last executing test programs:

1m11.378980871s ago: executing program 1 (id=2200):
r0 = socket$igmp6(0xa, 0x3, 0x2)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e24, 0x3261, @loopback, 0xb}, 0x1c)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000005c0), 0xa180, 0x0)
readahead(r1, 0xd5, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r3=>0x0})
syz_clone3(&(0x7f00000003c0)={0x80080, &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)=<r4=>0x0, {0x25}, &(0x7f00000001c0)=""/179, 0xb3, &(0x7f0000000280)=""/216, &(0x7f0000000380)=[0xffffffffffffffff], 0x1}, 0x58)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r1, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x38, r2, 0x10, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x5c}, @void, @void}}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}, @NL80211_ATTR_PID={0x8, 0x52, r4}, @NL80211_ATTR_WDEV={0xc, 0x99, {0xd0be, 0x68}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4041}, 0x48040)

1m11.326609722s ago: executing program 1 (id=2201):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x0, 0x13012, r0, 0x0)
mprotect(&(0x7f0000ff7000/0x1000)=nil, 0x1000, 0xb)
syz_emit_ethernet(0x86, &(0x7f00000001c0)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@noop]}}, @time_exceeded={0x3, 0x1, 0x0, 0x3, 0x61, 0x0, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x2f, 0x9, @dev={0xac, 0x14, 0x14, 0x10}, @remote, {[@timestamp_addr={0x44, 0x44, 0x0, 0x1, 0x0, [{@rand_addr=0x86dd}, {@remote}, {@dev={0xac, 0x14, 0x14, 0xa}}, {@rand_addr, 0x8}, {@empty}, {@loopback}, {@local, 0x4}, {@multicast1}]}]}}}}}}}, 0x0)
r1 = memfd_create(&(0x7f0000000040)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbc\x04\x00i\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\x02\xf1\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10Dh$P\x99\xbf2\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9aY\xbb\x86O\xcc:8\x7f\n\xeeAS]\xb2\xb2\x1b9K\x92\\f\xfaf\xaaG\x1fK\x90\xdaK^\rT\x8cW\v\xda~\\-u\xc9\xe3\xef\x1fvL', 0x6)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x100, 0x0, 0x65dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffff}, {0xffff, 0xfff1}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_TARGET={0x8, 0x3, 0x20}, @TCA_FQ_PIE_LIMIT={0x8, 0x1, 0x6}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$nfc_llcp(r3, &(0x7f0000000240)={0x27, 0x0, 0x0, 0x6, 0x0, 0x3, "e885099027dd039a5be42200000000000000000000000000000000fcb3d9ac0000000000000000000000000000000000000000040020bf828521892b3f00", 0x13}, 0x60)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)
r4 = syz_open_dev$evdev(&(0x7f0000001e00), 0x1, 0x80)
ioctl$EVIOCGVERSION(r4, 0x80044501, &(0x7f0000001e40)=""/161)
syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0)

1m11.198308419s ago: executing program 1 (id=2207):
socket$xdp(0x2c, 0x3, 0x0) (async)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000200)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB="00009133332c0000000000000000000000000000c366ef1ccec1e45be03a20fe4ee5a07fb1b52262b2eaf36038c7a18c2535654585708e6414b73f9d673163ca416d1f58a2c91cc2e17767cc53d680473a58fcb937f6c1a8caf080465d834596e3aec9dd69e222ea0869ee5cb63c3ada9e531282f87e365d0a44da3a9afc6bd814d21760f30eef4bdd5871013423554df306b614ba4b98ccde5d75da26b649af11fb00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r2}, &(0x7f0000000040), &(0x7f0000000240)}, 0x20) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r2}, &(0x7f0000000040), &(0x7f0000000240)}, 0x20)
ioctl$int_out(r1, 0x0, &(0x7f00000001c0))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xd, &(0x7f00000004c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0xe}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r4=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4) (async)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x8, r4, 0x0, r0}, 0x10)
mmap$xdp(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000002, 0x13, r0, 0x100000000) (async)
mmap$xdp(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000002, 0x13, r0, 0x100000000)

1m11.117870083s ago: executing program 1 (id=2209):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
syz_clone3(&(0x7f0000000080)={0xa690b000, &(0x7f0000000040), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
open(&(0x7f0000000000)='./file0/file1\x00', 0x119100, 0x2a)
r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='fdinfo/3\x00')
pread64(r0, &(0x7f0000000140)=""/106, 0x6a, 0x1000007)
openat(0xffffffffffffff9c, &(0x7f0000000640)='./file0/file0\x00', 0x4a300, 0xcd)

1m11.113682031s ago: executing program 1 (id=2214):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)

1m10.99865212s ago: executing program 1 (id=2218):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) (async)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$RTC_ALM_READ(r0, 0x40187013, &(0x7f0000000100)) (async, rerun: 64)
r1 = socket$netlink(0x10, 0x3, 0xc) (rerun: 64)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) (async)
unshare(0x26020480) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0800000004000000040000000900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000014403843880b010d582854ff0800006b00ef26975fcd46156cf8cd9abe4160f0e33d5bb2a868a2e79e6378ca80f7806ce42b087efa639b1107340d708d5148489b80c3d6fe3ae459af9f9ff7809f05cf03e2c33a72d01ddc5cba315f184ecd9e9f457c0956c904c9"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xa, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7030000070000008500000021000000b70000000000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r2}, &(0x7f0000000380), &(0x7f00000003c0)=r3}, 0x20) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r4) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000340)={'wlan0\x00', <r6=>0x0}) (async, rerun: 32)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_INTERFACE(r7, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="2508007a0000000000000700000008000300", @ANYRES32=r6, @ANYBLOB="1400060064756d6d7930000000000000000000001400040076657468315f746f5f626f016400000005005300010000000800050004"], 0x54}}, 0x0) (async, rerun: 32)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 32)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000006c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_DELRULE={0x290, 0x8, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x2}, @NFTA_RULE_EXPRESSIONS={0x24c, 0x4, 0x0, 0x1, [{0x154, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x144, 0x2, 0x0, 0x1, [@NFTA_RANGE_FROM_DATA={0x10c, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0xdd, 0x1, "fbf5495c42d5cee7f835497055cfc38a0cfd711b0897cc3cd1acfba46d4e4d75804fcce8f62055d47edd17cf39d8143336007304b549f769f08c9e012e8b7dbbe2b3bc6ae6af3f646fd8cccbc706d22a19a206b586d38f1e1840c8f62ad7a6508392e0e6439d860e50a3c341ff4f6db9b01b522b7be58f2afa6a80673333c28de4b5f300c6359d649480b5576e47284e213867d9a6e89d9740dfeab71c9aff028c53298c246f206b6c4d6e5e0dc0255329eaa61cc253331e7153e5ef9493bafa9d579e35a499fd1901b9028b96c6e7f3de233512cecf297e42"}]}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_TO_DATA={0x24, 0x4, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}]}]}}}, {0x40, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x907e}, @NFTA_QUOTA_FLAGS={0x8}, @NFTA_QUOTA_FLAGS={0x8}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}}}, {0x30, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0xf}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}]}}}, {0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @exthdr={{0xb}, @void}}, {0x58, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x4c, 0x2, 0x0, 0x1, [@NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0x21}, @NFTA_LOG_QTHRESHOLD={0x6, 0x4, 0x1, 0x0, 0x8001}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x5}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0xd}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x7}, @NFTA_LOG_GROUP={0x6}, @NFTA_LOG_QTHRESHOLD={0x6, 0x4, 0x1, 0x0, 0x33aa}, @NFTA_LOG_FLAGS={0x8}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0xc8}]}}}, {0xc, 0x1, 0x0, 0x1, @fwd={{0x8}, @void}}]}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}]}, @NFT_MSG_NEWSETELEM={0x38, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x2f0}, 0x1, 0x0, 0x0, 0x24000850}, 0x8c4)

