last executing test programs:

24.918736937s ago: executing program 1 (id=440):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x7ffffffc, 0x589280)
ioctl$DRM_IOCTL_MODE_ADDFB(r0, 0xc01c64ae, &(0x7f0000000080)={0x0, 0x6, 0x1, 0xffffffff, 0x2, 0x2, 0x3e7})

24.917910832s ago: executing program 1 (id=442):
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x8, @multicast2}}, 0x24)
socket$inet_udp(0x2, 0x2, 0x0)
fsopen(&(0x7f0000000000)='autofs\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
io_uring_setup(0x6f77, &(0x7f00000002c0)={0x0, 0xcbb5, 0x8, 0x1, 0x36a, 0x0, r1})
syz_io_uring_setup(0x29bc, &(0x7f0000000380)={0x0, 0x937d, 0x2, 0x1, 0x116}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x2b9})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000180)={0x400, 0x1, &(0x7f0000000340)=[r2], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000240), 0x0, 0x7f})

24.914227739s ago: executing program 1 (id=445):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x5}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}, 0x1, 0x0, 0x0, 0x850}, 0x0)

24.825112609s ago: executing program 1 (id=447):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES32, @ANYRES16, @ANYRES32=0x0, @ANYRESDEC, @ANYRES8], 0x48)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

24.824486423s ago: executing program 1 (id=449):
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x24, 0x0, 0x1, 0x400000, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0xc0686611, &(0x7f0000000180)={0x68, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) (fail_nth: 2)

24.770012057s ago: executing program 1 (id=451):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x84000)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap, 0x22}]}})
r3 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000002c0)={'batadv0\x00', <r4=>0x0})
sendmmsg$inet6(r3, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@pktinfo={{0x24, 0x29, 0x32, {@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r4}}}], 0x28}}], 0x1, 0x20000001) (async)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000080)=0x440, 0x4)

9.749265522s ago: executing program 32 (id=451):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x84000)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap, 0x22}]}})
r3 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000002c0)={'batadv0\x00', <r4=>0x0})
sendmmsg$inet6(r3, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@pktinfo={{0x24, 0x29, 0x32, {@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r4}}}], 0x28}}], 0x1, 0x20000001) (async)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000080)=0x440, 0x4)

1.946563742s ago: executing program 4 (id=752):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f00000000c0)=ANY=[])
r2 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
ioctl$NBD_CLEAR_SOCK(r2, 0x125f)
getpeername$ax25(0xffffffffffffffff, &(0x7f0000000000)={{0x3, @netrom}, [@bcast, @remote, @bcast, @rose, @remote, @netrom, @remote, @rose]}, &(0x7f0000000080)=0x48)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000008c0), 0x40, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r6, 0x4080aebf, &(0x7f0000003680)={{0x3, 0x0, 0xfffffffffffffe4a, {0x4000}}, "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", "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"})
ioctl$BTRFS_IOC_WAIT_SYNC(r3, 0x40089416, 0x0)
ioctl$RTC_ALM_READ(r3, 0x80247008, &(0x7f0000000b00))

1.799748469s ago: executing program 4 (id=753):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000640)='./file1\x00', 0x0, 0x0)
linkat(r1, &(0x7f0000000100)='./file1\x00', r2, &(0x7f0000000240)='./file0\x00', 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, 0x0)

1.799422942s ago: executing program 4 (id=754):
socket(0x2000000000000021, 0x2, 0x10000000000002)
socket$inet_udp(0x2, 0x2, 0x0)
fsopen(&(0x7f0000000000)='autofs\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
io_uring_setup(0x6f77, &(0x7f00000002c0)={0x0, 0xcbb5, 0x8, 0x1, 0x36a, 0x0, r0})
syz_io_uring_setup(0x29bc, &(0x7f0000000380)={0x0, 0x937d, 0x2, 0x1, 0x116}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x2b9})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x400, 0x1, &(0x7f0000000340)=[r2], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000240), 0x0, 0x7f})

1.682170854s ago: executing program 4 (id=758):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000200)={@host})
ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r0, 0x7b0, &(0x7f00000002c0)={@hyper}) (fail_nth: 4)

1.616865076s ago: executing program 4 (id=760):
unshare(0x68040200)
socket$alg(0x26, 0x5, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000a40)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x230, 0xffffffff, 0xffffffff, 0x230, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@common=@dst={{0x48}, {0x0, 0x0, 0x31ea8be7603078ea}}, @common=@inet=@tos={{0x28}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0xffffffffffffffec)
r0 = syz_usb_connect(0x6, 0x36, &(0x7f00000000c0)=ANY=[@ANYRESDEC=0x0], 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
read$FUSE(r1, &(0x7f0000002100)={0x2020}, 0x2020)
write$FUSE_DIRENT(0xffffffffffffffff, &(0x7f0000000540)=ANY=[@ANYRES32=r0, @ANYBLOB="7667958fb2efca27ad0653a525ab1e81aba53810b9fd00b097522cf35a6b07342a0f3171d1c4946dfa2c2bf828d757a427c99e8908147f51613e0d178fc99f3875d6cffd04056679d43b1145437c27c7a072cbee564155d304556d095f634d99f83704705042f579eccd3574c00da5c03530159afce07eef547efd389f4ace800f9f69f8e2643679e5401ea0eab6a66e41ddd35b54aada4da21c5fa57ccd472e174e797225118d3b251cae859578687035ef9547ce61442c5b65f1a617b1e0af0e0df8a2a502f315d9fb8ec27b73d705ba52bbc5cf63887fbfcc012af6186eaebbe0ac9c3b5d94ed704e13", @ANYBLOB="5b010001ad6e8e68"], 0x130)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000001c0)='netlink_extack\x00'}, 0x18)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x561c42, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_emit_ethernet(0x42, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
io_setup(0x7, 0x0)
r5 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r5, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x14}, @multicast1}}}], 0x20}, 0x40100)
io_submit(0x0, 0x0, 0x0)
io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
r6 = io_uring_setup(0x1694, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x20800)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x4, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0xd}]})
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)

1.616606406s ago: executing program 0 (id=761):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=<r2=>r0, @ANYBLOB="0000000004000000b703000008000040850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='kfree\x00', r1}, 0x18)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f0000000040)={0x80, 0x8, 0x2, 0xfffffffc})
r4 = openat$selinux_context(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
pwritev(r4, 0x0, 0x0, 0x1498, 0x81)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="e9f484265640c53d23e135897896a8510cf76a4ebfece966f0f55244902bb9aa01e968219f0ce1cf43763da4fb9b5e3aa7b37caa39016a8aa1e71a57efbcb3623d93c9833448e97dfbade8f00df903f3157bf1a2c91a0b7603544ceb9cf46badc9bfac418a827bd975450030260dcc149afa57756fde5aedcfc6ac776116acc83c8cb183fa5142a927bceba9165fff8ea506ebb62b9445958f27b2ee584f97d9222adf2fbcf13ea57f1c94af8547963e8fefc8bcf019193e8fb9153af33e6f25355e7973988cc5bde8bcf7d507bcc127dc2d6ff6404484d1f9b1d8110d881b40a789a30dfbbe98c6e4662eb98b4eadfa31ab47243eebc7acbcb0a6", @ANYRES32=r2], 0x8)
connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendmmsg$inet6(r5, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001500)="825250", 0x3}], 0x1}}], 0x1, 0x44048800)
sendto$inet6(r5, &(0x7f0000000300), 0x16, 0x3b00, 0x0, 0xfffffffffffffdfd)

1.559138384s ago: executing program 0 (id=762):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000cc0)={0x1, @pix={0xb, 0x7, 0x32315258, 0x2, 0x10001, 0xbb, 0xb, 0x2, 0x0, 0x6, 0x2, 0x4}})
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000042c0), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000004300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f00000043c0)={0x0, 0x0, &(0x7f0000004380)={&(0x7f0000000000)={0x28, r3, 0x1, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @random="1c841e1cf237"}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4040040)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x6c, r3, 0x400, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_SSID={0x20, 0x34, @random="b5fc1ef3821c33e02cc15d38940de6027ac17a7278a2f2cf934917ae"}, @NL80211_ATTR_PMK={0x14, 0xfe, "254fd269c1e4ef30ce500c1bab3e49c8"}, @NL80211_ATTR_SSID={0x7, 0x34, @random="804c54"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0xff}]}, 0x6c}}, 0x54)
r6 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x18100, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r6, 0x3ba0, &(0x7f0000000180)={0x48, 0xe})

1.550491664s ago: executing program 2 (id=763):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0)
r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f00000000c0)=0x58, 0x7ffff000)
clock_gettime(0x0, &(0x7f0000000040)={<r3=>0x0, <r4=>0x0})
recvmmsg(r1, &(0x7f0000000000), 0x0, 0x42, &(0x7f0000000080)={r3, r4+10000000})
read(r0, 0x0, 0x2)

1.490133037s ago: executing program 0 (id=764):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000200)={@host})
ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r0, 0x7b0, &(0x7f00000002c0)={@hyper=0x1000000})

1.489808071s ago: executing program 0 (id=765):
syz_usb_connect(0x0, 0x2d, &(0x7f0000001600)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b7500090583"], 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
r2 = fcntl$dupfd(r1, 0x406, r1)
ioctl$TCFLSH(r2, 0x800455ca, 0x2)
r3 = syz_io_uring_setup(0x832, &(0x7f0000000300)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r2}, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r3, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}})
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x240, 0x36}, 0x4, [0x7, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x5, 0x25cd, 0x1, 0xa4, 0x6, 0xa2b9, 0x6, 0x7, 0xe4, 0x9, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x8, 0x9, 0xd, 0x2, 0x12a3, 0x6, 0x3, 0x2, 0x4, 0x7, 0x81, 0x8a, 0x79, 0x558e0d31, 0x4, 0x0, 0x91, 0x5, 0x4, 0x7, 0x2, 0x5, 0x400, 0x7fff, 0x5, 0xa7, 0x81, 0x6, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x3, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x6], [0x9, 0x3, 0x6, 0x5f, 0x4, 0xc66, 0xa8a9, 0x73, 0x8e, 0x10001, 0x7, 0x5, 0xf, 0xfffffff3, 0x4, 0x5, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x2, 0x1c, 0x8, 0x1, 0x2, 0x54f5bad8, 0x8, 0xfffffffd, 0x400, 0xffff58b9, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00000, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x762, 0x1cb, 0x1, 0x4, 0x6, 0x438, 0x2, 0x9, 0x2, 0x8000, 0x5, 0xfffffff9, 0x200004, 0x1000, 0xfffff801, 0x5], [0x2, 0x1, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0xb, 0x1, 0x491, 0x8d3, 0x6, 0x8, 0x3ff, 0x2, 0x400, 0x40, 0x6, 0x7, 0x7, 0x5, 0x0, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x100006, 0x8000, 0x400, 0x3e55, 0xff, 0xd3, 0x7, 0x3435, 0x5, 0x9, 0xfd, 0x401, 0x101, 0x7ff, 0x60a2, 0x17fc, 0x9d26, 0x5, 0x8, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0xfffffffc, 0x10000, 0x1, 0x8, 0x1], [0xa772, 0x1, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c81, 0x7f, 0xfffffff8, 0x40, 0xff, 0x5, 0x7fffffff, 0x7, 0x4, 0x9, 0x81, 0x3, 0x9d86, 0x9, 0xfffffff7, 0x8, 0x40f1, 0x2, 0x3, 0x101, 0x80000001, 0x7777, 0xfff, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x624dfaee, 0xc, 0x7f, 0x1000, 0x1ff, 0x5, 0xffffffff, 0x10000, 0x0, 0x8001, 0x7fff, 0x1000, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x1, 0x8, 0x14000, 0x1, 0x1b18]}, 0x45c)
sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={0x0, 0x20}}, 0x0)
r6 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x40, 0x0)
io_uring_enter(r6, 0x27e2, 0x0, 0x0, 0x0, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)

1.009733472s ago: executing program 4 (id=769):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022d000100000000090400001503000000092140000001220f000905", @ANYRES32], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, &(0x7f0000000080)={0x0, 0xc, 0xea, {0xea, 0xd, "19539a466c0582ac73ca5d919d63aa5ffa52faaaec0370ede1b6755d13dfc074f2f5a0cf3131c5932ad665bc2b7a7ad8ce9671517bdbc347af9f7a93f29c426a51cb51de44a1dae768b2df025fc9fd2fd085efee820a89bb5f8455c035c9eb517a15b1976155eba48fb6d3fd6d482e670e9a80c20aaf6af33288dee00aee79bbe8a6bf143f9e23159375a356a28d6b30ad72abf28f3d65c6d7a2546d6ef5869fe6b46dc6104a77dcb4d44431dfd17021fcddec388101fe39e1029207566600b68925b534fbac2614de20bef0677e35d45de4c644c480983b2cb4936b412b044d017f217529af6e88"}}, &(0x7f0000000180)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x40d}}, &(0x7f00000001c0)={0x0, 0xf, 0x69, {0x5, 0xf, 0x69, 0x6, [@ss_container_id={0x14, 0x10, 0x4, 0x4, "659537c5a50db89fc96f4e815df557ed"}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x10, 0x4, 0xfffe}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "23b657b46b597b235d756791d7754ba3"}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "71a409622b3abb7f980a60191fe844bb"}, @generic={0x13, 0x10, 0x1e, "807564a35f0d363b7cb149fff8699a02"}, @wireless={0xb, 0x10, 0x1, 0x8, 0x4, 0x2d, 0x2, 0x9, 0xf}]}}, &(0x7f0000000240)={0x20, 0x29, 0xf, {0xf, 0x29, 0x9, 0x85, 0x46, 0x6, "2415fb45", "8e090bfc"}}, &(0x7f0000000280)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x0, 0x8, 0x2, 0x7, 0x3a, 0x0, 0x7}}}, &(0x7f00000007c0)={0x84, &(0x7f0000000380)={0x40, 0x12, 0x99, "9264814dcf823bbb57747d7435eaac3b2e34587ba0fbe45d725488e9f6c168fefbe746766192ecf079d16f8ca270137ff7d3a03d46e43e53cde9d38d93b87b2ab59a81c8b757d9a4ee2e505009964762e9825b06d4d33251cc1fa195b7867dce43fe3f26e95c5c212b00eab6ead291f0e0da04c81d42036e84952a2911d7bff99f2c10d24f0bd5f4dae8f9832c51c493eb05dc6cc2c4651061"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x61}, &(0x7f0000000440)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000480)={0x20, 0x0, 0x4, {0x0, 0x1}}, &(0x7f00000004c0)={0x20, 0x0, 0x4, {0x1c00, 0x4}}, &(0x7f0000000500)={0x40, 0x7, 0x2, 0x4}, &(0x7f0000000540)={0x40, 0x9, 0x1, 0xd9}, &(0x7f0000000580)={0x40, 0xb, 0x2, "94f1"}, &(0x7f00000005c0)={0x40, 0xf, 0x2, 0x7}, &(0x7f0000000600)={0x40, 0x13, 0x6, @local}, &(0x7f0000000640)={0x40, 0x17, 0x6, @multicast}, &(0x7f0000000680)={0x40, 0x19, 0x2, '7@'}, &(0x7f00000006c0)={0x40, 0x1a, 0x2}, &(0x7f0000000700)={0x40, 0x1c, 0x1, 0x44}, &(0x7f0000000740)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000780)={0x40, 0x21, 0x1, 0x1}})
socket$kcm(0x29, 0x5, 0x0)
ioctl$HIDIOCGPHYS(r1, 0x80404812, &(0x7f0000000a80))

749.421238ms ago: executing program 2 (id=773):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$inet(0xa, 0x801, 0x84)
ioctl$int_in(r2, 0x5452, &(0x7f0000000280)=0x32d)
connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r2, 0xfffffffd)
r3 = accept4(r2, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000040)={0xfe, 0x9, 0x2, 0xff, 0xa7, 0x0, 0x1, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2, 0x20}, 0xe)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000070000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008a00", @ANYRES32, @ANYBLOB="abd64e"], 0x3c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000700)={'wlan0\x00', <r6=>0x0})
setfsuid(0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x2c, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_GET_REG(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f00000000c0)={0x114, r5, 0xc, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x4a}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}, @NL80211_ATTR_REG_RULES={0xe0, 0x22, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xf}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xc}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x100}]}, {0x4}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xf}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x9}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4000}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xbe0}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x401}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x2}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x80010000}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x2}]}, 0x114}, 0x1, 0x0, 0x0, 0x8040}, 0x404c8c5)

700.202143ms ago: executing program 2 (id=774):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
sigaltstack(&(0x7f0000000080)={&(0x7f0000001200)=""/4096, 0x0, 0x1000}, 0x0)
rt_sigqueueinfo(r1, 0x21, &(0x7f0000000000))
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000340)={'wpan0\x00'})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r2, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x8}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x50}, 0x4, 0x700000000000000}, 0x0)

699.928499ms ago: executing program 2 (id=775):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @local}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
recvmsg(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000500)}, 0x700)
shutdown(r1, 0x1)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x600, 0x0)
ioctl$IOMMU_HWPT_GET_DIRTY_BITMAP(r2, 0x3b8c, &(0x7f00000000c0)={0x30, 0x0, 0x1, 0x0, 0x8, 0x4186, 0xc58, 0x0})
timer_create(0x3, &(0x7f0000000040)={0x0, 0x5, 0x2}, &(0x7f0000000080)=<r3=>0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r4=>0x0, <r5=>0x0})
timer_settime(r3, 0x1, &(0x7f0000000100)={{0x0, 0x3938700}, {r4, r5+10000000}}, &(0x7f0000000140))
r6 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
fcntl$setstatus(r0, 0x4, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0x4008af12, &(0x7f0000000340)={0x3, 0xe})
r7 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, 0x37, 0xb, 0x70bd2d, 0x0, {0xc}}, 0x14}}, 0x20000080)
readv(r7, &(0x7f00000002c0)=[{&(0x7f0000000180)=""/39, 0x27}, {&(0x7f00000001c0)=""/14, 0xe}, {&(0x7f0000000240)=""/75, 0x4b}], 0x3)
recvfrom$inet(r1, 0x0, 0x0, 0x40000122, 0x0, 0x0)

579.602585ms ago: executing program 2 (id=778):
socket$inet_udp(0x2, 0x2, 0x0)
fsopen(&(0x7f0000000000)='autofs\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
io_uring_setup(0x6f77, &(0x7f00000002c0)={0x0, 0xcbb5, 0x8, 0x1, 0x36a, 0x0, r0})
syz_io_uring_setup(0x29bc, &(0x7f0000000380)={0x0, 0x937d, 0x2, 0x1, 0x116}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x2b9})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x400, 0x1, &(0x7f0000000340)=[r2], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000240), 0x0, 0x7f})

509.121511ms ago: executing program 2 (id=780):
socket$netlink(0x10, 0x3, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x8)
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0xff0a)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$cgroup_int(r2, &(0x7f0000002a40)=0x6, 0x12)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000000000106d049cc20000000000010902"], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r5, @ANYBLOB="1f003300d00000000802110000010802110000005050505050500000", @ANYRES8=r3], 0x3c}}, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x4c, &(0x7f0000000080)=0xcdb, 0x4)
connect$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
r6 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_tables_matches\x00')
preadv(r6, &(0x7f0000000000)=[{&(0x7f0000000140)=""/4094, 0xffe}], 0x1, 0x6, 0x0)
r7 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
writev(r7, &(0x7f0000001200)=[{&(0x7f0000000080)="e7cd60cdb601c8f8eaf1f21241cbbfb2bb1a99f732c7c2f7234a1457363a6399375f319fe42434d52bdf97b80da0d92bddd3e3d2b41239c316ab917ea51e134e6b4455549e6921dac8f233114cd687a82cc9bb493e0730f5b57eb95f4832d0175b4cd90556eac33fbf13f15511", 0x6d}, {&(0x7f0000001140)="8d42a5e41c0c8e877b0dc05eae40ea94da4baeb13c72ab746cc9672e588600be398b355723643efc8463e7822bd99da2d340eb66e3eb29c3a6f55bbd4c0d07f36476ee1607659f79262d2da3699eb843fdeec061140c38c59838511e50581074dc6161dbb37cf5cb0b2865540c4471db0148360098e8289521fa31de0dc7ab391f31c3bd29d692", 0x87}], 0x2)
r8 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
read$FUSE(r8, &(0x7f0000000a00)={0x2020}, 0x2020)
mount$overlay(0x0, &(0x7f0000001300)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[], [], 0x2c})
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r9, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
syz_genetlink_get_family_id$mptcp(&(0x7f0000003480), r8)

289.981138ms ago: executing program 3 (id=783):
mkdir(&(0x7f0000000180)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x80, 0x1b8)
mknodat(r0, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
chmod(&(0x7f0000000080)='./file1\x00', 0x0)
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r2 = openat(r1, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mknodat$loop(r2, &(0x7f0000000100)='./bus\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000300)='.\x00', 0x10000, 0x0)
renameat2(r3, &(0x7f00000004c0)='./bus\x00', r1, &(0x7f0000000500)='./file0\x00', 0x8c)

289.734209ms ago: executing program 3 (id=784):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setresuid(0x0, 0xee00, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000005f0caa96473533905d7bd3f9d4bab982c87002794f0af79ad2830ff269f7236020b5096b83543de4de0107e4de806d4a86e528c2b3aeb125f8ed3912fff9"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="180800000000feff000000000000000018030000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000030000008500000053000000bf0900000000000055090100000000009500000000000000b702000000000000632af0ff0000000026090800000000007b9af0ff00000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018280000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000015000000760000e4be980000000000001e080000000000008500000007000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvtap0\x00', <r2=>0x0})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x13}]}}, 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=ANY=[@ANYBLOB="400000001000030500000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="02880100373004002000128008000100687372001400028008000100", @ANYRES32=r2, @ANYBLOB="08000200", @ANYRES32], 0x40}}, 0x4)

