc090 R08: 0000000000000000 R09: 0000000000000000
[  103.675840][ T8732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.675846][ T8732] R13: 00007fd8f41b6038 R14: 00007fd8f41b5fa0 R15: 00007ffe750c2a18
[  103.675860][ T8732]  </TASK>
[  103.729476][ T8739] netlink: 'syz.7.886': attribute type 4 has an invalid length.
[  103.734036][ T5326] Bluetooth: hci3: command tx timeout
[  103.735170][   T63] Bluetooth: hci1: command 0x0419 tx timeout
[  103.740167][ T8736] FAULT_INJECTION: forcing a failure.
[  103.740167][ T8736] name failslab, interval 1, probability 0, space 0, times 0
[  103.890741][ T8736] CPU: 1 UID: 0 PID: 8736 Comm: syz.4.888 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  103.890759][ T8736] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.890766][ T8736] Call Trace:
[  103.890770][ T8736]  <TASK>
[  103.890774][ T8736]  dump_stack_lvl+0x16c/0x1f0
[  103.890790][ T8736]  should_fail_ex+0x512/0x640
[  103.890802][ T8736]  ? __kmalloc_noprof+0xbf/0x510
[  103.890815][ T8736]  ? lsm_blob_alloc+0x68/0x90
[  103.890826][ T8736]  should_failslab+0xc2/0x120
[  103.890839][ T8736]  __kmalloc_noprof+0xd2/0x510
[  103.890850][ T8736]  ? __pfx_perf_event_init_task+0x10/0x10
[  103.890866][ T8736]  ? audit_alloc+0xa2/0x7b0
[  103.890883][ T8736]  lsm_blob_alloc+0x68/0x90
[  103.890895][ T8736]  security_task_alloc+0x2d/0x260
[  103.890914][ T8736]  copy_process+0x2205/0x7690
[  103.890935][ T8736]  ? __pfx_copy_process+0x10/0x10
[  103.890953][ T8736]  ? lockdep_init_map_type+0x5c/0x280
[  103.890965][ T8736]  ? lockdep_init_map_type+0x5c/0x280
[  103.890975][ T8736]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  103.890991][ T8736]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  103.891009][ T8736]  vhost_task_create+0x1d2/0x2e0
[  103.891020][ T8736]  ? __pfx_vhost_task_create+0x10/0x10
[  103.891035][ T8736]  ? __pfx_vhost_task_fn+0x10/0x10
[  103.891052][ T8736]  kvm_mmu_post_init_vm+0x1b7/0x380
[  103.891066][ T8736]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  103.891083][ T8736]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  103.891101][ T8736]  kvm_vcpu_ioctl+0x5eb/0x1690
[  103.891118][ T8736]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  103.891132][ T8736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  103.891146][ T8736]  ? do_vfs_ioctl+0x128/0x14f0
[  103.891163][ T8736]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  103.891180][ T8736]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  103.891202][ T8736]  ? hook_file_ioctl_common+0x145/0x410
[  103.891216][ T8736]  ? selinux_file_ioctl+0x180/0x270
[  103.891232][ T8736]  ? selinux_file_ioctl+0xb4/0x270
[  103.891248][ T8736]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  103.891263][ T8736]  __x64_sys_ioctl+0x18b/0x210
[  103.891281][ T8736]  do_syscall_64+0xcd/0x4c0
[  103.891294][ T8736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.891318][ T8736] RIP: 0033:0x7fd8f3f8ebe9
[  103.891327][ T8736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.891338][ T8736] RSP: 002b:00007fd8f4dcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  103.891350][ T8736] RAX: ffffffffffffffda RBX: 00007fd8f41b5fa0 RCX: 00007fd8f3f8ebe9
[  103.891356][ T8736] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  103.891363][ T8736] RBP: 00007fd8f4dcc090 R08: 0000000000000000 R09: 0000000000000000
[  103.891369][ T8736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.891376][ T8736] R13: 00007fd8f41b6038 R14: 00007fd8f41b5fa0 R15: 00007ffe750c2a18
[  103.891390][ T8736]  </TASK>
[  103.893967][ T8751] netlink: 16 bytes leftover after parsing attributes in process `syz.5.893'.
[  103.984665][   T40] audit: type=1400 audit(1755268812.317:478): avc:  granted  { setsecparam } for  pid=8752 comm="syz.6.894" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  103.984999][ T8754] netlink: 8 bytes leftover after parsing attributes in process `syz.6.894'.
[  104.049443][   T40] audit: type=1400 audit(1755268812.377:479): avc:  denied  { accept } for  pid=8755 comm="syz.5.895" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  104.058480][   T40] audit: type=1326 audit(1755268812.387:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8757 comm="syz.6.896" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f345258ebe9 code=0x0
[  104.066061][ T8760] batadv_slave_0: entered promiscuous mode
[  104.240905][   T40] audit: type=1400 audit(1755268812.567:481): avc:  denied  { create } for  pid=8759 comm="syz.4.897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  104.247006][   T40] audit: type=1400 audit(1755268812.567:482): avc:  denied  { ioctl } for  pid=8759 comm="syz.4.897" path="socket:[25588]" dev="sockfs" ino=25588 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  104.273482][   T40] audit: type=1400 audit(1755268812.607:483): avc:  denied  { read write } for  pid=7884 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  104.283945][   T40] audit: type=1400 audit(1755268812.607:484): avc:  denied  { open } for  pid=7884 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  104.457150][   T63] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  104.461379][   T63] Bluetooth: hci2: Injecting HCI hardware error event
[  104.467809][   T63] Bluetooth: hci2: hardware error 0x00
[  104.515012][ T8781] netlink: 'syz.6.904': attribute type 4 has an invalid length.
[  105.223468][ T8785] FAULT_INJECTION: forcing a failure.
[  105.223468][ T8785] name failslab, interval 1, probability 0, space 0, times 0
[  105.227684][ T8785] CPU: 3 UID: 0 PID: 8785 Comm: syz.5.907 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  105.227702][ T8785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.227709][ T8785] Call Trace:
[  105.227714][ T8785]  <TASK>
[  105.227718][ T8785]  dump_stack_lvl+0x16c/0x1f0
[  105.227732][ T8785]  should_fail_ex+0x512/0x640
[  105.227747][ T8785]  should_failslab+0xc2/0x120
[  105.227761][ T8785]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  105.227773][ T8785]  ? fib6_add_1+0x8d4/0x17d0
[  105.227790][ T8785]  fib6_add_1+0x8d4/0x17d0
[  105.227809][ T8785]  fib6_add+0x103a/0x1d90
[  105.227827][ T8785]  ? __pfx_fib6_add+0x10/0x10
[  105.227841][ T8785]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  105.227858][ T8785]  ip6_route_add.part.0+0xc1/0x1d0
[  105.227871][ T8785]  ipv6_route_ioctl+0x4a3/0x5e0
[  105.227886][ T8785]  ? __pfx_ipv6_route_ioctl+0x10/0x10
[  105.227898][ T8785]  ? find_held_lock+0x2b/0x80
[  105.227936][ T8785]  inet6_ioctl+0x267/0x2b0
[  105.227957][ T8785]  ? __pfx_inet6_ioctl+0x10/0x10
[  105.227994][ T8785]  sock_do_ioctl+0x115/0x280
[  105.228015][ T8785]  ? __pfx_sock_do_ioctl+0x10/0x10
[  105.228042][ T8785]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  105.228070][ T8785]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  105.228094][ T8785]  sock_ioctl+0x227/0x6b0
[  105.228109][ T8785]  ? __pfx_sock_ioctl+0x10/0x10
[  105.228142][ T8785]  ? hook_file_ioctl_common+0x145/0x410
[  105.228156][ T8785]  ? selinux_file_ioctl+0x180/0x270
[  105.228172][ T8785]  ? selinux_file_ioctl+0xb4/0x270
[  105.228188][ T8785]  ? __pfx_sock_ioctl+0x10/0x10
[  105.228203][ T8785]  __x64_sys_ioctl+0x18b/0x210
[  105.228221][ T8785]  do_syscall_64+0xcd/0x4c0
[  105.228234][ T8785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.228245][ T8785] RIP: 0033:0x7f413a98ebe9
[  105.228254][ T8785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.228265][ T8785] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  105.228276][ T8785] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  105.228283][ T8785] RDX: 0000200000000540 RSI: 000000000000890b RDI: 0000000000000003
[  105.228289][ T8785] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  105.228296][ T8785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.228302][ T8785] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  105.228315][ T8785]  </TASK>
[  105.250666][ T8783] FAULT_INJECTION: forcing a failure.
[  105.250666][ T8783] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.307854][ T8791] fuse: Bad value for 'fd'
[  105.309862][ T8783] CPU: 1 UID: 0 PID: 8783 Comm: syz.7.906 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  105.309887][ T8783] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.309898][ T8783] Call Trace:
[  105.309905][ T8783]  <TASK>
[  105.309912][ T8783]  dump_stack_lvl+0x16c/0x1f0
[  105.309935][ T8783]  should_fail_ex+0x512/0x640
[  105.309959][ T8783]  _copy_from_iter+0x29f/0x16f0
[  105.309985][ T8783]  ? _copy_from_iter+0x15d/0x16f0
[  105.310008][ T8783]  ? __pfx__copy_from_iter+0x10/0x10
[  105.310033][ T8783]  ? __pfx__copy_from_iter+0x10/0x10
[  105.310056][ T8783]  ? _copy_from_iter+0x15d/0x16f0
[  105.310082][ T8783]  copy_page_from_iter+0xde/0x180
[  105.310109][ T8783]  skb_copy_datagram_from_iter+0x2a0/0x740
[  105.310145][ T8783]  tun_get_user+0x185c/0x3ce0
[  105.310182][ T8783]  ? __pfx_tun_get_user+0x10/0x10
[  105.310208][ T8783]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  105.310237][ T8783]  ? find_held_lock+0x2b/0x80
[  105.310262][ T8783]  ? tun_get+0x191/0x370
[  105.310298][ T8783]  tun_chr_write_iter+0xdc/0x210
[  105.310323][ T8783]  vfs_write+0x7d3/0x11d0
[  105.310343][ T8783]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  105.310369][ T8783]  ? __pfx_vfs_write+0x10/0x10
[  105.310385][ T8783]  ? find_held_lock+0x2b/0x80
[  105.310423][ T8783]  ksys_write+0x12a/0x250
[  105.310442][ T8783]  ? __pfx_ksys_write+0x10/0x10
[  105.310468][ T8783]  do_syscall_64+0xcd/0x4c0
[  105.310491][ T8783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.310509][ T8783] RIP: 0033:0x7f39a2b8ebe9
[  105.310523][ T8783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.310541][ T8783] RSP: 002b:00007f39a39cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  105.310563][ T8783] RAX: ffffffffffffffda RBX: 00007f39a2db5fa0 RCX: 00007f39a2b8ebe9
[  105.310574][ T8783] RDX: 000000000000124a RSI: 0000200000001080 RDI: 0000000000000003
[  105.310585][ T8783] RBP: 00007f39a39cc090 R08: 0000000000000000 R09: 0000000000000000
[  105.310595][ T8783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.310606][ T8783] R13: 00007f39a2db6038 R14: 00007f39a2db5fa0 R15: 00007ffc1e9319e8
[  105.310630][ T8783]  </TASK>
[  105.425217][ T8759] batadv_slave_0: left promiscuous mode
[  105.499349][ T8800] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  105.545772][ T8809] FAULT_INJECTION: forcing a failure.
[  105.545772][ T8809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.551167][ T8809] CPU: 2 UID: 0 PID: 8809 Comm: syz.4.918 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  105.551191][ T8809] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.551202][ T8809] Call Trace:
[  105.551208][ T8809]  <TASK>
[  105.551214][ T8809]  dump_stack_lvl+0x16c/0x1f0
[  105.551238][ T8809]  should_fail_ex+0x512/0x640
[  105.551261][ T8809]  strncpy_from_user+0x3b/0x2e0
[  105.551281][ T8809]  getname_flags.part.0+0x8f/0x550
[  105.551312][ T8809]  getname_flags+0x93/0xf0
[  105.551327][ T8809]  user_path_at+0x24/0x60
[  105.551347][ T8809]  __x64_sys_chmod+0xe7/0x1c0
[  105.551369][ T8809]  ? __pfx___x64_sys_chmod+0x10/0x10
[  105.551399][ T8809]  do_syscall_64+0xcd/0x4c0
[  105.551420][ T8809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.551437][ T8809] RIP: 0033:0x7fd8f3f8ebe9
[  105.551452][ T8809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.551469][ T8809] RSP: 002b:00007fd8f4dcc038 EFLAGS: 00000246 ORIG_RAX: 000000000000005a
[  105.551486][ T8809] RAX: ffffffffffffffda RBX: 00007fd8f41b5fa0 RCX: 00007fd8f3f8ebe9
[  105.551498][ T8809] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000200000000200
[  105.551509][ T8809] RBP: 00007fd8f4dcc090 R08: 0000000000000000 R09: 0000000000000000
[  105.551518][ T8809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.551530][ T8809] R13: 00007fd8f41b6038 R14: 00007fd8f41b5fa0 R15: 00007ffe750c2a18
[  105.551551][ T8809]  </TASK>
[  105.581087][ T5326] Bluetooth: hci1: unknown advertising packet type: 0x82
[  105.614836][ T5326] Bluetooth: hci1: Malformed LE Event: 0x02
[  105.625363][ T8815] FAULT_INJECTION: forcing a failure.
[  105.625363][ T8815] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.629372][ T8815] CPU: 2 UID: 0 PID: 8815 Comm: syz.4.921 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  105.629389][ T8815] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.629396][ T8815] Call Trace:
[  105.629400][ T8815]  <TASK>
[  105.629405][ T8815]  dump_stack_lvl+0x16c/0x1f0
[  105.629421][ T8815]  should_fail_ex+0x512/0x640
[  105.629437][ T8815]  _copy_to_user+0x32/0xd0
[  105.629454][ T8815]  simple_read_from_buffer+0xcb/0x170
[  105.629467][ T8815]  proc_fail_nth_read+0x197/0x240
[  105.629480][ T8815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.629494][ T8815]  ? rw_verify_area+0xcf/0x6c0
[  105.629511][ T8815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.629524][ T8815]  vfs_read+0x1e1/0xcf0
[  105.629537][ T8815]  ? __pfx___mutex_lock+0x10/0x10
[  105.629549][ T8815]  ? __pfx_vfs_read+0x10/0x10
[  105.629564][ T8815]  ? __fget_files+0x20e/0x3c0
[  105.629584][ T8815]  ksys_read+0x12a/0x250
[  105.629594][ T8815]  ? __pfx_ksys_read+0x10/0x10
[  105.629609][ T8815]  do_syscall_64+0xcd/0x4c0
[  105.629622][ T8815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.629634][ T8815] RIP: 0033:0x7fd8f3f8d5fc
[  105.629643][ T8815] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  105.629654][ T8815] RSP: 002b:00007fd8f4dcc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  105.629665][ T8815] RAX: ffffffffffffffda RBX: 00007fd8f41b5fa0 RCX: 00007fd8f3f8d5fc
[  105.629672][ T8815] RDX: 000000000000000f RSI: 00007fd8f4dcc0a0 RDI: 0000000000000004
[  105.629678][ T8815] RBP: 00007fd8f4dcc090 R08: 0000000000000000 R09: 0000000000000000
[  105.629685][ T8815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.629691][ T8815] R13: 00007fd8f41b6038 R14: 00007fd8f41b5fa0 R15: 00007ffe750c2a18
[  105.629704][ T8815]  </TASK>
[  105.695995][ T8820] netlink: 20 bytes leftover after parsing attributes in process `syz.7.924'.
[  105.716994][ T8826] loop2: detected capacity change from 0 to 7
[  105.722010][ T8826] Dev loop2: unable to read RDB block 7
[  105.724665][ T8826]  loop2: unable to read partition table
[  105.726987][ T8826] loop2: partition table beyond EOD, truncated
[  105.730395][ T8826] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  105.780419][ T8831] netlink: 44 bytes leftover after parsing attributes in process `syz.4.928'.
[  105.798088][ T8831] syz_tun: entered allmulticast mode
[  105.800843][ T8830] syz_tun: left allmulticast mode
[  105.802721][ T5326] Bluetooth: hci3: command tx timeout
[  105.847232][ T8842] netlink: 'syz.6.932': attribute type 10 has an invalid length.