1m10.931911414s ago: executing program 32 (id=2218):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) (async)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$RTC_ALM_READ(r0, 0x40187013, &(0x7f0000000100)) (async, rerun: 64)
r1 = socket$netlink(0x10, 0x3, 0xc) (rerun: 64)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) (async)
unshare(0x26020480) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0800000004000000040000000900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000014403843880b010d582854ff0800006b00ef26975fcd46156cf8cd9abe4160f0e33d5bb2a868a2e79e6378ca80f7806ce42b087efa639b1107340d708d5148489b80c3d6fe3ae459af9f9ff7809f05cf03e2c33a72d01ddc5cba315f184ecd9e9f457c0956c904c9"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xa, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7030000070000008500000021000000b70000000000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r2}, &(0x7f0000000380), &(0x7f00000003c0)=r3}, 0x20) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r4) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000340)={'wlan0\x00', <r6=>0x0}) (async, rerun: 32)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_INTERFACE(r7, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="2508007a0000000000000700000008000300", @ANYRES32=r6, @ANYBLOB="1400060064756d6d7930000000000000000000001400040076657468315f746f5f626f016400000005005300010000000800050004"], 0x54}}, 0x0) (async, rerun: 32)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 32)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000006c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_DELRULE={0x290, 0x8, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x2}, @NFTA_RULE_EXPRESSIONS={0x24c, 0x4, 0x0, 0x1, [{0x154, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x144, 0x2, 0x0, 0x1, [@NFTA_RANGE_FROM_DATA={0x10c, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0xdd, 0x1, "fbf5495c42d5cee7f835497055cfc38a0cfd711b0897cc3cd1acfba46d4e4d75804fcce8f62055d47edd17cf39d8143336007304b549f769f08c9e012e8b7dbbe2b3bc6ae6af3f646fd8cccbc706d22a19a206b586d38f1e1840c8f62ad7a6508392e0e6439d860e50a3c341ff4f6db9b01b522b7be58f2afa6a80673333c28de4b5f300c6359d649480b5576e47284e213867d9a6e89d9740dfeab71c9aff028c53298c246f206b6c4d6e5e0dc0255329eaa61cc253331e7153e5ef9493bafa9d579e35a499fd1901b9028b96c6e7f3de233512cecf297e42"}]}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_TO_DATA={0x24, 0x4, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}]}]}}}, {0x40, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x907e}, @NFTA_QUOTA_FLAGS={0x8}, @NFTA_QUOTA_FLAGS={0x8}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}}}, {0x30, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0xf}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}]}}}, {0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @exthdr={{0xb}, @void}}, {0x58, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x4c, 0x2, 0x0, 0x1, [@NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0x21}, @NFTA_LOG_QTHRESHOLD={0x6, 0x4, 0x1, 0x0, 0x8001}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x5}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0xd}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x7}, @NFTA_LOG_GROUP={0x6}, @NFTA_LOG_QTHRESHOLD={0x6, 0x4, 0x1, 0x0, 0x33aa}, @NFTA_LOG_FLAGS={0x8}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0xc8}]}}}, {0xc, 0x1, 0x0, 0x1, @fwd={{0x8}, @void}}]}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}]}, @NFT_MSG_NEWSETELEM={0x38, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x2f0}, 0x1, 0x0, 0x0, 0x24000850}, 0x8c4)

58.331860234s ago: executing program 0 (id=2445):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0a0000000400000006000000ff00000042000000", @ANYRES32, @ANYBLOB="4fc169d95ca834e664567cea4d10b94491233bc0e929d93deb88ee07626ce6be4a3b1174f2dabe22c1a3feabc1ecc3e7d42cbf98a0760455d2f5bb94c90acf4b67361bf2820459a5ef5e6159958990c322df7fc1f11c55348fa7b09bfc464c7889ada80ad7ecbf00"/114, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)={0x1fc, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [{{0x8}, {0x12c, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0xac, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x34, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4}}}]}}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x40894}, 0x840)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000080), 0x619, r3}, 0x38)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000fddbdf250700000008000300", @ANYRES32=r4, @ANYBLOB="0c009900ff070000700000001400040073797a6b616c6c6572300000000000000800050006"], 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, 0x0, 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000001240), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r8, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000140)=ANY=[@ANYBLOB="367ae158ed9761e9bc17afd54417aff8cc0aee36495e66cb5f45c647470f62de236d7657dd69e720af2b1c85694a3e43d0104be0c0ce6aa48fbbdc6f190c3ebeb06efafe11df8b17caca6389ce8b7acf2d7f0999c940f3a538ea41c6afdc001f8acafecc8c2e877874b0284875966552e5f2c2cc977e26647c83a9ce84dfb5c37699b86a29f49a72306966d85e79583209", @ANYRES16=r9, @ANYBLOB="010025bd7000fcdbdf2518000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x8044)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r10 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r11, 0x8937, &(0x7f0000000000)={'dummy0\x00', @random="0100002010ff"})
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)

58.135706443s ago: executing program 0 (id=2446):
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x1}, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000040)={&(0x7f0000000bc0)={{@my=0x0}, {@my=0x0, 0x4000}, 0x400, "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"}, 0x11000})
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x88)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})
r2 = open(&(0x7f0000000480)='./file0\x00', 0x0, 0x718bb647156ec3b7)
mknodat$loop(r2, &(0x7f0000001600)='./file1\x00', 0x200, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
linkat(r2, &(0x7f0000000040)='./file1\x00', r2, &(0x7f0000000180)='./bus\x00', 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x111083, 0x2)
ioctl$FS_IOC_GETFSLABEL(r1, 0x400452c8, &(0x7f0000000100))

58.099472142s ago: executing program 0 (id=2448):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0a0000000400000006000000ff00000042000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB='\x00'/11], 0x48)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)={0x1fc, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [{{0x8}, {0x12c, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0xac, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x34, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4}}}]}}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x40894}, 0x840)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000080), 0x619, r3}, 0x38)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000fddbdf250700000008000300", @ANYRES32=r4, @ANYBLOB="0c009900ff070000700000001400040073797a6b616c6c6572300000000000000800050006"], 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
openat$sndseq(0xffffff9c, 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})

