last executing test programs:

2m56.972006857s ago: executing program 2 (id=1920):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x84)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRESDEC=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
chroot(&(0x7f0000000240)='./file0\x00')
syz_fuse_handle_req(r0, &(0x7f0000000900)="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", 0x2000, &(0x7f0000000440)={&(0x7f0000000340)={0x50, 0x0, 0x7f94, {0x7, 0x28, 0x4, 0x42800}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000006140)="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", 0x2000, &(0x7f0000000700)={&(0x7f00000002c0)={0x50, 0xffffffffffffff8c, 0x0, {0x7, 0x28, 0x0, 0x2, 0x81, 0x0, 0x0, 0xfffffffc}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2m56.971249774s ago: executing program 2 (id=1922):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r3 = socket$kcm(0x10, 0x3, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600), 0x0)
syz_80211_join_ibss(&(0x7f0000000100)='wlan1\x00', &(0x7f0000000180)=@default_ibss_ssid, 0x6, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x48, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x7ff, 0x78}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x48}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})

2m56.904664259s ago: executing program 2 (id=1923):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c010000100013070000000000000000fe8000000000000000000000000000aafe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc010000000000000000000000d00921b8db51c517000000fe8000000000000000000000000000aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000004c001400636d616328616573290000000000000000000000000000000000000000000000000000000000000000000000000000000000003c00"/238], 0x13c}}, 0x0)
r3 = socket$inet(0x2, 0x3, 0x6)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x3fffff)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r1, 0xf507, 0x0)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000000)={{0x2, 0x4e23, @broadcast}, {0x1}, 0x6f631b4376e74f1e, {0x2, 0x0, @rand_addr=0x64010100}, 'gretap0\x00'})
read(r3, &(0x7f0000000cc0)=""/232, 0xfffffffffffffeb1)
sendmsg$RDMA_NLDEV_CMD_GET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="1000000001140506"], 0x10}, 0x1, 0x0, 0x0, 0x4004044}, 0x40000)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="e000000010000c0927bd7000ffdbdf25b51a412f6572656e74726f70795f726e67000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000048dc76a5a00000faff0000000000000000000000000000000000000000000000000000000000000000000095bb743835c7ee490000000000000000000000000000000000c9a3b1b11d7d77e700000000000000000000000000000000000000000000000020000000200000"], 0xe0}}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xd}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x12}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x78}, 0x1, 0x0, 0x0, 0x840}, 0x0)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000000)={0xb, 0x201, 0xe694, 0x10000}, &(0x7f0000000080)=0x10)
madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0xd)
sendmsg$nl_crypto(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)
r6 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000003c0)={'gre0\x00', &(0x7f0000000640)={'gretap0\x00', <r7=>0x0, 0x7800, 0x20, 0xf6b6, 0x4, {{0x2f, 0x4, 0x0, 0x8, 0xbc, 0x66, 0x0, 0xc0, 0x4, 0x0, @broadcast, @empty, {[@timestamp_addr={0x44, 0x4c, 0x23, 0x1, 0x6, [{@loopback, 0xe379}, {@multicast1, 0x671}, {@loopback, 0x3}, {@rand_addr=0x64010102, 0x1000}, {@multicast2, 0x63f}, {@dev={0xac, 0x14, 0x14, 0x3a}, 0xc}, {@local, 0xfff}, {@dev={0xac, 0x14, 0x14, 0x14}, 0xa}, {@empty, 0x3ff}]}, @end, @ra={0x94, 0x4, 0x1}, @end, @generic={0x94, 0xf, "e12d9e40e0a00d534f9e9a8874"}, @end, @cipso={0x86, 0x17, 0x1, [{0x0, 0x4, "e1f8"}, {0x5, 0xd, "e57b990158407a5dc331fb"}]}, @timestamp_prespec={0x44, 0x2c, 0xff, 0x3, 0x4, [{@remote, 0xc}, {@local, 0x1}, {@private=0xa010102, 0x1}, {@multicast2, 0xfffffff8}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1}]}]}}}}})
sendmsg$DCCPDIAG_GETSOCK(r6, &(0x7f0000000780)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000740)={&(0x7f0000000840)={0x348, 0x13, 0x200, 0x70bd28, 0x25dfdbfd, {0x1, 0x3, 0x3, 0x7, {0x4e20, 0x4e21, [0x6, 0x4d16, 0x9, 0x6], [0xf9, 0xfffffff2, 0x3, 0x7], r7, [0xffffff26, 0x534]}}, [@INET_DIAG_REQ_BYTECODE={0x7a, 0x1, "310940b659e6d9d70a26cccb1b937b8575a9b78e6d5c4ae514e277b19499ec4bf0e783623ef237a8c6a7413c273dfea306928cbf65204b3bfc43791b37adf61ebe1169a5b19b908692bf0674fa37e963eb9efeb930ecf409dddcddd9268b9210879566a82e38dd017cfc7c5e28b4cfdac135204d4efd"}, @INET_DIAG_REQ_BYTECODE={0xf1, 0x1, "6ede0129649787443811db1f672eede1d2740aff6fe1d6b647be06d1471c7d9013ef862ef078c3e8d54e661d5cee34be9dfceb0b36fa6b6423a8632b0dbdc9dfbcb52b3ff76d3377054ad89c8ed8f3999bf6c54c1a883dfb90a2aacf2264806e04debbe255cb8c53921e90ff43799cb63b4d3bbfdedd6fade6c29dcc61c72d273f834d205489e18f3f9dd172aeb7545e5730b61876a8b72d555c6684960378f9acaad1033f72cb5ab587720d868345f4f38ea60204b07fa8c444a86ed9186a9344bed9983df21d0d2d814b4c583618e2a3445947a1da7179325149176a008442afd549a2debf3c4f3d9132dc36"}, @INET_DIAG_REQ_BYTECODE={0x75, 0x1, "560c5f0afb9cd64251d21c80bd4d234012360745f13bfa87942f277081d145fb81c05972af2c5094833675a21b518678515a5279cb2fe2595b8c5a0f19a44a37dc3b4d473fdaefb16d89f08496d04f4314fff3aeed8c84d2af725639e62728806f535fedb3fede2b053bceb994a7ef4564"}, @INET_DIAG_REQ_BYTECODE={0x7b, 0x1, "d3567aa801dd0db5fd64d237c32b251b876b4e625f184f3ca57b393ba0a1a9cc910bd9d1f5685238f02e36dca0b0e71cd92af99b13c3dec2d4306261bd5d0c0e8ad9c67ca73a2bd0229967c461863d8d3eda486e23f5df3cdbbdfb9e1944db2dd89e1ce107cb419ae7b044244fb14b436a631c511469a1"}, @INET_DIAG_REQ_BYTECODE={0x95, 0x1, "cb600b29533e36cb9fd52a5abf4c964eaaac887646beae8f040edb7d623d90c148eed47f08f91358a8fa4cc647a4c3c7aa12863584d7a942a82ec864ba9329ff244abcd726423ce99c533be963ef590caab723ec3638693436a5365bbe72a1f57577b7f12d69064fad4b9f2a044a2041fdeabe409e7b9f44a7c42951e407daa326c5d9fe923329af8c08b1efb545bd5844"}]}, 0x348}, 0x1, 0x0, 0x0, 0x12}, 0x20000000)

2m56.754665393s ago: executing program 2 (id=1924):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = openat$ptp1(0xffffffffffffff9c, &(0x7f00000009c0), 0x101000, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(r0, 0xc0403d08, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
r2 = socket(0x2a, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6_vti0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r4, {0xfffd, 0x10}, {0x1, 0xfff1}, {0xfff2, 0xa}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x14004804}, 0x4000860)
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0xffffff3f, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000180)={0x17a, @time={0x5, 0x1000000}, 0x0, {0x0, 0x5}})
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_pidfd_open(r5, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e20, 0x3000002, @mcast2, 0x1}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x11, &(0x7f0000000000)=0x5, 0x4)
ioctl$EXT4_IOC_MIGRATE(r6, 0xff08)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r7, 0x400448e0, &(0x7f0000000040)="00000000ea6ea24cf90910660a3f5f55436a0943b8186fbd30ba76977916ef66b77bc7173300039f7512cb3ea12075a192a21977120801b1810cb159960ce50940ff92a22ea724cde41443b4bc966f673cea70fab6ba591deb8db979dea77af08dafbce9db254daabb6b285018fc64a5c88dd0fd62a7bc44f9e59457ce431a4fcbb1b91cd54773c1597ea6f3a654c1d98d8cff75b447f9497cc0466a10836d695dbe69f2b4")

2m56.67891976s ago: executing program 2 (id=1925):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x803400, 0x0)
setpgid(0x0, r0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0) (fail_nth: 1)

2m56.474332771s ago: executing program 2 (id=1926):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x803400, 0x0)
syz_emit_ethernet(0x1e, &(0x7f0000000140)={@local, @local, @void, {@can={0xc, {{0x0, 0x1, 0x0, 0x1}, 0x8, 0x2, 0x0, 0x0, "ffd5edd901565b76"}}}}, 0x0)
setpgid(0x0, r0)
syz_open_procfs$userns(r0, &(0x7f00000000c0))
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)

2m41.454398267s ago: executing program 32 (id=1926):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x803400, 0x0)
syz_emit_ethernet(0x1e, &(0x7f0000000140)={@local, @local, @void, {@can={0xc, {{0x0, 0x1, 0x0, 0x1}, 0x8, 0x2, 0x0, 0x0, "ffd5edd901565b76"}}}}, 0x0)
setpgid(0x0, r0)
syz_open_procfs$userns(r0, &(0x7f00000000c0))
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)

1m52.784104366s ago: executing program 0 (id=2518):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)={0x38, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_PREV_BSSID={0xa, 0x4f, @from_mac}, @NL80211_ATTR_DISABLE_HT={0x4}]}, 0x38}}, 0x0)

1m52.76879327s ago: executing program 0 (id=2519):
r0 = syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000640)=ANY=[@ANYBLOB="12010000090000402505a8a440000102030109021b00010100000009040000020701010009050102"], 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000000)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x2000000)

1m51.554138682s ago: executing program 0 (id=2535):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
writev(r0, &(0x7f0000000600)=[{&(0x7f0000000080)="2e9b5b0007e03dd65193dfb6c575963f86dd6067", 0x14}, {&(0x7f0000000100)="37a8a6c51ef711513a5554633f6ecf251242", 0x12}, {&(0x7f0000000200)="4d0ff6044df96744927dc21a1af29aec", 0x10}], 0x3)

1m51.464237323s ago: executing program 0 (id=2536):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x1e, 0x0, &(0x7f00000002c0))
r1 = socket(0x10, 0x803, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
clock_gettime(0x0, &(0x7f0000000000)={<r6=>0x0, <r7=>0x0})
setitimer(0x2, &(0x7f00000000c0)={{0x77359400}, {r6, r7/1000+10000}}, &(0x7f0000000180))
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x6}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newtfilter={0xd4, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0xe, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0xa8, 0x2, [@TCA_U32_SEL={0x94, 0x5, {0x7, 0xef, 0x8, 0x8, 0x5, 0x9, 0x7, 0x0, [{0x1000, 0x4, 0x401, 0x6}, {0x8, 0x7, 0x1009, 0x5}, {0xfffffff9, 0x43, 0x7ffd, 0x5}, {0x7fde, 0x40, 0x51, 0x3ff}, {0x8, 0xb, 0x1, 0x5}, {0x6, 0x400004, 0x8, 0x8}, {0x8001, 0x0, 0x0, 0x6}, {0x1, 0x1800000, 0xa525}]}}, @TCA_U32_LINK={0x8, 0x3, 0x1000000}, @TCA_U32_CLASSID={0x8, 0x1, {0xa, 0xfff2}}]}}]}, 0xd4}, 0x1, 0x0, 0x0, 0x80}, 0x40)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)) (async)
getsockopt$sock_buf(r0, 0x1, 0x1e, 0x0, &(0x7f00000002c0)) (async)
socket(0x10, 0x803, 0x0) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0) (async)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
socket(0x400000000010, 0x3, 0x0) (async)
socket$unix(0x1, 0x5, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) (async)
clock_gettime(0x0, &(0x7f0000000000)) (async)
setitimer(0x2, &(0x7f00000000c0)={{0x77359400}, {r6, r7/1000+10000}}, &(0x7f0000000180)) (async)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x6}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newtfilter={0xd4, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0xe, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0xa8, 0x2, [@TCA_U32_SEL={0x94, 0x5, {0x7, 0xef, 0x8, 0x8, 0x5, 0x9, 0x7, 0x0, [{0x1000, 0x4, 0x401, 0x6}, {0x8, 0x7, 0x1009, 0x5}, {0xfffffff9, 0x43, 0x7ffd, 0x5}, {0x7fde, 0x40, 0x51, 0x3ff}, {0x8, 0xb, 0x1, 0x5}, {0x6, 0x400004, 0x8, 0x8}, {0x8001, 0x0, 0x0, 0x6}, {0x1, 0x1800000, 0xa525}]}}, @TCA_U32_LINK={0x8, 0x3, 0x1000000}, @TCA_U32_CLASSID={0x8, 0x1, {0xa, 0xfff2}}]}}]}, 0xd4}, 0x1, 0x0, 0x0, 0x80}, 0x40) (async)

1m51.384203073s ago: executing program 0 (id=2537):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x803400, 0x0)
setpgid(0x0, r0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)

1m51.295500314s ago: executing program 0 (id=2538):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000008000000000000000000910095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000c40), 0x12)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3ffffffffffffa)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000340)=0xffffffffffffffff, 0x4)
r6 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x8, 0x10112, r6, 0x23889000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000540)=@bpf_tracing={0x1a, 0x14, &(0x7f0000000140)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0xffff0ff5}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_idx_val={0x18, 0x4, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2}, @ldst={0x1, 0x3, 0x3, 0x2, 0x6, 0xfffffffffffffff8, 0xffffffffffffffff}, @map_fd={0x18, 0x8, 0x1, 0x0, r2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x7fffffff, 0xa5, &(0x7f0000000280)=""/165, 0x0, 0x43, '\x00', 0x0, 0x1c, r5, 0x8, &(0x7f0000000380)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x1, 0x6, 0xf9, 0x80000000}, 0x10, 0x456c, r0, 0x0, &(0x7f0000000500)=[r6], 0x0, 0x10, 0x76}, 0x94)
r7 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r0, r0, 0x2f, 0x0, @void}, 0x10)
r8 = getpid()
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040), 0x6)
bind$bt_hci(r9, &(0x7f0000000080)={0x1f, 0x4003, 0x3}, 0x6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
write$binfmt_elf64(r11, &(0x7f0000000580)=ANY=[], 0x78)
recvmmsg(r10, &(0x7f0000000500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/8, 0xc}}], 0x4b, 0x0, 0x0)
r12 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r12, &(0x7f0000000540)={0x0, 0x12, 0xfa00, {0x2, &(0x7f0000000080)={<r13=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r12, &(0x7f00000000c0)={0xe, 0x18, 0xfa00, @id_tos={0x0, r13, 0x0, 0x3, 0x4000}}, 0x20)
process_vm_readv(r8, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
kcmp(r8, 0xffffffffffffffff, 0x2, r0, r0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000240)={r7, 0x0, 0x0}, 0x10)

1m36.203345353s ago: executing program 33 (id=2538):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000008000000000000000000910095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000c40), 0x12)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3ffffffffffffa)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000340)=0xffffffffffffffff, 0x4)
r6 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x8, 0x10112, r6, 0x23889000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000540)=@bpf_tracing={0x1a, 0x14, &(0x7f0000000140)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0xffff0ff5}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_idx_val={0x18, 0x4, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2}, @ldst={0x1, 0x3, 0x3, 0x2, 0x6, 0xfffffffffffffff8, 0xffffffffffffffff}, @map_fd={0x18, 0x8, 0x1, 0x0, r2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x7fffffff, 0xa5, &(0x7f0000000280)=""/165, 0x0, 0x43, '\x00', 0x0, 0x1c, r5, 0x8, &(0x7f0000000380)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x1, 0x6, 0xf9, 0x80000000}, 0x10, 0x456c, r0, 0x0, &(0x7f0000000500)=[r6], 0x0, 0x10, 0x76}, 0x94)
r7 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r0, r0, 0x2f, 0x0, @void}, 0x10)
r8 = getpid()
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040), 0x6)
bind$bt_hci(r9, &(0x7f0000000080)={0x1f, 0x4003, 0x3}, 0x6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
write$binfmt_elf64(r11, &(0x7f0000000580)=ANY=[], 0x78)
recvmmsg(r10, &(0x7f0000000500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/8, 0xc}}], 0x4b, 0x0, 0x0)
r12 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r12, &(0x7f0000000540)={0x0, 0x12, 0xfa00, {0x2, &(0x7f0000000080)={<r13=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r12, &(0x7f00000000c0)={0xe, 0x18, 0xfa00, @id_tos={0x0, r13, 0x0, 0x3, 0x4000}}, 0x20)
process_vm_readv(r8, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
kcmp(r8, 0xffffffffffffffff, 0x2, r0, r0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000240)={r7, 0x0, 0x0}, 0x10)

56.455546567s ago: executing program 5 (id=3176):
r0 = socket$inet6(0x10, 0x2, 0x0)
syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000bfe000/0x400000)=nil)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000000)=[{0x40, 0x0, 0x7, 0xffeffffe}, {0x16}]}, 0x10)
sendto$inet6(r0, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)

56.403514799s ago: executing program 5 (id=3177):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000200)={0xa, 0x4e22, 0x2, @empty, 0x8}, 0x1c)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NBD_CMD_STATUS(r1, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x50, r2, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x6}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x29}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x3}]}, 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001140)=@base={0x5, 0x10001, 0x7fff, 0x202, 0x1}, 0x50)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x24, r5, 0x1, 0x70bd28, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xb, 0x1, @l2={'eth', 0x3a, 'lo\x00'}}]}]}, 0x24}}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000001780), 0x8, r3}, 0x38)
listen(r0, 0x204)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x33, &(0x7f0000000000)=0x1, 0x4)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto$inet6(r7, &(0x7f0000000400)="2ae0e710", 0x4, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
setsockopt$inet6_int(r7, 0x29, 0x31, &(0x7f00000000c0)=0x6, 0x4)
recvmmsg(r7, &(0x7f0000000d80), 0x4000000000001e9, 0x10162, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180), &(0x7f00000016c0))
connect$inet6(r6, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x2}, 0x1c)

56.380525359s ago: executing program 5 (id=3180):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) (fail_nth: 3)

55.982561364s ago: executing program 5 (id=3185):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x262)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)

55.791203098s ago: executing program 5 (id=3186):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x803400, 0x0)
setpgid(0x0, r0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0) (fail_nth: 3)

55.734002388s ago: executing program 5 (id=3188):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs(r0, &(0x7f00000001c0)='auxv\x00')

40.694651373s ago: executing program 34 (id=3188):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs(r0, &(0x7f00000001c0)='auxv\x00')

3.873004809s ago: executing program 1 (id=3889):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
r2 = open$dir(&(0x7f0000000180)='./file0\x00', 0x44040, 0x11b)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1f, 0x12, r2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@get={0x128, 0x13, 0x400, 0x70bd26, 0x25dfdbfb, {{'morus640-sse2\x00'}, '\x00', '\x00', 0x2600, 0x400}, [{0x8, 0x1, 0x1}, {0x8, 0x1, 0xeffffffc}, {0x8, 0x1, 0xfffffbfa}, {0x8, 0x1, 0xf}, {0x8}, {0x8, 0x1, 0x8000}, {0x8}, {0x8, 0x1, 0x82a7}, {0x8, 0x1, 0x7}]}, 0x128}, 0x1, 0x0, 0x0, 0x64000}, 0x4040)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e00000001300100000000000000000007374726565626f673531322d67656e65726963"], 0xe0}}, 0x0)
sendmsg$nl_crypto(r3, &(0x7f00000001c0)={0x0, 0x2, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x300, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x3, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xfffe}}}}}}, 0x0)

3.872755886s ago: executing program 1 (id=3890):
r0 = syz_open_dev$vim2m(&(0x7f0000000340), 0x7f, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000140)={0xf, 0x1, 0x3, "18e889d15b38429faa8ff62438eaed752e68f3a6d09382b392b049e33958b16c"}) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x8, 0x1, 0x13}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80) (async)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r1, 0xc0109428, &(0x7f0000000080)={0x1, 0x8}) (async, rerun: 32)
getsockopt$inet6_opts(r2, 0x29, 0x3a, 0x0, &(0x7f0000000340)) (rerun: 32)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r3, 0x80045017, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100)={0x0, 0x5}, 0x10, 0x0, r1, 0xffffffffffffffa1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23) (async, rerun: 32)
ioctl$HIDIOCGFLAG(0xffffffffffffffff, 0x8004480e, &(0x7f00000002c0)) (async, rerun: 32)
ioctl$SNDCTL_DSP_GETOSPACE(r3, 0x8010500c, &(0x7f00000003c0))

3.81199353s ago: executing program 1 (id=3891):
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r5)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="310300000000fcdbdf250900000008000300", @ANYRES32=r7], 0x24}}, 0x8)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x88, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_fw={{0x7}, {0x54, 0x2, [@TCA_FW_ACT={0x50, 0x4, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x3513, 0x6, 0xffffffffffffffff, 0xb6b9, 0x3}, 0x1}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x6, 0x8}}]}, 0x88}, 0x1, 0x0, 0x0, 0x80}, 0x24000880)
ioctl$FS_IOC_GETVERSION(r0, 0x5b23, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x4, 0x0, 0x6}, 0x21, [0x2, 0x78, 0x12, 0x9, 0x80, 0x2, 0x203, 0x0, 0x6, 0x48, 0x39cc1919, 0x4000009, 0x9, 0x5, 0xffff2d37, 0xffffffff, 0x6, 0x3, 0x0, 0x8001, 0x4, 0x3, 0x5, 0x3c5b, 0x1, 0x1000, 0x9, 0x200003, 0x15bb, 0x2, 0xe65f, 0x3, 0x7, 0x3, 0x7fff, 0x7, 0x80000000, 0xa72, 0x3, 0x7, 0x0, 0x71, 0x407, 0x5, 0x1, 0x5, 0x9, 0x3a, 0x7, 0x5, 0xfffffff6, 0xfffbffff, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x4, 0xaa0, 0x3, 0xa, 0x21, 0x40], [0x10000007, 0x6, 0x800, 0x8000, 0x10, 0xffeffff3, 0x8, 0x200c7, 0xf9, 0x10, 0x2bf, 0x6c9, 0xfff, 0xfffffffc, 0x5, 0x0, 0xd14, 0x5, 0x2f, 0xd, 0x4312, 0x78, 0xea4, 0x0, 0x4, 0x24, 0x8000, 0x9, 0x3fc, 0x403, 0x6, 0x1, 0xff, 0x5, 0x5, 0x5f31, 0x7f9, 0xce58, 0x2, 0x1, 0x9, 0x5, 0x6, 0x80000001, 0x800000d, 0x6, 0x2007, 0xd, 0x1, 0x2, 0xffff, 0x2, 0x7b, 0x9, 0x3, 0x3, 0x9, 0x1, 0xb, 0x6, 0x9, 0x48c93690, 0x42, 0xffff], [0x7, 0xf5fd, 0x0, 0x5, 0x4, 0x100, 0x8d2, 0x9, 0x800003, 0x7fff, 0x0, 0x5, 0xf, 0x4, 0x5, 0x20000005, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x4, 0x0, 0x3e7, 0xa, 0x5, 0x2, 0x2, 0x3, 0x8, 0x8, 0x6cfc, 0x5, 0x39, 0x800003, 0x200, 0x1, 0x3, 0x4e0a, 0x7, 0x1000, 0xa2, 0x7, 0x5, 0x10000005, 0x7, 0xac8, 0xffffffff, 0x2, 0x1000011, 0x7ff, 0xfffffff9, 0x0, 0x10000, 0xffff, 0x2b98, 0x6, 0x4, 0x80120000, 0xbe, 0x0, 0xa2ed, 0x2, 0x25], [0x9, 0xbb31, 0x7, 0xb, 0x5, 0x3, 0xa, 0x80002006, 0x0, 0x2, 0x7c, 0xc9, 0x3, 0x6, 0x8, 0x57b, 0x7, 0x10000, 0x6, 0x7ffd, 0xfffd, 0x4, 0x20002, 0x5, 0xe8a0556, 0x2, 0x287, 0x60a6, 0x6, 0x6, 0x3, 0x80000000, 0x5, 0x8, 0xce, 0xee1, 0x9, 0x179, 0x3, 0x7e, 0x0, 0x9600, 0x56d, 0x2, 0x1007, 0x40000006, 0x1, 0x0, 0x8, 0x8, 0x30b1d693, 0xa1f, 0x20c, 0x800007, 0x0, 0x3, 0x0, 0x4, 0x7, 0x2bf, 0x7fffffff, 0x200, 0xffff343f, 0x2]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