[  105.849643][ T8842] netlink: 40 bytes leftover after parsing attributes in process `syz.6.932'.
[  105.869934][ T8842] team0: Port device geneve0 added
[  105.909886][ T8845] netlink: 'syz.6.933': attribute type 10 has an invalid length.
[  105.912418][ T8845] netlink: 40 bytes leftover after parsing attributes in process `syz.6.933'.
[  105.922763][ T8846] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8846 comm=syz.5.929
[  105.927391][ T8846] siw: device registration error -23
[  105.960281][ T8848] FAULT_INJECTION: forcing a failure.
[  105.960281][ T8848] name failslab, interval 1, probability 0, space 0, times 0
[  105.965013][ T8848] CPU: 2 UID: 0 PID: 8848 Comm: syz.6.934 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  105.965030][ T8848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.965037][ T8848] Call Trace:
[  105.965041][ T8848]  <TASK>
[  105.965046][ T8848]  dump_stack_lvl+0x16c/0x1f0
[  105.965062][ T8848]  should_fail_ex+0x512/0x640
[  105.965074][ T8848]  ? fs_reclaim_acquire+0xae/0x150
[  105.965091][ T8848]  should_failslab+0xc2/0x120
[  105.965104][ T8848]  __kmalloc_cache_noprof+0x6a/0x3e0
[  105.965121][ T8848]  ? __pfx_from_kqid+0x10/0x10
[  105.965133][ T8848]  ? shmem_acquire_dquot+0x246/0x8d0
[  105.965147][ T8848]  shmem_acquire_dquot+0x246/0x8d0
[  105.965172][ T8848]  dqget+0x693/0x1180
[  105.965189][ T8848]  ? __pfx_dqget+0x10/0x10
[  105.965207][ T8848]  dquot_transfer+0x3a8/0x6a0
[  105.965223][ T8848]  ? __pfx_dquot_transfer+0x10/0x10
[  105.965240][ T8848]  ? __pfx_make_vfsuid+0x10/0x10
[  105.965256][ T8848]  ? setattr_prepare+0x140/0x9a0
[  105.965277][ T8848]  shmem_setattr+0x582/0x1120
[  105.965290][ T8848]  ? __pfx_shmem_setattr+0x10/0x10
[  105.965302][ T8848]  notify_change+0x6a6/0x1230
[  105.965323][ T8848]  chown_common+0x54e/0x680
[  105.965344][ T8848]  ? __pfx_chown_common+0x10/0x10
[  105.965368][ T8848]  ksys_fchown+0x11a/0x190
[  105.965383][ T8848]  __x64_sys_fchown+0x72/0xb0
[  105.965397][ T8848]  ? lockdep_hardirqs_on+0x7c/0x110
[  105.965409][ T8848]  do_syscall_64+0xcd/0x4c0
[  105.965422][ T8848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.965433][ T8848] RIP: 0033:0x7f345258ebe9
[  105.965443][ T8848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.965454][ T8848] RSP: 002b:00007f34533a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000005d
[  105.965465][ T8848] RAX: ffffffffffffffda RBX: 00007f34527b5fa0 RCX: 00007f345258ebe9
[  105.965472][ T8848] RDX: 0000000000000000 RSI: 000000000000ee01 RDI: 0000000000000004
[  105.965479][ T8848] RBP: 00007f34533a6090 R08: 0000000000000000 R09: 0000000000000000
[  105.965485][ T8848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.965491][ T8848] R13: 00007f34527b6038 R14: 00007f34527b5fa0 R15: 00007ffcec99daa8
[  105.965505][ T8848]  </TASK>
[  105.990892][ T8850] fuse: Bad value for 'fd'
[  106.119915][ T8857] ptrace attach of "/syz-executor exec"[7884] was attempted by "                                                                                                                                X    ÿ               \x09      0 €\x0b 
 ip6tnl    € \x09      þ€             »                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             b\x0aøÿ\x0c  !¿¡      \x07
  øÿÿÿ·     ½      …   Ð   ·       •       ?ºj}6Ù±ŽØ¢âÄž€ ¦ôàä©Dl¢µñÌ\x0ašö˜9: óˆœ$ªVñQ™úÐ\x09<YÖk^Ο6Ç\x0d
\x0cPwÚ€û˜,” ÆlêHJA[v–a¶Ou$\x1b\x07.�  -uY:(  É>dÂ'ÉZ ·„bWðzr‘„QëÜôÎ÷ù``Vþ\x5c4fL\x0aù6\x0az
[  106.169425][ T8861] Failed to get privilege flags for destination (handle=0x2:0xd)
[  106.207411][ T8860] geneve2: entered promiscuous mode
[  106.209176][ T8860] geneve2: entered allmulticast mode
[  106.217785][ T8861] geneve2: entered promiscuous mode
[  106.219497][ T8861] geneve2: entered allmulticast mode
[  106.319181][ T8868] netlink: 12 bytes leftover after parsing attributes in process `syz.6.942'.
[  106.390991][ T8872] fuse: Bad value for 'fd'
[  106.398523][ T5326] Bluetooth: hci3: unknown advertising packet type: 0x82
[  106.398590][ T5326] Bluetooth: hci3: Malformed LE Event: 0x02
[  106.516600][ T8882] FAULT_INJECTION: forcing a failure.
[  106.516600][ T8882] name failslab, interval 1, probability 0, space 0, times 0
[  106.520682][ T8882] CPU: 1 UID: 0 PID: 8882 Comm: syz.5.948 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  106.520699][ T8882] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.520706][ T8882] Call Trace:
[  106.520711][ T8882]  <TASK>
[  106.520716][ T8882]  dump_stack_lvl+0x16c/0x1f0
[  106.520732][ T8882]  should_fail_ex+0x512/0x640
[  106.520744][ T8882]  ? __kmalloc_noprof+0xbf/0x510
[  106.520757][ T8882]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  106.520774][ T8882]  should_failslab+0xc2/0x120
[  106.520787][ T8882]  __kmalloc_noprof+0xd2/0x510
[  106.520801][ T8882]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  106.520819][ T8882]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  106.520835][ T8882]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  106.520854][ T8882]  ? bpf_lsm_capable+0x9/0x10
[  106.520870][ T8882]  ? security_capable+0x7e/0x260
[  106.520885][ T8882]  ? ns_capable+0xd7/0x110
[  106.520899][ T8882]  genl_rcv_msg+0x55c/0x800
[  106.520915][ T8882]  ? __pfx_genl_rcv_msg+0x10/0x10
[  106.520930][ T8882]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  106.520947][ T8882]  netlink_rcv_skb+0x155/0x420
[  106.520959][ T8882]  ? __pfx_genl_rcv_msg+0x10/0x10
[  106.520974][ T8882]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  106.520992][ T8882]  ? netlink_deliver_tap+0x1ae/0xd30
[  106.521005][ T8882]  genl_rcv+0x28/0x40
[  106.521018][ T8882]  netlink_unicast+0x5aa/0x870
[  106.521032][ T8882]  ? __pfx_netlink_unicast+0x10/0x10
[  106.521044][ T8882]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  106.521060][ T8882]  netlink_sendmsg+0x8d1/0xdd0
[  106.521074][ T8882]  ? __pfx_netlink_sendmsg+0x10/0x10
[  106.521091][ T8882]  ____sys_sendmsg+0xa95/0xc70
[  106.521107][ T8882]  ? copy_msghdr_from_user+0x10a/0x160
[  106.521118][ T8882]  ? __pfx_____sys_sendmsg+0x10/0x10
[  106.521139][ T8882]  ___sys_sendmsg+0x134/0x1d0
[  106.521151][ T8882]  ? __pfx____sys_sendmsg+0x10/0x10
[  106.521174][ T8882]  ? __mutex_unlock_slowpath+0x100/0x800
[  106.521191][ T8882]  __sys_sendmsg+0x16d/0x220
[  106.521202][ T8882]  ? __pfx___sys_sendmsg+0x10/0x10
[  106.521222][ T8882]  do_syscall_64+0xcd/0x4c0
[  106.521235][ T8882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.521247][ T8882] RIP: 0033:0x7f413a98ebe9
[  106.521256][ T8882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.521267][ T8882] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  106.521278][ T8882] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  106.521285][ T8882] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 000000000000001c
[  106.521292][ T8882] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  106.521298][ T8882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.521304][ T8882] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  106.521318][ T8882]  </TASK>
[  106.532403][   T63] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  106.662018][   T24] usb 11-1: new full-speed USB device number 4 using dummy_hcd
[  106.699198][ T8888] FAULT_INJECTION: forcing a failure.
[  106.699198][ T8888] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.703645][ T8888] CPU: 3 UID: 0 PID: 8888 Comm: syz.5.951 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  106.703666][ T8888] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.703676][ T8888] Call Trace:
[  106.703684][ T8888]  <TASK>
[  106.703692][ T8888]  dump_stack_lvl+0x16c/0x1f0
[  106.703715][ T8888]  should_fail_ex+0x512/0x640
[  106.703735][ T8888]  _copy_from_user+0x2e/0xd0
[  106.703757][ T8888]  kstrtouint_from_user+0xd6/0x1d0
[  106.703774][ T8888]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  106.703790][ T8888]  ? __lock_acquire+0xb97/0x1ce0
[  106.703831][ T8888]  proc_fail_nth_write+0x83/0x220
[  106.703853][ T8888]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  106.703881][ T8888]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  106.703899][ T8888]  vfs_write+0x29d/0x11d0
[  106.703922][ T8888]  ? __pfx___mutex_lock+0x10/0x10
[  106.703942][ T8888]  ? __pfx_vfs_write+0x10/0x10
[  106.703969][ T8888]  ? __fget_files+0x20e/0x3c0
[  106.703997][ T8888]  ksys_write+0x12a/0x250
[  106.704015][ T8888]  ? __pfx_ksys_write+0x10/0x10
[  106.704041][ T8888]  do_syscall_64+0xcd/0x4c0
[  106.704062][ T8888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.704080][ T8888] RIP: 0033:0x7f413a98d69f
[  106.704093][ T8888] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  106.704135][ T8888] RSP: 002b:00007f413b721030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  106.704152][ T8888] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f413a98d69f
[  106.704164][ T8888] RDX: 0000000000000001 RSI: 00007f413b7210a0 RDI: 0000000000000008
[  106.704175][ T8888] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  106.704185][ T8888] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  106.704196][ T8888] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  106.704224][ T8888]  </TASK>
[  106.813962][   T24] usb 11-1: unable to get BOS descriptor or descriptor too short
[  106.816331][ T8894] netlink: 104 bytes leftover after parsing attributes in process `syz.5.953'.
[  106.817046][   T24] usb 11-1: not running at top speed; connect to a high speed hub
[  106.825697][   T24] usb 11-1: config 1 interface 0 altsetting 6 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  106.829738][   T24] usb 11-1: config 1 interface 0 has no altsetting 0
[  106.847050][   T24] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  106.849927][   T24] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.853420][   T63] Bluetooth: hci1: unknown advertising packet type: 0x82
[  106.853465][   T63] Bluetooth: hci1: Malformed LE Event: 0x02
[  106.857681][   T24] usb 11-1: Product: syz
[  106.859031][   T24] usb 11-1: Manufacturer: syz
[  106.860565][   T24] usb 11-1: SerialNumber: syz
[  106.901000][ T8898] fuse: Bad value for 'fd'
[  106.962635][ T8902] FAULT_INJECTION: forcing a failure.
[  106.962635][ T8902] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.966872][ T8902] CPU: 0 UID: 0 PID: 8902 Comm: syz.5.958 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  106.966890][ T8902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.966897][ T8902] Call Trace:
[  106.966901][ T8902]  <TASK>
[  106.966906][ T8902]  dump_stack_lvl+0x16c/0x1f0
[  106.966922][ T8902]  should_fail_ex+0x512/0x640
[  106.966937][ T8902]  strncpy_from_user+0x3b/0x2e0
[  106.966950][ T8902]  path_removexattrat+0xc6/0x5e0
[  106.966965][ T8902]  ? __pfx_path_removexattrat+0x10/0x10
[  106.966989][ T8902]  ? ksys_write+0x1ac/0x250
[  106.967000][ T8902]  ? __pfx_ksys_write+0x10/0x10
[  106.967014][ T8902]  __x64_sys_removexattr+0x5b/0x80
[  106.967030][ T8902]  do_syscall_64+0xcd/0x4c0
[  106.967043][ T8902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.967054][ T8902] RIP: 0033:0x7f413a98ebe9
[  106.967064][ T8902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.967074][ T8902] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5
[  106.967085][ T8902] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  106.967092][ T8902] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000200000000200
[  106.967099][ T8902] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  106.967105][ T8902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.967112][ T8902] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  106.967125][ T8902]  </TASK>
[  107.077302][ T8876] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  107.081154][ T8876] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  107.098931][   T24] cdc_ether 11-1:1.0: probe with driver cdc_ether failed with error -71
[  107.108157][ T8468] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.112899][   T24] usb 11-1: USB disconnect, device number 4
[  107.173735][   T63] Bluetooth: hci1: Malformed MSFT vendor event: 0x02
[  107.174538][ T8468] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.254665][ T8468] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.299245][ T8912] batadv_slave_0: entered promiscuous mode
[  107.321168][ T8914] FAULT_INJECTION: forcing a failure.
[  107.321168][ T8914] name failslab, interval 1, probability 0, space 0, times 0
[  107.325967][ T8914] CPU: 0 UID: 0 PID: 8914 Comm: syz.5.965 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  107.325983][ T8914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.325990][ T8914] Call Trace:
[  107.325994][ T8914]  <TASK>
[  107.325998][ T8914]  dump_stack_lvl+0x16c/0x1f0
[  107.326013][ T8914]  should_fail_ex+0x512/0x640
[  107.326026][ T8914]  ? __kmalloc_noprof+0xbf/0x510
[  107.326039][ T8914]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  107.326055][ T8914]  should_failslab+0xc2/0x120
[  107.326069][ T8914]  __kmalloc_noprof+0xd2/0x510
[  107.326083][ T8914]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  107.326101][ T8914]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  107.326116][ T8914]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  107.326135][ T8914]  ? bpf_lsm_capable+0x9/0x10
[  107.326152][ T8914]  ? security_capable+0x7e/0x260
[  107.326166][ T8914]  ? ns_capable+0xd7/0x110
[  107.326181][ T8914]  genl_rcv_msg+0x55c/0x800
[  107.326196][ T8914]  ? __pfx_genl_rcv_msg+0x10/0x10
[  107.326211][ T8914]  ? __pfx_mptcp_pm_nl_add_addr_doit+0x10/0x10
[  107.326234][ T8914]  netlink_rcv_skb+0x155/0x420
[  107.326246][ T8914]  ? __pfx_genl_rcv_msg+0x10/0x10
[  107.326260][ T8914]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  107.326278][ T8914]  ? netlink_deliver_tap+0x1ae/0xd30
[  107.326292][ T8914]  genl_rcv+0x28/0x40
[  107.326303][ T8914]  netlink_unicast+0x5aa/0x870
[  107.326317][ T8914]  ? __pfx_netlink_unicast+0x10/0x10
[  107.326329][ T8914]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  107.326345][ T8914]  netlink_sendmsg+0x8d1/0xdd0
[  107.326360][ T8914]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.326377][ T8914]  ____sys_sendmsg+0xa95/0xc70
[  107.326399][ T8914]  ? copy_msghdr_from_user+0x10a/0x160
[  107.326410][ T8914]  ? __pfx_____sys_sendmsg+0x10/0x10
[  107.326431][ T8914]  ___sys_sendmsg+0x134/0x1d0
[  107.326442][ T8914]  ? __pfx____sys_sendmsg+0x10/0x10
[  107.326465][ T8914]  ? __mutex_unlock_slowpath+0x100/0x800
[  107.326482][ T8914]  __sys_sendmsg+0x16d/0x220
[  107.326493][ T8914]  ? __pfx___sys_sendmsg+0x10/0x10
[  107.326513][ T8914]  do_syscall_64+0xcd/0x4c0
[  107.326526][ T8914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.326537][ T8914] RIP: 0033:0x7f413a98ebe9
[  107.326546][ T8914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.326558][ T8914] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.326569][ T8914] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  107.326576][ T8914] RDX: 0000000020000000 RSI: 0000200000000a80 RDI: 000000000000000a
[  107.326582][ T8914] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  107.326589][ T8914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.326595][ T8914] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  107.326609][ T8914]  </TASK>
[  107.397014][ T5326] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  107.429429][ T5326] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  107.437441][ T5326] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  107.440493][ T5326] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  107.442380][ T8468] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.447035][ T5326] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.709096][ T8468] dvmrp1 (unregistering): left allmulticast mode
[  107.722330][   T24] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  107.736827][ T8468] team0: Port device geneve0 removed
[  107.858684][ T8468] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  107.869399][ T8468] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.872167][   T24] usb 10-1: Using ep0 maxpacket: 8
[  107.875751][   T24] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  107.876024][ T8468] bond0 (unregistering): Released all slaves
[  107.878260][   T24] usb 10-1: config 0 has no interface number 0
[  107.882100][   T24] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  107.885286][   T24] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  107.888714][   T24] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  107.892194][   T24] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  107.892577][   T63] Bluetooth: hci3: command tx timeout
[  107.896084][   T24] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  107.896116][   T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.897459][   T24] usb 10-1: config 0 descriptor??