229.822276ms ago: executing program 3 (id=785):
syz_open_dev$admmidi(0x0, 0x20, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="9ab1446569aa24b774753c9e994c09c24df9d42fa5a228e469b44cecf6f9f5ce5f77c93b1895aaac9cf34b37415f11fe22d6fa0162aa743b242e8fe0a8659e32fb543d7969d6513136a9f332a8074f8ee1e445277ddd5859eb5ac3321eb710be880a441031da9b31f791d54fb3c97cd8ee92b00cbf962be8eb5fd0b7cab207645f59cf87a8c41e2739dd8386b6bb84b627cbf5e09bac876ad4b215f0e510a853c5e8b9f7822b26771d72972290a1f9a6f0a46942be0d0eb7aa5145ff368863b14e9845926088f9f92d554e572926290dc6e6b574aea8c500fbe5697f881c0cec48282c6d07619248da0c3b9aa6f7c778525d1760051e4ba8ef31d3c8d3e1d4214ffa5261ce1fdbc12eba889968137f5c06fea233000296cf18df494b4e7b1bee7dc2f3751c37415d46f6d7ffb3d0f788f2100ee41266e6fba75b61af22e1d7b286507ff100cc34ed28d5a2c8be3231446874bbbde6f3c367ca802d64192ffcce1ea41b2cbc57f7500fc4f8f12fe02690c1c9785bbc35542b59d05600783cf4f4633b374101d8ed395303392b238d198f9f68c8ae928cbf3b558deec6d38ebaa526e749ac4e47dd5b838ec34f2820a1134252ae60159d4e030cf5e5d6f8de799a31e12ae57cfe5a1a3ded525c6e71271271d35a0056265362387a361f21ea0f4b6d46f6a83a8512687e43b31e11b1396d6e9e49cf42b693732e226b55d21a1203022f6be9f8ecccb68de3bf4ce99689514bd752f4e60bd2f8e376d7fae5b5fc8db0f53db8c52746671e361b9319419c1b3f3168b4797ebd2d118ee42dda4bc59dd0251236195c8cdafc0546354eeb28f4c7e71e8245a6ccaddfb858f61039c0ccf5acd924680aab38dd061fc7b123f24ac7f3d3c0cee43b61045bb1efea25af86088a0591f166e2f11ea4089860893b17ca5e3d99ec75131268e2e4e290c2bf15e4dde23284e4bdf6e549c096ce221d9c8a6c0fc78aa6a1c8b547c0e10738de2a1e8663e03ab0ce4594e244989f75b6672de1eee97ba7e6467a0da51c0e75d5866c405b03c4744d8d3fbb01eddba5a0361662269154c2f0e61a9433982eb904ff562896cbfa692eb1e6c644fcf6cbc103a76b712af706a47608d3e2f5d54d47d8e9906ab37ddf04004d32ce00200fc3c274666aeb618b27424d87b6a4b0262de4436b9e6f150bc798394c298b25a2c318fbe786185464057c0bcfcd1917230d78ee1a49eca12068fa676852c1099096c6cb98dfda27fedac41826516e42cc116f0cbb68f0f810418258dc5a65c0e1ada296176e17f8d762894c80542a79383cc1674a4f3d6520633ce80baba214c20628899f9ac826484c887713aed9c5caf13b40a598cb1e81f7b18dae39efc22dc99ff497e11f158edc2716ebe3bcd593691aa26523efc168e1394ab439c9a9270575ef34eeee9084b0a31b2d81d47c964ac61e600f75d9321d7474dde45bb8d0cc46510488ab68486d3ba6cc9c3ddb6f66f2e5d251ee285121e1645a2f5167fc5fb8ac4491c0d9d0423c7a8452efea2f5a30096a0fa47173f3a68500a5c755ea939c838d3be126a87ff6baa5a1fba638a5c64767d17f04201b935fcb1cb6afa175594f410f2ff773194c703e623876051e46bb0850a5016e65f8fa34b96bafdfe851a0756fe26fb63d52113c0935b0867f7dc8a94d887484b15e8f92b6a316a22c04a985cc94e432cd43f44001bcdbd48efcd463c402d3d181298e96db60fdb714b82e146567af5ae3fc0c3f9d241471b4d129f928d286f780facb1e84434610ab3379dfff0f64d57b4a1c2e96c98b693de952d26773d24e7a95eddbc450f79932d5332d27991c7bfbd3bc35bfeb9496fbebccb5e4c35c368e021dea643cb292d794d3d3bbcc960f989bef09763dc73d83cbf907485635265e81f87b712d958a66719230fc6466615a0e3bb998d48159e9e9c51959354a545966bcffa298c7673b4d32b991c886a997236642c0f104f6795feab9f48d0ffc74667f3f3e82473ac892ad25f4b13029b0b27fb1d86991ddc42bbc3fe584ed364e769f3bc72ed8749e7a654ec1a2ec7a01bd2d5caccdc6241a1b1ef2726db54d2c34ab47020b4c729b5994b43deb00ad959950e0051d2c0f27217397055e78f1dd3bd867a45e06c2134ae8981021aae881cc7b2049fe7c82d2127ec81d6430c8116355c8d0ab8b9291c688ed9b8dbb1ed6f1a99bb58a1be8d5737acbf9461b142c8982f52481195d35ef82aed4fa52385ea4ed00a739d01cad7af9f7c27d357748e24f28d22065ccb37300e8f5d8dae5ca79af7a50edc3e05184d1a2a6d59784d5ceeb1f1550a44ea03bee4dc5c27eb78f0032593c7d082e59211f83a8b91aa78bfb7e959328ee63af26a37b79ce5e5139eeebd12e28b2a26ad2fcbdca652524d036b324782d54247a48b9f8200b2d6d2c091c41366d677e3be6e136cec6c3080d608849135c6e3c7d695d2e226ae1ce999d730d7f79116ab85762e55a3e5a66a690ce0a4bb4fd1560c796e2797414b544ef78e29d55e4853fdbf3362085a65c46105f32c360a0a9867b984a5d0297fe0b06a45684ac801a8e66294cef6e5f3c48648884fbb2422fa00488df33a9a0ff1039c81f1939f2cd2f5fe8aa805af2d2332ac37244ed4a7b50265af8062752b0c16511e5f25e8aa2b60645675bc826557bb75474ca4787f6b584b2f83bc25192579104aa0baae79f396df0d31121f90db9acea9695ee0fe0c22df4db503ec8b2437b05f5d35a65722fa82eebd2aff4bcd3316a5cffc4b31913fd02f82130c77f320bf04bf8fa873d0e3f62122d6a5f87d3e908bedafed4a3cb6d9f73ff546f5a2b74a2493b1753e89b682352bb3166563518dcb190c7b3d9fd667c57978a670b192641a674dc92c2401d067b6767aa632ce32a401175c98200a52ab5d80dffa719746d0bff8a84bac4a56e0ab8124fc332b64ea662d01e1b73231a6638f01cf4d699448da228c16951149c8d3dab9a7e3be9a16c7d1ffb061818f8f9cb2b42739fae4a0d70c0701c8dceee785d36ef6413162de1917df01c693ef3e1f517e7fc46245209fee52f5c6a2f50ab3f56d67d1cd987282b24071d8ebb1bc5cd635957b2a7ad92d0650abd5bbc24b75885b6119592a3d715392718e52f9124c4ac95be3582abba4ac3a4049ee49fa8ceb9b59d4e1e2a069c9d482879fd8d27d5ac22ef870542453be22c2ec4ebf1472c19fbfb56aa0a3671297b020e3fe49d201a82a04420e90bda43691dacf92347bcbcae3742cc4abad4c8010c0afa15278795d4d76c482461ae78f30569e1dcf87b9b150d07a2bd81676ec6022422d490759ae1e861a6c4cd1f733bd772d60975a59356c385a4a390429f3d2131e7f616015261df6db3cc3ec261a53be10c4f197e71878984fee00e6d1069f79825194b7af434fb6bb86db18e11977f82928be35054543060cea94ebb4015d061f20f8454e056e7b6e4f9a1621ef2377d77659c20bf358c817519f1801be15ae3b5b42adfab367777a6789635a0dcdd1f2b97edecea0210768af67601d1b95a8850dddb6b1f4b0c2f52c835b0833d81966ad19e49ceb9dc9c729cd8334bc3ee5bb8c74186f5cc3e765b9fdd91d79baaab3d2ab64c15d655d1af7de9cf8d5d7c1baef24577843ce142331743b45b06104b6d0d4392e61ca8c07507ff5f831bbf720854db4debf64182aaebf899ba57626a48748fc2dcf016013d575595d24d383eef2da0ff0c9f6fe9c64b186cd4617e3f37635d7dacb58ec297f3ddb48ce4a5e00cc127267e18a1fdf209e098f2cb2e9c0630d15ec9b867b2b95ecf82ad2c0ba39df9c4d36d492bc9a55c4b767da966e4fd7f4d2fef5e91d0575177c05d240b50757031c76333d43bcc828ab2f0376e29d12d1261ce104a8ea488091326bc451c120c8c04d3e64835c893f55b312e248ad8fc1c32429d68e6b67bf45ab8a1cc3db22f9f01a2266b8349046d3d3e081eaa7f7020c73c0762d11a33b517b8f081da3c61ef63e1d40cd87d69c7ac7491fb61bb57c1fe2d218aff6d39b3e1fc847f0ed894e2f0b4d6a4ad03ba42e28bb1dfab645081f548e64ceb8ce15d2214bd66a14fe594aa447c3537eb493299fef0f9326236ea5dae44e23b34801fe06ee16c79545feaf2528421d6e7f9a256a7914d86bd053dc33c8c2043ba73714f5ff5f0507097a56c40b2190e77877d43be849ee2ac129e582930ced06d359eebb49eda4edb13819f91cecc449c9613d9659906179f8fefa34fecb7d21cdaf09a1ce8d094421da80796c97c02fc56171aaba53fd8a7f55de059044717df164f3571028f16995d51fc8829534cdf58dd134def1e43a34e4f5f372fa8e19d3b85881e99ecd45faa4fccfdb47e094ab06955f3960fac71294dd965f24a97cff36b9966cf1a4c3e96c3e14a3951dcc8a3e9371f7e1ae9df77ddb1a99172174adbee8ea57a0c9872a6d677c2875da88a6a7234bebf68a3cc0532a9809a4de4b4d419bff67b0ba825a7ae6e999087155378357ae67e2dd98697f1d10ffa4497dde6582571670456db995228b97d0ecb2fb30c2ba6c16038c40059815c56b35666cc1c5090f6c38e0f4c12abf79919951b85a2734d32dd12b239912d541f9163387a4aa0be0b7a12d9c6b56dbcf1e9aadcfd72e2664a84d6c5147c72bffe7c3560ccd8c447b748dcd26cc9ca2a85cded742a8dccdfd8e78c96e78d405a19faab9e57183b37583f94b3d416b2920c6b746427ed75c08dc3be02720c1edc4743229153c48f1239b222b9fe2e21c0ae28122bc44f9dc78a59f3485ac8057eb21f0857bcfea2d9ebbbcc197e7880d81515bb1cb7192d97c4258c09926d137e245977db40812b253f99a504bb68137d8d73ca4e7c808d50f1dcc600e6a6db90238ff44e075932fe668c066e6988a6a8b4a8485120c8e4d6511268a75d8f9b0f06689aac8cd621e90c62af1e59aa9efe928e9ea098661b408a2825c4f9aac1efd9d54d163a651054b9ab32719d2be3b176f6795ddad0f1310b9237181689f2f9dd34a41d4d4cd2d7569bf56e6a80bc24d90df3bdde0f9649e699f4ef70c4f3faf9553a231215416bba26c29f17861e0f265e9641b2307ed43d6fde23a378669f4ade874e54c20a5e902205dcaa79a3e8584a3f78a86e703451115a1717df882507c607297afac0a056a0f3509a57502fd2ffff6035d04b91f72f5e1a69ddafaf80f7b2f7a13f38c683988436585e6bc7fc2da328449675c234ec0acf5294ce06c72442beba15e65d6a3e1b5dc3c8f115e1005798383f79b0194f6b7d4b1b32371acbf22340af6e5ee3ea840f7ed451226daef3041fc194e051af2fb450022b394c774273b9575c974c324ecd7268435176ee28c54bb54c8e829232ca636f3bdef60ed460b5ff425936626dd16a3f436f08a863582a79f393378f60f6c8ecdd13d83073bfda2e9f8d0c74a841021cbb8c148e70bfc585627449cdd9fb3045db3ea08a96108b52ee8a4f5048a5d910355789f4bb85c1362955e267e719581c38a2648eaa0b516db6277d2ee3c6e1e1090df3f53a31b747d99887e337dadddab16a297d9e56797007a3d18ce333311c70bb1bf45bdae517ffc589419af643773bb30a1fbff7ecd4a8ae7456a608fe73547c2eda4f070d57dc70b65d867526c946a435ea581497da18646ce569eaf6ccf3474cd6e7aa3d6d4732836ff4167c9153757ce58a34864be6d479f7b4ea1d6480b9ac16c5bff346a74e74133234744df867e16b3d2f1f7db4b21b89019b520917ef863e60f52999d6946b9e09cb60054f49d8a255f02e4b62fff6e6adb9a167ea70a177d00b26f56e29b63138a2ebc30b956161a4ab25d5da1c207c3f762714f651341ae771e17d84fa1c86685f2fcb0a128c2e1208d1930e7ff0d8d55299154112af574b881be8b69cc1721d548ad4dc02632e184c47f9b394bf4a834e60fbead8c8bfbf5087f8454513b0b086ac97bbbb9aa342af9def758fe88f1e4570e65f93fd4a9868665d08fac0cf6ebde786995c433504ca01cdf83311aaae20cc76f819a4344a8ee4e26c1094cb00d2c8a67c733fffcd89e97534cacb08a64d75e8594fa31f0dcfcafb0d1bc184c7067fec6a48ddefd580d4d9a4128d8f70f6fc6562da683904766e982ecd0286064db6844131bb7962a0a497f7b97fefad88a0b128bdf8cca774b1c32cb4af259bfebccda036e7e4ea8962838dbb5c04ffab0a2f1481848a27f06171645daf5246a2e563f3ed60097a9d7023d6ba5c8a58d39f733b12baf0863d82c427460f51cf9e3f77281a42221725b7bb75c2116ab31f704661f090d3eeddd2aa6efc619946b4933c398b635fd04ba3758294965c568997e1ef44b0562804e6c64558f6cfa87662a988c321a856ead51c848528a4954f9ff1948d517d67bc11db66801648848bfb7ee12296428bc3ffec863e9c77ff31ee386197679adab2a0e93bbe0c66ffe9c4b09b636f6216faa373aa8271678cc57ad46898222df7e2d8b14a5b70130596c0430997c4c04d9b5187fd9bb26b71fd19aacc8e08a3239f0eebca7b2873062a19f327a4a282012ebf9898a5ab6310b8623c864d4dada3ded00ad201ce8f3973f90396f5edc1ba466e16247fe6b0ee98acfd53792cc0fea33647b841596655b8d9efbc14b50fe0b588e4c41e2cbd0a700529e7ca91122d3d1b26e52bf44a0c9fe37cdbc352357f13b2adc68e78a00f6dc88a8e6ea54bd0b2c8276f9e1bfebc8655a1f47b72c25ffa97f4463630cc21428ca3bb381a6d3171d28bb946f746f820247bf3f7bb69caaeb5c47026ca9997e586e657a9e1569312bb443299ef4cfeacc9aaf4fc3aaa4a77a21579234d2aab6fd0234398ae07ca7c57ac6d6a51e025744b1430abce27f7f9b0d0e45c051e34d20db95cadcc0e4e327dbd979166b33e39a3951d0b8dd62c0d1542b69583cfc07b127243cac4b052cb29ccb3592972698fa4cd84633d222d78b8741d5f903f8636d95cddfe2ef13829df9ce32705edfda51ded2f0ef38f60a33a2e00373107eef56a01acb5e05d849279b5987343c8bbc73ea660ceaf7c9b90c0a8e1412ff3f517cef8fe604d7a26e085170a76e1bf43f5d1bb77ee771fe841d59fe2cc2874d25bf991b4af6bf9ffe1bfbf3a5587006b60bab5bdfd5a3192e82d474ecab0ab656967856c84cba9469c5823c1d1bf104d2a21c071bb08b2a137883dd9c8f545d6958db8efa45263ae303de76e70f2f6a10e1858e6654004f2a099dc31950ee730c465e0a1822935e309d41650fba489aa3050eedbf3f058d24d1f04fc340966e42d72052d84a66789ccf75000c3fc83b8842badd6b22ddaaaf53ed34e25c1b638e3630d66a7903405052902cf8e7395d54679e2f4a2bf7c8c89b0dc38969376ea164fe97b37b1172e6e8f05a929aa373108e891a64e38e18b432a115a44d754811e03c4f4ae7c525a6b9b92aab0d16967ee1a64eeeb2207c094f6aa96f126d058eff22435a4ae76c31f888ee13b327d2cab4ab5a56abf4cae88c583dd67129271708aa17f4f10886ead0e12734314bd4a49e64349beba4abdf94a1fb23a72cf7e16b5af2f1706d9646a5ff7dbf5c7b1cb2c3781346167b15d4625841d9f3d14392db1d39101d37175c42c522229db0708544058d75cebf3e399cd443d1b943c6f3017a898bd49836a8d92519deb810712aed76602682ef0df2be270734eeda7f289a76f4684baf75702a1ac3da005e62b83f794b934cf882db5d50e5ed4aca868e300d690c0b10daf0a47486e9f49d1b08eac6cf5090ddd2443b1459b2df86ab3447b2b5c6afe8aadb410de6a84b640e326eb882832d1a9cb12e0b8f13aef579f404af8631cdd5a30a031dad19cdf247575dd223229330f19fe4d88c51242217397acf66b86c743de283d5df7212fce59af17eb702eccab192f56f054a33709d41841e4a39638e02b4210559593f9b5c44fd22d9da637ef1a3a0a41c40469990dc4beec30a05b67931c0560d9a59fa875f3e26fd1eb32655aa30c7a1cd3d541716fdaacdda206328f3cbc8f16fc2be26690f18963a16febbaf2cb6c199330579ca067c60b54cbdd211c1350e066448fb50ae28ed58788ac98f0ded3414c8735ab90639916e26ab29102cc2609035e56d9b9d2dbc98118835bcf0e437c77052efe2293d9f19b7197aa1b94b10997b0b1efdef251de8945a97fec885f032c3bee2447335230b866d7aef515b04664d0c59e18233f9a229969e3e17d69716413ca3bc55f5959e340627ea803f7b26f4a74295b295344a3685287093998a1ce75b1ed5d730c9aec812617b4c200a0250c9ef8ef7d2fcfc59ef97422eca746bc6451a5b77307d14c1cfa0ea2c8eb7cf7819644577a6456efec0af058a0e3c8ec371019009462bfe174a11368b57fbe3090208a57b2236b97edc32cda5c6fc988cbaaf91c4020a06a7ad45519eaa761e045fc84d3219b287206282347a031ef1e7b7dbc67de738fa8f9fe71c44201fd1d548f8aebe93bf502d64d4b5f470a419e3fcd87f0616b9813048311ed20ac2efd7f18dcd6889542208b50c28c8c0700f73fa33a964e38d699819cab2098c6ff081266721cdced87ff41948c84037485f30d38a99eeeb3ff4c3049742a29eb09bb35c358e732546267c165a62fee9e25abdafdb8a48785bd432d160797e7a41d580f59d7d8e59b3e6b954d39f86db33b8f7cabde43e8e04cac1fcf9aa6fdbe4326e0d9c782d9a630055b36f85c2b8efebf18f42ef14ee5eb1d33ca322db69704f8bb90bf30eb05908b8d8ed169580923f53a6539cc3b55baa47718053d2ff103c23d90f9cb49ddc7d759950f605bafabcb7953c042c0523b84da994529a87ad68fc6f0709fd7af5fc20e53a17d3f5fd4d25fc5ff6598c6ddfc34668a08ee5e066d81a65e7979c50c08febf76dc5a3a405f551bb8449d94ea0dfdad6dd6dd6d6e4486f4ae1d2523c05f46198d8af4da12873ebdf7d6b5f2d0f1b2d29759ab0d78e34ae6f17b7ab83518cf8b18836ea5630ee934e5ecc123f0d3fe6b803ae1f735d65dcadcaaf6660e02ecad0290f6ead0594733a10b2b1654a44244424fa8b3180b551ac401828203e61603b017106e2256f01b9f26db33897167d9defb54ddfe49334150574493895370bad46cc658667aa9a8ed333c86f112b2a542936af92e2f933254b6fb0b1a599eec3bf2e476ae6714e2486dd31b29e4d26838d84bd7a62c62beab3ba71642278ecaf2e50d70670d9fdff105019791d36321bc57fdfd8f65f2ea1cb188035ecabf6140e777b7e6d2177ac29e9a1a2f87dd54d96184bb1a855bd9efdadfc606f13621f40e07cd8be9c2435c8c90b4ccba5eb7ddcf8cf1f76617c9a9e011abf4a63ffe31df63ecacb8b1d2d653e613cb399ce079392f9ca2e226c60b6e8103447c24c1f80d42e1ee747997602ae3ccff8f9f98ce9b56f6f3e3c0ba507df8b2169539cfc946c42da72644feb9b3b582ce332f8b2eda02192958194903d17b3e9b4bd60d08cd9a7989d946ece6d8dc01d6b66a7851bb11e4b075d38081d3ce7bf1875fec9daf47a589abdb72763c9747b83a28389238b0279c8e41db6521130420851acac463664a97be2190aff921923475f2c1f8a87d1169229e5f10dd0a92221e61358b156020f2c9ca2cb6580743a8d5e3c59e6fd97a7a246211450c7c62f1891cedb434102f8794d81c1caf2c1b4ae18b7c4b9c88de5c51da33e3343cef76da0d00341c2e60c4562c162e41a7efa8290cc9061f3d6a592d5f104c5018f31bcaf912bdd37370fbf8fedf0aa9026c1142299197d67ab026756927b5864ea42c45a82c23c275697d31a1b7900670c9a3c967d12974543c11f20c367a336bea9b9ebe480f9c806528138dff35c5f56b1199b75748e9c5cf50e6a32397dc3eeb04c3636c0848a5e13df8a9758bacea231f34cba13b466360b0dec69f74f8bf9a2dcf3dd94fa3a7d27e8caae00240559d75875ef9c619416593ca0072e7f38caae5a530c62dbe00e38c12cb8b924d63fca4d5c3a4c8f50e8f4f86fc1fe2b163219c46c21eb783e587e18e07ab7e1927a646c4f154c5000cb65ce9528457c3c66f43d9ab7d61580df0ecfb31cb38e4cbcdc3dafcca57311abec6b74048c8b74505ba678a4db07ed7243c70a821aee66a487bf91fd273418f8ef657d1eeb9ea6f095d47641e9f9fa30599e8b9c6b4453a1a5e8afd86fcafb46dd095fa4a98a2b26470e2c799b08c6000f5c3c4e28961463724377f37813f3922484fda986eb7c93ae8365baf648acbb344ca7e044d7ba93e7ba35c31085f3f99c5fdb2f9f2845f00b8590395e8ff730b86f5dd7f52297b8ecd5d5a6bb452bcd12b98d6adb27e7ef0e84b9567c66093ca3edab7e64ac4f56360501d81823ea2b1595f934c5f61c8558304c16154109a983a2af8725c7af91b5bc57e555768aa8115236a6ccc921d472b608eb6b82c4ba3747d79027d7856fae5369aa325df6a76138a5b41a94377eeeb251087e0b8510d8890e3f7a0cffaeddb9d2c29bc89f952489f82ee2e2b485cd297e6d30683701623cf73ee9ee606baeae9c3afba287eff57731b9cfaf034b1f56c8b31a32a1078c4fcab298c3f925a8e7cacceb9edf7ba2e54d31033a25462021e4a3c0bf5af341b462ee4417024da7c12c7f385de3af129aef1338a9c1fd68323d07ff47ec8bcca66b44300624d02c9202a2d093c3c85fd922b57b3bd14162c8ca5690734b7e4e4b8980b73a8e9908a9fa3dd508b30e3b1e1fd4ec388affa27c4bc26ca2820e0a902d51ff94984e8894fa5fca7b8704b7600ca6d6b1b1527ea999fcdf8fe3b290ec0036cad222f92cf8a5a54d0fa91de6e74ef61f60a233c9f15fdc86226c3f688de15ed8f0c3f1bc3afcad87cee47a19384afc6a804f197339ebce4aca211dbe0504a000755d18f20c4ecacd4123acdff7653cbb26456499495662508c8186afb883f5481c6bdf88cf137e263bde9d62f054573e0d1454cc119c95d4d9011332bd77682f79debcf5c21f0be7e9a83a58cec34e7cfb17a8122e030669228e4d3d9e274a678c5b77e6180aacc2fa8eb9952c5b04de6b2c7bee591badab96a3c3248c275b5b8faf5394eacc427a840570033be5006c33ce2d2c6e54f08681c3f74ad2fe54bca6dc62a9d84f6c58509c1e5dd5cfcc7a358493d428de48dfc1bc3f74154801c97e6aae38445045320b4cf66c1e56eb6ea2c1218de65f120b463c5cfb9255b3a25eb6e848cbd977f0605d71c561c2a754f5761c31f84101ee8178782cc8cf70b41a2204c5cb2f3134d572327fe4bbc1792249dfcf0ae7ba5d81fb5ae4a7978d044085f3b7f2e398c05733e2bf456cae898f8b5a81e9c79179bb5ca716713fce643dabe21eaee4386e646e25ad3adc5a4ad40f9bd6743f5f742efb1a674ffdbd2ced56c646ae590eb8f10283b47f57e6f96ad76adebecb24df74020b096fdee3c8d780d563a915f73c8b0246b861cd3a8580d5cf75798e8cf1c5875724661a39277e7165fe48ed8d5e6a20d68239f626fe8ea434a4e6e03ea434ec68c4b92a0fc2af15a135d6cbaeeca39a0c1896dab33daac", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
pselect6(0x40, &(0x7f00000002c0)={0x2, 0x0, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0xfffffffffffffffd}, 0x0, 0x0)

128.792073ms ago: executing program 3 (id=786):
mkdir(&(0x7f0000000180)='./file1\x00', 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000140)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', r0, &(0x7f0000000000)='./file0\x00')
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./bus\x00')
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x80, 0x1b8)
mknodat(r1, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
chmod(&(0x7f0000000080)='./file1\x00', 0x0)
linkat(r1, &(0x7f0000000100)='./file1\x00', r1, &(0x7f0000000240)='./file0\x00', 0x0)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r3 = openat(r2, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
pread64(r4, &(0x7f0000000080)=""/237, 0xed, 0x5)
pipe2$9p(&(0x7f0000000380), 0x84800)
mknodat$null(r4, &(0x7f0000000000)='./file0\x00', 0x0, 0x103)
mknodat$loop(r3, &(0x7f0000000100)='./bus\x00', 0x0, 0x0)
ioctl$RTC_WKALM_SET(r3, 0x4028700f, &(0x7f00000001c0)={0x1, 0x0, {0xb, 0x25, 0x3, 0x18, 0x9, 0xf5, 0x0, 0x109, 0x1}})
r5 = open(&(0x7f0000000300)='.\x00', 0x10000, 0x0)
renameat2(r5, &(0x7f00000004c0)='./bus\x00', r2, &(0x7f0000000500)='./file0\x00', 0x0)

70.138962ms ago: executing program 3 (id=787):
mkdir(&(0x7f0000000180)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x80, 0x1b8)
mknodat(r0, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
chmod(&(0x7f0000000080)='./file1\x00', 0x0)
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r2 = openat(r1, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mknodat$loop(r2, &(0x7f0000000100)='./bus\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000300)='.\x00', 0x10000, 0x0)
renameat2(r3, &(0x7f00000004c0)='./bus\x00', r1, &(0x7f0000000500)='./file0\x00', 0x0) (fail_nth: 4)

70.013162ms ago: executing program 0 (id=788):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="1400000013000104000000000000000005"], 0x14}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYRESHEX=r0], &(0x7f0000000040)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x11, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

69.459378ms ago: executing program 3 (id=789):
socket$inet_udp(0x2, 0x2, 0x0)
fsopen(&(0x7f0000000000)='autofs\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
io_uring_setup(0x6f77, &(0x7f00000002c0)={0x0, 0xcbb5, 0x8, 0x1, 0x36a, 0x0, r0})
syz_io_uring_setup(0x29bc, &(0x7f0000000380)={0x0, 0x937d, 0x2, 0x1, 0x116}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x2b9})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x400, 0x1, &(0x7f0000000340)=[r2], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000240), 0x0, 0x7f})

0s ago: executing program 0 (id=790):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_PROMISC(r0, 0x6b, 0x2, &(0x7f0000000940), &(0x7f0000000980)=0x4)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="180200002343ffff0000000000000000850000004100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f0000000200)={<r3=>0x0, <r4=>0x0}, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x40001043, r3, 0x0)
pipe2(&(0x7f0000000040)={<r6=>0x0, <r7=>0x0}, 0x0)
write$FUSE_INIT(r7, &(0x7f0000003100)={0x50, 0xfffffffffffffffe}, 0x50)
tee(r6, r4, 0x8, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r8=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r2, r8, 0x25, 0x2, @val=@perf_event={0xff}}, 0x18)
r9 = socket$kcm(0x10, 0x3, 0x10)
mknodat(r3, &(0x7f0000000140)='./file0\x00', 0xc000, 0x3)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
readv(r9, &(0x7f0000000240)=[{&(0x7f0000000000)=""/53, 0x35}, {&(0x7f0000000480)=""/205, 0xcd}, {&(0x7f0000000100)=""/45, 0x2d}, {&(0x7f00000009c0)=""/4096, 0x1000}, {&(0x7f0000000580)=""/250, 0xfa}], 0x5)
syz_emit_ethernet(0x36, &(0x7f0000000440)={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x2a, 0x28, 0x66, 0x0, 0x8, 0x6, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0x36}}, {{0x4e23, 0x4e21, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x20, 0x1, 0x0, 0x4d}}}}}}, 0x0)

