last executing test programs:

1m57.974307882s ago: executing program 1 (id=859):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x10a)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x80)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
write$P9_RVERSION(r0, &(0x7f0000000c40)=ANY=[], 0x13)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)=[0x5], &(0x7f0000000180)=[0x2], 0x0, 0x1, 0x1}}, 0x40)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1m57.804463138s ago: executing program 1 (id=862):
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000240)={'sit0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x1, 0x0, 0x10, 0xc9, {{0x5, 0x4, 0x2, 0x1, 0x14, 0x68, 0x0, 0x2, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x3d}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8400, 0x90)
mkdirat(r1, &(0x7f0000000040)='./file0\x00', 0xc0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='bpf\x00', 0x121c040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x10000, &(0x7f00000003c0)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
fstat(r2, &(0x7f0000001400))
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3400000040000701fcffffff00000100017c0000040042800c0001800600060065580000100002800c00118008001c"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000200)={'vcan0\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f0000000180)={0x1d, r4, 0x0, {0x0, 0x0, 0x1}, 0x2}, 0x18)
sendmsg$can_j1939(r3, &(0x7f00000002c0)={&(0x7f00000000c0)={0x1d, 0x0, 0x15, {0x0, 0x1ee}}, 0x18, &(0x7f00000004c0)={&(0x7f0000000140)='\x00', 0x8}}, 0x0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r6 = add_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000500)={'syz', 0x3}, &(0x7f0000000040)="42d7386debb9c100", 0x8, 0xfffffffffffffffe)
keyctl$read(0xb, r6, 0x0, 0x0)
sendmsg$netlink(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)}, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)

1m57.687365947s ago: executing program 1 (id=864):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="9feb01001800000000000000500000005000000002000000090000000000000e03000000010000000a0000000000000203000000000000000500000d0000000006"], 0x0, 0x6a, 0x0, 0x0, 0x7fffffff}, 0x28)
socket$unix(0x1, 0x5, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = dup(r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x4c, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x1}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}]}}}, @IFLA_LINK={0x8, 0x5, r3}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.kill\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
write$binfmt_script(r4, &(0x7f0000000340)={'#! ', './file0'}, 0xb)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000001c0)={0x1b, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x3}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000080)=@raw=[@ldst={0x2, 0x2, 0x0, 0x7, 0x2, 0xfffffffffffffff0, 0x4}, @exit, @btf_id={0x18, 0x5, 0x3, 0x0, 0x5}], &(0x7f00000000c0)='GPL\x00', 0x9, 0x1000, &(0x7f0000000980)=""/4096, 0x40f00, 0x2, '\x00', r3, 0x879449889413b5fa, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x0, 0xf, 0x9}, 0x10, 0x8b64, r4, 0x0, &(0x7f0000000140)=[r5], 0x0, 0x10, 0x1}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040), 0x0, 0xffffffffffffffff, 0x4}, 0x38)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r6, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000500000020"})

1m57.573017135s ago: executing program 1 (id=865):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, 0x0, 0x4008010) (async, rerun: 32)
munlockall() (rerun: 32)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000200), 0x20a00, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x7) (async, rerun: 64)
ioctl$TCSETSF2(r1, 0x8910, 0x0) (rerun: 64)
semop(0x0, &(0x7f00000001c0)=[{0x1, 0xbbdd, 0x1000}], 0x1) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r2)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
r5 = semget$private(0x0, 0x0, 0x480)
semctl$SETALL(r5, 0x0, 0x11, &(0x7f0000000100)=[0x9])
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000080)=ANY=[@ANYBLOB="88020000", @ANYRES16=r3, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r4, @ANYBLOB="6102330050300100080211000001080211000000505050505050"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x40000) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00'})
syz_emit_ethernet(0x8a, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6000000000540600fe8000000000000000000000000000aafe8000000000000000000000000000aa00004001", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='P', @ANYRESDEC], 0x0) (async)
creat(&(0x7f00000000c0)='./file0/file0\x00', 0x0)

1m57.43403447s ago: executing program 1 (id=869):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x104)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x28800, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
link(&(0x7f0000000100)='./file0/file0\x00', &(0x7f00000001c0)='./file0\x00')
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0xb8, r1}, './file0\x00'})
poll(&(0x7f00000000c0)=[{r0, 0x101}], 0x1, 0xffffffbf)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000580)={0x0, 0xfffff78a, 0x2, {0x5, @vbi={0x5, 0x0, 0x1, 0x433417f444099b9e, [0x0, 0xffeffffc], [0x8200], 0x1}}})

1m56.486725779s ago: executing program 1 (id=882):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4a044}, 0x20004090)

1m41.474781139s ago: executing program 32 (id=882):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4a044}, 0x20004090)

59.952663021s ago: executing program 0 (id=1509):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$loop(&(0x7f0000000200), 0x5, 0x86100) (async, rerun: 32)
r3 = socket$alg(0x26, 0x5, 0x0) (rerun: 32)
bind$alg(r3, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160-generic\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$inet(r4, &(0x7f00000012c0)=[{{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000780)="89d6db083f31b3ac1938d6cef4ebfb5018", 0x11}, {&(0x7f00000007c0)="0bd935edec47ea58ac42907e1fc57e92120212a6296736952b965d80202ab81a9d972202ae494f42", 0x28}, {&(0x7f0000000800)="935f838f45cadc641977a3d30550c3d019f73e3cc7ac849615142ef279d5affa7b625b03744787525fd577c17f9d24e68342e582636c8ad97e3c5421cd676d07091fcf75450585ee773f621affa0372e27163c35de64603fa3452f4c3729cc1148bc92e06edfa39bd8078c1f5c36f337b36d5054ad7e50a22916b8f7ebdef4b6ea4a2695fb7090319b567b5f153702702f6e7f46352a26fc4554ed0293f9b53790b6bf117a7f6aed4876294b1b2428fb8dda6565b851b3b100"/200, 0xc8}, {&(0x7f0000000900)="3e46f54004a63aa05b725d769ac8f2536c4022444ca26cdf8f5a2ecb4c04376fb1663b9bccf6d0374a", 0x29}, {&(0x7f0000000940)="ed087fdbf233cd97958ccf12cc22", 0xe}], 0x5}}], 0x1, 0x20040004) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000005c0)={r5, 0x20000800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1c, 0x1c, "fee8a2ab78fc179fd1f8a0e9a1af1ea09dc2b7fb0a010000000000000000030000000000000000000000000000000000000000000000001b00", "28095397bab22d0000b42076c1ce8ef05f819e01177d3d458dac0000000000000000000800000000003788cf8f00", "90be8b1c5512406c7f00", [0x4, 0x2]}})
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000800), r1)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r7, 0x0, 0x1a, 0x0, &(0x7f0000000080))
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000000000000000220000000a0001007770616e3000000005002000000004000500200000000000050020000000000009001f"], 0x44}, 0x1, 0x0, 0x0, 0x4044880}, 0x40040)

59.772417778s ago: executing program 0 (id=1513):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4000)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a70000000060a090400000000000000000200fffe0900020073797a32000000000900010073797a30000000004400048024000180090001006d6574610000000014000280080001400000000108000240000000171c000180090001006d617371000000000c000280080002400000000814000000110001"], 0x98}, 0x1, 0x0, 0x0, 0x24040800}, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_GET_EXTENDED_ERROR(r1, 0xc00c6211, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)={0x84, 0x1, 0x1, 0x3, 0x0, 0x0, {0x2, 0x0, 0x9}, [@CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x4}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x80000001}]}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x1}, @CTA_SYNPROXY={0x4c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xf}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x18db}, @CTA_SYNPROXY_TSOFF={0x0, 0x3, 0x1, 0x0, 0x35}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xe6d}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x5}]}]}, 0x84}}, 0x0)

59.509905247s ago: executing program 0 (id=1516):
r0 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000040), 0x220201, 0x0)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000180)=0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000000)=ANY=[], 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000004cc0)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)="a1", 0x1}], 0x1, &(0x7f0000000a40)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB="0000000014"], 0x30, 0x40400d1}}], 0x1, 0x10)
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x400000, 0x3)
syz_emit_ethernet(0x5e, &(0x7f0000000500)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050e86dd6018232500282cfffe8000000000000000000000000000bbfe8000000000000000000000000000aa840202"], 0x0)
ioctl$VIDIOC_S_JPEGCOMP(r3, 0x408c563e, &(0x7f0000000080)={0xe, 0x8, 0x15, "35e97bd00bb69d4e4d3f8bccbab5c7875ebd0b2b942e22d71cffd57a335ef2c262c4b70bc153dd76c65a50c60ef514fe6715bef7927c7ca5a5368ddf", 0x32, "ff5e073980f4d2f3d2b21b9aaf16a47892eaa1f9c9919848ea003cb0c3c81805b5307d3e243b7a55007c3ec289cc940feba83f135016e7017e74996d", 0xa0})

59.262112968s ago: executing program 0 (id=1519):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x808, 0x0, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000040)=0x7)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040301, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x1000000000000, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r3, 0xc0884113, &(0x7f0000000080)={0x1, 0x7, 0x0, 0x8, 0x8000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x80000001, 0x2})
close_range(r0, 0xffffffffffffffff, 0xe0ffffffffffffff)

58.833115307s ago: executing program 0 (id=1522):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
r1 = creat(&(0x7f0000000000)='./cgroup.net/devices.allow\x00', 0x42)
pwritev(r1, &(0x7f00000000c0)=[{&(0x7f0000000040)="8e11d81efb29666351bb88587b575cdd5e02fe68e83ba33bed337a581feed5f6fb5dd7625ed7a99173", 0x29}, {&(0x7f0000000080)="772b049c015a92673eec7b", 0xb}, {&(0x7f0000000140)="e5033d992b7e66160623be7efd8899c14a22a73830a2fd029732af3785aa70f31479fc4a27d475b7eefccab4864967f7f46eb301ee2ed609b3aeb82949c404b35358b197130bf34a623142e433d59da060ba0f3931d998d16e3b635cd38c11f87982b50c0f79b753af0ac4ea4e0aa35950b02f4bde40b2dcdc0985208eb65023ae2d0d88cc9f015a215a861d283814ac70c79a680f09e152be635bb1119b4bc84a018b3c2e1d493c3943752662", 0xad}, {&(0x7f0000000240)="37786c518fb2aa68dd4c19564505390b2b5b7cce8792f653205cdfa4a0d3836e8cb2fde8f97d8053b889ab715db63df1b1fba34d624cc044544942f000778fb19c10e2e8845ca62d3a02fc8f2ea33d211329e46d4fc1ab95b5e0a13be6531e9ed347304cbe94e1abd5e1ea5c871b57c2e6d5ab5b", 0x74}], 0x4, 0x5, 0xce) (async)
timer_create(0x0, 0x0, &(0x7f0000000100)=<r2=>0x0)
timer_getoverrun(r2)
write$cgroup_devices(r1, &(0x7f0000000200)={'a', ' *:* ', 'w\x00'}, 0x8)

58.603217563s ago: executing program 0 (id=1526):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000001c0)={0x24, 0x23, 0x9, 0x70bd25, 0x25dfd3ff, {0x1}, [@typed={0x8, 0x1, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0xb, 0x0, 0x0, @uid}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040811}, 0x8410)

43.45420764s ago: executing program 33 (id=1526):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000001c0)={0x24, 0x23, 0x9, 0x70bd25, 0x25dfd3ff, {0x1}, [@typed={0x8, 0x1, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0xb, 0x0, 0x0, @uid}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040811}, 0x8410)

2.263312827s ago: executing program 2 (id=2204):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000040)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, &(0x7f00000001c0)={r3, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000580)={0x401, 0x1, &(0x7f0000000180)=[r4], &(0x7f00000000c0)=[0x3], &(0x7f0000000640)=[0x0, 0x0, 0x0], &(0x7f0000000340), 0x0, 0xffffffffffffffff})
close_range(r1, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000002aaaaaaaaaaaa08004500006000000000002f9078640101000000000024806558000000000000000010000800000086dd"], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000020a010200000000000000000a0000000900010073797a310000000008000240000000018c000000020a010100000000000000000000000369000600e62807258a6d38caf4cb1d7a776a7a05e57912414e63207c5e61d47bb4016b21bd5593b033b0968722f2f0f4818a1a13fbb43e79d0ae674d071c0164df9d3701ccded9d48eb8e6b1037821a8418f8d15211300766b6ebe326ada9e49cca5c2a074e0e46e35eabfb48a4cd2cd8379a97e705b010000000900010073797a31000000001c000000090a030000000000000000000a00000208000c4004000089140000001100010000000000000000000100000a2d864f451b0f8bb1223a856a059dd28944f4673354deaecdf8563382ab4e3e0a86aa571e01fabca5175ccea1adcb"], 0xf8}, 0x1, 0x0, 0x0, 0x2000c814}, 0x4000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000004000ffff0900010073797a30000000000900020073797a3100000000140003800800014000000000"], 0x138}, 0x1, 0x0, 0x0, 0x20040855}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd0002800800"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x50840)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)
bind$alg(r0, &(0x7f0000000200)={0x26, 'hash\x00', 0x0, 0x0, 'sha224\x00'}, 0x58)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x8, 'macsec0\x00', {'netpci0\x00'}})
r6 = socket$inet(0x2, 0x3, 0x30)
getsockopt$inet_mreqsrc(r6, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000080)=0x2c)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB], 0x48)
r10 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000500)=ANY=[@ANYRES32=r9, @ANYRES32=r10, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r9}, &(0x7f00000006c0), &(0x7f0000000700)=r8}, 0x20)
sendmsg$inet(r7, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1, 0x0, 0x0, 0x6000}, 0x20)
accept4(r0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f00000001c0), 0xffffffffffffffff)
r11 = syz_open_dev$sg(&(0x7f0000000000), 0x39bd, 0x40082)
ioctl$SCSI_IOCTL_DOORLOCK(r11, 0x5380)

2.092860106s ago: executing program 2 (id=2205):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000000)=ANY=[], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000500)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050e86dd6018232500282cfffe8000000000000500000000000000bbfe8000000000000000000000000000aa840202"], 0x0)

2.022162746s ago: executing program 2 (id=2206):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x13, &(0x7f0000000700)=0x207, 0x4)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = memfd_create(&(0x7f00000007c0)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x96k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb90a\xa9\xb2\x04\x1d\xa1\xce\x8b\x19\xea\xef\xe3\x00\x00\x00\x00\x00\x00\x00\x00\x00\x16\xeb\xaf\xaa\xee\'t\xbe\x9b\rln\x7f\xab\x8d\xac\x06\x00\x00\x00\x00\x00\x00\x00\x9bY\xd9\xd4\xc6A\x84\x9d\\\xc4\x0e\xf4\bO\x80\xaa\r\b\xc0\xb9\x84\xd0,\'\xc5p\xb6 \x03\x12\xca\xef\x02f\xa2\x9d\x96\xa7{\x9d\xf0\xe2,T\x13\xc4W*\xd5\xeaX\x8c\xb3\x81\r=\"\xe1\xf2\xc9^\x90\xc1\xaa\xb6\xb8\xad\x04\x13\xe7\x04\x1b5qMnI-\xeaA\x1a\xd9-%!\x0f\ab\x1e\xab\a\xe4\xd4E\xf9\x8f\xd2\x05\xfd\xa7I\xf9#8\xf6bc\x1bl\xb2\xcb\xf9rc)&\x1d\xce\x970\x01\xbb\xcb@\xd8Y\xb9\x93=7\f9\xe5`\xb3\xf3=;\xe3E[\x12?\xe2n\xd0\x05\x98\x1c6F;fp\xce\xcfH\xaf\x93\x1e\x8e\x88\xfdx\xd9\x03,B\xd1L:\xaf!\x81\x03\x18\xa1\xf3\x87\x18\x83\xc0\x7fJ+\xe0N\xa8>7}a\x91y\x19\x13\xf6\xee.j\xdbh\x00&$\xf8e\x01\xa6\x0e\a\xcf\xaeq\xae\xbc\x94\x88eidE\xf9\xb9\xaa\x14U\t\xf4\xe27\xf9\xf5\xb2/\xa3\xafX\xd1\xf3v\x85z\x1b?)\f\xf8>\xa7C\xdfW\x80\xc5\xed\xbbPM\x9b\x1b*\'O\x7f@%Q\x8c\x98\x7f\xffd\xc2VY\xf4\x9b\xf3\x80\xed\x13m\x15\x86\x9d\xa1\xa8\xae\xa9fsLp\x1f.\x11\x83K\x18k\xf4\x8e\xc6>B!\xca\xe4\xd4\x1f\xe0F\x01\b\xb2\x0fK\x8e\xfbv\x00Yh<\xd0\x85\xcbn\x17\x9a\x8b\xa4\x04p\xe1\xfd\xf1\xb9\xf2\x94\x81\xe5v\xf6\x8dY\xd9\r_\xe4\x00\xfcb\xff=\x9fQC\xcf\x8c\x97\xd1@\xeem\x992U\x01\xb5\x15\x00\xfa\x11\xa1\xfc\xe4\xc8\v\x90\xbf\x1f\x11\xc4t\x91Z\xbb[\xe0?\xa6pV\xa3\xba\xbe\xde\xda\xb3~&~]', 0x1)
r4 = dup(r3)
syz_clone(0xd006391, 0x0, 0xffffffffffffff6f, 0x0, 0x0, 0x0)
execveat(r4, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x1000)
ioctl$COMEDI_CMD(0xffffffffffffffff, 0x80506409, &(0x7f0000000180)={0x1, 0x1, 0x80, 0xd, 0x40, 0x1, 0x2, 0x3, 0x20, 0x1, 0x20, 0xa, 0x0, 0x0, 0x0})
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r5, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r6, 0x0, <r7=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r5, 0x3ba0, &(0x7f0000000180)={0x48, 0x12, r7, 0x0, r6})
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
r8 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_int(r8, 0x1, 0x1, &(0x7f0000000140)=0xa, 0x4)
write$bt_hci(r2, &(0x7f0000000100)=ANY=[@ANYRESHEX=r2, @ANYRES64, @ANYRES32=r2, @ANYRES32=r2, @ANYRESHEX=r2, @ANYRESOCT=r8], 0x8)