[  107.916417][   T24] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  107.965095][ T8468] bond1 (unregistering): (slave vlan2): Releasing active interface
[  107.968878][ T8468] bond1 (unregistering): Released all slaves
[  108.018155][   T40] kauditd_printk_skb: 183 callbacks suppressed
[  108.018174][   T40] audit: type=1400 audit(1755268816.347:668): avc:  denied  { read } for  pid=5678 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  108.029383][   T40] audit: type=1400 audit(1755268816.347:669): avc:  denied  { module_request } for  pid=8915 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  108.038946][ T8915] chnl_net:caif_netlink_parms(): no params data found
[  108.042989][   T40] audit: type=1400 audit(1755268816.347:670): avc:  denied  { search } for  pid=5678 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  108.051400][   T40] audit: type=1400 audit(1755268816.347:671): avc:  denied  { search } for  pid=5678 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  108.059835][   T40] audit: type=1400 audit(1755268816.347:672): avc:  denied  { search } for  pid=5678 comm="dhcpcd" name="data" dev="tmpfs" ino=14 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  108.068588][   T40] audit: type=1400 audit(1755268816.347:673): avc:  denied  { read } for  pid=5678 comm="dhcpcd" name="n114" dev="tmpfs" ino=4249 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  108.077455][   T40] audit: type=1400 audit(1755268816.347:674): avc:  denied  { open } for  pid=5678 comm="dhcpcd" path="/run/udev/data/n114" dev="tmpfs" ino=4249 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  108.088903][   T40] audit: type=1400 audit(1755268816.357:675): avc:  denied  { getattr } for  pid=5678 comm="dhcpcd" path="/run/udev/data/n114" dev="tmpfs" ino=4249 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  108.098248][   T40] audit: type=1400 audit(1755268816.407:676): avc:  denied  { create } for  pid=8934 comm="syz.6.970" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  108.105707][   T40] audit: type=1400 audit(1755268816.407:677): avc:  denied  { write } for  pid=8934 comm="syz.6.970" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  108.115118][   T53] usb 10-1: USB disconnect, device number 3
[  108.120111][   T53] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[  108.280077][ T8951] netlink: 44 bytes leftover after parsing attributes in process `syz.6.974'.
[  108.717860][ T8958] program syz.5.975 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  109.163787][ T8915] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.167786][ T8915] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.170772][ T8915] bridge_slave_0: entered allmulticast mode
[  109.175497][ T8915] bridge_slave_0: entered promiscuous mode
[  109.179242][ T8952] syz_tun: entered allmulticast mode
[  109.181052][ T8952] syz_tun: left allmulticast mode
[  109.187922][ T8954] dvmrp1: entered allmulticast mode
[  109.191511][ T8915] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.195174][ T8915] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.197438][ T8915] bridge_slave_1: entered allmulticast mode
[  109.200006][ T8915] bridge_slave_1: entered promiscuous mode
[  109.232136][ T8911] batadv_slave_0: left promiscuous mode
[  109.238936][ T8962] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=512 sclass=netlink_tcpdiag_socket pid=8962 comm=syz.6.976
[  109.275613][ T8915] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.284802][ T8915] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.303464][ T8969] netlink: 'syz.5.979': attribute type 1 has an invalid length.
[  109.305812][ T8969] netlink: 'syz.5.979': attribute type 1 has an invalid length.
[  109.317359][ T8969] netlink: 'syz.5.979': attribute type 1 has an invalid length.
[  109.346803][ T8969] 8021q: adding VLAN 0 to HW filter on device bond2
[  109.352293][ T8915] team0: Port device team_slave_0 added
[  109.373080][ T8969] bond2: (slave wlan0): Enslaving as an active interface with a down link
[  109.376982][ T8915] team0: Port device team_slave_1 added
[  109.384464][ T8976] netlink: 4 bytes leftover after parsing attributes in process `syz.7.980'.
[  109.389359][ T8976] netlink: 'syz.7.980': attribute type 1 has an invalid length.
[  109.438204][ T8969] vlan2: entered allmulticast mode
[  109.440400][ T8969] veth1: entered allmulticast mode
[  109.443804][ T8969] veth1: entered promiscuous mode
[  109.447181][ T8969] veth1: left promiscuous mode
[  109.450846][ T8969] bond2: (slave vlan2): making interface the new active one
[  109.454097][ T8969] bond2: (slave wlan0): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  109.459581][ T8969] veth1: entered promiscuous mode
[  109.461541][ T8969] vlan2: entered promiscuous mode
[  109.463859][ T8969] bond2: (slave vlan2): Enslaving as an active interface with an up link
[  109.467095][ T8915] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.469271][ T8915] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.477396][ T8915] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.481691][ T8915] batman_adv: batadv0: Adding interface: batadv_slave_1
[  109.482842][   T63] Bluetooth: hci0: command tx timeout
[  109.484186][    T9] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  109.486895][ T8915] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.498467][ T8915] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  109.531916][ T8984] overlayfs: missing 'lowerdir'
[  109.596190][ T8468] tipc: Left network mode
[  109.600798][ T8915] hsr_slave_0: entered promiscuous mode
[  109.604064][ T8915] hsr_slave_1: entered promiscuous mode
[  109.608460][ T8915] debugfs: 'hsr0' already exists in 'hsr'
[  109.608877][ T8468] IPVS: stopping backup sync thread 8675 ...
[  109.610852][ T8915] Cannot create hsr debugfs directory
[  109.626962][ T8988] netlink: 12 bytes leftover after parsing attributes in process `syz.7.984'.
[  109.642194][    T9] usb 11-1: Using ep0 maxpacket: 32
[  109.647186][    T9] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  109.651754][    T9] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  109.656568][    T9] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  109.662146][    T9] usb 11-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  109.666160][    T9] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.675586][    T9] usb 11-1: config 0 descriptor??
[  109.810726][ T8468] hsr_slave_0: left promiscuous mode
[  109.816385][ T8468] hsr_slave_1: left promiscuous mode
[  109.819161][ T8468] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  109.822705][ T8468] batman_adv: batadv0: Removing interface: batadv_slave_0
[  109.826235][ T8468] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  109.829071][ T8468] batman_adv: batadv0: Removing interface: batadv_slave_1
[  109.862972][ T8468] veth1_macvtap: left promiscuous mode
[  109.864766][ T8468] veth0_macvtap: left promiscuous mode
[  109.866466][ T8468] veth1_vlan: left promiscuous mode
[  109.868105][ T8468] veth0_vlan: left promiscuous mode
[  110.103359][    T9] input: HID 0458:5011 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/0003:0458:5011.0005/input/input10
[  110.178963][    T9] input: HID 0458:5011 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/0003:0458:5011.0005/input/input11
[  110.224367][    T9] kye 0003:0458:5011.0005: input,hiddev0,hidraw0: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.6-1/input0
[  110.419484][ T9012] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.423914][ T9012] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.427787][ T9012] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9012 comm=syz.6.976
[  110.429318][ T9011] netlink: 16 bytes leftover after parsing attributes in process `syz.5.988'.
[  110.550635][ T8468] team0 (unregistering): Port device team_slave_1 removed
[  110.616458][ T8468] team0 (unregistering): Port device team_slave_0 removed
[  111.114508][    C0] kye 0003:0458:5011.0005: usb_submit_urb(ctrl) failed: -1
[  111.139683][ T9016] netlink: 144 bytes leftover after parsing attributes in process `syz.7.989'.
[  111.163763][ T8915] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  111.170848][ T8915] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  111.177261][ T8915] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  111.183992][ T8915] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  111.244572][ T8915] 8021q: adding VLAN 0 to HW filter on device bond0
[  111.253554][ T9029] dvmrp17: entered allmulticast mode
[  111.256363][ T9029] dvmrp17: left allmulticast mode
[  111.278978][ T8915] 8021q: adding VLAN 0 to HW filter on device team0
[  111.293504][ T1065] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.295746][ T1065] bridge0: port 1(bridge_slave_0) entered forwarding state
[  111.301183][ T8455] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.303442][ T8455] bridge0: port 2(bridge_slave_1) entered forwarding state
[  111.324396][ T8915] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  111.327706][ T8915] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  111.448380][ T8915] 8021q: adding VLAN 0 to HW filter on device batadv0
[  111.562217][   T63] Bluetooth: hci0: command tx timeout
[  111.615396][ T8915] veth0_vlan: entered promiscuous mode
[  111.620231][ T8915] veth1_vlan: entered promiscuous mode
[  111.638877][ T8915] veth0_macvtap: entered promiscuous mode
[  111.642932][ T8915] veth1_macvtap: entered promiscuous mode
[  111.655983][ T8915] batman_adv: batadv0: Interface activated: batadv_slave_0
[  111.657907][ T9058] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9058 comm=syz.6.995
[  111.662656][ T8915] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.669824][ T1065] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.674195][ T1065] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.677273][ T1065] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.679799][ T1065] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.723583][ T1065] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.727110][ T1065] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.744553][   T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.747117][   T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.823846][ T9068] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  111.827360][ T9068] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  111.885653][ T9073] FAULT_INJECTION: forcing a failure.
[  111.885653][ T9073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.889596][ T9073] CPU: 3 UID: 0 PID: 9073 Comm: syz.8.1000 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  111.889612][ T9073] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.889619][ T9073] Call Trace:
[  111.889624][ T9073]  <TASK>
[  111.889629][ T9073]  dump_stack_lvl+0x16c/0x1f0
[  111.889645][ T9073]  should_fail_ex+0x512/0x640
[  111.889660][ T9073]  _copy_to_user+0x32/0xd0
[  111.889676][ T9073]  simple_read_from_buffer+0xcb/0x170
[  111.889691][ T9073]  proc_fail_nth_read+0x197/0x240
[  111.889705][ T9073]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  111.889719][ T9073]  ? rw_verify_area+0xcf/0x6c0
[  111.889736][ T9073]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  111.889749][ T9073]  vfs_read+0x1e1/0xcf0
[  111.889762][ T9073]  ? __pfx___mutex_lock+0x10/0x10
[  111.889776][ T9073]  ? __pfx_vfs_read+0x10/0x10
[  111.889790][ T9073]  ? __fget_files+0x20e/0x3c0
[  111.889807][ T9073]  ksys_read+0x12a/0x250
[  111.889818][ T9073]  ? __pfx_ksys_read+0x10/0x10
[  111.889829][ T9073]  ? fput+0x9b/0xd0
[  111.889847][ T9073]  do_syscall_64+0xcd/0x4c0
[  111.889860][ T9073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.889872][ T9073] RIP: 0033:0x7f982bb8d5fc
[  111.889881][ T9073] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  111.889892][ T9073] RSP: 002b:00007f982ca7d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  111.889904][ T9073] RAX: ffffffffffffffda RBX: 00007f982bdb5fa0 RCX: 00007f982bb8d5fc
[  111.889911][ T9073] RDX: 000000000000000f RSI: 00007f982ca7d0a0 RDI: 0000000000000006
[  111.889918][ T9073] RBP: 00007f982ca7d090 R08: 0000000000000000 R09: 0000000000000000
[  111.889925][ T9073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.889931][ T9073] R13: 00007f982bdb6038 R14: 00007f982bdb5fa0 R15: 00007ffc8c0a1ac8
[  111.889946][ T9073]  </TASK>
[  112.043109][ T9076] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1001'.
[  112.045994][ T9076] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  112.048430][ T9076] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  112.140107][ T9076] binder: BC_ACQUIRE_RESULT not supported
[  112.142825][ T9076] binder: 9075:9076 ioctl c0306201 200000000180 returned -22
[  112.207630][ T6986] usb 11-1: USB disconnect, device number 5
[  112.351187][ T9095] bridge0: port 3(syz_tun) entered blocking state
[  112.355267][ T9095] bridge0: port 3(syz_tun) entered disabled state
[  112.357393][ T9095] syz_tun: entered allmulticast mode
[  112.361097][ T9095] syz_tun: entered promiscuous mode
[  112.363618][ T9095] bridge0: port 3(syz_tun) entered blocking state
[  112.365742][ T9095] bridge0: port 3(syz_tun) entered forwarding state
[  112.367971][   T63] Bluetooth: hci0: unknown advertising packet type: 0x82
[  112.368409][   T63] Bluetooth: hci0: Malformed LE Event: 0x02
[  112.399186][ T9102] autofs: Bad value for 'fd'
[  112.413019][ T6986] usb 11-1: new full-speed USB device number 6 using dummy_hcd
[  112.575913][ T6986] usb 11-1: unable to get BOS descriptor or descriptor too short
[  112.579107][ T6986] usb 11-1: not running at top speed; connect to a high speed hub
[  112.592702][ T6986] usb 11-1: config 1 interface 0 altsetting 6 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  112.597216][ T6986] usb 11-1: config 1 interface 0 has no altsetting 0
[  112.601627][ T6986] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  112.604945][ T6986] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.607579][ T6986] usb 11-1: Product: syz
[  112.609003][ T6986] usb 11-1: Manufacturer: syz
[  112.610552][ T6986] usb 11-1: SerialNumber: syz
[  112.772029][ T6050] usb 12-1: new high-speed USB device number 3 using dummy_hcd
[  112.827223][ T9064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.831040][ T9064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.842431][ T6019] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  112.848814][ T6986] cdc_ether 11-1:1.0: probe with driver cdc_ether failed with error -71
[  112.858267][ T6986] usb 11-1: USB disconnect, device number 6
[  112.924563][ T6050] usb 12-1: Using ep0 maxpacket: 8
[  112.929838][ T6050] usb 12-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  112.932811][ T6050] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.935178][ T6050] usb 12-1: Product: syz
[  112.936449][ T6050] usb 12-1: Manufacturer: syz
[  112.937907][ T6050] usb 12-1: SerialNumber: syz
[  112.941084][ T6050] usb 12-1: config 0 descriptor??
[  112.947196][ T9132] FAULT_INJECTION: forcing a failure.