0s ago: executing program 3 (id=791):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="180200002343ffff0000000000000000850000004100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r1, r2, 0x25, 0x2, @val=@perf_event={0xff}}, 0x18)
syz_emit_ethernet(0x11dc0, &(0x7f0000000440)={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x2a, 0x28, 0x66, 0x0, 0x8, 0x6, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0x36}}, {{0x4e23, 0x4e21, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x20, 0x1, 0x0, 0x4d}}}}}}, 0x0)

kernel console output (not intermixed with test programs):

c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.699304][ T7003] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[   67.699315][ T7003] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   67.699321][ T7003] RDX: 0000400000000200 RSI: 0000000000000005 RDI: 0000000000000005
[   67.699328][ T7003] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   67.699334][ T7003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.699340][ T7003] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   67.699351][ T7003]  </TASK>
[   67.760692][    C2] vkms_vblank_simulate: vblank timer overrun
[   67.765796][   T35] usb 6-1: usb_control_msg returned -32
[   67.767596][   T35] usbtmc 6-1:16.0: can't read capabilities
[   68.014235][ T7027] FAULT_INJECTION: forcing a failure.
[   68.014235][ T7027] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.019274][ T7027] CPU: 1 UID: 0 PID: 7027 Comm: syz.2.406 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   68.019295][ T7027] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.019306][ T7027] Call Trace:
[   68.019318][ T7027]  <TASK>
[   68.019325][ T7027]  dump_stack_lvl+0x16c/0x1f0
[   68.019352][ T7027]  should_fail_ex+0x50a/0x650
[   68.019381][ T7027]  _copy_from_iter+0x2a1/0x1560
[   68.019403][ T7027]  ? __pfx__copy_from_iter+0x10/0x10
[   68.019420][ T7027]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   68.019441][ T7027]  ? tun_build_skb.constprop.0+0x1b8/0x1120
[   68.019467][ T7027]  ? __pfx_lock_release+0x10/0x10
[   68.019495][ T7027]  copy_page_from_iter+0xa5/0x120
[   68.019514][ T7027]  tun_build_skb.constprop.0+0x294/0x1120
[   68.019544][ T7027]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[   68.019570][ T7027]  ? __pfx___lock_acquire+0x10/0x10
[   68.019590][ T7027]  ? register_lock_class+0xb1/0x1240
[   68.019622][ T7027]  ? __lock_acquire+0xcc5/0x3c40
[   68.019648][ T7027]  tun_get_user+0x870/0x3e50
[   68.019679][ T7027]  ? __pfx_tun_get_user+0x10/0x10
[   68.019701][ T7027]  ? find_held_lock+0x2d/0x110
[   68.019734][ T7027]  ? __pfx_lock_release+0x10/0x10
[   68.019767][ T7027]  tun_chr_write_iter+0xdc/0x210
[   68.019801][ T7027]  vfs_write+0x5ae/0x1150
[   68.019832][ T7027]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   68.019860][ T7027]  ? __pfx_vfs_write+0x10/0x10
[   68.019887][ T7027]  ? __fget_files+0x40/0x3a0
[   68.019912][ T7027]  ksys_write+0x12b/0x250
[   68.019937][ T7027]  ? __pfx_ksys_write+0x10/0x10
[   68.019965][ T7027]  do_syscall_64+0xcd/0x250
[   68.019984][ T7027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.020003][ T7027] RIP: 0033:0x7eff92f8bc1f
[   68.020016][ T7027] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   68.020030][ T7027] RSP: 002b:00007eff93e4d000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   68.020045][ T7027] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8bc1f
[   68.020055][ T7027] RDX: 0000000000000015 RSI: 0000400000000300 RDI: 00000000000000c8
[   68.020063][ T7027] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   68.020072][ T7027] R10: 0000000000000015 R11: 0000000000000293 R12: 0000000000000001
[   68.020081][ T7027] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   68.020102][ T7027]  </TASK>
[   68.209308][ T7036] openvswitch: netlink: nsh attr 0 has unexpected len 96 expected 0
[   68.212106][ T7036] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   68.320622][   T79] usb 6-1: USB disconnect, device number 3
[   68.359858][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   68.412512][   T39] audit: type=1400 audit(1740567306.350:432): avc:  denied  { write } for  pid=7048 comm="syz.2.416" name="igmp" dev="proc" ino=4026533363 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   68.416113][ T7049] netlink: 28 bytes leftover after parsing attributes in process `syz.2.416'.
[   68.421560][ T7049] netlink: 72 bytes leftover after parsing attributes in process `syz.2.416'.
[   68.600078][ T5940] Bluetooth: hci3: command 0x0405 tx timeout
[   68.814973][ T7069] FAULT_INJECTION: forcing a failure.
[   68.814973][ T7069] name failslab, interval 1, probability 0, space 0, times 0
[   68.818660][ T7069] CPU: 3 UID: 0 PID: 7069 Comm: syz.2.425 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   68.818675][ T7069] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.818682][ T7069] Call Trace:
[   68.818687][ T7069]  <TASK>
[   68.818692][ T7069]  dump_stack_lvl+0x16c/0x1f0
[   68.818710][ T7069]  should_fail_ex+0x50a/0x650
[   68.818726][ T7069]  ? fs_reclaim_acquire+0xae/0x150
[   68.818743][ T7069]  should_failslab+0xc2/0x120
[   68.818756][ T7069]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   68.818768][ T7069]  ? __alloc_skb+0x2b1/0x380
[   68.818783][ T7069]  __alloc_skb+0x2b1/0x380
[   68.818796][ T7069]  ? __pfx___alloc_skb+0x10/0x10
[   68.818809][ T7069]  ? selinux_socket_getpeersec_dgram+0x1a5/0x370
[   68.818823][ T7069]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   68.818841][ T7069]  netlink_alloc_large_skb+0x69/0x130
[   68.818856][ T7069]  netlink_sendmsg+0x689/0xd70
[   68.818871][ T7069]  ? __pfx_netlink_sendmsg+0x10/0x10
[   68.818889][ T7069]  ____sys_sendmsg+0xaaf/0xc90
[   68.818900][ T7069]  ? copy_msghdr_from_user+0x10b/0x160
[   68.818914][ T7069]  ? __pfx_____sys_sendmsg+0x10/0x10
[   68.818930][ T7069]  ___sys_sendmsg+0x135/0x1e0
[   68.818945][ T7069]  ? __pfx____sys_sendmsg+0x10/0x10
[   68.818963][ T7069]  ? __pfx_lock_release+0x10/0x10
[   68.818978][ T7069]  ? trace_lock_acquire+0x14e/0x1f0
[   68.818994][ T7069]  ? __fget_files+0x206/0x3a0
[   68.819007][ T7069]  __sys_sendmsg+0x16e/0x220
[   68.819021][ T7069]  ? __pfx___sys_sendmsg+0x10/0x10
[   68.819042][ T7069]  do_syscall_64+0xcd/0x250
[   68.819057][ T7069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.819075][ T7069] RIP: 0033:0x7eff92f8d169
[   68.819085][ T7069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.819095][ T7069] RSP: 002b:00007eff93e4d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.819105][ T7069] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8d169
[   68.819112][ T7069] RDX: 000000000400c890 RSI: 0000400000000000 RDI: 0000000000000003
[   68.819118][ T7069] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   68.819124][ T7069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.819130][ T7069] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   68.819142][ T7069]  </TASK>
[   69.075923][ T7099] FAULT_INJECTION: forcing a failure.
[   69.075923][ T7099] name failslab, interval 1, probability 0, space 0, times 0
[   69.079576][ T7099] CPU: 1 UID: 0 PID: 7099 Comm: syz.1.438 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   69.079592][ T7099] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.079598][ T7099] Call Trace:
[   69.079602][ T7099]  <TASK>
[   69.079607][ T7099]  dump_stack_lvl+0x16c/0x1f0
[   69.079624][ T7099]  should_fail_ex+0x50a/0x650
[   69.079641][ T7099]  ? fs_reclaim_acquire+0xae/0x150
[   69.079657][ T7099]  should_failslab+0xc2/0x120
[   69.079671][ T7099]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   69.079682][ T7099]  ? __alloc_skb+0x2b1/0x380
[   69.079698][ T7099]  __alloc_skb+0x2b1/0x380
[   69.079723][ T7099]  ? __pfx___alloc_skb+0x10/0x10
[   69.079737][ T7099]  ? selinux_socket_getpeersec_dgram+0x1a5/0x370
[   69.079752][ T7099]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   69.079769][ T7099]  netlink_alloc_large_skb+0x69/0x130
[   69.079785][ T7099]  netlink_sendmsg+0x689/0xd70
[   69.079800][ T7099]  ? __pfx_netlink_sendmsg+0x10/0x10
[   69.079817][ T7099]  ____sys_sendmsg+0xaaf/0xc90
[   69.079828][ T7099]  ? copy_msghdr_from_user+0x10b/0x160
[   69.079843][ T7099]  ? __pfx_____sys_sendmsg+0x10/0x10
[   69.079859][ T7099]  ___sys_sendmsg+0x135/0x1e0
[   69.079873][ T7099]  ? __pfx____sys_sendmsg+0x10/0x10
[   69.079892][ T7099]  ? __pfx_lock_release+0x10/0x10
[   69.079907][ T7099]  ? trace_lock_acquire+0x14e/0x1f0
[   69.079923][ T7099]  ? __fget_files+0x206/0x3a0
[   69.079937][ T7099]  __sys_sendmsg+0x16e/0x220
[   69.079951][ T7099]  ? __pfx___sys_sendmsg+0x10/0x10
[   69.079973][ T7099]  do_syscall_64+0xcd/0x250
[   69.079987][ T7099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.080002][ T7099] RIP: 0033:0x7f854f18d169
[   69.080011][ T7099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.080021][ T7099] RSP: 002b:00007f854ff46038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   69.080032][ T7099] RAX: ffffffffffffffda RBX: 00007f854f3a5fa0 RCX: 00007f854f18d169
[   69.080038][ T7099] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[   69.080044][ T7099] RBP: 00007f854ff46090 R08: 0000000000000000 R09: 0000000000000000
[   69.080050][ T7099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.080056][ T7099] R13: 0000000000000000 R14: 00007f854f3a5fa0 R15: 00007ffe77662fc8
[   69.080067][ T7099]  </TASK>
[   69.087728][   T39] audit: type=1400 audit(1740567307.020:433): avc:  denied  { bind } for  pid=7100 comm="syz.2.439" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   69.292978][ T7122] FAULT_INJECTION: forcing a failure.
[   69.292978][ T7122] name failslab, interval 1, probability 0, space 0, times 0
[   69.296589][ T7122] CPU: 1 UID: 0 PID: 7122 Comm: syz.1.449 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   69.296604][ T7122] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.296611][ T7122] Call Trace:
[   69.296615][ T7122]  <TASK>
[   69.296619][ T7122]  dump_stack_lvl+0x16c/0x1f0
[   69.296636][ T7122]  should_fail_ex+0x50a/0x650
[   69.296653][ T7122]  ? fs_reclaim_acquire+0xae/0x150
[   69.296670][ T7122]  ? tomoyo_encode2+0x100/0x3e0
[   69.296685][ T7122]  should_failslab+0xc2/0x120
[   69.296698][ T7122]  __kmalloc_noprof+0xcb/0x510
[   69.296710][ T7122]  ? rcu_is_watching+0x12/0xc0
[   69.296723][ T7122]  tomoyo_encode2+0x100/0x3e0
[   69.296740][ T7122]  tomoyo_encode+0x29/0x50
[   69.296754][ T7122]  tomoyo_realpath_from_path+0x19d/0x720
[   69.296770][ T7122]  ? tomoyo_path_number_perm+0x235/0x590
[   69.296785][ T7122]  tomoyo_path_number_perm+0x248/0x590
[   69.296798][ T7122]  ? tomoyo_path_number_perm+0x235/0x590
[   69.296812][ T7122]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   69.296836][ T7122]  ? __pfx_lock_release+0x10/0x10
[   69.296851][ T7122]  ? trace_lock_acquire+0x14e/0x1f0
[   69.296864][ T7122]  ? lock_acquire+0x2f/0xb0
[   69.296877][ T7122]  ? __fget_files+0x40/0x3a0
[   69.296890][ T7122]  ? __fget_files+0x206/0x3a0
[   69.296901][ T7122]  security_file_ioctl+0x9b/0x240
[   69.296917][ T7122]  __x64_sys_ioctl+0xb7/0x200
[   69.296933][ T7122]  do_syscall_64+0xcd/0x250
[   69.296948][ T7122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.296963][ T7122] RIP: 0033:0x7f854f18d169
[   69.296973][ T7122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.296983][ T7122] RSP: 002b:00007f854ff46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   69.296993][ T7122] RAX: ffffffffffffffda RBX: 00007f854f3a5fa0 RCX: 00007f854f18d169
[   69.297000][ T7122] RDX: 0000400000000180 RSI: 00000000c0686611 RDI: 0000000000000003
[   69.297006][ T7122] RBP: 00007f854ff46090 R08: 0000000000000000 R09: 0000000000000000
[   69.297012][ T7122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.297018][ T7122] R13: 0000000000000000 R14: 00007f854f3a5fa0 R15: 00007ffe77662fc8
[   69.297030][ T7122]  </TASK>
[   69.297039][ T7122] ERROR: Out of memory at tomoyo_realpath_from_path.
[   69.311599][ T7124] xt_hashlimit: size too large, truncated to 1048576
[   69.365118][ T7128] FAULT_INJECTION: forcing a failure.
[   69.365118][ T7128] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.370912][ T7128] CPU: 0 UID: 0 PID: 7128 Comm: syz.2.450 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   69.370928][ T7128] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.370934][ T7128] Call Trace:
[   69.370938][ T7128]  <TASK>
[   69.370943][ T7128]  dump_stack_lvl+0x16c/0x1f0
[   69.370967][ T7128]  should_fail_ex+0x50a/0x650
[   69.370994][ T7128]  _copy_from_user+0x2e/0xd0
[   69.371011][ T7128]  copy_msghdr_from_user+0x99/0x160
[   69.371033][ T7128]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   69.371059][ T7128]  ? __lock_acquire+0xcc5/0x3c40
[   69.371090][ T7128]  ___sys_sendmsg+0xff/0x1e0
[   69.371112][ T7128]  ? __pfx____sys_sendmsg+0x10/0x10
[   69.371142][ T7128]  ? trace_lock_acquire+0x14e/0x1f0
[   69.371173][ T7128]  __sys_sendmmsg+0x201/0x420
[   69.371196][ T7128]  ? __pfx___sys_sendmmsg+0x10/0x10
[   69.371224][ T7128]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   69.371251][ T7128]  ? fput+0x67/0x440
[   69.371269][ T7128]  ? ksys_write+0x1ba/0x250
[   69.371289][ T7128]  ? __pfx_ksys_write+0x10/0x10
[   69.371308][ T7128]  __x64_sys_sendmmsg+0x9c/0x100
[   69.371322][ T7128]  ? lockdep_hardirqs_on+0x7c/0x110
[   69.371338][ T7128]  do_syscall_64+0xcd/0x250
[   69.371359][ T7128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.371380][ T7128] RIP: 0033:0x7eff92f8d169
[   69.371392][ T7128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.371407][ T7128] RSP: 002b:00007eff93e2c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   69.371422][ T7128] RAX: ffffffffffffffda RBX: 00007eff931a6080 RCX: 00007eff92f8d169
[   69.371433][ T7128] RDX: 00000000000004ff RSI: 00004000000092c0 RDI: 0000000000000004
[   69.371442][ T7128] RBP: 00007eff93e2c090 R08: 0000000000000000 R09: 0000000000000000
[   69.371451][ T7128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.371461][ T7128] R13: 0000000000000000 R14: 00007eff931a6080 R15: 00007ffeb72e0308
[   69.371482][ T7128]  </TASK>
[   69.399856][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   69.440462][ T7132] xt_hashlimit: size too large, truncated to 1048576
[   69.602557][ T7143] tmpfs: Invalid uid '0x00000000ffffffff'
[   69.604589][ T7143] xt_hashlimit: size too large, truncated to 1048576
[   69.656043][ T7145] warning: `syz.2.456' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   69.849624][ T7154] bond0: option fail_over_mac: unable to set because the bond device has slaves
[   70.439842][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   70.812542][ T7169] netlink: 28 bytes leftover after parsing attributes in process `syz.3.465'.
[   70.815202][ T7169] netlink: 72 bytes leftover after parsing attributes in process `syz.3.465'.
[   70.860006][ T7173] vlan2: entered allmulticast mode
[   70.861562][ T7173] vlan1: entered allmulticast mode
[   70.864111][ T7173] veth0_vlan: entered allmulticast mode
[   70.866026][ T7175] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   70.870971][ T7173] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   70.871835][ T7175] misc userio: Invalid payload size
[   70.961431][ T7185] FAULT_INJECTION: forcing a failure.
[   70.961431][ T7185] name failslab, interval 1, probability 0, space 0, times 0
[   70.965111][ T7185] CPU: 2 UID: 0 PID: 7185 Comm: syz.3.475 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   70.965125][ T7185] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   70.965132][ T7185] Call Trace:
[   70.965135][ T7185]  <TASK>
[   70.965140][ T7185]  dump_stack_lvl+0x16c/0x1f0
[   70.965157][ T7185]  should_fail_ex+0x50a/0x650
[   70.965174][ T7185]  ? fs_reclaim_acquire+0xae/0x150
[   70.965191][ T7185]  should_failslab+0xc2/0x120
[   70.965225][ T7185]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   70.965238][ T7185]  ? __alloc_skb+0x2b1/0x380
[   70.965254][ T7185]  __alloc_skb+0x2b1/0x380
[   70.965267][ T7185]  ? __pfx___alloc_skb+0x10/0x10
[   70.965280][ T7185]  ? selinux_socket_getpeersec_dgram+0x1a5/0x370
[   70.965294][ T7185]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   70.965312][ T7185]  netlink_alloc_large_skb+0x69/0x130
[   70.965327][ T7185]  netlink_sendmsg+0x689/0xd70
[   70.965342][ T7185]  ? __pfx_netlink_sendmsg+0x10/0x10
[   70.965360][ T7185]  ____sys_sendmsg+0xaaf/0xc90
[   70.965370][ T7185]  ? copy_msghdr_from_user+0x10b/0x160
[   70.965385][ T7185]  ? __pfx_____sys_sendmsg+0x10/0x10
[   70.965401][ T7185]  ___sys_sendmsg+0x135/0x1e0
[   70.965416][ T7185]  ? __pfx____sys_sendmsg+0x10/0x10
[   70.965435][ T7185]  ? __pfx_lock_release+0x10/0x10
[   70.965450][ T7185]  ? trace_lock_acquire+0x14e/0x1f0
[   70.965466][ T7185]  ? __fget_files+0x206/0x3a0
[   70.965480][ T7185]  __sys_sendmsg+0x16e/0x220
[   70.965494][ T7185]  ? __pfx___sys_sendmsg+0x10/0x10
[   70.965516][ T7185]  do_syscall_64+0xcd/0x250
[   70.965530][ T7185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.965545][ T7185] RIP: 0033:0x7f46c3f8d169
[   70.965554][ T7185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.965564][ T7185] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   70.965574][ T7185] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   70.965581][ T7185] RDX: 0000000004000010 RSI: 0000400000000580 RDI: 0000000000000003
[   70.965587][ T7185] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   70.965593][ T7185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.965599][ T7185] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   70.965611][ T7185]  </TASK>
[   71.036290][    C2] vkms_vblank_simulate: vblank timer overrun
[   71.162676][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[   71.164998][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[   71.319918][ T1325] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   71.479854][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   71.482629][ T1325] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[   71.484942][ T1325] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   71.488232][ T1325] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   71.491366][ T1325] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   71.494520][ T1325] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   71.498841][ T1325] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   71.501657][ T1325] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.506267][ T1325] usb 8-1: config 0 descriptor??
[   71.508204][ T7194] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   71.846599][ T5933] Process accounting resumed
[   71.859841][   T25] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   71.860600][ T7215] Process accounting resumed
[   71.912730][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.914970][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.917158][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.919311][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.922006][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.924159][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.926367][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.928490][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.930791][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.933070][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.935184][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.937291][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.939420][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.941978][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.944134][ T1325] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[   71.946506][ T1325] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[   71.950900][ T1325] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   72.021715][   T25] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[   72.024275][   T25] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   72.027745][   T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   72.031034][   T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   72.035057][   T25] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   72.039065][   T25] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   72.042969][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   72.046957][   T25] usb 7-1: config 0 descriptor??
[   72.048883][ T7211] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   72.122244][ T7230] FAULT_INJECTION: forcing a failure.
[   72.122244][ T7230] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.126585][ T7230] CPU: 3 UID: 0 PID: 7230 Comm: syz.0.492 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   72.126605][ T7230] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.126615][ T7230] Call Trace:
[   72.126621][ T7230]  <TASK>
[   72.126628][ T7230]  dump_stack_lvl+0x16c/0x1f0
[   72.126652][ T7230]  should_fail_ex+0x50a/0x650
[   72.126679][ T7230]  _copy_from_user+0x2e/0xd0
[   72.126695][ T7230]  move_addr_to_kernel+0x68/0x160
[   72.126713][ T7230]  __copy_msghdr+0x386/0x470
[   72.126739][ T7230]  copy_msghdr_from_user+0xc2/0x160
[   72.126760][ T7230]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   72.126780][ T7230]  ? __lock_acquire+0xcc5/0x3c40
[   72.126810][ T7230]  ___sys_sendmsg+0xff/0x1e0
[   72.126832][ T7230]  ? __pfx____sys_sendmsg+0x10/0x10
[   72.126861][ T7230]  ? trace_lock_acquire+0x14e/0x1f0
[   72.126885][ T7230]  __sys_sendmmsg+0x201/0x420
[   72.126906][ T7230]  ? __pfx___sys_sendmmsg+0x10/0x10
[   72.126935][ T7230]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   72.126963][ T7230]  ? fput+0x67/0x440
[   72.126981][ T7230]  ? ksys_write+0x1ba/0x250
[   72.127003][ T7230]  ? __pfx_ksys_write+0x10/0x10
[   72.127030][ T7230]  __x64_sys_sendmmsg+0x9c/0x100
[   72.127050][ T7230]  ? lockdep_hardirqs_on+0x7c/0x110
[   72.127068][ T7230]  do_syscall_64+0xcd/0x250
[   72.127087][ T7230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.127108][ T7230] RIP: 0033:0x7feb5fb8d169
[   72.127121][ T7230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.127135][ T7230] RSP: 002b:00007feb6099e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   72.127164][ T7230] RAX: ffffffffffffffda RBX: 00007feb5fda5fa0 RCX: 00007feb5fb8d169
[   72.127175][ T7230] RDX: 0000000000000001 RSI: 00004000000017c0 RDI: 0000000000000003
[   72.127184][ T7230] RBP: 00007feb6099e090 R08: 0000000000000000 R09: 0000000000000000
[   72.127194][ T7230] R10: 0000000004040880 R11: 0000000000000246 R12: 0000000000000001
[   72.127203][ T7230] R13: 0000000000000000 R14: 00007feb5fda5fa0 R15: 00007ffc92dd7f48
[   72.127225][ T7230]  </TASK>
[   72.199522][ T7194] FAULT_INJECTION: forcing a failure.
[   72.199522][ T7194] name failslab, interval 1, probability 0, space 0, times 0
[   72.203120][ T7194] CPU: 1 UID: 0 PID: 7194 Comm: syz.3.478 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   72.203142][ T7194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.203152][ T7194] Call Trace:
[   72.203157][ T7194]  <TASK>
[   72.203164][ T7194]  dump_stack_lvl+0x16c/0x1f0
[   72.203189][ T7194]  should_fail_ex+0x50a/0x650
[   72.203213][ T7194]  ? fs_reclaim_acquire+0xae/0x150
[   72.203240][ T7194]  ? tomoyo_realpath_from_path+0xb9/0x720
[   72.203270][ T7194]  should_failslab+0xc2/0x120
[   72.203290][ T7194]  __kmalloc_noprof+0xcb/0x510
[   72.203307][ T7194]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   72.203336][ T7194]  tomoyo_realpath_from_path+0xb9/0x720
[   72.203359][ T7194]  ? tomoyo_path_number_perm+0x235/0x590
[   72.203381][ T7194]  ? tomoyo_path_number_perm+0x235/0x590
[   72.203405][ T7194]  tomoyo_path_number_perm+0x248/0x590
[   72.203425][ T7194]  ? tomoyo_path_number_perm+0x235/0x590
[   72.203448][ T7194]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   72.203492][ T7194]  ? __pfx_lock_release+0x10/0x10
[   72.203514][ T7194]  ? trace_lock_acquire+0x14e/0x1f0
[   72.203535][ T7194]  ? lock_acquire+0x2f/0xb0
[   72.203556][ T7194]  ? __fget_files+0x40/0x3a0
[   72.203575][ T7194]  ? __fget_files+0x206/0x3a0
[   72.203612][ T7194]  security_file_ioctl+0x9b/0x240
[   72.203637][ T7194]  __x64_sys_ioctl+0xb7/0x200
[   72.203663][ T7194]  do_syscall_64+0xcd/0x250
[   72.203686][ T7194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.203708][ T7194] RIP: 0033:0x7f46c3f8d169
[   72.203722][ T7194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.203738][ T7194] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   72.203754][ T7194] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   72.203765][ T7194] RDX: 0000400000000a80 RSI: 0000000080404812 RDI: 0000000000000004
[   72.203776][ T7194] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   72.203785][ T7194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.203795][ T7194] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   72.203818][ T7194]  </TASK>
[   72.203825][ T7194] ERROR: Out of memory at tomoyo_realpath_from_path.
[   72.280413][ T1470] usb 8-1: USB disconnect, device number 4
[   72.424703][   T39] kauditd_printk_skb: 12 callbacks suppressed
[   72.424716][   T39] audit: type=1400 audit(1740567310.360:446): avc:  denied  { bind } for  pid=7234 comm="syz.0.494" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   72.529776][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   72.880381][ T7242] [U] à€E`ÞØÊ_òïÈTvß=æ¼B¥ ²›U
ÒôQ;Ö®