3.213280853s ago: executing program 1 (id=3898):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYRESDEC], 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000540)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, &(0x7f0000000040)={0x28, 0x4, 0x0, 0x0, &(0x7f0000002000/0x3000)=nil, 0x3000})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="110200000000000000800600"], 0x44}}, 0x0)
syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
ioctl$FS_IOC_GETVERSION(r1, 0xc0145b0d, &(0x7f0000000040))

1.233159229s ago: executing program 4 (id=3939):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x1, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x12002, 0x3348a}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_RSS_QUERY_EN={0xc, 0x7, {0x1, 0x5}}]}]}]}, 0x48}}, 0x0)
r2 = msgget$private(0x0, 0x0)
msgrcv(r2, 0x0, 0x0, 0xc44a81d1a42f846d, 0x0)
msgsnd(r2, &(0x7f00000003c0)={0x0, "dce8ca6d48d4bfc2c1858f83baa115c7595e57bafe98b253a819787a99dfa8b182f6ec3e1ccaf2820853d68934954a12dd08f7a309a00c99e6ab32767b0aea18fe6419db30aee16c81c49e665c7c774498158b447d7f75322e31b31f19f894ffada95af4ff1c74a26d82d3ec9995b4391a73dc8c831f6db826964c"}, 0x2, 0x800)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000200), 0x0, 0x0)
ppoll(&(0x7f0000000240)=[{r3, 0x200}], 0x1, 0x0, 0x0, 0x0)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r5 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r5, 0xc0884113, &(0x7f0000000240)={0x1, 0xfffffffd, 0x1, 0xfffffffffffffff9, 0x3ffffffff, 0x0, 0x1, 0x0, 0xfffffffffffffffd, 0x0, 0x2, 0x2})
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x34, 0x0, 0x1, 0x70bd2b, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5, 0x19, 0x1}]}, 0x34}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000020000103feffffff000000000a000000000000000400010008000a000008000005001e"], 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x4000850)
write$P9_RVERSION(r5, 0x0, 0xfffffeb5)

1.232941948s ago: executing program 3 (id=3940):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
prctl$PR_GET_TSC(0x19, &(0x7f00000001c0))
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
prctl$PR_GET_TSC(0x19, &(0x7f0000000140))
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001580)={{{@in6=@private1, @in6=@dev={0xfe, 0x80, '\x00', 0x2b}, 0x100, 0x0, 0x4e22, 0x0, 0x2, 0x0, 0x20, 0x11}, {0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x10, 0x9}, {}, 0x6, 0x0, 0x1}, {{@in=@loopback, 0x4d3, 0x33}, 0x0, @in=@loopback, 0x3507, 0x0, 0x2, 0xb7, 0x2, 0xfffffff9, 0x8}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@newqdisc={0x50, 0x24, 0x4, 0x70bd2c, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffe9}, {0x3, 0x8}, {0xfff3, 0x3}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x2e}, @qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_MEMORY_LIMIT={0x8, 0x9, 0x3}]}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x9}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000802}, 0x810)

1.133281107s ago: executing program 3 (id=3941):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0xffe, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c00000010000304000000000000000000007400", @ANYRES32=r2, @ANYBLOB="f3ffffff031201002c0012800b00010062726964676500001c0002800800050001000000060027000000000005002d00"], 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

1.133173122s ago: executing program 3 (id=3942):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0) (async)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
fcntl$setstatus(r0, 0x4, 0x42000) (async)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x181000, 0x60) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2400)

1.068137435s ago: executing program 3 (id=3943):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x101440, 0x0)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000200)={0x0, 0xaee2, 0x3c00, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x9546}, 0x1})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r4, 0x29, 0x1d, 0x0, &(0x7f00000001c0))
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x401, 0x0, 0x5, "0062ba7d82000000000000000000f7ffffff00"})
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
syz_usbip_server_init(0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000280)=0xd)
ioctl$EXT4_IOC_GETFSUUID(r5, 0x8008662c, &(0x7f0000000100))
read$midi(r6, 0x0, 0x0)

613.373653ms ago: executing program 6 (id=3947):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
unshare(0x4000000)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000240)="67400f07c40249af4b8bb9800000c00f3235010000000f300f20a366450f769e00000100440f20c03588001d00440f22c0460f01c9c4827d24c366bafc0cf0ff07ef87f345a57a43e16806a4", 0x4c}], 0x1, 0x7c, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0x0, 0x9, 0xf, 0x7, 0x0, 0x40, 0x7, 0x0, 0x2e, 0x19, 0xfc}, {0x5000, 0x2, 0xd, 0x2, 0x40, 0x7, 0x83, 0x6, 0x5, 0x6, 0x3}, {0x0, 0x4000, 0x8, 0x5, 0x1, 0x7, 0x6, 0x9, 0x0, 0xa7, 0x8, 0x81}, {0x6000, 0x10000, 0xa, 0x8, 0x3, 0x2, 0x1, 0xf8, 0x9, 0x9, 0xe, 0xf1}, {0x2000, 0xeeef0000, 0x4, 0x3, 0x15, 0x5, 0xab, 0xa0, 0x1, 0x83, 0xf7, 0x4}, {0x1000, 0xfffd3000, 0xa, 0x2, 0xb1, 0x8, 0x1, 0xa0, 0x80, 0x13, 0x1, 0x4}, {0x1000, 0x1, 0xc, 0x5, 0x0, 0x5, 0x4, 0x7d, 0x3, 0x5, 0xb, 0x70}, {0x0, 0x1, 0xc, 0x5, 0x7c, 0x7, 0x1, 0x7f, 0xff, 0xb, 0xf0, 0x9}, {0x1, 0x30}, {0x3000, 0x8}, 0x80000031, 0x0, 0x6000, 0x2024, 0x6, 0x0, 0x3000, [0x6800000000000000, 0x9, 0x60, 0x6]})
close_range(r0, 0xffffffffffffffff, 0x0)

483.242037ms ago: executing program 6 (id=3948):
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000280)={0x1, <r0=>0xffffffffffffffff, 'id1\x00'})
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x1, 0x301000)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000040)={0x201, 0xa, 0x2})
ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f0000000200)=@overlay={0x1, 0x8, 0x4, 0x4000, 0x9, {}, {0x2, 0xc, 0x8, 0x9, 0x1, 0x2a, "60fd6501"}, 0x9, 0x3, {}, 0x3})
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r3, 0x29, 0x48, 0x0, &(0x7f00007d0000))
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000001c0)={0x4000000, 0x80000001, 0x0, 'queue0\x00', 0x1c52})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x82)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000180)="26eba9fdb4cbab48929e1af151000000000000000500000000000100", 0x1c}], 0x1)

483.01211ms ago: executing program 3 (id=3949):
r0 = syz_io_uring_complete(0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), &(0x7f0000000040)={0x0, 0xfb, 0xf1, 0x5, 0x2, "3963d32d86128c329cca3df7c6ab571d", "4f32a974c0213c3672b3b078c7017e9709f1ff8e78113421d79d177118d2af39a2bdd910afbaba2d772b839cb1657a06845cc45f738e45d77baefbc60fdcce1f3251441e7e92c6a9d99cb22bde2ee552ae40cffc1b242b9629465d004b9252efe829c07aee1d01054b51fa1df40529f2d828f15c44acab8899f761b97719cdfcc71e5969489b11e7c9471479efaf448af26d4f4d1e59d6b5a5322d39d5080af16be6ab2d428313d81ca1da2f18d38d05026b093800e8be52ad7cca349eae44142a0d389cc12f97b2eecb1af5e19743a261a29d7c209df32b72f95674"}, 0xf1, 0x3)
read$FUSE(r0, &(0x7f0000000480)={0x2020}, 0x2020)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = openat$comedi(0xffffff9c, &(0x7f0000000440)='/dev/comedi0\x00', 0x101001, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, &(0x7f0000000140)={'comedi_bond\x00', [0x3, 0x0, 0x7fffffff, 0x84e1, 0x2f, 0x2007, 0x7, 0x5, 0xffe, 0x1, 0x0, 0x8500, 0x1003, 0x4, 0x10001, 0xffff, 0xffffffa8, 0x7ffffffd, 0x1ff, 0x3, 0x10, 0x0, 0x8, 0xe2df, 0x746f, 0x0, 0x5, 0x3, 0x0, 0x5, 0x8049]})

482.392112ms ago: executing program 6 (id=3950):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r0, &(0x7f0000000200)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c)
connect$rose(r0, &(0x7f0000000180)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x1, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast]}, 0x1c)

428.592428ms ago: executing program 3 (id=3951):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call={0x85, 0x0, 0x0, 0xc2}, @exit], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x11}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x263, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0xc0, 0x5, [{{0x9, 0x4, 0x0, 0x8, 0x2, 0x3, 0x1, 0x3, 0x7, {0x9, 0x21, 0x1, 0x3, 0x1, {0x22, 0xe27}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x3, 0xff}}}}}]}}]}}, &(0x7f00000005c0)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x110, 0x0, 0x5, 0x9, 0xff, 0x8}, 0x48, &(0x7f0000000100)=ANY=[@ANYBLOB="050f48000512100b626490f898b9da1494c9f46bbee27d0a1003000300000000000a10ffff0bc32c25f1786910035adde5e9ea856ae5ba72a276402752000000000200c61cf100"], 0x8, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x449}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x3001}}, {0xd7, &(0x7f00000002c0)=@string={0xd7, 0x3, "f639fb56c0f8836331188eb2b2ee2833b791c917260ded5dabd255a9c94eff569bab1f10236919ca17fa618e82e6aec9af2f921ed6609fd75f28c648833c2ea68c680220f542141436f770edd7f8ad11e2e9805bab0fb80426ba3f56603669a70e63f7478ab4f4e55a969e5a002edbdf54d2234624e6c11ca8dbbb0d6e7d480c37b69ca68d6d99580c568b580c9e62cdecfd2534dcf86ac05b60f2e06838a432f4228201300926b4e8a0ef66cc402550b3ce698f0bc0fae620c5a136622f47de2cea90f2958a993e6e1b5087d2f068362d8b2ce391"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x807}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x439}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x3c0a}}, {0x4, &(0x7f0000000480)=@lang_id={0x4, 0x3, 0x340a}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x81d}}]})
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="50000000090601020000000000000000030000000900020073797a31000000000500010007000000280007800c00018008000140e00000010c00148008000140ac1414bb0c000280"], 0x50}}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="b4000000000000007910480000000000610418000000000095000000", @ANYRESHEX=r0], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x1, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)

424.465891ms ago: executing program 6 (id=3952):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
writev(r0, &(0x7f0000000600)=[{&(0x7f0000000080)="2e9b5b0007e03dd65193dfb6c575963f86dd6067", 0x14}, {&(0x7f00000001c0)="b700001806005abeef4ba0d5984462732834d1", 0x13}, {&(0x7f0000000100)="37a8a6c51ef711513a5554633f6ecf251242", 0x12}, {&(0x7f0000000200)="4d0ff6044df96744927dc21a1af29aecbac549f3a1", 0x15}], 0x4) (fail_nth: 3)

373.483511ms ago: executing program 4 (id=3953):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x4000000, 0x1, 0x0, 'queue0\x00', 0x1c52})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x82)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="21eba9fdb4cbab48929e1af151000000000000000500000000000100", 0x1c}], 0x1)

262.120062ms ago: executing program 4 (id=3954):
r0 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0, 0x2f, 0x80, 0x94, 0x9, 0x10, @loopback, @mcast1, 0x7800, 0x80, 0x1, 0x4}})
sendmsg$kcm(r0, &(0x7f0000001600)={&(0x7f0000000180)=@xdp={0x2c, 0x8, r1, 0x37}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000200)="5834c94935f42c0a313dab6718d535a107e3b9c55acfdd9d268d42621bb97bfaf3d2ca5eee9360b2e5dd2fe65e4f53d402458c9f8218b5a6fe25be9fc2362cfce31a802738a4e0859dcc83ffac4b6faed2b4157120d7dbfd5c1b7c844bc7785eca965d3622ec6ce0d204bd0bb839c3b93f4ae5317fbc527b330d9ad7f31b19130a5944cd34f91861f9d934a878812e237cad", 0x92}], 0x1, &(0x7f0000000300)=[{0x98, 0x118, 0x6, "28df6e6bf846b9b58cb0750446ec2e4d3a20a6718789262ce5dd74fbbf9b0248ae16775ba6cf2fcb9da9b9595b22a9816a6ea261a1a421f79c5b3646b92c74633424cd54f32872dc09181c77d8b0dc048b600226e0e87a46659be469eb5a6d89f80047fa6f15399f6505f8355e1a8fefb1dc992a98bf8822a18592e47ba8ee86ab600cc29732"}, {0x60, 0x112, 0x7, "e050297fa00c32ebc6cb1fe5c765c7b3ab5c532dd257ef61d08113c0fba18b42e0456a08aa68d2c55e3cdb061f89b0e1c8cfb66771fb86471d8437adaef770001396c33a9261d92db99084b8"}, {0x70, 0x10f, 0x800, "9afa08a10e275890d2022e70161e3683b5677be5f32988c6f73c9fd46c0539771624b99809b1c019fd8c49ead1080d6339d03f490e5421b83604f32c55dc7f27f5d6329119fc469b9b5763d5173633a3aef8f6fb63e0490936298bbcb4"}, {0x48, 0x117, 0xcd, "9e3a71c1675d7e09cffddae17e23182dc775b151a427e9d1423ab9abde7e59512e14b051394104965c844aafe2ae484f28e300"}, {0xa8, 0x6, 0x100, "8323e58d21c8a5bd78de21aec81716ca8a440d51b7d696f46f37dfc65a481fca36db6753703bb939ec20cec03ddf751e9b140fb43e9e95dcf79ce7431ef4bf51e9ac887bc141d9236daac69ac967726bf4e660222826c18c1296c06a16b0b11a31bff99a4e9291ce5cc0b8a86344535574ed8256a8baffbb2082ea7a913f983698ac5210f443e136d331a03de3d02a1fe494e9"}, {0x1010, 0x10a, 0x4, "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"}, {0x68, 0x88, 0x6, "88a645f2fdb3007a930da38166154a105655dc7980c6dfee8be9a1aa87dc482d321fef54264ce8731bdd8c56e18ebe71794e9aea9be46aa381f583320996b583dcdadaf596f246dd67448faa605e3f1d752946f805f0"}], 0x12d0}, 0x404c004)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x581, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x4d014}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_NUM_PEER_NOTIF={0x5, 0x10, 0x7}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x22004002}, 0x4040800)

262.018449ms ago: executing program 4 (id=3955):
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x0, 0x4})
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
add_key(&(0x7f0000000140)='encrypted\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
ptrace(0x11, r0)

203.35125ms ago: executing program 6 (id=3956):
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000180)={'#! ', './file1', [{0x20, '..'}]}, 0xe)
read$alg(0xffffffffffffffff, &(0x7f0000001840)=""/4096, 0x1000)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)={0x54, 0x2, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x4}, [@IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x2e}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x54}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000050) (fail_nth: 5)

202.854267ms ago: executing program 1 (id=3957):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) (async)
r1 = socket$kcm(0x10, 0x2, 0x0)
socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_team\x00', <r3=>0x0})
sendto$packet(r2, 0x0, 0x0, 0x240458d1, &(0x7f0000000200)={0x11, 0x88a8, r3, 0x1, 0x85, 0x6, @broadcast}, 0x14)
sendmsg$kcm(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000400)="d8000000100081046881f782db44b904021d080b01000000e8fe55a11800150007000000000000120800040043430000a80016000a0001407c6f94007134cf6ee08000a0e408e8a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3adfe7c9f8775730d0080000000000000b57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5588a63644caf1ce1bd6c769ad809d52a9ecbee0000000000000000a48156a65908145da1062ff2b44ac6a5", 0xd8}], 0x1}, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) (async)
mount(&(0x7f0000000000)=@rnullb, 0x0, 0x0, 0x200000, 0x0) (async)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58) (async)
r5 = accept(r4, 0x0, 0x0) (async)
io_setup(0xfd, &(0x7f0000000080)=<r6=>0x0)
io_pgetevents(r6, 0x0, 0x24, 0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380), 0x8}) (async)
r7 = socket$xdp(0x2c, 0x3, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r8=>0x0}) (async)
getresgid(&(0x7f0000000280)=<r9=>0x0, &(0x7f00000002c0), &(0x7f0000000300))
mount$9p_tcp(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', &(0x7f0000000240), 0x10000, &(0x7f0000000340)=ANY=[@ANYBLOB="7472616e733d7463702c706f72743d30ff07000000000000303ae230303030b46532322c64666c746769", @ANYRESHEX=r9, @ANYBLOB=',obj_role=\x00,dont_appraise,dont_appraise,\x00']) (async)
setsockopt$XDP_TX_RING(r7, 0x11b, 0x3, &(0x7f0000000440)=0x400, 0x4) (async)
bind$xdp(r7, &(0x7f0000000100)={0x2c, 0x1, r8, 0x1000000, r5}, 0x10) (async)
syz_emit_ethernet(0x52, &(0x7f0000000740)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd608a37050063ea3dff055b462800000000000000000000bbfe8000000000000000000000000000aa840000070000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)

202.638494ms ago: executing program 4 (id=3958):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x0, 0x400000}, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000000240)={0x10, 0x0, 0xa03, 0x2}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x810000}, 0xc)
r5 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc)
r6 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r6, &(0x7f0000000280)={0x10, 0x0, 0x0, 0x4140045e}, 0xc)
r7 = socket$netlink(0x10, 0x3, 0x2)
bind$netlink(r7, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x22ffffffff}, 0xc)
r8 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r8, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x400}, 0xc)
r9 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r9, &(0x7f0000000200)={0x10, 0x0, 0x25dfdbff, 0x200000}, 0xc)
r10 = socket$netlink(0x10, 0x3, 0x8)
bind$netlink(r10, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x22ffffffff}, 0xc)
r11 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r11, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x200}, 0xc)
r12 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r12, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc)
r13 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r13, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfe, 0x100000}, 0xc)
bind$netlink(r1, &(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000}, 0xc)
r14 = socket$netlink(0x10, 0x3, 0x4)
writev(r14, &(0x7f0000000100)=[{&(0x7f0000000000)="581f00001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1)

141.72698ms ago: executing program 4 (id=3959):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r0}, &(0x7f0000000840), &(0x7f0000000880)=r1}, 0x20)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r1, r3, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000340)={@local, @local, @val={@val={0x88a8, 0x0, 0x0, 0x2}, {0x8100, 0x3, 0x0, 0x4}}, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x3, 0x28, 0xfffc, 0x0, 0x9, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0x8002, 0x0, 0xfffc}}}}}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@ipv4_newroute={0x24, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x25dfdbfe, {0x2, 0x0, 0x10, 0x0, 0xfd, 0x4, 0xfe, 0x2, 0x20000000}, [@RTA_NH_ID={0x8, 0x1e, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4a044}, 0x4010)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000780), 0x20000, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000640)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x2c, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x3}, @NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0xe0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_X86_SETUP_MCE(r6, 0x7040, 0x0)
sendmsg$rds(r5, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x4e22, @private=0xa010101}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000040)=""/48, 0x30}, {&(0x7f00000003c0)=""/249, 0xf9}, {&(0x7f00000002c0)=""/111, 0x6f}], 0x3, 0x0, 0x0, 0x8044}, 0x200008c0)
sendmsg$rds(r5, &(0x7f0000000580)={&(0x7f00000005c0)={0x2, 0x4, @rand_addr=0x64010101}, 0x10, 0x0, 0x0, &(0x7f0000003a80)=[@rdma_args={0x48, 0x114, 0x1, {{0x0, 0x2}, {0x0}, &(0x7f0000003a00)=[{&(0x7f00000016c0)=""/96, 0x60}], 0x1, 0x39, 0x2}}], 0x48}, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
r8 = socket(0x2c, 0x80002, 0x3)
sendmsg(r8, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000040)="24000000180003041dfffd946f610500020100000005fe060c10880008000f00fff3c00e", 0x24}], 0x1}, 0x0)
r9 = socket(0x10, 0x2, 0x0)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r10, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newsa={0x15c, 0x10, 0x1, 0x0, 0x25dfdbfd, {{@in6=@private2, @in6=@empty, 0x4000, 0x0, 0x3, 0x3, 0x0, 0x20}, {@in=@broadcast, 0x0, 0x33}, @in6=@mcast2, {0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x4}, {}, {}, 0x0, 0x0, 0xa, 0x1}, [@extra_flags={0x8, 0x18, 0x9e4}, @algo_auth={0x63, 0x1, {{'sha256-ce\x00'}, 0xd8, "eb7706a9637ef7af3ed95b65d694474888f6f9c230b79f20d02bdc"}}]}, 0x15c}}, 0x20000000)
sendmsg$nl_route(r9, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="540000002000010000000000000000000200200003000000000000001400110076657468305f6d616376746170000000080002"], 0x54}}, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=@ipv6_deladdr={0x2c, 0x15, 0x1, 0x70bd26, 0x25dfdbfe, {0xa, 0xa9, 0x20, 0xc8}, [@IFA_ADDRESS={0x14, 0x1, @dev={0xfe, 0x80, '\x00', 0xe}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80d5}, 0x10)

141.611653ms ago: executing program 6 (id=3960):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000200)={{0x12, 0x1, 0x0, 0xdc, 0x7a, 0x22, 0x40, 0xac8, 0x321, 0xa1c9, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x68, 0x20, 0x0, 0x63, 0x74, 0x11}}]}}]}}, 0x0)
ioctl$EVIOCRMFF(r0, 0x83c0550b, 0x0) (fail_nth: 5)

0s ago: executing program 1 (id=3961):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x170, 0x24, 0xd0f, 0x70bd2a, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xa}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x140, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "52087def75c736f85cc7d27338360e8cb966058f66908611a2da3e15d87ea4bbea3d646bddcbf88d74a8f9e560e73cc92e50a1e1eb696bc28149a6f97bca767db6d5a2e4a0ce4e1f337f52af8d065ab3903bf929f30662e91d6466b050411964902e6bfd3d89271fd28b48677d5cf2caefd8a40abbe65daabf39f028156294855a66954d2349461e5b3fdf380433eb7182203d89bd1637c99109d611ac6ddd1f8bd70df15be1196d73cf82360c81beb73bd89d4e22511b72fa9373f5ff75156b83de4ba43f4325cb81ad4e1ebabd12279a1c2cb16d9b64ac46472168b729780d5697663cde109a2ea16079fdfb016066bd7f663500"}, @TCA_GRED_PARMS={0x38, 0x1, {0x1, 0x6, 0x37, 0xa, 0x80000001, 0xb, 0x6, 0xbfffffff, 0x2, 0x0, 0x14, 0x9, 0x8, 0x6, 0x8bc, 0x6}}]}}]}, 0x170}}, 0x0) (fail_nth: 5)

kernel console output (not intermixed with test programs):