58.018446115s ago: executing program 0 (id=2449):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0xffffffff, 0x0, 0xd}, {0x10000002, 0x0, 0x4, 0x2}]}, 0x94)
r0 = socket$kcm(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x1c, &(0x7f0000000140)=[{&(0x7f00000005c0)="df", 0x1}], 0x1}, 0x0)

58.018033493s ago: executing program 0 (id=2451):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0)
r1 = syz_open_dev$loop(0x0, 0x6, 0x142b23)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000280)={@in6={{0xa, 0x4e21, 0x26, @ipv4={'\x00', '\xff\xff', @remote}}}, 0x0, 0x0, 0x2a, 0x0, "b25dd300350731437df94f0a338977934d6951cdd6c61e31687172d956b141e3f4e87e6ab615ea379a12c5a6f5c6e7b3ab38f5f3570909f89f3e47ec97b12cc30a1c48cd0300fd5dfad4624800"}, 0xd8)
bind$inet6(r2, &(0x7f00000007c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x9}, 0x1c)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
syz_emit_ethernet(0x36, &(0x7f00000014c0)={@local, @random="e462e98700", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x23, 0x28, 0x64, 0x0, 0x3, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x7, 0x0, 0xe7}}}}}}, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/oops_count', 0xca883, 0x6)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000780)='/sys/power/pm_freeze_timeout', 0x42, 0x0)
sendfile(r4, r4, 0x0, 0xa)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
syz_io_uring_setup(0x5b0f, &(0x7f0000000000)={0x0, 0xfffffffc, 0x1000, 0xfffffffb, 0x359}, &(0x7f00000002c0), &(0x7f0000ff4000))
close_range(r6, r6, 0x0)
r7 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r3, <r8=>0xffffffffffffffff}, &(0x7f0000000500), 0x0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x5, &(0x7f00000005c0)=@raw=[@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r8}}, @alu={0x7, 0x0, 0x4, 0x1, 0x8, 0x50, 0x10}], &(0x7f0000000600)='syzkaller\x00', 0x5, 0x1000, &(0x7f0000002500)=""/4096, 0x41100, 0x4, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f0000000640)={0x3, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=[r3, r3, r3, r3, r3, r7, r3], 0x0, 0x10, 0x5}, 0x94)
r9 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_syzos_vm$x86(r7, &(0x7f00009dd000/0x400000)=nil)
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000024d564b000000eccd"])
ioctl$KVM_SET_LAPIC(r9, 0x4400ae8f, &(0x7f0000000100)={"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"})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000000080)={r3, 0x0, {0x0, 0x0, 0x0, 0x7, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x9]}})
ioctl$BLKRRPART(r1, 0x125f, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

57.806198817s ago: executing program 0 (id=2456):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = dup(r1)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, 0x0, &(0x7f0000000300))
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7b, &(0x7f0000000540)={0x0, 0x3bca, 0x10100, 0x0, 0x313}, &(0x7f00000005c0)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_RECVMSG={0xa, 0x40, 0x0, r7, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0, 0x21a3, 0x0, {0x3}})
io_uring_enter(r4, 0x46f3, 0x1000003, 0x1, 0x0, 0x0)
process_vm_writev(r3, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)
mmap(&(0x7f0000371000/0x3000)=nil, 0x3000, 0x0, 0x4000013, r0, 0x52e3000)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace', 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r10, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write(r10, &(0x7f0000000080)="09000000010001", 0x7)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r9, 0x660c)
r11 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@array={0x0, 0x0, 0x0, 0x4, 0x0, {0x0, 0x1000000}}]}}, 0x0, 0x32, 0x0, 0x1}, 0x20)
lseek(r11, 0x0, 0x2)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r9}})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r9, 0xc00864bf, &(0x7f0000000140)={<r12=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r4, 0xc00864bf, &(0x7f0000000200)={<r13=>0x0})
r14 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r14, 0xc00864bf, &(0x7f00000000c0)={<r15=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r14, 0xc01064c1, &(0x7f0000000080)={r15})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r8, 0xc01064c2, &(0x7f0000000240)={<r16=>0x0, 0x0, r8})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r9, 0xc00864bf, &(0x7f0000000280)={<r17=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r9, 0xc01864cb, &(0x7f0000000380)={&(0x7f00000002c0)=[0x0, r12, 0x0, r13, r15, r16, r17], &(0x7f0000000340)=[0x0, 0x7, 0x2, 0x78, 0x2, 0xfffffffffffffff6, 0x8], 0x7, 0x1})

42.242854775s ago: executing program 33 (id=2456):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = dup(r1)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, 0x0, &(0x7f0000000300))
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x7b, &(0x7f0000000540)={0x0, 0x3bca, 0x10100, 0x0, 0x313}, &(0x7f00000005c0)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_RECVMSG={0xa, 0x40, 0x0, r7, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0, 0x21a3, 0x0, {0x3}})
io_uring_enter(r4, 0x46f3, 0x1000003, 0x1, 0x0, 0x0)
process_vm_writev(r3, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)
mmap(&(0x7f0000371000/0x3000)=nil, 0x3000, 0x0, 0x4000013, r0, 0x52e3000)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace', 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r10, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write(r10, &(0x7f0000000080)="09000000010001", 0x7)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r9, 0x660c)
r11 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@array={0x0, 0x0, 0x0, 0x4, 0x0, {0x0, 0x1000000}}]}}, 0x0, 0x32, 0x0, 0x1}, 0x20)
lseek(r11, 0x0, 0x2)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r9}})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r9, 0xc00864bf, &(0x7f0000000140)={<r12=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r4, 0xc00864bf, &(0x7f0000000200)={<r13=>0x0})
r14 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r14, 0xc00864bf, &(0x7f00000000c0)={<r15=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r14, 0xc01064c1, &(0x7f0000000080)={r15})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r8, 0xc01064c2, &(0x7f0000000240)={<r16=>0x0, 0x0, r8})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r9, 0xc00864bf, &(0x7f0000000280)={<r17=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r9, 0xc01864cb, &(0x7f0000000380)={&(0x7f00000002c0)=[0x0, r12, 0x0, r13, r15, r16, r17], &(0x7f0000000340)=[0x0, 0x7, 0x2, 0x78, 0x2, 0xfffffffffffffff6, 0x8], 0x7, 0x1})

7.835009483s ago: executing program 4 (id=3150):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0xfe, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x40800)

7.834412293s ago: executing program 4 (id=3152):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r2=>0x0})
syz_genetlink_get_family_id$devlink(&(0x7f0000000700), r0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x401, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0x81, 0x43094}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_SELECT={0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000010000000f00000008000300", @ANYRES32=r2, @ANYBLOB="0500330001000020023befa15972946c9cb0cd3e962e0d5c8bdf852d16557ee8aa4617db9da23daab1bec09d2c539dae6dde9d12336b66527edab90eeef40d6a2c1b44c7392561ec77429a67f9483a5264d91a81132d88771a50814bf21ee99ff02667e26af9dbdd21"], 0x24}}, 0x80)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
r6 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x8, 0x9, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x2b, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0x23, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
sendmsg$BATADV_CMD_GET_HARDIF(r6, &(0x7f00000006c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000680)={&(0x7f00000004c0)={0x40, r1, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x3}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x4044)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x70bd25, 0x0, {0x0, 0x0, 0x74, r5, {0x10, 0x4}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