1.779131603s ago: executing program 3 (id=2208):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000000)="2ef20fd6ca440f20c03501000000440f22c0c4025daceff2430f2b9d00000000420f01f00f01c3c4e2797996fb000000c744240000000080c744240212350000c7442406000000000f011424470f01cfc442f930aa76300000", 0x59}], 0x1, 0x51, 0x0, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000010401010000000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.532515223s ago: executing program 5 (id=2211):
timer_create(0x0, &(0x7f0000000080)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x100000a, 0x204031, 0xffffffffffffffff, 0x1bf5f000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x18, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f00000002c0)=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
write$FUSE_INIT(r0, &(0x7f0000000200)={0x50, 0x0, r1, {0x7, 0x26, 0x5, 0xfffffffff323ca46, 0x0, 0xfffc, 0x0, 0x5d3186cc, 0x0, 0x0, 0x20, 0xfffffffd}}, 0x50)
creat(0x0, 0x0)
read$FUSE(r0, &(0x7f0000002100)={0x2020, 0x0, <r2=>0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
chown(&(0x7f0000000000)='./file0\x00', r3, r4)
write$FUSE_INTERRUPT(r0, &(0x7f0000000040)={0x10, 0xffffffffffffffda, r2}, 0x10)

1.471745863s ago: executing program 3 (id=2213):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100ff2bbe11a5ce7879edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9", 0x32, 0x20000000, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pselect6(0x0, 0x0, 0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0x40, 0x4}, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)=@x86={0x3, 0x4, 0xfb, 0x0, 0x10001, 0x2, 0x3, 0xd4, 0x7, 0x2, 0x4, 0x1, 0x0, 0x7, 0x3, 0x65, 0x5, 0x9, 0xc, '\x00', 0x8})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.170821633s ago: executing program 2 (id=2216):
openat$selinux_avc_cache_stats(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x2, 0xfffffffff5110f4e, 0xd, 0x285, 0xf7b, 0x2, 0x0, 0x0, 0x1, 0x4}}, 0x50)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, 0x0}], 0x1, 0x3f, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0xa5)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$bind(&(0x7f0000000100)='.\x00', 0x0, 0x0, 0x1085408, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0xae, @loopback}, 0x1c)

1.091940327s ago: executing program 5 (id=2217):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000140)={0x73622a85, 0x1381, 0x1})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x44, 0x0, &(0x7f0000000040)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x48, 0x18, &(0x7f00000016c0)={@flat=@weak_binder={0x77622a85, 0x0, 0x1}, @flat=@binder={0x73622a85, 0x0, 0x3}, @flat=@binder={0x73622a85, 0xa, 0x3}}, &(0x7f0000000000)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000880)={0x6c, 0x0, &(0x7f00000006c0)=[@reply_sg={0x40486312, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}, @dead_binder_done, @acquire_done={0x40106309, 0x3}], 0x50, 0x0, &(0x7f00000007c0)="4a280f8924d4b57f232b27e311faca5e6d66b39ac5bfd89a6ab1e622d14fc467b0413a7d33eda4035c1098c43664a8fd183bcb40dfa71d23b6286f7bb505db146ad36e5befc7079d2e3f3df8538559fa"})

992.272469ms ago: executing program 5 (id=2219):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fda000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f00000001c0)="b805000000b9fa0000000f01d9660f78c4020a1bf7b805000000b90000c0fe0fae41d901000000b87f8b7f26ba000000000f30660fc775022e0fba600c980f320f3566b857000f00d0", 0x49}], 0x1, 0x10, 0x0, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000240)={0xbe, 0x0, 0x1})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fd6000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, 0x0}], 0x1, 0xa, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

801.319785ms ago: executing program 2 (id=2221):
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = syz_open_procfs$pagemap(0x0, &(0x7f0000000a00))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x16, 0x0, 0x0, 0xfffffffffffffffa, 0x11, 0x0, 0x3, 0x30})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x845, 0x9, 0xfffffffffffffffd, 0x8, 0x10000, 0x0, 0x4002004c2, 0x2000000000fff, 0x1400000000000000, 0x0, 0x3fd, 0x80, 0x3, 0x0, 0x8, 0x4000000000008d], 0x100000, 0x80})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

663.120967ms ago: executing program 4 (id=2223):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
lsetxattr$trusted_overlay_origin(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x1e0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})

656.898381ms ago: executing program 5 (id=2224):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002100)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000062c0)="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", 0x2000, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x10, 0xffffffffffffffda, 0x3ff, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000180)={0x50, 0x0, r1, {0x7, 0x2b, 0xffffffde, 0x2040d00c, 0x0, 0xfffe, 0x2, 0x1, 0x0, 0x0, 0x100, 0x100}}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40242, 0x1)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r3, 0x42, 0x1ff)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000004, 0x10011, r2, 0x78e17000)
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x9)

590.145918ms ago: executing program 2 (id=2225):
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000300)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0xc45, 0x760b, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x4, 0x30, 0x40, "", [{{0x9, 0x4, 0x0, 0xff, 0x1, 0x3, 0x1, 0x2, 0x8, {0x9, 0x21, 0x6, 0x6, 0x1, {0x22, 0xf54}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x5, 0x9, 0x6}}}}}]}}]}}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0})
ioctl$XFS_IOC_ATTRMULTI_BY_HANDLE(0xffffffffffffffff, 0x4048587b, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002c80), 0x0)
getgroups(0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)

533.711459ms ago: executing program 4 (id=2226):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x9, 0x4, 0x6, 0xfffa}, 0x1d, [0x1, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x4d, 0x39cc191a, 0x5c, 0x9, 0x3, 0x2, 0x0, 0x6, 0x3, 0x0, 0x2ab, 0x4, 0x7, 0x4, 0x3c5b, 0x1, 0x1ff, 0x9, 0x1, 0x1f461e2c, 0x7, 0xe661, 0x7fff, 0xb, 0x3, 0x7fff, 0x4c74, 0x80000000, 0x800242, 0xffffffff, 0xa, 0x0, 0x71, 0x2, 0x6, 0x3, 0x2, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x3, 0x80092a3, 0x4, 0x1, 0x20000000, 0x82, 0x0, 0x7, 0x7, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12f, 0x6, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x5, 0x1000, 0xfffffffc, 0x0, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x1, 0x0, 0xfffffffe, 0x8, 0x4, 0x8000, 0x9, 0x3fe, 0x401, 0xfff, 0x4, 0xfb, 0x5, 0x8000, 0x5f31, 0x4, 0x1, 0x2, 0x2, 0x20009, 0x4, 0x9, 0x8, 0x9, 0x6, 0xb, 0xa, 0x1, 0x9, 0x9, 0x2, 0x7f, 0x9, 0x1, 0x3, 0x9, 0xffffffff, 0x7, 0x3, 0x9, 0x48c93690, 0x42, 0x400004], [0x6, 0x6, 0x80000001, 0x2, 0xff, 0x40000100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x1, 0xb, 0x4, 0x5, 0x1005, 0x0, 0x1f0, 0xfffffffd, 0x2, 0x86, 0x1, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x800, 0x8, 0x5, 0x8001, 0x7, 0x38, 0x800003, 0x200, 0x80, 0x2, 0xcc52, 0x950bfaf, 0x1000, 0xa2, 0x7, 0x53cf697b, 0xfffffff9, 0x6, 0xac8, 0xbf, 0x10002, 0x403, 0x7ff, 0x3, 0x0, 0x1, 0xffff, 0x0, 0x6, 0x1c, 0x120000, 0x3, 0x6, 0xaaed, 0x4, 0xff], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x1, 0x6, 0x5, 0x0, 0x3, 0x80ce7, 0x1ff, 0x3, 0x7, 0x5, 0x1003, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xe620, 0x2, 0x2, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x4, 0xffffffff, 0x80000000, 0x7, 0x8, 0xc8, 0xee1, 0x0, 0xffff, 0x3, 0x7f, 0x100, 0x9602, 0x4, 0x2, 0xffff, 0x6, 0x1, 0x10080, 0x6, 0x8, 0x30b1d693, 0x5a2b, 0xc, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x20004010)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newsa={0x138, 0x10, 0x1, 0xbffffffe, 0x100, {{@in=@empty, @in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x1, 0x394, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@remote, {0x0, 0x9, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0x6, 0x0, 0x1f, 0x1ff}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0xa, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=@newsa={0x138, 0x1a, 0x1, 0xfffffffe, 0x100, {{@in6=@local, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in6=@local, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x9, 0xfffffffffffffffe}, {0x0, 0xfffffffc}, 0x70bd2a, 0x3504, 0xa, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)

438.907982ms ago: executing program 3 (id=2227):
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000180)={@loopback, 0x8000000, 0x0, 0x2, 0x1, 0x0, 0x8}, 0x20)
syslog(0x4, &(0x7f0000000000)=""/19, 0xb12288e90d7c8384)
mlock2(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1)

419.381303ms ago: executing program 5 (id=2228):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x60400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000080)={0x1, 0x0, [{0x4000009f, 0x0, 0x8}]})

352.342859ms ago: executing program 4 (id=2229):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
move_mount(0xffffffffffffff9c, &(0x7f0000000180)='./file0/../file0\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x146)

279.048216ms ago: executing program 4 (id=2230):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000015}, 0x2c000010)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0xd000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3, 0x0, 0x8, 0x6, 0x40}, {0x2000, 0x10000, 0xc, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7, 0xff}, {0x2000, 0x1000, 0xc, 0x0, 0x7, 0xc4, 0x0, 0x0, 0x48, 0x3, 0x0, 0xfc}, {0xeeef0000, 0x33331000, 0x8, 0x0, 0x1, 0x0, 0x9, 0x0, 0x8, 0x0, 0x4}, {0x6000, 0xffff1000, 0xe, 0x0, 0x0, 0x4, 0x0, 0xfd, 0x0, 0x3c}, {0x100000, 0x0, 0x0, 0x78, 0x5, 0x80, 0x2, 0x0, 0x3, 0xff, 0x1}, {0x0, 0xeeee0000, 0xa, 0x4, 0x0, 0x0, 0xa1, 0x20, 0x0, 0x0, 0x8}, {0x2, 0x6000, 0xc, 0x0, 0x0, 0x7, 0x8, 0x40, 0x26, 0x0, 0x0, 0x2}, {0x80a0000, 0x8cc}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x4, 0x200130, 0x0, 0xf801, 0x0, [0x80000001, 0x0, 0x1]})

278.924817ms ago: executing program 3 (id=2231):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20008045, &(0x7f00000001c0)={0xa, 0x2, 0x1000, @empty}, 0x1c)
getsockopt$inet6_int(r0, 0x29, 0x18, 0x0, &(0x7f0000000040))

169.918045ms ago: executing program 3 (id=2232):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r1, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000740)={0x50, 0x0, 0x0, {0x7, 0x26, 0x1, 0xfffffffff323ca46, 0x0, 0x7f, 0x1, 0x80, 0x0, 0x0, 0x1, 0x10001}}, 0x50)

169.716192ms ago: executing program 5 (id=2233):
r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a0003010000000904000000010100000a24010000000201020c24020000000000000800000524050000082407000000009e0c240700000000a3e82f07070d2407010604000000000000e90924030000000001"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000380)={0x2c, 0x0, &(0x7f0000000140)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x500a}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000005c0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x81, 0x1, "9a"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f00000009c0)={0x84, &(0x7f00000003c0)={0x40, 0x6, 0x1, '1'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

111.108251ms ago: executing program 4 (id=2234):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_LBT_MODE(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000640)=ANY=[@ANYBLOB="14000000d0c871"], 0x14}}, 0x20008000)
syz_genetlink_get_family_id$nfc(&(0x7f0000000cc0), r1)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000012c0), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r2, 0x1, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x851}, 0x8000)

155.708µs ago: executing program 3 (id=2235):
r0 = openat$selinux_policy(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r2 = memfd_create(&(0x7f0000000700)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\xc2%/u\x17\xdaM\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d_\v\xfc\xad\x0f\xa8\xc5\xad\x00\xc2\x12\xff\xff\xff\xff\xff\xff\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc3Gj+kV$\x80\x8aJ$\x81\xc0\x16\xf5\x9cz\x10\x97\xdb\x12H\xee/\xe3sY\x02D;L~\xd0\xb44\x01*\xfb\xa4 \xb2b\x90H$\xb2\xad\xbf\x8aM\xb6\x81\x81^\x02\xa0\xa7t\xfbHb\xa5=\xdd+$\xc06J\xb4\xf0\xab\x85Xz\x9f\xb2D$\xbe\xd9\x7f-\r\x9aj9r\n_\x11\xd4\x19\xb0\xa0G\xb7\x94\xf7\xfd~\xe9\xb6G\xbfE\xbb\x15\x15\xa6\xca2\xd0\xd3\x8c\xf7nO\xf9\xa8\xfd\x8a\xd2\xb2\xab\xff\xe4\xb0;\xd9\xa8\f\x03R\xbd%\x9fF\xee\x05\x06.3(QF?\f\x05\xa4uY\xee\xab\x8a\xeb~\xed\xcb0\xb7\xe7\xe6?8g\x8aN\xda\x8f\x9d\xde\x1eNaS\x8fLk\xf1\x965N\x18\x8c\xb9=5\x991\xae\x89N\x13\xd1\xf7\xf0\x13\xb2\xaeS\xa1\x97\x18j\xea\x9f\xde\xb6\xd4\xdc\xe6*\x9c\xfdV\x82\x05', 0x2)
ftruncate(r2, 0xffff)
fcntl$addseals(r2, 0x409, 0x3)
close(0x3)
ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000000)={r2, 0x1, 0x0, 0x2000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0x0)

0s ago: executing program 4 (id=2236):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=@newsa={0x13c, 0x1a, 0x413, 0x0, 0x25dfdbfb, {{@in6=@loopback, @in=@private=0xa010100, 0x0, 0x4be6, 0x4e24, 0x0, 0x2, 0x0, 0x20, 0x8, 0x0, 0xee00}, {@in=@empty, 0xf, 0x32}, @in6=@ipv4={'\x00', '\xff\xff', @remote}, {0x0, 0x0, 0x0, 0x5, 0xffffffffffffffff, 0x7fffffffffffffa, 0x6}, {0x38, 0x8, 0xcc}, {0xf5, 0x0, 0x1000}, 0x0, 0x3502, 0xa, 0x4, 0x1}, [@algo_aead={0x4c, 0x12, {{'rfc4309(ccm(aes))\x00'}, 0x0, 0x40}}]}, 0x13c}, 0x1, 0x0, 0x0, 0x40080}, 0x4000)

kernel console output (not intermixed with test programs):