IG_RAX: 0000000000000010
[  358.881044][T16300] RAX: ffffffffffffffda RBX: 00007fe32a1e6090 RCX: 00007fe329f8f749
[  358.881051][T16300] RDX: 0000200000000040 RSI: 00000000404c4701 RDI: 000000000000000c
[  358.881057][T16300] RBP: 00007fe32a013f91 R08: 0000000000000000 R09: 0000000000000000
[  358.881063][T16300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  358.881070][T16300] R13: 00007fe32a1e6128 R14: 00007fe32a1e6090 R15: 00007fff5aec3d98
[  358.881083][T16300]  </TASK>
[  358.881095][T16300] kobject: kobject_add_internal failed for gsmtty1 with -EEXIST, don't try to register things with the same name in the same directory.
[  358.901354][T16302] syzkaller0: left promiscuous mode
[  359.011738][T16302] syzkaller0: left allmulticast mode
[  359.014111][T16302] FAULT_INJECTION: forcing a failure.
[  359.014111][T16302] name failslab, interval 1, probability 0, space 0, times 0
[  359.020971][T16302] CPU: 1 UID: 0 PID: 16302 Comm: syz.6.3719 Not tainted syzkaller #0 PREEMPT(full) 
[  359.020994][T16302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.021006][T16302] Call Trace:
[  359.021012][T16302]  <TASK>
[  359.021020][T16302]  dump_stack_lvl+0x16c/0x1f0
[  359.021041][T16302]  should_fail_ex+0x512/0x640
[  359.021066][T16302]  should_failslab+0xc2/0x120
[  359.021086][T16302]  kmem_cache_alloc_node_noprof+0x78/0x770
[  359.021111][T16302]  ? __alloc_skb+0x2b2/0x380
[  359.021139][T16302]  ? __alloc_skb+0x2b2/0x380
[  359.021158][T16302]  __alloc_skb+0x2b2/0x380
[  359.021178][T16302]  ? __pfx___alloc_skb+0x10/0x10
[  359.021203][T16302]  ? if_nlmsg_size+0x475/0xaf0
[  359.021237][T16302]  rtmsg_ifinfo_build_skb+0x81/0x280
[  359.021269][T16302]  rtmsg_ifinfo+0x9f/0x1a0
[  359.021289][T16302]  __dev_notify_flags+0x24c/0x2e0
[  359.021312][T16302]  ? __pfx___dev_notify_flags+0x10/0x10
[  359.021332][T16302]  ? __dev_change_flags+0x3d5/0x720
[  359.021356][T16302]  ? __pfx___dev_change_flags+0x10/0x10
[  359.021386][T16302]  netif_change_flags+0x108/0x160
[  359.021412][T16302]  dev_change_flags+0xba/0x250
[  359.021439][T16302]  devinet_ioctl+0x11d5/0x1f50
[  359.021462][T16302]  ? __pfx_devinet_ioctl+0x10/0x10
[  359.021480][T16302]  ? _copy_from_user+0x59/0xd0
[  359.021505][T16302]  inet_ioctl+0x3a7/0x3f0
[  359.021524][T16302]  ? __pfx_inet_ioctl+0x10/0x10
[  359.021559][T16302]  ? tomoyo_path_number_perm+0x18d/0x580
[  359.021584][T16302]  sock_do_ioctl+0x118/0x280
[  359.021603][T16302]  ? __pfx_sock_do_ioctl+0x10/0x10
[  359.021627][T16302]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  359.021651][T16302]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  359.021677][T16302]  sock_ioctl+0x227/0x6b0
[  359.021697][T16302]  ? __pfx_sock_ioctl+0x10/0x10
[  359.021711][T16302]  ? hook_file_ioctl_common+0x145/0x410
[  359.021741][T16302]  ? selinux_file_ioctl+0x180/0x270
[  359.021758][T16302]  ? selinux_file_ioctl+0xb4/0x270
[  359.021779][T16302]  ? __pfx_sock_ioctl+0x10/0x10
[  359.021800][T16302]  __x64_sys_ioctl+0x18e/0x210
[  359.021827][T16302]  do_syscall_64+0xcd/0xfa0
[  359.021845][T16302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.021862][T16302] RIP: 0033:0x7f158c58f749
[  359.021876][T16302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.021891][T16302] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  359.021907][T16302] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  359.021919][T16302] RDX: 0000200000002280 RSI: 0000000000008914 RDI: 0000000000000006
[  359.021929][T16302] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  359.021939][T16302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.021949][T16302] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  359.021975][T16302]  </TASK>
[  359.084187][T16305] FAULT_INJECTION: forcing a failure.
[  359.084187][T16305] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.094889][T16307] tmpfs: Bad value for 'mpol'
[  359.097288][T16305] CPU: 3 UID: 0 PID: 16305 Comm: syz.4.3720 Not tainted syzkaller #0 PREEMPT(full) 
[  359.097309][T16305] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.097319][T16305] Call Trace:
[  359.097325][T16305]  <TASK>
[  359.097332][T16305]  dump_stack_lvl+0x16c/0x1f0
[  359.097353][T16305]  should_fail_ex+0x512/0x640
[  359.097375][T16305]  _copy_to_user+0x32/0xd0
[  359.097398][T16305]  simple_read_from_buffer+0xcb/0x170
[  359.097424][T16305]  proc_fail_nth_read+0x197/0x240
[  359.097451][T16305]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.097472][T16305]  ? rw_verify_area+0xcf/0x6c0
[  359.097494][T16305]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.097513][T16305]  vfs_read+0x1e4/0xcf0
[  359.097531][T16305]  ? __pfx___mutex_lock+0x10/0x10
[  359.097548][T16305]  ? __pfx_vfs_read+0x10/0x10
[  359.097570][T16305]  ? __fget_files+0x20e/0x3c0
[  359.097594][T16305]  ksys_read+0x12a/0x250
[  359.097609][T16305]  ? __pfx_ksys_read+0x10/0x10
[  359.097630][T16305]  do_syscall_64+0xcd/0xfa0
[  359.097647][T16305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.097664][T16305] RIP: 0033:0x7fa91338e15c
[  359.097678][T16305] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  359.097693][T16305] RSP: 002b:00007fa914190030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  359.097709][T16305] RAX: ffffffffffffffda RBX: 00007fa9135e6090 RCX: 00007fa91338e15c
[  359.097719][T16305] RDX: 000000000000000f RSI: 00007fa9141900a0 RDI: 0000000000000004
[  359.097729][T16305] RBP: 00007fa914190090 R08: 0000000000000000 R09: 0000000000000000
[  359.097738][T16305] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  359.097748][T16305] R13: 00007fa9135e6128 R14: 00007fa9135e6090 R15: 00007fff0e5a9628
[  359.097772][T16305]  </TASK>
[  359.301188][T16318] FAULT_INJECTION: forcing a failure.
[  359.301188][T16318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.305036][T16318] CPU: 0 UID: 0 PID: 16318 Comm: syz.6.3725 Not tainted syzkaller #0 PREEMPT(full) 
[  359.305051][T16318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.305058][T16318] Call Trace:
[  359.305063][T16318]  <TASK>
[  359.305068][T16318]  dump_stack_lvl+0x16c/0x1f0
[  359.305082][T16318]  should_fail_ex+0x512/0x640
[  359.305097][T16318]  _copy_to_user+0x32/0xd0
[  359.305112][T16318]  simple_read_from_buffer+0xcb/0x170
[  359.305130][T16318]  proc_fail_nth_read+0x197/0x240
[  359.305144][T16318]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.305157][T16318]  ? rw_verify_area+0xcf/0x6c0
[  359.305172][T16318]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.305184][T16318]  vfs_read+0x1e4/0xcf0
[  359.305196][T16318]  ? __pfx___mutex_lock+0x10/0x10
[  359.305209][T16318]  ? __pfx_vfs_read+0x10/0x10
[  359.305222][T16318]  ? __fget_files+0x20e/0x3c0
[  359.305236][T16318]  ksys_read+0x12a/0x250
[  359.305246][T16318]  ? __pfx_ksys_read+0x10/0x10
[  359.305260][T16318]  do_syscall_64+0xcd/0xfa0
[  359.305271][T16318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.305282][T16318] RIP: 0033:0x7f158c58e15c
[  359.305291][T16318] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  359.305301][T16318] RSP: 002b:00007f158d424030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  359.305312][T16318] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58e15c
[  359.305319][T16318] RDX: 000000000000000f RSI: 00007f158d4240a0 RDI: 0000000000000006
[  359.305325][T16318] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  359.305331][T16318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.305337][T16318] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  359.305351][T16318]  </TASK>
[  359.360591][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.455353][T16321] FAULT_INJECTION: forcing a failure.
[  359.455353][T16321] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.461046][T16321] CPU: 1 UID: 0 PID: 16321 Comm: syz.6.3726 Not tainted syzkaller #0 PREEMPT(full) 
[  359.461067][T16321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.461078][T16321] Call Trace:
[  359.461085][T16321]  <TASK>
[  359.461091][T16321]  dump_stack_lvl+0x16c/0x1f0
[  359.461114][T16321]  should_fail_ex+0x512/0x640
[  359.461136][T16321]  _copy_from_iter+0x29f/0x1720
[  359.461160][T16321]  ? __alloc_skb+0x200/0x380
[  359.461182][T16321]  ? __pfx__copy_from_iter+0x10/0x10
[  359.461201][T16321]  ? netlink_autobind.isra.0+0x158/0x370
[  359.461234][T16321]  netlink_sendmsg+0x820/0xdd0
[  359.461262][T16321]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.461294][T16321]  ____sys_sendmsg+0xa98/0xc70
[  359.461313][T16321]  ? copy_msghdr_from_user+0x10a/0x160
[  359.461333][T16321]  ? __pfx_____sys_sendmsg+0x10/0x10
[  359.461361][T16321]  ___sys_sendmsg+0x134/0x1d0
[  359.461384][T16321]  ? __pfx____sys_sendmsg+0x10/0x10
[  359.461402][T16321]  ? __lock_acquire+0x622/0x1c90
[  359.461453][T16321]  __sys_sendmsg+0x16d/0x220
[  359.461475][T16321]  ? __pfx___sys_sendmsg+0x10/0x10
[  359.461513][T16321]  do_syscall_64+0xcd/0xfa0
[  359.461531][T16321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.461548][T16321] RIP: 0033:0x7f158c58f749
[  359.461562][T16321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.461576][T16321] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  359.461593][T16321] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  359.461603][T16321] RDX: 0000000000044000 RSI: 0000200000000240 RDI: 0000000000000003
[  359.461614][T16321] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  359.461623][T16321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.461632][T16321] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  359.461655][T16321]  </TASK>
[  359.704792][T16332] input: syz1 as /devices/virtual/input/input63
[  359.992922][T16360] FAULT_INJECTION: forcing a failure.
[  359.992922][T16360] name failslab, interval 1, probability 0, space 0, times 0
[  359.998382][T16360] CPU: 2 UID: 0 PID: 16360 Comm: syz.1.3741 Not tainted syzkaller #0 PREEMPT(full) 
[  359.998407][T16360] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.998418][T16360] Call Trace:
[  359.998424][T16360]  <TASK>
[  359.998432][T16360]  dump_stack_lvl+0x16c/0x1f0
[  359.998454][T16360]  should_fail_ex+0x512/0x640
[  359.998474][T16360]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  359.998501][T16360]  should_failslab+0xc2/0x120
[  359.998522][T16360]  kmem_cache_alloc_noprof+0x75/0x6e0
[  359.998547][T16360]  ? getname_kernel+0x52/0x370
[  359.998572][T16360]  ? getname_kernel+0x52/0x370
[  359.998592][T16360]  getname_kernel+0x52/0x370
[  359.998614][T16360]  kern_path+0x1d/0x50
[  359.998630][T16360]  bpf_uprobe_multi_link_attach+0x3f4/0x12e0
[  359.998656][T16360]  ? find_held_lock+0x2b/0x80
[  359.998683][T16360]  ? __pfx_bpf_uprobe_multi_link_attach+0x10/0x10
[  359.998707][T16360]  ? __fget_files+0x20e/0x3c0
[  359.998728][T16360]  ? fput+0x9b/0xd0
[  359.998746][T16360]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  359.998774][T16360]  __sys_bpf+0x3862/0x4980
[  359.998805][T16360]  ? __pfx___sys_bpf+0x10/0x10
[  359.998828][T16360]  ? find_held_lock+0x2b/0x80
[  359.998853][T16360]  ? find_held_lock+0x2b/0x80
[  359.998881][T16360]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  359.998914][T16360]  ? fput+0x9b/0xd0
[  359.998936][T16360]  ? ksys_write+0x1ac/0x250
[  359.998953][T16360]  ? __pfx_ksys_write+0x10/0x10
[  359.998973][T16360]  __x64_sys_bpf+0x78/0xc0
[  359.998988][T16360]  ? lockdep_hardirqs_on+0x7c/0x110
[  359.999005][T16360]  do_syscall_64+0xcd/0xfa0
[  359.999023][T16360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.999041][T16360] RIP: 0033:0x7f015fd8f749
[  359.999056][T16360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.999073][T16360] RSP: 002b:00007f0160cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  359.999090][T16360] RAX: ffffffffffffffda RBX: 00007f015ffe5fa0 RCX: 00007f015fd8f749
[  359.999101][T16360] RDX: 0000000000000040 RSI: 00002000000005c0 RDI: 000000000000001c
[  359.999111][T16360] RBP: 00007f0160cc8090 R08: 0000000000000000 R09: 0000000000000000
[  359.999120][T16360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.999130][T16360] R13: 00007f015ffe6038 R14: 00007f015ffe5fa0 R15: 00007fffdf4bf738
[  359.999154][T16360]  </TASK>
[  360.033369][T16358] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3730'.
[  360.166396][T16356] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3740'.
[  360.175732][T16356] input: syz1 as /devices/virtual/input/input64
[  360.330827][T16385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3750'.
[  360.341145][T16387] FAULT_INJECTION: forcing a failure.
[  360.341145][T16387] name failslab, interval 1, probability 0, space 0, times 0
[  360.347235][T16387] CPU: 3 UID: 0 PID: 16387 Comm: syz.3.3749 Not tainted syzkaller #0 PREEMPT(full) 
[  360.347259][T16387] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  360.347269][T16387] Call Trace:
[  360.347275][T16387]  <TASK>
[  360.347282][T16387]  dump_stack_lvl+0x16c/0x1f0
[  360.347299][T16387]  should_fail_ex+0x512/0x640
[  360.347312][T16387]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  360.347329][T16387]  should_failslab+0xc2/0x120
[  360.347342][T16387]  kmem_cache_alloc_noprof+0x75/0x6e0
[  360.347358][T16387]  ? mas_preallocate+0xe6a/0x11f0
[  360.347372][T16387]  ? mas_preallocate+0xe6a/0x11f0
[  360.347382][T16387]  mas_preallocate+0xe6a/0x11f0
[  360.347395][T16387]  ? __pfx_mas_preallocate+0x10/0x10
[  360.347409][T16387]  ? __pfx_mas_next_range+0x10/0x10
[  360.347425][T16387]  expand_downwards+0x314/0xeb0
[  360.347443][T16387]  ? find_vma_prev+0xd3/0x150
[  360.347456][T16387]  ? __pfx_expand_downwards+0x10/0x10
[  360.347471][T16387]  ? __pfx_find_vma_prev+0x10/0x10
[  360.347486][T16387]  ? __pfx_down_write_killable+0x10/0x10
[  360.347499][T16387]  ? rcu_is_watching+0x12/0xc0
[  360.347516][T16387]  expand_stack+0x232/0x420
[  360.347528][T16387]  ? __pfx_expand_stack+0x10/0x10
[  360.347540][T16387]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  360.347557][T16387]  __access_remote_vm+0x96c/0xaa0
[  360.347571][T16387]  ? do_raw_spin_lock+0x12c/0x2b0
[  360.347583][T16387]  ? __pfx___access_remote_vm+0x10/0x10
[  360.347598][T16387]  proc_pid_cmdline_read+0x4de/0x8e0
[  360.347613][T16387]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  360.347627][T16387]  ? rw_verify_area+0xcf/0x6c0
[  360.347643][T16387]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  360.347655][T16387]  vfs_readv+0x5c1/0x8b0
[  360.347673][T16387]  ? __pfx_vfs_readv+0x10/0x10
[  360.347689][T16387]  ? find_held_lock+0x2b/0x80
[  360.347709][T16387]  ? __fget_files+0x20e/0x3c0
[  360.347724][T16387]  ? do_preadv+0x1a6/0x270
[  360.347738][T16387]  do_preadv+0x1a6/0x270
[  360.347754][T16387]  ? __pfx_do_preadv+0x10/0x10
[  360.347773][T16387]  do_syscall_64+0xcd/0xfa0
[  360.347784][T16387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.347795][T16387] RIP: 0033:0x7fe329f8f749
[  360.347804][T16387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.347814][T16387] RSP: 002b:00007fe32af05038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  360.347825][T16387] RAX: ffffffffffffffda RBX: 00007fe32a1e5fa0 RCX: 00007fe329f8f749
[  360.347831][T16387] RDX: 0000000000000001 RSI: 0000200000001200 RDI: 0000000000000005
[  360.347837][T16387] RBP: 00007fe32af05090 R08: 0000000000006a76 R09: 0000000000000000
[  360.347843][T16387] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001
[  360.347849][T16387] R13: 00007fe32a1e6038 R14: 00007fe32a1e5fa0 R15: 00007fff5aec3d98
[  360.347863][T16387]  </TASK>
[  360.691435][T16410] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3758'.
[  360.700486][T15850] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  360.700561][T16410] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3758'.
[  360.704319][T15850] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  360.712244][T15850] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  360.715011][T15850] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  360.723810][T16410] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3 sclass=netlink_route_socket pid=16410 comm=syz.6.3758
[  360.914846][T16417] netlink: 1 bytes leftover after parsing attributes in process `syz.1.3761'.
[  361.035840][T16432] FAULT_INJECTION: forcing a failure.
[  361.035840][T16432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.041418][T16432] CPU: 2 UID: 0 PID: 16432 Comm: syz.1.3764 Not tainted syzkaller #0 PREEMPT(full) 
[  361.041432][T16432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.041439][T16432] Call Trace:
[  361.041443][T16432]  <TASK>
[  361.041448][T16432]  dump_stack_lvl+0x16c/0x1f0
[  361.041462][T16432]  should_fail_ex+0x512/0x640
[  361.041477][T16432]  _copy_from_iter+0x29f/0x1720
[  361.041491][T16432]  ? kmem_cache_free+0x2d4/0x6c0
[  361.041501][T16432]  ? skb_free_head+0x1b7/0x210
[  361.041518][T16432]  ? __pfx__copy_from_iter+0x10/0x10
[  361.041537][T16432]  ? skb_free_head+0x1b7/0x210
[  361.041549][T16432]  ? skb_free_head+0x1b7/0x210
[  361.041565][T16432]  ? skb_headers_offset_update+0x129/0x260
[  361.041588][T16432]  ? pskb_expand_head+0x628/0x1030
[  361.041615][T16432]  skb_copy_datagram_from_iter+0x124/0x740
[  361.041641][T16432]  tun_get_user+0x1850/0x3cc0
[  361.041674][T16432]  ? __pfx_tun_get_user+0x10/0x10
[  361.041697][T16432]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  361.041724][T16432]  ? find_held_lock+0x2b/0x80
[  361.041746][T16432]  ? tun_get+0x191/0x370
[  361.041770][T16432]  tun_chr_write_iter+0xdc/0x210
[  361.041794][T16432]  vfs_write+0x7d3/0x11d0
[  361.041810][T16432]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  361.041826][T16432]  ? __pfx_vfs_write+0x10/0x10
[  361.041835][T16432]  ? find_held_lock+0x2b/0x80
[  361.041856][T16432]  ksys_write+0x12a/0x250
[  361.041866][T16432]  ? __pfx_ksys_write+0x10/0x10
[  361.041885][T16432]  do_syscall_64+0xcd/0xfa0
[  361.041902][T16432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.041918][T16432] RIP: 0033:0x7f015fd8f749
[  361.041931][T16432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.041943][T16432] RSP: 002b:00007f0160cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  361.041953][T16432] RAX: ffffffffffffffda RBX: 00007f015ffe5fa0 RCX: 00007f015fd8f749
[  361.041960][T16432] RDX: 000000000000fdef RSI: 0000200000000440 RDI: 0000000000000003
[  361.041970][T16432] RBP: 00007f0160cc8090 R08: 0000000000000000 R09: 0000000000000000
[  361.041979][T16432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.041988][T16432] R13: 00007f015ffe6038 R14: 00007f015ffe5fa0 R15: 00007fffdf4bf738
[  361.042011][T16432]  </TASK>
[  361.170075][T16435] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  361.338186][T16446] FAULT_INJECTION: forcing a failure.
[  361.338186][T16446] name failslab, interval 1, probability 0, space 0, times 0
[  361.342341][T16446] CPU: 0 UID: 0 PID: 16446 Comm: syz.4.3771 Not tainted syzkaller #0 PREEMPT(full) 
[  361.342360][T16446] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.342366][T16446] Call Trace:
[  361.342370][T16446]  <TASK>
[  361.342375][T16446]  dump_stack_lvl+0x16c/0x1f0
[  361.342389][T16446]  should_fail_ex+0x512/0x640
[  361.342403][T16446]  ? fs_reclaim_acquire+0xae/0x150
[  361.342416][T16446]  should_failslab+0xc2/0x120
[  361.342429][T16446]  __kmalloc_noprof+0xdd/0x880
[  361.342443][T16446]  ? tomoyo_encode2+0x100/0x3e0
[  361.342459][T16446]  ? tomoyo_encode2+0x100/0x3e0
[  361.342470][T16446]  tomoyo_encode2+0x100/0x3e0
[  361.342483][T16446]  tomoyo_encode+0x29/0x50
[  361.342494][T16446]  tomoyo_realpath_from_path+0x18f/0x6e0
[  361.342508][T16446]  ? tomoyo_profile+0x47/0x60
[  361.342523][T16446]  tomoyo_path_perm+0x274/0x460
[  361.342532][T16446]  ? tomoyo_path_perm+0x260/0x460
[  361.342543][T16446]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  361.342572][T16446]  security_inode_getattr+0x116/0x290
[  361.342585][T16446]  vfs_statx+0x121/0x3f0
[  361.342599][T16446]  ? __pfx_vfs_statx+0x10/0x10
[  361.342616][T16446]  do_statx+0xef/0x170
[  361.342630][T16446]  ? __pfx_do_statx+0x10/0x10
[  361.342653][T16446]  ? getname_flags.part.0+0x1c5/0x550
[  361.342667][T16446]  ? ksys_write+0x1ac/0x250
[  361.342679][T16446]  __x64_sys_statx+0x136/0x1e0
[  361.342695][T16446]  do_syscall_64+0xcd/0xfa0
[  361.342707][T16446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.342718][T16446] RIP: 0033:0x7fa91338f749
[  361.342727][T16446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.342737][T16446] RSP: 002b:00007fa9141b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000014c
[  361.342748][T16446] RAX: ffffffffffffffda RBX: 00007fa9135e5fa0 RCX: 00007fa91338f749
[  361.342754][T16446] RDX: 0000000000000100 RSI: 00002000000001c0 RDI: ffffffffffffff9c
[  361.342761][T16446] RBP: 00007fa9141b1090 R08: 0000000000000000 R09: 0000000000000000
[  361.342767][T16446] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  361.342773][T16446] R13: 00007fa9135e6038 R14: 00007fa9135e5fa0 R15: 00007fff0e5a9628
[  361.342787][T16446]  </TASK>
[  361.342798][T16446] ERROR: Out of memory at tomoyo_realpath_from_path.
[  361.365739][T16448] FAULT_INJECTION: forcing a failure.
[  361.365739][T16448] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.440016][T16448] CPU: 2 UID: 0 PID: 16448 Comm: syz.1.3769 Not tainted syzkaller #0 PREEMPT(full) 
[  361.440041][T16448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.440053][T16448] Call Trace:
[  361.440060][T16448]  <TASK>
[  361.440068][T16448]  dump_stack_lvl+0x16c/0x1f0
[  361.440092][T16448]  should_fail_ex+0x512/0x640
[  361.440115][T16448]  _copy_from_iter+0x29f/0x1720
[  361.440141][T16448]  ? __alloc_skb+0x200/0x380
[  361.440172][T16448]  ? __pfx__copy_from_iter+0x10/0x10
[  361.440192][T16448]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  361.440231][T16448]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  361.440264][T16448]  netlink_sendmsg+0x820/0xdd0
[  361.440296][T16448]  ? __pfx_netlink_sendmsg+0x10/0x10
[  361.440329][T16448]  ____sys_sendmsg+0xa98/0xc70
[  361.440348][T16448]  ? copy_msghdr_from_user+0x10a/0x160
[  361.440371][T16448]  ? __pfx_____sys_sendmsg+0x10/0x10
[  361.440402][T16448]  ___sys_sendmsg+0x134/0x1d0
[  361.440427][T16448]  ? __pfx____sys_sendmsg+0x10/0x10
[  361.440447][T16448]  ? __lock_acquire+0x622/0x1c90
[  361.440492][T16448]  __sys_sendmsg+0x16d/0x220
[  361.440517][T16448]  ? __pfx___sys_sendmsg+0x10/0x10
[  361.440553][T16448]  do_syscall_64+0xcd/0xfa0
[  361.440573][T16448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.440593][T16448] RIP: 0033:0x7f015fd8f749
[  361.440610][T16448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.440627][T16448] RSP: 002b:00007f0160cc8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  361.440643][T16448] RAX: ffffffffffffffda RBX: 00007f015ffe5fa0 RCX: 00007f015fd8f749
[  361.440654][T16448] RDX: 0000000024044040 RSI: 0000200000000200 RDI: 0000000000000003
[  361.440664][T16448] RBP: 00007f0160cc8090 R08: 0000000000000000 R09: 0000000000000000
[  361.440674][T16448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.440684][T16448] R13: 00007f015ffe6038 R14: 00007f015ffe5fa0 R15: 00007fffdf4bf738
[  361.440711][T16448]  </TASK>
[  361.563014][T16457] FAULT_INJECTION: forcing a failure.
[  361.563014][T16457] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.570096][T16457] CPU: 0 UID: 0 PID: 16457 Comm: syz.4.3773 Not tainted syzkaller #0 PREEMPT(full) 
[  361.570112][T16457] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.570119][T16457] Call Trace:
[  361.570123][T16457]  <TASK>
[  361.570127][T16457]  dump_stack_lvl+0x16c/0x1f0
[  361.570142][T16457]  should_fail_ex+0x512/0x640
[  361.570157][T16457]  _copy_to_user+0x32/0xd0
[  361.570178][T16457]  simple_read_from_buffer+0xcb/0x170
[  361.570196][T16457]  proc_fail_nth_read+0x197/0x240
[  361.570210][T16457]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  361.570223][T16457]  ? rw_verify_area+0xcf/0x6c0
[  361.570239][T16457]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  361.570251][T16457]  vfs_read+0x1e4/0xcf0
[  361.570265][T16457]  ? __pfx___mutex_lock+0x10/0x10
[  361.570276][T16457]  ? __pfx_vfs_read+0x10/0x10
[  361.570290][T16457]  ? __fget_files+0x20e/0x3c0
[  361.570304][T16457]  ksys_read+0x12a/0x250
[  361.570314][T16457]  ? __pfx_ksys_read+0x10/0x10
[  361.570328][T16457]  do_syscall_64+0xcd/0xfa0
[  361.570339][T16457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.570350][T16457] RIP: 0033:0x7fa91338e15c
[  361.570359][T16457] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  361.570369][T16457] RSP: 002b:00007fa9141b1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  361.570380][T16457] RAX: ffffffffffffffda RBX: 00007fa9135e5fa0 RCX: 00007fa91338e15c
[  361.570386][T16457] RDX: 000000000000000f RSI: 00007fa9141b10a0 RDI: 0000000000000005
[  361.570392][T16457] RBP: 00007fa9141b1090 R08: 0000000000000000 R09: 0000000000000000
[  361.570399][T16457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.570405][T16457] R13: 00007fa9135e6038 R14: 00007fa9135e5fa0 R15: 00007fff0e5a9628
[  361.570420][T16457]  </TASK>
[  361.645950][    C0] vkms_vblank_simulate: vblank timer overrun
[  361.656175][T16465] FAULT_INJECTION: forcing a failure.
[  361.656175][T16465] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.662637][T16465] CPU: 1 UID: 0 PID: 16465 Comm: syz.6.3776 Not tainted syzkaller #0 PREEMPT(full) 
[  361.662661][T16465] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.662672][T16465] Call Trace:
[  361.662678][T16465]  <TASK>
[  361.662685][T16465]  dump_stack_lvl+0x16c/0x1f0
[  361.662706][T16465]  should_fail_ex+0x512/0x640
[  361.662730][T16465]  _copy_from_iter+0x463/0x1720
[  361.662758][T16465]  ? __pfx__copy_from_iter+0x10/0x10
[  361.662778][T16465]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  361.662796][T16465]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  361.662822][T16465]  netlink_sendmsg+0x820/0xdd0
[  361.662853][T16465]  ? __pfx_netlink_sendmsg+0x10/0x10
[  361.662902][T16465]  ____sys_sendmsg+0xa98/0xc70
[  361.662922][T16465]  ? copy_msghdr_from_user+0x10a/0x160
[  361.662945][T16465]  ? __pfx_____sys_sendmsg+0x10/0x10
[  361.662973][T16465]  ___sys_sendmsg+0x134/0x1d0