7.537960929s ago: executing program 4 (id=3159):
r0 = syz_open_dev$dri(&(0x7f00000001c0), 0xd21, 0x101800)
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000040)={0x1, 0x0, 0xd, 0x2, 0x27f, 0x43f, 0x6})

7.537757777s ago: executing program 4 (id=3160):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x108109f, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0400000004000000040000000218000000000000", @ANYRES32, @ANYRESDEC], 0x48)
mount$9p_unix(&(0x7f0000000440)='./file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x121f408, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup3(r2, r3, 0x80000)
recvmmsg(r4, &(0x7f0000001d80)=[{{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000480)=""/28, 0x1c}], 0x1, &(0x7f0000001780)=""/109, 0x6d}}], 0x1, 0x1, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xa06006, 0x0)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r1, 0x5)
accept(r1, &(0x7f0000000080)=@can, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r5, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$sock_bt_hci(r0, 0x400448e6, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) (async)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) (async)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0) (async)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x108109f, 0x0) (async)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0400000004000000040000000218000000000000", @ANYRES32, @ANYRESDEC], 0x48) (async)
mount$9p_unix(&(0x7f0000000440)='./file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x121f408, 0x0) (async)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)) (async)
dup3(r2, r3, 0x80000) (async)
recvmmsg(r4, &(0x7f0000001d80)=[{{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000480)=""/28, 0x1c}], 0x1, &(0x7f0000001780)=""/109, 0x6d}}], 0x1, 0x1, 0x0) (async)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xa06006, 0x0) (async)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
listen(r1, 0x5) (async)
accept(r1, &(0x7f0000000080)=@can, 0x0) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
sendto$inet6(r5, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) (async)
ioctl$sock_bt_hci(r0, 0x400448e6, 0x0) (async)

7.427046542s ago: executing program 4 (id=3163):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000c40)={<r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b26, &(0x7f0000000280)={'wlan1\x00', @local})

7.376265223s ago: executing program 4 (id=3164):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000600)={0x0, 0xe00, &(0x7f00000005c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000002100df"], 0x30}}, 0x0)

7.323124244s ago: executing program 34 (id=3164):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000600)={0x0, 0xe00, &(0x7f00000005c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000002100df"], 0x30}}, 0x0)

1.883789098s ago: executing program 6 (id=3282):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, 0x0, 0x0)

1.818248312s ago: executing program 6 (id=3283):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f00000000c0), 0x19)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000400)=@l2tp6={0xa, 0x0, 0x7, @mcast1, 0x7}, 0x80, &(0x7f0000000480)=[{&(0x7f0000001540)="f4000900062b3325fe80000000000000", 0x10}, {&(0x7f0000000240)="45f289a31a11d10c1101fb2cc62ff73459000ec82c600374", 0x18}], 0x2}, 0x20000884) (fail_nth: 12)

1.818166827s ago: executing program 6 (id=3284):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1.768425206s ago: executing program 6 (id=3285):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f}) (async)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101}) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000600))
ioctl$SIOCSIFHWADDR(r3, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'}) (async)
r4 = open$dir(&(0x7f0000000180)='./file0\x00', 0x44040, 0x11b) (async)
prctl$PR_MCE_KILL_GET(0x22) (async)
ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000080)=0x92)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1f, 0x12, r4, 0x0)

1.768163847s ago: executing program 6 (id=3286):
r0 = socket$inet(0x2b, 0x801, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x48f, &(0x7f0000000000)={0x1, @private, 0x0, 0x0, 'lc\x00', 0x0, 0x0, 0x14}, 0x2c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r3, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
sendmmsg$inet(r0, &(0x7f0000001900)=[{{&(0x7f0000000100)={0x2, 0x4e21, @empty}, 0x10, &(0x7f0000000240)=[{&(0x7f00000019c0)="1d51c15bbc4ed7546a1f6aac2d40122255bd503e50a8ab90475b0ee38f392558817000d866d0b14b6fad4134bdcfc8b5bc885dfd3c72520fe8cabcd00bf88101488c9c08c901c25b9d5acd7eebd7cade7773742917ff940ca037657a2ca780f8d7abae04d1359fab703ffb6dc5ec390e0018f6a067ae13965ab81e01a6896ea11036562fcb8594b0536a7e8f2560d1ac1f46aa7de4209936221500f6a21e18eb00a88ea87724a9195df3b2e223fa95b435294747e3c15206cf98cc7209692f5113352cccf100"/207, 0xcf}, {&(0x7f0000000180)="b3ca1afb0d944b6d3220f721fc822ff734f14e173dd75c62e27f0f23726af7ad2a131e3430af70dc87464d122ba7f473243364fcf21ad14e77be6e751c2dadc0daec6a7ea3371ebc31cb103458dd6373462562770064928b85f32a8b8c5aba7501dae7f1dc8fda756d866771377642abf35c9b52686822035f26db41f8aa2dae532d6b2e1cc0037f26e478a433807fd7", 0x90}], 0x2}}, {{&(0x7f0000000280)={0x2, 0x4e5c, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10, &(0x7f0000001740)=[{&(0x7f00000002c0)="1a532d733a71f53c7a92aa4df1f46e7a565ceaf83a56b8e61dc78f1dcf6109ef2d67f80944c812efd476f9ff7d536cad37bf3227d7e5a619db3bd0a52179be9fab906b5adfff77c193dd9508a9c7c1d8a5db8f33ed5f6a6d35e7f3d6c4bf9e0ca7aec60e5ebb7452d61b7c6e0d", 0x6d}, {&(0x7f0000000340)="c5444118bb752b08baf9745c25b03bc0e1323a380a70310951f6c2bd4a89cb8175bfd602cca1900abc7ca042e959bceeefd40c03d136ff63d730f943d92eb8db0951fda927053dceb47a16a8f5fb85b960c4fa2232fc357b2c05a213167f93836c9edabd6a56452372aeafea9ddcf471fe7f1e3faf4abd77078e687aa9512bfae1328d946f4358f06b0d562ab68a2f15f17c0d62de72f079e905418785ae0e9b980c520d8e103d9631cb1f7bbb40d4ae158c482a1f77b857f0e5738a1d8bd7f1456cf85668d2b87829fe5358080c075208f5a579e61bdb1554dafc6f861f85ac10c4c8edb81dbb7b00428b78c8527a729722192a7785708d", 0xf8}, {&(0x7f0000000440)="3afaa1adbf4c7b4e07c04d0345f22aece548e0caab29d2a895b68a336487ceab2c925d323eb6c7d2c9a6e53e5026a3b71d79986020ec942a822f0db4b35f79cdde9392044d685a3111920a5bbf4b68e4c35ed53c4c2677841da14801c0feabaf07f60d385d16c2a67931566ea073da2fb5314baf42f34826210a7c81ed17e6d3e24e99ce0e424df7dd", 0x89}, {&(0x7f0000000500)="eb24c76854e527f562189d6459a4a49c3653de547b8d2e8b93a87c01008c69ff4a335f071b6f768b9d760d7ad974ff48b4d8ddbe7b160ea83cd019eb6e05617062849e39a1f64ca797f4c493ddcf0d0639f700aa950b543baf8731017729514317ec4d804d43f3", 0x67}, {&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000001580)="097b4ee5b100bbd3050c469e5436550f3cdcd3196256e20806f9be798f833a63410b86dd170b4efcce314d08d2f65daa2610b06bd43d546ace29dd0f6d29697790826776d47f1f8d2f2641ddbf1e7d4fd99d3543767fe765cdfe73a4b9ca14384cdeb9cbca550795edb5b190cd670557b914bf08ed6adb545898b383db5b3bcb", 0x80}, {&(0x7f0000001600)="81d495ccde57c4f71a0e003020e500e82466f96ad6bbeba0b8056ccb70c6fe3795fa9a857a59e4b2a2c3a34d3a0199fb08ad07b5e25b947dd1945e309c041179a11de32573281058bd12a82626a3225673547744a597f496435bac58da8716f78267fe5c191864636226ba474343abb433fbdb28b9", 0x75}, {&(0x7f0000001680)="40d61e36b5bbed42024f36ef73f7f57da5ba7c4910786c6334650bb88d96fdf9a87ad12cfbb4cccb582114e579ca314b9bc58f502d9f60c832d442ea7e944d6eaf3bb11883a7d0b1aa9e1c", 0x4b}, {&(0x7f0000001700)="cf32b63ab5c31abeafeeb3c786a944b350a42551cb31b90679ddbe362b9e0c307174", 0x22}], 0x9, &(0x7f0000001800)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x9a4}}, @ip_retopts={{0x6c, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x24, 0x94, 0x3, 0x8, [{@broadcast, 0x7fff}, {@loopback, 0x5063}, {@empty, 0x80000001}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2}]}, @timestamp={0x44, 0x2c, 0x94, 0x0, 0x7, [0x6, 0x3, 0x81, 0x4, 0x505e, 0x4, 0x4bd, 0x6, 0x40, 0x7]}, @lsrr={0x83, 0xb, 0xae, [@local, @broadcast]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x7}}, @ip_ttl={{0x14}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @local, @multicast2}}}], 0xf0}}], 0x2, 0x10)
getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000040), &(0x7f00000000c0)=0x68)