[  112.947196][ T9132] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.951569][ T9132] CPU: 1 UID: 0 PID: 9132 Comm: syz.8.1024 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  112.951585][ T9132] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.951592][ T9132] Call Trace:
[  112.951597][ T9132]  <TASK>
[  112.951602][ T9132]  dump_stack_lvl+0x16c/0x1f0
[  112.951618][ T9132]  should_fail_ex+0x512/0x640
[  112.951635][ T9132]  _copy_from_user+0x2e/0xd0
[  112.951651][ T9132]  kvm_vcpu_ioctl+0x103c/0x1690
[  112.951669][ T9132]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  112.951684][ T9132]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  112.951699][ T9132]  ? do_vfs_ioctl+0x128/0x14f0
[  112.951716][ T9132]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  112.951734][ T9132]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  112.951756][ T9132]  ? hook_file_ioctl_common+0x145/0x410
[  112.951771][ T9132]  ? selinux_file_ioctl+0x180/0x270
[  112.951787][ T9132]  ? selinux_file_ioctl+0xb4/0x270
[  112.951803][ T9132]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  112.951831][ T9132]  __x64_sys_ioctl+0x18b/0x210
[  112.951851][ T9132]  do_syscall_64+0xcd/0x4c0
[  112.951865][ T9132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.951876][ T9132] RIP: 0033:0x7f982bb8ebe9
[  112.951886][ T9132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.951898][ T9132] RSP: 002b:00007f982ca7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  112.951913][ T9132] RAX: ffffffffffffffda RBX: 00007f982bdb5fa0 RCX: 00007f982bb8ebe9
[  112.951924][ T9132] RDX: 00002000000000c0 RSI: 000000004004ae99 RDI: 0000000000000005
[  112.951934][ T9132] RBP: 00007f982ca7d090 R08: 0000000000000000 R09: 0000000000000000
[  112.951944][ T9132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.951954][ T9132] R13: 00007f982bdb6038 R14: 00007f982bdb5fa0 R15: 00007ffc8c0a1ac8
[  112.951978][ T9132]  </TASK>
[  113.032110][ T6019] usb 10-1: Using ep0 maxpacket: 8
[  113.037834][ T6019] usb 10-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  113.041617][ T6019] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.045606][ T6019] usb 10-1: Product: syz
[  113.047508][ T6019] usb 10-1: Manufacturer: syz
[  113.049502][ T6019] usb 10-1: SerialNumber: syz
[  113.056508][ T6019] usb 10-1: config 0 descriptor??
[  113.102142][ T9134] fuse: Bad value for 'fd'
[  113.147280][ T6050] usb 12-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  113.147578][ T9090] FAULT_INJECTION: forcing a failure.
[  113.147578][ T9090] name failslab, interval 1, probability 0, space 0, times 0
[  113.154049][ T9090] CPU: 0 UID: 0 PID: 9090 Comm: syz.7.1007 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  113.154065][ T9090] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.154072][ T9090] Call Trace:
[  113.154077][ T9090]  <TASK>
[  113.154081][ T9090]  dump_stack_lvl+0x16c/0x1f0
[  113.154097][ T9090]  should_fail_ex+0x512/0x640
[  113.154110][ T9090]  ? fs_reclaim_acquire+0xae/0x150
[  113.154126][ T9090]  ? tomoyo_encode2+0x100/0x3e0
[  113.154142][ T9090]  should_failslab+0xc2/0x120
[  113.154156][ T9090]  __kmalloc_noprof+0xd2/0x510
[  113.154168][ T9090]  ? d_absolute_path+0x136/0x1a0
[  113.154191][ T9090]  tomoyo_encode2+0x100/0x3e0
[  113.154209][ T9090]  tomoyo_encode+0x29/0x50
[  113.154228][ T9090]  tomoyo_realpath_from_path+0x18f/0x6e0
[  113.154249][ T9090]  tomoyo_path_number_perm+0x245/0x580
[  113.154263][ T9090]  ? tomoyo_path_number_perm+0x237/0x580
[  113.154278][ T9090]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  113.154306][ T9090]  ? find_held_lock+0x2b/0x80
[  113.154321][ T9090]  ? hook_file_ioctl_common+0x145/0x410
[  113.154335][ T9090]  ? __fget_files+0x20e/0x3c0
[  113.154350][ T9090]  security_file_ioctl+0x9b/0x240
[  113.154367][ T9090]  __x64_sys_ioctl+0xb7/0x210
[  113.154385][ T9090]  do_syscall_64+0xcd/0x4c0
[  113.154398][ T9090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.154410][ T9090] RIP: 0033:0x7f39a2b8e7eb
[  113.154420][ T9090] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  113.154431][ T9090] RSP: 002b:00007f39a39c9f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  113.154442][ T9090] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f39a2b8e7eb
[  113.154450][ T9090] RDX: 00007f39a39c9fe0 RSI: 00000000c0085504 RDI: 0000000000000003
[  113.154458][ T9090] RBP: 00007f39a39cc090 R08: 0000000000001000 R09: 0000000000000601
[  113.154465][ T9090] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f39a39c9fe8
[  113.154472][ T9090] R13: 0000000000000000 R14: 00007f39a2db5fa0 R15: 00007ffc1e9319e8
[  113.154486][ T9090]  </TASK>
[  113.154503][ T9090] ERROR: Out of memory at tomoyo_realpath_from_path.
[  113.176649][ T9138] overlayfs: missing 'lowerdir'
[  113.225920][ T6050] dvb_usb_rtl28xxu 12-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  113.229762][ T6050] usb 12-1: USB disconnect, device number 3
[  113.256718][   T40] kauditd_printk_skb: 283 callbacks suppressed
[  113.256736][   T40] audit: type=1400 audit(1755268821.587:961): avc:  denied  { create } for  pid=9139 comm="syz.8.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  113.261594][ T6019] usb 10-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  113.267863][   T40] audit: type=1400 audit(1755268821.587:962): avc:  denied  { ioctl } for  pid=9139 comm="syz.8.1028" path="socket:[29343]" dev="sockfs" ino=29343 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  113.269551][ T9140] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1028'.
[  113.269643][ T9140] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  113.272176][ T6019] dvb_usb_rtl28xxu 10-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  113.281481][   T40] audit: type=1400 audit(1755268821.587:963): avc:  denied  { bpf } for  pid=9139 comm="syz.8.1028" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  113.285661][ T6019] usb 10-1: USB disconnect, device number 4
[  113.290017][   T40] audit: type=1400 audit(1755268821.587:964): avc:  denied  { perfmon } for  pid=9139 comm="syz.8.1028" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  113.303755][   T40] audit: type=1400 audit(1755268821.587:965): avc:  denied  { prog_run } for  pid=9139 comm="syz.8.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  113.309571][   T40] audit: type=1400 audit(1755268821.587:966): avc:  denied  { create } for  pid=9139 comm="syz.8.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  113.315559][   T40] audit: type=1400 audit(1755268821.607:967): avc:  denied  { ioctl } for  pid=9139 comm="syz.8.1028" path="socket:[30964]" dev="sockfs" ino=30964 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  113.337510][ T9140] batman_adv: batadv0: Removing interface: batadv_slave_1
[  113.389659][   T40] audit: type=1400 audit(1755268821.717:968): avc:  denied  { create } for  pid=9142 comm="syz.6.1029" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  113.397985][   T40] audit: type=1400 audit(1755268821.717:969): avc:  denied  { map_create } for  pid=9142 comm="syz.6.1029" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  113.642092][   T63] Bluetooth: hci0: command tx timeout
[  113.651967][   T60] usb 11-1: new high-speed USB device number 7 using dummy_hcd
[  113.801983][   T60] usb 11-1: Using ep0 maxpacket: 8
[  113.802034][   T40] audit: type=1400 audit(1755268822.127:970): avc:  denied  { create } for  pid=9148 comm="syz.5.1031" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  113.814925][   T60] usb 11-1: config 0 has an invalid interface number: 55 but max is 0
[  113.818305][   T60] usb 11-1: config 0 has no interface number 0
[  113.828190][   T60] usb 11-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  113.833612][   T60] usb 11-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  113.838546][   T60] usb 11-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  113.843759][   T60] usb 11-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  113.848923][   T60] usb 11-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  113.853061][   T60] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.858652][   T60] usb 11-1: config 0 descriptor??
[  113.869598][   T60] ldusb 11-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  113.894416][ T9155] ALSA: seq fatal error: cannot create timer (-16)
[  113.905472][ T9157] netlink: 220 bytes leftover after parsing attributes in process `syz.5.1035'.
[  113.939028][ T9159] overlayfs: missing 'lowerdir'
[  114.017681][ T9167] nfs: Unknown parameter 'À'
[  114.033285][ T9169] batadv_slave_0: entered promiscuous mode
[  114.068849][   T60] usb 11-1: USB disconnect, device number 7
[  114.079735][   T60] ldusb 11-1:0.55: LD USB Device #0 now disconnected
[  114.605667][ T9182] FAULT_INJECTION: forcing a failure.
[  114.605667][ T9182] name failslab, interval 1, probability 0, space 0, times 0
[  114.609588][ T9182] CPU: 1 UID: 0 PID: 9182 Comm: syz.6.1045 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  114.609603][ T9182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.609611][ T9182] Call Trace:
[  114.609615][ T9182]  <TASK>
[  114.609620][ T9182]  dump_stack_lvl+0x16c/0x1f0
[  114.609637][ T9182]  should_fail_ex+0x512/0x640
[  114.609652][ T9182]  should_failslab+0xc2/0x120
[  114.609666][ T9182]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  114.609680][ T9182]  ? sidtab_sid2str_get+0x17a/0x680
[  114.609700][ T9182]  kmemdup_noprof+0x29/0x60
[  114.609713][ T9182]  sidtab_sid2str_get+0x17a/0x680
[  114.609732][ T9182]  sidtab_entry_to_string+0x33/0x110
[  114.609749][ T9182]  security_sid_to_context_core+0x35c/0x640
[  114.609767][ T9182]  avc_audit_post_callback+0x1aa/0x8f0
[  114.609778][ T9182]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  114.609790][ T9182]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  114.609800][ T9182]  ? skb_put+0x138/0x1b0
[  114.609816][ T9182]  ? audit_log_n_string+0x253/0x540
[  114.609832][ T9182]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  114.609842][ T9182]  common_lsm_audit+0x24b/0x300
[  114.609859][ T9182]  ? __pfx_common_lsm_audit+0x10/0x10
[  114.609876][ T9182]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  114.609894][ T9182]  ? avc_update_node.isra.0+0x4c0/0xb60
[  114.609907][ T9182]  slow_avc_audit+0x186/0x210
[  114.609918][ T9182]  ? __pfx_slow_avc_audit+0x10/0x10
[  114.609931][ T9182]  ? avc_denied+0x14a/0x190
[  114.609943][ T9182]  ? avc_has_perm_noaudit+0x306/0x3b0
[  114.609956][ T9182]  avc_has_perm+0x1b5/0x1f0
[  114.609968][ T9182]  ? __pfx_avc_has_perm+0x10/0x10
[  114.609982][ T9182]  ? __lock_acquire+0x62e/0x1ce0
[  114.610001][ T9182]  inode_has_perm+0x168/0x1d0
[  114.610014][ T9182]  file_has_perm+0x2e4/0x350
[  114.610028][ T9182]  ? __pfx_file_has_perm+0x10/0x10
[  114.610042][ T9182]  ? get_pid_task+0xfc/0x250
[  114.610055][ T9182]  selinux_file_permission+0x498/0x660
[  114.610073][ T9182]  security_file_permission+0x1e3/0x210
[  114.610091][ T9182]  rw_verify_area+0xb9/0x6c0
[  114.610111][ T9182]  vfs_write+0x146/0x11d0
[  114.610125][ T9182]  ? __pfx_vfs_write+0x10/0x10
[  114.610136][ T9182]  ? find_held_lock+0x2b/0x80
[  114.610150][ T9182]  ? __fget_files+0x204/0x3c0
[  114.610165][ T9182]  ? __fget_files+0x20e/0x3c0
[  114.610182][ T9182]  ksys_write+0x1f8/0x250
[  114.610193][ T9182]  ? __pfx_ksys_write+0x10/0x10
[  114.610208][ T9182]  do_syscall_64+0xcd/0x4c0
[  114.610222][ T9182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.610234][ T9182] RIP: 0033:0x7f345258ebe9
[  114.610243][ T9182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.610255][ T9182] RSP: 002b:00007f34533a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  114.610266][ T9182] RAX: ffffffffffffffda RBX: 00007f34527b5fa0 RCX: 00007f345258ebe9
[  114.610274][ T9182] RDX: 0000000000000007 RSI: 0000200000000340 RDI: 0000000000000004
[  114.610281][ T9182] RBP: 00007f34533a6090 R08: 0000000000000000 R09: 0000000000000000
[  114.610287][ T9182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.610294][ T9182] R13: 00007f34527b6038 R14: 00007f34527b5fa0 R15: 00007ffcec99daa8
[  114.610308][ T9182]  </TASK>
[  114.610400][ T9182] Bluetooth: MGMT ver 1.23
[  114.755110][ T9184] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1046'.
[  114.840155][ T9189] overlayfs: missing 'workdir'
[  114.872914][ T9191] ieee802154 phy0 wpan0: encryption failed: -22
[  114.914579][ T9168] batadv_slave_0: left promiscuous mode
[  115.013387][ T9198] netlink: 96 bytes leftover after parsing attributes in process `syz.5.1051'.
[  115.049159][ T9206] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1054'.
[  115.052294][ T9206] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  115.055847][ T9206] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  115.061166][ T9206] binder: BC_ACQUIRE_RESULT not supported
[  115.064488][ T9206] binder: 9203:9206 ioctl c0306201 200000000180 returned -22
[  115.096336][ T9209] overlayfs: missing 'workdir'
[  115.734513][   T63] Bluetooth: hci0: command tx timeout
[  116.080727][ T9213] batadv_slave_0: entered promiscuous mode
[  116.084317][ T9217] batadv_slave_0: left promiscuous mode
[  116.151171][ T9234] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1061'.
[  116.155959][ T9234] netlink: 31 bytes leftover after parsing attributes in process `syz.6.1061'.
[  116.162517][ T9234] netlink: 'syz.6.1061': attribute type 3 has an invalid length.
[  116.165540][ T9234] netlink: 'syz.6.1061': attribute type 2 has an invalid length.
[  116.165562][ T9234] netlink: 31 bytes leftover after parsing attributes in process `syz.6.1061'.
[  116.204899][ T9241] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1064'.
[  116.251471][ T9247] overlayfs: missing 'workdir'
[  116.287755][   T63] Bluetooth: hci1: unknown advertising packet type: 0x82
[  116.287787][   T63] Bluetooth: hci1: Malformed LE Event: 0x02
[  116.300811][ T9259] fuse: Unknown parameter ''
[  116.339368][ T9267] batadv_slave_0: entered promiscuous mode
[  116.514216][ T9283] netlink: 'syz.6.1078': attribute type 6 has an invalid length.
[  116.750376][   T63] Bluetooth: hci1: unknown advertising packet type: 0x82
[  116.750432][   T63] Bluetooth: hci1: Malformed LE Event: 0x02
[  116.789762][ T9298] FAULT_INJECTION: forcing a failure.
[  116.789762][ T9298] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.795683][ T9298] CPU: 3 UID: 0 PID: 9298 Comm: syz.5.1083 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  116.795710][ T9298] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.795722][ T9298] Call Trace:
[  116.795729][ T9298]  <TASK>
[  116.795736][ T9298]  dump_stack_lvl+0x16c/0x1f0
[  116.795759][ T9298]  should_fail_ex+0x512/0x640
[  116.795782][ T9298]  _copy_to_user+0x32/0xd0
[  116.795806][ T9298]  drm_ioctl+0x5eb/0xc30
[  116.795831][ T9298]  ? __pfx_drm_prime_handle_to_fd_ioctl+0x10/0x10
[  116.795859][ T9298]  ? __pfx_drm_ioctl+0x10/0x10
[  116.795889][ T9298]  ? selinux_file_ioctl+0x180/0x270
[  116.795913][ T9298]  ? selinux_file_ioctl+0xb4/0x270
[  116.795938][ T9298]  ? __pfx_drm_ioctl+0x10/0x10
[  116.795959][ T9298]  __x64_sys_ioctl+0x18b/0x210
[  116.795987][ T9298]  do_syscall_64+0xcd/0x4c0
[  116.796027][ T9298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.796045][ T9298] RIP: 0033:0x7f413a98ebe9
[  116.796060][ T9298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.796116][ T9298] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  116.796134][ T9298] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  116.796146][ T9298] RDX: 0000200000000340 RSI: 00000000c00c642d RDI: 0000000000000003
[  116.796157][ T9298] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  116.796167][ T9298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.796180][ T9298] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  116.796204][ T9298]  </TASK>
[  116.998319][ T9308] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  117.148560][ T9320] tipc: Started in network mode
[  117.150604][ T9320] tipc: Node identity 03000000000000004879ffffffffffff, cluster identity 4711
[  117.187243][ T9327] __nla_validate_parse: 1 callbacks suppressed
[  117.187260][ T9327] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1092'.
[  117.194260][ T9327] syz_tun: left allmulticast mode
[  117.196364][ T9327] syz_tun: left promiscuous mode
[  117.198663][ T9327] bridge0: port 3(syz_tun) entered disabled state
[  117.203699][ T9325] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1091'.