[  361.662994][T16465]  ? __pfx____sys_sendmsg+0x10/0x10
[  361.663013][T16465]  ? __lock_acquire+0x622/0x1c90
[  361.663059][T16465]  __sys_sendmsg+0x16d/0x220
[  361.663082][T16465]  ? __pfx___sys_sendmsg+0x10/0x10
[  361.663121][T16465]  do_syscall_64+0xcd/0xfa0
[  361.663140][T16465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.663157][T16465] RIP: 0033:0x7f158c58f749
[  361.663172][T16465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.663188][T16465] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  361.663204][T16465] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  361.663215][T16465] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  361.663225][T16465] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  361.663234][T16465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.663244][T16465] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  361.663267][T16465]  </TASK>
[  361.853587][T16478] FAULT_INJECTION: forcing a failure.
[  361.853587][T16478] name failslab, interval 1, probability 0, space 0, times 0
[  361.858153][T16478] CPU: 3 UID: 0 PID: 16478 Comm: syz.4.3781 Not tainted syzkaller #0 PREEMPT(full) 
[  361.858167][T16478] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.858174][T16478] Call Trace:
[  361.858178][T16478]  <TASK>
[  361.858183][T16478]  dump_stack_lvl+0x16c/0x1f0
[  361.858197][T16478]  should_fail_ex+0x512/0x640
[  361.858210][T16478]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  361.858228][T16478]  should_failslab+0xc2/0x120
[  361.858242][T16478]  kmem_cache_alloc_node_noprof+0x78/0x770
[  361.858257][T16478]  ? copy_process+0x4b5/0x76a0
[  361.858274][T16478]  ? copy_process+0x4b5/0x76a0
[  361.858287][T16478]  copy_process+0x4b5/0x76a0
[  361.858306][T16478]  ? __pfx_copy_process+0x10/0x10
[  361.858322][T16478]  ? lockdep_init_map_type+0x5c/0x280
[  361.858334][T16478]  ? lockdep_init_map_type+0x5c/0x280
[  361.858344][T16478]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  361.858360][T16478]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  361.858374][T16478]  vhost_task_create+0x1d2/0x370
[  361.858386][T16478]  ? __pfx_vhost_task_create+0x10/0x10
[  361.858400][T16478]  ? __pfx_vhost_task_fn+0x10/0x10
[  361.858418][T16478]  kvm_mmu_post_init_vm+0x1b7/0x380
[  361.858430][T16478]  kvm_arch_vcpu_ioctl_run+0x66/0x1920
[  361.858442][T16478]  ? kvm_vcpu_ioctl+0x14c5/0x1690
[  361.858459][T16478]  kvm_vcpu_ioctl+0x5eb/0x1690
[  361.858475][T16478]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  361.858490][T16478]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  361.858506][T16478]  ? do_vfs_ioctl+0x128/0x14f0
[  361.858521][T16478]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  361.858535][T16478]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  361.858553][T16478]  ? hook_file_ioctl_common+0x145/0x410
[  361.858571][T16478]  ? selinux_file_ioctl+0x180/0x270
[  361.858582][T16478]  ? selinux_file_ioctl+0xb4/0x270
[  361.858594][T16478]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  361.858609][T16478]  __x64_sys_ioctl+0x18e/0x210
[  361.858625][T16478]  do_syscall_64+0xcd/0xfa0
[  361.858636][T16478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.858647][T16478] RIP: 0033:0x7fa91338f749
[  361.858656][T16478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.858666][T16478] RSP: 002b:00007fa9141b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  361.858676][T16478] RAX: ffffffffffffffda RBX: 00007fa9135e5fa0 RCX: 00007fa91338f749
[  361.858683][T16478] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  361.858690][T16478] RBP: 00007fa9141b1090 R08: 0000000000000000 R09: 0000000000000000
[  361.858696][T16478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.858702][T16478] R13: 00007fa9135e6038 R14: 00007fa9135e5fa0 R15: 00007fff0e5a9628
[  361.858716][T16478]  </TASK>
[  362.005930][T16482] tmpfs: Bad value for 'mpol'
[  362.098601][T16489] FAULT_INJECTION: forcing a failure.
[  362.098601][T16489] name failslab, interval 1, probability 0, space 0, times 0
[  362.102812][T16489] CPU: 1 UID: 0 PID: 16489 Comm: syz.4.3784 Not tainted syzkaller #0 PREEMPT(full) 
[  362.102827][T16489] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  362.102833][T16489] Call Trace:
[  362.102837][T16489]  <TASK>
[  362.102842][T16489]  dump_stack_lvl+0x16c/0x1f0
[  362.102857][T16489]  should_fail_ex+0x512/0x640
[  362.102871][T16489]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  362.102888][T16489]  should_failslab+0xc2/0x120
[  362.102901][T16489]  kmem_cache_alloc_noprof+0x75/0x6e0
[  362.102916][T16489]  ? security_file_alloc+0x34/0x2b0
[  362.102932][T16489]  ? security_file_alloc+0x34/0x2b0
[  362.102944][T16489]  security_file_alloc+0x34/0x2b0
[  362.102957][T16489]  init_file+0x93/0x4c0
[  362.102970][T16489]  alloc_empty_file+0x73/0x1e0
[  362.102984][T16489]  path_openat+0xda/0x2cb0
[  362.103000][T16489]  ? __pfx_path_openat+0x10/0x10
[  362.103011][T16489]  ? __lock_acquire+0xb8a/0x1c90
[  362.103023][T16489]  do_filp_open+0x20b/0x470
[  362.103034][T16489]  ? __pfx_do_filp_open+0x10/0x10
[  362.103055][T16489]  ? alloc_fd+0x471/0x7d0
[  362.103069][T16489]  do_sys_openat2+0x11b/0x1d0
[  362.103083][T16489]  ? __pfx_do_sys_openat2+0x10/0x10
[  362.103097][T16489]  ? __fget_files+0x20e/0x3c0
[  362.103110][T16489]  __x64_sys_openat+0x174/0x210
[  362.103124][T16489]  ? __pfx___x64_sys_openat+0x10/0x10
[  362.103137][T16489]  ? ksys_write+0x1ac/0x250
[  362.103152][T16489]  do_syscall_64+0xcd/0xfa0
[  362.103163][T16489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.103174][T16489] RIP: 0033:0x7fa91338f749
[  362.103182][T16489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.103193][T16489] RSP: 002b:00007fa914190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  362.103203][T16489] RAX: ffffffffffffffda RBX: 00007fa9135e6090 RCX: 00007fa91338f749
[  362.103210][T16489] RDX: 00000000001e1a01 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  362.103216][T16489] RBP: 00007fa914190090 R08: 0000000000000000 R09: 0000000000000000
[  362.103222][T16489] R10: 0000000000000124 R11: 0000000000000246 R12: 0000000000000001
[  362.103228][T16489] R13: 00007fa9135e6128 R14: 00007fa9135e6090 R15: 00007fff0e5a9628
[  362.103242][T16489]  </TASK>
[  362.681622][T16495] FAULT_INJECTION: forcing a failure.
[  362.681622][T16495] name failslab, interval 1, probability 0, space 0, times 0
[  362.687237][T16495] CPU: 1 UID: 0 PID: 16495 Comm: syz.6.3786 Not tainted syzkaller #0 PREEMPT(full) 
[  362.687260][T16495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  362.687271][T16495] Call Trace:
[  362.687278][T16495]  <TASK>
[  362.687286][T16495]  dump_stack_lvl+0x16c/0x1f0
[  362.687307][T16495]  should_fail_ex+0x512/0x640
[  362.687326][T16495]  ? __kmalloc_cache_noprof+0x5f/0x780
[  362.687352][T16495]  should_failslab+0xc2/0x120
[  362.687371][T16495]  __kmalloc_cache_noprof+0x72/0x780
[  362.687394][T16495]  ? __pfx___might_resched+0x10/0x10
[  362.687415][T16495]  ? vhost_task_create+0xe5/0x370
[  362.687440][T16495]  ? rcu_is_watching+0x12/0xc0
[  362.687461][T16495]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  362.687484][T16495]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  362.687503][T16495]  ? vhost_task_create+0xe5/0x370
[  362.687520][T16495]  vhost_task_create+0xe5/0x370
[  362.687537][T16495]  ? __pfx_vhost_task_create+0x10/0x10
[  362.687562][T16495]  ? __pfx_vhost_task_fn+0x10/0x10
[  362.687592][T16495]  kvm_mmu_post_init_vm+0x1b7/0x380
[  362.687612][T16495]  kvm_arch_vcpu_ioctl_run+0x66/0x1920
[  362.687631][T16495]  ? kvm_vcpu_ioctl+0x14c5/0x1690
[  362.687658][T16495]  kvm_vcpu_ioctl+0x5eb/0x1690
[  362.687684][T16495]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  362.687709][T16495]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  362.687734][T16495]  ? do_vfs_ioctl+0x128/0x14f0
[  362.687759][T16495]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  362.687784][T16495]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  362.687813][T16495]  ? hook_file_ioctl_common+0x145/0x410
[  362.687845][T16495]  ? selinux_file_ioctl+0x180/0x270
[  362.687863][T16495]  ? selinux_file_ioctl+0xb4/0x270
[  362.687884][T16495]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  362.687910][T16495]  __x64_sys_ioctl+0x18e/0x210
[  362.687937][T16495]  do_syscall_64+0xcd/0xfa0
[  362.687956][T16495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.687975][T16495] RIP: 0033:0x7f158c58f749
[  362.687990][T16495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.688007][T16495] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  362.688023][T16495] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  362.688034][T16495] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  362.688044][T16495] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  362.688054][T16495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.688064][T16495] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  362.688089][T16495]  </TASK>
[  363.037802][T16499] ./bus: Can't lookup blockdev
[  363.044103][T16499] program syz.1.3788 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  363.050983][T16499] overlayfs: workdir and upperdir must be separate subtrees
[  363.082703][T16515] Invalid logical block size (18)
[  363.087154][   T10] usb 8-1: new high-speed USB device number 88 using dummy_hcd
[  363.237287][   T10] usb 8-1: Using ep0 maxpacket: 8
[  363.242318][   T10] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  363.245452][   T10] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  363.251071][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  363.254243][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  363.257867][   T10] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  363.262495][   T10] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  363.265396][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.272438][   T40] kauditd_printk_skb: 155 callbacks suppressed
[  363.272451][   T40] audit: type=1400 audit(2000000333.182:4621): avc:  denied  { create } for  pid=16520 comm="syz.1.3797" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  363.283434][   T40] audit: type=1400 audit(2000000333.182:4622): avc:  denied  { ioctl } for  pid=16520 comm="syz.1.3797" path="socket:[70407]" dev="sockfs" ino=70407 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  363.326121][T16525] FAULT_INJECTION: forcing a failure.
[  363.326121][T16525] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  363.332412][T16525] CPU: 1 UID: 0 PID: 16525 Comm: syz.1.3797 Not tainted syzkaller #0 PREEMPT(full) 
[  363.332436][T16525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.332447][T16525] Call Trace:
[  363.332465][T16525]  <TASK>
[  363.332472][T16525]  dump_stack_lvl+0x16c/0x1f0
[  363.332518][T16525]  should_fail_ex+0x512/0x640
[  363.332549][T16525]  should_fail_alloc_page+0xe7/0x130
[  363.332570][T16525]  prepare_alloc_pages+0x3c2/0x610
[  363.332593][T16525]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  363.332621][T16525]  ? rcu_is_watching+0x12/0xc0
[  363.332645][T16525]  ? trace_mm_page_alloc+0x11f/0x1a0
[  363.332666][T16525]  ? __alloc_frozen_pages_noprof+0x292/0x2470
[  363.332695][T16525]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  363.332725][T16525]  ? is_bpf_text_address+0x8a/0x1a0
[  363.332746][T16525]  ? bpf_ksym_find+0x127/0x1c0
[  363.332771][T16525]  ? is_bpf_text_address+0x94/0x1a0
[  363.332792][T16525]  ? kernel_text_address+0x8d/0x100
[  363.332812][T16525]  ? __kernel_text_address+0xd/0x40
[  363.332831][T16525]  ? unwind_get_return_address+0x59/0xa0
[  363.332860][T16525]  alloc_pages_bulk_noprof+0x77a/0x1410
[  363.332884][T16525]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  363.332916][T16525]  ? policy_nodemask+0xea/0x4e0
[  363.332940][T16525]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  363.332968][T16525]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  363.332999][T16525]  kasan_populate_vmalloc+0x112/0x2d0
[  363.333015][T16525]  ? alloc_vmap_area+0x8b5/0x29e0
[  363.333039][T16525]  alloc_vmap_area+0x960/0x29e0
[  363.333069][T16525]  ? __pfx_alloc_vmap_area+0x10/0x10
[  363.333094][T16525]  __get_vm_area_node+0x1ca/0x330
[  363.333120][T16525]  __vmalloc_node_range_noprof+0x271/0x1480
[  363.333141][T16525]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  363.333163][T16525]  ? find_held_lock+0x2b/0x80
[  363.333186][T16525]  ? avc_has_perm_noaudit+0x117/0x3b0
[  363.333212][T16525]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  363.333238][T16525]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  363.333261][T16525]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  363.333289][T16525]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  363.333308][T16525]  __vmalloc_node_noprof+0xad/0xf0
[  363.333330][T16525]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  363.333352][T16525]  bpf_prog_alloc_no_stats+0x58/0x610
[  363.333369][T16525]  ? security_capable+0x7e/0x260
[  363.333401][T16525]  bpf_prog_alloc+0x3b/0x230
[  363.333418][T16525]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  363.333441][T16525]  bpf_prog_load+0x1c28/0x2850
[  363.333473][T16525]  ? __pfx_bpf_prog_load+0x10/0x10
[  363.333500][T16525]  ? avc_has_perm_noaudit+0x149/0x3b0
[  363.333527][T16525]  ? avc_has_perm+0x144/0x1f0
[  363.333561][T16525]  ? selinux_bpf+0xde/0x130
[  363.333585][T16525]  ? bpf_lsm_bpf+0x9/0x10
[  363.333606][T16525]  __sys_bpf+0x3e72/0x4980
[  363.333635][T16525]  ? __pfx___sys_bpf+0x10/0x10
[  363.333660][T16525]  ? find_held_lock+0x2b/0x80
[  363.333685][T16525]  ? find_held_lock+0x2b/0x80
[  363.333712][T16525]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  363.333744][T16525]  ? fput+0x9b/0xd0
[  363.333767][T16525]  ? ksys_write+0x1ac/0x250
[  363.333783][T16525]  ? __pfx_ksys_write+0x10/0x10
[  363.333803][T16525]  __x64_sys_bpf+0x78/0xc0
[  363.333817][T16525]  ? lockdep_hardirqs_on+0x7c/0x110
[  363.333833][T16525]  do_syscall_64+0xcd/0xfa0
[  363.333853][T16525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.333870][T16525] RIP: 0033:0x7f015fd8f749
[  363.333885][T16525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.333902][T16525] RSP: 002b:00007f0160ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  363.333920][T16525] RAX: ffffffffffffffda RBX: 00007f015ffe6090 RCX: 00007f015fd8f749
[  363.333932][T16525] RDX: 0000000000000090 RSI: 0000200000000380 RDI: 0000000000000005
[  363.333943][T16525] RBP: 00007f0160ca7090 R08: 0000000000000000 R09: 0000000000000000
[  363.333954][T16525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.333965][T16525] R13: 00007f015ffe6128 R14: 00007f015ffe6090 R15: 00007fffdf4bf738
[  363.333990][T16525]  </TASK>
[  363.334145][T16525] syz.1.3797: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  363.479055][   T10] usb 8-1: usb_control_msg returned -32
[  363.482255][T16525] ,cpuset=
[  363.484990][   T10] usbtmc 8-1:16.0: can't read capabilities
[  363.487773][T16525] /,mems_allowed=0-1
[  363.487795][T16525] CPU: 1 UID: 0 PID: 16525 Comm: syz.1.3797 Not tainted syzkaller #0 PREEMPT(full) 
[  363.487808][T16525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.487814][T16525] Call Trace:
[  363.487818][T16525]  <TASK>
[  363.487823][T16525]  dump_stack_lvl+0x16c/0x1f0
[  363.487838][T16525]  warn_alloc+0x248/0x3a0
[  363.487855][T16525]  ? __pfx_warn_alloc+0x10/0x10
[  363.487871][T16525]  ? kfree+0x2b8/0x6d0
[  363.487884][T16525]  ? __get_vm_area_node+0x2cd/0x330
[  363.487898][T16525]  ? __get_vm_area_node+0x2cd/0x330
[  363.487910][T16525]  ? __get_vm_area_node+0x208/0x330
[  363.487925][T16525]  __vmalloc_node_range_noprof+0xaf5/0x1480
[  363.487939][T16525]  ? find_held_lock+0x2b/0x80
[  363.487957][T16525]  ? avc_has_perm_noaudit+0x117/0x3b0
[  363.487980][T16525]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  363.487996][T16525]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  363.488010][T16525]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  363.488026][T16525]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  363.488038][T16525]  __vmalloc_node_noprof+0xad/0xf0
[  363.488051][T16525]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  363.488072][T16525]  bpf_prog_alloc_no_stats+0x58/0x610
[  363.488088][T16525]  ? security_capable+0x7e/0x260
[  363.488105][T16525]  bpf_prog_alloc+0x3b/0x230
[  363.488116][T16525]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  363.488132][T16525]  bpf_prog_load+0x1c28/0x2850
[  363.488150][T16525]  ? __pfx_bpf_prog_load+0x10/0x10
[  363.488166][T16525]  ? avc_has_perm_noaudit+0x149/0x3b0
[  363.488208][T16525]  ? avc_has_perm+0x144/0x1f0
[  363.488237][T16525]  ? selinux_bpf+0xde/0x130
[  363.488251][T16525]  ? bpf_lsm_bpf+0x9/0x10
[  363.488267][T16525]  __sys_bpf+0x3e72/0x4980
[  363.488294][T16525]  ? __pfx___sys_bpf+0x10/0x10
[  363.488316][T16525]  ? find_held_lock+0x2b/0x80
[  363.488337][T16525]  ? find_held_lock+0x2b/0x80
[  363.488353][T16525]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  363.488372][T16525]  ? fput+0x9b/0xd0
[  363.488390][T16525]  ? ksys_write+0x1ac/0x250
[  363.488399][T16525]  ? __pfx_ksys_write+0x10/0x10
[  363.488415][T16525]  __x64_sys_bpf+0x78/0xc0
[  363.488428][T16525]  ? lockdep_hardirqs_on+0x7c/0x110
[  363.488443][T16525]  do_syscall_64+0xcd/0xfa0
[  363.488460][T16525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.488476][T16525] RIP: 0033:0x7f015fd8f749
[  363.488490][T16525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.488501][T16525] RSP: 002b:00007f0160ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  363.488511][T16525] RAX: ffffffffffffffda RBX: 00007f015ffe6090 RCX: 00007f015fd8f749
[  363.488520][T16525] RDX: 0000000000000090 RSI: 0000200000000380 RDI: 0000000000000005
[  363.488529][T16525] RBP: 00007f0160ca7090 R08: 0000000000000000 R09: 0000000000000000
[  363.488539][T16525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.488548][T16525] R13: 00007f015ffe6128 R14: 00007f015ffe6090 R15: 00007fffdf4bf738
[  363.488571][T16525]  </TASK>
[  363.488577][T16525] Mem-Info:
[  363.611879][T16525] active_anon:20095 inactive_anon:6022 isolated_anon:0
[  363.611879][T16525]  active_file:10005 inactive_file:49372 isolated_file:0
[  363.611879][T16525]  unevictable:1768 dirty:663 writeback:0
[  363.611879][T16525]  slab_reclaimable:10431 slab_unreclaimable:78082
[  363.611879][T16525]  mapped:26197 shmem:20851 pagetables:1582
[  363.611879][T16525]  sec_pagetables:314 bounce:0
[  363.611879][T16525]  kernel_misc_reclaimable:0
[  363.611879][T16525]  free:418836 free_pcp:16711 free_cma:0
[  363.625739][T16527] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3798'.
[  363.628179][T16525] Node 0 active_anon:80160kB inactive_anon:24088kB active_file:40020kB inactive_file:197280kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:104912kB dirty:2644kB writeback:0kB shmem:79864kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:15952kB pagetables:6104kB sec_pagetables:1256kB all_unreclaimable? no Balloon:0kB
[  363.632247][T16527] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3798'.
[  363.646058][T16525] Node 1 active_anon:220kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:144kB pagetables:224kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  363.654209][   T40] audit: type=1400 audit(2000000333.552:4623): avc:  denied  { read } for  pid=16526 comm="syz.6.3798" dev="nsfs" ino=4026532969 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  363.656748][T16525] Node 0 
[  363.666679][   T40] audit: type=1400 audit(2000000333.552:4624): avc:  denied  { open } for  pid=16526 comm="syz.6.3798" path="net:[4026532969]" dev="nsfs" ino=4026532969 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  363.668395][T16525] DMA free:8940kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:120kB inactive_anon:0kB active_file:0kB inactive_file:256kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:340kB local_pcp:44kB free_cma:0kB
[  363.668449][T16525] lowmem_reserve[]: 0 1239 1239 1239 1239
[  363.668483][T16525] Node 0 DMA32 free:71464kB boost:0kB min:27580kB low:34472kB high:41364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:80048kB inactive_anon:24088kB active_file:40020kB inactive_file:197028kB unevictable:3536kB writepending:2812kB zspages:0kB present:2080628kB managed:1269472kB mlocked:0kB bounce:0kB free_pcp:37308kB local_pcp:5592kB free_cma:0kB
[  363.680699][   T40] audit: type=1400 audit(2000000333.552:4625): avc:  denied  { append } for  pid=16526 comm="syz.6.3798" name="iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  363.691516][T16525] lowmem_reserve[]: 0 0 0 0 0
[  363.691543][T16525] Node 1 Normal free:1596188kB boost:0kB min:39660kB low:49572kB high:59484kB reserved_highatomic:0KB free_highatomic:0KB active_anon:220kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:3536kB writepending:8kB zspages:0kB present:2097152kB managed:1781892kB mlocked:0kB bounce:0kB free_pcp:27696kB local_pcp:1396kB free_cma:0kB
[  363.694677][   T40] audit: type=1400 audit(2000000333.572:4626): avc:  denied  { create } for  pid=16526 comm="syz.6.3798" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  363.709330][T16525] lowmem_reserve[]: 0 0 0 0 0
[  363.709357][T16525] Node 0 DMA: 10*4kB (UM) 10*8kB (UM) 10*16kB (UM) 9*32kB (UM) 7*64kB (UM) 6*128kB (UM) 4*256kB (UM) 4*512kB (UM) 2*1024kB (UM) 1*2048kB (M) 0*4096kB = 8952kB
[  363.709445][T16525] Node 0 DMA32: 964*4kB (UME) 385*8kB (UME) 169*16kB (UME) 249*32kB (UME) 109*64kB (UME) 35*128kB (UME) 9*256kB (UME) 17*512kB (UME) 18*1024kB (M) 6*2048kB (UM) 
[  363.721849][   T40] audit: type=1400 audit(2000000333.572:4627): avc:  denied  { bind } for  pid=16526 comm="syz.6.3798" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  363.732519][T16525] 0*4096kB = 70792kB
[  363.732535][T16525] Node 1 Normal: 61*4kB (UME) 40*8kB (UME) 25*16kB (UME) 43*32kB (UME) 
[  363.740059][   T40] audit: type=1400 audit(2000000333.572:4628): avc:  denied  { write } for  pid=16526 comm="syz.6.3798" path="socket:[71444]" dev="sockfs" ino=71444 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  363.741639][T16525] 24*64kB 
[  363.746815][   T40] audit: type=1400 audit(2000000333.612:4629): avc:  denied  { append } for  pid=16531 comm="syz.4.3799" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  363.752594][T16525] (UME) 26*128kB (UME) 21*256kB (UME) 17*512kB (ME) 10*1024kB 
[  363.761571][   T40] audit: type=1400 audit(2000000333.672:4630): avc:  denied  { name_bind } for  pid=16536 comm="syz.4.3801" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  363.763056][T16525] (UME) 4*2048kB 
[  363.763184][T16537] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  363.768015][T16537] binder: 16536:16537 ioctl c0306201 200000000640 returned -22
[  363.800450][T16525] (UM) 380*4096kB (UM) = 1596196kB
[  363.802681][T16525] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  363.806685][T16525] Node 0 hugepages_total=7 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  363.810847][T16525] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  363.814957][T16525] Node 1 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  363.819088][T16525] 80244 total pagecache pages
[  363.821219][T16525] 0 pages in swap cache
[  363.823062][T16525] Free swap  = 124996kB
[  363.824910][T16525] Total swap = 124996kB
[  363.826753][T16525] 1048443 pages RAM
[  363.828612][T16525] 0 pages HighMem/MovableOnly
[  363.830783][T16525] 281762 pages reserved
[  363.832637][T16525] 0 pages cma reserved
[  364.632002][T16553] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16553 comm=syz.4.3806
[  364.730000][T16559] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3809'.
[  364.734713][T16559] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3809'.
[  364.845520][T16559] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  364.902097][T16564] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  364.907279][T16564] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 1th superblock
[  364.910936][T16564] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  364.913505][T16564] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 2th superblock
[  364.918584][ T9837] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  365.077360][ T9837] usb 11-1: Using ep0 maxpacket: 16
[  365.077858][T16570] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3813'.
[  365.081669][ T9837] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  365.089293][ T9837] usb 11-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  365.093226][ T9837] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.096553][ T9837] usb 11-1: Product: syz
[  365.098035][ T9837] usb 11-1: Manufacturer: syz
[  365.099640][ T9837] usb 11-1: SerialNumber: syz
[  365.102586][ T9837] usb 11-1: config 0 descriptor??
[  365.105298][ T9837] hub 11-1:0.0: bad descriptor, ignoring hub
[  365.107731][ T9837] hub 11-1:0.0: probe with driver hub failed with error -5
[  365.113458][ T9837] input: syz syz as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/input/input65
[  365.221595][T16580] FAULT_INJECTION: forcing a failure.
[  365.221595][T16580] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.225846][T16580] CPU: 0 UID: 0 PID: 16580 Comm: syz.4.3816 Not tainted syzkaller #0 PREEMPT(full) 
[  365.225860][T16580] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.225867][T16580] Call Trace:
[  365.225871][T16580]  <TASK>
[  365.225876][T16580]  dump_stack_lvl+0x16c/0x1f0
[  365.225890][T16580]  should_fail_ex+0x512/0x640
[  365.225906][T16580]  _copy_from_iter+0x29f/0x1720
[  365.225922][T16580]  ? __alloc_skb+0x200/0x380
[  365.225936][T16580]  ? __pfx__copy_from_iter+0x10/0x10
[  365.225949][T16580]  ? netlink_autobind.isra.0+0x158/0x370
[  365.225970][T16580]  netlink_sendmsg+0x820/0xdd0
[  365.225988][T16580]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.226008][T16580]  ____sys_sendmsg+0xa98/0xc70
[  365.226019][T16580]  ? copy_msghdr_from_user+0x10a/0x160
[  365.226034][T16580]  ? __pfx_____sys_sendmsg+0x10/0x10
[  365.226050][T16580]  ___sys_sendmsg+0x134/0x1d0
[  365.226065][T16580]  ? __pfx____sys_sendmsg+0x10/0x10