418.676926ms ago: executing program 3 (id=3311):
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x1}, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100)) (fail_nth: 7)

417.70892ms ago: executing program 2 (id=3313):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha1\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x800)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000280)={0x14, 0x0, 0x4, 0x301, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0xc0)
r3 = socket(0x40000000015, 0x5, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x40, &(0x7f0000000080)={0xa, 0x4e21, 0x3ff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xfffff060}, 0x1c)
recvmsg(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000003c0)=""/225, 0xe1}, {&(0x7f0000000540)=""/195, 0xc3}, {&(0x7f0000000640)=""/232, 0xe8}, {&(0x7f0000000740)=""/253, 0xfd}, {&(0x7f00000001c0)=""/97, 0x61}, {&(0x7f0000000140)=""/52, 0x34}, {&(0x7f0000000840)=""/4096, 0x1000}], 0x7, &(0x7f0000001840)=""/182, 0xb6}, 0x10040)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'team0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newlink={0x2c, 0x10, 0x1, 0x70bd25, 0x25dfdc01, {0x0, 0x0, 0x0, r5, 0x0, 0x3}, [@IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x33}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)

417.467935ms ago: executing program 2 (id=3314):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, 0x0, 0x0)

417.224587ms ago: executing program 5 (id=3315):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x44, r0, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee3b90807eef16f162471f4"}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_MODE={0x5}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0) (fail_nth: 6)

368.689752ms ago: executing program 3 (id=3316):
futex(&(0x7f0000000040), 0x5, 0x0, 0x0, &(0x7f00000000c0)=0x2, 0xfffffffd) (async)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x1ab083, 0x0)

368.508013ms ago: executing program 2 (id=3317):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000140)=0xfffffffffffffffe, 0xb, 0x3)

368.408162ms ago: executing program 5 (id=3318):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000600)={0x54, r1, 0x1, 0x0, 0x0, {0x2d}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xff12}, {0x2}, {0xc}}]}, 0xa0}}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000040)={0x4, 0x1, 0x3, 0x1d, 0x103, &(0x7f00000000c0)="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"})
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000f0f000000000700000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000003c000000050a01020000000000000000010000000c00024000000000000000010900010073797a3100000000040004800b000700"], 0xc4}}, 0x0)
r3 = openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ppoll(&(0x7f0000000080)=[{r3}], 0x1, &(0x7f00000000c0), 0x0, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000140)=0xfffffffffffffffe, 0xb, 0x3)

339.263754ms ago: executing program 3 (id=3319):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/prev\x00')
writev(r2, &(0x7f0000000180)=[{&(0x7f0000000040)="9f582a17dd1dbbcb5fb51c7267d4111667943c4c0e060a57d14c1e3b5799862c5920d85f0f20119591467c0053dd4529f21cdc975eea9ae190"}, {&(0x7f0000000080)="f20c01d10ad943545870dae2f4a726eb66c6aa0d0bd2c3c760af9db2e3947585970e337ebad5c58b85daab4bc84e7d168807ddac30af9389947824551f24994ce4c3"}, {&(0x7f0000000100)="157800d3d32222cf749296577f5f015aceb983f343564d8a63726fde5166cf8c60bf78de5ed84d7c6de5d0876af9e3ee3f699fc9042f15f36e2ebefe5195da4a06c06540adb2"}], 0xf)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
close(0x3)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x58}}, 0x0)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

333.237101ms ago: executing program 2 (id=3320):
r0 = socket$kcm(0x2, 0x5, 0x84)
r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
write$selinux_attr(r1, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
r2 = memfd_secret(0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, r2, 0x0)
ftruncate(r2, 0x51a9497)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x82)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
setsockopt$sock_attach_bpf(r0, 0x84, 0xb, &(0x7f0000000000), 0xe)
sendmsg$inet(r0, &(0x7f00000007c0)={&(0x7f0000000040)={0x2, 0x2, @broadcast}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000140)="84aca1fe4bf6ded6bcd3f9a5aaa01e8afe0283909d83ab38571b51cbb830b67f698125ebc8cc41b8d549d8295462a8b489e30323336ba69d26cc101752ae3dfe9e860e3e4adeed2ee44d7c342763c67d38aa1589040a2d67f81d84dd697589cf9a0f9033e83950592bbe6a027af9eb5851c1e45875c4224a2edf68440fbc2f11d5e33f0cf8d569f926acfdb5b2688a4f7ff96d0973d22e31480a729409", 0x9d}], 0x1, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x158}, 0x41)
recvmsg$kcm(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x10001)