Y±\9ž©Pþâ
[   72.958417][ T7244] FAULT_INJECTION: forcing a failure.
[   72.958417][ T7244] name failslab, interval 1, probability 0, space 0, times 0
[   72.963475][ T7244] CPU: 3 UID: 0 PID: 7244 Comm: syz.3.498 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   72.963490][ T7244] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.963496][ T7244] Call Trace:
[   72.963500][ T7244]  <TASK>
[   72.963504][ T7244]  dump_stack_lvl+0x16c/0x1f0
[   72.963521][ T7244]  should_fail_ex+0x50a/0x650
[   72.963537][ T7244]  ? fs_reclaim_acquire+0xae/0x150
[   72.963555][ T7244]  should_failslab+0xc2/0x120
[   72.963567][ T7244]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   72.963579][ T7244]  ? __alloc_skb+0x2b1/0x380
[   72.963594][ T7244]  __alloc_skb+0x2b1/0x380
[   72.963607][ T7244]  ? __pfx___alloc_skb+0x10/0x10
[   72.963619][ T7244]  ? selinux_socket_getpeersec_dgram+0x1a5/0x370
[   72.963634][ T7244]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[   72.963658][ T7244]  netlink_alloc_large_skb+0x69/0x130
[   72.963676][ T7244]  netlink_sendmsg+0x689/0xd70
[   72.963697][ T7244]  ? __pfx_netlink_sendmsg+0x10/0x10
[   72.963724][ T7244]  ____sys_sendmsg+0xaaf/0xc90
[   72.963740][ T7244]  ? copy_msghdr_from_user+0x10b/0x160
[   72.963760][ T7244]  ? __pfx_____sys_sendmsg+0x10/0x10
[   72.963786][ T7244]  ___sys_sendmsg+0x135/0x1e0
[   72.963807][ T7244]  ? __pfx____sys_sendmsg+0x10/0x10
[   72.963837][ T7244]  ? __pfx_lock_release+0x10/0x10
[   72.963857][ T7244]  ? trace_lock_acquire+0x14e/0x1f0
[   72.963881][ T7244]  ? __fget_files+0x206/0x3a0
[   72.963902][ T7244]  __sys_sendmsg+0x16e/0x220
[   72.963922][ T7244]  ? __pfx___sys_sendmsg+0x10/0x10
[   72.963955][ T7244]  do_syscall_64+0xcd/0x250
[   72.963969][ T7244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.963984][ T7244] RIP: 0033:0x7f46c3f8d169
[   72.963997][ T7244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.964010][ T7244] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   72.964025][ T7244] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   72.964035][ T7244] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000004
[   72.964045][ T7244] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   72.964053][ T7244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.964062][ T7244] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   72.964082][ T7244]  </TASK>
[   73.281399][ T7257] loop9: detected capacity change from 0 to 8
[   73.286291][ T7257]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[   73.288231][ T7257] loop9: partition table partially beyond EOD, truncated
[   73.291658][ T7257] loop9: p1 size 4245934988 extends beyond EOD, truncated
[   73.291847][   T39] audit: type=1326 audit(1740567311.230:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7254 comm="syz.3.503" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f46c3f8d169 code=0x0
[   73.305457][ T6768] udevd[6768]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[   73.408548][ T5952] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   73.559842][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   74.253844][   T39] audit: type=1400 audit(1740567312.190:448): avc:  denied  { read write } for  pid=7275 comm="syz.0.511" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   74.260630][   T39] audit: type=1400 audit(1740567312.190:449): avc:  denied  { open } for  pid=7275 comm="syz.0.511" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   74.266871][   T39] audit: type=1400 audit(1740567312.200:450): avc:  denied  { map } for  pid=7275 comm="syz.0.511" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   74.273615][   T39] audit: type=1400 audit(1740567312.200:451): avc:  denied  { execute } for  pid=7275 comm="syz.0.511" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   74.353517][ T7283] netlink: 36 bytes leftover after parsing attributes in process `syz.0.514'.
[   74.359355][ T7285] FAULT_INJECTION: forcing a failure.
[   74.359355][ T7285] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.364306][ T7285] CPU: 1 UID: 0 PID: 7285 Comm: syz.3.515 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   74.364323][ T7285] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.364331][ T7285] Call Trace:
[   74.364334][ T7285]  <TASK>
[   74.364339][ T7285]  dump_stack_lvl+0x16c/0x1f0
[   74.364356][ T7285]  should_fail_ex+0x50a/0x650
[   74.364374][ T7285]  _copy_from_user+0x2e/0xd0
[   74.364385][ T7285]  vmci_host_unlocked_ioctl+0x730/0x1fb0
[   74.364404][ T7285]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[   74.364424][ T7285]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[   74.364442][ T7285]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   74.364459][ T7285]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   74.364478][ T7285]  ? __pfx_lock_release+0x10/0x10
[   74.364498][ T7285]  ? selinux_file_ioctl+0x180/0x270
[   74.364513][ T7285]  ? selinux_file_ioctl+0xb4/0x270
[   74.364529][ T7285]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[   74.364547][ T7285]  __x64_sys_ioctl+0x190/0x200
[   74.364563][ T7285]  do_syscall_64+0xcd/0x250
[   74.364577][ T7285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.364592][ T7285] RIP: 0033:0x7f46c3f8d169
[   74.364601][ T7285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.364612][ T7285] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.364622][ T7285] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   74.364628][ T7285] RDX: 00004000000002c0 RSI: 00000000000007b0 RDI: 0000000000000003
[   74.364635][ T7285] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   74.364641][ T7285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.364647][ T7285] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   74.364658][ T7285]  </TASK>
[   74.443354][   T39] audit: type=1400 audit(1740567312.380:452): avc:  denied  { execute_no_trans } for  pid=7289 comm="syz.0.516" path="/121/file2" dev="tmpfs" ino=695 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   74.444173][ T7290] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[   74.454050][ T7292] netlink: 'syz.3.518': attribute type 9 has an invalid length.
[   74.532621][ T5940] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[   74.571325][   T25] usbhid 7-1:0.0: can't add hid device: -71
[   74.573641][   T25] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[   74.577724][   T25] usb 7-1: USB disconnect, device number 4
[   74.599860][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   74.608619][ T7303] syzkaller1: entered promiscuous mode
[   74.611237][ T7303] syzkaller1: entered allmulticast mode
[   74.717497][ T7307] syzkaller1: entered promiscuous mode
[   74.719468][ T7307] syzkaller1: entered allmulticast mode
[   74.722749][ T7307] FAULT_INJECTION: forcing a failure.
[   74.722749][ T7307] name failslab, interval 1, probability 0, space 0, times 0
[   74.726290][ T7309] Bluetooth: MGMT ver 1.23
[   74.726632][   T39] audit: type=1400 audit(1740567312.660:453): avc:  denied  { write } for  pid=7308 comm="syz.3.526" path="socket:[15142]" dev="sockfs" ino=15142 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   74.728133][ T7309] Bluetooth: hci0: expected 19 bytes, got 7 bytes
[   74.729903][ T7307] CPU: 0 UID: 0 PID: 7307 Comm: syz.2.525 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   74.729920][ T7307] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.729946][ T7307] Call Trace:
[   74.729952][ T7307]  <TASK>
[   74.729957][ T7307]  dump_stack_lvl+0x16c/0x1f0
[   74.729974][ T7307]  should_fail_ex+0x50a/0x650
[   74.729991][ T7307]  ? fs_reclaim_acquire+0xae/0x150
[   74.730007][ T7307]  should_failslab+0xc2/0x120
[   74.730020][ T7307]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   74.730031][ T7307]  ? __alloc_skb+0x2b1/0x380
[   74.730045][ T7307]  ? __pfx_mark_lock+0x10/0x10
[   74.730061][ T7307]  __alloc_skb+0x2b1/0x380
[   74.730074][ T7307]  ? __pfx___alloc_skb+0x10/0x10
[   74.730091][ T7307]  ? find_held_lock+0x2d/0x110
[   74.730104][ T7307]  ? __might_fault+0x13b/0x190
[   74.730117][ T7307]  alloc_skb_with_frags+0xe4/0x850
[   74.730134][ T7307]  ? __might_fault+0xe3/0x190
[   74.730147][ T7307]  sock_alloc_send_pskb+0x7f1/0x980
[   74.730164][ T7307]  ? _copy_from_iter+0x15e/0x1560
[   74.730178][ T7307]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[   74.730193][ T7307]  ? __lock_acquire+0xcc5/0x3c40
[   74.730208][ T7307]  ? hlock_class+0x4e/0x130
[   74.730219][ T7307]  ? __lock_acquire+0xcc5/0x3c40
[   74.730233][ T7307]  ? iov_iter_advance+0x7d/0x6c0
[   74.730244][ T7307]  tun_get_user+0xd3b/0x3e50
[   74.730266][ T7307]  ? __pfx_tun_get_user+0x10/0x10
[   74.730282][ T7307]  ? find_held_lock+0x2d/0x110
[   74.730295][ T7307]  ? __pfx_lock_release+0x10/0x10
[   74.730315][ T7307]  tun_chr_write_iter+0xdc/0x210
[   74.730332][ T7307]  vfs_write+0x5ae/0x1150
[   74.730349][ T7307]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   74.730367][ T7307]  ? __pfx_vfs_write+0x10/0x10
[   74.730383][ T7307]  ? __fget_files+0x40/0x3a0
[   74.730399][ T7307]  ksys_write+0x12b/0x250
[   74.730415][ T7307]  ? __pfx_ksys_write+0x10/0x10
[   74.730442][ T7307]  do_syscall_64+0xcd/0x250
[   74.730457][ T7307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.730472][ T7307] RIP: 0033:0x7eff92f8d169
[   74.730481][ T7307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.730492][ T7307] RSP: 002b:00007eff93e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   74.730502][ T7307] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8d169
[   74.730509][ T7307] RDX: 000000000000fdef RSI: 0000400000000240 RDI: 0000000000000003
[   74.730515][ T7307] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   74.730521][ T7307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.730526][ T7307] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   74.730538][ T7307]  </TASK>
[   74.858003][ T7312] syzkaller1: entered promiscuous mode
[   74.859600][ T7312] syzkaller1: entered allmulticast mode
[   74.862683][ T7312] netlink: 8 bytes leftover after parsing attributes in process `syz.3.527'.
[   74.975282][   T39] audit: type=1400 audit(1740567312.910:454): avc:  denied  { create } for  pid=7316 comm="syz.3.529" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   74.982068][   T39] audit: type=1400 audit(1740567312.910:455): avc:  denied  { write } for  pid=7316 comm="syz.3.529" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   75.101682][ T7327] mmap: syz.3.534 (7327) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   75.357048][ T5940] Bluetooth: hci3: unexpected event for opcode 0x0c0d
[   75.404538][ T7352] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[   75.439544][ T7357] FAULT_INJECTION: forcing a failure.
[   75.439544][ T7357] name failslab, interval 1, probability 0, space 0, times 0
[   75.443603][ T7357] CPU: 1 UID: 0 PID: 7357 Comm: syz.2.547 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   75.443622][ T7357] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.443632][ T7357] Call Trace:
[   75.443637][ T7357]  <TASK>
[   75.443643][ T7357]  dump_stack_lvl+0x16c/0x1f0
[   75.443662][ T7357]  should_fail_ex+0x50a/0x650
[   75.443684][ T7357]  ? fs_reclaim_acquire+0xae/0x150
[   75.443708][ T7357]  should_failslab+0xc2/0x120
[   75.443725][ T7357]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   75.443742][ T7357]  ? alloc_empty_file+0x73/0x1e0
[   75.443763][ T7357]  alloc_empty_file+0x73/0x1e0
[   75.443778][ T7357]  path_openat+0xe1/0x2d80
[   75.443792][ T7357]  ? hlock_class+0x4e/0x130
[   75.443808][ T7357]  ? __lock_acquire+0x15a9/0x3c40
[   75.443835][ T7357]  ? __pfx_path_openat+0x10/0x10
[   75.443850][ T7357]  ? __pfx___lock_acquire+0x10/0x10
[   75.443866][ T7357]  ? lock_acquire.part.0+0x11b/0x380
[   75.443887][ T7357]  ? find_held_lock+0x2d/0x110
[   75.443905][ T7357]  do_filp_open+0x20c/0x470
[   75.443920][ T7357]  ? __pfx_do_filp_open+0x10/0x10
[   75.443933][ T7357]  ? find_held_lock+0x2d/0x110
[   75.443956][ T7357]  ? alloc_fd+0x41f/0x760
[   75.443982][ T7357]  do_sys_openat2+0x17a/0x1e0
[   75.444000][ T7357]  ? __pfx_do_sys_openat2+0x10/0x10
[   75.444021][ T7357]  ? __fget_files+0x206/0x3a0
[   75.444038][ T7357]  __x64_sys_openat+0x175/0x210
[   75.444054][ T7357]  ? __pfx___x64_sys_openat+0x10/0x10
[   75.444072][ T7357]  ? ksys_write+0x1ba/0x250
[   75.444102][ T7357]  do_syscall_64+0xcd/0x250
[   75.444121][ T7357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.444139][ T7357] RIP: 0033:0x7eff92f8d169
[   75.444151][ T7357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.444166][ T7357] RSP: 002b:00007eff93e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   75.444181][ T7357] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8d169
[   75.444191][ T7357] RDX: 0000000000515001 RSI: 0000400000001740 RDI: ffffffffffffff9c
[   75.444200][ T7357] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   75.444208][ T7357] R10: 0000000000000589 R11: 0000000000000246 R12: 0000000000000001
[   75.444214][ T7357] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   75.444234][ T7357]  </TASK>
[   75.640181][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   75.759946][ T7367] tipc: Started in network mode
[   75.761394][ T7367] tipc: Node identity ac1414aa, cluster identity 4711
[   75.763521][ T7367] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   75.765735][ T7367] tipc: Enabled bearer <udp:s>, priority 10
[   75.801562][ T5933] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   75.909888][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   75.937318][ T5940] Bluetooth: hci3: unexpected event for opcode 0x0413
[   75.963193][ T5933] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   75.965599][ T5933] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   75.968970][ T5933] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[   75.972600][ T5933] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[   75.976645][ T5933] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[   75.981592][ T5933] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   75.984241][ T5933] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   75.986522][ T5933] usb 7-1: Product: syz
[   75.987744][ T5933] usb 7-1: Manufacturer: syz
[   75.993044][ T5933] cdc_wdm 7-1:1.0: skipping garbage
[   75.995631][ T5933] cdc_wdm 7-1:1.0: skipping garbage
[   75.997734][ T5933] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   75.999436][ T5933] cdc_wdm 7-1:1.0: Unknown control protocol
[   76.037527][ T7385] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[   76.059789][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   76.114889][ T7400] netlink: 60 bytes leftover after parsing attributes in process `syz.3.562'.
[   76.155875][ T7404] netlink: 12 bytes leftover after parsing attributes in process `syz.0.565'.
[   76.195790][    T9] usb 7-1: USB disconnect, device number 5
[   76.209842][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   76.325490][ T7414] netlink: 12 bytes leftover after parsing attributes in process `syz.0.569'.
[   76.349937][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   76.489836][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   76.780785][ T5977] tipc: Node number set to 2886997162
[   76.833427][ T7428] FAULT_INJECTION: forcing a failure.
[   76.833427][ T7428] name failslab, interval 1, probability 0, space 0, times 0
[   76.836972][ T7428] CPU: 3 UID: 0 PID: 7428 Comm: syz.2.574 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   76.836988][ T7428] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.836995][ T7428] Call Trace:
[   76.836999][ T7428]  <TASK>
[   76.837003][ T7428]  dump_stack_lvl+0x16c/0x1f0
[   76.837019][ T7428]  should_fail_ex+0x50a/0x650
[   76.837036][ T7428]  ? fs_reclaim_acquire+0xae/0x150
[   76.837052][ T7428]  ? tomoyo_encode2+0x100/0x3e0
[   76.837067][ T7428]  should_failslab+0xc2/0x120
[   76.837080][ T7428]  __kmalloc_noprof+0xcb/0x510
[   76.837090][ T7428]  ? d_absolute_path+0x137/0x1b0
[   76.837104][ T7428]  ? rcu_is_watching+0x12/0xc0
[   76.837117][ T7428]  tomoyo_encode2+0x100/0x3e0
[   76.837133][ T7428]  tomoyo_encode+0x29/0x50
[   76.837164][ T7428]  tomoyo_realpath_from_path+0x19d/0x720
[   76.837184][ T7428]  tomoyo_path_number_perm+0x248/0x590
[   76.837197][ T7428]  ? tomoyo_path_number_perm+0x235/0x590
[   76.837211][ T7428]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   76.837236][ T7428]  ? __pfx_lock_release+0x10/0x10
[   76.837250][ T7428]  ? trace_lock_acquire+0x14e/0x1f0
[   76.837264][ T7428]  ? lock_acquire+0x2f/0xb0
[   76.837277][ T7428]  ? __fget_files+0x40/0x3a0
[   76.837289][ T7428]  ? __fget_files+0x206/0x3a0
[   76.837300][ T7428]  security_file_ioctl+0x9b/0x240
[   76.837317][ T7428]  __x64_sys_ioctl+0xb7/0x200
[   76.837333][ T7428]  do_syscall_64+0xcd/0x250
[   76.837348][ T7428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.837362][ T7428] RIP: 0033:0x7eff92f8d169
[   76.837371][ T7428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.837381][ T7428] RSP: 002b:00007eff93e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.837391][ T7428] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8d169
[   76.837397][ T7428] RDX: 0000000000000000 RSI: 000000000000af02 RDI: 0000000000000003
[   76.837403][ T7428] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   76.837409][ T7428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.837415][ T7428] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   76.837427][ T7428]  </TASK>
[   76.837436][ T7428] ERROR: Out of memory at tomoyo_realpath_from_path.
[   76.952164][ T7431] netlink: 'syz.2.575': attribute type 13 has an invalid length.
[   77.079840][ T5940] Bluetooth: hci2: command 0x0406 tx timeout
[   77.099159][ T7434] tipc: Started in network mode
[   77.100847][ T7434] tipc: Node identity ac1414aa, cluster identity 4711
[   77.102960][ T7434] tipc: Enabled bearer <udp:s>, priority 10
[   77.246811][ T7439] tipc: Enabling of bearer <udp:s> rejected, already enabled
[   77.253404][ T7452] random: crng reseeded on system resumption
[   77.418242][ T7461] FAULT_INJECTION: forcing a failure.
[   77.418242][ T7461] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.421770][ T7461] CPU: 3 UID: 0 PID: 7461 Comm: syz.3.584 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   77.421784][ T7461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.421791][ T7461] Call Trace:
[   77.421801][ T7461]  <TASK>
[   77.421806][ T7461]  dump_stack_lvl+0x16c/0x1f0
[   77.421831][ T7461]  should_fail_ex+0x50a/0x650
[   77.421853][ T7461]  _copy_to_iter+0x2a1/0x1560
[   77.421864][ T7461]  ? trace_lock_acquire+0x14e/0x1f0
[   77.421877][ T7461]  ? __pfx_lock_release+0x10/0x10
[   77.421896][ T7461]  ? __pfx__copy_to_iter+0x10/0x10
[   77.421908][ T7461]  ? __virt_addr_valid+0x1a4/0x590
[   77.421922][ T7461]  ? __virt_addr_valid+0x5e/0x590
[   77.421932][ T7461]  ? __phys_addr_symbol+0x30/0x80
[   77.421942][ T7461]  ? __check_object_size+0x488/0x710
[   77.421957][ T7461]  seq_read_iter+0xd00/0x12b0
[   77.421979][ T7461]  kernfs_fop_read_iter+0x414/0x580
[   77.421992][ T7461]  ? rw_verify_area+0xcf/0x680
[   77.422008][ T7461]  vfs_read+0x886/0xbf0
[   77.422026][ T7461]  ? __pfx_vfs_read+0x10/0x10
[   77.422050][ T7461]  ksys_read+0x12b/0x250
[   77.422065][ T7461]  ? __pfx_ksys_read+0x10/0x10
[   77.422085][ T7461]  do_syscall_64+0xcd/0x250
[   77.422100][ T7461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.422114][ T7461] RIP: 0033:0x7f46c3f8d169
[   77.422123][ T7461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.422133][ T7461] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   77.422143][ T7461] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   77.422149][ T7461] RDX: 0000000000002020 RSI: 0000400000000440 RDI: 0000000000000004
[   77.422155][ T7461] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   77.422161][ T7461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.422167][ T7461] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   77.422179][ T7461]  </TASK>
[   77.646405][ T7474] FAULT_INJECTION: forcing a failure.
[   77.646405][ T7474] name failslab, interval 1, probability 0, space 0, times 0
[   77.651659][ T7474] CPU: 0 UID: 0 PID: 7474 Comm: syz.3.588 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   77.651674][ T7474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.651681][ T7474] Call Trace:
[   77.651684][ T7474]  <TASK>
[   77.651689][ T7474]  dump_stack_lvl+0x16c/0x1f0
[   77.651706][ T7474]  should_fail_ex+0x50a/0x650
[   77.651722][ T7474]  ? fs_reclaim_acquire+0xae/0x150
[   77.651740][ T7474]  ? sctp_auth_set_key+0x1a1/0xb40
[   77.651753][ T7474]  should_failslab+0xc2/0x120
[   77.651765][ T7474]  __kmalloc_cache_noprof+0x68/0x410
[   77.651781][ T7474]  ? sctp_setsockopt+0x54e/0xb810
[   77.651798][ T7474]  sctp_auth_set_key+0x1a1/0xb40
[   77.651812][ T7474]  ? __local_bh_enable_ip+0xa4/0x120
[   77.651830][ T7474]  sctp_setsockopt+0x9f22/0xb810
[   77.651845][ T7474]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[   77.651863][ T7474]  ? __pfx_sctp_setsockopt+0x10/0x10
[   77.651880][ T7474]  ? selinux_socket_setsockopt+0x6a/0x80
[   77.651893][ T7474]  ? sock_common_setsockopt+0x2e/0xf0
[   77.651916][ T7474]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   77.651933][ T7474]  do_sock_setsockopt+0x222/0x480
[   77.651949][ T7474]  ? __pfx_do_sock_setsockopt+0x10/0x10
[   77.651966][ T7474]  ? lock_acquire+0x2f/0xb0
[   77.651987][ T7474]  __sys_setsockopt+0x1a0/0x230
[   77.652003][ T7474]  __x64_sys_setsockopt+0xbd/0x160
[   77.652016][ T7474]  ? do_syscall_64+0x91/0x250
[   77.652028][ T7474]  ? lockdep_hardirqs_on+0x7c/0x110
[   77.652040][ T7474]  do_syscall_64+0xcd/0x250
[   77.652054][ T7474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.652069][ T7474] RIP: 0033:0x7f46c3f8d169
[   77.652077][ T7474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.652088][ T7474] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   77.652097][ T7474] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   77.652104][ T7474] RDX: 0000000000000017 RSI: 0000000000000084 RDI: 0000000000000003
[   77.652110][ T7474] RBP: 00007f46c4dc2090 R08: 00000000000000ed R09: 0000000000000000
[   77.652115][ T7474] R10: 0000400000000540 R11: 0000000000000246 R12: 0000000000000001
[   77.652121][ T7474] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   77.652138][ T7474]  </TASK>
[   77.719877][    C1] net_ratelimit: 8 callbacks suppressed
[   77.719889][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   77.719892][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   77.739897][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   77.869872][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   77.930508][ T7489] netlink: 12 bytes leftover after parsing attributes in process `syz.3.594'.
[   77.932981][ T7490] netlink: 12 bytes leftover after parsing attributes in process `syz.3.594'.
[   77.935993][   T39] kauditd_printk_skb: 15 callbacks suppressed
[   77.936001][   T39] audit: type=1400 audit(1740567315.870:471): avc:  denied  { create } for  pid=7488 comm="syz.3.594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   77.988927][   T39] audit: type=1400 audit(1740567315.920:472): avc:  denied  { map } for  pid=7492 comm="syz.3.595" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   77.995783][   T39] audit: type=1400 audit(1740567315.920:473): avc:  denied  { execute } for  pid=7492 comm="syz.3.595" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   78.009842][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   78.150134][ T5933] tipc: Node number set to 2886997162
[   78.290014][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   78.501396][   T39] audit: type=1400 audit(1740567316.440:474): avc:  denied  { name_bind } for  pid=7540 comm="syz.0.615" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   78.509656][   T39] audit: type=1400 audit(1740567316.440:475): avc:  denied  { setopt } for  pid=7535 comm="syz.3.613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   78.551952][ T7547] FAULT_INJECTION: forcing a failure.
[   78.551952][ T7547] name failslab, interval 1, probability 0, space 0, times 0
[   78.556583][ T7547] CPU: 2 UID: 0 PID: 7547 Comm: syz.2.616 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   78.556604][ T7547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.556612][ T7547] Call Trace:
[   78.556616][ T7547]  <TASK>
[   78.556622][ T7547]  dump_stack_lvl+0x16c/0x1f0
[   78.556645][ T7547]  should_fail_ex+0x50a/0x650
[   78.556667][ T7547]  ? fs_reclaim_acquire+0xae/0x150
[   78.556691][ T7547]  should_failslab+0xc2/0x120
[   78.556707][ T7547]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[   78.556723][ T7547]  ? rcu_is_watching+0x12/0xc0
[   78.556739][ T7547]  ? uinput_write+0x2ff/0x12b0
[   78.556762][ T7547]  kstrndup+0x6d/0x160
[   78.556784][ T7547]  ? __pfx_uinput_write+0x10/0x10
[   78.556799][ T7547]  uinput_write+0x2ff/0x12b0
[   78.556817][ T7547]  ? inode_security+0x101/0x130
[   78.556841][ T7547]  ? __pfx_uinput_write+0x10/0x10
[   78.556862][ T7547]  ? bpf_lsm_file_permission+0x9/0x10
[   78.556878][ T7547]  ? security_file_permission+0x71/0x210
[   78.556910][ T7547]  ? rw_verify_area+0xcf/0x680
[   78.556932][ T7547]  ? __pfx_uinput_write+0x10/0x10
[   78.556950][ T7547]  vfs_write+0x24c/0x1150
[   78.556972][ T7547]  ? __fget_files+0x1fc/0x3a0
[   78.556984][ T7547]  ? __pfx_lock_release+0x10/0x10
[   78.557005][ T7547]  ? __pfx_vfs_write+0x10/0x10
[   78.557042][ T7547]  ? lock_acquire+0x2f/0xb0
[   78.557063][ T7547]  ? __fget_files+0x40/0x3a0
[   78.557080][ T7547]  ? __fget_files+0x206/0x3a0
[   78.557095][ T7547]  ksys_write+0x207/0x250
[   78.557117][ T7547]  ? __pfx_ksys_write+0x10/0x10
[   78.557167][ T7547]  do_syscall_64+0xcd/0x250
[   78.557189][ T7547]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.557210][ T7547] RIP: 0033:0x7eff92f8d169
[   78.557223][ T7547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.557237][ T7547] RSP: 002b:00007eff93e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   78.557252][ T7547] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8d169
[   78.557262][ T7547] RDX: 000000000000045c RSI: 0000400000000840 RDI: 0000000000000003
[   78.557271][ T7547] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   78.557280][ T7547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.557289][ T7547] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   78.557305][ T7547]  </TASK>
[   78.569814][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   78.657077][ T7556] input: syz1 as /devices/virtual/input/input17
[   78.769912][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   78.772175][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   78.870993][ T7562] sch_tbf: peakrate 1024 is lower than or equals to rate 3180 !
[   78.875487][   T39] audit: type=1400 audit(1740567316.810:476): avc:  denied  { ioctl } for  pid=7559 comm="syz.2.621" path="socket:[17896]" dev="sockfs" ino=17896 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   79.089883][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   79.141274][   T39] audit: type=1400 audit(1740567317.080:477): avc:  denied  { mounton } for  pid=7559 comm="syz.2.621" path="/183/file0" dev="tmpfs" ino=1008 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[   79.370298][ T7569] FAULT_INJECTION: forcing a failure.
[   79.370298][ T7569] name failslab, interval 1, probability 0, space 0, times 0
[   79.373841][ T7569] CPU: 1 UID: 0 PID: 7569 Comm: syz.3.623 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   79.373855][ T7569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.373864][ T7569] Call Trace:
[   79.373867][ T7569]  <TASK>
[   79.373874][ T7569]  dump_stack_lvl+0x16c/0x1f0
[   79.373896][ T7569]  should_fail_ex+0x50a/0x650
[   79.373912][ T7569]  ? fs_reclaim_acquire+0xae/0x150
[   79.373929][ T7569]  ? input_register_device+0xb6e/0x1130
[   79.373946][ T7569]  should_failslab+0xc2/0x120
[   79.373963][ T7569]  __kmalloc_noprof+0xcb/0x510
[   79.373975][ T7569]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   79.373996][ T7569]  input_register_device+0xb6e/0x1130
[   79.374015][ T7569]  uinput_ioctl_handler.isra.0+0x130c/0x1d70
[   79.374031][ T7569]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[   79.374045][ T7569]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   79.374065][ T7569]  ? __pfx_lock_release+0x10/0x10
[   79.374085][ T7569]  ? selinux_file_ioctl+0x180/0x270
[   79.374100][ T7569]  ? selinux_file_ioctl+0xb4/0x270
[   79.374117][ T7569]  ? __pfx_uinput_ioctl+0x10/0x10
[   79.374131][ T7569]  __x64_sys_ioctl+0x190/0x200
[   79.374147][ T7569]  do_syscall_64+0xcd/0x250
[   79.374161][ T7569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.374177][ T7569] RIP: 0033:0x7f46c3f8d169
[   79.374185][ T7569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.374195][ T7569] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   79.374205][ T7569] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   79.374211][ T7569] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003
[   79.374218][ T7569] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   79.374223][ T7569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.374229][ T7569] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   79.374247][ T7569]  </TASK>
[   79.485773][ T5940] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[   79.770496][   T35] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   79.919922][   T35] usb 5-1: Using ep0 maxpacket: 16
[   79.922754][   T35] usb 5-1: config index 0 descriptor too short (expected 16384, got 36)
[   79.925488][   T35] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   79.928710][   T35] usb 5-1: config 0 has no interfaces?
[   79.930906][   T35] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   79.933848][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.938069][   T35] usb 5-1: config 0 descriptor??
[   79.970798][ T5952] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   79.973410][ T5952] Bluetooth: hci3: Injecting HCI hardware error event
[   79.976585][ T5952] Bluetooth: hci3: hardware error 0x00
[   79.989881][   T79] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   80.139826][   T79] usb 7-1: Using ep0 maxpacket: 8
[   80.142911][   T79] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[   80.145628][   T79] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   80.148704][   T79] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   80.151929][   T79] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   80.155082][   T79] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   80.155148][ T7578] netlink: 'syz.0.626': attribute type 10 has an invalid length.
[   80.159168][   T79] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   80.159189][   T79] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.167373][ T7578] syz_tun: entered promiscuous mode
[   80.175357][ T7578] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   80.189285][ T7578] netlink: 4 bytes leftover after parsing attributes in process `syz.0.626'.
[   80.294809][   T35] usb 5-1: string descriptor 0 read error: -71
[   80.296993][   T39] audit: type=1400 audit(1740567318.230:478): avc:  denied  { watch watch_reads } for  pid=7585 comm="syz.3.628" path="pipe:[17911]" dev="pipefs" ino=17911 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   80.297179][   T35] usb 5-1: USB disconnect, device number 8
[   80.318854][ T7587] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   80.363803][   T79] usb 7-1: usb_control_msg returned -32
[   80.365789][   T79] usbtmc 7-1:16.0: can't read capabilities
[   80.719057][ T7589] usbtmc 7-1:16.0: INITIATE_ABORT_BULK_IN returned 0
[   80.888162][   T39] audit: type=1400 audit(1740567318.820:479): avc:  denied  { connect } for  pid=7594 comm="syz.0.631" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   80.920164][   T30] usb 7-1: USB disconnect, device number 6
[   81.045513][   T39] audit: type=1400 audit(1740567318.980:480): avc:  denied  { ioctl } for  pid=7594 comm="syz.0.631" path="socket:[19624]" dev="sockfs" ino=19624 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   81.101447][ T7599] misc userio: Can't change port type on an already running userio instance
[   81.306370][ T7607] FAULT_INJECTION: forcing a failure.
[   81.306370][ T7607] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.311841][ T7607] CPU: 1 UID: 0 PID: 7607 Comm: syz.3.634 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   81.311862][ T7607] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.311871][ T7607] Call Trace:
[   81.311876][ T7607]  <TASK>
[   81.311886][ T7607]  dump_stack_lvl+0x16c/0x1f0
[   81.311910][ T7607]  should_fail_ex+0x50a/0x650
[   81.311936][ T7607]  __kvm_write_guest_page+0x187/0x260
[   81.311958][ T7607]  kvm_vcpu_write_guest+0x8c/0x130
[   81.311983][ T7607]  write_emulate+0x33/0x80
[   81.312005][ T7607]  emulator_read_write_onepage+0x2e7/0xb30
[   81.312033][ T7607]  emulator_read_write+0x1b0/0x5b0
[   81.312057][ T7607]  segmented_write.isra.0+0xf9/0x150
[   81.312081][ T7607]  ? __pfx_segmented_write.isra.0+0x10/0x10
[   81.312104][ T7607]  ? vmx_cache_reg+0x10e/0x5e0
[   81.312127][ T7607]  emulate_push+0x393/0x5b0
[   81.312146][ T7607]  ? __pfx_emulate_push+0x10/0x10
[   81.312162][ T7607]  ? emulator_read_write+0x450/0x5b0
[   81.312184][ T7607]  ? __asan_memcpy+0x3c/0x60
[   81.312214][ T7607]  ? __pfx_em_call_near_abs+0x10/0x10
[   81.312230][ T7607]  em_call_near_abs+0x118/0x160
[   81.312247][ T7607]  x86_emulate_insn+0x5f4/0x39f0
[   81.312270][ T7607]  ? __pfx_x86_emulate_insn+0x10/0x10
[   81.312288][ T7607]  ? __pfx_mark_lock+0x10/0x10
[   81.312309][ T7607]  ? __pfx___lock_acquire+0x10/0x10
[   81.312329][ T7607]  ? __pfx___mutex_trylock_common+0x10/0x10
[   81.312351][ T7607]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[   81.312373][ T7607]  x86_emulate_instruction+0x440/0x1a90
[   81.312394][ T7607]  ? rcu_is_watching+0x12/0xc0
[   81.312412][ T7607]  complete_emulated_mmio+0x65e/0x7f0
[   81.312431][ T7607]  ? __pfx_complete_emulated_mmio+0x10/0x10
[   81.312449][ T7607]  kvm_arch_vcpu_ioctl_run+0x12ae/0x17f0
[   81.312472][ T7607]  kvm_vcpu_ioctl+0x5ea/0x16b0
[   81.312492][ T7607]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   81.312516][ T7607]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   81.312542][ T7607]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   81.312568][ T7607]  ? __pfx_lock_release+0x10/0x10
[   81.312597][ T7607]  ? selinux_file_ioctl+0x180/0x270
[   81.312618][ T7607]  ? selinux_file_ioctl+0xb4/0x270
[   81.312641][ T7607]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   81.312660][ T7607]  __x64_sys_ioctl+0x190/0x200
[   81.312683][ T7607]  do_syscall_64+0xcd/0x250
[   81.312703][ T7607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.312723][ T7607] RIP: 0033:0x7f46c3f8d169
[   81.312736][ T7607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.312750][ T7607] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.312765][ T7607] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   81.312775][ T7607] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   81.312784][ T7607] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   81.312793][ T7607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.312802][ T7607] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   81.312823][ T7607]  </TASK>
[   81.461045][   T64] cfg80211: failed to load regulatory.db
[   81.627498][ T5940] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[   81.731297][ T7632] Cannot find del_set index 85 as target
[   81.800792][ T7637] af_packet: tpacket_rcv: packet too big, clamped from 65238 to 3952. macoff=96
[   81.806607][ T7637] overlayfs: invalid origin (0000)
[   81.839572][ T7641] FAULT_INJECTION: forcing a failure.
[   81.839572][ T7641] name failslab, interval 1, probability 0, space 0, times 0
[   81.843744][ T7641] CPU: 2 UID: 0 PID: 7641 Comm: syz.3.648 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   81.843758][ T7641] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.843765][ T7641] Call Trace:
[   81.843769][ T7641]  <TASK>
[   81.843773][ T7641]  dump_stack_lvl+0x16c/0x1f0
[   81.843790][ T7641]  should_fail_ex+0x50a/0x650
[   81.843806][ T7641]  ? fs_reclaim_acquire+0xae/0x150
[   81.843823][ T7641]  ? tomoyo_realpath_from_path+0xb9/0x720
[   81.843839][ T7641]  should_failslab+0xc2/0x120
[   81.843851][ T7641]  __kmalloc_noprof+0xcb/0x510
[   81.843862][ T7641]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   81.843881][ T7641]  tomoyo_realpath_from_path+0xb9/0x720
[   81.843896][ T7641]  ? tomoyo_path_number_perm+0x235/0x590
[   81.843910][ T7641]  ? tomoyo_path_number_perm+0x235/0x590
[   81.843928][ T7641]  tomoyo_path_number_perm+0x248/0x590
[   81.843941][ T7641]  ? tomoyo_path_number_perm+0x235/0x590
[   81.843955][ T7641]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   81.843979][ T7641]  ? __pfx_lock_release+0x10/0x10
[   81.843993][ T7641]  ? trace_lock_acquire+0x14e/0x1f0
[   81.844006][ T7641]  ? lock_acquire+0x2f/0xb0
[   81.844020][ T7641]  ? __fget_files+0x40/0x3a0
[   81.844032][ T7641]  ? __fget_files+0x206/0x3a0
[   81.844043][ T7641]  security_file_ioctl+0x9b/0x240
[   81.844060][ T7641]  __x64_sys_ioctl+0xb7/0x200
[   81.844075][ T7641]  do_syscall_64+0xcd/0x250
[   81.844090][ T7641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.844105][ T7641] RIP: 0033:0x7f46c3f8d169
[   81.844113][ T7641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.844124][ T7641] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.844134][ T7641] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   81.844141][ T7641] RDX: 0000400000000080 RSI: 00000000000007b0 RDI: 0000000000000003
[   81.844147][ T7641] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   81.844153][ T7641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.844159][ T7641] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   81.844173][ T7641]  </TASK>
[   81.844178][ T7641] ERROR: Out of memory at tomoyo_realpath_from_path.
[   82.041152][ T5952] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[   82.141163][ T7649] netlink: 'syz.3.652': attribute type 10 has an invalid length.
[   82.153670][ T7649] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   82.645535][ T7663] FAULT_INJECTION: forcing a failure.
[   82.645535][ T7663] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.649349][ T7663] CPU: 1 UID: 0 PID: 7663 Comm: syz.2.658 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   82.649363][ T7663] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.649370][ T7663] Call Trace:
[   82.649374][ T7663]  <TASK>
[   82.649379][ T7663]  dump_stack_lvl+0x16c/0x1f0
[   82.649397][ T7663]  should_fail_ex+0x50a/0x650
[   82.649416][ T7663]  strncpy_from_user+0x3b/0x2d0
[   82.649431][ T7663]  getname_flags.part.0+0x8f/0x550
[   82.649446][ T7663]  ? __pfx_ksys_write+0x10/0x10
[   82.649463][ T7663]  getname_flags+0x93/0xf0
[   82.649480][ T7663]  __x64_sys_unlinkat+0xb4/0x130
[   82.649491][ T7663]  do_syscall_64+0xcd/0x250
[   82.649505][ T7663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.649521][ T7663] RIP: 0033:0x7eff92f8d169
[   82.649530][ T7663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.649540][ T7663] RSP: 002b:00007eff93e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000107
[   82.649550][ T7663] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8d169
[   82.649556][ T7663] RDX: 0000000000000000 RSI: 0000400000000c40 RDI: ffffffffffffff9c
[   82.649563][ T7663] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   82.649568][ T7663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.649574][ T7663] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   82.649586][ T7663]  </TASK>
[   82.919871][    C2] net_ratelimit: 11 callbacks suppressed
[   82.919890][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   82.924625][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   82.949882][    T9] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[   83.015873][   T39] kauditd_printk_skb: 2 callbacks suppressed
[   83.015884][   T39] audit: type=1400 audit(1740567320.950:483): avc:  denied  { write } for  pid=7682 comm="syz.2.666" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   83.020068][ T7683] netlink: 4 bytes leftover after parsing attributes in process `syz.2.666'.
[   83.087908][   T39] audit: type=1400 audit(1740567321.020:484): avc:  denied  { read } for  pid=7682 comm="syz.2.666" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   83.131038][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   83.134163][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.136873][    T9] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   83.140777][    T9] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   83.143853][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.148078][    T9] usb 8-1: config 0 descriptor??
[   83.150112][ T5977] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   83.239841][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   83.319881][ T5977] usb 5-1: Using ep0 maxpacket: 16
[   83.322953][ T5977] usb 5-1: config index 0 descriptor too short (expected 16384, got 36)
[   83.325422][ T5977] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   83.328416][ T5977] usb 5-1: config 0 has no interfaces?