=blk_file permissive=1
[  170.747046][   T40] audit: type=1400 audit(1772404129.520:25790): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  170.776175][   T40] audit: type=1400 audit(1772404129.580:25791): avc:  denied  { read } for  pid=10561 comm="syz.2.1450" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  170.789863][   T40] audit: type=1400 audit(1772404129.580:25792): avc:  denied  { read open } for  pid=10561 comm="syz.2.1450" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  170.799303][   T40] audit: type=1400 audit(1772404129.590:25793): avc:  denied  { read write } for  pid=5926 comm="syz-executor" name="loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  170.816363][   T40] audit: type=1400 audit(1772404129.590:25794): avc:  denied  { read write open } for  pid=5926 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  170.833106][   T40] audit: type=1400 audit(1772404129.590:25795): avc:  denied  { ioctl } for  pid=5926 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  170.848459][   T40] audit: type=1400 audit(1772404129.590:25796): avc:  denied  { ioctl } for  pid=10561 comm="syz.2.1450" path="/dev/fb0" dev="devtmpfs" ino=637 ioctlcmd=0x4610 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  170.862235][   T40] audit: type=1400 audit(1772404129.590:25797): avc:  denied  { module_request } for  pid=10561 comm="syz.2.1450" kmod="fb2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  171.211234][T10577] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1455'.
[  171.327409][ T5936] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  171.343247][T10577] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10577 comm=syz.4.1455
[  171.512871][ T6003] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  171.673866][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  171.853493][T10605] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow
[  172.025050][T10616] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1469'.
[  172.034585][T10600] netlink: 'syz.2.1464': attribute type 1 has an invalid length.
[  172.073998][T10600] 8021q: adding VLAN 0 to HW filter on device bond4
[  172.090126][T10605] bond4: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms
[  172.094928][T10605] bond4: entered allmulticast mode
[  172.095886][T10611] netlink: 'syz.3.1466': attribute type 1 has an invalid length.
[  172.102834][T10611] netlink: 228 bytes leftover after parsing attributes in process `syz.3.1466'.
[  172.109871][T10611] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1466'.
[  172.132783][T10611] macsec1: entered promiscuous mode
[  172.136141][T10611] macsec1: entered allmulticast mode
[  172.435291][T10639] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  172.741541][T10650] FAULT_INJECTION: forcing a failure.
[  172.741541][T10650] name failslab, interval 1, probability 0, space 0, times 0
[  172.749718][T10650] CPU: 3 UID: 0 PID: 10650 Comm: syz.2.1480 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  172.749747][T10650] Tainted: [L]=SOFTLOCKUP
[  172.749753][T10650] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  172.749763][T10650] Call Trace:
[  172.749769][T10650]  <TASK>
[  172.749776][T10650]  dump_stack_lvl+0x100/0x190
[  172.749817][T10650]  should_fail_ex.cold+0x5/0xa
[  172.749840][T10650]  should_failslab+0xc2/0x120
[  172.749868][T10650]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  172.749892][T10650]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  172.749925][T10650]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  172.749959][T10650]  mmu_topup_memory_caches+0x25/0x170
[  172.749981][T10650]  kvm_mmu_load+0xd6/0x23e0
[  172.749999][T10650]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  172.750022][T10650]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  172.750049][T10650]  ? __pfx_kvm_mmu_load+0x10/0x10
[  172.750067][T10650]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  172.750094][T10650]  ? kvm_check_and_inject_events+0x961/0x10c0
[  172.750115][T10650]  ? record_steal_time+0x370/0xbe0
[  172.750142][T10650]  vcpu_run+0x39f4/0x5ca0
[  172.750173][T10650]  ? __pfx_vcpu_run+0x10/0x10
[  172.750203][T10650]  ? rcu_is_watching+0x12/0xc0
[  172.750227][T10650]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  172.750247][T10650]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  172.750275][T10650]  kvm_vcpu_ioctl+0x730/0x1730
[  172.750303][T10650]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  172.750334][T10650]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  172.750360][T10650]  ? do_vfs_ioctl+0x226/0x13e0
[  172.750424][T10650]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  172.750449][T10650]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  172.750485][T10650]  ? __fget_files+0x215/0x3d0
[  172.750501][T10650]  ? hook_file_ioctl_common+0x146/0x410
[  172.750532][T10650]  ? selinux_file_ioctl+0x139/0x290
[  172.750551][T10650]  ? selinux_file_ioctl+0xb4/0x290
[  172.750573][T10650]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  172.750599][T10650]  __x64_sys_ioctl+0x18e/0x210
[  172.750625][T10650]  do_syscall_64+0x106/0xf80
[  172.750649][T10650]  ? clear_bhb_loop+0x40/0x90
[  172.750671][T10650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.750688][T10650] RIP: 0033:0x7fa89299c799
[  172.750704][T10650] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  172.750719][T10650] RSP: 002b:00007fa893938028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.750737][T10650] RAX: ffffffffffffffda RBX: 00007fa892c15fa0 RCX: 00007fa89299c799
[  172.750747][T10650] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  172.750757][T10650] RBP: 00007fa893938090 R08: 0000000000000000 R09: 0000000000000000
[  172.750768][T10650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  172.750777][T10650] R13: 00007fa892c16038 R14: 00007fa892c15fa0 R15: 00007ffd07802488
[  172.750803][T10650]  </TASK>
[  172.752025][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  173.785852][T10693] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  173.788501][T10693] UDF-fs: Scanning with blocksize 2048 failed
[  173.795755][T10693] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  173.799152][T10693] UDF-fs: Scanning with blocksize 4096 failed
[  173.830076][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  173.875407][T10695] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  174.002942][T10701] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1493'.
[  174.552871][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  174.648407][T10734] binder: 10733:10734 ioctl c0306201 200000000640 returned -22
[  174.742349][T10731] QAT: Invalid ioctl -1060596699
[  174.870438][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  174.978233][T10740] Invalid logical block size (536872960)
[  175.113121][T10747] FAULT_INJECTION: forcing a failure.
[  175.113121][T10747] name failslab, interval 1, probability 0, space 0, times 0
[  175.118765][T10747] CPU: 1 UID: 0 PID: 10747 Comm: syz.3.1511 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  175.118794][T10747] Tainted: [L]=SOFTLOCKUP
[  175.118800][T10747] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  175.118810][T10747] Call Trace:
[  175.118817][T10747]  <TASK>
[  175.118824][T10747]  dump_stack_lvl+0x100/0x190
[  175.118866][T10747]  should_fail_ex.cold+0x5/0xa
[  175.118889][T10747]  should_failslab+0xc2/0x120
[  175.118917][T10747]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  175.118940][T10747]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  175.118974][T10747]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  175.119005][T10747]  mmu_topup_memory_caches+0x25/0x170
[  175.119027][T10747]  kvm_mmu_load+0xd6/0x23e0
[  175.119044][T10747]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  175.119068][T10747]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  175.119096][T10747]  ? __pfx_kvm_mmu_load+0x10/0x10
[  175.119112][T10747]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  175.119137][T10747]  ? kvm_check_and_inject_events+0x961/0x10c0
[  175.119157][T10747]  ? record_steal_time+0x370/0xbe0
[  175.119186][T10747]  vcpu_run+0x39f4/0x5ca0
[  175.119216][T10747]  ? __pfx_vcpu_run+0x10/0x10
[  175.119243][T10747]  ? rcu_is_watching+0x12/0xc0
[  175.119267][T10747]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  175.119287][T10747]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  175.119316][T10747]  kvm_vcpu_ioctl+0x730/0x1730
[  175.119344][T10747]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  175.119371][T10747]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  175.119398][T10747]  ? do_vfs_ioctl+0x226/0x13e0
[  175.119424][T10747]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  175.119450][T10747]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  175.119488][T10747]  ? __fget_files+0x215/0x3d0
[  175.119503][T10747]  ? hook_file_ioctl_common+0x146/0x410
[  175.119531][T10747]  ? selinux_file_ioctl+0x139/0x290
[  175.119550][T10747]  ? selinux_file_ioctl+0xb4/0x290
[  175.119572][T10747]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  175.119629][T10747]  __x64_sys_ioctl+0x18e/0x210
[  175.119654][T10747]  do_syscall_64+0x106/0xf80
[  175.119676][T10747]  ? clear_bhb_loop+0x40/0x90
[  175.119700][T10747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.119720][T10747] RIP: 0033:0x7f8fedb9c799
[  175.119736][T10747] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  175.119754][T10747] RSP: 002b:00007f8feea16028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  175.119773][T10747] RAX: ffffffffffffffda RBX: 00007f8fede15fa0 RCX: 00007f8fedb9c799
[  175.119785][T10747] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  175.119796][T10747] RBP: 00007f8feea16090 R08: 0000000000000000 R09: 0000000000000000
[  175.119807][T10747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  175.119818][T10747] R13: 00007f8fede16038 R14: 00007f8fede15fa0 R15: 00007fffde27cf28
[  175.119845][T10747]  </TASK>
[  175.261498][T10751] binder: 10749:10751 ioctl c00c6211 0 returned -14
[  175.388301][T10756] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10756 comm=syz.2.1515
[  175.583964][T10760] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10760 comm=syz.2.1515
[  175.725076][   T40] kauditd_printk_skb: 890 callbacks suppressed
[  175.725089][   T40] audit: type=1400 audit(1772404134.530:26688): avc:  denied  { sys_module } for  pid=10762 comm="syz.4.1517" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  175.737002][   T40] audit: type=1400 audit(1772404134.530:26689): avc:  denied  { module_request } for  pid=10762 comm="syz.4.1517" kmod="syzkaller0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  175.749456][   T40] audit: type=1400 audit(1772404134.550:26690): avc:  denied  { module_request } for  pid=10755 comm="syz.2.1515" kmod="crypto-hmac(md5)" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  175.803407][   T40] audit: type=1400 audit(1772404134.610:26691): avc:  denied  { read write } for  pid=9124 comm="syz-executor" name="loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.819733][   T40] audit: type=1400 audit(1772404134.610:26692): avc:  denied  { read write open } for  pid=9124 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.854029][   T40] audit: type=1400 audit(1772404134.610:26693): avc:  denied  { ioctl } for  pid=9124 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.869979][   T40] audit: type=1400 audit(1772404134.650:26694): avc:  denied  { module_request } for  pid=10755 comm="syz.2.1515" kmod="crypto-hmac(md5)-all" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  175.889037][   T40] audit: type=1400 audit(1772404134.690:26695): avc:  denied  { read write } for  pid=5923 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.907697][   T40] audit: type=1400 audit(1772404134.690:26696): avc:  denied  { read write open } for  pid=5923 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.910002][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  175.931266][   T40] audit: type=1400 audit(1772404134.690:26697): avc:  denied  { ioctl } for  pid=5923 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  176.075547][T10783] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1521'.
[  176.772934][T10833] FAULT_INJECTION: forcing a failure.
[  176.772934][T10833] name failslab, interval 1, probability 0, space 0, times 0
[  176.777320][T10833] CPU: 3 UID: 0 PID: 10833 Comm: syz.2.1527 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  176.777339][T10833] Tainted: [L]=SOFTLOCKUP
[  176.777342][T10833] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  176.777349][T10833] Call Trace:
[  176.777353][T10833]  <TASK>
[  176.777357][T10833]  dump_stack_lvl+0x100/0x190
[  176.777379][T10833]  should_fail_ex.cold+0x5/0xa
[  176.777394][T10833]  should_failslab+0xc2/0x120
[  176.777413][T10833]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  176.777429][T10833]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  176.777450][T10833]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  176.777472][T10833]  mmu_topup_memory_caches+0x25/0x170
[  176.777486][T10833]  kvm_mmu_load+0xd6/0x23e0
[  176.777497][T10833]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  176.777512][T10833]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  176.777529][T10833]  ? __pfx_kvm_mmu_load+0x10/0x10
[  176.777540][T10833]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  176.777558][T10833]  ? kvm_check_and_inject_events+0x961/0x10c0
[  176.777572][T10833]  ? record_steal_time+0x370/0xbe0
[  176.777589][T10833]  vcpu_run+0x39f4/0x5ca0
[  176.777607][T10833]  ? __pfx_vcpu_run+0x10/0x10
[  176.777625][T10833]  ? rcu_is_watching+0x12/0xc0
[  176.777640][T10833]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  176.777653][T10833]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  176.777675][T10833]  kvm_vcpu_ioctl+0x730/0x1730
[  176.777693][T10833]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  176.777709][T10833]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  176.777726][T10833]  ? do_vfs_ioctl+0x226/0x13e0
[  176.777742][T10833]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  176.777759][T10833]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  176.777791][T10833]  ? __fget_files+0x215/0x3d0
[  176.777803][T10833]  ? hook_file_ioctl_common+0x146/0x410
[  176.777822][T10833]  ? selinux_file_ioctl+0x139/0x290
[  176.777837][T10833]  ? selinux_file_ioctl+0xb4/0x290
[  176.777855][T10833]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  176.777876][T10833]  __x64_sys_ioctl+0x18e/0x210
[  176.777898][T10833]  do_syscall_64+0x106/0xf80
[  176.777913][T10833]  ? clear_bhb_loop+0x40/0x90
[  176.777932][T10833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.777946][T10833] RIP: 0033:0x7fa89299c799
[  176.777960][T10833] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  176.777974][T10833] RSP: 002b:00007fa893938028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  176.777990][T10833] RAX: ffffffffffffffda RBX: 00007fa892c15fa0 RCX: 00007fa89299c799
[  176.778000][T10833] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  176.778009][T10833] RBP: 00007fa893938090 R08: 0000000000000000 R09: 0000000000000000
[  176.778018][T10833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  176.778027][T10833] R13: 00007fa892c16038 R14: 00007fa892c15fa0 R15: 00007ffd07802488
[  176.778050][T10833]  </TASK>
[  176.891311][T10836] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1529'.
[  176.954224][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  177.521712][ T1327] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  177.590257][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  177.670624][ T1327] usb 8-1: Using ep0 maxpacket: 8
[  177.676217][ T1327] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  177.689810][ T1327] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  177.694356][ T1327] usb 8-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  177.699294][ T1327] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  177.712595][ T1327] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  177.717312][ T1327] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.737897][ T1327] usbtmc 8-1:16.0: bulk endpoints not found
[  177.862215][T10860] FAULT_INJECTION: forcing a failure.
[  177.862215][T10860] name failslab, interval 1, probability 0, space 0, times 0
[  177.866736][T10860] CPU: 3 UID: 0 PID: 10860 Comm: syz.2.1538 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  177.866756][T10860] Tainted: [L]=SOFTLOCKUP
[  177.866760][T10860] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  177.866767][T10860] Call Trace:
[  177.866771][T10860]  <TASK>
[  177.866778][T10860]  dump_stack_lvl+0x100/0x190
[  177.866801][T10860]  should_fail_ex.cold+0x5/0xa
[  177.866816][T10860]  should_failslab+0xc2/0x120
[  177.866835][T10860]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  177.866852][T10860]  ? sidtab_sid2str_get+0x17a/0x670
[  177.866870][T10860]  kmemdup_noprof+0x29/0x60
[  177.866887][T10860]  sidtab_sid2str_get+0x17a/0x670
[  177.866903][T10860]  security_sid_to_context_core+0x35a/0x6d0
[  177.866917][T10860]  ? avc_audit_post_callback+0x115/0x910
[  177.866933][T10860]  avc_audit_post_callback+0x1aa/0x910
[  177.866950][T10860]  ? __pfx_audit_log_lsm_data+0x10/0x10
[  177.866963][T10860]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  177.866977][T10860]  ? skb_put+0x138/0x180
[  177.866992][T10860]  ? audit_log_n_string+0x256/0x550
[  177.867009][T10860]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  177.867024][T10860]  common_lsm_audit+0x23f/0x2b0
[  177.867038][T10860]  ? __pfx_common_lsm_audit+0x10/0x10
[  177.867064][T10860]  ? avc_denied+0x14a/0x190
[  177.867083][T10860]  slow_avc_audit+0x186/0x210
[  177.867099][T10860]  ? __pfx_slow_avc_audit+0x10/0x10
[  177.867116][T10860]  ? find_held_lock+0x2b/0x80
[  177.867130][T10860]  ? avc_has_perm_noaudit+0x2b3/0x3b0
[  177.867152][T10860]  avc_has_perm+0x1a6/0x1e0
[  177.867168][T10860]  ? __pfx_avc_has_perm+0x10/0x10
[  177.867185][T10860]  ? is_bpf_text_address+0x94/0x1a0
[  177.867204][T10860]  sock_has_perm+0x251/0x2f0
[  177.867222][T10860]  ? __pfx_sock_has_perm+0x10/0x10
[  177.867241][T10860]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  177.867256][T10860]  ? import_ubuf+0x1b6/0x220
[  177.867273][T10860]  ? __might_fault+0xc0/0x140
[  177.867287][T10860]  ? __might_fault+0xc5/0x140
[  177.867304][T10860]  security_socket_sendmsg+0xd3/0x230
[  177.867323][T10860]  ____sys_sendmsg+0x85f/0xc30
[  177.867340][T10860]  ? __pfx_____sys_sendmsg+0x10/0x10
[  177.867361][T10860]  ___sys_sendmsg+0x190/0x1e0
[  177.867378][T10860]  ? __pfx____sys_sendmsg+0x10/0x10
[  177.867411][T10860]  __sys_sendmsg+0x170/0x220
[  177.867422][T10860]  ? __pfx___sys_sendmsg+0x10/0x10
[  177.867443][T10860]  do_syscall_64+0x106/0xf80
[  177.867455][T10860]  ? clear_bhb_loop+0x40/0x90
[  177.867469][T10860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.867480][T10860] RIP: 0033:0x7fa89299c799
[  177.867490][T10860] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  177.867500][T10860] RSP: 002b:00007fa893938028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  177.867511][T10860] RAX: ffffffffffffffda RBX: 00007fa892c15fa0 RCX: 00007fa89299c799