245.94634ms ago: executing program 3 (id=3321):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$nl_route_sched(r0, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x174, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0x160, 0x1, [@m_connmark={0x50, 0x1a, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x0, 0x0, 0x4}}]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0xc8, 0x3, 0x0, 0x0, {{0x9}, {0x4c, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x2, 0xea3, 0x7}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1d28}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7fe, 0xd8, 0x0, 0x9, 0x100000e0}}]}, {0x52, 0x6, "a06b1d1931f3579c6d7c5159238a286074602c3726c701f3c0d5382de62a6e8c4fb714fcd674c66cd306a4f78d3d05530609c9b04b7483bd084d70df8e77e6fbd503917aa0a6c737cef0ed021b60"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}]}]}, 0x174}}, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r2, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r2], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r5, 0x8, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x42}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xffff}, @BATADV_ATTR_GW_MODE={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x40080}, 0x408c1)

242.931555ms ago: executing program 3 (id=3322):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)={0x188, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [{{0x8}, {0xb8, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0xac, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x34, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4}}}]}}]}, 0x188}, 0x1, 0x0, 0x0, 0x40894}, 0x840)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
openat$sndseq(0xffffff9c, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000001240), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r5, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000140)=ANY=[@ANYBLOB="367ae158ed9761e9bc17afd54417aff8cc0aee36495e66cb5f45c647470f62de236d7657dd69e720af2b1c85694a3e43d0104be0c0ce6aa48fbbdc6f190c3ebeb06efafe11df8b17caca6389ce8b7acf2d7f0999c940f3a538ea41c6afdc001f8acafecc8c2e877874b0284875966552e5f2c2cc977e26647c83a9ce84dfb5c37699b86a29f49a72306966d85e79583209", @ANYRES16=r6, @ANYBLOB="010025bd7000fcdbdf2518000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x8044)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r8, 0x8937, &(0x7f0000000000)={'dummy0\x00', @random="0100002010ff"})
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)

155.847755ms ago: executing program 5 (id=3323):
r0 = openat$fb1(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x3f, 0x0, 0x1, 0x3e, 0x0, 0x0, {}, {0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) (async)
r1 = memfd_create(&(0x7f00000009c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9b5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\\\xb0:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1exQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1.E\b1\xcb\xa2\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0xfeffffff, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000001800efe000000000000000000a000000fe800000000000000c00090008000000", @ANYRES32=0x0, @ANYBLOB="1400050000000000000000000000000000000001"], 0x3c}, 0x1, 0x11}, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040))
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000040)={'\x00', 0x3, 0x9, 0x0, 0x9, 0x3, <r4=>0x0})
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0x12, &(0x7f00000001c0)=0x9, 0x4) (async)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb100c117080008004803", 0x10000, 0xffffffffffffc117, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14) (async, rerun: 64)
syz_open_procfs(r4, &(0x7f0000000100)='mounts\x00') (rerun: 64)

155.69981ms ago: executing program 2 (id=3324):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0xb, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xd0}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000012c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a44000000060a0b0400000000000000000200000018000480140001800a0001007265646972000000040002800900010073797a30000000000900020073797a3200"], 0x6c}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x88)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@volatile}]})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@newae={0x48, 0x1e, 0x1, 0x70bd2c, 0x25dfdbfd, {{@in=@private=0xa010100, 0x4d4, 0xa, 0x32}, @in=@multicast2, 0x3, 0x3503}, [@replay_thresh={0x8, 0xb, 0x10}]}, 0x48}}, 0x20000800)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x3, 0x1}}, './file1\x00'})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, &(0x7f0000000100)={{0x968, 0x65d}, 0x100, './file0\x00'})

155.553193ms ago: executing program 2 (id=3325):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r1=>r0, {0x8, 0x6}}, './file0\x00'})
write$cgroup_subtree(r1, &(0x7f0000000140)={[{0x2b, 'io'}, {0x2d, 'blkio'}, {0x50b0c5f01491aeaf, 'memory'}, {0x2d, 'net_cls'}, {0x2b, 'cpuacct'}, {0x2b, 'blkio'}, {0x2d, 'net_cls'}]}, 0x35)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8983, &(0x7f0000000180)={0x3, 'dvmrp0\x00', {0x6}, 0x2})

107.268413ms ago: executing program 5 (id=3326):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, 0x0, 0x0)

107.035831ms ago: executing program 5 (id=3327):
socket$l2tp6(0xa, 0x2, 0x73)
syz_usbip_server_init(0x1) (async)
syz_usbip_server_init(0x1) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000040)='cpuacct.usage_user\x00', 0x0, 0x0) (async)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000c00)=ANY=[@ANYBLOB="380000003e000100fcff0700040000000100000004000000140001801000040000000f8012ccbd379ce6cd690c0002"], 0x38}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094) (async)
syz_usbip_server_init(0x2)

1.230027ms ago: executing program 3 (id=3328):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x88)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@volatile}]}) (fail_nth: 2)

714.357µs ago: executing program 5 (id=3329):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$inet(0x2, 0xa, 0x4)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}, @TCA_RATE={0x6}]}, 0x34}}, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f00000041c0)={0x2020, 0x0, <r5=>0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f0000006280)="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", 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x5, 0x0, 0x0, {0x0, 0x0, 0x20, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x2, r6}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r4, &(0x7f0000000380)={0x50, 0x0, r5, {0x7, 0x27, 0x0, 0x801001a, 0x66d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f000000a280)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)={0x90, 0x0, 0x8, {0x3, 0x100000000000, 0x100000003, 0x0, 0x0, 0x3881fffc, {0x5, 0xff, 0x1, 0x0, 0x3, 0x0, 0xa, 0x0, 0x0, 0x8000, 0x1, r6, r7, 0x2, 0x8009}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r8=>0x0})
fstat(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
sendmsg$nl_xfrm(r0, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000980)=ANY=[@ANYBLOB="8c020000100000042bbd7000fbdbdf25ff0200000000000000000000000000017f0000010000000000000000000000004e2400004e2100090a0080a062000000", @ANYRES32=r3, @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="0a010101000000000000000000000000000004d432000000fe800000000000000000000000000010040000000000000001000000000000000a000000000000000100000000000000fcffffffffffffff02000000000000000d00000000000000000000000000000021000000000000000300000000000000080000000000000005000000000000000700000002000000590000002abd7000cadde6a300350000020004000001000000000000"], 0x28c}, 0x1, 0x0, 0x0, 0x4080}, 0x4008041)
r10 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r10, &(0x7f0000002080)={0xfc, {"a2336848149e516d4b5e071887f70e09d038e7ff7fc6e5539b0d500a8b089b3f383563030890e0879b0a71c6e70a9b334a959b669a242f0a0af3988f7ef319520100ffe8d178708c523c921b1b3731070d0773090acd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9903f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928d28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f2730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b81305c038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849cd9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484539ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1f93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb8843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b2804563407308c58c89d9e99c81769177e6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463373b4b87c9050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e080000007ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e3933ed07c2b8081c128ad2706f48261ff07000000000000613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59500000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)