[  117.203731][ T9327] bridge_slave_1: left allmulticast mode
[  117.208424][ T9327] bridge_slave_1: left promiscuous mode
[  117.210310][ T9327] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.215005][ T9327] bridge_slave_0: left allmulticast mode
[  117.216897][ T9327] bridge_slave_0: left promiscuous mode
[  117.218868][ T9327] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.277080][ T9266] batadv_slave_0: left promiscuous mode
[  117.326690][ T8455] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  117.330525][ T8455] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.330595][ T9333] FAULT_INJECTION: forcing a failure.
[  117.330595][ T9333] name failslab, interval 1, probability 0, space 0, times 0
[  117.340494][ T9333] CPU: 2 UID: 0 PID: 9333 Comm: syz.7.1095 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  117.340512][ T9333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.340519][ T9333] Call Trace:
[  117.340523][ T9333]  <TASK>
[  117.340528][ T9333]  dump_stack_lvl+0x16c/0x1f0
[  117.340544][ T9333]  should_fail_ex+0x512/0x640
[  117.340558][ T9333]  ? __kmalloc_noprof+0xbf/0x510
[  117.340571][ T9333]  ? cond_policydb_dup+0x11a/0x750
[  117.340584][ T9333]  should_failslab+0xc2/0x120
[  117.340597][ T9333]  __kmalloc_noprof+0xd2/0x510
[  117.340611][ T9333]  cond_policydb_dup+0x11a/0x750
[  117.340624][ T9333]  ? security_set_bools+0x115/0x6c0
[  117.340636][ T9333]  ? __asan_memcpy+0x3c/0x60
[  117.340655][ T9333]  security_set_bools+0x13f/0x6c0
[  117.340669][ T9333]  ? sel_commit_bools_write+0x25c/0x420
[  117.340684][ T9333]  sel_commit_bools_write+0x36e/0x420
[  117.340697][ T9333]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  117.340715][ T9333]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  117.340728][ T9333]  vfs_writev+0x5df/0xde0
[  117.340743][ T9333]  ? __pfx_vfs_writev+0x10/0x10
[  117.340752][ T9333]  ? __mutex_lock+0x1c4/0x10b0
[  117.340764][ T9333]  ? find_held_lock+0x2b/0x80
[  117.340782][ T9333]  ? __pfx___mutex_lock+0x10/0x10
[  117.340800][ T9333]  ? __fget_files+0x20e/0x3c0
[  117.340812][ T9333]  ? __fget_files+0x140/0x3c0
[  117.340827][ T9333]  ? do_writev+0x132/0x340
[  117.340836][ T9333]  do_writev+0x132/0x340
[  117.340847][ T9333]  ? __pfx_do_writev+0x10/0x10
[  117.340861][ T9333]  do_syscall_64+0xcd/0x4c0
[  117.340875][ T9333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.340887][ T9333] RIP: 0033:0x7f39a2b8ebe9
[  117.340897][ T9333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.340908][ T9333] RSP: 002b:00007f39a39cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  117.340920][ T9333] RAX: ffffffffffffffda RBX: 00007f39a2db5fa0 RCX: 00007f39a2b8ebe9
[  117.340927][ T9333] RDX: 0000000000000001 RSI: 00002000000025c0 RDI: 0000000000000003
[  117.340934][ T9333] RBP: 00007f39a39cc090 R08: 0000000000000000 R09: 0000000000000000
[  117.340940][ T9333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.340947][ T9333] R13: 00007f39a2db6038 R14: 00007f39a2db5fa0 R15: 00007ffc1e9319e8
[  117.340976][ T9333]  </TASK>
[  117.426638][    C2] vkms_vblank_simulate: vblank timer overrun
[  117.457037][ T9342] FAULT_INJECTION: forcing a failure.
[  117.457037][ T9342] name failslab, interval 1, probability 0, space 0, times 0
[  117.461292][ T9342] CPU: 1 UID: 0 PID: 9342 Comm: syz.5.1098 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  117.461309][ T9342] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.461316][ T9342] Call Trace:
[  117.461320][ T9342]  <TASK>
[  117.461325][ T9342]  dump_stack_lvl+0x16c/0x1f0
[  117.461340][ T9342]  should_fail_ex+0x512/0x640
[  117.461353][ T9342]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  117.461368][ T9342]  should_failslab+0xc2/0x120
[  117.461382][ T9342]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  117.461393][ T9342]  ? __alloc_skb+0x2b2/0x380
[  117.461414][ T9342]  __alloc_skb+0x2b2/0x380
[  117.461432][ T9342]  ? __pfx___alloc_skb+0x10/0x10
[  117.461450][ T9342]  ? rcu_is_watching+0x12/0xc0
[  117.461465][ T9342]  ? nl80211_parse_counter_offsets+0x252/0x2d0
[  117.461487][ T9342]  nl80211_tx_mgmt+0x747/0xd60
[  117.461504][ T9342]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[  117.461527][ T9342]  ? nl80211_pre_doit+0x1b0/0xb10
[  117.461546][ T9342]  genl_family_rcv_msg_doit+0x206/0x2f0
[  117.461562][ T9342]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  117.461581][ T9342]  ? bpf_lsm_capable+0x9/0x10
[  117.461598][ T9342]  ? security_capable+0x7e/0x260
[  117.461615][ T9342]  ? ns_capable+0xd7/0x110
[  117.461630][ T9342]  genl_rcv_msg+0x55c/0x800
[  117.461646][ T9342]  ? __pfx_genl_rcv_msg+0x10/0x10
[  117.461661][ T9342]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  117.461676][ T9342]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[  117.461690][ T9342]  ? __pfx_nl80211_post_doit+0x10/0x10
[  117.461708][ T9342]  netlink_rcv_skb+0x155/0x420
[  117.461720][ T9342]  ? __pfx_genl_rcv_msg+0x10/0x10
[  117.461735][ T9342]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  117.461753][ T9342]  ? netlink_deliver_tap+0x1ae/0xd30
[  117.461767][ T9342]  genl_rcv+0x28/0x40
[  117.461779][ T9342]  netlink_unicast+0x5aa/0x870
[  117.461794][ T9342]  ? __pfx_netlink_unicast+0x10/0x10
[  117.461807][ T9342]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  117.461834][ T9342]  netlink_sendmsg+0x8d1/0xdd0
[  117.461851][ T9342]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.461869][ T9342]  ____sys_sendmsg+0xa95/0xc70
[  117.461884][ T9342]  ? copy_msghdr_from_user+0x10a/0x160
[  117.461896][ T9342]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.461917][ T9342]  ___sys_sendmsg+0x134/0x1d0
[  117.461929][ T9342]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.461953][ T9342]  ? __mutex_unlock_slowpath+0x100/0x800
[  117.461970][ T9342]  __sys_sendmsg+0x16d/0x220
[  117.461981][ T9342]  ? __pfx___sys_sendmsg+0x10/0x10
[  117.462002][ T9342]  do_syscall_64+0xcd/0x4c0
[  117.462015][ T9342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.462026][ T9342] RIP: 0033:0x7f413a98ebe9
[  117.462036][ T9342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.462047][ T9342] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.462059][ T9342] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  117.462066][ T9342] RDX: 0000000000000010 RSI: 0000200000000240 RDI: 0000000000000003
[  117.462073][ T9342] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  117.462079][ T9342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.462086][ T9342] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  117.462100][ T9342]  </TASK>
[  117.609305][ T8455] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  117.619184][ T8455] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.628961][ T9337] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=3089888063 (3089888063 ns) > initial count (2126324423 ns). Using initial count to start timer.
[  117.698687][ T8455] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  117.703177][ T8455] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.712101][ T9361] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1105'.
[  117.765352][ T8455] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  117.770390][ T8455] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.870446][ T8455] team0: left allmulticast mode
[  117.878406][ T8455] team_slave_0: left allmulticast mode
[  117.880144][ T8455] team_slave_1: left allmulticast mode
[  117.902034][ T8455] bridge0: port 3(team0) entered disabled state
[  117.906321][ T8455] bridge_slave_1: left allmulticast mode
[  117.908119][ T8455] bridge_slave_1: left promiscuous mode
[  117.910011][ T8455] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.915738][ T8455] bridge_slave_0: left allmulticast mode
[  117.917603][ T8455] bridge_slave_0: left promiscuous mode
[  117.919455][ T8455] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.994555][ T9358] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  118.027278][ T8455] dvmrp1 (unregistering): left allmulticast mode
[  118.047569][ T8455] bond0 (unregistering): (slave vxlan0): Releasing backup interface
[  118.164568][   T53] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  118.271340][   T40] kauditd_printk_skb: 207 callbacks suppressed
[  118.271358][   T40] audit: type=1400 audit(1755268826.597:1178): avc:  denied  { read write } for  pid=8915 comm="syz-executor" name="loop8" dev="devtmpfs" ino=666 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  118.286108][   T40] audit: type=1400 audit(1755268826.597:1179): avc:  denied  { open } for  pid=8915 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=666 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  118.293818][   T40] audit: type=1400 audit(1755268826.597:1180): avc:  denied  { ioctl } for  pid=8915 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=666 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  118.305422][   T40] audit: type=1400 audit(1755268826.637:1181): avc:  denied  { read } for  pid=9383 comm="syz.6.1111" dev="nsfs" ino=4026533138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  118.312377][   T40] audit: type=1400 audit(1755268826.637:1182): avc:  denied  { open } for  pid=9383 comm="syz.6.1111" path="net:[4026533138]" dev="nsfs" ino=4026533138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  118.322330][   T53] usb 10-1: Using ep0 maxpacket: 8
[  118.324662][   T40] audit: type=1400 audit(1755268826.637:1183): avc:  denied  { create } for  pid=9383 comm="syz.6.1111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  118.333336][   T40] audit: type=1400 audit(1755268826.637:1184): avc:  denied  { create } for  pid=9383 comm="syz.6.1111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  118.335536][ T9396] FAULT_INJECTION: forcing a failure.
[  118.335536][ T9396] name failslab, interval 1, probability 0, space 0, times 0
[  118.343433][   T53] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  118.344557][   T40] audit: type=1400 audit(1755268826.637:1185): avc:  denied  { setopt } for  pid=9383 comm="syz.6.1111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  118.344594][   T40] audit: type=1400 audit(1755268826.637:1186): avc:  denied  { ioctl } for  pid=9383 comm="syz.6.1111" path="socket:[30366]" dev="sockfs" ino=30366 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  118.344621][   T40] audit: type=1400 audit(1755268826.667:1187): avc:  denied  { bind } for  pid=9395 comm="syz.8.1113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  118.345148][ T8455] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  118.346864][ T9396] CPU: 2 UID: 0 PID: 9396 Comm: syz.8.1113 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  118.346880][ T9396] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.346888][ T9396] Call Trace:
[  118.346892][ T9396]  <TASK>
[  118.346897][ T9396]  dump_stack_lvl+0x16c/0x1f0
[  118.346913][ T9396]  should_fail_ex+0x512/0x640
[  118.346928][ T9396]  should_failslab+0xc2/0x120
[  118.346942][ T9396]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  118.346956][ T9396]  ? sidtab_sid2str_get+0x17a/0x680
[  118.346976][ T9396]  kmemdup_noprof+0x29/0x60
[  118.346989][ T9396]  sidtab_sid2str_get+0x17a/0x680
[  118.347007][ T9396]  sidtab_entry_to_string+0x33/0x110
[  118.347025][ T9396]  security_sid_to_context_core+0x35c/0x640
[  118.347043][ T9396]  avc_audit_post_callback+0x1aa/0x8f0
[  118.347054][ T9396]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  118.347066][ T9396]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  118.347077][ T9396]  ? skb_put+0x138/0x1b0
[  118.347092][ T9396]  ? audit_log_n_string+0x253/0x540
[  118.347108][ T9396]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  118.347119][ T9396]  common_lsm_audit+0x24b/0x300
[  118.347136][ T9396]  ? __pfx_common_lsm_audit+0x10/0x10
[  118.347153][ T9396]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  118.347172][ T9396]  ? avc_update_node.isra.0+0x4c0/0xb60
[  118.347184][ T9396]  slow_avc_audit+0x186/0x210
[  118.347195][ T9396]  ? __pfx_slow_avc_audit+0x10/0x10
[  118.347208][ T9396]  ? avc_denied+0x14a/0x190
[  118.347224][ T9396]  ? avc_has_perm_noaudit+0x306/0x3b0
[  118.347237][ T9396]  avc_has_perm+0x1b5/0x1f0
[  118.347250][ T9396]  ? __pfx_avc_has_perm+0x10/0x10
[  118.347263][ T9396]  ? __lock_acquire+0x62e/0x1ce0
[  118.347284][ T9396]  inode_has_perm+0x168/0x1d0
[  118.347297][ T9396]  file_has_perm+0x2e4/0x350
[  118.347310][ T9396]  ? __pfx_file_has_perm+0x10/0x10
[  118.347325][ T9396]  ? get_pid_task+0xfc/0x250
[  118.347338][ T9396]  selinux_file_permission+0x498/0x660
[  118.347357][ T9396]  security_file_permission+0x1e3/0x210
[  118.347375][ T9396]  rw_verify_area+0xb9/0x6c0
[  118.347394][ T9396]  vfs_write+0x146/0x11d0
[  118.347408][ T9396]  ? __pfx_vfs_write+0x10/0x10
[  118.347418][ T9396]  ? find_held_lock+0x2b/0x80
[  118.347432][ T9396]  ? __fget_files+0x204/0x3c0
[  118.347447][ T9396]  ? __fget_files+0x20e/0x3c0
[  118.347463][ T9396]  ksys_write+0x1f8/0x250
[  118.347474][ T9396]  ? __pfx_ksys_write+0x10/0x10
[  118.347489][ T9396]  do_syscall_64+0xcd/0x4c0
[  118.347503][ T9396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.347514][ T9396] RIP: 0033:0x7f982bb8ebe9
[  118.347524][ T9396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.347536][ T9396] RSP: 002b:00007f982ca7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  118.347547][ T9396] RAX: ffffffffffffffda RBX: 00007f982bdb5fa0 RCX: 00007f982bb8ebe9
[  118.347554][ T9396] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000004
[  118.347561][ T9396] RBP: 00007f982ca7d090 R08: 0000000000000000 R09: 0000000000000000
[  118.347568][ T9396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.347574][ T9396] R13: 00007f982bdb6038 R14: 00007f982bdb5fa0 R15: 00007ffc8c0a1ac8
[  118.347589][ T9396]  </TASK>
[  118.348216][   T53] usb 10-1: config 0 has no interface number 0
[  118.348254][   T53] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  118.411339][ T9401] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1115'.
[  118.415876][   T53] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  118.416451][ T8455] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  118.417747][   T53] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  118.427198][ T9401] openvswitch: netlink: Message has 24 unknown bytes.
[  118.429032][   T53] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  118.430893][ T9401] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  118.431962][ T8455] bond0 (unregistering): Released all slaves
[  118.432989][   T53] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  118.530596][   T53] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.536684][   T53] usb 10-1: config 0 descriptor??
[  118.546121][   T53] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  118.551219][ T9404] dummy0: entered promiscuous mode
[  118.637645][ T9412] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1118'.
[  118.640842][ T9412] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1118'.
[  118.712950][ T9418] netlink: 'syz.7.1120': attribute type 25 has an invalid length.
[  118.715504][ T9418] netlink: 'syz.7.1120': attribute type 7 has an invalid length.
[  118.744834][    T9] usb 10-1: USB disconnect, device number 5
[  118.749533][    T9] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[  118.868809][ T9433] FAULT_INJECTION: forcing a failure.