[  177.867518][T10860] RDX: 0000000000008410 RSI: 0000200000000000 RDI: 0000000000000003
[  177.867524][T10860] RBP: 00007fa893938090 R08: 0000000000000000 R09: 0000000000000000
[  177.867530][T10860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.867536][T10860] R13: 00007fa892c16038 R14: 00007fa892c15fa0 R15: 00007ffd07802488
[  177.867551][T10860]  </TASK>
[  177.999837][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.169328][T10865] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1539'.
[  178.195929][T10862] program syz.2.1539 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  178.347416][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.347471][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.355819][T10868] romfs: unable to set blocksize
[  178.355819][T10868] 
[  178.367286][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.373906][T10868] romfs: unable to set blocksize
[  178.373906][T10868] 
[  178.379079][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.385115][T10868] romfs: unable to set blocksize
[  178.385115][T10868] 
[  178.392134][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.393066][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.397673][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.404057][T10868] romfs: unable to set blocksize
[  178.404057][T10868] 
[  178.409101][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.414783][T10868] romfs: unable to set blocksize
[  178.414783][T10868] 
[  178.415232][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.423735][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.424429][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.427864][T10868] romfs: unable to set blocksize
[  178.427864][T10868] 
[  178.431071][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.438688][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.439104][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.447802][T10868] romfs: unable to set blocksize
[  178.447802][T10868] 
[  178.455783][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.462980][T10868] romfs: unable to set blocksize
[  178.462980][T10868] 
[  178.469325][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.471841][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.474455][T10868] romfs: unable to set blocksize
[  178.474455][T10868] 
[  178.477556][T10869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1540'.
[  178.488618][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.494826][T10868] romfs: unable to set blocksize
[  178.494826][T10868] 
[  178.502721][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.506822][T10868] romfs: unable to set blocksize
[  178.506822][T10868] 
[  178.517223][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.523357][T10868] romfs: unable to set blocksize
[  178.523357][T10868] 
[  178.528990][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.537244][T10868] romfs: unable to set blocksize
[  178.537244][T10868] 
[  178.545253][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.549224][T10868] romfs: unable to set blocksize
[  178.549224][T10868] 
[  178.560317][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.564424][T10868] romfs: unable to set blocksize
[  178.564424][T10868] 
[  178.575396][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.582058][T10868] romfs: unable to set blocksize
[  178.582058][T10868] 
[  178.589274][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.596403][T10868] romfs: unable to set blocksize
[  178.596403][T10868] 
[  178.607821][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.612191][T10868] romfs: unable to set blocksize
[  178.612191][T10868] 
[  178.619088][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.625430][T10868] romfs: unable to set blocksize
[  178.625430][T10868] 
[  178.632708][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.636657][T10868] romfs: unable to set blocksize
[  178.636657][T10868] 
[  178.647404][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.655057][T10868] romfs: unable to set blocksize
[  178.655057][T10868] 
[  178.664035][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.669107][T10868] romfs: unable to set blocksize
[  178.669107][T10868] 
[  178.675517][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.679449][T10868] romfs: unable to set blocksize
[  178.679449][T10868] 
[  178.685450][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.689402][T10868] romfs: unable to set blocksize
[  178.689402][T10868] 
[  178.699040][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.703576][T10868] romfs: unable to set blocksize
[  178.703576][T10868] 
[  178.709559][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.714940][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.715498][T10868] romfs: unable to set blocksize
[  178.715498][T10868] 
[  178.724643][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.728680][T10868] romfs: unable to set blocksize
[  178.728680][T10868] 
[  178.736809][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.741802][T10868] romfs: unable to set blocksize
[  178.741802][T10868] 
[  178.748144][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.754176][T10868] romfs: unable to set blocksize
[  178.754176][T10868] 
[  178.763601][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.772444][T10868] romfs: unable to set blocksize
[  178.772444][T10868] 
[  178.785749][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.793675][T10868] romfs: unable to set blocksize
[  178.793675][T10868] 
[  178.806470][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.814668][T10868] romfs: unable to set blocksize
[  178.814668][T10868] 
[  178.825715][T10868] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  178.832926][T10868] romfs: unable to set blocksize
[  178.832926][T10868] 
[  179.030538][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.192763][T10883] nbd: couldn't find device at index -2127233020
[  179.897232][T10901] vcan0: tx drop: invalid sa for name 0x0000000000000002
[  180.070907][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  180.281740][   T29] usb 8-1: USB disconnect, device number 4
[  180.553255][T10911] 0�: renamed from hsr0
[  180.567796][T10911] 0�: entered allmulticast mode
[  180.589682][T10911] hsr_slave_0: entered allmulticast mode
[  180.592441][T10911] hsr_slave_1: entered allmulticast mode
[  180.611861][T10911] A link change request failed with some changes committed already. Interface 
70� may have been left with an inconsistent configuration, please check.
[  180.618654][T10912] 1�: renamed from 
70� (while UP)
[  180.641565][T10912] A link change request failed with some changes committed already. Interface 
71� may have been left with an inconsistent configuration, please check.
[  180.686721][T10911] openvswitch: netlink: Key type 44 is out of range max 32
[  180.730953][   T40] kauditd_printk_skb: 3046 callbacks suppressed
[  180.730969][   T40] audit: type=1400 audit(1772404139.540:29744): avc:  denied  { ioctl } for  pid=10910 comm="syz.4.1556" path="socket:[39183]" dev="sockfs" ino=39183 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  180.770552][   T40] audit: type=1400 audit(1772404139.540:29745): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  180.782577][   T40] audit: type=1400 audit(1772404139.540:29746): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  180.795028][   T40] audit: type=1400 audit(1772404139.540:29747): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  180.806705][   T40] audit: type=1400 audit(1772404139.540:29748): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  180.819699][   T40] audit: type=1400 audit(1772404139.540:29749): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  180.832346][   T40] audit: type=1400 audit(1772404139.540:29750): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  180.843845][   T40] audit: type=1400 audit(1772404139.540:29751): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  180.871566][   T40] audit: type=1400 audit(1772404139.540:29752): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  180.877321][ T5926] audit: audit_backlog=65 > audit_backlog_limit=64
[  181.101395][T10922] netlink: 'syz.3.1560': attribute type 1 has an invalid length.
[  181.110122][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  181.131965][T10922] 8021q: adding VLAN 0 to HW filter on device bond1
[  181.168569][T10922] bond1: (slave veth5): Enslaving as an active interface with a down link
[  181.188482][T10922] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  181.195944][T10922] bond1: (slave wlan0): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  181.438952][T10927] xt_CT: You must specify a L4 protocol and not use inversions on it
[  181.542409][T10929] PKCS7: Unknown OID: [4] 5.25.43183(bad)
[  181.545109][T10929] PKCS7: Only support pkcs7_signedData type
[  181.750617][ T5968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.150035][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.973490][T10958] sp0: Synchronizing with TNC
[  182.982272][T10958] sp0: Found TNC
[  183.048980][T10957] [U] �``
[  183.189844][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.869469][T10981] __nla_validate_parse: 30 callbacks suppressed
[  183.869487][T10981] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1581'.
[  184.112265][T10986] syzkaller0: entered promiscuous mode
[  184.114932][T10986] syzkaller0: entered allmulticast mode
[  184.230131][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.479905][    C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  184.793969][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  185.269962][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  185.740213][   T40] kauditd_printk_skb: 2791 callbacks suppressed
[  185.740258][   T40] audit: type=1400 audit(1772404144.550:32542): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  185.760143][ T1327] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  185.779776][   T40] audit: type=1400 audit(1772404144.550:32543): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  185.799237][   T40] audit: type=1400 audit(1772404144.550:32544): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  185.807940][   T40] audit: type=1400 audit(1772404144.550:32545): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  185.815470][   T40] audit: type=1400 audit(1772404144.550:32546): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  185.823405][ T5926] audit: audit_backlog=65 > audit_backlog_limit=64
[  185.824407][T11001] audit: audit_backlog=65 > audit_backlog_limit=64
[  185.826574][ T5926] audit: audit_lost=111 audit_rate_limit=0 audit_backlog_limit=64
[  185.826588][ T5926] audit: backlog limit exceeded
[  185.828036][ T5926] audit: audit_backlog=65 > audit_backlog_limit=64
[  185.919719][ T1327] usb 8-1: Using ep0 maxpacket: 16
[  185.951837][ T1327] usb 8-1: config 198 has too many interfaces: 98, using maximum allowed: 32
[  185.954959][ T1327] usb 8-1: config 198 has an invalid descriptor of length 33, skipping remainder of the config
[  185.958740][ T1327] usb 8-1: config 198 has 0 interfaces, different from the descriptor's value: 98
[  185.981650][T11008] input: syz0 as /devices/virtual/input/input18
[  185.993084][ T1327] usb 8-1: string descriptor 0 read error: -22
[  185.995370][ T1327] usb 8-1: New USB device found, idVendor=05e3, idProduct=1bf0, bcdDevice=ca.00
[  185.999025][ T1327] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.217346][ T1327] usb 8-1: USB disconnect, device number 5
[  186.312361][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  186.935192][T11029] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  187.087100][T11034] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1600'.
[  187.114277][T11035] random: crng reseeded on system resumption
[  187.320088][ T5968] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  187.330396][T11041] xt_cluster: node mask cannot exceed total number of nodes
[  187.335491][T11041] netlink: 71 bytes leftover after parsing attributes in process `syz.4.1603'.
[  187.350130][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  187.422973][T11043] xt_CT: You must specify a L4 protocol and not use inversions on it
[  187.469801][ T5968] usb 7-1: device descriptor read/64, error -71
[  187.510090][   T24] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  187.660034][   T24] usb 8-1: Using ep0 maxpacket: 32
[  187.668975][   T24] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  187.674575][   T24] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  187.678964][   T24] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  187.683186][   T24] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  187.688021][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  187.699187][   T24] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  187.703867][   T24] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  187.707384][   T24] usb 8-1: Product: syz
[  187.708909][   T24] usb 8-1: Manufacturer: syz
[  187.710724][ T5968] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  187.714014][   T24] usb 8-1: SerialNumber: syz
[  187.720842][   T24] usb 8-1: config 0 descriptor??
[  187.738166][   T24] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  187.752683][   T24] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  187.840822][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  187.850115][ T5968] usb 7-1: device descriptor read/64, error -71
[  187.960849][ T5968] usb usb7-port1: attempt power cycle
[  188.032110][ T5981] usb 8-1: USB disconnect, device number 6
[  188.054870][ T5981] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[  188.147225][T11062] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1609'.
[  188.309834][ T5968] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  188.331687][ T5968] usb 7-1: device descriptor read/8, error -71
[  188.390025][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.473429][T11071] XFS (nbd3): SB validate failed with error -5.
[  188.564291][T11081] xt_hashlimit: size too large, truncated to 1048576
[  188.579985][ T5968] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  188.604515][ T5968] usb 7-1: device descriptor read/8, error -71
[  188.663368][T11084] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1612'.
[  188.674069][T11084] : entered promiscuous mode
[  188.710930][ T5968] usb usb7-port1: unable to enumerate USB device
[  188.719541][T11081] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1614'.
[  188.723666][T11081] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1614'.
[  189.397850][T11087] syzkaller0: entered promiscuous mode
[  189.400700][T11087] syzkaller0: entered allmulticast mode
[  189.430135][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.880223][   T29] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  190.030415][   T29] usb 9-1: Using ep0 maxpacket: 8
[  190.036909][   T29] usb 9-1: config 0 has no interfaces?
[  190.047301][   T29] usb 9-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  190.053145][   T29] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  190.055914][   T29] usb 9-1: Product: syz
[  190.057413][   T29] usb 9-1: Manufacturer: syz
[  190.059180][   T29] usb 9-1: SerialNumber: syz
[  190.067840][   T29] usb 9-1: config 0 descriptor??
[  190.219813][ T1327] usb 7-1: new full-speed USB device number 10 using dummy_hcd
[  190.400557][ T1327] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  190.404035][ T1327] usb 7-1: New USB device found, idVendor=1e71, idProduct=200e, bcdDevice= 0.00
[  190.408555][ T1327] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.420834][ T1327] usb 7-1: config 0 descriptor??
[  190.435621][ T1327] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  190.470173][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  190.754032][   T40] kauditd_printk_skb: 4191 callbacks suppressed
[  190.754050][   T40] audit: type=1400 audit(1772404149.550:36734): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.769360][   T40] audit: type=1400 audit(1772404149.560:36735): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.782171][   T40] audit: type=1400 audit(1772404149.560:36736): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.796189][   T40] audit: type=1400 audit(1772404149.560:36737): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.808497][   T40] audit: type=1400 audit(1772404149.560:36738): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.815953][ T5981] usb 7-1: USB disconnect, device number 10
[  190.822541][   T40] audit: type=1400 audit(1772404149.560:36739): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.835530][   T40] audit: type=1400 audit(1772404149.560:36740): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.850177][   T40] audit: type=1400 audit(1772404149.560:36741): avc:  denied  { setattr } for  pid=5926 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  190.855216][ T5926] audit: audit_backlog=65 > audit_backlog_limit=64
[  190.862858][ T5926] audit: audit_lost=114 audit_rate_limit=0 audit_backlog_limit=64
[  190.872576][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  190.891171][    T9] usb 9-1: USB disconnect, device number 6
[  191.057607][T11103] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1621'.
[  191.243840][T11110] comedi comedi4: bad chanlist[0]=0x0000007f chan=127 range length=1
[  191.387680][ T5935] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  191.392428][ T5935] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  191.395742][ T5935] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  191.399018][ T5935] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  191.405470][ T5935] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  191.498869][ T9653] bridge0: port 3(syz_tun) entered disabled state
[  191.511341][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  191.538844][ T9653] syz_tun (unregistering): left allmulticast mode
[  191.542159][ T9653] syz_tun (unregistering): left promiscuous mode
[  191.544395][ T9653] bridge0: port 3(syz_tun) entered disabled state
[  191.716966][T11118] chnl_net:caif_netlink_parms(): no params data found
[  191.780326][T11118] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.783608][T11118] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.786863][T11118] bridge_slave_0: entered allmulticast mode
[  191.790961][T11118] bridge_slave_0: entered promiscuous mode
[  191.796888][T11118] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.800350][T11118] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.803680][T11118] bridge_slave_1: entered allmulticast mode
[  191.807746][T11118] bridge_slave_1: entered promiscuous mode
[  191.837316][T11118] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  191.846112][T11118] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  191.870026][ T1327] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  191.877135][T11118] team0: Port device team_slave_0 added
[  191.884436][T11118] team0: Port device team_slave_1 added
[  191.912582][T11118] batman_adv: batadv0: Adding interface: batadv_slave_0