[   83.330125][ T5977] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   83.332745][ T5977] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.335929][ T5977] usb 5-1: config 0 descriptor??
[   83.541838][ T7680] netlink: 'syz.0.665': attribute type 10 has an invalid length.
[   83.545850][ T7680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.665'.
[   83.549862][ T5977] usb 5-1: string descriptor 0 read error: -71
[   83.553141][ T5977] usb 5-1: USB disconnect, device number 9
[   83.555942][ T7665] autofs: Bad value for 'fd'
[   83.959789][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   83.961918][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   84.023252][ T7702] FAULT_INJECTION: forcing a failure.
[   84.023252][ T7702] name failslab, interval 1, probability 0, space 0, times 0
[   84.027061][ T7702] CPU: 1 UID: 0 PID: 7702 Comm: syz.2.672 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   84.027076][ T7702] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.027083][ T7702] Call Trace:
[   84.027087][ T7702]  <TASK>
[   84.027092][ T7702]  dump_stack_lvl+0x16c/0x1f0
[   84.027112][ T7702]  should_fail_ex+0x50a/0x650
[   84.027129][ T7702]  ? fs_reclaim_acquire+0xae/0x150
[   84.027146][ T7702]  should_failslab+0xc2/0x120
[   84.027158][ T7702]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[   84.027170][ T7702]  ? __d_alloc+0x31/0xaa0
[   84.027183][ T7702]  __d_alloc+0x31/0xaa0
[   84.027193][ T7702]  ? hlock_class+0x4e/0x130
[   84.027206][ T7702]  d_alloc+0x4a/0x1e0
[   84.027219][ T7702]  d_alloc_parallel+0xe7/0x12b0
[   84.027237][ T7702]  ? trace_lock_acquire+0x14e/0x1f0
[   84.027250][ T7702]  ? __pfx_d_alloc_parallel+0x10/0x10
[   84.027265][ T7702]  ? lockdep_init_map_type+0x16d/0x7d0
[   84.027280][ T7702]  ? find_held_lock+0x2d/0x110
[   84.027290][ T7702]  ? lockdep_init_map_type+0x16d/0x7d0
[   84.027309][ T7702]  __lookup_slow+0x194/0x470
[   84.027323][ T7702]  ? __pfx___lookup_slow+0x10/0x10
[   84.027339][ T7702]  ? walk_component+0x342/0x5b0
[   84.027363][ T7702]  ? lookup_fast+0x153/0x5f0
[   84.027385][ T7702]  walk_component+0x350/0x5b0
[   84.027406][ T7702]  path_lookupat+0x17f/0x770
[   84.027444][ T7702]  filename_lookup+0x221/0x5f0
[   84.027458][ T7702]  ? __virt_addr_valid+0x2b4/0x590
[   84.027472][ T7702]  ? __pfx_filename_lookup+0x10/0x10
[   84.027492][ T7702]  ? getname_flags.part.0+0x1c5/0x550
[   84.027508][ T7702]  user_path_at+0x3a/0x60
[   84.027518][ T7702]  do_fchownat+0xfa/0x200
[   84.027530][ T7702]  ? __pfx_do_fchownat+0x10/0x10
[   84.027541][ T7702]  ? ksys_write+0x1ba/0x250
[   84.027557][ T7702]  ? __pfx_ksys_write+0x10/0x10
[   84.027576][ T7702]  __x64_sys_lchown+0x7e/0xc0
[   84.027587][ T7702]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.027599][ T7702]  do_syscall_64+0xcd/0x250
[   84.027613][ T7702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.027628][ T7702] RIP: 0033:0x7eff92f8d169
[   84.027636][ T7702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.027646][ T7702] RSP: 002b:00007eff93e4d038 EFLAGS: 00000246 ORIG_RAX: 000000000000005e
[   84.027656][ T7702] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8d169
[   84.027663][ T7702] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000000
[   84.027669][ T7702] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   84.027674][ T7702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.027680][ T7702] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   84.027692][ T7702]  </TASK>
[   84.134393][   T39] audit: type=1400 audit(1740567322.070:485): avc:  denied  { bind } for  pid=7708 comm="syz.0.675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   84.139863][   T39] audit: type=1400 audit(1740567322.070:486): avc:  denied  { node_bind } for  pid=7708 comm="syz.0.675" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   84.149496][   T39] audit: type=1400 audit(1740567322.080:487): avc:  denied  { append } for  pid=7708 comm="syz.0.675" name="media0" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   84.182554][ T7713] xt_hashlimit: size too large, truncated to 1048576
[   84.240937][ T7713] FAULT_INJECTION: forcing a failure.
[   84.240937][ T7713] name failslab, interval 1, probability 0, space 0, times 0
[   84.247156][ T7713] CPU: 2 UID: 0 PID: 7713 Comm: syz.3.677 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   84.247171][ T7713] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.247184][ T7713] Call Trace:
[   84.247188][ T7713]  <TASK>
[   84.247193][ T7713]  dump_stack_lvl+0x16c/0x1f0
[   84.247209][ T7713]  should_fail_ex+0x50a/0x650
[   84.247226][ T7713]  ? fs_reclaim_acquire+0xae/0x150
[   84.247242][ T7713]  should_failslab+0xc2/0x120
[   84.247255][ T7713]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   84.247266][ T7713]  ? __alloc_skb+0x2b1/0x380
[   84.247280][ T7713]  ? hlock_class+0x4e/0x130
[   84.247293][ T7713]  __alloc_skb+0x2b1/0x380
[   84.247305][ T7713]  ? __pfx___alloc_skb+0x10/0x10
[   84.247318][ T7713]  ? hlock_class+0x4e/0x130
[   84.247328][ T7713]  ? mark_lock+0x80/0xc60
[   84.247345][ T7713]  alloc_skb_with_frags+0xe4/0x850
[   84.247361][ T7713]  ? hlock_class+0x4e/0x130
[   84.247371][ T7713]  ? mark_lock+0xb5/0xc60
[   84.247386][ T7713]  sock_alloc_send_pskb+0x7f1/0x980
[   84.247400][ T7713]  ? __pfx_mark_lock+0x10/0x10
[   84.247417][ T7713]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[   84.247432][ T7713]  ? __pfx___lock_acquire+0x10/0x10
[   84.247449][ T7713]  __ip6_append_data.isra.0+0x2ad4/0x4650
[   84.247465][ T7713]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   84.247484][ T7713]  ? __pfx___ip6_append_data.isra.0+0x10/0x10
[   84.247497][ T7713]  ? ip6_mtu+0x231/0x4a0
[   84.247507][ T7713]  ? ip6_setup_cork+0xc7c/0x14d0
[   84.247520][ T7713]  ip6_make_skb+0x30b/0x4e0
[   84.247535][ T7713]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   84.247548][ T7713]  ? __pfx_ip6_make_skb+0x10/0x10
[   84.247560][ T7713]  ? find_held_lock+0x2d/0x110
[   84.247579][ T7713]  ? udpv6_sendmsg+0x2553/0x3080
[   84.247593][ T7713]  udpv6_sendmsg+0x2553/0x3080
[   84.247609][ T7713]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   84.247626][ T7713]  ? __pfx_udpv6_sendmsg+0x10/0x10
[   84.247647][ T7713]  ? __pfx___up_read+0x10/0x10
[   84.247663][ T7713]  ? handle_mm_fault+0x497/0xaa0
[   84.247683][ T7713]  ? __pfx_udpv6_sendmsg+0x10/0x10
[   84.247700][ T7713]  ? inet6_sendmsg+0x105/0x140
[   84.247708][ T7713]  inet6_sendmsg+0x105/0x140
[   84.247719][ T7713]  ____sys_sendmsg+0x68c/0xc90
[   84.247729][ T7713]  ? copy_msghdr_from_user+0x10b/0x160
[   84.247743][ T7713]  ? __pfx_____sys_sendmsg+0x10/0x10
[   84.247753][ T7713]  ? __lock_acquire+0xcc5/0x3c40
[   84.247772][ T7713]  ___sys_sendmsg+0x135/0x1e0
[   84.247787][ T7713]  ? __pfx____sys_sendmsg+0x10/0x10
[   84.247806][ T7713]  ? trace_lock_acquire+0x14e/0x1f0
[   84.247826][ T7713]  __sys_sendmmsg+0x201/0x420
[   84.247841][ T7713]  ? __pfx___sys_sendmmsg+0x10/0x10
[   84.247859][ T7713]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   84.247878][ T7713]  ? fput+0x67/0x440
[   84.247889][ T7713]  ? ksys_write+0x1ba/0x250
[   84.247905][ T7713]  ? __pfx_ksys_write+0x10/0x10
[   84.247923][ T7713]  __x64_sys_sendmmsg+0x9c/0x100
[   84.247937][ T7713]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.247949][ T7713]  do_syscall_64+0xcd/0x250
[   84.247962][ T7713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.247977][ T7713] RIP: 0033:0x7f46c3f8d169
[   84.247986][ T7713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.247997][ T7713] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   84.248007][ T7713] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   84.248013][ T7713] RDX: 00000000000004ff RSI: 00004000000092c0 RDI: 0000000000000004
[   84.248019][ T7713] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   84.248025][ T7713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.248031][ T7713] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   84.248043][ T7713]  </TASK>
[   84.274314][ T7719] xt_hashlimit: size too large, truncated to 1048576
[   84.280891][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   84.393237][   T39] audit: type=1400 audit(1740567322.330:488): avc:  denied  { execute } for  pid=7725 comm="syz-executor" name="syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   84.402064][   T39] audit: type=1400 audit(1740567322.330:489): avc:  denied  { execute_no_trans } for  pid=7725 comm="syz-executor" path="/syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   84.489373][ T7731] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   84.493205][ T7731] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.499238][ T5950] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   84.501326][ T7731] netlink: 'syz.3.683': attribute type 10 has an invalid length.
[   84.502524][ T5950] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   84.506549][ T7731] syz_tun: entered promiscuous mode
[   84.506694][ T5950] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   84.512191][ T7731] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   84.513246][ T5950] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   84.515949][ T7731] netlink: 4 bytes leftover after parsing attributes in process `syz.3.683'.
[   84.517145][ T5950] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   84.522088][ T5950] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   84.530258][   T39] audit: type=1400 audit(1740567322.460:490): avc:  denied  { mounton } for  pid=7732 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   84.597773][ T7732] chnl_net:caif_netlink_parms(): no params data found
[   84.642327][ T7732] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.644438][ T7732] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.646543][ T7732] bridge_slave_0: entered allmulticast mode
[   84.648709][ T7732] bridge_slave_0: entered promiscuous mode
[   84.651487][ T7732] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.653500][ T7732] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.655582][ T7732] bridge_slave_1: entered allmulticast mode
[   84.657726][ T7732] bridge_slave_1: entered promiscuous mode
[   84.676734][ T7732] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.680397][   T79] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   84.684509][ T7732] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.712220][ T7732] team0: Port device team_slave_0 added
[   84.714979][ T7732] team0: Port device team_slave_1 added
[   84.732965][ T7732] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.735019][ T7732] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.744010][ T7732] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.747814][ T7732] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.749827][ T7732] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.757273][ T7732] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.784461][ T7732] hsr_slave_0: entered promiscuous mode
[   84.786764][ T7732] hsr_slave_1: entered promiscuous mode
[   84.788790][ T7732] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   84.791340][ T7732] Cannot create hsr debugfs directory
[   84.831282][   T79] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   84.834271][   T79] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   84.836980][   T79] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.846211][ T7729] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   84.852569][   T79] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   84.872376][ T7732] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   84.876665][ T7732] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   84.881756][ T7732] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   84.887458][ T7732] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   84.903126][ T7732] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.905605][ T7732] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.908175][ T7732] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.910678][ T7732] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.936104][ T7732] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.945326][  T103] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.948601][  T103] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.961244][ T7732] 8021q: adding VLAN 0 to HW filter on device team0
[   84.968593][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.970848][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.977506][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.979611][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.999888][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   85.002419][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   85.053563][ T7747] xt_hashlimit: size too large, truncated to 1048576
[   85.061767][ T7732] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.122604][   T79] usb 7-1: USB disconnect, device number 7
[   85.165576][ T7732] veth0_vlan: entered promiscuous mode
[   85.170762][ T7732] veth1_vlan: entered promiscuous mode
[   85.181534][ T7732] veth0_macvtap: entered promiscuous mode
[   85.187695][ T7732] veth1_macvtap: entered promiscuous mode
[   85.197231][ T7732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.200621][ T7732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.203763][ T7732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.208351][ T7732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.211413][ T7732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.214868][ T7732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.218216][ T7732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.221483][ T7732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.225141][ T7732] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.230578][ T7732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.233733][ T7732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.236359][ T7732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.239180][ T7732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.242121][ T7732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.245373][ T7732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.249316][ T7732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.249329][ T7732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.250151][ T7732] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.263034][ T7732] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.265531][ T7732] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.265551][ T7732] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.265566][ T7732] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.300464][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.302824][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.312925][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.315157][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.319887][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   85.321383][   T39] audit: type=1400 audit(1740567323.260:491): avc:  denied  { mounton } for  pid=7732 comm="syz-executor" path="/syzkaller.FCcSMO/syz-tmp" dev="sda1" ino=1942 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   85.328784][   T39] audit: type=1400 audit(1740567323.260:492): avc:  denied  { mounton } for  pid=7732 comm="syz-executor" path="/syzkaller.FCcSMO/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   85.519626][ T7776] netlink: 4 bytes leftover after parsing attributes in process `syz.4.691'.
[   85.608303][ T7780] FAULT_INJECTION: forcing a failure.
[   85.608303][ T7780] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.612410][ T7780] CPU: 1 UID: 0 PID: 7780 Comm: syz.4.693 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   85.612424][ T7780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.612431][ T7780] Call Trace:
[   85.612434][ T7780]  <TASK>
[   85.612438][ T7780]  dump_stack_lvl+0x16c/0x1f0
[   85.612454][ T7780]  should_fail_ex+0x50a/0x650
[   85.612477][ T7780]  _copy_to_user+0x32/0xd0
[   85.612488][ T7780]  do_fcntl+0x169/0x15b0
[   85.612502][ T7780]  ? __pfx_do_fcntl+0x10/0x10
[   85.612516][ T7780]  ? selinux_file_fcntl+0x93/0x170
[   85.612531][ T7780]  __x64_sys_fcntl+0x170/0x200
[   85.612545][ T7780]  do_syscall_64+0xcd/0x250
[   85.612559][ T7780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.612574][ T7780] RIP: 0033:0x7f142c38d169
[   85.612582][ T7780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.612592][ T7780] RSP: 002b:00007f142d111038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[   85.612602][ T7780] RAX: ffffffffffffffda RBX: 00007f142c5a5fa0 RCX: 00007f142c38d169
[   85.612608][ T7780] RDX: 0000400000000200 RSI: 0000000000000005 RDI: 0000000000000005
[   85.612614][ T7780] RBP: 00007f142d111090 R08: 0000000000000000 R09: 0000000000000000
[   85.612620][ T7780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.612627][ T7780] R13: 0000000000000000 R14: 00007f142c5a5fa0 R15: 00007ffcafafc668
[   85.612639][ T7780]  </TASK>
[   85.769815][ T7791] FAULT_INJECTION: forcing a failure.
[   85.769815][ T7791] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.774246][ T7791] CPU: 2 UID: 0 PID: 7791 Comm: syz.3.697 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   85.774271][ T7791] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.774281][ T7791] Call Trace:
[   85.774286][ T7791]  <TASK>
[   85.774304][ T7791]  dump_stack_lvl+0x16c/0x1f0
[   85.774329][ T7791]  should_fail_ex+0x50a/0x650
[   85.774355][ T7791]  _copy_from_user+0x2e/0xd0
[   85.774371][ T7791]  kvm_arch_vm_ioctl+0xabb/0x1d40
[   85.774392][ T7791]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[   85.774408][ T7791]  ? __lock_acquire+0xcc5/0x3c40
[   85.774434][ T7791]  ? hlock_class+0x4e/0x130
[   85.774450][ T7791]  ? __lock_acquire+0xcc5/0x3c40
[   85.774473][ T7791]  ? __pfx___lock_acquire+0x10/0x10
[   85.774488][ T7791]  ? find_held_lock+0x2d/0x110
[   85.774498][ T7791]  ? __pfx_mark_lock+0x10/0x10
[   85.774516][ T7791]  ? is_bpf_text_address+0x8a/0x1a0
[   85.774537][ T7791]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.774550][ T7791]  ? is_bpf_text_address+0x94/0x1a0
[   85.774566][ T7791]  ? kernel_text_address+0x8d/0x100
[   85.774580][ T7791]  ? __kernel_text_address+0xd/0x40
[   85.774594][ T7791]  ? unwind_get_return_address+0x59/0xa0
[   85.774611][ T7791]  ? arch_stack_walk+0xa7/0x100
[   85.774625][ T7791]  ? stack_trace_save+0x95/0xd0
[   85.774636][ T7791]  ? __pfx_stack_trace_save+0x10/0x10
[   85.774647][ T7791]  ? __pfx_mark_lock+0x10/0x10
[   85.774660][ T7791]  ? stack_depot_save_flags+0x28/0x9c0
[   85.774680][ T7791]  ? kasan_save_stack+0x42/0x60
[   85.774690][ T7791]  ? kasan_save_stack+0x33/0x60
[   85.774699][ T7791]  ? kasan_save_track+0x14/0x30
[   85.774708][ T7791]  ? kasan_save_free_info+0x3b/0x60
[   85.774722][ T7791]  ? __kasan_slab_free+0x51/0x70
[   85.774731][ T7791]  ? kfree+0x2c4/0x4d0
[   85.774746][ T7791]  ? tomoyo_path_number_perm+0x46d/0x590
[   85.774760][ T7791]  ? security_file_ioctl+0x9b/0x240
[   85.774775][ T7791]  ? __x64_sys_ioctl+0xb7/0x200
[   85.774790][ T7791]  kvm_vm_ioctl+0x19cf/0x3d70
[   85.774809][ T7791]  ? __pfx_mark_lock+0x10/0x10
[   85.774825][ T7791]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   85.774845][ T7791]  ? find_held_lock+0x2d/0x110
[   85.774857][ T7791]  ? tomoyo_path_number_perm+0x298/0x590
[   85.774870][ T7791]  ? __pfx_lock_release+0x10/0x10
[   85.774887][ T7791]  ? tomoyo_path_number_perm+0x46d/0x590
[   85.774903][ T7791]  ? tomoyo_path_number_perm+0x190/0x590
[   85.774917][ T7791]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   85.774929][ T7791]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   85.774947][ T7791]  ? do_vfs_ioctl+0x513/0x1990
[   85.774961][ T7791]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   85.774978][ T7791]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[   85.774997][ T7791]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   85.775016][ T7791]  ? __pfx_lock_release+0x10/0x10
[   85.775035][ T7791]  ? selinux_file_ioctl+0x180/0x270
[   85.775051][ T7791]  ? selinux_file_ioctl+0xb4/0x270
[   85.775067][ T7791]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[   85.775083][ T7791]  __x64_sys_ioctl+0x190/0x200
[   85.775098][ T7791]  do_syscall_64+0xcd/0x250
[   85.775112][ T7791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.775127][ T7791] RIP: 0033:0x7f46c3f8d169
[   85.775140][ T7791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.775151][ T7791] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.775161][ T7791] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   85.775167][ T7791] RDX: 0000400000001480 RSI: 000000004048aec9 RDI: 0000000000000004
[   85.775173][ T7791] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   85.775179][ T7791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.775185][ T7791] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   85.775198][ T7791]  </TASK>
[   85.887397][    C2] vkms_vblank_simulate: vblank timer overrun
[   86.039865][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   86.043680][ T7795] RDS: rds_bind could not find a transport for fe80::41, load rds_tcp or rds_rdma?
[   86.047845][ T7795] bpf: Bad value for 'mode'
[   86.052335][ T7795] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.698'.
[   86.056448][ T7794] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   86.600149][ T5952] Bluetooth: hci4: command tx timeout
[   86.788514][ T7807] netlink: 52 bytes leftover after parsing attributes in process `syz.3.703'.
[   86.791301][ T7807] netlink: 8 bytes leftover after parsing attributes in process `syz.3.703'.
[   87.503977][ T7825] lo: entered promiscuous mode
[   87.640213][ T7831] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   87.881290][ T7841] kvm: user requested TSC rate below hardware speed
[   87.893842][ T7841] overlay: filesystem on ./bus not supported as upperdir
[   87.915426][ T7845] FAULT_INJECTION: forcing a failure.
[   87.915426][ T7845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.917521][ T7841] netlink: 24 bytes leftover after parsing attributes in process `syz.3.716'.
[   87.920225][ T7845] CPU: 2 UID: 0 PID: 7845 Comm: syz.2.718 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   87.920245][ T7845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.920255][ T7845] Call Trace:
[   87.920259][ T7845]  <TASK>
[   87.920265][ T7845]  dump_stack_lvl+0x16c/0x1f0
[   87.920288][ T7845]  should_fail_ex+0x50a/0x650
[   87.920313][ T7845]  _copy_from_user+0x2e/0xd0
[   87.920328][ T7845]  ____sys_sendmsg+0x590/0xc90
[   87.920345][ T7845]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.920359][ T7845]  ? __lock_acquire+0xcc5/0x3c40
[   87.920387][ T7845]  ___sys_sendmsg+0x135/0x1e0
[   87.920409][ T7845]  ? __pfx____sys_sendmsg+0x10/0x10
[   87.920439][ T7845]  ? trace_lock_acquire+0x14e/0x1f0
[   87.920471][ T7845]  __sys_sendmmsg+0x201/0x420
[   87.920497][ T7845]  ? __pfx___sys_sendmmsg+0x10/0x10
[   87.920529][ T7845]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   87.920558][ T7845]  ? fput+0x67/0x440
[   87.920575][ T7845]  ? ksys_write+0x1ba/0x250
[   87.920597][ T7845]  ? __pfx_ksys_write+0x10/0x10
[   87.920624][ T7845]  __x64_sys_sendmmsg+0x9c/0x100
[   87.920647][ T7845]  ? lockdep_hardirqs_on+0x7c/0x110
[   87.920666][ T7845]  do_syscall_64+0xcd/0x250
[   87.920687][ T7845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.920711][ T7845] RIP: 0033:0x7eff92f8d169
[   87.920725][ T7845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.920740][ T7845] RSP: 002b:00007eff93e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   87.920757][ T7845] RAX: ffffffffffffffda RBX: 00007eff931a5fa0 RCX: 00007eff92f8d169
[   87.920768][ T7845] RDX: 0000000000000001 RSI: 00004000000017c0 RDI: 0000000000000003
[   87.920778][ T7845] RBP: 00007eff93e4d090 R08: 0000000000000000 R09: 0000000000000000
[   87.920788][ T7845] R10: 0000000004040880 R11: 0000000000000246 R12: 0000000000000001
[   87.920798][ T7845] R13: 0000000000000000 R14: 00007eff931a5fa0 R15: 00007ffeb72e0308
[   87.920820][ T7845]  </TASK>
[   87.969333][ T7848] IPVS: length: 184 != 397257240
[   88.096675][   T39] kauditd_printk_skb: 9 callbacks suppressed
[   88.096691][   T39] audit: type=1400 audit(1740567326.030:502): avc:  denied  { setattr } for  pid=7850 comm="syz.3.720" name="/" dev="9p" ino=36050121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   88.120054][    C2] net_ratelimit: 19 callbacks suppressed
[   88.120071][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   88.124649][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   88.208690][ T7854] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.211476][ T7854] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.215962][ T7854] FAULT_INJECTION: forcing a failure.
[   88.215962][ T7854] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.221346][ T7854] CPU: 2 UID: 0 PID: 7854 Comm: syz.3.721 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   88.221365][ T7854] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.221375][ T7854] Call Trace:
[   88.221380][ T7854]  <TASK>
[   88.221386][ T7854]  dump_stack_lvl+0x16c/0x1f0
[   88.221412][ T7854]  should_fail_ex+0x50a/0x650
[   88.221440][ T7854]  _copy_from_user+0x2e/0xd0
[   88.221457][ T7854]  kstrtouint_from_user+0xd7/0x1c0
[   88.221493][ T7854]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   88.221524][ T7854]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   88.221552][ T7854]  proc_fail_nth_write+0x84/0x250
[   88.221577][ T7854]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   88.221599][ T7854]  ? ksys_write+0x12b/0x250
[   88.221630][ T7854]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   88.221651][ T7854]  vfs_write+0x24c/0x1150
[   88.221678][ T7854]  ? __fget_files+0x1fc/0x3a0
[   88.221694][ T7854]  ? __pfx___mutex_lock+0x10/0x10
[   88.221713][ T7854]  ? __pfx_vfs_write+0x10/0x10
[   88.221745][ T7854]  ? __fget_files+0x206/0x3a0
[   88.221769][ T7854]  ksys_write+0x12b/0x250
[   88.221792][ T7854]  ? __pfx_ksys_write+0x10/0x10
[   88.221823][ T7854]  do_syscall_64+0xcd/0x250
[   88.221848][ T7854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.221869][ T7854] RIP: 0033:0x7f46c3f8bc1f
[   88.221883][ T7854] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   88.221905][ T7854] RSP: 002b:00007f46c4dc2030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   88.221922][ T7854] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f46c3f8bc1f
[   88.221932][ T7854] RDX: 0000000000000001 RSI: 00007f46c4dc20a0 RDI: 0000000000000005
[   88.221942][ T7854] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   88.221952][ T7854] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   88.221962][ T7854] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   88.221986][ T7854]  </TASK>
[   88.300272][    C2] vkms_vblank_simulate: vblank timer overrun
[   88.327090][ T7856] FAULT_INJECTION: forcing a failure.
[   88.327090][ T7856] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.330832][ T7856] CPU: 2 UID: 0 PID: 7856 Comm: syz.3.722 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   88.330847][ T7856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.330853][ T7856] Call Trace:
[   88.330857][ T7856]  <TASK>
[   88.330861][ T7856]  dump_stack_lvl+0x16c/0x1f0
[   88.330878][ T7856]  should_fail_ex+0x50a/0x650
[   88.330900][ T7856]  _copy_from_user+0x2e/0xd0
[   88.330921][ T7856]  core_sys_select+0x361/0xb80
[   88.330942][ T7856]  ? __pfx_core_sys_select+0x10/0x10
[   88.330958][ T7856]  ? get_pid_task+0xfc/0x250
[   88.330982][ T7856]  ? set_user_sigmask+0x217/0x2a0
[   88.330997][ T7856]  ? __pfx_set_user_sigmask+0x10/0x10
[   88.331014][ T7856]  do_pselect.constprop.0+0x1a0/0x1f0
[   88.331032][ T7856]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[   88.331054][ T7856]  __x64_sys_pselect6+0x183/0x240
[   88.331064][ T7856]  ? __pfx___x64_sys_pselect6+0x10/0x10
[   88.331078][ T7856]  do_syscall_64+0xcd/0x250
[   88.331091][ T7856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.331107][ T7856] RIP: 0033:0x7f46c3f8d169
[   88.331115][ T7856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.331125][ T7856] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[   88.331135][ T7856] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   88.331141][ T7856] RDX: 0000000000000000 RSI: 00004000000001c0 RDI: 0000000000000040
[   88.331147][ T7856] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   88.331153][ T7856] R10: 00004000000002c0 R11: 0000000000000246 R12: 0000000000000001
[   88.331159][ T7856] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   88.331171][ T7856]  </TASK>
[   88.361603][    T9] usbhid 8-1:0.0: can't add hid device: -32
[   88.361921][    C2] vkms_vblank_simulate: vblank timer overrun
[   88.363648][    T9] usbhid 8-1:0.0: probe with driver usbhid failed with error -32
[   88.399047][   T39] audit: type=1400 audit(1740567326.340:503): avc:  denied  { unmount } for  pid=7732 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   88.440086][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   88.561809][   T39] audit: type=1400 audit(1740567326.500:504): avc:  denied  { mounton } for  pid=7862 comm="syz.3.724" path="/172/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[   88.679882][ T5952] Bluetooth: hci4: command tx timeout
[   89.159815][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   89.162448][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   89.479961][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   89.599631][ T7888] FAULT_INJECTION: forcing a failure.
[   89.599631][ T7888] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.603862][ T7888] CPU: 3 UID: 0 PID: 7888 Comm: syz.4.732 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   89.603880][ T7888] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.603890][ T7888] Call Trace:
[   89.603895][ T7888]  <TASK>
[   89.603901][ T7888]  dump_stack_lvl+0x16c/0x1f0
[   89.603924][ T7888]  should_fail_ex+0x50a/0x650
[   89.603949][ T7888]  _copy_from_iter+0x2a1/0x1560
[   89.603964][ T7888]  ? find_held_lock+0x2d/0x110
[   89.603983][ T7888]  ? __pfx__copy_from_iter+0x10/0x10
[   89.603996][ T7888]  ? rawv6_sendmsg+0xa6a/0x4610
[   89.604011][ T7888]  ? __pfx_lock_release+0x10/0x10
[   89.604030][ T7888]  ? trace_lock_acquire+0x14e/0x1f0
[   89.604059][ T7888]  rawv6_sendmsg+0x2377/0x4610
[   89.604073][ T7888]  ? avc_has_perm_noaudit+0x119/0x3a0
[   89.604096][ T7888]  ? __pfx_rawv6_sendmsg+0x10/0x10
[   89.604111][ T7888]  ? avc_has_perm_noaudit+0x143/0x3a0
[   89.604129][ T7888]  ? avc_has_perm+0x11b/0x1c0
[   89.604143][ T7888]  ? __pfx_avc_has_perm+0x10/0x10
[   89.604178][ T7888]  ? __pfx_rawv6_sendmsg+0x10/0x10
[   89.604195][ T7888]  ? inet_sendmsg+0x119/0x140
[   89.604215][ T7888]  inet_sendmsg+0x119/0x140
[   89.604235][ T7888]  __sys_sendto+0x42a/0x4f0
[   89.604254][ T7888]  ? __pfx___sys_sendto+0x10/0x10
[   89.604288][ T7888]  ? ksys_write+0x1ba/0x250
[   89.604310][ T7888]  ? __pfx_ksys_write+0x10/0x10
[   89.604334][ T7888]  __x64_sys_sendto+0xe0/0x1c0
[   89.604351][ T7888]  ? do_syscall_64+0x91/0x250
[   89.604369][ T7888]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.604385][ T7888]  do_syscall_64+0xcd/0x250
[   89.604404][ T7888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.604425][ T7888] RIP: 0033:0x7f142c38d169
[   89.604437][ T7888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.604452][ T7888] RSP: 002b:00007f142d111038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   89.604466][ T7888] RAX: ffffffffffffffda RBX: 00007f142c5a5fa0 RCX: 00007f142c38d169
[   89.604476][ T7888] RDX: 0000000000000016 RSI: 0000400000000300 RDI: 0000000000000003
[   89.604485][ T7888] RBP: 00007f142d111090 R08: 0000000000000000 R09: fffffffffffffdfd
[   89.604494][ T7888] R10: 0000000000003b00 R11: 0000000000000246 R12: 0000000000000001
[   89.604502][ T7888] R13: 0000000000000000 R14: 00007f142c5a5fa0 R15: 00007ffcafafc668
[   89.604521][ T7888]  </TASK>
[   90.089828][ T5977] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   90.209810][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   90.212443][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   90.269913][ T5977] usb 9-1: Using ep0 maxpacket: 16
[   90.273358][ T5977] usb 9-1: config index 0 descriptor too short (expected 16384, got 36)
[   90.276407][ T5977] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   90.280152][ T5977] usb 9-1: config 0 has no interfaces?
[   90.282181][ T5977] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   90.285476][ T5977] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.290024][ T5977] usb 9-1: config 0 descriptor??
[   90.501184][ T7896] netlink: 'syz.4.735': attribute type 10 has an invalid length.
[   90.504476][ T7896] syz_tun: entered promiscuous mode
[   90.511955][ T7896] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   90.519885][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   90.521860][ T7896] netlink: 4 bytes leftover after parsing attributes in process `syz.4.735'.
[   90.528574][ T5977] usb 9-1: string descriptor 0 read error: -71
[   90.535516][ T5977] usb 9-1: USB disconnect, device number 2
[   90.770061][ T5952] Bluetooth: hci4: command tx timeout
[   91.114485][   T39] audit: type=1400 audit(1740567329.050:505): avc:  denied  { append } for  pid=7900 comm="syz.2.737" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   91.129933][ T5952] Bluetooth: hci2: unexpected event 0x2f length: 1017 > 260
[   91.249855][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   91.259359][ T7906] netlink: 24 bytes leftover after parsing attributes in process `syz.3.740'.
[   91.278863][   T39] audit: type=1400 audit(1740567329.210:506): avc:  denied  { connect } for  pid=7905 comm="syz.3.740" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   91.285697][   T39] audit: type=1400 audit(1740567329.210:507): avc:  denied  { write } for  pid=7905 comm="syz.3.740" path="socket:[20137]" dev="sockfs" ino=20137 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   91.286811][ T7910] trusted_key: encrypted_key: key user:syz not found
[   91.298052][ T7910] netlink: 32 bytes leftover after parsing attributes in process `syz.2.741'.
[   91.303900][   T39] audit: type=1400 audit(1740567329.240:508): avc:  denied  { read } for  pid=7909 comm="syz.2.741" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   91.321748][ T5952] Bluetooth: hci2: Malformed HCI Event: 0x22
[   91.348127][ T7917] netlink: 'syz.3.744': attribute type 3 has an invalid length.
[   91.352060][ T7917] netlink: 'syz.3.744': attribute type 1 has an invalid length.
[   91.356902][ T7917] xt_l2tp: v2 doesn't support IP mode
[   91.537000][   T39] audit: type=1326 audit(1740567329.470:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7926 comm="syz.3.747" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f46c3f8d169 code=0x0
[   91.649825][   T64] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   91.810056][   T64] usb 7-1: Using ep0 maxpacket: 16
[   91.814094][   T64] usb 7-1: config index 0 descriptor too short (expected 16384, got 36)
[   91.817490][   T64] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   91.821370][   T64] usb 7-1: config 0 has no interfaces?
[   91.823530][   T64] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   91.827050][   T64] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.833437][   T64] usb 7-1: config 0 descriptor??
[   92.043779][ T7924] netlink: 'syz.2.745': attribute type 10 has an invalid length.
[   92.044928][ T7933] fuse: Bad value for 'fd'
[   92.047992][ T7924] syz_tun: entered promiscuous mode
[   92.055613][ T7924] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   92.062269][ T7924] netlink: 4 bytes leftover after parsing attributes in process `syz.2.745'.
[   92.066100][   T64] usb 7-1: string descriptor 0 read error: -71
[   92.068533][   T64] usb 7-1: USB disconnect, device number 8
[   92.091999][ T7935] xt_ecn: cannot match TCP bits for non-tcp packets
[   92.177376][   T39] audit: type=1400 audit(1740567330.110:510): avc:  denied  { read } for  pid=7938 comm="syz.4.752" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   92.185921][   T39] audit: type=1400 audit(1740567330.110:511): avc:  denied  { open } for  pid=7938 comm="syz.4.752" path="/dev/rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   92.411258][ T7954] FAULT_INJECTION: forcing a failure.
[   92.411258][ T7954] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.416318][ T7954] CPU: 0 UID: 0 PID: 7954 Comm: syz.4.758 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   92.416334][ T7954] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.416341][ T7954] Call Trace:
[   92.416346][ T7954]  <TASK>
[   92.416351][ T7954]  dump_stack_lvl+0x16c/0x1f0
[   92.416370][ T7954]  should_fail_ex+0x50a/0x650
[   92.416388][ T7954]  _copy_to_user+0x32/0xd0
[   92.416400][ T7954]  simple_read_from_buffer+0xd0/0x160
[   92.416418][ T7954]  proc_fail_nth_read+0x198/0x270
[   92.416433][ T7954]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   92.416449][ T7954]  ? rw_verify_area+0xcf/0x680
[   92.416464][ T7954]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   92.416478][ T7954]  vfs_read+0x1df/0xbf0
[   92.416495][ T7954]  ? __fget_files+0x1fc/0x3a0
[   92.416505][ T7954]  ? __pfx___mutex_lock+0x10/0x10
[   92.416519][ T7954]  ? __pfx_vfs_read+0x10/0x10
[   92.416538][ T7954]  ? __fget_files+0x206/0x3a0
[   92.416551][ T7954]  ksys_read+0x12b/0x250
[   92.416567][ T7954]  ? __pfx_ksys_read+0x10/0x10
[   92.416586][ T7954]  do_syscall_64+0xcd/0x250
[   92.416605][ T7954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.416620][ T7954] RIP: 0033:0x7f142c38bb7c
[   92.416629][ T7954] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   92.416639][ T7954] RSP: 002b:00007f142d111030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   92.416649][ T7954] RAX: ffffffffffffffda RBX: 00007f142c5a5fa0 RCX: 00007f142c38bb7c
[   92.416656][ T7954] RDX: 000000000000000f RSI: 00007f142d1110a0 RDI: 0000000000000004
[   92.416662][ T7954] RBP: 00007f142d111090 R08: 0000000000000000 R09: 0000000000000000
[   92.416667][ T7954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.416673][ T7954] R13: 0000000000000000 R14: 00007f142c5a5fa0 R15: 00007ffcafafc668
[   92.416686][ T7954]  </TASK>
[   92.464317][ T7955] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=29456 sclass=netlink_route_socket pid=7955 comm=syz.3.757
[   92.536764][ T7968] netlink: 8 bytes leftover after parsing attributes in process `syz.3.757'.
[   92.839892][ T5952] Bluetooth: hci4: command tx timeout
[   92.899887][   T64] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[   93.050064][   T64] usb 5-1: Using ep0 maxpacket: 16
[   93.053164][   T64] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[   93.058512][   T64] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[   93.062518][   T64] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.064812][   T64] usb 5-1: Product: syz
[   93.066247][   T64] usb 5-1: Manufacturer: syz
[   93.067791][   T64] usb 5-1: SerialNumber: syz
[   93.071246][   T64] usb 5-1: config 0 descriptor??
[   93.075234][   T64] hub 5-1:0.0: bad descriptor, ignoring hub
[   93.077240][   T64] hub 5-1:0.0: probe with driver hub failed with error -5
[   93.082884][   T64] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input20
[   93.183039][ T7973] syz.2.763 (7973): drop_caches: 1
[   93.187458][ T7990] netlink: 'syz.3.770': attribute type 4 has an invalid length.
[   93.249139][ T7992] syzkaller1: entered promiscuous mode
[   93.251000][ T7992] syzkaller1: entered allmulticast mode
[   93.282470][   T39] kauditd_printk_skb: 4 callbacks suppressed
[   93.282486][   T39] audit: type=1400 audit(1740567331.220:516): avc:  denied  { read write } for  pid=7976 comm="syz.0.765" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[   93.292128][   T39] audit: type=1400 audit(1740567331.230:517): avc:  denied  { open } for  pid=7976 comm="syz.0.765" path="/dev/input/mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[   93.312514][ T7973] syz.2.763 (7973): drop_caches: 1
[   93.319875][    C2] net_ratelimit: 5 callbacks suppressed
[   93.319893][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   93.325319][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   93.339875][    T8] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   93.371716][   T39] audit: type=1400 audit(1740567331.310:518): avc:  denied  { setopt } for  pid=7996 comm="syz.2.773" lport=41086 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[   93.408940][ T7994] overlayfs: failed to resolve 'uuid=auto': -2
[   93.511330][    T8] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[   93.513807][    T8] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   93.517086][    T8] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   93.521222][    T8] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   93.524928][    T8] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   93.528584][    T8] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   93.531369][    T8] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.534709][    T8] usb 9-1: config 0 descriptor??
[   93.536627][ T7985] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[   93.551281][ T8009] tmpfs: Bad value for 'mpol'
[   93.562065][    T9] usb 5-1: USB disconnect, device number 10