[  365.226077][T16580]  ? __lock_acquire+0x622/0x1c90
[  365.226103][T16580]  __sys_sendmsg+0x16d/0x220
[  365.226118][T16580]  ? __pfx___sys_sendmsg+0x10/0x10
[  365.226140][T16580]  do_syscall_64+0xcd/0xfa0
[  365.226152][T16580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.226162][T16580] RIP: 0033:0x7fa91338f749
[  365.226172][T16580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.226182][T16580] RSP: 002b:00007fa9141b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  365.226193][T16580] RAX: ffffffffffffffda RBX: 00007fa9135e5fa0 RCX: 00007fa91338f749
[  365.226199][T16580] RDX: 0000000000000800 RSI: 0000200000000280 RDI: 0000000000000005
[  365.226206][T16580] RBP: 00007fa9141b1090 R08: 0000000000000000 R09: 0000000000000000
[  365.226212][T16580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.226218][T16580] R13: 00007fa9135e6038 R14: 00007fa9135e5fa0 R15: 00007fff0e5a9628
[  365.226232][T16580]  </TASK>
[  365.293779][    C0] vkms_vblank_simulate: vblank timer overrun
[  365.305582][T16557] FAULT_INJECTION: forcing a failure.
[  365.305582][T16557] name failslab, interval 1, probability 0, space 0, times 0
[  365.310663][T16557] CPU: 0 UID: 0 PID: 16557 Comm: syz.6.3808 Not tainted syzkaller #0 PREEMPT(full) 
[  365.310687][T16557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.310699][T16557] Call Trace:
[  365.310705][T16557]  <TASK>
[  365.310712][T16557]  dump_stack_lvl+0x16c/0x1f0
[  365.310733][T16557]  should_fail_ex+0x512/0x640
[  365.310763][T16557]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  365.310791][T16557]  should_failslab+0xc2/0x120
[  365.310811][T16557]  kmem_cache_alloc_noprof+0x75/0x6e0
[  365.310836][T16557]  ? security_file_alloc+0x34/0x2b0
[  365.310862][T16557]  ? security_file_alloc+0x34/0x2b0
[  365.310881][T16557]  security_file_alloc+0x34/0x2b0
[  365.310907][T16557]  init_file+0x93/0x4c0
[  365.310930][T16557]  alloc_empty_file+0x73/0x1e0
[  365.310952][T16557]  path_openat+0xda/0x2cb0
[  365.310979][T16557]  ? __pfx_path_openat+0x10/0x10
[  365.310998][T16557]  ? __lock_acquire+0xb8a/0x1c90
[  365.311018][T16557]  do_filp_open+0x20b/0x470
[  365.311037][T16557]  ? __pfx_do_filp_open+0x10/0x10
[  365.311073][T16557]  ? alloc_fd+0x471/0x7d0
[  365.311097][T16557]  do_sys_openat2+0x11b/0x1d0
[  365.311117][T16557]  ? __pfx_do_sys_openat2+0x10/0x10
[  365.311142][T16557]  ? __fget_files+0x20e/0x3c0
[  365.311164][T16557]  __x64_sys_openat+0x174/0x210
[  365.311186][T16557]  ? __pfx___x64_sys_openat+0x10/0x10
[  365.311207][T16557]  ? ksys_write+0x1ac/0x250
[  365.311233][T16557]  do_syscall_64+0xcd/0xfa0
[  365.311251][T16557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.311269][T16557] RIP: 0033:0x7f158c58f749
[  365.311284][T16557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.311299][T16557] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  365.311316][T16557] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  365.311326][T16557] RDX: 0000000000101000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  365.311337][T16557] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  365.311347][T16557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.311362][T16557] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  365.311387][T16557]  </TASK>
[  365.398719][    C0] vkms_vblank_simulate: vblank timer overrun
[  365.454204][T16583] FAULT_INJECTION: forcing a failure.
[  365.454204][T16583] name failslab, interval 1, probability 0, space 0, times 0
[  365.459357][T16583] CPU: 3 UID: 0 PID: 16583 Comm: syz.4.3817 Not tainted syzkaller #0 PREEMPT(full) 
[  365.459403][T16583] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.459415][T16583] Call Trace:
[  365.459420][T16583]  <TASK>
[  365.459427][T16583]  dump_stack_lvl+0x16c/0x1f0
[  365.459450][T16583]  should_fail_ex+0x512/0x640
[  365.459470][T16583]  ? __lock_acquire+0x622/0x1c90
[  365.459489][T16583]  should_failslab+0xc2/0x120
[  365.459509][T16583]  kmem_cache_alloc_noprof+0x75/0x6e0
[  365.459532][T16583]  ? dst_alloc+0x99/0x1a0
[  365.459557][T16583]  ? dst_alloc+0x99/0x1a0
[  365.459574][T16583]  ? find_held_lock+0x2b/0x80
[  365.459592][T16583]  dst_alloc+0x99/0x1a0
[  365.459613][T16583]  rt_dst_alloc+0x35/0x3a0
[  365.459655][T16583]  ip_route_input_slow+0x16cb/0x3fa0
[  365.459680][T16583]  ? __pfx_ip_route_input_slow+0x10/0x10
[  365.459710][T16583]  ? __pfx_ipt_do_table+0x10/0x10
[  365.459744][T16583]  ip_route_input_noref+0x120/0x2e0
[  365.459767][T16583]  ? __pfx_ip_route_input_noref+0x10/0x10
[  365.459792][T16583]  ? tcp_v4_early_demux+0xca/0xbf0
[  365.459816][T16583]  ip_rcv_finish_core+0x46f/0x2290
[  365.459843][T16583]  ip_rcv+0x1c0/0x600
[  365.459866][T16583]  ? __pfx_ip_rcv+0x10/0x10
[  365.459884][T16583]  __netif_receive_skb_one_core+0x197/0x1e0
[  365.459906][T16583]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  365.459927][T16583]  ? lock_acquire+0x179/0x350
[  365.459944][T16583]  ? __phys_addr+0xe8/0x180
[  365.459969][T16583]  __netif_receive_skb+0x1d/0x160
[  365.459989][T16583]  netif_receive_skb+0x137/0x7b0
[  365.460008][T16583]  ? __pfx_netif_receive_skb+0x10/0x10
[  365.460036][T16583]  tun_rx_batched.isra.0+0x3ee/0x740
[  365.460061][T16583]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  365.460114][T16583]  ? tun_get_user+0x1ded/0x3cc0
[  365.460136][T16583]  ? rcu_is_watching+0x12/0xc0
[  365.460162][T16583]  tun_get_user+0x28b2/0x3cc0
[  365.460213][T16583]  ? __pfx_tun_get_user+0x10/0x10
[  365.460238][T16583]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  365.460267][T16583]  ? find_held_lock+0x2b/0x80
[  365.460287][T16583]  ? tun_get+0x191/0x370
[  365.460313][T16583]  tun_chr_write_iter+0xdc/0x210
[  365.460338][T16583]  vfs_write+0x7d3/0x11d0
[  365.460355][T16583]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  365.460380][T16583]  ? __pfx_vfs_write+0x10/0x10
[  365.460393][T16583]  ? find_held_lock+0x2b/0x80
[  365.460428][T16583]  ksys_write+0x12a/0x250
[  365.460445][T16583]  ? __pfx_ksys_write+0x10/0x10
[  365.460458][T16583]  ? xfd_validate_state+0x61/0x180
[  365.460489][T16583]  do_syscall_64+0xcd/0xfa0
[  365.460507][T16583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.460524][T16583] RIP: 0033:0x7fa91338e1ff
[  365.460537][T16583] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  365.460554][T16583] RSP: 002b:00007fa914190000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  365.460569][T16583] RAX: ffffffffffffffda RBX: 00007fa9135e6090 RCX: 00007fa91338e1ff
[  365.460581][T16583] RDX: 0000000000000045 RSI: 0000200000000000 RDI: 00000000000000c8
[  365.460591][T16583] RBP: 00007fa914190090 R08: 0000000000000000 R09: 0000000000000000
[  365.460601][T16583] R10: 0000000000000045 R11: 0000000000000293 R12: 0000000000000001
[  365.460611][T16583] R13: 00007fa9135e6128 R14: 00007fa9135e6090 R15: 00007fff0e5a9628
[  365.460635][T16583]  </TASK>
[  365.651648][T16585] Failed to get privilege flags for destination (handle=0x2:0x0)
[  365.655207][T16585] FAULT_INJECTION: forcing a failure.
[  365.655207][T16585] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.661279][T16585] CPU: 1 UID: 0 PID: 16585 Comm: syz.1.3818 Not tainted syzkaller #0 PREEMPT(full) 
[  365.661303][T16585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.661314][T16585] Call Trace:
[  365.661327][T16585]  <TASK>
[  365.661332][T16585]  dump_stack_lvl+0x16c/0x1f0
[  365.661355][T16585]  should_fail_ex+0x512/0x640
[  365.661381][T16585]  _copy_to_user+0x32/0xd0
[  365.661407][T16585]  vmci_host_unlocked_ioctl+0x9d5/0x2040
[  365.661430][T16585]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  365.661449][T16585]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  365.661472][T16585]  ? do_vfs_ioctl+0x128/0x14f0
[  365.661499][T16585]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  365.661523][T16585]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  365.661550][T16585]  ? hook_file_ioctl_common+0x145/0x410
[  365.661581][T16585]  ? selinux_file_ioctl+0x180/0x270
[  365.661599][T16585]  ? selinux_file_ioctl+0xb4/0x270
[  365.661618][T16585]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  365.661635][T16585]  __x64_sys_ioctl+0x18e/0x210
[  365.661662][T16585]  do_syscall_64+0xcd/0xfa0
[  365.661681][T16585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.661697][T16585] RIP: 0033:0x7f015fd8f749
[  365.661711][T16585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.661728][T16585] RSP: 002b:00007f0160cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  365.661745][T16585] RAX: ffffffffffffffda RBX: 00007f015ffe5fa0 RCX: 00007f015fd8f749
[  365.661757][T16585] RDX: 0000200000000140 RSI: 00000000000007a5 RDI: 0000000000000003
[  365.661767][T16585] RBP: 00007f0160cc8090 R08: 0000000000000000 R09: 0000000000000000
[  365.661776][T16585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.661787][T16585] R13: 00007f015ffe6038 R14: 00007f015ffe5fa0 R15: 00007fffdf4bf738
[  365.661812][T16585]  </TASK>
[  365.845514][ T9837] usb 8-1: USB disconnect, device number 88
[  365.872212][T16599] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  365.881578][T16599] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  365.945103][T16608] exFAT-fs (nbd6): unable to read boot sector
[  365.948299][T16608] exFAT-fs (nbd6): failed to read boot sector
[  365.950967][T16608] exFAT-fs (nbd6): failed to recognize exfat type
[  365.955179][T16610] FAULT_INJECTION: forcing a failure.
[  365.955179][T16610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.961069][T16610] CPU: 0 UID: 0 PID: 16610 Comm: syz.3.3828 Not tainted syzkaller #0 PREEMPT(full) 
[  365.961092][T16610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.961103][T16610] Call Trace:
[  365.961110][T16610]  <TASK>
[  365.961117][T16610]  dump_stack_lvl+0x16c/0x1f0
[  365.961138][T16610]  should_fail_ex+0x512/0x640
[  365.961163][T16610]  _copy_from_user+0x2e/0xd0
[  365.961185][T16610]  kvm_vm_ioctl+0x158b/0x3fd0
[  365.961212][T16610]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  365.961247][T16610]  ? kasan_quarantine_put+0x10a/0x240
[  365.961266][T16610]  ? lockdep_hardirqs_on+0x7c/0x110
[  365.961286][T16610]  ? find_held_lock+0x2b/0x80
[  365.961309][T16610]  ? tomoyo_path_number_perm+0x295/0x580
[  365.961331][T16610]  ? tomoyo_path_number_perm+0x18d/0x580
[  365.961350][T16610]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  365.961368][T16610]  ? find_held_lock+0x2b/0x80
[  365.961399][T16610]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  365.961423][T16610]  ? do_vfs_ioctl+0x128/0x14f0
[  365.961443][T16610]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  365.961462][T16610]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  365.961485][T16610]  ? hook_file_ioctl_common+0x145/0x410
[  365.961513][T16610]  ? selinux_file_ioctl+0x180/0x270
[  365.961531][T16610]  ? selinux_file_ioctl+0xb4/0x270
[  365.961552][T16610]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  365.961573][T16610]  __x64_sys_ioctl+0x18e/0x210
[  365.961599][T16610]  do_syscall_64+0xcd/0xfa0
[  365.961618][T16610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.961635][T16610] RIP: 0033:0x7fe329f8f749
[  365.961648][T16610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.961665][T16610] RSP: 002b:00007fe32af05038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  365.961682][T16610] RAX: ffffffffffffffda RBX: 00007fe32a1e5fa0 RCX: 00007fe329f8f749
[  365.961693][T16610] RDX: 00002000000000c0 RSI: 000000004010ae42 RDI: 0000000000000004
[  365.961702][T16610] RBP: 00007fe32af05090 R08: 0000000000000000 R09: 0000000000000000
[  365.961712][T16610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.961721][T16610] R13: 00007fe32a1e6038 R14: 00007fe32a1e5fa0 R15: 00007fff5aec3d98
[  365.961745][T16610]  </TASK>
[  366.059831][    C0] vkms_vblank_simulate: vblank timer overrun
[  366.108441][ T5936] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  366.112967][ T5936] Bluetooth: hci1: Injecting HCI hardware error event
[  366.119046][ T5292] Bluetooth: hci1: hardware error 0x00
[  366.151517][T16614] 9pnet_fd: Insufficient options for proto=fd
[  366.163633][T16614] netlink: 'syz.1.3830': attribute type 16 has an invalid length.
[  366.166318][T16614] netlink: 'syz.1.3830': attribute type 17 has an invalid length.
[  366.172987][ T6023] usb 11-1: USB disconnect, device number 5
[  366.181294][T16614] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  366.190622][T16614] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3830'.
[  366.414664][T16631] FAULT_INJECTION: forcing a failure.
[  366.414664][T16631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.419019][T16631] CPU: 0 UID: 0 PID: 16631 Comm: syz.1.3835 Not tainted syzkaller #0 PREEMPT(full) 
[  366.419034][T16631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.419041][T16631] Call Trace:
[  366.419045][T16631]  <TASK>
[  366.419050][T16631]  dump_stack_lvl+0x16c/0x1f0
[  366.419063][T16631]  should_fail_ex+0x512/0x640
[  366.419079][T16631]  _copy_to_user+0x32/0xd0
[  366.419094][T16631]  copy_siginfo_to_user+0x27/0xc0
[  366.419109][T16631]  x64_setup_rt_frame+0x811/0xcf0
[  366.419127][T16631]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  366.419144][T16631]  arch_do_signal_or_restart+0x5e4/0x7c0
[  366.419158][T16631]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  366.419175][T16631]  ? evdev_ioctl+0x7f/0x1a0
[  366.419194][T16631]  exit_to_user_mode_loop+0x85/0x130
[  366.419206][T16631]  do_syscall_64+0x426/0xfa0
[  366.419218][T16631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.419228][T16631] RIP: 0033:0x7f015fd8f749
[  366.419238][T16631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.419248][T16631] RSP: 002b:00007f0160ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  366.419258][T16631] RAX: fffffffffffffffc RBX: 00007f015ffe6090 RCX: 00007f015fd8f749
[  366.419265][T16631] RDX: 0000000000000000 RSI: 0000000080404519 RDI: 0000000000000003
[  366.419271][T16631] RBP: 00007f0160ca7090 R08: 0000000000000000 R09: 0000000000000000
[  366.419277][T16631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.419283][T16631] R13: 00007f015ffe6128 R14: 00007f015ffe6090 R15: 00007fffdf4bf738
[  366.419297][T16631]  </TASK>
[  366.479144][    C0] vkms_vblank_simulate: vblank timer overrun
[  366.571184][T16635] FAULT_INJECTION: forcing a failure.
[  366.571184][T16635] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.576682][T16635] CPU: 2 UID: 0 PID: 16635 Comm: syz.4.3837 Not tainted syzkaller #0 PREEMPT(full) 
[  366.576706][T16635] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.576717][T16635] Call Trace:
[  366.576725][T16635]  <TASK>
[  366.576732][T16635]  dump_stack_lvl+0x16c/0x1f0
[  366.576755][T16635]  should_fail_ex+0x512/0x640
[  366.576779][T16635]  _copy_from_iter+0x29f/0x1720
[  366.576804][T16635]  ? __alloc_skb+0x200/0x380
[  366.576827][T16635]  ? __pfx__copy_from_iter+0x10/0x10
[  366.576845][T16635]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  366.576863][T16635]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  366.576892][T16635]  netlink_sendmsg+0x820/0xdd0
[  366.576922][T16635]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.576957][T16635]  ____sys_sendmsg+0xa98/0xc70
[  366.576976][T16635]  ? copy_msghdr_from_user+0x10a/0x160
[  366.576999][T16635]  ? __pfx_____sys_sendmsg+0x10/0x10
[  366.577028][T16635]  ___sys_sendmsg+0x134/0x1d0
[  366.577053][T16635]  ? __pfx____sys_sendmsg+0x10/0x10
[  366.577090][T16635]  ? __lock_acquire+0x622/0x1c90
[  366.577136][T16635]  __sys_sendmsg+0x16d/0x220
[  366.577158][T16635]  ? __pfx___sys_sendmsg+0x10/0x10
[  366.577190][T16635]  do_syscall_64+0xcd/0xfa0
[  366.577208][T16635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.577225][T16635] RIP: 0033:0x7fa91338f749
[  366.577241][T16635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.577257][T16635] RSP: 002b:00007fa9141b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  366.577273][T16635] RAX: ffffffffffffffda RBX: 00007fa9135e5fa0 RCX: 00007fa91338f749
[  366.577282][T16635] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  366.577291][T16635] RBP: 00007fa9141b1090 R08: 0000000000000000 R09: 0000000000000000
[  366.577301][T16635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.577311][T16635] R13: 00007fa9135e6038 R14: 00007fa9135e5fa0 R15: 00007fff0e5a9628
[  366.577335][T16635]  </TASK>
[  366.619750][T16639] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5127 sclass=netlink_route_socket pid=16639 comm=syz.1.3839
[  366.657202][T16644] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3841'.
[  366.708847][T16648] input: syz1 as /devices/virtual/input/input66
[  366.743952][T16653] FAULT_INJECTION: forcing a failure.
[  366.743952][T16653] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.751951][T16653] CPU: 3 UID: 0 PID: 16653 Comm: syz.1.3845 Not tainted syzkaller #0 PREEMPT(full) 
[  366.751976][T16653] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.751986][T16653] Call Trace:
[  366.751992][T16653]  <TASK>
[  366.752000][T16653]  dump_stack_lvl+0x16c/0x1f0
[  366.752022][T16653]  should_fail_ex+0x512/0x640
[  366.752045][T16653]  _copy_to_user+0x32/0xd0
[  366.752069][T16653]  simple_read_from_buffer+0xcb/0x170
[  366.752097][T16653]  proc_fail_nth_read+0x197/0x240
[  366.752118][T16653]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  366.752140][T16653]  ? rw_verify_area+0xcf/0x6c0
[  366.752192][T16653]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  366.752212][T16653]  vfs_read+0x1e4/0xcf0
[  366.752232][T16653]  ? __pfx___mutex_lock+0x10/0x10
[  366.752249][T16653]  ? __pfx_vfs_read+0x10/0x10
[  366.752271][T16653]  ? __fget_files+0x20e/0x3c0
[  366.752297][T16653]  ksys_read+0x12a/0x250
[  366.752312][T16653]  ? __pfx_ksys_read+0x10/0x10
[  366.752328][T16653]  ? fput+0x9b/0xd0
[  366.752359][T16653]  do_syscall_64+0xcd/0xfa0
[  366.752378][T16653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.752395][T16653] RIP: 0033:0x7f015fd8e15c
[  366.752410][T16653] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  366.752425][T16653] RSP: 002b:00007f0160cc8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  366.752442][T16653] RAX: ffffffffffffffda RBX: 00007f015ffe5fa0 RCX: 00007f015fd8e15c
[  366.752453][T16653] RDX: 000000000000000f RSI: 00007f0160cc80a0 RDI: 0000000000000005
[  366.752464][T16653] RBP: 00007f0160cc8090 R08: 0000000000000000 R09: 0000000000000000
[  366.752474][T16653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.752484][T16653] R13: 00007f015ffe6038 R14: 00007f015ffe5fa0 R15: 00007fffdf4bf738
[  366.752509][T16653]  </TASK>
[  366.949295][T16671] cgroup: Invalid name
[  366.958330][T16671] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3852'.
[  366.962678][T16675] cgroup: Invalid name
[  366.969113][T16673] FAULT_INJECTION: forcing a failure.
[  366.969113][T16673] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.973317][T16673] CPU: 0 UID: 0 PID: 16673 Comm: syz.6.3853 Not tainted syzkaller #0 PREEMPT(full) 
[  366.973331][T16673] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.973338][T16673] Call Trace:
[  366.973342][T16673]  <TASK>
[  366.973347][T16673]  dump_stack_lvl+0x16c/0x1f0
[  366.973378][T16673]  should_fail_ex+0x512/0x640
[  366.973393][T16673]  _copy_to_user+0x32/0xd0
[  366.973408][T16673]  pagemap_read+0x52c/0x890
[  366.973424][T16673]  ? __pfx_pagemap_read+0x10/0x10
[  366.973440][T16673]  ? rw_verify_area+0xcf/0x6c0
[  366.973455][T16673]  ? __pfx_pagemap_read+0x10/0x10
[  366.973468][T16673]  vfs_read+0x1e4/0xcf0
[  366.973480][T16673]  ? __pfx_vfs_read+0x10/0x10
[  366.973489][T16673]  ? find_held_lock+0x2b/0x80
[  366.973503][T16673]  ? __fget_files+0x204/0x3c0
[  366.973516][T16673]  ? __fget_files+0x20e/0x3c0
[  366.973525][T16673]  ? __fget_files+0x140/0x3c0
[  366.973539][T16673]  __x64_sys_pread64+0x1eb/0x250
[  366.973550][T16673]  ? __pfx___x64_sys_pread64+0x10/0x10
[  366.973565][T16673]  do_syscall_64+0xcd/0xfa0
[  366.973577][T16673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.973588][T16673] RIP: 0033:0x7f158c58f749
[  366.973597][T16673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.973608][T16673] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  366.973618][T16673] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  366.973625][T16673] RDX: 0000000000019020 RSI: 0000200000000200 RDI: 0000000000000004
[  366.973631][T16673] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  366.973637][T16673] R10: 0000001000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.973643][T16673] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  366.973657][T16673]  </TASK>
[  367.053272][    C0] vkms_vblank_simulate: vblank timer overrun
[  367.126962][T16685] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3854'.
[  367.187192][   T10] usb 8-1: new high-speed USB device number 89 using dummy_hcd
[  367.337174][   T10] usb 8-1: Using ep0 maxpacket: 32
[  367.341198][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10
[  367.345753][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024
[  367.357162][   T10] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  367.364877][   T10] usb 8-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  367.368952][   T10] usb 8-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  367.372473][   T10] usb 8-1: Product: syz
[  367.374200][   T10] usb 8-1: Manufacturer: syz
[  367.375781][   T10] usb 8-1: SerialNumber: syz
[  367.383504][   T10] input: appletouch as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/input/input67
[  367.426628][T16706] FAULT_INJECTION: forcing a failure.
[  367.426628][T16706] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  367.433058][T16706] CPU: 3 UID: 0 PID: 16706 Comm: syz.6.3860 Not tainted syzkaller #0 PREEMPT(full) 
[  367.433080][T16706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  367.433092][T16706] Call Trace:
[  367.433097][T16706]  <TASK>
[  367.433104][T16706]  dump_stack_lvl+0x16c/0x1f0
[  367.433126][T16706]  should_fail_ex+0x512/0x640
[  367.433150][T16706]  _copy_to_user+0x32/0xd0
[  367.433172][T16706]  simple_read_from_buffer+0xcb/0x170
[  367.433200][T16706]  proc_fail_nth_read+0x197/0x240
[  367.433222][T16706]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  367.433241][T16706]  ? rw_verify_area+0xcf/0x6c0
[  367.433265][T16706]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  367.433284][T16706]  vfs_read+0x1e4/0xcf0
[  367.433303][T16706]  ? __pfx___mutex_lock+0x10/0x10
[  367.433320][T16706]  ? __pfx_vfs_read+0x10/0x10
[  367.433342][T16706]  ? __fget_files+0x20e/0x3c0
[  367.433367][T16706]  ksys_read+0x12a/0x250
[  367.433381][T16706]  ? __pfx_ksys_read+0x10/0x10
[  367.433404][T16706]  do_syscall_64+0xcd/0xfa0
[  367.433422][T16706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.433438][T16706] RIP: 0033:0x7f158c58e15c
[  367.433451][T16706] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  367.433468][T16706] RSP: 002b:00007f158d424030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  367.433484][T16706] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58e15c
[  367.433496][T16706] RDX: 000000000000000f RSI: 00007f158d4240a0 RDI: 0000000000000004
[  367.433505][T16706] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  367.433515][T16706] R10: 00002000000003c0 R11: 0000000000000246 R12: 0000000000000001
[  367.433525][T16706] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  367.433548][T16706]  </TASK>
[  367.585624][  T843] usb 8-1: USB disconnect, device number 89
[  367.592523][  T843] appletouch 8-1:1.0: input: appletouch disconnected
[  367.649224][ T6023] usb 6-1: new full-speed USB device number 85 using dummy_hcd
[  367.808817][ T6023] usb 6-1: config 5 has an invalid interface number: 3 but max is 0
[  367.812345][ T6023] usb 6-1: config 5 has no interface number 0
[  367.819686][ T6023] usb 6-1: New USB device found, idVendor=09fb, idProduct=602a, bcdDevice=fd.36
[  367.823679][ T6023] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.827382][ T6023] usb 6-1: Product: syz
[  367.829169][ T6023] usb 6-1: Manufacturer: syz
[  367.831159][ T6023] usb 6-1: SerialNumber: syz
[  367.837407][ T6023] ftdi_sio 6-1:5.3: FTDI USB Serial Device converter detected
[  367.841396][ T6023] ftdi_sio ttyUSB0: unknown device type: 0xfd36
[  367.871508][T16719] FAULT_INJECTION: forcing a failure.
[  367.871508][T16719] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  367.875878][T16719] CPU: 0 UID: 0 PID: 16719 Comm: syz.6.3865 Not tainted syzkaller #0 PREEMPT(full) 
[  367.875893][T16719] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  367.875900][T16719] Call Trace:
[  367.875905][T16719]  <TASK>
[  367.875910][T16719]  dump_stack_lvl+0x16c/0x1f0
[  367.875924][T16719]  should_fail_ex+0x512/0x640
[  367.875940][T16719]  strncpy_from_user+0x3b/0x2e0
[  367.875953][T16719]  getname_flags.part.0+0x8f/0x550
[  367.875970][T16719]  getname_flags+0x93/0xf0
[  367.875980][T16719]  __x64_sys_symlink+0x65/0x90
[  367.875993][T16719]  do_syscall_64+0xcd/0xfa0
[  367.876004][T16719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.876015][T16719] RIP: 0033:0x7f158c58f749
[  367.876024][T16719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.876034][T16719] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  367.876044][T16719] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  367.876051][T16719] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000200000000080
[  367.876057][T16719] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  367.876063][T16719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  367.876069][T16719] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  367.876087][T16719]  </TASK>
[  367.930085][    C0] vkms_vblank_simulate: vblank timer overrun
[  368.042780][ T6023] usb 6-1: USB disconnect, device number 85
[  368.046475][ T6023] ftdi_sio 6-1:5.3: device disconnected
[  368.187340][ T5292] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  368.215943][T16722] Cannot find add_set index 65532 as target
[  368.299491][T16726] xt_ecn: cannot match TCP bits for non-tcp packets
[  368.302888][T16727] cgroup2: Unknown parameter 'euid'