[  191.915634][T11118] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  191.926680][T11118] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  191.933985][T11118] batman_adv: batadv0: Adding interface: batadv_slave_1
[  191.937085][T11118] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  191.948154][T11118] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.996872][T11118] hsr_slave_0: entered promiscuous mode
[  192.000674][T11118] hsr_slave_1: entered promiscuous mode
[  192.003702][T11118] debugfs: 'hsr0' already exists in 'hsr'
[  192.006167][T11118] Cannot create hsr debugfs directory
[  192.023417][ T1327] usb 7-1: config index 0 descriptor too short (expected 39, got 27)
[  192.027022][ T1327] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  192.033568][ T1327] usb 7-1: config 0 interface 0 has no altsetting 0
[  192.041565][ T1327] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  192.045544][ T1327] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  192.049129][ T1327] usb 7-1: Product: syz
[  192.051369][ T1327] usb 7-1: Manufacturer: syz
[  192.053522][ T1327] usb 7-1: SerialNumber: syz
[  192.061550][ T1327] usb 7-1: config 0 descriptor??
[  192.074362][ T1327] hub 7-1:0.0: bad descriptor, ignoring hub
[  192.076949][ T1327] hub 7-1:0.0: probe with driver hub failed with error -5
[  192.092288][ T1327] usb 7-1: selecting invalid altsetting 0
[  192.184771][T11118] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  192.194614][T11118] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  192.203765][T11118] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  192.211915][T11118] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  192.280783][T11118] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.283638][T11118] bridge0: port 2(bridge_slave_1) entered forwarding state
[  192.286113][T11118] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.288483][T11118] bridge0: port 1(bridge_slave_0) entered forwarding state
[  192.440799][  T832] usb 7-1: USB disconnect, device number 11
[  192.471053][T11147] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1632'.
[  192.474019][T11147] openvswitch: netlink: Flow actions attr not present in new flow.
[  192.477064][T11118] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.503355][  T169] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.506327][  T169] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.522432][T11118] 8021q: adding VLAN 0 to HW filter on device team0
[  192.531381][T10819] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.533740][T10819] bridge0: port 1(bridge_slave_0) entered forwarding state
[  192.545663][T10819] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.548412][T10819] bridge0: port 2(bridge_slave_1) entered forwarding state
[  192.560691][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  193.029131][T11158] input: syz1 as /devices/virtual/input/input19
[  193.048014][T11118] 8021q: adding VLAN 0 to HW filter on device batadv0
[  193.075604][T11160] sp0: Synchronizing with TNC
[  193.281832][T11169] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=771 sclass=netlink_route_socket pid=11169 comm=syz.4.1638
[  193.370303][T11176] FAULT_INJECTION: forcing a failure.
[  193.370303][T11176] name failslab, interval 1, probability 0, space 0, times 0
[  193.374493][T11176] CPU: 2 UID: 0 PID: 11176 Comm: syz.2.1641 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  193.374520][T11176] Tainted: [L]=SOFTLOCKUP
[  193.374527][T11176] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  193.374537][T11176] Call Trace:
[  193.374543][T11176]  <TASK>
[  193.374551][T11176]  dump_stack_lvl+0x100/0x190
[  193.374581][T11176]  should_fail_ex.cold+0x5/0xa
[  193.374612][T11176]  should_failslab+0xc2/0x120
[  193.374634][T11176]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  193.374652][T11176]  ? sidtab_sid2str_get+0x17a/0x670
[  193.374669][T11176]  kmemdup_noprof+0x29/0x60
[  193.374686][T11176]  sidtab_sid2str_get+0x17a/0x670
[  193.374702][T11176]  security_sid_to_context_core+0x35a/0x6d0
[  193.374715][T11176]  ? avc_audit_post_callback+0x115/0x910
[  193.374732][T11176]  avc_audit_post_callback+0x1aa/0x910
[  193.374748][T11176]  ? __pfx_audit_log_lsm_data+0x10/0x10
[  193.374761][T11176]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  193.374775][T11176]  ? skb_put+0x138/0x180
[  193.374790][T11176]  ? audit_log_n_string+0x256/0x550
[  193.374807][T11176]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  193.374822][T11176]  common_lsm_audit+0x23f/0x2b0
[  193.374835][T11176]  ? __pfx_common_lsm_audit+0x10/0x10
[  193.374847][T11176]  ? avc_denied+0x14a/0x190
[  193.374865][T11176]  slow_avc_audit+0x186/0x210
[  193.374881][T11176]  ? __pfx_slow_avc_audit+0x10/0x10
[  193.374898][T11176]  ? find_held_lock+0x2b/0x80
[  193.374912][T11176]  ? avc_has_perm_noaudit+0x2b3/0x3b0
[  193.374933][T11176]  avc_has_perm+0x1a6/0x1e0
[  193.374937][T11178] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1642'.
[  193.374950][T11176]  ? __pfx_avc_has_perm+0x10/0x10
[  193.374966][T11176]  ? is_bpf_text_address+0x94/0x1a0
[  193.374986][T11176]  sock_has_perm+0x251/0x2f0
[  193.375004][T11176]  ? __pfx_sock_has_perm+0x10/0x10
[  193.375023][T11176]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  193.375037][T11176]  ? import_ubuf+0x1b6/0x220
[  193.375054][T11176]  ? __might_fault+0xc0/0x140
[  193.375069][T11176]  ? __might_fault+0xc5/0x140
[  193.375086][T11176]  security_socket_sendmsg+0xd3/0x230
[  193.375105][T11176]  ____sys_sendmsg+0x85f/0xc30
[  193.375123][T11176]  ? __pfx_____sys_sendmsg+0x10/0x10
[  193.375145][T11176]  ___sys_sendmsg+0x190/0x1e0
[  193.375161][T11176]  ? __pfx____sys_sendmsg+0x10/0x10
[  193.375194][T11176]  __sys_sendmsg+0x170/0x220
[  193.375207][T11176]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.375239][T11176]  do_syscall_64+0x106/0xf80
[  193.375260][T11176]  ? clear_bhb_loop+0x40/0x90
[  193.375280][T11176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.375292][T11176] RIP: 0033:0x7fa89299c799
[  193.375302][T11176] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  193.375313][T11176] RSP: 002b:00007fa893938028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  193.375324][T11176] RAX: ffffffffffffffda RBX: 00007fa892c15fa0 RCX: 00007fa89299c799
[  193.375330][T11176] RDX: 00000000200000c0 RSI: 00002000000002c0 RDI: 0000000000000004
[  193.375337][T11176] RBP: 00007fa893938090 R08: 0000000000000000 R09: 0000000000000000
[  193.375343][T11176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.375349][T11176] R13: 00007fa892c16038 R14: 00007fa892c15fa0 R15: 00007ffd07802488
[  193.375363][T11176]  </TASK>
[  193.429913][ T5935] Bluetooth: hci3: command tx timeout
[  193.511137][ T5935] Bluetooth: hci4: command 0x0405 tx timeout
[  193.591281][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  193.684945][T11189] x_tables: duplicate underflow at hook 2
[  193.763975][T11193] 8021q: VLANs not supported on ip_vti0
[  193.891757][T11118] veth0_vlan: entered promiscuous mode
[  193.910919][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  193.936886][T11118] veth1_vlan: entered promiscuous mode
[  194.004220][T11118] veth0_macvtap: entered promiscuous mode
[  194.018437][T11118] veth1_macvtap: entered promiscuous mode
[  194.054435][T11118] batman_adv: batadv0: Interface activated: batadv_slave_0
[  194.067631][T11118] batman_adv: batadv0: Interface activated: batadv_slave_1
[  194.088920][T11206] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  194.097764][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  194.102277][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  194.105543][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  194.120409][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  194.218563][  T169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  194.224941][  T169] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.258268][  T169] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  194.263384][  T169] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.436656][T11220] Invalid logical block size (536872960)
[  194.601212][ T5981] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  194.644274][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  194.769727][ T5981] usb 7-1: Using ep0 maxpacket: 32
[  194.776831][ T5981] usb 7-1: config 0 has an invalid interface number: 119 but max is 0
[  194.779600][ T5981] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  194.782941][ T5981] usb 7-1: config 0 has no interface number 0
[  194.784974][ T5981] usb 7-1: config 0 interface 119 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  194.801331][ T5981] usb 7-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73
[  194.804634][ T5981] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.808173][ T5981] usb 7-1: Product: syz
[  194.811611][ T5981] usb 7-1: Manufacturer: syz
[  194.812823][T11239] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  194.813781][ T5981] usb 7-1: SerialNumber: syz
[  194.817508][ T5981] usb 7-1: config 0 descriptor??
[  194.827454][ T5981] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.119/input/input20
[  195.109241][T11216] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  195.125236][T11250] syz.3.1665 (11250): attempted to duplicate a private mapping with mremap.  This is not supported.
[  195.129480][T11216] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  195.133778][T11216] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  195.150841][  T832] usb 7-1: USB disconnect, device number 12
[  195.194134][T11251] x_tables: duplicate underflow at hook 1
[  195.367317][T11257] netlink: 476 bytes leftover after parsing attributes in process `syz.5.1668'.
[  195.371514][T11257] ksmbd: Unknown IPC event: 3, ignore.
[  195.510070][ T5936] Bluetooth: hci3: command tx timeout
[  195.589674][ T5936] Bluetooth: hci4: command 0x0405 tx timeout
[  195.641805][T11270] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1674'.
[  195.644827][T11270] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1674'.
[  195.645551][T11271] netlink: 'syz.3.1675': attribute type 2 has an invalid length.
[  195.689127][ T5941] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  195.781183][   T40] kauditd_printk_skb: 1629 callbacks suppressed
[  195.781201][   T40] audit: type=1400 audit(1772404154.593:38370): avc:  denied  { execmem } for  pid=11274 comm="syz.2.1676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  195.819372][   T40] audit: type=1400 audit(1772404154.623:38371): avc:  denied  { read write } for  pid=11118 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  195.847349][   T40] audit: type=1400 audit(1772404154.643:38372): avc:  denied  { read write open } for  pid=11118 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  195.863093][   T40] audit: type=1400 audit(1772404154.643:38373): avc:  denied  { ioctl } for  pid=11118 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  195.908913][   T40] audit: type=1400 audit(1772404154.713:38374): avc:  denied  { create } for  pid=11281 comm="syz.5.1679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  195.914739][T11276] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1676'.
[  195.917385][   T40] audit: type=1400 audit(1772404154.723:38375): avc:  denied  { create } for  pid=11274 comm="syz.2.1676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  195.929411][   T40] audit: type=1400 audit(1772404154.723:38376): avc:  denied  { create } for  pid=11274 comm="syz.2.1676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  195.941437][   T40] audit: type=1400 audit(1772404154.723:38377): avc:  denied  { write } for  pid=11274 comm="syz.2.1676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  195.949513][   T40] audit: type=1400 audit(1772404154.723:38378): avc:  denied  { create } for  pid=11281 comm="syz.5.1679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  195.956166][   T40] audit: type=1400 audit(1772404154.723:38379): avc:  denied  { read } for  pid=11274 comm="syz.2.1676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  196.296678][T11303] pim6reg: entered allmulticast mode
[  196.720253][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  196.728868][T11314] nfs4: Unknown parameter '��������'
[  196.950861][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  197.196851][T11343] input: syz0 as /devices/virtual/input/input21
[  197.510241][ T1327] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  197.589827][ T5936] Bluetooth: hci3: command tx timeout
[  197.674056][ T1327] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  197.678141][ T1327] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  197.683981][ T1327] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  197.688101][ T1327] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  197.694985][ T1327] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  197.703541][ T1327] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  197.707696][ T1327] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  197.709759][  T832] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  197.711755][ T1327] usb 9-1: Product: syz
[  197.715999][ T1327] usb 9-1: Manufacturer: syz
[  197.726797][ T1327] cdc_wdm 9-1:1.0: skipping garbage
[  197.729254][ T1327] cdc_wdm 9-1:1.0: skipping garbage
[  197.734835][ T1327] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  197.737617][ T1327] cdc_wdm 9-1:1.0: Unknown control protocol
[  197.760498][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  197.897115][  T832] usb 10-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  197.911749][  T832] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  197.914934][  T832] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  197.917567][  T832] usb 10-1: Product: syz
[  197.919011][  T832] usb 10-1: Manufacturer: syz
[  197.925650][  T832] usb 10-1: SerialNumber: syz
[  197.942040][T11345] cdc_wdm 9-1:1.0: Error submitting int urb - -90
[  198.484341][T11373] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1711'.
[  198.507419][T11375] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  198.511730][T11376] cdc_wdm 9-1:1.0: Error submitting int urb - -90
[  198.721230][T11376] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.726097][T11376] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.776926][T11387] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  198.800012][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.932142][T11393] netlink: 'syz.3.1717': attribute type 1 has an invalid length.
[  198.935693][T11393] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  199.203457][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  199.250685][    T9] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  199.409720][    T9] usb 8-1: Using ep0 maxpacket: 8
[  199.421211][    T9] usb 8-1: config 0 has no interfaces?
[  199.425236][    T9] usb 8-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  199.428294][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.432744][    T9] usb 8-1: Product: syz
[  199.434228][    T9] usb 8-1: Manufacturer: syz
[  199.435857][    T9] usb 8-1: SerialNumber: syz
[  199.442593][    T9] usb 8-1: config 0 descriptor??
[  199.669759][ T5936] Bluetooth: hci3: command tx timeout
[  199.830172][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.835527][T10819] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.839391][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.843128][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.990437][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  200.147273][   T39] usb 9-1: USB disconnect, device number 7
[  200.195174][    T9] usb 8-1: USB disconnect, device number 7
[  200.462035][T11422] openvswitch: netlink: Unexpected mask (mask=20840, allowed=10048)
[  200.472780][ T1327] usb 10-1: USB disconnect, device number 2
[  200.799818][   T34] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  200.805363][   T40] kauditd_printk_skb: 650 callbacks suppressed
[  200.805381][   T40] audit: type=1400 audit(1772404159.613:39030): avc:  denied  { ioctl } for  pid=11423 comm="syz.4.1728" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  200.833272][   T40] audit: type=1400 audit(1772404159.643:39031): avc:  denied  { create } for  pid=11431 comm="syz.5.1732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  200.842260][   T40] audit: type=1400 audit(1772404159.643:39032): avc:  denied  { write } for  pid=11431 comm="syz.5.1732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  200.860110][    T9] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  200.864769][   T40] audit: type=1400 audit(1772404159.673:39033): avc:  denied  { ioctl } for  pid=11425 comm="syz.3.1729" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  200.876398][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  200.880714][   T40] audit: type=1400 audit(1772404159.693:39034): avc:  denied  { ioctl } for  pid=11423 comm="syz.4.1728" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  200.941104][   T40] audit: type=1400 audit(1772404159.753:39035): avc:  denied  { ioctl } for  pid=11425 comm="syz.3.1729" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  200.962658][   T40] audit: type=1400 audit(1772404159.773:39036): avc:  denied  { ioctl } for  pid=11423 comm="syz.4.1728" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  200.965082][   T34] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  200.976300][   T34] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.978809][   T34] usb 9-1: Product: syz
[  200.980344][   T34] usb 9-1: Manufacturer: syz
[  200.982076][   T34] usb 9-1: SerialNumber: syz
[  200.986995][   T40] audit: type=1400 audit(1772404159.793:39037): avc:  denied  { ioctl } for  pid=11423 comm="syz.4.1728" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x550a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  200.988405][   T34] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  201.005726][   T40] audit: type=1400 audit(1772404159.793:39038): avc:  denied  { ioctl } for  pid=11423 comm="syz.4.1728" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5509 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  201.020803][   T40] audit: type=1400 audit(1772404159.813:39039): avc:  denied  { ioctl } for  pid=11423 comm="syz.4.1728" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  201.035839][ T5981] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  201.047434][    T9] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  201.055436][    T9] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  201.067558][    T9] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  201.077648][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.088806][T11426] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  201.101180][    T9] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  201.361222][    T9] usb 8-1: USB disconnect, device number 8
[  201.590769][   T34] usb 9-1: USB disconnect, device number 8
[  201.746366][T11446] IPVS: set_ctl: invalid protocol: 136 100.1.1.0:20002
[  201.840777][T11449] can: request_module (can-proto-0) failed.
[  201.847223][T11449] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1737'.