[   93.649856][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   93.695190][ T8021] FAULT_INJECTION: forcing a failure.
[   93.695190][ T8021] name failslab, interval 1, probability 0, space 0, times 0
[   93.699602][ T8021] CPU: 0 UID: 0 PID: 8021 Comm: syz.3.782 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   93.699618][ T8021] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.699626][ T8021] Call Trace:
[   93.699631][ T8021]  <TASK>
[   93.699637][ T8021]  dump_stack_lvl+0x16c/0x1f0
[   93.699658][ T8021]  should_fail_ex+0x50a/0x650
[   93.699676][ T8021]  ? fs_reclaim_acquire+0xae/0x150
[   93.699710][ T8021]  ? drm_atomic_state_alloc+0xb8/0x120
[   93.699728][ T8021]  should_failslab+0xc2/0x120
[   93.699742][ T8021]  __kmalloc_cache_noprof+0x68/0x410
[   93.699762][ T8021]  ? __pfx_mark_lock+0x10/0x10
[   93.699781][ T8021]  drm_atomic_state_alloc+0xb8/0x120
[   93.699803][ T8021]  drm_mode_atomic_ioctl+0x395/0x25d0
[   93.699827][ T8021]  ? __pfx___lock_acquire+0x10/0x10
[   93.699845][ T8021]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   93.699874][ T8021]  ? do_raw_spin_unlock+0x172/0x230
[   93.699887][ T8021]  drm_ioctl_kernel+0x1e6/0x3d0
[   93.699899][ T8021]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   93.699916][ T8021]  ? __might_fault+0x31/0x190
[   93.699930][ T8021]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   93.699941][ T8021]  ? __might_fault+0xe3/0x190
[   93.699959][ T8021]  drm_ioctl+0x5d6/0xc00
[   93.699972][ T8021]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   93.699990][ T8021]  ? __pfx_drm_ioctl+0x10/0x10
[   93.700000][ T8021]  ? __pfx_lock_release+0x10/0x10
[   93.700022][ T8021]  ? selinux_file_ioctl+0x180/0x270
[   93.700040][ T8021]  ? selinux_file_ioctl+0xb4/0x270
[   93.700057][ T8021]  ? __pfx_drm_ioctl+0x10/0x10
[   93.700067][ T8021]  __x64_sys_ioctl+0x190/0x200
[   93.700084][ T8021]  do_syscall_64+0xcd/0x250
[   93.700099][ T8021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.700114][ T8021] RIP: 0033:0x7f46c3f8d169
[   93.700124][ T8021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.700134][ T8021] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   93.700144][ T8021] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   93.700151][ T8021] RDX: 0000400000000180 RSI: 00000000c03864bc RDI: 000000000000000f
[   93.700157][ T8021] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   93.700162][ T8021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.700168][ T8021] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   93.700180][ T8021]  </TASK>
[   93.879967][ T1470] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   93.981212][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   93.983817][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   93.986080][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   93.988449][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   93.990751][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   93.993133][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   93.995395][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   93.997548][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   93.999709][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   94.002078][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   94.004188][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   94.006465][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   94.008559][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   94.011680][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   94.014320][    T8] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   94.016828][    T8] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[   94.029150][    T8] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[   94.029826][ T1470] usb 7-1: Using ep0 maxpacket: 16
[   94.041119][ T1470] usb 7-1: config 0 has no interfaces?
[   94.043476][ T1470] usb 7-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[   94.045984][ T8033] FAULT_INJECTION: forcing a failure.
[   94.045984][ T8033] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.046840][ T1470] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.051566][ T8033] CPU: 1 UID: 0 PID: 8033 Comm: syz.3.787 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   94.051590][ T8033] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.051599][ T8033] Call Trace:
[   94.051605][ T8033]  <TASK>
[   94.051611][ T8033]  dump_stack_lvl+0x16c/0x1f0
[   94.051635][ T8033]  should_fail_ex+0x50a/0x650
[   94.051660][ T8033]  strncpy_from_user+0x3b/0x2d0
[   94.051680][ T8033]  getname_flags.part.0+0x8f/0x550
[   94.051704][ T8033]  getname_flags+0x93/0xf0
[   94.051727][ T8033]  __x64_sys_renameat2+0xd4/0x130
[   94.051746][ T8033]  do_syscall_64+0xcd/0x250
[   94.051766][ T8033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.051787][ T8033] RIP: 0033:0x7f46c3f8d169
[   94.051795][ T8033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.051810][ T8033] RSP: 002b:00007f46c4dc2038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[   94.051825][ T8033] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8d169
[   94.051835][ T8033] RDX: 0000000000000004 RSI: 00004000000004c0 RDI: 0000000000000006
[   94.051844][ T8033] RBP: 00007f46c4dc2090 R08: 0000000000000000 R09: 0000000000000000
[   94.051853][ T8033] R10: 0000400000000500 R11: 0000000000000246 R12: 0000000000000001
[   94.051863][ T8033] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   94.051883][ T8033]  </TASK>
[   94.100817][ T1470] usb 7-1: config 0 descriptor??
[   94.109859][   T39] audit: type=1400 audit(1740567332.040:519): avc:  denied  { getopt } for  pid=8036 comm="syz.0.790" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   94.194216][ T8043] BUG: Bad page state in process syz.3.791  pfn:2788d
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   94.196556][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802788df00 pfn:0x2788d
[   94.201005][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   94.203307][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   94.205790][ T8043] raw: ffff88802788df00 0000000000000001 00000000ffffffff 0000000000000000
[   94.208273][ T8043] page dumped because: page_pool leak
[   94.209893][ T8043] page_owner tracks the page as allocated
[   94.211702][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194170464, free_ts 94029598912
[   94.216491][ T8043]  post_alloc_hook+0x181/0x1b0
[   94.217916][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   94.219485][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   94.221300][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   94.222935][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   94.224622][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   94.226225][ T8043]  skb_pp_cow_data+0x776/0xf10
[   94.227656][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   94.229113][ T8043]  do_xdp_generic+0x3f1/0xe70
[   94.230558][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.232476][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.234148][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.235603][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.237050][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.238561][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.239968][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.241382][ T8043] page last free pid 6768 tgid 6768 stack trace:
[   94.243144][ T8043]  free_frozen_pages+0x6db/0xfb0
[   94.244538][ T8043]  __put_partials+0x14c/0x170
[   94.245902][ T8043]  qlist_free_all+0x4e/0x120
[   94.247416][ T8043]  kasan_quarantine_reduce+0x195/0x1e0
[   94.249037][ T8043]  __kasan_slab_alloc+0x69/0x90
[   94.250545][ T8043]  kmem_cache_alloc_noprof+0x226/0x3d0
[   94.252128][ T8043]  flock_lock_inode+0xbfd/0x1040
[   94.253593][ T8043]  locks_lock_inode_wait+0x1c7/0x450
[   94.255132][ T8043]  __do_sys_flock+0x448/0x520
[   94.256524][ T8043]  do_syscall_64+0xcd/0x250
[   94.257813][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.259510][ T8043] Modules linked in:
[   94.260715][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Not tainted 6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   94.260731][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.260739][ T8043] Call Trace:
[   94.260744][ T8043]  <TASK>
[   94.260749][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   94.260764][ T8043]  bad_page+0xb3/0x1f0
[   94.260778][ T8043]  ? __pfx_bad_page+0x10/0x10
[   94.260793][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   94.260807][ T8043]  free_frozen_pages+0x701/0xfb0
[   94.260822][ T8043]  page_frag_free+0x255/0x2a0
[   94.260835][ T8043]  __xdp_return+0x319/0xa70
[   94.260851][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   94.260863][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   94.260887][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   94.260896][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   94.260915][ T8043]  do_xdp_generic+0x70a/0xe70
[   94.260930][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   94.260946][ T8043]  ? hlock_class+0x4e/0x130
[   94.260958][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.260976][ T8043]  ? mark_lock+0xb5/0xc60
[   94.261024][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.261047][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   94.261066][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   94.261082][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   94.261096][ T8043]  ? hlock_class+0x4e/0x130
[   94.261107][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.261126][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   94.261136][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.261153][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   94.261173][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.261187][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   94.261200][ T8043]  ? rcu_is_watching+0x12/0xc0
[   94.261213][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   94.261227][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.261239][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.261251][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   94.261264][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   94.261275][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.261289][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   94.261302][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.261320][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   94.261338][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.261353][ T8043]  ? lock_acquire+0x2f/0xb0
[   94.261367][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.261385][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.261406][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   94.261422][ T8043]  ? find_held_lock+0x2d/0x110
[   94.261436][ T8043]  ? __pfx_lock_release+0x10/0x10
[   94.261457][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.261474][ T8043]  vfs_write+0x5ae/0x1150
[   94.261492][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   94.261511][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   94.261526][ T8043]  ? do_futex+0x123/0x350
[   94.261539][ T8043]  ? __fget_files+0x40/0x3a0
[   94.261556][ T8043]  ksys_write+0x12b/0x250
[   94.261572][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   94.261592][ T8043]  do_syscall_64+0xcd/0x250
[   94.261607][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.261622][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   94.261631][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   94.261642][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   94.261654][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   94.261662][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   94.261668][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   94.261674][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   94.261680][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   94.261693][ T8043]  </TASK>
[   94.261697][ T8043] Disabling lock debugging due to kernel taint
[   94.311901][   T35] usb 8-1: USB disconnect, device number 5
[   94.312982][ T8043] BUG: Bad page state in process syz.3.791  pfn:2d280
[   94.376445][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2d280
[   94.378938][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   94.381026][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   94.383407][ T8043] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[   94.385843][ T8043] page dumped because: page_pool leak
[   94.387393][ T8043] page_owner tracks the page as allocated
[   94.389029][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194166242, free_ts 94039608332
[   94.393660][ T8043]  post_alloc_hook+0x181/0x1b0
[   94.395027][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   94.396560][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   94.398376][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   94.400033][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   94.401737][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   94.403248][ T8043]  skb_pp_cow_data+0x776/0xf10
[   94.404615][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   94.406124][ T8043]  do_xdp_generic+0x3f1/0xe70
[   94.407491][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.409392][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.411116][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.412540][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.413969][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.415464][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.416816][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.418254][ T8043] page last free pid 6318 tgid 6318 stack trace:
[   94.420086][ T8043]  free_frozen_pages+0x6db/0xfb0
[   94.421498][ T8043]  inode_doinit_with_dentry+0xac4/0x12c0
[   94.423125][ T8043]  selinux_d_instantiate+0x26/0x30
[   94.424596][ T8043]  security_d_instantiate+0x142/0x1a0
[   94.426179][ T8043]  d_splice_alias+0x93/0xf50
[   94.427524][ T8043]  kernfs_iop_lookup+0x286/0x330
[   94.428946][ T8043]  lookup_open.isra.0+0x4d9/0x1580
[   94.430490][ T8043]  path_openat+0x904/0x2d80
[   94.431796][ T8043]  do_filp_open+0x20c/0x470
[   94.433115][ T8043]  do_sys_openat2+0x17a/0x1e0
[   94.434500][ T8043]  __x64_sys_openat+0x175/0x210
[   94.435963][ T8043]  do_syscall_64+0xcd/0x250
[   94.437283][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.438990][ T8043] Modules linked in:
[   94.440181][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   94.440197][ T8043] Tainted: [B]=BAD_PAGE
[   94.440201][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.440208][ T8043] Call Trace:
[   94.440212][ T8043]  <TASK>
[   94.440217][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   94.440231][ T8043]  bad_page+0xb3/0x1f0
[   94.440245][ T8043]  ? __pfx_bad_page+0x10/0x10
[   94.440258][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   94.440271][ T8043]  free_frozen_pages+0x701/0xfb0
[   94.440283][ T8043]  page_frag_free+0x255/0x2a0
[   94.440295][ T8043]  __xdp_return+0x319/0xa70
[   94.440311][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   94.440322][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   94.440341][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   94.440350][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   94.440366][ T8043]  do_xdp_generic+0x70a/0xe70
[   94.440378][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   94.440391][ T8043]  ? hlock_class+0x4e/0x130
[   94.440403][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.440419][ T8043]  ? mark_lock+0xb5/0xc60
[   94.440434][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.440449][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   94.440467][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   94.440479][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   94.440493][ T8043]  ? hlock_class+0x4e/0x130
[   94.440503][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.440519][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   94.440530][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.440545][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   94.440561][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.440574][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   94.440587][ T8043]  ? rcu_is_watching+0x12/0xc0
[   94.440599][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   94.440612][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.440624][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.440636][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   94.440649][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   94.440659][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.440674][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   94.440685][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.440701][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   94.440718][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.440734][ T8043]  ? lock_acquire+0x2f/0xb0
[   94.440748][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.440764][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.440787][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   94.440802][ T8043]  ? find_held_lock+0x2d/0x110
[   94.440814][ T8043]  ? __pfx_lock_release+0x10/0x10
[   94.440831][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.440848][ T8043]  vfs_write+0x5ae/0x1150
[   94.440865][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   94.440882][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   94.440898][ T8043]  ? do_futex+0x123/0x350
[   94.440911][ T8043]  ? __fget_files+0x40/0x3a0
[   94.440924][ T8043]  ksys_write+0x12b/0x250
[   94.440940][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   94.440958][ T8043]  do_syscall_64+0xcd/0x250
[   94.440972][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.441002][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   94.441012][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   94.441023][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   94.441034][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   94.441041][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   94.441047][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   94.441054][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   94.441060][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   94.441069][ T8043]  </TASK>
[   94.441076][ T8043] BUG: Bad page state in process syz.3.791  pfn:51cc0
[   94.551795][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x400000189 pfn:0x51cc0
[   94.554383][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   94.556415][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   94.558802][ T8043] raw: 0000000400000189 0000000000000001 00000000ffffffff 0000000000000000
[   94.561242][ T8043] page dumped because: page_pool leak
[   94.562744][ T8043] page_owner tracks the page as allocated
[   94.564330][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194162018, free_ts 94080550105
[   94.568936][ T8043]  post_alloc_hook+0x181/0x1b0
[   94.570370][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   94.572049][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   94.574080][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   94.575639][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   94.577334][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   94.578869][ T8043]  skb_pp_cow_data+0x776/0xf10
[   94.580307][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   94.581803][ T8043]  do_xdp_generic+0x3f1/0xe70
[   94.583184][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.585139][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.586781][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.588214][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.589698][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.591281][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.592623][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.594033][ T8043] page last free pid 1470 tgid 1470 stack trace:
[   94.595824][ T8043]  free_frozen_pages+0x6db/0xfb0
[   94.597233][ T8043]  tlb_remove_table_rcu+0x116/0x1a0
[   94.598718][ T8043]  rcu_core+0x79d/0x14d0
[   94.600001][ T8043]  handle_softirqs+0x213/0x8f0
[   94.601364][ T8043]  __irq_exit_rcu+0x109/0x170
[   94.602711][ T8043]  irq_exit_rcu+0x9/0x30
[   94.603931][ T8043]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   94.605533][ T8043]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   94.607268][ T8043] Modules linked in:
[   94.608406][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   94.608421][ T8043] Tainted: [B]=BAD_PAGE
[   94.608425][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.608432][ T8043] Call Trace:
[   94.608436][ T8043]  <TASK>
[   94.608440][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   94.608455][ T8043]  bad_page+0xb3/0x1f0
[   94.608468][ T8043]  ? __pfx_bad_page+0x10/0x10
[   94.608481][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   94.608494][ T8043]  free_frozen_pages+0x701/0xfb0
[   94.608506][ T8043]  page_frag_free+0x255/0x2a0
[   94.608518][ T8043]  __xdp_return+0x319/0xa70
[   94.608534][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   94.608544][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   94.608564][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   94.608572][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   94.608588][ T8043]  do_xdp_generic+0x70a/0xe70
[   94.608600][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   94.608613][ T8043]  ? hlock_class+0x4e/0x130
[   94.608624][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.608640][ T8043]  ? mark_lock+0xb5/0xc60
[   94.608655][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.608669][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   94.608687][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   94.608699][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   94.608713][ T8043]  ? hlock_class+0x4e/0x130
[   94.608723][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.608739][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   94.608750][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.608765][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   94.608793][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.608806][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   94.608819][ T8043]  ? rcu_is_watching+0x12/0xc0
[   94.608831][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   94.608844][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.608856][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.608868][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   94.608880][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   94.608891][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.608905][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   94.608916][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.608931][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   94.608948][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.608963][ T8043]  ? lock_acquire+0x2f/0xb0
[   94.608977][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.609011][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.609029][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   94.609045][ T8043]  ? find_held_lock+0x2d/0x110
[   94.609057][ T8043]  ? __pfx_lock_release+0x10/0x10
[   94.609074][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.609091][ T8043]  vfs_write+0x5ae/0x1150
[   94.609108][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   94.609125][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   94.609141][ T8043]  ? do_futex+0x123/0x350
[   94.609154][ T8043]  ? __fget_files+0x40/0x3a0
[   94.609166][ T8043]  ksys_write+0x12b/0x250
[   94.609183][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   94.609201][ T8043]  do_syscall_64+0xcd/0x250
[   94.609214][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.609230][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   94.609238][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   94.609249][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   94.609259][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   94.609266][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   94.609272][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   94.609278][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   94.609284][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   94.609293][ T8043]  </TASK>
[   94.609300][ T8043] BUG: Bad page state in process syz.3.791  pfn:283d6
[   94.689868][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   94.690370][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880283d6d90 pfn:0x283d6
[   94.723530][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   94.725536][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   94.727955][ T8043] raw: ffff8880283d6d90 0000000000000001 00000000ffffffff 0000000000000000
[   94.730472][ T8043] page dumped because: page_pool leak
[   94.732001][ T8043] page_owner tracks the page as allocated
[   94.733588][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194157199, free_ts 94080560554
[   94.738175][ T8043]  post_alloc_hook+0x181/0x1b0
[   94.739610][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   94.741232][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   94.742911][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   94.744507][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   94.746205][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   94.747717][ T8043]  skb_pp_cow_data+0x776/0xf10
[   94.749074][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   94.750570][ T8043]  do_xdp_generic+0x3f1/0xe70
[   94.751883][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.753799][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.755445][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.756921][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.758360][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.759895][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.761253][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.762653][ T8043] page last free pid 1470 tgid 1470 stack trace:
[   94.764427][ T8043]  free_frozen_pages+0x6db/0xfb0
[   94.765841][ T8043]  tlb_remove_table_rcu+0x116/0x1a0
[   94.767341][ T8043]  rcu_core+0x79d/0x14d0
[   94.768550][ T8043]  handle_softirqs+0x213/0x8f0
[   94.769996][ T8043]  __irq_exit_rcu+0x109/0x170
[   94.771337][ T8043]  irq_exit_rcu+0x9/0x30
[   94.772559][ T8043]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   94.774189][ T8043]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   94.775894][ T8043] Modules linked in:
[   94.777051][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   94.777067][ T8043] Tainted: [B]=BAD_PAGE
[   94.777070][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.777077][ T8043] Call Trace:
[   94.777082][ T8043]  <TASK>
[   94.777087][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   94.777102][ T8043]  bad_page+0xb3/0x1f0
[   94.777115][ T8043]  ? __pfx_bad_page+0x10/0x10
[   94.777128][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   94.777141][ T8043]  free_frozen_pages+0x701/0xfb0
[   94.777152][ T8043]  page_frag_free+0x255/0x2a0
[   94.777164][ T8043]  __xdp_return+0x319/0xa70
[   94.777181][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   94.777191][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   94.777210][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   94.777219][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   94.777234][ T8043]  do_xdp_generic+0x70a/0xe70
[   94.777246][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   94.777259][ T8043]  ? hlock_class+0x4e/0x130
[   94.777270][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.777286][ T8043]  ? mark_lock+0xb5/0xc60
[   94.777301][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.777315][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   94.777332][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   94.777344][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   94.777358][ T8043]  ? hlock_class+0x4e/0x130
[   94.777368][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.777384][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   94.777400][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.777420][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   94.777438][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.777451][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   94.777464][ T8043]  ? rcu_is_watching+0x12/0xc0
[   94.777475][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   94.777487][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.777500][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.777511][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   94.777523][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   94.777534][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.777548][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   94.777559][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.777575][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   94.777591][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.777607][ T8043]  ? lock_acquire+0x2f/0xb0
[   94.777621][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.777637][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.777655][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   94.777671][ T8043]  ? find_held_lock+0x2d/0x110
[   94.777682][ T8043]  ? __pfx_lock_release+0x10/0x10
[   94.777699][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.777716][ T8043]  vfs_write+0x5ae/0x1150
[   94.777733][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   94.777750][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   94.777766][ T8043]  ? do_futex+0x123/0x350
[   94.777784][ T8043]  ? __fget_files+0x40/0x3a0
[   94.777796][ T8043]  ksys_write+0x12b/0x250
[   94.777812][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   94.777830][ T8043]  do_syscall_64+0xcd/0x250
[   94.777843][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.777858][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   94.777867][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   94.777877][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   94.777887][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   94.777894][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   94.777900][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   94.777906][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   94.777912][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   94.777921][ T8043]  </TASK>
[   94.777929][ T8043] BUG: Bad page state in process syz.3.791  pfn:29091
[   94.889460][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x29091
[   94.892354][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   94.894349][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   94.896797][ T8043] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[   94.899249][ T8043] page dumped because: page_pool leak
[   94.900820][ T8043] page_owner tracks the page as allocated
[   94.902441][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194152896, free_ts 94080568716
[   94.907080][ T8043]  post_alloc_hook+0x181/0x1b0
[   94.908482][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   94.910105][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   94.911779][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   94.913346][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   94.915307][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   94.916865][ T8043]  skb_pp_cow_data+0x776/0xf10
[   94.918254][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   94.919798][ T8043]  do_xdp_generic+0x3f1/0xe70
[   94.921159][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.923114][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.924794][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.926265][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.927699][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.929230][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.930650][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.932076][ T8043] page last free pid 1470 tgid 1470 stack trace:
[   94.933953][ T8043]  free_frozen_pages+0x6db/0xfb0
[   94.935377][ T8043]  tlb_remove_table_rcu+0x116/0x1a0
[   94.936897][ T8043]  rcu_core+0x79d/0x14d0
[   94.938159][ T8043]  handle_softirqs+0x213/0x8f0
[   94.939567][ T8043]  __irq_exit_rcu+0x109/0x170
[   94.940976][ T8043]  irq_exit_rcu+0x9/0x30
[   94.942203][ T8043]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   94.943806][ T8043]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   94.945494][ T8043] Modules linked in:
[   94.946631][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   94.946647][ T8043] Tainted: [B]=BAD_PAGE
[   94.946651][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.946658][ T8043] Call Trace:
[   94.946662][ T8043]  <TASK>
[   94.946667][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   94.946681][ T8043]  bad_page+0xb3/0x1f0
[   94.946694][ T8043]  ? __pfx_bad_page+0x10/0x10
[   94.946707][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   94.946720][ T8043]  free_frozen_pages+0x701/0xfb0
[   94.946732][ T8043]  page_frag_free+0x255/0x2a0
[   94.946744][ T8043]  __xdp_return+0x319/0xa70
[   94.946760][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   94.946771][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   94.946794][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   94.946803][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   94.946818][ T8043]  do_xdp_generic+0x70a/0xe70
[   94.946830][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   94.946843][ T8043]  ? hlock_class+0x4e/0x130
[   94.946854][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.946870][ T8043]  ? mark_lock+0xb5/0xc60
[   94.946885][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   94.946900][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   94.946917][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   94.946929][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   94.946942][ T8043]  ? hlock_class+0x4e/0x130
[   94.946953][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   94.946968][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   94.946979][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.946994][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   94.947009][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   94.947022][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   94.947035][ T8043]  ? rcu_is_watching+0x12/0xc0
[   94.947046][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   94.947059][ T8043]  __netif_receive_skb+0x1d/0x160
[   94.947071][ T8043]  netif_receive_skb+0x13f/0x7b0
[   94.947083][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   94.947095][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   94.947105][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   94.947120][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   94.947130][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   94.947146][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   94.947162][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.947178][ T8043]  ? lock_acquire+0x2f/0xb0
[   94.947192][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   94.947208][ T8043]  tun_get_user+0x2a22/0x3e50
[   94.947226][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   94.947241][ T8043]  ? find_held_lock+0x2d/0x110
[   94.947253][ T8043]  ? __pfx_lock_release+0x10/0x10
[   94.947270][ T8043]  tun_chr_write_iter+0xdc/0x210
[   94.947287][ T8043]  vfs_write+0x5ae/0x1150
[   94.947304][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   94.947321][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   94.947336][ T8043]  ? do_futex+0x123/0x350
[   94.947349][ T8043]  ? __fget_files+0x40/0x3a0
[   94.947362][ T8043]  ksys_write+0x12b/0x250
[   94.947378][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   94.947402][ T8043]  do_syscall_64+0xcd/0x250
[   94.947421][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.947441][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   94.947451][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   94.947462][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   94.947472][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   94.947479][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   94.947485][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   94.947491][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   94.947497][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   94.947506][ T8043]  </TASK>
[   94.947513][ T8043] BUG: Bad page state in process syz.3.791  pfn:2707f
[   95.056965][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x2707f
[   95.059849][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   95.061856][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   95.064262][ T8043] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[   95.066672][ T8043] page dumped because: page_pool leak
[   95.068165][ T8043] page_owner tracks the page as allocated
[   95.069832][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194148619, free_ts 94080577728
[   95.074458][ T8043]  post_alloc_hook+0x181/0x1b0
[   95.075846][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   95.077427][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   95.079105][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   95.080691][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   95.082374][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   95.083878][ T8043]  skb_pp_cow_data+0x776/0xf10
[   95.085206][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   95.086574][ T8043]  do_xdp_generic+0x3f1/0xe70
[   95.087890][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.089812][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.091453][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.092875][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.094297][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.095823][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.097194][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.098595][ T8043] page last free pid 1470 tgid 1470 stack trace:
[   95.100379][ T8043]  free_frozen_pages+0x6db/0xfb0
[   95.101783][ T8043]  tlb_remove_table_rcu+0x116/0x1a0
[   95.103213][ T8043]  rcu_core+0x79d/0x14d0
[   95.104398][ T8043]  handle_softirqs+0x213/0x8f0
[   95.105742][ T8043]  __irq_exit_rcu+0x109/0x170
[   95.107128][ T8043]  irq_exit_rcu+0x9/0x30
[   95.108358][ T8043]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   95.109967][ T8043]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   95.111626][ T8043] Modules linked in:
[   95.112932][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   95.112948][ T8043] Tainted: [B]=BAD_PAGE
[   95.112952][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.112958][ T8043] Call Trace:
[   95.112963][ T8043]  <TASK>
[   95.112967][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   95.112998][ T8043]  bad_page+0xb3/0x1f0
[   95.113012][ T8043]  ? __pfx_bad_page+0x10/0x10
[   95.113025][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   95.113039][ T8043]  free_frozen_pages+0x701/0xfb0
[   95.113050][ T8043]  page_frag_free+0x255/0x2a0
[   95.113062][ T8043]  __xdp_return+0x319/0xa70
[   95.113078][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   95.113088][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   95.113108][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   95.113116][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   95.113131][ T8043]  do_xdp_generic+0x70a/0xe70
[   95.113144][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   95.113157][ T8043]  ? hlock_class+0x4e/0x130
[   95.113168][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.113184][ T8043]  ? mark_lock+0xb5/0xc60
[   95.113199][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.113213][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.113230][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   95.113243][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   95.113257][ T8043]  ? hlock_class+0x4e/0x130
[   95.113267][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.113283][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   95.113294][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.113308][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   95.113324][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.113337][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   95.113350][ T8043]  ? rcu_is_watching+0x12/0xc0