[  368.340433][T16731] FAULT_INJECTION: forcing a failure.
[  368.340433][T16731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.345793][T16731] CPU: 1 UID: 0 PID: 16731 Comm: syz.3.3869 Not tainted syzkaller #0 PREEMPT(full) 
[  368.345808][T16731] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.345815][T16731] Call Trace:
[  368.345820][T16731]  <TASK>
[  368.345825][T16731]  dump_stack_lvl+0x16c/0x1f0
[  368.345839][T16731]  should_fail_ex+0x512/0x640
[  368.345854][T16731]  _copy_from_user+0x2e/0xd0
[  368.345868][T16731]  gsmld_ioctl+0x1121/0x1550
[  368.345881][T16731]  ? lockdep_hardirqs_on+0x7c/0x110
[  368.345893][T16731]  ? __pfx_gsmld_ioctl+0x10/0x10
[  368.345905][T16731]  ? __ldsem_down_read_nested+0xf3/0x8a0
[  368.345919][T16731]  ? __pfx___ldsem_down_read_nested+0x10/0x10
[  368.345935][T16731]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  368.345953][T16731]  ? __pfx_gsmld_ioctl+0x10/0x10
[  368.345963][T16731]  tty_ioctl+0x700/0x1680
[  368.345979][T16731]  ? __pfx_tty_ioctl+0x10/0x10
[  368.345994][T16731]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  368.346011][T16731]  ? hook_file_ioctl_common+0x145/0x410
[  368.346029][T16731]  ? selinux_file_ioctl+0x180/0x270
[  368.346045][T16731]  ? selinux_file_ioctl+0xb4/0x270
[  368.346057][T16731]  ? __pfx_tty_ioctl+0x10/0x10
[  368.346072][T16731]  __x64_sys_ioctl+0x18e/0x210
[  368.346090][T16731]  do_syscall_64+0xcd/0xfa0
[  368.346101][T16731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.346112][T16731] RIP: 0033:0x7fe329f8f749
[  368.346122][T16731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.346132][T16731] RSP: 002b:00007fe32af05038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  368.346143][T16731] RAX: ffffffffffffffda RBX: 00007fe32a1e5fa0 RCX: 00007fe329f8f749
[  368.346150][T16731] RDX: 0000200000000080 RSI: 0000000040384708 RDI: 0000000000000003
[  368.346156][T16731] RBP: 00007fe32af05090 R08: 0000000000000000 R09: 0000000000000000
[  368.346162][T16731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.346168][T16731] R13: 00007fe32a1e6038 R14: 00007fe32a1e5fa0 R15: 00007fff5aec3d98
[  368.346182][T16731]  </TASK>
[  368.469806][T16733] kernel profiling enabled (shift: 63)
[  368.471947][T16733] profiling shift: 63 too large
[  368.501772][T16735] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  368.535000][T16737] kAFS: No cell specified
[  368.535377][   T40] kauditd_printk_skb: 136 callbacks suppressed
[  368.535388][   T40] audit: type=1400 audit(2000000338.442:4767): avc:  denied  { mounton } for  pid=16736 comm="syz.3.3872" path="/387/file0" dev="tmpfs" ino=2063 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  368.540610][T16737] kAFS: No cell specified
[  368.546717][   T40] audit: type=1400 audit(2000000338.452:4768): avc:  denied  { mounton } for  pid=16736 comm="syz.3.3872" path="/387/file0" dev="tmpfs" ino=2063 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  368.661627][   T40] audit: type=1400 audit(2000000338.572:4769): avc:  denied  { read write } for  pid=16743 comm="syz.1.3874" name="vmci" dev="devtmpfs" ino=708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  368.669144][   T40] audit: type=1400 audit(2000000338.572:4770): avc:  denied  { open } for  pid=16743 comm="syz.1.3874" path="/dev/vmci" dev="devtmpfs" ino=708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  368.676270][   T40] audit: type=1400 audit(2000000338.582:4771): avc:  denied  { map } for  pid=16743 comm="syz.1.3874" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=72742 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  368.684018][   T40] audit: type=1400 audit(2000000338.582:4772): avc:  denied  { read write } for  pid=16743 comm="syz.1.3874" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=72742 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  368.711537][   T40] audit: type=1400 audit(2000000338.622:4773): avc:  denied  { unmount } for  pid=15091 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  368.724198][   T40] audit: type=1400 audit(2000000338.632:4774): avc:  denied  { ioctl } for  pid=16743 comm="syz.1.3874" path="/dev/vmci" dev="devtmpfs" ino=708 ioctlcmd=0x7a7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  368.734540][   T40] audit: type=1400 audit(2000000338.632:4775): avc:  denied  { append } for  pid=16743 comm="syz.1.3874" name="renderD128" dev="devtmpfs" ino=634 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  368.744348][   T40] audit: type=1400 audit(2000000338.632:4776): avc:  denied  { ioctl } for  pid=16743 comm="syz.1.3874" path="socket:[74868]" dev="sockfs" ino=74868 ioctlcmd=0x42d4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  368.750144][T16747] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3875'.
[  368.782766][T16749] FAULT_INJECTION: forcing a failure.
[  368.782766][T16749] name failslab, interval 1, probability 0, space 0, times 0
[  368.786951][T16749] CPU: 0 UID: 0 PID: 16749 Comm: syz.3.3876 Not tainted syzkaller #0 PREEMPT(full) 
[  368.786966][T16749] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.786973][T16749] Call Trace:
[  368.786977][T16749]  <TASK>
[  368.786982][T16749]  dump_stack_lvl+0x16c/0x1f0
[  368.786997][T16749]  should_fail_ex+0x512/0x640
[  368.787010][T16749]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  368.787024][T16749]  should_failslab+0xc2/0x120
[  368.787037][T16749]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  368.787048][T16749]  ? ceph_parse_mount_param+0x9c4/0x2790
[  368.787064][T16749]  ? kstrdup+0x53/0x100
[  368.787086][T16749]  kstrdup+0x53/0x100
[  368.787096][T16749]  ceph_parse_mount_param+0x9c4/0x2790
[  368.787112][T16749]  ? __pfx_ceph_parse_mount_param+0x10/0x10
[  368.787126][T16749]  ? static_key_count+0x5a/0x70
[  368.787139][T16749]  ? __pfx_ceph_parse_mount_param+0x10/0x10
[  368.787151][T16749]  vfs_parse_fs_param+0x20b/0x3c0
[  368.787166][T16749]  __do_sys_fsconfig+0x930/0xbe0
[  368.787184][T16749]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  368.787215][T16749]  do_syscall_64+0xcd/0xfa0
[  368.787231][T16749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.787249][T16749] RIP: 0033:0x7fe329f8f749
[  368.787263][T16749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.787283][T16749] RSP: 002b:00007fe32af05038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  368.787301][T16749] RAX: ffffffffffffffda RBX: 00007fe32a1e5fa0 RCX: 00007fe329f8f749
[  368.787311][T16749] RDX: 0000200000000000 RSI: 0000000000000001 RDI: 0000000000000003
[  368.787322][T16749] RBP: 00007fe32af05090 R08: 0000000000000000 R09: 0000000000000000
[  368.787331][T16749] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  368.787340][T16749] R13: 00007fe32a1e6038 R14: 00007fe32a1e5fa0 R15: 00007fff5aec3d98
[  368.787365][T16749]  </TASK>
[  368.865401][    C0] vkms_vblank_simulate: vblank timer overrun
[  368.882285][T16754] netlink: 'syz.6.3878': attribute type 10 has an invalid length.
[  368.885918][T16753] netlink: 'syz.6.3878': attribute type 10 has an invalid length.
[  368.900321][T16754] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  368.913313][T16757] FAULT_INJECTION: forcing a failure.
[  368.913313][T16757] name failslab, interval 1, probability 0, space 0, times 0
[  368.917643][T16757] CPU: 3 UID: 0 PID: 16757 Comm: syz.3.3879 Not tainted syzkaller #0 PREEMPT(full) 
[  368.917657][T16757] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.917664][T16757] Call Trace:
[  368.917669][T16757]  <TASK>
[  368.917673][T16757]  dump_stack_lvl+0x16c/0x1f0
[  368.917686][T16757]  should_fail_ex+0x512/0x640
[  368.917699][T16757]  ? __kmalloc_noprof+0xca/0x880
[  368.917716][T16757]  should_failslab+0xc2/0x120
[  368.917729][T16757]  __kmalloc_noprof+0xdd/0x880
[  368.917769][T16757]  ? lockdep_hardirqs_on+0x7c/0x110
[  368.917780][T16757]  ? _iommufd_object_alloc+0x23/0x1a0
[  368.917804][T16757]  ? _iommufd_object_alloc+0x23/0x1a0
[  368.917823][T16757]  _iommufd_object_alloc+0x23/0x1a0
[  368.917842][T16757]  iommufd_test+0x1176/0x61e0
[  368.917860][T16757]  ? __pfx_iommufd_test+0x10/0x10
[  368.917874][T16757]  ? find_held_lock+0x2b/0x80
[  368.917887][T16757]  ? __might_fault+0xe3/0x190
[  368.917902][T16757]  ? __might_fault+0xe3/0x190
[  368.917916][T16757]  ? __might_fault+0x13b/0x190
[  368.917936][T16757]  iommufd_fops_ioctl+0x34d/0x540
[  368.917952][T16757]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  368.917968][T16757]  ? hook_file_ioctl_common+0x145/0x410
[  368.917986][T16757]  ? selinux_file_ioctl+0x180/0x270
[  368.917998][T16757]  ? selinux_file_ioctl+0xb4/0x270
[  368.918010][T16757]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  368.918026][T16757]  __x64_sys_ioctl+0x18e/0x210
[  368.918042][T16757]  do_syscall_64+0xcd/0xfa0
[  368.918053][T16757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.918064][T16757] RIP: 0033:0x7fe329f8f749
[  368.918073][T16757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.918083][T16757] RSP: 002b:00007fe32af05038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  368.918096][T16757] RAX: ffffffffffffffda RBX: 00007fe32a1e5fa0 RCX: 00007fe329f8f749
[  368.918103][T16757] RDX: 0000200000000180 RSI: 0000000000003ba0 RDI: 0000000000000003
[  368.918109][T16757] RBP: 00007fe32af05090 R08: 0000000000000000 R09: 0000000000000000
[  368.918115][T16757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.918122][T16757] R13: 00007fe32a1e6038 R14: 00007fe32a1e5fa0 R15: 00007fff5aec3d98
[  368.918136][T16757]  </TASK>
[  369.044809][T16761] binder: 16760:16761 ioctl c0306201 200000000040 returned -22
[  369.113262][T16767] fuse: Unknown parameter 'B'
[  369.327444][T16779] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3889'.
[  369.370214][ T6023] usb 11-1: new high-speed USB device number 6 using dummy_hcd
[  369.472332][T16794] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.3893'.
[  369.529096][ T6023] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  369.533932][ T6023] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  369.541397][ T6023] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  369.541906][T16799] netlink: 'syz.3.3895': attribute type 10 has an invalid length.
[  369.546928][ T6023] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  369.554416][ T6023] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.560824][ T6023] usb 11-1: config 0 descriptor??
[  369.973230][ T6023] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  370.067125][T16811] FAULT_INJECTION: forcing a failure.
[  370.067125][T16811] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.072474][T16811] CPU: 2 UID: 0 PID: 16811 Comm: syz.3.3899 Not tainted syzkaller #0 PREEMPT(full) 
[  370.072497][T16811] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  370.072508][T16811] Call Trace:
[  370.072516][T16811]  <TASK>
[  370.072525][T16811]  dump_stack_lvl+0x16c/0x1f0
[  370.072547][T16811]  should_fail_ex+0x512/0x640
[  370.072572][T16811]  _copy_to_user+0x32/0xd0
[  370.072596][T16811]  simple_read_from_buffer+0xcb/0x170
[  370.072624][T16811]  proc_fail_nth_read+0x197/0x240
[  370.072645][T16811]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  370.072664][T16811]  ? rw_verify_area+0xcf/0x6c0
[  370.072689][T16811]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  370.072707][T16811]  vfs_read+0x1e4/0xcf0
[  370.072727][T16811]  ? __pfx___mutex_lock+0x10/0x10
[  370.072744][T16811]  ? __pfx_vfs_read+0x10/0x10
[  370.072764][T16811]  ? __fget_files+0x20e/0x3c0
[  370.072779][T16811]  ksys_read+0x12a/0x250
[  370.072789][T16811]  ? __pfx_ksys_read+0x10/0x10
[  370.072799][T16811]  ? trace_irq_enable.constprop.0+0x2f/0x120
[  370.072816][T16811]  do_syscall_64+0xcd/0xfa0
[  370.072828][T16811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.072839][T16811] RIP: 0033:0x7fe329f8e15c
[  370.072848][T16811] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  370.072859][T16811] RSP: 002b:00007fe32af05030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  370.072870][T16811] RAX: ffffffffffffffda RBX: 00007fe32a1e5fa0 RCX: 00007fe329f8e15c
[  370.072877][T16811] RDX: 000000000000000f RSI: 00007fe32af050a0 RDI: 0000000000000004
[  370.072883][T16811] RBP: 00007fe32af05090 R08: 0000000000000000 R09: 0000000000000000
[  370.072889][T16811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.072895][T16811] R13: 00007fe32a1e6038 R14: 00007fe32a1e5fa0 R15: 00007fff5aec3d98
[  370.072909][T16811]  </TASK>
[  370.228658][ T6060] usb 11-1: USB disconnect, device number 6
[  370.277284][  T843] usb 6-1: new high-speed USB device number 86 using dummy_hcd
[  370.418247][  T843] usb 6-1: device descriptor read/64, error -71
[  370.660756][T16834] sit0: entered promiscuous mode
[  370.666229][T16837] input: syz0 as /devices/virtual/input/input68
[  370.671124][  T843] usb 6-1: new high-speed USB device number 87 using dummy_hcd
[  370.674198][T16834] netlink: 'syz.3.3908': attribute type 1 has an invalid length.
[  370.678843][T16834] netlink: 1 bytes leftover after parsing attributes in process `syz.3.3908'.
[  370.797250][  T843] usb 6-1: device descriptor read/64, error -71
[  370.870103][T16856] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  370.873879][T16856] FAULT_INJECTION: forcing a failure.
[  370.873879][T16856] name failslab, interval 1, probability 0, space 0, times 0
[  370.880827][T16856] CPU: 0 UID: 0 PID: 16856 Comm: syz.6.3916 Not tainted syzkaller #0 PREEMPT(full) 
[  370.880851][T16856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  370.880862][T16856] Call Trace:
[  370.880868][T16856]  <TASK>
[  370.880876][T16856]  dump_stack_lvl+0x16c/0x1f0
[  370.880897][T16856]  should_fail_ex+0x512/0x640
[  370.880917][T16856]  ? __kmalloc_cache_noprof+0x5f/0x780
[  370.880944][T16856]  should_failslab+0xc2/0x120
[  370.880965][T16856]  __kmalloc_cache_noprof+0x72/0x780
[  370.880988][T16856]  ? iommufd_get_object+0x90/0x440
[  370.881013][T16856]  ? mock_domain_hw_info+0xb1/0x1b0
[  370.881050][T16856]  ? mock_domain_hw_info+0xb1/0x1b0
[  370.881069][T16856]  mock_domain_hw_info+0xb1/0x1b0
[  370.881091][T16856]  iommufd_get_hw_info+0x345/0xc30
[  370.881107][T16856]  ? __pfx_mock_domain_hw_info+0x10/0x10
[  370.881132][T16856]  ? __pfx_iommufd_get_hw_info+0x10/0x10
[  370.881156][T16856]  iommufd_fops_ioctl+0x34d/0x540
[  370.881182][T16856]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  370.881209][T16856]  ? hook_file_ioctl_common+0x145/0x410
[  370.881240][T16856]  ? selinux_file_ioctl+0x180/0x270
[  370.881258][T16856]  ? selinux_file_ioctl+0xb4/0x270
[  370.881277][T16856]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  370.881303][T16856]  __x64_sys_ioctl+0x18e/0x210
[  370.881328][T16856]  do_syscall_64+0xcd/0xfa0
[  370.881347][T16856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.881365][T16856] RIP: 0033:0x7f158c58f749
[  370.881380][T16856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.881396][T16856] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  370.881413][T16856] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  370.881424][T16856] RDX: 00002000000000c0 RSI: 0000000000003b8a RDI: 0000000000000003
[  370.881434][T16856] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  370.881444][T16856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.881454][T16856] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  370.881478][T16856]  </TASK>
[  370.907476][  T843] usb usb6-port1: attempt power cycle
[  370.969283][T16862] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  371.041214][T16866] FAULT_INJECTION: forcing a failure.
[  371.041214][T16866] name failslab, interval 1, probability 0, space 0, times 0
[  371.046692][T16866] CPU: 1 UID: 0 PID: 16866 Comm: syz.3.3921 Not tainted syzkaller #0 PREEMPT(full) 
[  371.046716][T16866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.046725][T16866] Call Trace:
[  371.046730][T16866]  <TASK>
[  371.046738][T16866]  dump_stack_lvl+0x16c/0x1f0
[  371.046762][T16866]  should_fail_ex+0x512/0x640
[  371.046783][T16866]  ? __kmalloc_noprof+0xca/0x880
[  371.046805][T16866]  should_failslab+0xc2/0x120
[  371.046824][T16866]  __kmalloc_noprof+0xdd/0x880
[  371.046849][T16866]  ? drm_atomic_state_init+0xe4/0x320
[  371.046877][T16866]  ? drm_atomic_state_init+0xe4/0x320
[  371.046897][T16866]  drm_atomic_state_init+0xe4/0x320
[  371.046913][T16866]  ? __kasan_kmalloc+0xaa/0xb0
[  371.046931][T16866]  drm_atomic_state_alloc+0xd3/0x120
[  371.046952][T16866]  drm_atomic_helper_update_plane+0x52/0x400
[  371.046979][T16866]  __setplane_atomic+0x25a/0x380
[  371.047006][T16866]  setplane_internal+0x253/0x650
[  371.047028][T16866]  ? __pfx_setplane_internal+0x10/0x10
[  371.047057][T16866]  ? __drm_mode_object_find+0x2d3/0x410
[  371.047094][T16866]  ? __pfx___drm_mode_object_find+0x10/0x10
[  371.047127][T16866]  drm_mode_setplane+0x3bb/0x880
[  371.047149][T16866]  ? do_raw_spin_unlock+0x172/0x230
[  371.047172][T16866]  drm_ioctl_kernel+0x1f4/0x3e0
[  371.047184][T16866]  ? __pfx_drm_mode_setplane+0x10/0x10
[  371.047200][T16866]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  371.047224][T16866]  drm_ioctl+0x5c9/0xc30
[  371.047241][T16866]  ? __pfx_drm_mode_setplane+0x10/0x10
[  371.047261][T16866]  ? __pfx_drm_ioctl+0x10/0x10
[  371.047283][T16866]  ? selinux_file_ioctl+0x180/0x270
[  371.047299][T16866]  ? selinux_file_ioctl+0xb4/0x270
[  371.047319][T16866]  ? __pfx_drm_ioctl+0x10/0x10
[  371.047336][T16866]  __x64_sys_ioctl+0x18e/0x210
[  371.047363][T16866]  do_syscall_64+0xcd/0xfa0
[  371.047383][T16866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.047398][T16866] RIP: 0033:0x7fe329f8f749
[  371.047413][T16866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.047429][T16866] RSP: 002b:00007fe32af05038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  371.047448][T16866] RAX: ffffffffffffffda RBX: 00007fe32a1e5fa0 RCX: 00007fe329f8f749
[  371.047460][T16866] RDX: 0000200000000200 RSI: 00000000c03064b7 RDI: 0000000000000003
[  371.047471][T16866] RBP: 00007fe32af05090 R08: 0000000000000000 R09: 0000000000000000
[  371.047482][T16866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.047489][T16866] R13: 00007fe32a1e6038 R14: 00007fe32a1e5fa0 R15: 00007fff5aec3d98
[  371.047514][T16866]  </TASK>
[  371.276029][T16876] FAULT_INJECTION: forcing a failure.
[  371.276029][T16876] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  371.280708][T16876] CPU: 3 UID: 0 PID: 16876 Comm: syz.4.3925 Not tainted syzkaller #0 PREEMPT(full) 
[  371.280727][T16876] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.280735][T16876] Call Trace:
[  371.280740][T16876]  <TASK>
[  371.280746][T16876]  dump_stack_lvl+0x16c/0x1f0
[  371.280764][T16876]  should_fail_ex+0x512/0x640
[  371.280782][T16876]  _copy_from_iter+0x29f/0x1720
[  371.280801][T16876]  ? __alloc_skb+0x200/0x380
[  371.280819][T16876]  ? __pfx__copy_from_iter+0x10/0x10
[  371.280835][T16876]  ? netlink_autobind.isra.0+0x158/0x370
[  371.280862][T16876]  netlink_sendmsg+0x820/0xdd0
[  371.280884][T16876]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.280910][T16876]  ____sys_sendmsg+0xa98/0xc70
[  371.280924][T16876]  ? copy_msghdr_from_user+0x10a/0x160
[  371.280942][T16876]  ? __pfx_____sys_sendmsg+0x10/0x10
[  371.280963][T16876]  ___sys_sendmsg+0x134/0x1d0
[  371.280982][T16876]  ? __pfx____sys_sendmsg+0x10/0x10
[  371.280997][T16876]  ? __lock_acquire+0x622/0x1c90
[  371.281033][T16876]  __sys_sendmsg+0x16d/0x220
[  371.281051][T16876]  ? __pfx___sys_sendmsg+0x10/0x10
[  371.281081][T16876]  do_syscall_64+0xcd/0xfa0
[  371.281096][T16876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.281109][T16876] RIP: 0033:0x7fa91338f749
[  371.281120][T16876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.281133][T16876] RSP: 002b:00007fa9141b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  371.281147][T16876] RAX: ffffffffffffffda RBX: 00007fa9135e5fa0 RCX: 00007fa91338f749
[  371.281155][T16876] RDX: 0000000000000018 RSI: 0000200000000540 RDI: 0000000000000003
[  371.281164][T16876] RBP: 00007fa9141b1090 R08: 0000000000000000 R09: 0000000000000000
[  371.281172][T16876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.281180][T16876] R13: 00007fa9135e6038 R14: 00007fa9135e5fa0 R15: 00007fff0e5a9628
[  371.281199][T16876]  </TASK>
[  371.337466][  T843] usb 6-1: new high-speed USB device number 88 using dummy_hcd
[  371.337682][   T10] usb 11-1: new low-speed USB device number 7 using dummy_hcd
[  371.365216][T16880] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  371.367914][T16882] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3928'.
[  371.388737][  T843] usb 6-1: device descriptor read/8, error -71
[  371.514103][   T10] usb 11-1: config 0 has an invalid interface number: 1 but max is 0
[  371.517713][   T10] usb 11-1: config 0 has no interface number 0
[  371.520472][   T10] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  371.525191][   T10] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  371.530589][   T10] usb 11-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  371.534763][   T10] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.540693][   T10] usb 11-1: config 0 descriptor??
[  371.543733][T16869] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  371.549974][   T10] iowarrior 11-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  371.579042][T16889] netlink: 165 bytes leftover after parsing attributes in process `syz.3.3930'.
[  371.583410][T16889] netlink: 73 bytes leftover after parsing attributes in process `syz.3.3930'.
[  371.614999][T16895] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3932'.
[  371.627173][  T843] usb 6-1: new high-speed USB device number 89 using dummy_hcd
[  371.632377][T16897] FAULT_INJECTION: forcing a failure.
[  371.632377][T16897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  371.636880][T16897] CPU: 1 UID: 0 PID: 16897 Comm: syz.3.3933 Not tainted syzkaller #0 PREEMPT(full) 
[  371.636895][T16897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.636902][T16897] Call Trace:
[  371.636906][T16897]  <TASK>
[  371.636910][T16897]  dump_stack_lvl+0x16c/0x1f0
[  371.636925][T16897]  should_fail_ex+0x512/0x640
[  371.636940][T16897]  _copy_from_user+0x2e/0xd0
[  371.636954][T16897]  copy_msghdr_from_user+0x98/0x160
[  371.636969][T16897]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  371.636990][T16897]  ___sys_sendmsg+0xfe/0x1d0
[  371.637004][T16897]  ? __pfx____sys_sendmsg+0x10/0x10
[  371.637035][T16897]  ? __pfx___might_resched+0x10/0x10
[  371.637050][T16897]  ? __sys_sendmmsg+0x229/0x420
[  371.637065][T16897]  __sys_sendmmsg+0x200/0x420
[  371.637093][T16897]  ? __pfx___sys_sendmmsg+0x10/0x10
[  371.637112][T16897]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  371.637129][T16897]  ? fput+0x9b/0xd0
[  371.637143][T16897]  ? ksys_write+0x1ac/0x250
[  371.637153][T16897]  ? __pfx_ksys_write+0x10/0x10
[  371.637165][T16897]  __x64_sys_sendmmsg+0x9c/0x100
[  371.637179][T16897]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.637189][T16897]  do_syscall_64+0xcd/0xfa0
[  371.637200][T16897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.637211][T16897] RIP: 0033:0x7fe329f8f749
[  371.637220][T16897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.637231][T16897] RSP: 002b:00007fe32af05038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  371.637242][T16897] RAX: ffffffffffffffda RBX: 00007fe32a1e5fa0 RCX: 00007fe329f8f749
[  371.637248][T16897] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000003
[  371.637255][T16897] RBP: 00007fe32af05090 R08: 0000000000000000 R09: 0000000000000000
[  371.637261][T16897] R10: 000000000000001c R11: 0000000000000246 R12: 0000000000000001
[  371.637267][T16897] R13: 00007fe32a1e6038 R14: 00007fe32a1e5fa0 R15: 00007fff5aec3d98
[  371.637281][T16897]  </TASK>
[  371.699951][  T843] usb 6-1: device descriptor read/8, error -71
[  371.734395][T16901] syzkaller1: entered promiscuous mode
[  371.736857][T16901] syzkaller1: entered allmulticast mode
[  371.807540][  T843] usb usb6-port1: unable to enumerate USB device
[  371.810830][   T54] usb 11-1: USB disconnect, device number 7
[  371.839579][T16905] FAULT_INJECTION: forcing a failure.
[  371.839579][T16905] name failslab, interval 1, probability 0, space 0, times 0
[  371.844906][T16905] CPU: 3 UID: 0 PID: 16905 Comm: syz.4.3936 Not tainted syzkaller #0 PREEMPT(full) 
[  371.844928][T16905] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.844940][T16905] Call Trace:
[  371.844947][T16905]  <TASK>
[  371.844954][T16905]  dump_stack_lvl+0x16c/0x1f0
[  371.844976][T16905]  should_fail_ex+0x512/0x640
[  371.844996][T16905]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  371.845020][T16905]  should_failslab+0xc2/0x120
[  371.845042][T16905]  kmem_cache_alloc_noprof+0x75/0x6e0
[  371.845068][T16905]  ? skb_clone+0x190/0x3f0
[  371.845096][T16905]  ? skb_clone+0x190/0x3f0
[  371.845117][T16905]  skb_clone+0x190/0x3f0
[  371.845142][T16905]  netlink_deliver_tap+0xabd/0xd30
[  371.845173][T16905]  netlink_unicast+0x64c/0x870
[  371.845202][T16905]  ? __pfx_netlink_unicast+0x10/0x10
[  371.845238][T16905]  netlink_sendmsg+0x8c8/0xdd0
[  371.845267][T16905]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.845301][T16905]  ____sys_sendmsg+0xa98/0xc70
[  371.845319][T16905]  ? copy_msghdr_from_user+0x10a/0x160
[  371.845347][T16905]  ? __pfx_____sys_sendmsg+0x10/0x10
[  371.845377][T16905]  ___sys_sendmsg+0x134/0x1d0
[  371.845402][T16905]  ? __pfx____sys_sendmsg+0x10/0x10
[  371.845422][T16905]  ? __lock_acquire+0x622/0x1c90
[  371.845470][T16905]  __sys_sendmsg+0x16d/0x220
[  371.845494][T16905]  ? __pfx___sys_sendmsg+0x10/0x10
[  371.845534][T16905]  do_syscall_64+0xcd/0xfa0
[  371.845553][T16905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.845570][T16905] RIP: 0033:0x7fa91338f749
[  371.845585][T16905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.845600][T16905] RSP: 002b:00007fa9141b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  371.845617][T16905] RAX: ffffffffffffffda RBX: 00007fa9135e5fa0 RCX: 00007fa91338f749
[  371.845628][T16905] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 0000000000000003