[  118.868809][ T9433] name failslab, interval 1, probability 0, space 0, times 0
[  118.874043][ T9433] CPU: 0 UID: 0 PID: 9433 Comm: syz.7.1123 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  118.874070][ T9433] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.874083][ T9433] Call Trace:
[  118.874090][ T9433]  <TASK>
[  118.874098][ T9433]  dump_stack_lvl+0x16c/0x1f0
[  118.874121][ T9433]  should_fail_ex+0x512/0x640
[  118.874141][ T9433]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  118.874164][ T9433]  should_failslab+0xc2/0x120
[  118.874186][ T9433]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  118.874204][ T9433]  ? ___sys_sendmsg+0x134/0x1d0
[  118.874221][ T9433]  ? __sys_sendmsg+0x16d/0x220
[  118.874237][ T9433]  ? __alloc_skb+0x2b2/0x380
[  118.874268][ T9433]  __alloc_skb+0x2b2/0x380
[  118.874296][ T9433]  ? __pfx___alloc_skb+0x10/0x10
[  118.874333][ T9433]  netlink_dump+0x19b/0xd30
[  118.874356][ T9433]  ? __pfx_netlink_dump+0x10/0x10
[  118.874387][ T9433]  ? __asan_memcpy+0x3c/0x60
[  118.874414][ T9433]  ? kmemdup_noprof+0x49/0x60
[  118.874436][ T9433]  __netlink_dump_start+0x6d6/0x990
[  118.874456][ T9433]  ? nft_netlink_dump_start_rcu+0x63/0x1f0
[  118.874478][ T9433]  nft_netlink_dump_start_rcu+0x81/0x1f0
[  118.874500][ T9433]  nf_tables_getsetelem+0x425/0x530
[  118.874531][ T9433]  ? __pfx_nf_tables_getsetelem+0x10/0x10
[  118.874552][ T9433]  ? __pfx_nf_tables_dump_set_start+0x10/0x10
[  118.874577][ T9433]  ? __pfx_nf_tables_dump_set+0x10/0x10
[  118.874597][ T9433]  ? __pfx_nf_tables_dump_set_done+0x10/0x10
[  118.874637][ T9433]  ? __nla_parse+0x40/0x60
[  118.874661][ T9433]  ? __pfx_nf_tables_getsetelem+0x10/0x10
[  118.874683][ T9433]  nfnetlink_rcv_msg+0x583/0x1200
[  118.874715][ T9433]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  118.874739][ T9433]  ? __lock_acquire+0x62e/0x1ce0
[  118.874769][ T9433]  ? avc_has_perm_noaudit+0x149/0x3b0
[  118.874785][ T9433]  netlink_rcv_skb+0x155/0x420
[  118.874797][ T9433]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  118.874815][ T9433]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  118.874833][ T9433]  ? ns_capable+0xd7/0x110
[  118.874848][ T9433]  nfnetlink_rcv+0x1b3/0x430
[  118.874864][ T9433]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  118.874880][ T9433]  ? netlink_deliver_tap+0x1ae/0xd30
[  118.874894][ T9433]  netlink_unicast+0x5aa/0x870
[  118.874908][ T9433]  ? __pfx_netlink_unicast+0x10/0x10
[  118.874921][ T9433]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  118.874937][ T9433]  netlink_sendmsg+0x8d1/0xdd0
[  118.874952][ T9433]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.874969][ T9433]  ____sys_sendmsg+0xa95/0xc70
[  118.874984][ T9433]  ? copy_msghdr_from_user+0x10a/0x160
[  118.874995][ T9433]  ? __pfx_____sys_sendmsg+0x10/0x10
[  118.875016][ T9433]  ___sys_sendmsg+0x134/0x1d0
[  118.875028][ T9433]  ? __pfx____sys_sendmsg+0x10/0x10
[  118.875051][ T9433]  ? __mutex_unlock_slowpath+0x100/0x800
[  118.875068][ T9433]  __sys_sendmsg+0x16d/0x220
[  118.875080][ T9433]  ? __pfx___sys_sendmsg+0x10/0x10
[  118.875100][ T9433]  do_syscall_64+0xcd/0x4c0
[  118.875113][ T9433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.875125][ T9433] RIP: 0033:0x7f39a2b8ebe9
[  118.875135][ T9433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.875146][ T9433] RSP: 002b:00007f39a39cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.875158][ T9433] RAX: ffffffffffffffda RBX: 00007f39a2db5fa0 RCX: 00007f39a2b8ebe9
[  118.875165][ T9433] RDX: 0000000000008000 RSI: 00002000000002c0 RDI: 0000000000000004
[  118.875172][ T9433] RBP: 00007f39a39cc090 R08: 0000000000000000 R09: 0000000000000000
[  118.875178][ T9433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.875185][ T9433] R13: 00007f39a2db6038 R14: 00007f39a2db5fa0 R15: 00007ffc1e9319e8
[  118.875199][ T9433]  </TASK>
[  119.009254][ T8455] hsr_slave_0: left promiscuous mode
[  119.016984][ T8455] hsr_slave_1: left promiscuous mode
[  119.019100][ T8455] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.021446][ T8455] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.024846][ T8455] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.027280][ T8455] batman_adv: batadv0: Removing interface: batadv_slave_1
[  119.054938][ T8455] veth1_macvtap: left allmulticast mode
[  119.057472][ T8455] veth1_macvtap: left promiscuous mode
[  119.060009][ T8455] veth0_macvtap: left promiscuous mode
[  119.062910][ T8455] veth1_vlan: left promiscuous mode
[  119.065102][ T8455] veth0_vlan: left promiscuous mode
[  119.106476][ T9430] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=3089888063 (3089888063 ns) > initial count (2126324423 ns). Using initial count to start timer.
[  119.499193][ T9448] FAULT_INJECTION: forcing a failure.
[  119.499193][ T9448] name failslab, interval 1, probability 0, space 0, times 0
[  119.503357][ T9448] CPU: 3 UID: 0 PID: 9448 Comm: syz.8.1127 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  119.503382][ T9448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.503393][ T9448] Call Trace:
[  119.503397][ T9448]  <TASK>
[  119.503403][ T9448]  dump_stack_lvl+0x16c/0x1f0
[  119.503419][ T9448]  should_fail_ex+0x512/0x640
[  119.503437][ T9448]  should_failslab+0xc2/0x120
[  119.503451][ T9448]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  119.503466][ T9448]  ? sidtab_sid2str_get+0x17a/0x680
[  119.503486][ T9448]  kmemdup_noprof+0x29/0x60
[  119.503499][ T9448]  sidtab_sid2str_get+0x17a/0x680
[  119.503518][ T9448]  sidtab_entry_to_string+0x33/0x110
[  119.503535][ T9448]  security_sid_to_context_core+0x35c/0x640
[  119.503553][ T9448]  avc_audit_post_callback+0x1aa/0x8f0
[  119.503565][ T9448]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  119.503576][ T9448]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  119.503587][ T9448]  ? skb_put+0x138/0x1b0
[  119.503602][ T9448]  ? audit_log_n_string+0x253/0x540
[  119.503618][ T9448]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  119.503629][ T9448]  common_lsm_audit+0x24b/0x300
[  119.503646][ T9448]  ? __pfx_common_lsm_audit+0x10/0x10
[  119.503663][ T9448]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  119.503682][ T9448]  ? avc_update_node.isra.0+0x4c0/0xb60
[  119.503694][ T9448]  slow_avc_audit+0x186/0x210
[  119.503706][ T9448]  ? __pfx_slow_avc_audit+0x10/0x10
[  119.503719][ T9448]  ? avc_denied+0x14a/0x190
[  119.503730][ T9448]  ? avc_has_perm_noaudit+0x306/0x3b0
[  119.503744][ T9448]  avc_has_perm+0x1b5/0x1f0
[  119.503757][ T9448]  ? __pfx_avc_has_perm+0x10/0x10
[  119.503770][ T9448]  ? __lock_acquire+0x62e/0x1ce0
[  119.503803][ T9448]  inode_has_perm+0x168/0x1d0
[  119.503818][ T9448]  file_has_perm+0x2e4/0x350
[  119.503831][ T9448]  ? __pfx_file_has_perm+0x10/0x10
[  119.503846][ T9448]  ? get_pid_task+0xfc/0x250
[  119.503859][ T9448]  selinux_file_permission+0x498/0x660
[  119.503878][ T9448]  security_file_permission+0x1e3/0x210
[  119.503896][ T9448]  rw_verify_area+0xb9/0x6c0
[  119.503916][ T9448]  vfs_write+0x146/0x11d0
[  119.503931][ T9448]  ? __pfx_vfs_write+0x10/0x10
[  119.503941][ T9448]  ? find_held_lock+0x2b/0x80
[  119.503955][ T9448]  ? __fget_files+0x204/0x3c0
[  119.503970][ T9448]  ? __fget_files+0x20e/0x3c0
[  119.504011][ T9448]  ksys_write+0x1f8/0x250
[  119.504024][ T9448]  ? __pfx_ksys_write+0x10/0x10
[  119.504040][ T9448]  do_syscall_64+0xcd/0x4c0
[  119.504054][ T9448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.504067][ T9448] RIP: 0033:0x7f982bb8ebe9
[  119.504076][ T9448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.504087][ T9448] RSP: 002b:00007f982ca7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  119.504099][ T9448] RAX: ffffffffffffffda RBX: 00007f982bdb5fa0 RCX: 00007f982bb8ebe9
[  119.504106][ T9448] RDX: 0000000000000007 RSI: 0000200000000000 RDI: 0000000000000004
[  119.504113][ T9448] RBP: 00007f982ca7d090 R08: 0000000000000000 R09: 0000000000000000
[  119.504120][ T9448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.504126][ T9448] R13: 00007f982bdb6038 R14: 00007f982bdb5fa0 R15: 00007ffc8c0a1ac8
[  119.504141][ T9448]  </TASK>
[  119.572093][ T8547] usb 10-1: new full-speed USB device number 6 using dummy_hcd
[  119.693023][ T9452] nbd: must specify a size in bytes for the device
[  119.723702][   T63] Bluetooth: hci0: command 0x0401 tx timeout
[  119.777013][ T9455] program syz.6.1130 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  119.793130][ T8547] usb 10-1: unable to get BOS descriptor or descriptor too short
[  119.797299][ T8547] usb 10-1: not running at top speed; connect to a high speed hub
[  119.800924][ T8547] usb 10-1: config 1 interface 0 altsetting 6 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  119.806394][ T8547] usb 10-1: config 1 interface 0 has no altsetting 0
[  119.815513][ T8547] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  119.818503][ T8547] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.821051][ T8547] usb 10-1: Product: syz
[  119.822675][ T8547] usb 10-1: Manufacturer: syz
[  119.824188][ T8547] usb 10-1: SerialNumber: syz
[  119.897628][ T8455] team_slave_1 (unregistering): left promiscuous mode
[  119.900430][ T8455] team0 (unregistering): Port device team_slave_1 removed
[  119.966747][ T8455] team_slave_0 (unregistering): left promiscuous mode
[  119.969210][ T8455] team0 (unregistering): Port device team_slave_0 removed
[  120.044003][ T8547] cdc_ether 10-1:1.0: probe with driver cdc_ether failed with error -71
[  120.048648][ T8547] usb 10-1: USB disconnect, device number 6
[  120.112869][    T9] usb 13-1: new high-speed USB device number 2 using dummy_hcd
[  120.281983][    T9] usb 13-1: Using ep0 maxpacket: 8
[  120.284868][    T9] usb 13-1: config 0 has an invalid interface number: 55 but max is 0
[  120.287459][    T9] usb 13-1: config 0 has no interface number 0
[  120.289459][    T9] usb 13-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  120.293128][    T9] usb 13-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  120.296803][    T9] usb 13-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  120.300201][    T9] usb 13-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  120.304445][    T9] usb 13-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  120.307277][    T9] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.313312][    T9] usb 13-1: config 0 descriptor??
[  120.323675][    T9] ldusb 13-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  120.519903][    T9] usb 13-1: USB disconnect, device number 2
[  120.526780][    T9] ldusb 13-1:0.55: LD USB Device #0 now disconnected
[  120.567261][ T9467] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1135'.
[  120.587945][ T9467] FAULT_INJECTION: forcing a failure.
[  120.587945][ T9467] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.589905][ T9472] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=9472 comm=syz.5.1137
[  120.592315][ T9467] CPU: 0 UID: 0 PID: 9467 Comm: syz.7.1135 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  120.592340][ T9467] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.592352][ T9467] Call Trace:
[  120.592359][ T9467]  <TASK>
[  120.592367][ T9467]  dump_stack_lvl+0x16c/0x1f0
[  120.592390][ T9467]  should_fail_ex+0x512/0x640
[  120.592415][ T9467]  _copy_from_iter+0x29f/0x16f0
[  120.592444][ T9467]  ? __pfx__copy_from_iter+0x10/0x10
[  120.592467][ T9467]  ? find_held_lock+0x2b/0x80
[  120.592491][ T9467]  ? packet_cached_dev_get+0x14b/0x320
[  120.592532][ T9467]  packet_sendmsg+0x1cef/0x5850
[  120.592576][ T9467]  ? sock_has_perm+0x259/0x2f0
[  120.592599][ T9467]  ? __pfx_sock_has_perm+0x10/0x10
[  120.592622][ T9467]  ? __pfx_packet_sendmsg+0x10/0x10
[  120.592664][ T9467]  __sys_sendto+0x4a3/0x520
[  120.592693][ T9467]  ? __pfx___sys_sendto+0x10/0x10
[  120.592740][ T9467]  ? ksys_write+0x1ac/0x250
[  120.592758][ T9467]  ? __pfx_ksys_write+0x10/0x10
[  120.592779][ T9467]  __x64_sys_sendto+0xe0/0x1c0
[  120.592805][ T9467]  ? do_syscall_64+0x91/0x4c0
[  120.592824][ T9467]  ? lockdep_hardirqs_on+0x7c/0x110
[  120.592842][ T9467]  do_syscall_64+0xcd/0x4c0
[  120.592863][ T9467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.592881][ T9467] RIP: 0033:0x7f39a2b8ebe9
[  120.592897][ T9467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.592914][ T9467] RSP: 002b:00007f39a39cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  120.592933][ T9467] RAX: ffffffffffffffda RBX: 00007f39a2db5fa0 RCX: 00007f39a2b8ebe9
[  120.592946][ T9467] RDX: 000000000000fc13 RSI: 0000200000000800 RDI: 0000000000000003
[  120.592958][ T9467] RBP: 00007f39a39cc090 R08: 0000000000000000 R09: fffffffffffffef0
[  120.592970][ T9467] R10: 0000000000000880 R11: 0000000000000246 R12: 0000000000000001
[  120.592980][ T9467] R13: 00007f39a2db6038 R14: 00007f39a2db5fa0 R15: 00007ffc1e9319e8
[  120.593004][ T9467]  </TASK>
[  120.720545][ T9480] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1138'.
[  120.873529][ T9493] sp0: Synchronizing with TNC
[  120.879033][ T9493] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1141'.
[  120.932180][ T8468] vlan2: left promiscuous mode
[  120.952032][ T8455] IPVS: stop unused estimator thread 0...
[  121.001363][ T9498] FAULT_INJECTION: forcing a failure.
[  121.001363][ T9498] name failslab, interval 1, probability 0, space 0, times 0
[  121.005486][ T9498] CPU: 2 UID: 0 PID: 9498 Comm: syz.7.1143 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  121.005503][ T9498] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  121.005510][ T9498] Call Trace:
[  121.005514][ T9498]  <TASK>
[  121.005519][ T9498]  dump_stack_lvl+0x16c/0x1f0
[  121.005536][ T9498]  should_fail_ex+0x512/0x640
[  121.005549][ T9498]  ? fs_reclaim_acquire+0xae/0x150
[  121.005565][ T9498]  ? tomoyo_encode2+0x100/0x3e0
[  121.005582][ T9498]  should_failslab+0xc2/0x120
[  121.005596][ T9498]  __kmalloc_noprof+0xd2/0x510
[  121.005608][ T9498]  ? d_absolute_path+0x136/0x1a0
[  121.005627][ T9498]  tomoyo_encode2+0x100/0x3e0
[  121.005645][ T9498]  tomoyo_encode+0x29/0x50
[  121.005660][ T9498]  tomoyo_realpath_from_path+0x18f/0x6e0
[  121.005681][ T9498]  tomoyo_path_number_perm+0x245/0x580
[  121.005695][ T9498]  ? tomoyo_path_number_perm+0x237/0x580
[  121.005710][ T9498]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  121.005726][ T9498]  ? find_held_lock+0x2b/0x80
[  121.005752][ T9498]  ? find_held_lock+0x2b/0x80
[  121.005765][ T9498]  ? hook_file_ioctl_common+0x145/0x410
[  121.005779][ T9498]  ? __fget_files+0x20e/0x3c0
[  121.005799][ T9498]  security_file_ioctl+0x9b/0x240
[  121.005818][ T9498]  __x64_sys_ioctl+0xb7/0x210
[  121.005836][ T9498]  do_syscall_64+0xcd/0x4c0
[  121.005849][ T9498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.005861][ T9498] RIP: 0033:0x7f39a2b8ebe9
[  121.005871][ T9498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.005883][ T9498] RSP: 002b:00007f39a39cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  121.005894][ T9498] RAX: ffffffffffffffda RBX: 00007f39a2db5fa0 RCX: 00007f39a2b8ebe9
[  121.005902][ T9498] RDX: 0000200000000480 RSI: 0000000080045519 RDI: 0000000000000003
[  121.005909][ T9498] RBP: 00007f39a39cc090 R08: 0000000000000000 R09: 0000000000000000
[  121.005915][ T9498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.005922][ T9498] R13: 00007f39a2db6038 R14: 00007f39a2db5fa0 R15: 00007ffc1e9319e8
[  121.005936][ T9498]  </TASK>
[  121.005946][ T9498] ERROR: Out of memory at tomoyo_realpath_from_path.