[   95.113361][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   95.113374][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.113386][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.113398][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   95.113410][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   95.113421][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.113435][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   95.113446][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.113463][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   95.113479][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.113494][ T8043]  ? lock_acquire+0x2f/0xb0
[   95.113508][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.113525][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.113543][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   95.113558][ T8043]  ? find_held_lock+0x2d/0x110
[   95.113570][ T8043]  ? __pfx_lock_release+0x10/0x10
[   95.113587][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.113604][ T8043]  vfs_write+0x5ae/0x1150
[   95.113621][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   95.113638][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   95.113654][ T8043]  ? do_futex+0x123/0x350
[   95.113666][ T8043]  ? __fget_files+0x40/0x3a0
[   95.113678][ T8043]  ksys_write+0x12b/0x250
[   95.113695][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   95.113712][ T8043]  do_syscall_64+0xcd/0x250
[   95.113726][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.113742][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   95.113750][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   95.113760][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   95.113776][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   95.113783][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   95.113789][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   95.113795][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   95.113801][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   95.113810][ T8043]  </TASK>
[   95.113817][ T8043] BUG: Bad page state in process syz.3.791  pfn:27725
[   95.223670][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888027725e88 pfn:0x27725
[   95.226468][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   95.228447][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   95.230918][ T8043] raw: ffff888027725e88 0000000000000001 00000000ffffffff 0000000000000000
[   95.233293][ T8043] page dumped because: page_pool leak
[   95.234792][ T8043] page_owner tracks the page as allocated
[   95.236381][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194144376, free_ts 94080585646
[   95.241039][ T8043]  post_alloc_hook+0x181/0x1b0
[   95.242427][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   95.243930][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   95.245605][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   95.247184][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   95.248880][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   95.250463][ T8043]  skb_pp_cow_data+0x776/0xf10
[   95.251691][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   95.253110][ T8043]  do_xdp_generic+0x3f1/0xe70
[   95.254461][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.256594][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.258433][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.260004][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.261496][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.263063][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.264416][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.265865][ T8043] page last free pid 1470 tgid 1470 stack trace:
[   95.267652][ T8043]  free_frozen_pages+0x6db/0xfb0
[   95.269060][ T8043]  tlb_remove_table_rcu+0x116/0x1a0
[   95.270592][ T8043]  rcu_core+0x79d/0x14d0
[   95.271799][ T8043]  handle_softirqs+0x213/0x8f0
[   95.273196][ T8043]  __irq_exit_rcu+0x109/0x170
[   95.274541][ T8043]  irq_exit_rcu+0x9/0x30
[   95.275745][ T8043]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   95.277369][ T8043]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   95.279089][ T8043] Modules linked in:
[   95.280251][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   95.280267][ T8043] Tainted: [B]=BAD_PAGE
[   95.280271][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.280278][ T8043] Call Trace:
[   95.280282][ T8043]  <TASK>
[   95.280287][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   95.280301][ T8043]  bad_page+0xb3/0x1f0
[   95.280315][ T8043]  ? __pfx_bad_page+0x10/0x10
[   95.280328][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   95.280341][ T8043]  free_frozen_pages+0x701/0xfb0
[   95.280353][ T8043]  page_frag_free+0x255/0x2a0
[   95.280365][ T8043]  __xdp_return+0x319/0xa70
[   95.280382][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   95.280393][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   95.280412][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   95.280421][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   95.280436][ T8043]  do_xdp_generic+0x70a/0xe70
[   95.280448][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   95.280461][ T8043]  ? hlock_class+0x4e/0x130
[   95.280472][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.280488][ T8043]  ? mark_lock+0xb5/0xc60
[   95.280503][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.280517][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.280535][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   95.280547][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   95.280560][ T8043]  ? hlock_class+0x4e/0x130
[   95.280571][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.280587][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   95.280597][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.280612][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   95.280627][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.280640][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   95.280653][ T8043]  ? rcu_is_watching+0x12/0xc0
[   95.280665][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   95.280678][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.280690][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.280703][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   95.280715][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   95.280726][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.280740][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   95.280751][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.280766][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   95.280786][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.280802][ T8043]  ? lock_acquire+0x2f/0xb0
[   95.280816][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.280832][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.280850][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   95.280866][ T8043]  ? find_held_lock+0x2d/0x110
[   95.280878][ T8043]  ? __pfx_lock_release+0x10/0x10
[   95.280895][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.280911][ T8043]  vfs_write+0x5ae/0x1150
[   95.280929][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   95.280945][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   95.280961][ T8043]  ? do_futex+0x123/0x350
[   95.280974][ T8043]  ? __fget_files+0x40/0x3a0
[   95.281021][ T8043]  ksys_write+0x12b/0x250
[   95.281037][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   95.281055][ T8043]  do_syscall_64+0xcd/0x250
[   95.281068][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.281084][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   95.281093][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   95.281103][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   95.281113][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   95.281120][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   95.281126][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   95.281132][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   95.281139][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   95.281147][ T8043]  </TASK>
[   95.281154][ T8043] BUG: Bad page state in process syz.3.791  pfn:2724c
[   95.390977][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x2724c
[   95.393780][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   95.395743][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   95.398212][ T8043] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[   95.400689][ T8043] page dumped because: page_pool leak
[   95.402307][ T8043] page_owner tracks the page as allocated
[   95.404059][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194140240, free_ts 94080593499
[   95.408770][ T8043]  post_alloc_hook+0x181/0x1b0
[   95.410416][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   95.411957][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   95.413635][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   95.415199][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   95.416894][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   95.418444][ T8043]  skb_pp_cow_data+0x776/0xf10
[   95.419860][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   95.421287][ T8043]  do_xdp_generic+0x3f1/0xe70
[   95.422675][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.424583][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.426252][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.427670][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.429093][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.430645][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.431998][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.433403][ T8043] page last free pid 1470 tgid 1470 stack trace:
[   95.435189][ T8043]  free_frozen_pages+0x6db/0xfb0
[   95.436585][ T8043]  tlb_remove_table_rcu+0x116/0x1a0
[   95.438076][ T8043]  rcu_core+0x79d/0x14d0
[   95.439324][ T8043]  handle_softirqs+0x213/0x8f0
[   95.440742][ T8043]  __irq_exit_rcu+0x109/0x170
[   95.442085][ T8043]  irq_exit_rcu+0x9/0x30
[   95.443286][ T8043]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   95.444876][ T8043]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   95.446580][ T8043] Modules linked in:
[   95.447705][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   95.447721][ T8043] Tainted: [B]=BAD_PAGE
[   95.447725][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.447732][ T8043] Call Trace:
[   95.447738][ T8043]  <TASK>
[   95.447742][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   95.447757][ T8043]  bad_page+0xb3/0x1f0
[   95.447771][ T8043]  ? __pfx_bad_page+0x10/0x10
[   95.447784][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   95.447797][ T8043]  free_frozen_pages+0x701/0xfb0
[   95.447808][ T8043]  page_frag_free+0x255/0x2a0
[   95.447821][ T8043]  __xdp_return+0x319/0xa70
[   95.447837][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   95.447848][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   95.447868][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   95.447877][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   95.447892][ T8043]  do_xdp_generic+0x70a/0xe70
[   95.447905][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   95.447918][ T8043]  ? hlock_class+0x4e/0x130
[   95.447929][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.447945][ T8043]  ? mark_lock+0xb5/0xc60
[   95.447960][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.447974][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.447992][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   95.448004][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   95.448022][ T8043]  ? hlock_class+0x4e/0x130
[   95.448032][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.448048][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   95.448059][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.448074][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   95.448089][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.448102][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   95.448115][ T8043]  ? rcu_is_watching+0x12/0xc0
[   95.448127][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   95.448139][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.448152][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.448163][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   95.448176][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   95.448186][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.448201][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   95.448211][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.448228][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   95.448244][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.448260][ T8043]  ? lock_acquire+0x2f/0xb0
[   95.448274][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.448291][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.448308][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   95.448324][ T8043]  ? find_held_lock+0x2d/0x110
[   95.448336][ T8043]  ? __pfx_lock_release+0x10/0x10
[   95.448353][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.448370][ T8043]  vfs_write+0x5ae/0x1150
[   95.448387][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   95.448404][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   95.448420][ T8043]  ? do_futex+0x123/0x350
[   95.448433][ T8043]  ? __fget_files+0x40/0x3a0
[   95.448445][ T8043]  ksys_write+0x12b/0x250
[   95.448461][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   95.448479][ T8043]  do_syscall_64+0xcd/0x250
[   95.448492][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.448508][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   95.448516][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   95.448527][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   95.448537][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   95.448543][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   95.448550][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   95.448556][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   95.448562][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   95.448571][ T8043]  </TASK>
[   95.448578][ T8043] BUG: Bad page state in process syz.3.791  pfn:4f28e
[   95.559382][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x4f28e
[   95.562286][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   95.564287][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   95.566737][ T8043] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[   95.569211][ T8043] page dumped because: page_pool leak
[   95.570823][ T8043] page_owner tracks the page as allocated
[   95.572441][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194135695, free_ts 94080599261
[   95.577125][ T8043]  post_alloc_hook+0x181/0x1b0
[   95.578535][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   95.580176][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   95.581926][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   95.583518][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   95.585268][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   95.587366][ T8043]  skb_pp_cow_data+0x776/0xf10
[   95.589799][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   95.591657][ T8043]  do_xdp_generic+0x3f1/0xe70
[   95.593216][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.595172][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.596883][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.598341][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.599879][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.601423][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.602781][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.604235][ T8043] page last free pid 1470 tgid 1470 stack trace:
[   95.606094][ T8043]  free_frozen_pages+0x6db/0xfb0
[   95.607537][ T8043]  tlb_remove_table_rcu+0x116/0x1a0
[   95.609086][ T8043]  rcu_core+0x79d/0x14d0
[   95.610384][ T8043]  handle_softirqs+0x213/0x8f0
[   95.611785][ T8043]  __irq_exit_rcu+0x109/0x170
[   95.613169][ T8043]  irq_exit_rcu+0x9/0x30
[   95.614399][ T8043]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   95.616426][ T8043]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   95.618109][ T8043] Modules linked in:
[   95.619223][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   95.619238][ T8043] Tainted: [B]=BAD_PAGE
[   95.619242][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.619249][ T8043] Call Trace:
[   95.619255][ T8043]  <TASK>
[   95.619260][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   95.619274][ T8043]  bad_page+0xb3/0x1f0
[   95.619288][ T8043]  ? __pfx_bad_page+0x10/0x10
[   95.619301][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   95.619314][ T8043]  free_frozen_pages+0x701/0xfb0
[   95.619325][ T8043]  page_frag_free+0x255/0x2a0
[   95.619338][ T8043]  __xdp_return+0x319/0xa70
[   95.619354][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   95.619365][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   95.619385][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   95.619393][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   95.619408][ T8043]  do_xdp_generic+0x70a/0xe70
[   95.619421][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   95.619433][ T8043]  ? hlock_class+0x4e/0x130
[   95.619445][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.619461][ T8043]  ? mark_lock+0xb5/0xc60
[   95.619476][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.619490][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.619508][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   95.619520][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   95.619533][ T8043]  ? hlock_class+0x4e/0x130
[   95.619544][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.619560][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   95.619570][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.619585][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   95.619601][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.619614][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   95.619627][ T8043]  ? rcu_is_watching+0x12/0xc0
[   95.619638][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   95.619651][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.619663][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.619675][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   95.619687][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   95.619698][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.619723][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   95.619735][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.619751][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   95.619767][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.619783][ T8043]  ? lock_acquire+0x2f/0xb0
[   95.619797][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.619818][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.619836][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   95.619852][ T8043]  ? find_held_lock+0x2d/0x110
[   95.619863][ T8043]  ? __pfx_lock_release+0x10/0x10
[   95.619880][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.619897][ T8043]  vfs_write+0x5ae/0x1150
[   95.619915][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   95.619932][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   95.619948][ T8043]  ? do_futex+0x123/0x350
[   95.619961][ T8043]  ? __fget_files+0x40/0x3a0
[   95.619974][ T8043]  ksys_write+0x12b/0x250
[   95.619990][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   95.620008][ T8043]  do_syscall_64+0xcd/0x250
[   95.620021][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.620036][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   95.620045][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   95.620056][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   95.620066][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   95.620073][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   95.620079][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   95.620085][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   95.620091][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   95.620100][ T8043]  </TASK>
[   95.730034][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   95.730173][    C2] vkms_vblank_simulate: vblank timer overrun
[   95.761382][    C2] vkms_vblank_simulate: vblank timer overrun
[   95.763561][ T8043] BUG: Bad page state in process syz.3.791  pfn:305e7
[   95.766003][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2 pfn:0x305e7
[   95.769252][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   95.771929][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   95.775050][ T8043] raw: 0000000000000002 0000000000000001 00000000ffffffff 0000000000000000
[   95.778093][ T8043] page dumped because: page_pool leak
[   95.780086][ T8043] page_owner tracks the page as allocated
[   95.782126][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194131188, free_ts 94080607009
[   95.787931][ T8043]  post_alloc_hook+0x181/0x1b0
[   95.789779][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   95.791737][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   95.793812][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   95.795962][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   95.798149][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   95.800198][ T8043]  skb_pp_cow_data+0x776/0xf10
[   95.801971][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   95.803773][ T8043]  do_xdp_generic+0x3f1/0xe70
[   95.805503][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.807940][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.810158][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.811976][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.813777][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.815694][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.817424][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.819246][ T8043] page last free pid 1470 tgid 1470 stack trace:
[   95.821594][ T8043]  free_frozen_pages+0x6db/0xfb0
[   95.823435][ T8043]  tlb_remove_table_rcu+0x116/0x1a0
[   95.825317][ T8043]  rcu_core+0x79d/0x14d0
[   95.826850][ T8043]  handle_softirqs+0x213/0x8f0
[   95.828589][ T8043]  __irq_exit_rcu+0x109/0x170
[   95.830355][ T8043]  irq_exit_rcu+0x9/0x30
[   95.831902][ T8043]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   95.833921][ T8043]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   95.836082][ T8043] Modules linked in:
[   95.837518][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   95.837541][ T8043] Tainted: [B]=BAD_PAGE
[   95.837546][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.837556][ T8043] Call Trace:
[   95.837562][ T8043]  <TASK>
[   95.837568][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   95.837585][ T8043]  bad_page+0xb3/0x1f0
[   95.837603][ T8043]  ? __pfx_bad_page+0x10/0x10
[   95.837623][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   95.837642][ T8043]  free_frozen_pages+0x701/0xfb0
[   95.837659][ T8043]  page_frag_free+0x255/0x2a0
[   95.837677][ T8043]  __xdp_return+0x319/0xa70
[   95.837698][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   95.837711][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   95.837740][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   95.837753][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   95.837776][ T8043]  do_xdp_generic+0x70a/0xe70
[   95.837794][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   95.837810][ T8043]  ? hlock_class+0x4e/0x130
[   95.837825][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.837849][ T8043]  ? mark_lock+0xb5/0xc60
[   95.837871][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   95.837892][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.837914][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   95.837932][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   95.837953][ T8043]  ? hlock_class+0x4e/0x130
[   95.837968][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   95.837992][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   95.838002][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.838030][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   95.838053][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   95.838072][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   95.838091][ T8043]  ? rcu_is_watching+0x12/0xc0
[   95.838108][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   95.838125][ T8043]  __netif_receive_skb+0x1d/0x160
[   95.838140][ T8043]  netif_receive_skb+0x13f/0x7b0
[   95.838158][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   95.838176][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   95.838191][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   95.838212][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   95.838224][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   95.838247][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   95.838270][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.838293][ T8043]  ? lock_acquire+0x2f/0xb0
[   95.838312][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   95.838332][ T8043]  tun_get_user+0x2a22/0x3e50
[   95.838359][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   95.838381][ T8043]  ? find_held_lock+0x2d/0x110
[   95.838399][ T8043]  ? __pfx_lock_release+0x10/0x10
[   95.838419][ T8043]  tun_chr_write_iter+0xdc/0x210
[   95.838443][ T8043]  vfs_write+0x5ae/0x1150
[   95.838467][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   95.838491][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   95.838511][ T8043]  ? do_futex+0x123/0x350
[   95.838530][ T8043]  ? __fget_files+0x40/0x3a0
[   95.838549][ T8043]  ksys_write+0x12b/0x250
[   95.838571][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   95.838594][ T8043]  do_syscall_64+0xcd/0x250
[   95.838613][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.838634][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   95.838647][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   95.838659][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   95.838673][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   95.838684][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   95.838693][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   95.838703][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   95.838713][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   95.838727][ T8043]  </TASK>
[   95.838737][ T8043] BUG: Bad page state in process syz.3.791  pfn:2d2dc
[   95.981693][ T8043] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xe3 pfn:0x2d2dc
[   95.984847][ T8043] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   95.987380][ T8043] raw: 00fff00000000000 dead000000000040 ffff88802045a000 0000000000000000
[   95.990562][ T8043] raw: 00000000000000e3 0000000000000001 00000000ffffffff 0000000000000000
[   95.993590][ T8043] page dumped because: page_pool leak
[   95.995634][ T8043] page_owner tracks the page as allocated
[   95.997690][ T8043] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 8043, tgid 8042 (syz.3.791), ts 94194126959, free_ts 94165941186
[   96.003600][ T8043]  post_alloc_hook+0x181/0x1b0
[   96.005388][ T8043]  get_page_from_freelist+0xfce/0x2f80
[   96.007401][ T8043]  __alloc_frozen_pages_noprof+0x221/0x2470
[   96.009538][ T8043]  alloc_pages_bulk_noprof+0x6f9/0x1390
[   96.011479][ T8043]  __page_pool_alloc_pages_slow+0x18c/0x770
[   96.014036][ T8043]  page_pool_alloc_netmems+0xc4/0x160
[   96.016100][ T8043]  skb_pp_cow_data+0x776/0xf10
[   96.018020][ T8043]  skb_cow_data_for_xdp+0x88/0xb0
[   96.020116][ T8043]  do_xdp_generic+0x3f1/0xe70
[   96.022016][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   96.024737][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   96.027177][ T8043]  __netif_receive_skb+0x1d/0x160
[   96.029194][ T8043]  netif_receive_skb+0x13f/0x7b0
[   96.031304][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   96.033362][ T8043]  tun_get_user+0x2a22/0x3e50
[   96.035281][ T8043]  tun_chr_write_iter+0xdc/0x210
[   96.037118][ T8043] page last free pid 8040 tgid 8038 stack trace:
[   96.039426][ T8043]  free_frozen_pages+0x6db/0xfb0
[   96.041274][ T8043]  tlb_finish_mmu+0x237/0x7b0
[   96.043151][ T8043]  exit_mmap+0x40e/0xba0
[   96.044940][ T8043]  __mmput+0x12a/0x410
[   96.046497][ T8043]  mmput+0x62/0x70
[   96.048265][ T8043]  do_exit+0x9ba/0x2d70
[   96.049971][ T8043]  io_sq_thread+0x1051/0x1c30
[   96.052055][ T8043]  ret_from_fork+0x45/0x80
[   96.053844][ T8043]  ret_from_fork_asm+0x1a/0x30
[   96.055852][ T8043] Modules linked in:
[   96.057591][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.3.791 Tainted: G    B              6.14.0-rc4-syzkaller-00052-gac9c34d1e45a #0
[   96.057613][ T8043] Tainted: [B]=BAD_PAGE
[   96.057618][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.057629][ T8043] Call Trace:
[   96.057636][ T8043]  <TASK>
[   96.057645][ T8043]  dump_stack_lvl+0x16c/0x1f0
[   96.057669][ T8043]  bad_page+0xb3/0x1f0
[   96.057690][ T8043]  ? __pfx_bad_page+0x10/0x10
[   96.057708][ T8043]  ? page_bad_reason+0x9d/0x1e0
[   96.057727][ T8043]  free_frozen_pages+0x701/0xfb0
[   96.057745][ T8043]  page_frag_free+0x255/0x2a0
[   96.057774][ T8043]  __xdp_return+0x319/0xa70
[   96.057799][ T8043]  ? kmem_cache_free+0x2e2/0x4d0
[   96.057814][ T8043]  bpf_xdp_adjust_tail+0x9de/0xf70
[   96.057844][ T8043]  bpf_prog_f476d5219b92964a+0x1e/0x20
[   96.057858][ T8043]  bpf_prog_run_generic_xdp+0xe33/0x1500
[   96.057883][ T8043]  do_xdp_generic+0x70a/0xe70
[   96.057902][ T8043]  ? __pfx_do_xdp_generic+0x10/0x10
[   96.057921][ T8043]  ? hlock_class+0x4e/0x130
[   96.057937][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   96.057963][ T8043]  ? mark_lock+0xb5/0xc60
[   96.057986][ T8043]  __netif_receive_skb_core.constprop.0+0x12da/0x4330
[   96.058008][ T8043]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   96.058034][ T8043]  ? __skb_flow_dissect+0x11df/0x7e40
[   96.058050][ T8043]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   96.058071][ T8043]  ? hlock_class+0x4e/0x130
[   96.058087][ T8043]  ? __lock_acquire+0xcc5/0x3c40
[   96.058112][ T8043]  ? handle_mm_fault+0x497/0xaa0
[   96.058128][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   96.058147][ T8043]  ? __pfx_mark_lock+0x10/0x10
[   96.058168][ T8043]  __netif_receive_skb_one_core+0xb1/0x1e0
[   96.058187][ T8043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   96.058207][ T8043]  ? rcu_is_watching+0x12/0xc0
[   96.058224][ T8043]  ? netif_receive_skb+0x109/0x7b0
[   96.058243][ T8043]  __netif_receive_skb+0x1d/0x160
[   96.058256][ T8043]  netif_receive_skb+0x13f/0x7b0
[   96.058274][ T8043]  ? __pfx_netif_receive_skb+0x10/0x10
[   96.058292][ T8043]  ? _copy_from_iter+0x15e/0x1560
[   96.058307][ T8043]  ? __pfx___lock_acquire+0x10/0x10
[   96.058328][ T8043]  ? __pfx__copy_from_iter+0x10/0x10
[   96.058343][ T8043]  tun_rx_batched.isra.0+0x3eb/0x730
[   96.058363][ T8043]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[   96.058387][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   96.058410][ T8043]  ? lock_acquire+0x2f/0xb0
[   96.058428][ T8043]  ? tun_get_user+0x13e6/0x3e50
[   96.058449][ T8043]  tun_get_user+0x2a22/0x3e50
[   96.058476][ T8043]  ? __pfx_tun_get_user+0x10/0x10
[   96.058499][ T8043]  ? find_held_lock+0x2d/0x110
[   96.058514][ T8043]  ? __pfx_lock_release+0x10/0x10
[   96.058538][ T8043]  tun_chr_write_iter+0xdc/0x210
[   96.058562][ T8043]  vfs_write+0x5ae/0x1150
[   96.058586][ T8043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   96.058608][ T8043]  ? __pfx_vfs_write+0x10/0x10
[   96.058631][ T8043]  ? do_futex+0x123/0x350
[   96.058649][ T8043]  ? __fget_files+0x40/0x3a0
[   96.058668][ T8043]  ksys_write+0x12b/0x250
[   96.058691][ T8043]  ? __pfx_ksys_write+0x10/0x10
[   96.058714][ T8043]  do_syscall_64+0xcd/0x250
[   96.058734][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.058757][ T8043] RIP: 0033:0x7f46c3f8bc1f
[   96.058776][ T8043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   96.058791][ T8043] RSP: 002b:00007f46c4dc2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   96.058806][ T8043] RAX: ffffffffffffffda RBX: 00007f46c41a5fa0 RCX: 00007f46c3f8bc1f
[   96.058815][ T8043] RDX: 0000000000011dc0 RSI: 0000400000000440 RDI: 00000000000000c8
[   96.058824][ T8043] RBP: 00007f46c400e2a0 R08: 0000000000000000 R09: 0000000000000000
[   96.058835][ T8043] R10: 0000000000011dc0 R11: 0000000000000293 R12: 0000000000000000
[   96.058845][ T8043] R13: 0000000000000000 R14: 00007f46c41a5fa0 R15: 00007ffeaccebd98
[   96.058859][ T8043]  </TASK>
[   96.059090][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   96.201264][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   96.269057][ T7984] bond0: (slave syz_tun): Releasing backup interface
[   96.298069][ T8017] bond0: (slave syz_tun): Releasing backup interface
[   96.341439][    T8] usb 9-1: USB disconnect, device number 3
[   96.351013][  T224] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.376530][ T8043] bond0: (slave syz_tun): Releasing backup interface
[   96.380903][ T5977] usb 7-1: USB disconnect, device number 9
[   96.423024][ T8041] bond0: (slave syz_tun): Releasing backup interface
[   96.463512][  T224] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.583923][  T224] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.652083][  T224] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.713444][  T224] bridge_slave_1: left allmulticast mode
[   96.715761][  T224] bridge_slave_1: left promiscuous mode
[   96.717779][  T224] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.720481][  T224] bridge_slave_0: left allmulticast mode
[   96.722146][  T224] bridge_slave_0: left promiscuous mode
[   96.723868][  T224] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.759931][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   96.805229][  T224] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   96.808601][  T224] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   96.811785][  T224] bond0 (unregistering): Released all slaves
[   97.055936][  T224] hsr_slave_0: left promiscuous mode
[   97.057915][  T224] hsr_slave_1: left promiscuous mode
[   97.059672][  T224] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   97.062350][  T224] batman_adv: batadv0: Removing interface: batadv_slave_0
[   97.064973][  T224] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   97.067142][  T224] batman_adv: batadv0: Removing interface: batadv_slave_1
[   97.070934][  T224] veth1_macvtap: left promiscuous mode
[   97.073122][  T224] veth0_macvtap: left promiscuous mode
[   97.075005][  T224] veth1_vlan: left promiscuous mode
[   97.076707][  T224] veth0_vlan: left promiscuous mode
[   97.079848][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   97.226628][  T224] team0 (unregistering): Port device team_slave_1 removed
[   97.249909][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   97.263838][  T224] team0 (unregistering): Port device team_slave_0 removed
[   97.887137][  T224] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.923049][  T224] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.983062][  T224] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.062525][  T224] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.136060][  T224] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.202362][  T224] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.272738][  T224] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.314711][  T224] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.323586][   T39] audit: type=1400 audit(1740567336.260:520): avc:  denied  { sys_chroot } for  pid=8113 comm="dhcpcd" capability=18  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[   98.331320][   T39] audit: type=1400 audit(1740567336.260:521): avc:  denied  { setgid } for  pid=8113 comm="dhcpcd" capability=6  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[   98.337290][   T39] audit: type=1400 audit(1740567336.260:522): avc:  denied  { setrlimit } for  pid=8113 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1
[   98.383584][  T224] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.442888][  T224] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.512106][  T224] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.542180][  T224] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.620363][  T224] bridge_slave_1: left allmulticast mode
[   98.623541][  T224] bridge_slave_1: left promiscuous mode
[   98.625323][  T224] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.628033][  T224] bridge_slave_0: left allmulticast mode
[   98.630171][  T224] bridge_slave_0: left promiscuous mode
[   98.631865][  T224] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.634730][  T224] bridge_slave_1: left allmulticast mode
[   98.636414][  T224] bridge_slave_1: left promiscuous mode
[   98.638102][  T224] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.641083][  T224] bridge_slave_0: left allmulticast mode
[   98.642718][  T224] bridge_slave_0: left promiscuous mode
[   98.644368][  T224] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.647381][  T224] bridge_slave_1: left allmulticast mode
[   98.649049][  T224] bridge_slave_1: left promiscuous mode
[   98.650800][  T224] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.653413][  T224] bridge_slave_0: left allmulticast mode
[   98.655097][  T224] bridge_slave_0: left promiscuous mode
[   98.656777][  T224] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.745739][  T224] bond0 (unregistering): (slave bridge0): Releasing backup interface
[   98.839849][    C1] net_ratelimit: 3 callbacks suppressed
[   98.839862][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[   98.963572][  T224] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   98.966843][  T224] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   98.969942][  T224] bond0 (unregistering): Released all slaves
[   98.974926][  T224] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   98.978040][  T224] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   98.981704][  T224] bond0 (unregistering): Released all slaves
[   98.986781][  T224] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   98.990300][  T224] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   98.993901][  T224] bond0 (unregistering): (slave wlan1): Releasing backup interface
[   98.997659][  T224] bond0 (unregistering): Released all slaves
[   99.073016][  T224] tipc: Disabling bearer <udp:s>
[   99.075156][  T224] tipc: Left network mode
[   99.090331][  T224] tipc: Disabling bearer <udp:s>
[   99.092032][  T224] tipc: Left network mode
[   99.100598][  T224] tipc: Disabling bearer <udp:s>
[   99.102249][  T224] tipc: Left network mode
[   99.538418][  T224] hsr_slave_0: left promiscuous mode
[   99.540957][  T224] hsr_slave_1: left promiscuous mode
[   99.542717][  T224] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   99.544953][  T224] batman_adv: batadv0: Removing interface: batadv_slave_0
[   99.547466][  T224] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.549678][  T224] batman_adv: batadv0: Removing interface: batadv_slave_1
[   99.554026][  T224] hsr_slave_0: left promiscuous mode
[   99.556093][  T224] hsr_slave_1: left promiscuous mode
[   99.557974][  T224] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   99.560391][  T224] batman_adv: batadv0: Removing interface: batadv_slave_0
[   99.562965][  T224] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.565208][  T224] batman_adv: batadv0: Removing interface: batadv_slave_1
[   99.569216][  T224] hsr_slave_0: left promiscuous mode
[   99.571405][  T224] hsr_slave_1: left promiscuous mode
[   99.573133][  T224] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   99.575275][  T224] batman_adv: batadv0: Removing interface: batadv_slave_0
[   99.577703][  T224] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.580253][  T224] batman_adv: batadv0: Removing interface: batadv_slave_1
[   99.585098][  T224] veth1_macvtap: left promiscuous mode
[   99.586700][  T224] veth0_macvtap: left promiscuous mode
[   99.588273][  T224] veth1_vlan: left promiscuous mode
[   99.590684][  T224] veth1_macvtap: left promiscuous mode
[   99.592269][  T224] veth0_macvtap: left promiscuous mode
[   99.593888][  T224] veth1_vlan: left promiscuous mode
[   99.595573][  T224] veth0_vlan: left promiscuous mode
[   99.597767][  T224] vlan1: left allmulticast mode
[   99.599202][  T224] veth0_vlan: left allmulticast mode
[   99.601140][  T224] veth1_macvtap: left promiscuous mode
[   99.602730][  T224] veth0_macvtap: left promiscuous mode
[   99.604335][  T224] veth1_vlan: left promiscuous mode
[   99.605933][  T224] veth0_vlan: left promiscuous mode
[   99.887830][  T224] team0 (unregistering): Port device team_slave_1 removed
[   99.926339][  T224] team0 (unregistering): Port device team_slave_0 removed
[  100.253198][  T224] team0 (unregistering): Port device team_slave_1 removed
[  100.289436][  T224] team0 (unregistering): Port device team_slave_0 removed
[  100.710605][  T224] team0 (unregistering): Port device team_slave_1 removed
[  100.749503][  T224] team0 (unregistering): Port device team_slave_0 removed
[  101.691607][  T224] IPVS: stop unused estimator thread 0...
[  101.693740][  T224] IPVS: stop unused estimator thread 0...
[  101.695687][  T224] IPVS: stop unused estimator thread 0...