[  371.845639][T16905] RBP: 00007fa9141b1090 R08: 0000000000000000 R09: 0000000000000000
[  371.845649][T16905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.845659][T16905] R13: 00007fa9135e6038 R14: 00007fa9135e5fa0 R15: 00007fff0e5a9628
[  371.845685][T16905]  </TASK>
[  371.845788][T16905] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  372.029819][T16914] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3939'.
[  372.069331][T16916] bridge0: entered allmulticast mode
[  372.191288][T16923] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  372.193429][T16923] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  372.196009][T16923] vhci_hcd vhci_hcd.0: Device attached
[  372.204037][T16924] vhci_hcd: connection closed
[  372.205673][T15859] vhci_hcd: stop threads
[  372.209676][T15859] vhci_hcd: release socket
[  372.211587][T15859] vhci_hcd: disconnect device
[  372.345536][T16927] FAULT_INJECTION: forcing a failure.
[  372.345536][T16927] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  372.350209][T16927] CPU: 2 UID: 0 PID: 16927 Comm: syz.6.3944 Not tainted syzkaller #0 PREEMPT(full) 
[  372.350223][T16927] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  372.350230][T16927] Call Trace:
[  372.350234][T16927]  <TASK>
[  372.350238][T16927]  dump_stack_lvl+0x16c/0x1f0
[  372.350252][T16927]  should_fail_ex+0x512/0x640
[  372.350282][T16927]  should_fail_alloc_page+0xe7/0x130
[  372.350297][T16927]  prepare_alloc_pages+0x3c2/0x610
[  372.350313][T16927]  ? rcu_is_watching+0x12/0xc0
[  372.350329][T16927]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  372.350347][T16927]  ? rcu_is_watching+0x12/0xc0
[  372.350360][T16927]  ? trace_mm_page_alloc+0x11f/0x1a0
[  372.350372][T16927]  ? __alloc_frozen_pages_noprof+0x292/0x2470
[  372.350390][T16927]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  372.350408][T16927]  ? is_bpf_text_address+0x8a/0x1a0
[  372.350422][T16927]  ? bpf_ksym_find+0x127/0x1c0
[  372.350437][T16927]  ? is_bpf_text_address+0x94/0x1a0
[  372.350450][T16927]  ? kernel_text_address+0x8d/0x100
[  372.350462][T16927]  ? __kernel_text_address+0xd/0x40
[  372.350473][T16927]  ? unwind_get_return_address+0x59/0xa0
[  372.350492][T16927]  alloc_pages_bulk_noprof+0x77a/0x1410
[  372.350507][T16927]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  372.350522][T16927]  ? policy_nodemask+0xea/0x4e0
[  372.350536][T16927]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  372.350553][T16927]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  372.350571][T16927]  kasan_populate_vmalloc+0x112/0x2d0
[  372.350580][T16927]  ? alloc_vmap_area+0x8b5/0x29e0
[  372.350594][T16927]  alloc_vmap_area+0x960/0x29e0
[  372.350611][T16927]  ? __pfx_alloc_vmap_area+0x10/0x10
[  372.350626][T16927]  __get_vm_area_node+0x1ca/0x330
[  372.350640][T16927]  __vmalloc_node_range_noprof+0x271/0x1480
[  372.350654][T16927]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  372.350667][T16927]  ? find_held_lock+0x2b/0x80
[  372.350681][T16927]  ? avc_has_perm_noaudit+0x117/0x3b0
[  372.350696][T16927]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  372.350712][T16927]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  372.350725][T16927]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  372.350742][T16927]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  372.350753][T16927]  __vmalloc_node_noprof+0xad/0xf0
[  372.350766][T16927]  ? bpf_prog_alloc_no_stats+0x58/0x610
[  372.350780][T16927]  bpf_prog_alloc_no_stats+0x58/0x610
[  372.350791][T16927]  ? security_capable+0x7e/0x260
[  372.350808][T16927]  bpf_prog_alloc+0x3b/0x230
[  372.350819][T16927]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  372.350832][T16927]  bpf_prog_load+0x1c28/0x2850
[  372.350850][T16927]  ? __pfx_bpf_prog_load+0x10/0x10
[  372.350866][T16927]  ? avc_has_perm_noaudit+0x149/0x3b0
[  372.350882][T16927]  ? avc_has_perm+0x144/0x1f0
[  372.350923][T16927]  ? selinux_bpf+0xde/0x130
[  372.350937][T16927]  ? bpf_lsm_bpf+0x9/0x10
[  372.350950][T16927]  __sys_bpf+0x3e72/0x4980
[  372.350968][T16927]  ? __pfx___sys_bpf+0x10/0x10
[  372.350983][T16927]  ? find_held_lock+0x2b/0x80
[  372.350998][T16927]  ? find_held_lock+0x2b/0x80
[  372.351015][T16927]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  372.351034][T16927]  ? fput+0x9b/0xd0
[  372.351047][T16927]  ? ksys_write+0x1ac/0x250
[  372.351058][T16927]  ? __pfx_ksys_write+0x10/0x10
[  372.351070][T16927]  __x64_sys_bpf+0x78/0xc0
[  372.351079][T16927]  ? lockdep_hardirqs_on+0x7c/0x110
[  372.351090][T16927]  do_syscall_64+0xcd/0xfa0
[  372.351100][T16927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.351111][T16927] RIP: 0033:0x7f158c58f749
[  372.351120][T16927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.351131][T16927] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  372.351141][T16927] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  372.351148][T16927] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[  372.351154][T16927] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  372.351160][T16927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.351166][T16927] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  372.351179][T16927]  </TASK>
[  372.747266][ T5292] Bluetooth: hci0: command 0x0c1a tx timeout
[  372.747358][ T6060] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  372.752261][ T6060] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  372.796701][T16943] FAULT_INJECTION: forcing a failure.
[  372.796701][T16943] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.805774][T16943] CPU: 2 UID: 0 PID: 16943 Comm: syz.6.3952 Not tainted syzkaller #0 PREEMPT(full) 
[  372.805798][T16943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  372.805808][T16943] Call Trace:
[  372.805814][T16943]  <TASK>
[  372.805821][T16943]  dump_stack_lvl+0x16c/0x1f0
[  372.805843][T16943]  should_fail_ex+0x512/0x640
[  372.805868][T16943]  _copy_from_iter+0x463/0x1720
[  372.805897][T16943]  ? __pfx__copy_from_iter+0x10/0x10
[  372.805920][T16943]  ? lock_acquire+0x179/0x350
[  372.805938][T16943]  ? find_held_lock+0x2b/0x80
[  372.805964][T16943]  skb_copy_datagram_from_iter+0x124/0x740
[  372.805995][T16943]  ? __local_bh_enable_ip+0xa4/0x120
[  372.806017][T16943]  ? lockdep_hardirqs_on+0x7c/0x110
[  372.806032][T16943]  ? __netdev_alloc_frag_align+0xcb/0x120
[  372.806055][T16943]  tun_get_user+0x1850/0x3cc0
[  372.806092][T16943]  ? __pfx_tun_get_user+0x10/0x10
[  372.806117][T16943]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  372.806147][T16943]  ? find_held_lock+0x2b/0x80
[  372.806169][T16943]  ? tun_get+0x191/0x370
[  372.806197][T16943]  tun_chr_write_iter+0xdc/0x210
[  372.806223][T16943]  do_iter_readv_writev+0x662/0x9e0
[  372.806251][T16943]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  372.806275][T16943]  ? __import_iovec+0x1dd/0x650
[  372.806295][T16943]  ? avc_policy_seqno+0x9/0x20
[  372.806318][T16943]  ? selinux_file_permission+0x126/0x660
[  372.806340][T16943]  ? bpf_lsm_file_permission+0x9/0x10
[  372.806358][T16943]  ? security_file_permission+0x71/0x210
[  372.806380][T16943]  ? rw_verify_area+0xcf/0x6c0
[  372.806408][T16943]  vfs_writev+0x35f/0xde0
[  372.806440][T16943]  ? __pfx_vfs_writev+0x10/0x10
[  372.806485][T16943]  ? __fget_files+0x20e/0x3c0
[  372.806501][T16943]  ? __fget_files+0x140/0x3c0
[  372.806525][T16943]  ? do_writev+0x132/0x340
[  372.806548][T16943]  do_writev+0x132/0x340
[  372.806574][T16943]  ? __pfx_do_writev+0x10/0x10
[  372.806607][T16943]  do_syscall_64+0xcd/0xfa0
[  372.806627][T16943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.806644][T16943] RIP: 0033:0x7f158c58f749
[  372.806659][T16943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.806675][T16943] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  372.806693][T16943] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  372.806704][T16943] RDX: 0000000000000004 RSI: 0000200000000600 RDI: 0000000000000003
[  372.806715][T16943] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  372.806725][T16943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.806735][T16943] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  372.806761][T16943]  </TASK>
[  372.991735][T16952] FAULT_INJECTION: forcing a failure.
[  372.991735][T16952] name failslab, interval 1, probability 0, space 0, times 0
[  372.995961][T16952] CPU: 3 UID: 0 PID: 16952 Comm: syz.6.3956 Not tainted syzkaller #0 PREEMPT(full) 
[  372.995976][T16952] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  372.995983][T16952] Call Trace:
[  372.995988][T16952]  <TASK>
[  372.995992][T16952]  dump_stack_lvl+0x16c/0x1f0
[  372.996007][T16952]  should_fail_ex+0x512/0x640
[  372.996021][T16952]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  372.996036][T16952]  should_failslab+0xc2/0x120
[  372.996050][T16952]  kmem_cache_alloc_noprof+0x75/0x6e0
[  372.996067][T16952]  ? skb_clone+0x190/0x3f0
[  372.996084][T16952]  ? skb_clone+0x190/0x3f0
[  372.996117][T16952]  skb_clone+0x190/0x3f0
[  372.996136][T16952]  netlink_deliver_tap+0xabd/0xd30
[  372.996154][T16952]  netlink_unicast+0x64c/0x870
[  372.996172][T16952]  ? __pfx_netlink_unicast+0x10/0x10
[  372.996192][T16952]  netlink_sendmsg+0x8c8/0xdd0
[  372.996210][T16952]  ? __pfx_netlink_sendmsg+0x10/0x10
[  372.996230][T16952]  ____sys_sendmsg+0xa98/0xc70
[  372.996241][T16952]  ? copy_msghdr_from_user+0x10a/0x160
[  372.996255][T16952]  ? __pfx_____sys_sendmsg+0x10/0x10
[  372.996272][T16952]  ___sys_sendmsg+0x134/0x1d0
[  372.996287][T16952]  ? __pfx____sys_sendmsg+0x10/0x10
[  372.996300][T16952]  ? __lock_acquire+0x622/0x1c90
[  372.996331][T16952]  __sys_sendmsg+0x16d/0x220
[  372.996345][T16952]  ? __pfx___sys_sendmsg+0x10/0x10
[  372.996368][T16952]  do_syscall_64+0xcd/0xfa0
[  372.996379][T16952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.996391][T16952] RIP: 0033:0x7f158c58f749
[  372.996400][T16952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.996411][T16952] RSP: 002b:00007f158d424038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  372.996421][T16952] RAX: ffffffffffffffda RBX: 00007f158c7e5fa0 RCX: 00007f158c58f749
[  372.996428][T16952] RDX: 0000000004000050 RSI: 0000200000000000 RDI: 0000000000000004
[  372.996434][T16952] RBP: 00007f158d424090 R08: 0000000000000000 R09: 0000000000000000
[  372.996440][T16952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.996446][T16952] R13: 00007f158c7e6038 R14: 00007f158c7e5fa0 R15: 00007fff7d9895b8
[  372.996460][T16952]  </TASK>
[  372.996787][T16952] Set syz1 is full, maxelem 46 reached
[  373.033121][T16957] netlink: 6 bytes leftover after parsing attributes in process `syz.1.3957'.
[  373.076227][  T843] usb 8-1: new high-speed USB device number 90 using dummy_hcd
[  373.076255][T16957] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  373.124682][T16966] FAULT_INJECTION: forcing a failure.
[  373.124682][T16966] name failslab, interval 1, probability 0, space 0, times 0
[  373.130720][T16966] CPU: 3 UID: 0 PID: 16966 Comm: syz.1.3961 Not tainted syzkaller #0 PREEMPT(full) 
[  373.130744][T16966] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.130755][T16966] Call Trace:
[  373.130762][T16966]  <TASK>
[  373.130769][T16966]  dump_stack_lvl+0x16c/0x1f0
[  373.130790][T16966]  should_fail_ex+0x512/0x640
[  373.130810][T16966]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  373.130836][T16966]  should_failslab+0xc2/0x120
[  373.130858][T16966]  kmem_cache_alloc_noprof+0x75/0x6e0
[  373.130885][T16966]  ? skb_clone+0x190/0x3f0
[  373.130914][T16966]  ? skb_clone+0x190/0x3f0
[  373.130936][T16966]  skb_clone+0x190/0x3f0
[  373.130961][T16966]  netlink_deliver_tap+0xabd/0xd30
[  373.130992][T16966]  netlink_unicast+0x64c/0x870
[  373.131022][T16966]  ? __pfx_netlink_unicast+0x10/0x10
[  373.131058][T16966]  netlink_sendmsg+0x8c8/0xdd0
[  373.131088][T16966]  ? __pfx_netlink_sendmsg+0x10/0x10
[  373.131124][T16966]  ____sys_sendmsg+0xa98/0xc70
[  373.131143][T16966]  ? copy_msghdr_from_user+0x10a/0x160
[  373.131166][T16966]  ? __pfx_____sys_sendmsg+0x10/0x10
[  373.131197][T16966]  ___sys_sendmsg+0x134/0x1d0
[  373.131222][T16966]  ? __pfx____sys_sendmsg+0x10/0x10
[  373.131243][T16966]  ? __lock_acquire+0x622/0x1c90
[  373.131294][T16966]  __sys_sendmsg+0x16d/0x220
[  373.131324][T16966]  ? __pfx___sys_sendmsg+0x10/0x10
[  373.131365][T16966]  do_syscall_64+0xcd/0xfa0
[  373.131385][T16966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.131403][T16966] RIP: 0033:0x7f015fd8f749
[  373.131417][T16966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.131434][T16966] RSP: 002b:00007f0160cc8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  373.131451][T16966] RAX: ffffffffffffffda RBX: 00007f015ffe5fa0 RCX: 00007f015fd8f749
[  373.131462][T16966] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  373.131473][T16966] RBP: 00007f0160cc8090 R08: 0000000000000000 R09: 0000000000000000
[  373.131483][T16966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.131494][T16966] R13: 00007f015ffe6038 R14: 00007f015ffe5fa0 R15: 00007fffdf4bf738
[  373.131520][T16966]  </TASK>
[  373.227815][    C1] ------------[ cut here ]------------
[  373.232498][    C1] ODEBUG: free active (active state 0) object: ffff888029d4bc90 object type: timer_list hint: rose_t0timer_expiry+0x0/0x150
[  373.238150][    C1] WARNING: CPU: 1 PID: 0 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[  373.241756][    C1] Modules linked in:
[  373.244089][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
[  373.244549][  T843] usb 8-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  373.249378][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.258234][  T843] usb 8-1: config 1 interface 0 has no altsetting 0
[  373.258958][    C1] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  373.263048][  T843] usb 8-1: New USB device found, idVendor=05ac, idProduct=0263, bcdDevice= 0.40
[  373.263577][    C1] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd a0 84 f0 8b 4c 89 e6 48 c7 c7 20 79 f0 8b e8 bf a7 ce fc 90 <0f> 0b 90 90 58 83 05 d6 d3 d5 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  373.266381][  T843] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.267788][T16969] FAULT_INJECTION: forcing a failure.
[  373.267788][T16969] name failslab, interval 1, probability 0, space 0, times 0
[  373.267835][T16969] CPU: 3 UID: 0 PID: 16969 Comm: syz.1.3962 Not tainted syzkaller #0 PREEMPT(full) 
[  373.267856][T16969] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.267867][T16969] Call Trace:
[  373.267874][T16969]  <TASK>
[  373.267880][T16969]  dump_stack_lvl+0x16c/0x1f0
[  373.267902][T16969]  should_fail_ex+0x512/0x640
[  373.267923][T16969]  ? __kmalloc_noprof+0xca/0x880
[  373.267950][T16969]  should_failslab+0xc2/0x120
[  373.267972][T16969]  __kmalloc_noprof+0xdd/0x880
[  373.267997][T16969]  ? __kfifo_alloc+0x135/0x270
[  373.268027][T16969]  ? __kfifo_alloc+0x135/0x270
[  373.268051][T16969]  __kfifo_alloc+0x135/0x270
[  373.268077][T16969]  gsm_dlci_alloc+0xac/0x7b0
[  373.268127][T16969]  ? _copy_from_user+0x59/0xd0
[  373.268151][T16969]  gsmld_ioctl+0x125d/0x1550
[  373.268173][T16969]  ? lockdep_hardirqs_on+0x7c/0x110
[  373.268192][T16969]  ? __pfx_gsmld_ioctl+0x10/0x10
[  373.268214][T16969]  ? __ldsem_down_read_nested+0xf3/0x8a0
[  373.268237][T16969]  ? __pfx___ldsem_down_read_nested+0x10/0x10
[  373.268265][T16969]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  373.268294][T16969]  ? __pfx_gsmld_ioctl+0x10/0x10
[  373.268318][T16969]  tty_ioctl+0x700/0x1680
[  373.268346][T16969]  ? __pfx_tty_ioctl+0x10/0x10
[  373.268371][T16969]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  373.268401][T16969]  ? hook_file_ioctl_common+0x145/0x410
[  373.268433][T16969]  ? selinux_file_ioctl+0x180/0x270
[  373.268452][T16969]  ? selinux_file_ioctl+0xb4/0x270
[  373.268473][T16969]  ? __pfx_tty_ioctl+0x10/0x10
[  373.268499][T16969]  __x64_sys_ioctl+0x18e/0x210
[  373.268527][T16969]  do_syscall_64+0xcd/0xfa0
[  373.268546][T16969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.268564][T16969] RIP: 0033:0x7f015fd8f749
[  373.268578][T16969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.268595][T16969] RSP: 002b:00007f0160cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  373.268612][T16969] RAX: ffffffffffffffda RBX: 00007f015ffe5fa0 RCX: 00007f015fd8f749
[  373.268625][T16969] RDX: 0000200000000080 RSI: 0000000040384708 RDI: 0000000000000003
[  373.268636][T16969] RBP: 00007f0160cc8090 R08: 0000000000000000 R09: 0000000000000000
[  373.268646][T16969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.268655][T16969] R13: 00007f015ffe6038 R14: 00007f015ffe5fa0 R15: 00007fffdf4bf738
[  373.268679][T16969]  </TASK>
[  373.274559][    C1] RSP: 0018:ffffc900006a0a18 EFLAGS: 00010282
[  373.274584][    C1] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817b1cd8
[  373.277982][  T843] usb 8-1: Product: 㧶囻掃ᠱ늎㌨醷៉ദ巭튫꥕仉囿ꮛဟ椣쨙益蹡즮⾯Ẓ惖힟⡟䣆㲃꘮梌 䋵ᐔᆭ宀ྫҸ먦嘿㙠ꝩ挎䟷뒊陚媞⸀퉔䘣᳁ර絮ై똷ꚜ涍墙嘌墋鸌쵢﷬㐥쁪恛㡨㊤⋴Ƃर됦ꃨ曯䃌倥캳轩쀋씠㚡⽢誕㺙᭮蝐㙨謭
[  373.283381][    C1] RDX: ffff88801da9a480 RSI: ffffffff817b1ce5 RDI: 0000000000000001
[  373.287389][  T843] usb 8-1: Manufacturer: 、
[  373.287407][  T843] usb 8-1: SerialNumber: ࠇ
[  373.310915][T16972] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3963'.
[  373.311090][    C1] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  373.321564][T16964] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3959'.
[  373.323765][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff8bf07fc0
[  373.423111][    C1] R13: ffffffff8b9021e0 R14: ffffffff8a4dbdc0 R15: ffffc900006a0b18
[  373.426403][    C1] FS:  0000000000000000(0000) GS:ffff8880d6b05000(0000) knlGS:0000000000000000
[  373.430278][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  373.433114][    C1] CR2: 000000110c4290a4 CR3: 000000004da9f000 CR4: 0000000000352ef0
[  373.436302][    C1] Call Trace:
[  373.437842][    C1]  <IRQ>
[  373.439086][    C1]  ? __pfx_rose_t0timer_expiry+0x10/0x10
[  373.441587][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  373.444055][    C1]  debug_check_no_obj_freed+0x4b7/0x600
[  373.446425][    C1]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  373.449104][    C1]  ? mark_held_locks+0x49/0x80
[  373.451205][    C1]  ? kasan_quarantine_put+0x10a/0x240
[  373.453507][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  373.455649][    C1]  kfree+0x291/0x6d0
[  373.457463][    C1]  ? rose_timer_expiry+0x53f/0x630
[  373.459695][    C1]  ? rose_timer_expiry+0x53f/0x630
[  373.461934][    C1]  rose_timer_expiry+0x53f/0x630
[  373.464048][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  373.466385][    C1]  call_timer_fn+0x19a/0x620
[  373.468435][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  373.470656][    C1]  ? rcu_is_watching+0x12/0xc0
[  373.472784][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  373.475078][    C1]  __run_timers+0x6ef/0x960
[  373.477041][    C1]  ? __pfx___run_timers+0x10/0x10
[  373.479022][    C1]  run_timer_base+0x114/0x190
[  373.480641][    C1]  ? __pfx_run_timer_base+0x10/0x10
[  373.482726][    C1]  ? rcu_is_watching+0x12/0xc0
[  373.484574][    C1]  run_timer_softirq+0x1a/0x40
[  373.486103][    C1]  handle_softirqs+0x219/0x8e0
[  373.487680][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  373.489627][    C1]  __irq_exit_rcu+0x109/0x170
[  373.491576][    C1]  irq_exit_rcu+0x9/0x30
[  373.493381][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  373.495775][    C1]  </IRQ>
[  373.497054][    C1]  <TASK>
[  373.498277][  T843] usbhid 8-1:1.0: can't add hid device: -71
[  373.498368][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  373.500527][  T843] usbhid 8-1:1.0: probe with driver usbhid failed with error -71
[  373.502689][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  373.502713][    C1] Code: b7 6c 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d 83 65 29 00 fb f4 <e9> 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  373.502724][    C1] RSP: 0018:ffffc90000177de8 EFLAGS: 00000286
[  373.506273][  T843] usb 8-1: USB disconnect, device number 90
[  373.507023][    C1] RAX: 000000000072c039 RBX: 0000000000000001 RCX: ffffffff8b60c2a9
[  373.507032][    C1] RDX: 0000000000000000 RSI: ffffffff8da2c177 RDI: ffffffff8bf073c0
[  373.507040][    C1] RBP: ffffed1003b53490 R08: 0000000000000001 R09: ffffed100d4a6655
[  373.507046][    C1] R10: ffff88806a5332ab R11: 0000000000000001 R12: 0000000000000001
[  373.507053][    C1] R13: ffff88801da9a480 R14: ffffffff908216d0 R15: 0000000000000000
[  373.517250][   T10] usb 11-1: new high-speed USB device number 8 using dummy_hcd
[  373.518886][    C1]  ? ct_kernel_exit+0x139/0x190
[  373.539808][    C1]  default_idle+0x13/0x20
[  373.541525][    C1]  default_idle_call+0x6c/0xb0
[  373.543542][    C1]  do_idle+0x38d/0x500
[  373.545327][    C1]  ? __pfx_do_idle+0x10/0x10
[  373.547376][    C1]  ? trace_sched_exit_tp+0x2f/0x120
[  373.549579][    C1]  cpu_startup_entry+0x4f/0x60
[  373.551661][    C1]  start_secondary+0x21d/0x2b0
[  373.553707][    C1]  ? __pfx_start_secondary+0x10/0x10
[  373.555936][    C1]  common_startup_64+0x13e/0x148
[  373.558209][    C1]  </TASK>
[  373.559582][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  373.562198][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
[  373.565658][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.570234][    C1] Call Trace:
[  373.571689][    C1]  <IRQ>
[  373.572959][    C1]  dump_stack_lvl+0x3d/0x1f0
[  373.574929][    C1]  vpanic+0x640/0x6f0
[  373.576719][    C1]  ? debug_print_object+0x1a2/0x2b0
[  373.578989][    C1]  panic+0xca/0xd0
[  373.580684][    C1]  ? __pfx_panic+0x10/0x10
[  373.582656][    C1]  ? check_panic_on_warn+0x1f/0xb0
[  373.584804][    C1]  check_panic_on_warn+0xab/0xb0
[  373.586868][    C1]  __warn+0xf6/0x3c0
[  373.588521][    C1]  ? debug_print_object+0x1a2/0x2b0
[  373.590344][    C1]  report_bug+0x3c3/0x580
[  373.592142][    C1]  ? debug_print_object+0x1a2/0x2b0
[  373.593844][    C1]  handle_bug+0x184/0x210
[  373.595555][    C1]  exc_invalid_op+0x17/0x50
[  373.597336][    C1]  asm_exc_invalid_op+0x1a/0x20
[  373.599374][    C1] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  373.601840][    C1] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd a0 84 f0 8b 4c 89 e6 48 c7 c7 20 79 f0 8b e8 bf a7 ce fc 90 <0f> 0b 90 90 58 83 05 d6 d3 d5 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  373.609629][    C1] RSP: 0018:ffffc900006a0a18 EFLAGS: 00010282
[  373.612129][    C1] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817b1cd8
[  373.615434][    C1] RDX: ffff88801da9a480 RSI: ffffffff817b1ce5 RDI: 0000000000000001
[  373.618742][    C1] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  373.622120][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff8bf07fc0
[  373.625396][    C1] R13: ffffffff8b9021e0 R14: ffffffff8a4dbdc0 R15: ffffc900006a0b18
[  373.628712][    C1]  ? __pfx_rose_t0timer_expiry+0x10/0x10
[  373.630912][    C1]  ? __warn_printk+0x198/0x350
[  373.632804][    C1]  ? __warn_printk+0x1a5/0x350
[  373.634915][    C1]  ? debug_print_object+0x1a1/0x2b0
[  373.637229][    C1]  ? __pfx_rose_t0timer_expiry+0x10/0x10
[  373.639706][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  373.642279][    C1]  debug_check_no_obj_freed+0x4b7/0x600
[  373.644725][    C1]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  373.647411][    C1]  ? mark_held_locks+0x49/0x80
[  373.649545][    C1]  ? kasan_quarantine_put+0x10a/0x240
[  373.651896][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  373.654215][    C1]  kfree+0x291/0x6d0
[  373.655949][    C1]  ? rose_timer_expiry+0x53f/0x630
[  373.658240][    C1]  ? rose_timer_expiry+0x53f/0x630
[  373.660452][    C1]  rose_timer_expiry+0x53f/0x630
[  373.662474][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  373.664851][    C1]  call_timer_fn+0x19a/0x620
[  373.666904][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  373.669156][    C1]  ? rcu_is_watching+0x12/0xc0
[  373.671111][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  373.673389][    C1]  __run_timers+0x6ef/0x960
[  373.675311][    C1]  ? __pfx___run_timers+0x10/0x10
[  373.677557][    C1]  run_timer_base+0x114/0x190
[  373.679463][    C1]  ? __pfx_run_timer_base+0x10/0x10
[  373.681552][    C1]  ? rcu_is_watching+0x12/0xc0
[  373.683651][    C1]  run_timer_softirq+0x1a/0x40
[  373.685749][    C1]  handle_softirqs+0x219/0x8e0
[  373.687876][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  373.690241][    C1]  __irq_exit_rcu+0x109/0x170
[  373.692330][    C1]  irq_exit_rcu+0x9/0x30
[  373.694207][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  373.696669][    C1]  </IRQ>
[  373.698005][    C1]  <TASK>
[  373.699333][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  373.702002][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  373.704506][    C1] Code: b7 6c 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d 83 65 29 00 fb f4 <e9> 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  373.712828][    C1] RSP: 0018:ffffc90000177de8 EFLAGS: 00000286
[  373.715411][    C1] RAX: 000000000072c039 RBX: 0000000000000001 RCX: ffffffff8b60c2a9
[  373.718858][    C1] RDX: 0000000000000000 RSI: ffffffff8da2c177 RDI: ffffffff8bf073c0
[  373.722324][    C1] RBP: ffffed1003b53490 R08: 0000000000000001 R09: ffffed100d4a6655
[  373.725773][    C1] R10: ffff88806a5332ab R11: 0000000000000001 R12: 0000000000000001
[  373.729224][    C1] R13: ffff88801da9a480 R14: ffffffff908216d0 R15: 0000000000000000
[  373.732672][    C1]  ? ct_kernel_exit+0x139/0x190
[  373.734817][    C1]  default_idle+0x13/0x20
[  373.736673][    C1]  default_idle_call+0x6c/0xb0
[  373.738782][    C1]  do_idle+0x38d/0x500
[  373.740604][    C1]  ? __pfx_do_idle+0x10/0x10
[  373.742542][    C1]  ? trace_sched_exit_tp+0x2f/0x120
[  373.744786][    C1]  cpu_startup_entry+0x4f/0x60
[  373.746861][    C1]  start_secondary+0x21d/0x2b0
[  373.748967][    C1]  ? __pfx_start_secondary+0x10/0x10
[  373.751159][    C1]  common_startup_64+0x13e/0x148
[  373.753182][    C1]  </TASK>
[  373.755166][    C1] Kernel Offset: disabled
[  373.757020][    C1] Rebooting in 86400 seconds..