[  121.208069][ T9520] fuse: Unknown parameter 'group_i00000000000000000000'
[  121.391926][ T9130] usb 12-1: new high-speed USB device number 4 using dummy_hcd
[  121.545672][ T9130] usb 12-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  121.549678][ T9130] usb 12-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  121.553536][ T9130] usb 12-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  121.556828][ T9130] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.563262][ T9516] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  121.568572][ T9130] usb 12-1: Quirk or no altset; falling back to MIDI 1.0
[  121.682913][   T53] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  121.804406][    T9] usb 12-1: USB disconnect, device number 4
[  121.832059][   T53] usb 10-1: Using ep0 maxpacket: 8
[  121.835885][   T53] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  121.839437][   T53] usb 10-1: config 0 has no interface number 0
[  121.842555][   T53] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  121.847154][   T53] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  121.852888][   T53] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  121.857513][   T53] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  121.864802][   T53] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  121.868771][   T53] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.875249][   T53] usb 10-1: config 0 descriptor??
[  121.881383][   T53] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  122.084875][ T8547] usb 10-1: USB disconnect, device number 7
[  122.090942][ T8547] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[  122.449900][ T9551] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=3089888063 (3089888063 ns) > initial count (2126324423 ns). Using initial count to start timer.
[  122.705337][ T9586] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.1171'.
[  122.708284][ T9586] FAULT_INJECTION: forcing a failure.
[  122.708284][ T9586] name failslab, interval 1, probability 0, space 0, times 0
[  122.712580][ T9586] CPU: 2 UID: 0 PID: 9586 Comm: syz.5.1171 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  122.712597][ T9586] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.712604][ T9586] Call Trace:
[  122.712608][ T9586]  <TASK>
[  122.712613][ T9586]  dump_stack_lvl+0x16c/0x1f0
[  122.712628][ T9586]  should_fail_ex+0x512/0x640
[  122.712644][ T9586]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  122.712658][ T9586]  should_failslab+0xc2/0x120
[  122.712671][ T9586]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  122.712683][ T9586]  ? __alloc_skb+0x2b2/0x380
[  122.712703][ T9586]  __alloc_skb+0x2b2/0x380
[  122.712721][ T9586]  ? __pfx___alloc_skb+0x10/0x10
[  122.712738][ T9586]  ? do_trace_netlink_extack+0x164/0x1e0
[  122.712756][ T9586]  ? __nla_validate_parse+0x600/0x2880
[  122.712776][ T9586]  __netdev_alloc_skb+0x213/0x920
[  122.712789][ T9586]  ovs_packet_cmd_execute+0x219/0x1670
[  122.712804][ T9586]  ? __pfx_ovs_packet_cmd_execute+0x10/0x10
[  122.712817][ T9586]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  122.712832][ T9586]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  122.712850][ T9586]  genl_family_rcv_msg_doit+0x206/0x2f0
[  122.712866][ T9586]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  122.712885][ T9586]  ? bpf_lsm_capable+0x9/0x10
[  122.712901][ T9586]  ? security_capable+0x7e/0x260
[  122.712916][ T9586]  ? ns_capable+0xd7/0x110
[  122.712931][ T9586]  genl_rcv_msg+0x55c/0x800
[  122.712946][ T9586]  ? __pfx_genl_rcv_msg+0x10/0x10
[  122.712961][ T9586]  ? __pfx_ovs_packet_cmd_execute+0x10/0x10
[  122.712977][ T9586]  netlink_rcv_skb+0x155/0x420
[  122.712990][ T9586]  ? __pfx_genl_rcv_msg+0x10/0x10
[  122.713005][ T9586]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  122.713023][ T9586]  ? netlink_deliver_tap+0x1ae/0xd30
[  122.713036][ T9586]  genl_rcv+0x28/0x40
[  122.713049][ T9586]  netlink_unicast+0x5aa/0x870
[  122.713063][ T9586]  ? __pfx_netlink_unicast+0x10/0x10
[  122.713075][ T9586]  ? __asan_memset+0x23/0x50
[  122.713092][ T9586]  ? __build_skb_around+0x278/0x3b0
[  122.713111][ T9586]  netlink_sendmsg+0x8d1/0xdd0
[  122.713126][ T9586]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.713144][ T9586]  ____sys_sendmsg+0xa95/0xc70
[  122.713159][ T9586]  ? copy_msghdr_from_user+0x10a/0x160
[  122.713171][ T9586]  ? __pfx_____sys_sendmsg+0x10/0x10
[  122.713192][ T9586]  ___sys_sendmsg+0x134/0x1d0
[  122.713204][ T9586]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.713227][ T9586]  ? __mutex_unlock_slowpath+0x100/0x800
[  122.713244][ T9586]  __sys_sendmsg+0x16d/0x220
[  122.713256][ T9586]  ? __pfx___sys_sendmsg+0x10/0x10
[  122.713276][ T9586]  do_syscall_64+0xcd/0x4c0
[  122.713289][ T9586]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.713301][ T9586] RIP: 0033:0x7f413a98ebe9
[  122.713311][ T9586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.713323][ T9586] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.713334][ T9586] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  122.713342][ T9586] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  122.713349][ T9586] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  122.713355][ T9586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.713362][ T9586] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  122.713376][ T9586]  </TASK>
[  122.825626][    C2] vkms_vblank_simulate: vblank timer overrun
[  122.871600][ T9601] Bluetooth: MGMT ver 1.23
[  122.878322][ T9601] FAULT_INJECTION: forcing a failure.
[  122.878322][ T9601] name failslab, interval 1, probability 0, space 0, times 0
[  122.885032][ T9601] CPU: 1 UID: 0 PID: 9601 Comm: syz.5.1173 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  122.885058][ T9601] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.885069][ T9601] Call Trace:
[  122.885076][ T9601]  <TASK>
[  122.885083][ T9601]  dump_stack_lvl+0x16c/0x1f0
[  122.885107][ T9601]  should_fail_ex+0x512/0x640
[  122.885128][ T9601]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  122.885152][ T9601]  should_failslab+0xc2/0x120
[  122.885173][ T9601]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  122.885199][ T9601]  ? mgmt_pending_new+0xcc/0x240
[  122.885233][ T9601]  kmemdup_noprof+0x29/0x60
[  122.885253][ T9601]  mgmt_pending_new+0xcc/0x240
[  122.885281][ T9601]  remove_adv_monitor+0x104/0x190
[  122.885299][ T9601]  ? __pfx_mgmt_init_hdev+0x10/0x10
[  122.885317][ T9601]  hci_sock_sendmsg+0x1522/0x25f0
[  122.885349][ T9601]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  122.885384][ T9601]  sock_write_iter+0x4ff/0x5b0
[  122.885408][ T9601]  ? __pfx_sock_write_iter+0x10/0x10
[  122.885441][ T9601]  ? bpf_lsm_file_permission+0x9/0x10
[  122.885468][ T9601]  ? security_file_permission+0x71/0x210
[  122.885496][ T9601]  ? rw_verify_area+0xcf/0x6c0
[  122.885525][ T9601]  vfs_write+0x7d3/0x11d0
[  122.885545][ T9601]  ? __pfx_sock_write_iter+0x10/0x10
[  122.885570][ T9601]  ? __pfx_vfs_write+0x10/0x10
[  122.885586][ T9601]  ? find_held_lock+0x2b/0x80
[  122.885624][ T9601]  ksys_write+0x1f8/0x250
[  122.885643][ T9601]  ? __pfx_ksys_write+0x10/0x10
[  122.885669][ T9601]  do_syscall_64+0xcd/0x4c0
[  122.885689][ T9601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.885707][ T9601] RIP: 0033:0x7f413a98ebe9
[  122.885722][ T9601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.885740][ T9601] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  122.885757][ T9601] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  122.885769][ T9601] RDX: 0000000000000008 RSI: 0000200000000580 RDI: 0000000000000004
[  122.885780][ T9601] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  122.885791][ T9601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.885802][ T9601] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  122.885825][ T9601]  </TASK>
[  123.113427][   T29] usb 12-1: new high-speed USB device number 5 using dummy_hcd
[  123.159867][ T9627] FAULT_INJECTION: forcing a failure.
[  123.159867][ T9627] name failslab, interval 1, probability 0, space 0, times 0
[  123.166081][ T9627] CPU: 1 UID: 0 PID: 9627 Comm: syz.6.1184 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  123.166108][ T9627] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.166118][ T9627] Call Trace:
[  123.166127][ T9627]  <TASK>
[  123.166134][ T9627]  dump_stack_lvl+0x16c/0x1f0
[  123.166158][ T9627]  should_fail_ex+0x512/0x640
[  123.166179][ T9627]  ? fs_reclaim_acquire+0xae/0x150
[  123.166203][ T9627]  ? tomoyo_encode2+0x100/0x3e0
[  123.166227][ T9627]  should_failslab+0xc2/0x120
[  123.166248][ T9627]  __kmalloc_noprof+0xd2/0x510
[  123.166273][ T9627]  tomoyo_encode2+0x100/0x3e0
[  123.166302][ T9627]  tomoyo_encode+0x29/0x50
[  123.166326][ T9627]  tomoyo_realpath_from_path+0x18f/0x6e0
[  123.166354][ T9627]  ? tomoyo_profile+0x47/0x60
[  123.166374][ T9627]  tomoyo_path_number_perm+0x245/0x580
[  123.166396][ T9627]  ? tomoyo_path_number_perm+0x237/0x580
[  123.166420][ T9627]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  123.166452][ T9627]  ? find_held_lock+0x2b/0x80
[  123.166497][ T9627]  ? find_held_lock+0x2b/0x80
[  123.166518][ T9627]  ? hook_file_ioctl_common+0x145/0x410
[  123.166542][ T9627]  ? __fget_files+0x20e/0x3c0
[  123.166567][ T9627]  security_file_ioctl+0x9b/0x240
[  123.166592][ T9627]  __x64_sys_ioctl+0xb7/0x210
[  123.166620][ T9627]  do_syscall_64+0xcd/0x4c0
[  123.166640][ T9627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.166659][ T9627] RIP: 0033:0x7f345258ebe9
[  123.166673][ T9627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.166688][ T9627] RSP: 002b:00007f34533a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  123.166705][ T9627] RAX: ffffffffffffffda RBX: 00007f34527b5fa0 RCX: 00007f345258ebe9
[  123.166715][ T9627] RDX: 0000200000000000 RSI: 0000000000008b19 RDI: 0000000000000004
[  123.166725][ T9627] RBP: 00007f34533a6090 R08: 0000000000000000 R09: 0000000000000000
[  123.166735][ T9627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.166745][ T9627] R13: 00007f34527b6038 R14: 00007f34527b5fa0 R15: 00007ffcec99daa8
[  123.166766][ T9627]  </TASK>
[  123.167347][ T9627] ERROR: Out of memory at tomoyo_realpath_from_path.
[  123.263269][ T9631] Bluetooth: MGMT ver 1.23
[  123.265728][ T9631] FAULT_INJECTION: forcing a failure.
[  123.265728][ T9631] name failslab, interval 1, probability 0, space 0, times 0
[  123.269844][ T9631] CPU: 3 UID: 0 PID: 9631 Comm: syz.5.1185 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  123.269860][ T9631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.269868][ T9631] Call Trace:
[  123.269873][ T9631]  <TASK>
[  123.269879][ T9631]  dump_stack_lvl+0x16c/0x1f0
[  123.269897][ T9631]  should_fail_ex+0x512/0x640
[  123.269910][ T9631]  ? __kmalloc_noprof+0xbf/0x510
[  123.269924][ T9631]  ? kobject_get_path+0xd2/0x2a0
[  123.269935][ T9631]  should_failslab+0xc2/0x120
[  123.269949][ T9631]  __kmalloc_noprof+0xd2/0x510
[  123.269960][ T9631]  ? find_held_lock+0x2b/0x80
[  123.269975][ T9631]  ? kernfs_rename_ns+0x9d/0xa50
[  123.269988][ T9631]  kobject_get_path+0xd2/0x2a0
[  123.270003][ T9631]  kobject_rename+0xca/0x260
[  123.270017][ T9631]  ? __pfx_kobject_rename+0x10/0x10
[  123.270032][ T9631]  ? kernfs_put+0x35/0x60
[  123.270050][ T9631]  device_rename+0x130/0x230
[  123.270069][ T9631]  cfg802154_switch_netns+0x1d0/0x470
[  123.270084][ T9631]  nl802154_wpan_phy_netns+0x134/0x2b0
[  123.270100][ T9631]  genl_family_rcv_msg_doit+0x206/0x2f0
[  123.270117][ T9631]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  123.270137][ T9631]  ? bpf_lsm_capable+0x9/0x10
[  123.270154][ T9631]  ? security_capable+0x7e/0x260
[  123.270171][ T9631]  genl_rcv_msg+0x55c/0x800
[  123.270188][ T9631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  123.270202][ T9631]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  123.270217][ T9631]  ? __pfx_nl802154_wpan_phy_netns+0x10/0x10
[  123.270231][ T9631]  ? __pfx_nl802154_post_doit+0x10/0x10
[  123.270246][ T9631]  ? __lock_acquire+0x62e/0x1ce0
[  123.270267][ T9631]  netlink_rcv_skb+0x155/0x420
[  123.270280][ T9631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  123.270296][ T9631]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  123.270326][ T9631]  ? netlink_deliver_tap+0x1ae/0xd30
[  123.270340][ T9631]  ? selinux_netlink_send+0x578/0x830
[  123.270355][ T9631]  ? is_vmalloc_addr+0x86/0xa0
[  123.270368][ T9631]  genl_rcv+0x28/0x40
[  123.270380][ T9631]  netlink_unicast+0x5aa/0x870
[  123.270395][ T9631]  ? __pfx_netlink_unicast+0x10/0x10
[  123.270408][ T9631]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  123.270424][ T9631]  netlink_sendmsg+0x8d1/0xdd0
[  123.270439][ T9631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  123.270458][ T9631]  ____sys_sendmsg+0xa95/0xc70
[  123.270480][ T9631]  ? copy_msghdr_from_user+0x10a/0x160
[  123.270492][ T9631]  ? __pfx_____sys_sendmsg+0x10/0x10
[  123.270514][ T9631]  ___sys_sendmsg+0x134/0x1d0
[  123.270526][ T9631]  ? __pfx____sys_sendmsg+0x10/0x10
[  123.270551][ T9631]  ? __mutex_unlock_slowpath+0x100/0x800
[  123.270569][ T9631]  __sys_sendmsg+0x16d/0x220
[  123.270581][ T9631]  ? __pfx___sys_sendmsg+0x10/0x10
[  123.270602][ T9631]  do_syscall_64+0xcd/0x4c0
[  123.270615][ T9631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.270627][ T9631] RIP: 0033:0x7f413a98ebe9
[  123.270637][ T9631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.270648][ T9631] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  123.270659][ T9631] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  123.270667][ T9631] RDX: 0000000004000000 RSI: 0000200000000280 RDI: 000000000000000a
[  123.270674][ T9631] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  123.270680][ T9631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.270687][ T9631] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  123.270702][ T9631]  </TASK>
[  123.271157][ T9631] ------------[ cut here ]------------
[  123.300910][   T40] kauditd_printk_skb: 332 callbacks suppressed
[  123.300925][   T40] audit: type=1400 audit(1755268831.627:1520): avc:  denied  { lock } for  pid=9632 comm="syz.6.1186" path="socket:[32623]" dev="sockfs" ino=32623 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  123.300997][ T9631] WARNING: CPU: 3 PID: 9631 at net/ieee802154/core.c:258 cfg802154_switch_netns+0x3b1/0x470
[  123.332001][   T29] usb 12-1: Using ep0 maxpacket: 8
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  123.333900][   T29] usb 12-1: config 0 has an invalid interface number: 55 but max is 0
[  123.334973][ T9631] Modules linked in:
[  123.335024][ T9631] CPU: 3 UID: 0 PID: 9631 Comm: syz.5.1185 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  123.337542][   T29] usb 12-1: config 0 has no interface number 0
[  123.338997][ T9631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.339010][ T9631] RIP: 0010:cfg802154_switch_netns+0x3b1/0x470
[  123.339029][ T9631] Code: fe 0d 8d 48 8b 7b 20 e8 4d 99 28 fe 31 ff 89 c5 89 c6 e8 92 3a 72 f6 85 ed 0f 84 0f ff ff ff e9 01 ff ff ff e8 40 3f 72 f6 90 <0f> 0b 90 e9 2a fe ff ff 4c 89 ef e8 ff 95 d8 f6 e9 ad fc ff ff e8
[  123.339046][ T9631] RSP: 0018:ffffc900033d7520 EFLAGS: 00010293
[  123.341181][   T29] usb 12-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  123.342654][ T9631] 
[  123.342660][ T9631] RAX: 0000000000000000 RBX: 00000000fffffff4 RCX: ffffffff8b49522b
[  123.342669][ T9631] RDX: ffff88802cbc8000 RSI: ffffffff8b495400 RDI: 0000000000000005
[  123.342677][ T9631] RBP: ffff888106778198 R08: 0000000000000005 R09: 0000000000000000
[  123.342685][ T9631] R10: 00000000fffffff4 R11: 0000000000000000 R12: 0000000000000000
[  123.342693][ T9631] R13: ffff888031862b40 R14: ffff888106778078 R15: ffff888106778000
[  123.342701][ T9631] FS:  00007f413b7216c0(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000
[  123.342726][ T9631] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  123.342736][ T9631] CR2: 0000200000002000 CR3: 000000004e96f000 CR4: 0000000000352ef0
[  123.342745][ T9631] Call Trace:
[  123.342749][ T9631]  <TASK>
[  123.342757][ T9631]  nl802154_wpan_phy_netns+0x134/0x2b0
[  123.344713][   T29] usb 12-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  123.346261][ T9631]  genl_family_rcv_msg_doit+0x206/0x2f0
[  123.348122][   T29] usb 12-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  123.349652][ T9631]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  123.352063][   T29] usb 12-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  123.353511][ T9631]  ? bpf_lsm_capable+0x9/0x10
[  123.355713][   T29] usb 12-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  123.357084][ T9631]  ? security_capable+0x7e/0x260
[  123.359547][   T29] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.360955][ T9631]  genl_rcv_msg+0x55c/0x800
[  123.391660][   T29] usb 12-1: config 0 descriptor??