[  201.912439][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  201.962809][T11454] netlink: 'syz.2.1738': attribute type 1 has an invalid length.
[  201.986649][T11454] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1738'.
[  202.069790][ T5981] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[  202.073228][ T5981] ath9k_htc: Failed to initialize the device
[  202.078717][   T34] usb 9-1: ath9k_htc: USB layer deinitialized
[  202.329648][   T24] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  202.386161][T11474] netlink: 'syz.4.1747': attribute type 6 has an invalid length.
[  202.518385][   T24] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  202.522702][   T24] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  202.527102][   T24] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  202.531184][   T24] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.537360][T11481] netlink: 'syz.2.1748': attribute type 9 has an invalid length.
[  202.542210][T11481] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1748'.
[  202.542602][   T24] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  202.550968][   T24] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  202.554526][   T24] usb 10-1: Product: syz
[  202.556511][   T24] usb 10-1: Manufacturer: syz
[  202.571531][   T24] cdc_wdm 10-1:1.0: skipping garbage
[  202.573965][   T24] cdc_wdm 10-1:1.0: skipping garbage
[  202.582159][   T24] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  202.584920][   T24] cdc_wdm 10-1:1.0: Unknown control protocol
[  202.798555][    C2] wdm_int_callback: 2 callbacks suppressed
[  202.798577][    C2] cdc_wdm 10-1:1.0: nonzero urb status received: -71
[  202.804246][    C2] wdm_int_callback: 2 callbacks suppressed
[  202.804262][    C2] cdc_wdm 10-1:1.0: wdm_int_callback - 0 bytes
[  202.810008][    C2] cdc_wdm 10-1:1.0: nonzero urb status received: -71
[  202.813008][    C2] cdc_wdm 10-1:1.0: wdm_int_callback - 0 bytes
[  202.815965][    C2] cdc_wdm 10-1:1.0: nonzero urb status received: -71
[  202.818803][    C2] cdc_wdm 10-1:1.0: wdm_int_callback - 0 bytes
[  202.823368][    C2] cdc_wdm 10-1:1.0: nonzero urb status received: -71
[  202.826289][    C2] cdc_wdm 10-1:1.0: wdm_int_callback - 0 bytes
[  202.831378][    C2] cdc_wdm 10-1:1.0: nonzero urb status received: -71
[  202.834433][    C2] cdc_wdm 10-1:1.0: wdm_int_callback - 0 bytes
[  202.837509][    C2] cdc_wdm 10-1:1.0: nonzero urb status received: -71
[  202.840408][    C2] cdc_wdm 10-1:1.0: wdm_int_callback - 0 bytes
[  202.843499][   T24] usb 10-1: USB disconnect, device number 3
[  202.921346][T11493] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1753'.
[  202.968530][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.104105][T11499] sctp: [Deprecated]: syz.3.1757 (pid 11499) Use of struct sctp_assoc_value in delayed_ack socket option.
[  203.104105][T11499] Use struct sctp_sack_info instead
[  203.363117][T11501] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1552 sclass=netlink_route_socket pid=11501 comm=syz.4.1755
[  203.450914][T11515] syzkaller0: entered promiscuous mode
[  203.452960][T11515] syzkaller0: entered allmulticast mode
[  203.578018][T11521] /dev/nullb0: Can't open blockdev
[  203.719849][  T832] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  203.902666][  T832] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  203.906790][  T832] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.909223][T11537] gfs2: path_lookup on b::: returned error -2
[  203.912651][  T832] usb 7-1: Product: syz
[  203.914562][  T832] usb 7-1: Manufacturer: syz
[  203.916609][  T832] usb 7-1: SerialNumber: syz
[  203.972444][  T832] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  203.991979][ T1327] net_ratelimit: 1 callbacks suppressed
[  203.991993][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  204.038386][T11539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1769'.
[  204.044294][T11540] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1769'.
[  204.048052][T11540] netlink: 'syz.3.1769': attribute type 30 has an invalid length.
[  204.049827][ T7047] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  204.072194][T11539] netlink: 'syz.3.1769': attribute type 30 has an invalid length.
[  204.351717][T11557] vcan0: tx drop: invalid da for name 0x0000000000000002
[  204.422338][T11555] wireguard0: entered promiscuous mode
[  204.435626][T11555] macsec1: entered promiscuous mode
[  204.441080][T11554] block nbd5: shutting down sockets
[  204.449795][ T1327] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  204.604113][ T1327] usb 9-1: Using ep0 maxpacket: 8
[  204.616469][   T29] usb 7-1: USB disconnect, device number 13
[  204.621979][ T1327] usb 9-1: config 0 has no interfaces?
[  204.641616][ T1327] usb 9-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  204.647290][ T1327] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.654447][ T1327] usb 9-1: Product: syz
[  204.656378][ T1327] usb 9-1: Manufacturer: syz
[  204.658537][ T1327] usb 9-1: SerialNumber: syz
[  204.672677][ T1327] usb 9-1: config 0 descriptor??
[  205.030613][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  205.109691][ T7047] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  205.112513][ T7047] ath9k_htc: Failed to initialize the device
[  205.115757][   T29] usb 7-1: ath9k_htc: USB layer deinitialized
[  205.416702][   T39] usb 9-1: USB disconnect, device number 9
[  205.813418][   T40] kauditd_printk_skb: 1139 callbacks suppressed
[  205.813430][   T40] audit: type=1400 audit(1772404164.623:40159): avc:  denied  { read } for  pid=11597 comm="syz.3.1790" dev="nsfs" ino=4026532899 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  205.839128][   T40] audit: type=1400 audit(1772404164.623:40160): avc:  denied  { read open } for  pid=11597 comm="syz.3.1790" path="net:[4026532899]" dev="nsfs" ino=4026532899 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  205.869827][   T40] audit: type=1400 audit(1772404164.623:40161): avc:  denied  { create } for  pid=11597 comm="syz.3.1790" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  205.876241][   T40] audit: type=1400 audit(1772404164.633:40162): avc:  denied  { getopt } for  pid=11597 comm="syz.3.1790" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  205.881225][ T5930] audit: audit_backlog=65 > audit_backlog_limit=64
[  205.885773][ T5930] audit: audit_lost=122 audit_rate_limit=0 audit_backlog_limit=64
[  205.888328][ T5930] audit: backlog limit exceeded
[  205.891351][   T40] audit: type=1326 audit(1772404164.613:40158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11590 comm="syz.5.1785" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff1b193db19 code=0x7ffc0000
[  205.900907][   T40] audit: type=1326 audit(1772404164.633:40163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11590 comm="syz.5.1785" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1b199c799 code=0x7ffc0000
[  205.904240][T11603] audit: audit_backlog=65 > audit_backlog_limit=64
[  205.978892][T11605] netlink: 'syz.2.1792': attribute type 1 has an invalid length.
[  205.982226][T11606] netlink: 'syz.2.1792': attribute type 1 has an invalid length.
[  206.070406][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  206.074470][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  206.123722][T11620] overlayfs: failed to resolve './file2': -2
[  206.315988][T11626] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1795'.
[  206.520831][T11636] loop3: detected capacity change from 0 to 128
[  206.803292][T11651] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  206.955671][T11656] ntfs3(loop2): try to read out of volume at offset 0x0
[  207.110163][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  207.482235][T11672] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  207.486734][T11672] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  207.491227][T11672] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  207.515358][T11672] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  207.522849][T11672] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  207.533179][T11672] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  207.535901][T11672] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  207.549409][T11672] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  207.792297][T11689] cgroup: noprefix used incorrectly
[  207.868639][T11694] overlayfs: workdir and upperdir must reside under the same mount
[  208.156598][  T220] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.160981][  T832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.164397][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.179171][T11708] tmpfs: Unknown parameter 'usrq�ota_inode_hardlimit'
[  208.285958][T11712] trusted_key: encrypted_key: key user:syz not found
[  208.456620][T11722] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1833'.
[  208.544199][T11724] QAT: Stopping all acceleration devices.
[  209.110669][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.117201][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.121492][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.192030][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.430813][ T5936] Bluetooth: hci2: command 0x0c1a tx timeout
[  209.510091][ T5936] Bluetooth: hci4: command 0x0405 tx timeout
[  209.545263][T11783] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1850'.
[  209.589695][ T5936] Bluetooth: hci3: command 0x0c1a tx timeout
[  209.666639][T11785] netlink: 'syz.2.1851': attribute type 1 has an invalid length.
[  209.802382][T11787] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  209.807548][ T5936] Bluetooth: hci2: unexpected event for opcode 0x041b
[  209.813535][T11787] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1852'.
[  209.888395][T11795] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1854'.
[  209.900208][T11795] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1854'.
[  209.906813][T11795] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1854'.
[  209.926603][T11795] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1854'.
[  210.229819][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  210.391676][T11814] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1862'.
[  210.654651][T11831] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1865'.
[  210.664714][T11832] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1867'.
[  210.844964][   T40] kauditd_printk_skb: 907 callbacks suppressed
[  210.844977][   T40] audit: type=1400 audit(1772404169.653:41069): avc:  denied  { allowed } for  pid=11838 comm="syz.4.1870" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  210.864101][   T40] audit: type=1400 audit(1772404169.653:41070): avc:  denied  { create } for  pid=11838 comm="syz.4.1870" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  210.907011][   T40] audit: type=1400 audit(1772404169.653:41071): avc:  denied  { map } for  pid=11838 comm="syz.4.1870" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=43797 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  210.919984][   T40] audit: type=1400 audit(1772404169.653:41072): avc:  denied  { read write } for  pid=11838 comm="syz.4.1870" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=43797 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  210.933834][   T40] audit: type=1400 audit(1772404169.653:41073): avc:  denied  { map } for  pid=11838 comm="syz.4.1870" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=43797 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  210.946822][   T40] audit: type=1400 audit(1772404169.653:41074): avc:  denied  { read write } for  pid=11838 comm="syz.4.1870" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=43797 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  210.955482][   T40] audit: type=1400 audit(1772404169.653:41075): avc:  denied  { create } for  pid=11838 comm="syz.4.1870" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  210.962612][   T40] audit: type=1400 audit(1772404169.653:41076): avc:  denied  { read write } for  pid=11118 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  210.972463][   T40] audit: type=1400 audit(1772404169.653:41077): avc:  denied  { open } for  pid=11118 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  210.989179][   T40] audit: type=1400 audit(1772404169.653:41078): avc:  denied  { ioctl } for  pid=11118 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  211.141389][T11819] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  211.157907][T11855] kAFS: No cell specified
[  211.270325][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  211.550387][T11879] syzkaller1: entered promiscuous mode
[  211.552176][T11879] syzkaller1: entered allmulticast mode
[  211.602788][ T5935] Bluetooth: hci4: command 0x0405 tx timeout
[  211.608046][T11881] netlink: 88 bytes leftover after parsing attributes in process `syz.5.1885'.
[  211.669772][ T5935] Bluetooth: hci3: command 0x0c1a tx timeout
[  211.749823][T11889] overlayfs: failed to resolve './file1/file0': -2
[  212.159985][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  212.176840][T11905] 9p: Could not find request transport: vir�tio
[  212.268599][T11912] xt_l2tp: unknown flags: 51
[  212.310004][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  212.461519][T11917] /dev/sr0: Can't open blockdev
[  213.003085][ T5936] block nbd3: Receive control failed (result -32)
[  213.100291][T11954] use of bytesused == 0 is deprecated and will be removed in the future,
[  213.104563][T11954] use the actual size instead.
[  213.229255][T11976] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  213.359353][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.680995][ T5935] Bluetooth: hci4: command 0x0405 tx timeout
[  213.759974][ T5935] Bluetooth: hci3: command 0x0c1a tx timeout
[  213.946937][T12011] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  213.949163][T12011] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  213.954362][T12011] vhci_hcd vhci_hcd.0: Device attached
[  213.985510][T12015] vhci_hcd: connection closed
[  213.987041][ T1201] vhci_hcd vhci_hcd.2: stop threads
[  213.994099][ T1201] vhci_hcd vhci_hcd.2: release socket
[  213.998486][ T1201] vhci_hcd vhci_hcd.2: disconnect device
[  214.389839][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  214.538878][T12034] 8021q: adding VLAN 0 to HW filter on device bond6
[  214.549107][T12034] macvlan3: entered promiscuous mode
[  214.551777][T12034] macvlan3: entered allmulticast mode
[  214.554247][T12034] bond6: entered promiscuous mode
[  214.556352][T12034] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  214.563711][T12034] bond6: left promiscuous mode
[  214.852228][T12047] loop9: detected capacity change from 0 to 7
[  214.866760][T12047] Dev loop9: unable to read RDB block 7
[  214.869313][T12047]  loop9: unable to read partition table
[  214.885094][T12047] loop9: partition table beyond EOD, truncated
[  214.887423][T12047] loop_reread_partitions: partition scan of loop9 (�������g�C�j̖�P=��!MX���	���%��`�搘ȵ4FLQk݊5) failed (rc=-5)
[  215.190857][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  215.314659][T12071] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  215.317660][T12071] overlayfs: failed to set xattr on upper
[  215.321134][T12071] overlayfs: ...falling back to redirect_dir=nofollow.
[  215.323426][T12071] overlayfs: ...falling back to index=off.
[  215.325397][T12071] overlayfs: ...falling back to uuid=null.
[  215.336876][T12071] overlay: Unknown parameter 'dont_measure'
[  215.430098][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  215.515345][T12077] __nla_validate_parse: 6 callbacks suppressed
[  215.515364][T12077] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1954'.
[  215.602324][T12080] tmpfs: Unknown parameter '/dev/v4l-subdev#'
[  215.607080][T12080] tmpfs: Unknown parameter '/dev/v4l-subdev#'
[  215.757717][ T5936] Bluetooth: hci4: command 0x0405 tx timeout
[  215.840210][ T5936] Bluetooth: hci3: command 0x0c1a tx timeout
[  215.906337][   T40] kauditd_printk_skb: 984 callbacks suppressed
[  215.906354][   T40] audit: type=1400 audit(1772404174.713:42063): avc:  denied  { prog_load } for  pid=12102 comm="syz.3.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  215.919139][   T40] audit: type=1400 audit(1772404174.713:42064): avc:  denied  { bpf } for  pid=12102 comm="syz.3.1962" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  215.931218][   T40] audit: type=1400 audit(1772404174.713:42065): avc:  denied  { prog_load } for  pid=12102 comm="syz.3.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  215.939239][   T40] audit: type=1400 audit(1772404174.713:42066): avc:  denied  { perfmon } for  pid=12102 comm="syz.3.1962" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  215.949477][   T40] audit: type=1400 audit(1772404174.713:42067): avc:  denied  { bpf } for  pid=12102 comm="syz.3.1962" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  215.963589][   T40] audit: type=1400 audit(1772404174.723:42068): avc:  denied  { prog_run } for  pid=12102 comm="syz.3.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  215.974126][   T40] audit: type=1400 audit(1772404174.723:42069): avc:  denied  { create } for  pid=12102 comm="syz.3.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  215.985214][   T40] audit: type=1400 audit(1772404174.723:42070): avc:  denied  { read write } for  pid=12102 comm="syz.3.1962" name="vhost-vsock" dev="devtmpfs" ino=1301 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  216.002050][   T40] audit: type=1400 audit(1772404174.723:42071): avc:  denied  { open } for  pid=12102 comm="syz.3.1962" path="/dev/vhost-vsock" dev="devtmpfs" ino=1301 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  216.015006][   T40] audit: type=1400 audit(1772404174.723:42072): avc:  denied  { bind } for  pid=12102 comm="syz.3.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  216.071272][T12110] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1964'.
[  216.089661][T12112] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1965'.
[  216.122283][T12110] netlink: 'syz.3.1964': attribute type 13 has an invalid length.
[  216.213829][T12115] netlink: 'syz.2.1967': attribute type 13 has an invalid length.
[  216.234224][T12116] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1964'.
[  216.255620][T12120] macvlan0: entered promiscuous mode
[  216.471949][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  216.683869][T12136] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1973'.
[  216.889183][T12147] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1977'.
[  216.930634][T12152] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1979'.
[  217.104265][T12157] fuse: Unknown parameter 'r��qmode'
[  217.509881][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  217.836502][T12180] netlink: 'syz.2.1987': attribute type 10 has an invalid length.
[  217.845094][T12180] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1987'.
[  217.873291][T12181] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1987'.
[  217.874918][T12180] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1987'.
[  217.889485][T12181] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  217.897649][T12181] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  217.905216][T12181] bond0 (unregistering): Released all slaves