VM DIAGNOSIS:
05:18:14  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000002 RBX=ffffea0000f8b540 RCX=ffffffff81f49be6 RDX=ffff8880123f8000
RSI=ffffffff81f49bf0 RDI=0000000000000007 RBP=0000000000000000 RSP=ffffc90005e6f658
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000907 R13=ffffc90005e6f9a0 R14=dffffc0000000000 R15=ffffea0000f8b540
RIP=ffffffff81bce816 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fa9141b16c0 ffffffff 00c00000
GS =0000 ffff8880d6a05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3a0333 CR3=0000000032cef000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff0e5a99b0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa913415050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa91341505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa913415057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa91341506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9134150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9134151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000060
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000060
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d6f5006ba81fcc0 2bc7708abbc7da8f 8829d53a93e44ad5 3c9e836bd318ae96
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 51f8b2f3ab5d5348 56208e02eda61120 04a71cafa0b91ac7 e8ace31374ae4f03
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c2f85a17f7ed4ca0 1085138c36862e8e c7cf7b37f2f614a8 f17229b6ae7b4a6d
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff852972d0 RDI=ffffffff9addb780 RBP=ffffffff9addb740 RSP=ffffc900006a0328
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35bb742 R15=dffffc0000000000
RIP=ffffffff852972f7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6b05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c4290a4 CR3=000000004da9f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000fe000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff5aec4120 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a015050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a01505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a015057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a01506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a0150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a0151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000078 RCX=ffffffff819bcf31 RDX=ffff888026f60000
RSI=ffffffff819bcf1f RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc900056ff348
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=1ffff92000adfe6b R13=0000000000000200 R14=ffff88801da9a480 R15=ffffc900056ff410
RIP=ffffffff819bcf28 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6c05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fff0e5a8e00 CR3=000000003c7f4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffff800 Opmask01=0000000000000000 Opmask02=00000000fe000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32af02f70 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a015050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a01505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a015057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a01506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a0150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe32a0151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000332e63 64755f796d6d7564
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000003 RBX=ffffffff8e3c4760 RCX=0000000000000002 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8e3c4760 RBP=0000000000000002 RSP=ffffc9000769f300
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=00000000000062bc
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8198a418 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 000055558ebe5500 ffffffff 00c00000
GS =0000 ffff8880d6d05000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f015ffb42f8 CR3=00000000377ae000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020000040 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffdf4bfac0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f015fe15050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f015fe1505d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f015fe15057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f015fe1506b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f015fe150f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f015fe151cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000003b800000004 000001d0000000e8 00000000000001d0 000000e800000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7400736e6f736972 61706d6f6320796e 616d206f6f740075 6c6c253d73706d6f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 636e00644674754f 6b2065736f6c6320 6f742064656c6961 66007265746c6966
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000