[  123.395992][ T9631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  123.396017][ T9631]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  123.396034][ T9631]  ? __pfx_nl802154_wpan_phy_netns+0x10/0x10
[  123.396049][ T9631]  ? __pfx_nl802154_post_doit+0x10/0x10
[  123.396065][ T9631]  ? __lock_acquire+0x62e/0x1ce0
[  123.396087][ T9631]  netlink_rcv_skb+0x155/0x420
[  123.396100][ T9631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  123.396116][ T9631]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  123.396136][ T9631]  ? netlink_deliver_tap+0x1ae/0xd30
[  123.403694][   T40] audit: type=1400 audit(1755268831.737:1521): avc:  denied  { write } for  pid=5878 comm="syz-executor" path="pipe:[5782]" dev="pipefs" ino=5782 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  123.405364][   T29] ldusb 12-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  123.406638][ T9631]  ? selinux_netlink_send+0x578/0x830
[  123.451906][   T40] audit: type=1400 audit(1755268831.777:1522): avc:  denied  { read write } for  pid=9637 comm="syz.6.1187" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  123.452525][ T9631]  ? is_vmalloc_addr+0x86/0xa0
[  123.453810][   T40] audit: type=1400 audit(1755268831.777:1523): avc:  denied  { open } for  pid=9637 comm="syz.6.1187" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  123.455491][ T9631]  genl_rcv+0x28/0x40
[  123.455510][ T9631]  netlink_unicast+0x5aa/0x870
[  123.455526][ T9631]  ? __pfx_netlink_unicast+0x10/0x10
[  123.528670][ T9631]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  123.530554][ T9631]  netlink_sendmsg+0x8d1/0xdd0
[  123.532143][ T9631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  123.533794][ T9631]  ____sys_sendmsg+0xa95/0xc70
[  123.535295][ T9631]  ? copy_msghdr_from_user+0x10a/0x160
[  123.536957][ T9631]  ? __pfx_____sys_sendmsg+0x10/0x10
[  123.538577][ T9631]  ___sys_sendmsg+0x134/0x1d0
[  123.540073][ T9631]  ? __pfx____sys_sendmsg+0x10/0x10
[  123.541714][ T9631]  ? __mutex_unlock_slowpath+0x100/0x800
[  123.543595][ T9631]  __sys_sendmsg+0x16d/0x220
[  123.545095][ T9631]  ? __pfx___sys_sendmsg+0x10/0x10
[  123.546736][ T9631]  do_syscall_64+0xcd/0x4c0
[  123.548200][ T9631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.550084][ T9631] RIP: 0033:0x7f413a98ebe9
[  123.551499][ T9631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.557655][ T9631] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  123.560510][ T9631] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  123.563073][ T9631] RDX: 0000000004000000 RSI: 0000200000000280 RDI: 000000000000000a
[  123.565705][ T9631] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  123.568160][ T9631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.570561][ T9631] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  123.573099][ T9631]  </TASK>
[  123.574086][ T9631] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  123.576346][ T9631] CPU: 3 UID: 0 PID: 9631 Comm: syz.5.1185 Not tainted 6.17.0-rc1-syzkaller-00116-gd7ee5bdce789 #0 PREEMPT(full) 
[  123.580019][ T9631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.583335][ T9631] Call Trace:
[  123.584399][ T9631]  <TASK>
[  123.585355][ T9631]  dump_stack_lvl+0x3d/0x1f0
[  123.586815][ T9631]  vpanic+0x6e8/0x7a0
[  123.588038][ T9631]  ? __pfx_vpanic+0x10/0x10
[  123.589445][ T9631]  ? cfg802154_switch_netns+0x3b1/0x470
[  123.591135][ T9631]  panic+0xca/0xd0
[  123.592307][ T9631]  ? __pfx_panic+0x10/0x10
[  123.593705][ T9631]  ? check_panic_on_warn+0x1f/0xb0
[  123.595283][ T9631]  check_panic_on_warn+0xab/0xb0
[  123.596840][ T9631]  __warn+0xf6/0x3c0
[  123.598106][ T9631]  ? cfg802154_switch_netns+0x3b1/0x470
[  123.599871][ T9631]  report_bug+0x3c3/0x580
[  123.601249][ T9631]  ? cfg802154_switch_netns+0x3b1/0x470
[  123.602984][ T9631]  handle_bug+0x184/0x210
[  123.604340][ T9631]  exc_invalid_op+0x17/0x50
[  123.605743][ T9631]  asm_exc_invalid_op+0x1a/0x20
[  123.607244][ T9631] RIP: 0010:cfg802154_switch_netns+0x3b1/0x470
[  123.609166][ T9631] Code: fe 0d 8d 48 8b 7b 20 e8 4d 99 28 fe 31 ff 89 c5 89 c6 e8 92 3a 72 f6 85 ed 0f 84 0f ff ff ff e9 01 ff ff ff e8 40 3f 72 f6 90 <0f> 0b 90 e9 2a fe ff ff 4c 89 ef e8 ff 95 d8 f6 e9 ad fc ff ff e8
[  123.615097][ T9631] RSP: 0018:ffffc900033d7520 EFLAGS: 00010293
[  123.617004][ T9631] RAX: 0000000000000000 RBX: 00000000fffffff4 RCX: ffffffff8b49522b
[  123.619464][ T9631] RDX: ffff88802cbc8000 RSI: ffffffff8b495400 RDI: 0000000000000005
[  123.621928][ T9631] RBP: ffff888106778198 R08: 0000000000000005 R09: 0000000000000000
[  123.624502][ T9631] R10: 00000000fffffff4 R11: 0000000000000000 R12: 0000000000000000
[  123.626963][ T9631] R13: ffff888031862b40 R14: ffff888106778078 R15: ffff888106778000
[  123.629478][ T9631]  ? cfg802154_switch_netns+0x1db/0x470
[  123.631196][ T9631]  ? cfg802154_switch_netns+0x3b0/0x470
[  123.632926][ T9631]  nl802154_wpan_phy_netns+0x134/0x2b0
[  123.634626][ T9631]  genl_family_rcv_msg_doit+0x206/0x2f0
[  123.636354][ T9631]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  123.638236][ T9631]  ? bpf_lsm_capable+0x9/0x10
[  123.639722][ T9631]  ? security_capable+0x7e/0x260
[  123.641283][ T9631]  genl_rcv_msg+0x55c/0x800
[  123.642711][ T9631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  123.644288][ T9631]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  123.645952][ T9631]  ? __pfx_nl802154_wpan_phy_netns+0x10/0x10
[  123.647795][ T9631]  ? __pfx_nl802154_post_doit+0x10/0x10
[  123.649558][ T9631]  ? __lock_acquire+0x62e/0x1ce0
[  123.651120][ T9631]  netlink_rcv_skb+0x155/0x420
[  123.652621][ T9631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  123.654147][ T9631]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  123.655714][ T9631]  ? netlink_deliver_tap+0x1ae/0xd30
[  123.657371][ T9631]  ? selinux_netlink_send+0x578/0x830
[  123.659061][ T9631]  ? is_vmalloc_addr+0x86/0xa0
[  123.660583][ T9631]  genl_rcv+0x28/0x40
[  123.661844][ T9631]  netlink_unicast+0x5aa/0x870
[  123.663350][ T9631]  ? __pfx_netlink_unicast+0x10/0x10
[  123.665044][ T9631]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  123.666919][ T9631]  netlink_sendmsg+0x8d1/0xdd0
[  123.668436][ T9631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  123.670105][ T9631]  ____sys_sendmsg+0xa95/0xc70
[  123.671610][ T9631]  ? copy_msghdr_from_user+0x10a/0x160
[  123.673334][ T9631]  ? __pfx_____sys_sendmsg+0x10/0x10
[  123.675025][ T9631]  ___sys_sendmsg+0x134/0x1d0
[  123.676602][ T9631]  ? __pfx____sys_sendmsg+0x10/0x10
[  123.678248][ T9631]  ? __mutex_unlock_slowpath+0x100/0x800
[  123.680025][ T9631]  __sys_sendmsg+0x16d/0x220
[  123.681474][ T9631]  ? __pfx___sys_sendmsg+0x10/0x10
[  123.683082][ T9631]  do_syscall_64+0xcd/0x4c0
[  123.684489][ T9631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.686309][ T9631] RIP: 0033:0x7f413a98ebe9
[  123.687723][ T9631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.693464][ T9631] RSP: 002b:00007f413b721038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  123.696047][ T9631] RAX: ffffffffffffffda RBX: 00007f413abb5fa0 RCX: 00007f413a98ebe9
[  123.698514][ T9631] RDX: 0000000004000000 RSI: 0000200000000280 RDI: 000000000000000a
[  123.700997][ T9631] RBP: 00007f413b721090 R08: 0000000000000000 R09: 0000000000000000
[  123.703449][ T9631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.705954][ T9631] R13: 00007f413abb6038 R14: 00007f413abb5fa0 R15: 00007ffc44bb81e8
[  123.708423][ T9631]  </TASK>
[  123.710014][ T9631] Kernel Offset: disabled
[  123.711378][ T9631] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:40:31  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=ffff888033c77c30 RCX=1ffff1100aac6726 RDX=1ffff110057257e0
RSI=ffffffff849ad1c5 RDI=ffffc900030d7814 RBP=ffffc900030d7810 RSP=ffffc900030d76e0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000800 R11=0000000000000000
R12=00000000000004c6 R13=00000000000007ff R14=00000000000004d8 R15=000000000000000d
RIP=ffffffff849ad349 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555559417500 ffffffff 00c00000
GS =0000 ffff8880d66bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555568885808 CR3=000000002bef5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc44bb86f6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc44bb86f6 00007ffc44bb86fc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413ab874a8 00007f413ab874a0 00007f413ab87498 00007f413ab87470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413b6ed100 00007f413ab87460 00007f413ab87478 0000000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413ab874b8 00007f413ab874b0 00007f413ab874a8 00007f413ab874a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3884f6f5c93fc514 f45fb4d60216ccd0 976d2059c24f4a2a aad3b5a302482eac
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a2c65c095a3fbd3d 7380880f7c9f205c b5ad35777e242c38 4c4fc3b70a2237ff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fed95a2ebbb21f84 97f7b2404b46a03c 92978a163e42f038 84f6f5c93fc514f4
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5fb4d60216ccd097 6d2059c24f4a2aaa d3b5a302482eac14 b44a2aef440d5a84
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 be13ab6ea9c9782e 03abbfe3691abc80 af53612e39db9cd3 ac8b5c6697d62154
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffc90006aa0000 RBX=ffff888106638000 RCX=ffffffff819bec27 RDX=1ffff11020cc725a
RSI=ffffffff86b350cf RDI=0000000000000016 RBP=0000000000000080 RSP=ffffc900006a0eb0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffffff90ab35a0 R13=dffffc0000000000 R14=ffff8881066392d0 R15=0000000000000000
RIP=ffffffff86b350f7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffeb816dda0 CR3=00000000513c3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffff800 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39a39c9f70 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc1e931ef6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc1e931ef6 00007ffc1e931efc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39a2c12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39a2c12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39a2c12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39a2c12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39a2c12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39a2c12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000372e63 64755f796d6d7564
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000013b41 RBX=0000000000000001 RCX=000000000003cdcf RDX=0000000000013b42
RSI=00000000000a974e RDI=ffffffff92031bac RBP=ffffc90003e77910 RSP=ffffc90003e77858
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000003 R11=0000000000013b41
R12=ffffc90003e77918 R13=ffffc90003e778c8 R14=ffffc90003e778fd R15=ffffffff823b41b0
RIP=ffffffff816ae6ed RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fdfbd7ee880 ffffffff 00c00000
GS =0000 ffff8880d68bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4138bd5d58 CR3=0000000052026000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002010092 Opmask01=0000000000004211 Opmask02=000000000100ffff Opmask03=0000000000000000
Opmask04=00000000ffffdfff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562c52dab9f0 0000562c52dab9f0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562c52da1ef0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdfbd1f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6d005d392d305b2a 6b6c62006273753d
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffff000000ff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 49074c440a48495e 172a5e444f5c4f5f
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0504040519694645 585e44454905194e
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 726f662027732527 20656c6966207325 2064657461657263 000a73253a47000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 574a430502560002 0540494c43055600 0541405144405746 000a56001f47000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7361647c2a737369 63637c2a65686361 63627c2a6476787c 2a64767c2a64737c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562c52dab4e0 0000562c52d90610 0000562c52daaf60 0000562c52dace70
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562c52daceb0 0000562c52d98090 0000562c52d9dc70 0000562c52d94170
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562c52da1400 0000562c52d98610 0000562c52d9d2e0 0000562c52d91c50
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000562c52da1eb0 0000562c52d95650 0000562c52d919c0 0000562c52d8afd0
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85640d05 RDI=ffffffff9b10dfa0 RBP=ffffffff9b10df60 RSP=ffffc900033d6e38
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000064 R14=ffffffff9b10df60 R15=ffffffff85640ca0
RIP=ffffffff85640d2f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f413b7216c0 ffffffff 00c00000
GS =0000 ffff8880d69bc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000002000 CR3=000000004e96f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc44bb8570 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc44bb86f6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc44bb86f6 00007ffc44bb86fc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f413aa12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000