[  217.920068][ T5936] Bluetooth: hci3: command 0x0c1a tx timeout
[  218.060766][T12191] qnx6: unable to read the first superblock
[  218.063500][T12191] qnx6: unable to read the first superblock
[  218.066128][T12191] qnx6: unable to read the first superblock
[  218.082185][T12191] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  218.091708][T12194] qnx6: unable to read the first superblock
[  218.093896][T12194] qnx6: unable to read the first superblock
[  218.096081][T12194] qnx6: unable to read the first superblock
[  218.229868][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.550059][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.660822][T12222] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=12222 comm=syz.5.1998
[  218.675755][T12224] veth1_to_batadv: entered promiscuous mode
[  218.721923][T12226] binder: 12225:12226 ioctl 81f8943c 200000000440 returned -22
[  219.039847][    C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  219.058009][T12239] netlink: 'syz.2.2005': attribute type 1 has an invalid length.
[  219.139328][T12241] nbd: must specify a device to reconfigure
[  219.472371][T12256] 9pnet_fd: p9_fd_create_unix (12256): problem connecting socket: ./file0: -111
[  219.593291][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  219.661733][T12264] veth1_macvtap: left promiscuous mode
[  219.663775][T12264] macsec0: entered promiscuous mode
[  219.665558][T12264] macsec0: entered allmulticast mode
[  219.671850][T12264] veth1_macvtap: entered promiscuous mode
[  219.674339][T12264] veth1_macvtap: entered allmulticast mode
[  219.681652][T12264] macsec0: left promiscuous mode
[  219.683927][T12264] macsec0: left allmulticast mode
[  219.687635][T12264] veth1_macvtap: left allmulticast mode
[  220.633347][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  220.812400][T12312] __nla_validate_parse: 6 callbacks suppressed
[  220.812417][T12312] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2024'.
[  220.911288][   T40] kauditd_printk_skb: 870 callbacks suppressed
[  220.911306][   T40] audit: type=1400 audit(1772404179.723:42943): avc:  denied  { read write open } for  pid=12319 comm="syz.2.2028" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  220.933485][   T40] audit: type=1400 audit(1772404179.733:42944): avc:  denied  { read write } for  pid=11118 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  220.944635][   T40] audit: type=1400 audit(1772404179.733:42945): avc:  denied  { read write open } for  pid=11118 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  220.956405][   T40] audit: type=1400 audit(1772404179.733:42946): avc:  denied  { ioctl } for  pid=11118 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  220.969644][   T40] audit: type=1400 audit(1772404179.763:42947): avc:  denied  { read write } for  pid=5923 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  220.980679][   T40] audit: type=1400 audit(1772404179.763:42948): avc:  denied  { read write open } for  pid=5923 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  220.993254][   T40] audit: type=1400 audit(1772404179.763:42949): avc:  denied  { ioctl } for  pid=5923 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  221.004713][   T40] audit: type=1400 audit(1772404179.763:42950): avc:  denied  { read write } for  pid=5930 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  221.015444][   T40] audit: type=1400 audit(1772404179.763:42951): avc:  denied  { read write open } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  221.026378][   T40] audit: type=1400 audit(1772404179.763:42952): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  221.261251][T12341] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64852 sclass=netlink_route_socket pid=12341 comm=syz.3.2036
[  221.271003][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  221.336624][T12343] netlink: 'syz.3.2037': attribute type 2 has an invalid length.
[  221.343053][T12343] !: entered promiscuous mode
[  221.670282][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  222.039275][T12389] netlink: 88 bytes leftover after parsing attributes in process `syz.2.2049'.
[  222.223114][T12397] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2052'.
[  222.227813][T12397] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2052'.
[  222.235922][T12397] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2052'.
[  222.241220][T12397] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2052'.
[  222.718211][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  222.866476][T12429] ieee802154 phy1 wpan1: encryption failed: -22
[  222.949041][T12429] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2064'.
[  222.955499][T12429] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2064'.
[  222.966687][T12429] erspan0: entered promiscuous mode
[  222.978231][T12429] erspan0: left promiscuous mode
[  223.368761][T12451] /dev/nullb0: Can't open blockdev
[  223.415045][ T5935] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  223.417961][ T5935] Bluetooth: hci2: SCO packet for unknown connection handle 200
[  223.525764][T12464] FAULT_INJECTION: forcing a failure.
[  223.525764][T12464] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.536919][T12464] CPU: 1 UID: 0 PID: 12464 Comm: syz.3.2078 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  223.536946][T12464] Tainted: [L]=SOFTLOCKUP
[  223.536952][T12464] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  223.536962][T12464] Call Trace:
[  223.536967][T12464]  <TASK>
[  223.536974][T12464]  dump_stack_lvl+0x100/0x190
[  223.537017][T12464]  should_fail_ex.cold+0x5/0xa
[  223.537039][T12464]  _copy_from_user+0x2e/0xd0
[  223.537074][T12464]  __x64_sys_sendfile64+0x120/0x220
[  223.537093][T12464]  ? ksys_write+0x1ac/0x250
[  223.537118][T12464]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  223.537143][T12464]  do_syscall_64+0x106/0xf80
[  223.537168][T12464]  ? clear_bhb_loop+0x40/0x90
[  223.537189][T12464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.537212][T12464] RIP: 0033:0x7f8fedb9c799
[  223.537228][T12464] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  223.537244][T12464] RSP: 002b:00007f8feea16028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  223.537261][T12464] RAX: ffffffffffffffda RBX: 00007f8fede15fa0 RCX: 00007f8fedb9c799
[  223.537272][T12464] RDX: 0000200000000100 RSI: 0000000000000005 RDI: 0000000000000003
[  223.537283][T12464] RBP: 00007f8feea16090 R08: 0000000000000000 R09: 0000000000000000
[  223.537294][T12464] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000001
[  223.537304][T12464] R13: 00007f8fede16038 R14: 00007f8fede15fa0 R15: 00007fffde27cf28
[  223.537328][T12464]  </TASK>
[  223.750302][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  224.213585][T12489] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2086'.
[  224.228154][T12492] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2087'.
[  224.279910][   T39] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  224.324902][ T5968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  224.431167][   T39] usb 10-1: Using ep0 maxpacket: 8
[  224.453685][   T39] usb 10-1: config 0 has no interfaces?
[  224.482064][   T39] usb 10-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  224.485734][   T39] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.488969][   T39] usb 10-1: Product: syz
[  224.499938][   T39] usb 10-1: Manufacturer: syz
[  224.502064][   T39] usb 10-1: SerialNumber: syz
[  224.509317][   T39] usb 10-1: config 0 descriptor??
[  224.612079][T12510] wg1: entered promiscuous mode
[  224.614451][T12510] wg1: entered allmulticast mode
[  224.658841][ T5935] Bluetooth: hci4: unexpected event for opcode 0x0c57
[  224.790444][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  225.230383][   T34] usb 10-1: USB disconnect, device number 4
[  225.382958][T12533] FAULT_INJECTION: forcing a failure.
[  225.382958][T12533] name failslab, interval 1, probability 0, space 0, times 0
[  225.387272][T12533] CPU: 3 UID: 0 PID: 12533 Comm: syz.2.2101 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  225.387293][T12533] Tainted: [L]=SOFTLOCKUP
[  225.387297][T12533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  225.387304][T12533] Call Trace:
[  225.387317][T12533]  <TASK>
[  225.387322][T12533]  dump_stack_lvl+0x100/0x190
[  225.387350][T12533]  should_fail_ex.cold+0x5/0xa
[  225.387365][T12533]  should_failslab+0xc2/0x120
[  225.387385][T12533]  __kmalloc_cache_noprof+0x7a/0x6f0
[  225.387399][T12533]  ? alloc_pipe_info+0x10e/0x590
[  225.387411][T12533]  ? avc_has_perm+0x135/0x1e0
[  225.387434][T12533]  alloc_pipe_info+0x10e/0x590
[  225.387448][T12533]  splice_direct_to_actor+0x78f/0xa30
[  225.387462][T12533]  ? __pfx_direct_splice_actor+0x10/0x10
[  225.387473][T12533]  ? inode_has_perm+0x16d/0x1d0
[  225.387491][T12533]  ? file_has_perm+0x27b/0x350
[  225.387508][T12533]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  225.387520][T12533]  ? __pfx_file_has_perm+0x10/0x10
[  225.387541][T12533]  do_splice_direct+0x174/0x240
[  225.387553][T12533]  ? __pfx_do_splice_direct+0x10/0x10
[  225.387566][T12533]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  225.387586][T12533]  ? bpf_lsm_file_permission+0x9/0x10
[  225.387603][T12533]  ? security_file_permission+0x76/0x210
[  225.387618][T12533]  ? rw_verify_area+0xce/0x6d0
[  225.387640][T12533]  do_sendfile+0xadc/0xe20
[  225.387659][T12533]  ? __pfx_do_sendfile+0x10/0x10
[  225.387680][T12533]  __x64_sys_sendfile64+0x154/0x220
[  225.387694][T12533]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  225.387711][T12533]  do_syscall_64+0x106/0xf80
[  225.387727][T12533]  ? clear_bhb_loop+0x40/0x90
[  225.387742][T12533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.387754][T12533] RIP: 0033:0x7fa89299c799
[  225.387764][T12533] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  225.387775][T12533] RSP: 002b:00007fa893938028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  225.387787][T12533] RAX: ffffffffffffffda RBX: 00007fa892c15fa0 RCX: 00007fa89299c799
[  225.387794][T12533] RDX: 0000200000000100 RSI: 0000000000000005 RDI: 0000000000000003
[  225.387800][T12533] RBP: 00007fa893938090 R08: 0000000000000000 R09: 0000000000000000
[  225.387807][T12533] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000001
[  225.387813][T12533] R13: 00007fa892c16038 R14: 00007fa892c15fa0 R15: 00007ffd07802488
[  225.387827][T12533]  </TASK>
[  225.835958][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  225.911003][   T39] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  225.920131][   T40] kauditd_printk_skb: 1105 callbacks suppressed
[  225.920148][   T40] audit: type=1400 audit(1772404184.723:44058): avc:  denied  { ioctl } for  pid=12544 comm="syz.2.2108" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  225.950614][   T40] audit: type=1400 audit(1772404184.723:44059): avc:  denied  { ioctl } for  pid=12544 comm="syz.2.2108" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  225.958675][   T40] audit: type=1400 audit(1772404184.733:44060): avc:  denied  { read write } for  pid=12556 comm="syz.3.2113" name="rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  225.989625][   T40] audit: type=1400 audit(1772404184.743:44061): avc:  denied  { read write open } for  pid=12556 comm="syz.3.2113" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  225.997693][   T40] audit: type=1400 audit(1772404184.753:44062): avc:  denied  { read write } for  pid=11118 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.006631][T12559] SELinux: syz.5.2115 (12559) set checkreqprot to 1. This is no longer supported.
[  226.015806][   T40] audit: type=1400 audit(1772404184.753:44063): avc:  denied  { read write open } for  pid=11118 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.024535][   T40] audit: type=1400 audit(1772404184.753:44064): avc:  denied  { ioctl } for  pid=11118 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.025620][T12561] FAULT_INJECTION: forcing a failure.
[  226.025620][T12561] name failslab, interval 1, probability 0, space 0, times 0
[  226.032805][   T40] audit: type=1400 audit(1772404184.753:44065): avc:  denied  { read write } for  pid=9124 comm="syz-executor" name="loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.037535][T12561] CPU: 0 UID: 0 PID: 12561 Comm: syz.4.2114 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  226.037554][T12561] Tainted: [L]=SOFTLOCKUP
[  226.037557][T12561] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  226.037564][T12561] Call Trace:
[  226.037568][T12561]  <TASK>
[  226.037573][T12561]  dump_stack_lvl+0x100/0x190
[  226.037603][T12561]  should_fail_ex.cold+0x5/0xa
[  226.037623][T12561]  ? alloc_pipe_info+0x1ec/0x590
[  226.037639][T12561]  should_failslab+0xc2/0x120
[  226.037667][T12561]  __kmalloc_noprof+0xe0/0x850
[  226.037695][T12561]  alloc_pipe_info+0x1ec/0x590
[  226.037712][T12561]  splice_direct_to_actor+0x78f/0xa30
[  226.037730][T12561]  ? __pfx_direct_splice_actor+0x10/0x10
[  226.037746][T12561]  ? inode_has_perm+0x16d/0x1d0
[  226.037771][T12561]  ? file_has_perm+0x27b/0x350
[  226.037795][T12561]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  226.037812][T12561]  ? __pfx_file_has_perm+0x10/0x10
[  226.037846][T12561]  do_splice_direct+0x174/0x240
[  226.037865][T12561]  ? __pfx_do_splice_direct+0x10/0x10
[  226.037883][T12561]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  226.037933][T12561]  ? bpf_lsm_file_permission+0x9/0x10
[  226.037957][T12561]  ? security_file_permission+0x76/0x210
[  226.037978][T12561]  ? rw_verify_area+0xce/0x6d0
[  226.038004][T12561]  do_sendfile+0xadc/0xe20
[  226.038033][T12561]  ? __pfx_do_sendfile+0x10/0x10
[  226.038064][T12561]  __x64_sys_sendfile64+0x154/0x220
[  226.038079][T12561]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  226.038096][T12561]  do_syscall_64+0x106/0xf80
[  226.038108][T12561]  ? clear_bhb_loop+0x40/0x90
[  226.038122][T12561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.038133][T12561] RIP: 0033:0x7f2ffaf9c799
[  226.038144][T12561] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  226.038154][T12561] RSP: 002b:00007f2ffbe23028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  226.038165][T12561] RAX: ffffffffffffffda RBX: 00007f2ffb215fa0 RCX: 00007f2ffaf9c799
[  226.038172][T12561] RDX: 0000200000000100 RSI: 0000000000000005 RDI: 0000000000000003
[  226.038178][T12561] RBP: 00007f2ffbe23090 R08: 0000000000000000 R09: 0000000000000000
[  226.038185][T12561] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000001
[  226.038195][T12561] R13: 00007f2ffb216038 R14: 00007f2ffb215fa0 R15: 00007ffcc67fef68
[  226.038217][T12561]  </TASK>
[  226.080825][   T39] usb 7-1: Using ep0 maxpacket: 8
[  226.081095][   T40] audit: type=1400 audit(1772404184.753:44066): avc:  denied  { read write open } for  pid=9124 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.088165][   T39] usb 7-1: config 0 has no interfaces?
[  226.089692][   T40] audit: type=1400 audit(1772404184.753:44067): avc:  denied  { ioctl } for  pid=9124 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  226.167087][   T39] usb 7-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  226.170900][   T39] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.184620][   T39] usb 7-1: Product: syz
[  226.186235][   T39] usb 7-1: Manufacturer: syz
[  226.189030][T12565] sctp: [Deprecated]: syz.4.2118 (pid 12565) Use of struct sctp_assoc_value in delayed_ack socket option.
[  226.189030][T12565] Use struct sctp_sack_info instead
[  226.196771][   T39] usb 7-1: SerialNumber: syz
[  226.209360][   T39] usb 7-1: config 0 descriptor??
[  226.220640][T12570] __nla_validate_parse: 3 callbacks suppressed
[  226.220651][T12570] netlink: 88 bytes leftover after parsing attributes in process `syz.3.2119'.
[  226.349074][T12579] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2122'.
[  226.671385][T12594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=12594 comm=syz.3.2126
[  226.676856][T12594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=12594 comm=syz.3.2126
[  226.686554][T12594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=12594 comm=syz.3.2126
[  226.694113][T12594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=12594 comm=syz.3.2126
[  226.699475][T12594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2572 sclass=netlink_route_socket pid=12594 comm=syz.3.2126
[  226.707585][T12594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2572 sclass=netlink_route_socket pid=12594 comm=syz.3.2126
[  226.712420][T12594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=12594 comm=syz.3.2126
[  226.721469][T12594] tmpfs: Bad value for 'mpol'
[  226.870123][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  226.902168][T12608] xt_hashlimit: size too large, truncated to 1048576
[  226.948114][T12611] netlink: 88 bytes leftover after parsing attributes in process `syz.4.2132'.
[  226.989848][   T39] usb 7-1: USB disconnect, device number 14
[  227.272675][ T5935] Bluetooth: hci3: command 0x0c1a tx timeout
[  227.363590][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  227.409191][T12636] xt_nfacct: accounting object `syz0' does not exist
[  227.615656][T12648] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2145'.
[  227.773895][ T5935] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  227.779819][ T5935] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  227.784595][ T5935] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  227.790791][ T5935] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  227.795277][ T5935] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  227.912685][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  227.984500][T12668] bridge_slave_1: left allmulticast mode
[  227.986365][T12668] bridge_slave_1: left promiscuous mode
[  227.988291][T12668] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.999697][T12668] bridge_slave_0: left allmulticast mode
[  228.001686][T12668] bridge_slave_0: left promiscuous mode
[  228.003707][T12668] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.132821][T12677] netlink: 88 bytes leftover after parsing attributes in process `syz.4.2152'.
[  228.348739][T12653] chnl_net:caif_netlink_parms(): no params data found
[  228.436325][T12694] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2159'.
[  228.504834][T12653] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.508189][T12653] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.512262][T12653] bridge_slave_0: entered allmulticast mode
[  228.516568][T12653] bridge_slave_0: entered promiscuous mode
[  228.524868][T12653] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.528197][T12653] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.531823][T12653] bridge_slave_1: entered allmulticast mode
[  228.537040][T12653] bridge_slave_1: entered promiscuous mode
[  228.589357][T12653] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  228.612861][T12653] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  228.647533][T12653] team0: Port device team_slave_0 added
[  228.656076][T12653] team0: Port device team_slave_1 added