VM DIAGNOSIS:
10:51:16  Registers:
info registers vcpu 0

CPU#0
RAX=000000000018ec57 RBX=0000000000000000 RCX=ffffffff8b574469 RDX=0000000000000000
RSI=ffffffff8b6ced20 RDI=ffffffff8bd35780 RBP=fffffbfff1bd2ee8 RSP=ffffffff8de07e20
R8 =0000000000000001 R9 =ffffed100d4c6f85 R10=ffff88806a637c2b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8de97740 R14=ffffffff90625610 R15=0000000000000000
RIP=ffffffff8b57584f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3492d8 CR3=00000000349d6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fd7c488 00007feb5fd7c480 00007feb5fd7c478 00007feb5fd7c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb608dd100 00007feb5fd7c440 00007feb5fd70004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fd7c498 00007feb5fd7c490 00007feb5fd7c488 00007feb5fd7c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffc90006740000 RBX=ffff888107aa0000 RCX=ffffffff819addd7 RDX=1ffff11020f5424d
RSI=ffffffff8687019f RDI=0000000000000016 RBP=0000000000000080 RSP=ffffc900006b0eb8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000003
R12=0000000000000000 R13=dffffc0000000000 R14=ffff888107aa1268 R15=0000000000000000
RIP=ffffffff868701c7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f3802ed7d60 CR3=000000000df80000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f380237c6a3 00007f380237c6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd1c30cb60 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555cbb2675 000055555cbb18e0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555cb41056 000055555cb40d80
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040a11e403019a04 840011e803000484 0011e40302048400 11e00340020011de
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 011fffffffffffff 0411800408f78010 0006016ee828119c 000200040a11b003
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2811c40004508002 041880020811bc00 0811b4000a00040a 11e403019a048400
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 11e8030004840011 e4030204840011e0 0340020011de030a 40a080820011dc03
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00308880820011dc 0300108080820011 dc030894928d8808 0011d4030894928d
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85407635 RDI=ffffffff9ab80780 RBP=ffffffff9ab80740 RSP=ffffc9000385ead0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000006
R12=0000000000000000 R13=0000000000000064 R14=ffffffff9ab80740 R15=0000000000000000
RIP=ffffffff8540765f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f46c4dc26c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000400000012000 CR3=00000000269c4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c400f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c400f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c400f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c400f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c400f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c400f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c417c488 00007f46c417c480 00007f46c417c478 00007f46c417c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c4cdd100 00007f46c417c440 00007f46c417c458 00007f46c417c4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f46c417c498 00007f46c417c490 00007f46c417c488 00007f46c417c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000000b01c1 RBX=0000000000000003 RCX=ffffffff8b574469 RDX=0000000000000000
RSI=ffffffff8b6ced20 RDI=ffffffff8bd35780 RBP=ffffed1003b55488 RSP=ffffc900001a7e08
R8 =0000000000000001 R9 =ffffed100d526f85 R10=ffff88806a937c2b R11=0000000000000000
R12=0000000000000003 R13=ffff88801daaa440 R14=ffffffff90625610 R15=0000000000000000
RIP=ffffffff8b57584f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555591a60808 CR3=00000000349d6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fc0f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fd7c488 00007feb5fd7c480 00007feb5fd7c478 00007feb5fd7c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb608dd100 00007feb5fd7c440 00007feb5fd70004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007feb5fd7c498 00007feb5fd7c490 00007feb5fd7c488 00007feb5fd7c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000