[  228.692147][T12653] batman_adv: batadv0: Adding interface: batadv_slave_0
[  228.695175][T12653] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  228.708089][T12653] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  228.709937][ T5936] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  228.716773][ T5936] Bluetooth: hci4: Injecting HCI hardware error event
[  228.720568][ T5936] Bluetooth: hci4: hardware error 0x00
[  228.723231][T12653] batman_adv: batadv0: Adding interface: batadv_slave_1
[  228.731586][T12653] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  228.742774][T12653] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  228.832563][T12653] hsr_slave_0: entered promiscuous mode
[  228.835381][T12653] hsr_slave_1: entered promiscuous mode
[  228.837590][T12653] debugfs: 'hsr0' already exists in 'hsr'
[  228.839492][T12653] Cannot create hsr debugfs directory
[  228.952230][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  229.007140][T12653] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  229.012225][T12653] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.108674][T12653] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  229.113902][T12653] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.192916][ T7047] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  229.209330][T12653] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  229.212875][T12653] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.277376][T12653] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  229.282034][T12653] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.355938][ T7047] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  229.361401][ T7047] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  229.364834][ T7047] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  229.367498][ T7047] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.382538][T12715] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  229.392473][ T7047] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  229.420494][  T832] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  229.482206][T12653] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  229.487634][T12741] Context (ID=0x1) not attached to queue pair (handle=0x4db:0x5)
[  229.492369][T12653] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  229.503291][T12653] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  229.526168][T12653] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  229.590441][  T832] usb 7-1: Using ep0 maxpacket: 8
[  229.610899][  T832] usb 7-1: config 0 has no interfaces?
[  229.614852][   T29] usb 10-1: USB disconnect, device number 5
[  229.632964][  T832] usb 7-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  229.636565][  T832] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.641793][  T832] usb 7-1: Product: syz
[  229.643308][  T832] usb 7-1: Manufacturer: syz
[  229.650277][  T832] usb 7-1: SerialNumber: syz
[  229.660157][  T832] usb 7-1: config 0 descriptor??
[  229.767930][T12653] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.813342][T12653] 8021q: adding VLAN 0 to HW filter on device team0
[  229.822795][T10825] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.825397][T10825] bridge0: port 1(bridge_slave_0) entered forwarding state
[  229.835629][T10825] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.837970][T10825] bridge0: port 2(bridge_slave_1) entered forwarding state
[  229.839769][ T5935] Bluetooth: hci1: command tx timeout
[  229.991377][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.114386][T12653] 8021q: adding VLAN 0 to HW filter on device batadv0
[  230.183436][T12653] veth0_vlan: entered promiscuous mode
[  230.202427][T12653] veth1_vlan: entered promiscuous mode
[  230.249507][T12653] veth0_macvtap: entered promiscuous mode
[  230.261808][T12653] veth1_macvtap: entered promiscuous mode
[  230.278941][T12653] batman_adv: batadv0: Interface activated: batadv_slave_0
[  230.288540][T12653] batman_adv: batadv0: Interface activated: batadv_slave_1
[  230.298510][T12357] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.302287][T12357] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.306485][T12357] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.311071][T12357] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.369252][T12357] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.386686][T12357] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.400236][ T6003] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.410655][   T29] usb 7-1: USB disconnect, device number 15
[  230.421196][T12357] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.424495][T12357] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.497272][T12759] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  230.619499][T12765] tmpfs: Bad value for 'mpol'
[  230.789981][ T5936] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  230.817514][T12776] netlink: 88 bytes leftover after parsing attributes in process `syz.5.2180'.
[  230.917828][T12783] netlink: 'syz.5.2184': attribute type 1 has an invalid length.
[  230.966171][   T40] kauditd_printk_skb: 835 callbacks suppressed
[  230.966187][   T40] audit: type=1400 audit(1772404189.773:44903): avc:  denied  { create } for  pid=12785 comm="syz.3.2185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  230.969799][T12783] 8021q: adding VLAN 0 to HW filter on device bond1
[  230.997801][   T40] audit: type=1400 audit(1772404189.773:44904): avc:  denied  { write } for  pid=12785 comm="syz.3.2185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  231.008039][T12787] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2184'.
[  231.014212][T12787] netem: invalid attributes len -22
[  231.015820][T12787] netem: change failed
[  231.018591][   T40] audit: type=1400 audit(1772404189.773:44905): avc:  denied  { write } for  pid=12785 comm="syz.3.2185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  231.030085][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  231.037948][   T40] audit: type=1400 audit(1772404189.773:44906): avc:  denied  { create } for  pid=12785 comm="syz.3.2185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  231.045734][   T40] audit: type=1400 audit(1772404189.773:44907): avc:  denied  { write } for  pid=12785 comm="syz.3.2185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  231.057020][   T40] audit: type=1400 audit(1772404189.793:44908): avc:  denied  { read write } for  pid=5930 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.069403][   T40] audit: type=1400 audit(1772404189.793:44909): avc:  denied  { read write open } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.078712][   T40] audit: type=1400 audit(1772404189.793:44910): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=660 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.087481][   T40] audit: type=1400 audit(1772404189.833:44911): avc:  denied  { read write } for  pid=12653 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.099342][   T40] audit: type=1400 audit(1772404189.833:44912): avc:  denied  { read write open } for  pid=12653 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  231.119920][T12783] bond1: (slave bridge3): making interface the new active one
[  231.123326][T12783] bond1: (slave bridge3): Enslaving as an active interface with an up link
[  231.133498][T12792] --map-set only usable from mangle table
[  231.329379][T12802] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[  231.544781][T12822] netlink: 4456 bytes leftover after parsing attributes in process `syz.5.2196'.
[  231.563321][T12824] syzkaller0: entered promiscuous mode
[  231.565693][T12824] syzkaller0: entered allmulticast mode
[  231.819938][ T7047] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  231.849711][ T6003] usb 8-1: new full-speed USB device number 9 using dummy_hcd
[  231.882888][T12837] IPv6: sit2: Disabled Multicast RS
[  231.885209][T12837] sit2: entered allmulticast mode
[  231.919750][ T5936] Bluetooth: hci1: command tx timeout
[  231.979947][ T7047] usb 10-1: Using ep0 maxpacket: 8
[  231.987931][ T7047] usb 10-1: config 179 has an invalid interface number: 65 but max is 0
[  231.997482][ T7047] usb 10-1: config 179 has no interface number 0
[  232.001920][ T7047] usb 10-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  232.007721][ T7047] usb 10-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  232.015210][ T7047] usb 10-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  232.021526][ T7047] usb 10-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  232.026661][ T7047] usb 10-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  232.035266][ T7047] usb 10-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  232.036969][ T6003] usb 8-1: unable to get BOS descriptor or descriptor too short
[  232.039644][ T7047] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.052197][ T6003] usb 8-1: not running at top speed; connect to a high speed hub
[  232.053457][T12822] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  232.064486][ T6003] usb 8-1: config 1 interface 0 altsetting 12 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  232.074704][ T6003] usb 8-1: config 1 interface 0 altsetting 12 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  232.079610][ T6003] usb 8-1: config 1 interface 0 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  232.085140][ T6003] usb 8-1: config 1 interface 0 has no altsetting 0
[  232.088315][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  232.099335][ T6003] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  232.104203][ T6003] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.107585][ T6003] usb 8-1: Product: syz
[  232.109212][ T6003] usb 8-1: Manufacturer: syz
[  232.111006][ T6003] usb 8-1: SerialNumber: syz
[  232.116766][T12824] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  232.119874][T12824] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  232.272656][ T7047] input: Generic X-Box pad as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:179.65/input/input23
[  232.354948][ T6003] cdc_ether 8-1:1.0: probe with driver cdc_ether failed with error -71
[  232.368131][ T6003] usb 8-1: USB disconnect, device number 9
[  232.546072][T12845] netlink: 212348 bytes leftover after parsing attributes in process `syz.2.2204'.
[  232.551801][ T6003] usb 10-1: USB disconnect, device number 6
[  232.551873][    C0] xpad 10-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  232.557504][    C0] dummy_hcd dummy_hcd.5: timer fired with no URBs pending?
[  233.112206][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.439964][ T5968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.981643][T12883] kvm: kvm [12882]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0xc1) = 0xfffffc18
[  233.984943][T12883] kvm: kvm [12882]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0xc2) = 0xfffffc18
[  233.999671][ T5936] Bluetooth: hci1: command tx timeout
[  234.006753][T12883] kvm: kvm [12882]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0xfffffc18
[  234.027097][T12883] kvm: kvm [12882]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x186) = 0xfffffc18
[  234.030509][T12883] kvm: kvm [12882]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x187) = 0xfffffc18
[  234.149901][ T1327] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  234.489865][ T5968] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  234.649687][ T5968] usb 7-1: Using ep0 maxpacket: 8
[  234.671973][ T5968] usb 7-1: unable to get BOS descriptor or descriptor too short
[  234.680813][ T5968] usb 7-1: config 1 interface 0 has no altsetting 0
[  234.697845][ T5968] usb 7-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.40
[  234.704129][ T5968] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.706961][ T5968] usb 7-1: Product: syz
[  234.708649][ T5968] usb 7-1: Manufacturer: syz
[  234.712572][ T5968] usb 7-1: SerialNumber: syz
[  234.853607][T12924] ------------[ cut here ]------------
[  234.855450][T12924] ((d_inode(path->dentry))->i_flags & (1 << 19)) && !(path->mnt->mnt_sb->s_iflags & 0x00000002)
[  234.855462][T12924] WARNING: fs/exec.c:118 at path_noexec+0x1cf/0x230, CPU#1: syz.3.2235/12924
[  234.861990][T12924] Modules linked in:
[  234.864222][T12924] CPU: 1 UID: 0 PID: 12924 Comm: syz.3.2235 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  234.869075][T12924] Tainted: [L]=SOFTLOCKUP
SYZFAIL: failed to recv rpc
[  234.871430][T12924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  234.876151][T12924] RIP: 0010:path_noexec+0x1cf/0x230
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  234.878824][T12924] Code: 58 31 ff 83 e3 02 48 89 de 48 d1 eb e8 9a e2 7d ff 83 e3 01 e8 b2 e7 7d ff 89 d8 5b 5d 41 5c e9 87 44 08 09 e8 a2 e7 7d ff 90 <0f> 0b 90 e9 46 ff ff ff e8 44 60 ea ff e9 a3 fe ff ff e8 3a 60 ea
[  234.887400][T12924] RSP: 0018:ffffc90007c87bd8 EFLAGS: 00010283
[  234.890450][T12924] RAX: 000000000000009d RBX: 0000000000000000 RCX: ffffc90006cf1000
[  234.893858][T12924] RDX: 0000000000080000 RSI: ffffffff828ab71e RDI: ffff888035954900
[  234.897252][T12924] RBP: ffff88801f2ffa60 R08: 0000000000000007 R09: 0000000000000000
[  234.900752][T12924] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000080000
[  234.904665][T12924] R13: 0000000000000001 R14: ffff888012c03008 R15: 000000000100000a
[  234.908103][T12924] FS:  00007f482333f6c0(0000) GS:ffff8880d6444000(0000) knlGS:0000000000000000
[  234.909623][ T5981] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  234.912376][T12924] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  234.917656][T12924] CR2: 000000110c343efe CR3: 00000000263ca000 CR4: 0000000000352ef0
[  234.921430][T12924] Call Trace:
[  234.923129][T12924]  <TASK>
[  234.924401][T12924]  do_mmap+0x857/0x12f0
[  234.926213][T12924]  ? __pfx_do_mmap+0x10/0x10
[  234.928261][T12924]  ? __pfx_down_write_killable+0x10/0x10
[  234.931957][T12924]  vm_mmap_pgoff+0x29e/0x470
[  234.933975][T12924]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  234.936136][T12924]  ? __fget_files+0x215/0x3d0
[  234.938209][T12924]  ? __fget_files+0x21f/0x3d0
[  234.940812][T12924]  ksys_mmap_pgoff+0x3c8/0x650
[  234.942821][T12924]  ? __x64_sys_futex+0x34f/0x4d0
[  234.945100][T12924]  ? __x64_sys_futex+0x358/0x4d0
[  234.947269][T12924]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  234.949871][T12924]  ? xfd_validate_state+0x129/0x190
[  234.952165][T12924]  __x64_sys_mmap+0x125/0x190
[  234.954179][T12924]  do_syscall_64+0x106/0xf80
[  234.956459][T12924]  ? clear_bhb_loop+0x40/0x90
[  234.958641][T12924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.961365][T12924] RIP: 0033:0x7f482239c799
[  234.963343][T12924] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  234.972822][T12924] RSP: 002b:00007f482333f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  234.976637][T12924] RAX: ffffffffffffffda RBX: 00007f4822615fa0 RCX: 00007f482239c799
[  234.980508][T12924] RDX: 000000000100000a RSI: 0000000000b36000 RDI: 0000200000000000
[  234.983745][T12924] RBP: 00007f4822432bd9 R08: 0000000000000003 R09: 0000000000000000
[  234.986012][ T5968] usbhid 7-1:1.0: can't add hid device: -71
[  234.986931][T12924] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000
[  234.986947][T12924] R13: 00007f4822616038 R14: 00007f4822615fa0 R15: 00007ffc6aa5a578
[  234.986977][T12924]  </TASK>
[  234.994904][ T5968] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[  234.995833][T12924] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  234.995852][T12924] CPU: 1 UID: 0 PID: 12924 Comm: syz.3.2235 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  234.995880][T12924] Tainted: [L]=SOFTLOCKUP
[  234.995886][T12924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  234.995896][T12924] Call Trace:
[  234.995905][T12924]  <TASK>
[  234.995912][T12924]  dump_stack_lvl+0x100/0x190
[  234.995943][T12924]  vpanic+0x552/0x970
[  234.995965][T12924]  ? __pfx_vpanic+0x10/0x10
[  234.995989][T12924]  panic+0xd1/0xe0
[  234.996006][T12924]  ? __pfx_panic+0x10/0x10
[  234.996033][T12924]  check_panic_on_warn.cold+0x19/0x34
[  234.996052][T12924]  ? path_noexec+0x1cf/0x230
[  234.996077][T12924]  __warn.cold+0x191/0x348
[  234.996098][T12924]  __report_bug+0x296/0x3d0
[  234.996114][T12924]  ? path_noexec+0x1cf/0x230
[  234.996140][T12924]  ? __pfx___report_bug+0x10/0x10
[  234.996161][T12924]  ? arch_get_unmapped_area_topdown+0x559/0xa50
[  234.996186][T12924]  ? __pfx___schedule+0x10/0x10
[  234.996205][T12924]  ? path_noexec+0x1cf/0x230
[  234.996228][T12924]  report_bug+0xb2/0x220
[  234.996246][T12924]  ? path_noexec+0x1cf/0x230
[  234.996271][T12924]  handle_bug+0x166/0x2a0
[  234.996294][T12924]  exc_invalid_op+0x17/0x50
[  234.996315][T12924]  asm_exc_invalid_op+0x1a/0x20
[  234.996333][T12924] RIP: 0010:path_noexec+0x1cf/0x230
[  234.996357][T12924] Code: 58 31 ff 83 e3 02 48 89 de 48 d1 eb e8 9a e2 7d ff 83 e3 01 e8 b2 e7 7d ff 89 d8 5b 5d 41 5c e9 87 44 08 09 e8 a2 e7 7d ff 90 <0f> 0b 90 e9 46 ff ff ff e8 44 60 ea ff e9 a3 fe ff ff e8 3a 60 ea
[  234.996376][T12924] RSP: 0018:ffffc90007c87bd8 EFLAGS: 00010283
[  234.996392][T12924] RAX: 000000000000009d RBX: 0000000000000000 RCX: ffffc90006cf1000
[  234.996403][T12924] RDX: 0000000000080000 RSI: ffffffff828ab71e RDI: ffff888035954900
[  234.996414][T12924] RBP: ffff88801f2ffa60 R08: 0000000000000007 R09: 0000000000000000
[  234.996426][T12924] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000080000
[  234.996435][T12924] R13: 0000000000000001 R14: ffff888012c03008 R15: 000000000100000a
[  234.996453][T12924]  ? path_noexec+0x1ce/0x230
[  234.996479][T12924]  ? path_noexec+0x1ce/0x230
[  234.996504][T12924]  do_mmap+0x857/0x12f0
[  234.996525][T12924]  ? __pfx_do_mmap+0x10/0x10
[  234.996544][T12924]  ? __pfx_down_write_killable+0x10/0x10
[  234.996571][T12924]  vm_mmap_pgoff+0x29e/0x470
[  234.996594][T12924]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  234.996611][T12924]  ? __fget_files+0x215/0x3d0
[  234.996634][T12924]  ? __fget_files+0x21f/0x3d0
[  234.996656][T12924]  ksys_mmap_pgoff+0x3c8/0x650
[  234.996674][T12924]  ? __x64_sys_futex+0x34f/0x4d0
[  234.996692][T12924]  ? __x64_sys_futex+0x358/0x4d0
[  234.996709][T12924]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  234.996734][T12924]  ? xfd_validate_state+0x129/0x190
[  234.996768][T12924]  __x64_sys_mmap+0x125/0x190
[  234.996791][T12924]  do_syscall_64+0x106/0xf80
[  234.996811][T12924]  ? clear_bhb_loop+0x40/0x90
[  234.996834][T12924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.996854][T12924] RIP: 0033:0x7f482239c799
[  234.996869][T12924] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  234.996885][T12924] RSP: 002b:00007f482333f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  234.996902][T12924] RAX: ffffffffffffffda RBX: 00007f4822615fa0 RCX: 00007f482239c799
[  234.996913][T12924] RDX: 000000000100000a RSI: 0000000000b36000 RDI: 0000200000000000
[  234.996923][T12924] RBP: 00007f4822432bd9 R08: 0000000000000003 R09: 0000000000000000
[  234.996935][T12924] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000
[  234.996944][T12924] R13: 00007f4822616038 R14: 00007f4822615fa0 R15: 00007ffc6aa5a578
[  234.996968][T12924]  </TASK>
[  234.997860][T12924] Kernel Offset: disabled