0s ago: executing program 6 (id=3330):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000040)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r0, &(0x7f0000000240)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0002}}}, 0x14) (fail_nth: 1)

kernel console output (not intermixed with test programs):

02.936157][T14059]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  202.936175][T14059]  kvm_vcpu_ioctl+0x5eb/0x1690
[  202.936191][T14059]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  202.936205][T14059]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  202.936219][T14059]  ? do_vfs_ioctl+0x128/0x14f0
[  202.936235][T14059]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  202.936251][T14059]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  202.936272][T14059]  ? hook_file_ioctl_common+0x145/0x410
[  202.936286][T14059]  ? selinux_file_ioctl+0x180/0x270
[  202.936300][T14059]  ? selinux_file_ioctl+0xb4/0x270
[  202.936316][T14059]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  202.936330][T14059]  __x64_sys_ioctl+0x18b/0x210
[  202.936347][T14059]  do_syscall_64+0xcd/0x4c0
[  202.936359][T14059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.936370][T14059] RIP: 0033:0x7f17b3b8ebe9
[  202.936379][T14059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.936390][T14059] RSP: 002b:00007f17b492c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  202.936400][T14059] RAX: ffffffffffffffda RBX: 00007f17b3db5fa0 RCX: 00007f17b3b8ebe9
[  202.936407][T14059] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  202.936413][T14059] RBP: 00007f17b492c090 R08: 0000000000000000 R09: 0000000000000000
[  202.936419][T14059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  202.936425][T14059] R13: 00007f17b3db6038 R14: 00007f17b3db5fa0 R15: 00007fff515158a8
[  202.936439][T14059]  </TASK>
[  203.070579][T14074] overlay: Unknown parameter 'obj_user'
[  203.073188][ T6519] usbhid 10-1:0.0: can't add hid device: -71
[  203.075208][ T6519] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[  203.077312][T14074] overlayfs: overlapping lowerdir path
[  203.078581][ T6519] usb 10-1: USB disconnect, device number 5
[  203.100278][T14076] netlink: 'syz.3.2921': attribute type 10 has an invalid length.
[  203.138247][T14081] overlayfs: overlapping lowerdir path
[  203.140829][T14081] FAULT_INJECTION: forcing a failure.
[  203.140829][T14081] name failslab, interval 1, probability 0, space 0, times 0
[  203.145385][T14081] CPU: 3 UID: 0 PID: 14081 Comm: syz.4.2923 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  203.145400][T14081] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  203.145407][T14081] Call Trace:
[  203.145412][T14081]  <TASK>
[  203.145416][T14081]  dump_stack_lvl+0x16c/0x1f0
[  203.145433][T14081]  should_fail_ex+0x512/0x640
[  203.145445][T14081]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  203.145458][T14081]  should_failslab+0xc2/0x120
[  203.145471][T14081]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  203.145481][T14081]  ? __might_fault+0xe3/0x190
[  203.145491][T14081]  ? __might_fault+0xe3/0x190
[  203.145500][T14081]  ? getname_flags.part.0+0x4c/0x550
[  203.145518][T14081]  getname_flags.part.0+0x4c/0x550
[  203.145535][T14081]  getname_flags+0x93/0xf0
[  203.145545][T14081]  user_path_at+0x24/0x60
[  203.145557][T14081]  __x64_sys_mount+0x1fc/0x310
[  203.145571][T14081]  ? __pfx___x64_sys_mount+0x10/0x10
[  203.145588][T14081]  do_syscall_64+0xcd/0x4c0
[  203.145600][T14081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.145611][T14081] RIP: 0033:0x7f17b3b8ebe9
[  203.145621][T14081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.145631][T14081] RSP: 002b:00007f17b492c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  203.145642][T14081] RAX: ffffffffffffffda RBX: 00007f17b3db5fa0 RCX: 00007f17b3b8ebe9
[  203.145649][T14081] RDX: 00002000000003c0 RSI: 00002000000000c0 RDI: 0000000000000000
[  203.145655][T14081] RBP: 00007f17b492c090 R08: 00002000000004c0 R09: 0000000000000000
[  203.145661][T14081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.145667][T14081] R13: 00007f17b3db6038 R14: 00007f17b3db5fa0 R15: 00007fff515158a8
[  203.145680][T14081]  </TASK>
[  203.237657][T14083] netlink: 'syz.2.2922': attribute type 39 has an invalid length.
[  203.550361][T14104] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  203.659328][T14108] netlink: 'syz.5.2933': attribute type 10 has an invalid length.
[  204.185848][T14128] netlink: 'syz.4.2942': attribute type 10 has an invalid length.
[  204.300112][T14132] loop6: detected capacity change from 0 to 524287999
[  204.305406][T14132] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2943'.
[  204.314190][ T6519] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  204.462699][ T6519] usb 7-1: Using ep0 maxpacket: 16
[  204.466485][ T6519] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.472374][ T6519] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  204.477665][ T6519] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  204.493961][ T6519] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  204.497211][ T6519] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.501045][T14149] netlink: 'syz.4.2951': attribute type 10 has an invalid length.
[  204.505704][ T6519] usb 7-1: config 0 descriptor??
[  204.538706][   T40] audit: type=1326 audit(204.451:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14152 comm="syz.5.2952" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9460f8ebe9 code=0x0
[  204.546211][T14151] netlink: 'syz.3.2945': attribute type 39 has an invalid length.
[  204.637428][T14156] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2567 sclass=netlink_route_socket pid=14156 comm=syz.4.2953
[  204.650128][T14157] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(10)
[  204.652273][T14157] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  204.656253][T14157] vhci_hcd vhci_hcd.0: Device attached
[  204.660453][T14158] vhci_hcd: cannot find a urb of seqnum 4294967226 max seqnum 0
[  204.665790][  T166] vhci_hcd: stop threads
[  204.668260][  T166] vhci_hcd: release socket
[  204.669704][  T166] vhci_hcd: disconnect device
[  204.920532][ T6519] HID 045e:07da: Invalid code 65791 type 1
[  204.928013][ T6519] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:045E:07DA.000C/input/input18
[  204.935123][ T6519] microsoft 0003:045E:07DA.000C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  205.275531][ T1027] usb 7-1: USB disconnect, device number 8
[  205.493863][T14175] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2957'.
[  205.524102][T14170] block nbd0: server does not support multiple connections per device.
[  205.526966][T14170] block nbd0: shutting down sockets
[  205.581209][T14179] FAULT_INJECTION: forcing a failure.
[  205.581209][T14179] name failslab, interval 1, probability 0, space 0, times 0
[  205.585262][T14179] CPU: 3 UID: 0 PID: 14179 Comm: syz.4.2959 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  205.585277][T14179] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.585284][T14179] Call Trace:
[  205.585288][T14179]  <TASK>
[  205.585292][T14179]  dump_stack_lvl+0x16c/0x1f0
[  205.585307][T14179]  should_fail_ex+0x512/0x640
[  205.585318][T14179]  ? __kmalloc_noprof+0xbf/0x510
[  205.585331][T14179]  ? nla_strdup+0xc6/0x150
[  205.585343][T14179]  should_failslab+0xc2/0x120
[  205.585355][T14179]  __kmalloc_noprof+0xd2/0x510
[  205.585373][T14179]  nla_strdup+0xc6/0x150
[  205.585391][T14179]  nf_tables_newtable+0xdeb/0x1b40
[  205.585414][T14179]  ? __pfx___nla_validate_parse+0x10/0x10
[  205.585435][T14179]  ? __pfx_nf_tables_newtable+0x10/0x10
[  205.585453][T14179]  ? __nla_parse+0x40/0x60
[  205.585469][T14179]  nfnetlink_rcv_batch+0x18ea/0x2330
[  205.585491][T14179]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  205.585514][T14179]  ? avc_has_perm_noaudit+0x149/0x3b0
[  205.585539][T14179]  ? __nla_parse+0x40/0x60
[  205.585554][T14179]  nfnetlink_rcv+0x3c1/0x430
[  205.585569][T14179]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  205.585587][T14179]  netlink_unicast+0x5a7/0x870
[  205.585601][T14179]  ? __pfx_netlink_unicast+0x10/0x10
[  205.585612][T14179]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  205.585627][T14179]  netlink_sendmsg+0x8d1/0xdd0
[  205.585641][T14179]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.585657][T14179]  ____sys_sendmsg+0xa98/0xc70
[  205.585671][T14179]  ? copy_msghdr_from_user+0x10a/0x160
[  205.585682][T14179]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.585701][T14179]  ___sys_sendmsg+0x134/0x1d0
[  205.585712][T14179]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.585734][T14179]  ? __mutex_unlock_slowpath+0x100/0x800
[  205.585750][T14179]  __sys_sendmsg+0x16d/0x220
[  205.585761][T14179]  ? __pfx___sys_sendmsg+0x10/0x10
[  205.585779][T14179]  do_syscall_64+0xcd/0x4c0
[  205.585792][T14179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.585803][T14179] RIP: 0033:0x7f17b3b8ebe9
[  205.585812][T14179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.585824][T14179] RSP: 002b:00007f17b492c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  205.585840][T14179] RAX: ffffffffffffffda RBX: 00007f17b3db5fa0 RCX: 00007f17b3b8ebe9
[  205.585850][T14179] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  205.585860][T14179] RBP: 00007f17b492c090 R08: 0000000000000000 R09: 0000000000000000
[  205.585866][T14179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.585872][T14179] R13: 00007f17b3db6038 R14: 00007f17b3db5fa0 R15: 00007fff515158a8
[  205.585886][T14179]  </TASK>
[  205.718345][T14183] netlink: 'syz.4.2961': attribute type 10 has an invalid length.
[  205.854762][T14186] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2962'.
[  205.941778][T14198] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  205.945632][T14201] FAULT_INJECTION: forcing a failure.
[  205.945632][T14201] name failslab, interval 1, probability 0, space 0, times 0
[  205.950544][T14201] CPU: 0 UID: 0 PID: 14201 Comm: syz.2.2965 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  205.950568][T14201] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.950579][T14201] Call Trace:
[  205.950586][T14201]  <TASK>
[  205.950594][T14201]  dump_stack_lvl+0x16c/0x1f0
[  205.950617][T14201]  should_fail_ex+0x512/0x640
[  205.950641][T14201]  should_failslab+0xc2/0x120
[  205.950662][T14201]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  205.950681][T14201]  ? skb_clone+0x190/0x3f0
[  205.950704][T14201]  skb_clone+0x190/0x3f0
[  205.950722][T14201]  netlink_deliver_tap+0xabd/0xd30
[  205.950747][T14201]  netlink_unicast+0x64c/0x870
[  205.950769][T14201]  ? __pfx_netlink_unicast+0x10/0x10
[  205.950789][T14201]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  205.950817][T14201]  netlink_sendmsg+0x8d1/0xdd0
[  205.950861][T14201]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.950892][T14201]  ____sys_sendmsg+0xa98/0xc70
[  205.950916][T14201]  ? copy_msghdr_from_user+0x10a/0x160
[  205.950934][T14201]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.950969][T14201]  ___sys_sendmsg+0x134/0x1d0
[  205.950988][T14201]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.951030][T14201]  ? __mutex_unlock_slowpath+0x100/0x800
[  205.951057][T14201]  __sys_sendmsg+0x16d/0x220
[  205.951075][T14201]  ? __pfx___sys_sendmsg+0x10/0x10
[  205.951110][T14201]  do_syscall_64+0xcd/0x4c0
[  205.951131][T14201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.951154][T14201] RIP: 0033:0x7f74c638ebe9
[  205.951173][T14201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.951190][T14201] RSP: 002b:00007f74c719d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  205.951208][T14201] RAX: ffffffffffffffda RBX: 00007f74c65b6090 RCX: 00007f74c638ebe9
[  205.951220][T14201] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000009
[  205.951231][T14201] RBP: 00007f74c719d090 R08: 0000000000000000 R09: 0000000000000000
[  205.951241][T14201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.951252][T14201] R13: 00007f74c65b6128 R14: 00007f74c65b6090 R15: 00007fff349f1ca8
[  205.951278][T14201]  </TASK>
[  205.951301][T14201] netlink: 'syz.2.2965': attribute type 21 has an invalid length.
[  205.955446][T14196] netlink: 'syz.5.2966': attribute type 21 has an invalid length.
[  205.955779][T14201] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2965'.
[  206.041105][T14196] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2966'.
[  206.105558][T14202] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2966'.
[  206.243909][   T61] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  206.403140][   T61] usb 9-1: Using ep0 maxpacket: 16
[  206.407576][   T61] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  206.412239][   T61] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.416950][   T61] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  206.421759][   T61] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  206.425553][   T61] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.425611][T14218] FAULT_INJECTION: forcing a failure.
[  206.425611][T14218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.431344][   T61] usb 9-1: config 0 descriptor??
[  206.433140][T14218] CPU: 0 UID: 0 PID: 14218 Comm: syz.3.2973 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  206.433156][T14218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  206.433163][T14218] Call Trace:
[  206.433166][T14218]  <TASK>
[  206.433171][T14218]  dump_stack_lvl+0x16c/0x1f0
[  206.433186][T14218]  should_fail_ex+0x512/0x640
[  206.433200][T14218]  _copy_from_user+0x2e/0xd0
[  206.433214][T14218]  copy_msghdr_from_user+0x98/0x160
[  206.433226][T14218]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  206.433243][T14218]  ___sys_sendmsg+0xfe/0x1d0
[  206.433253][T14218]  ? __pfx____sys_sendmsg+0x10/0x10
[  206.433275][T14218]  ? __mutex_unlock_slowpath+0x100/0x800
[  206.433290][T14218]  __sys_sendmsg+0x16d/0x220
[  206.433301][T14218]  ? __pfx___sys_sendmsg+0x10/0x10
[  206.433319][T14218]  do_syscall_64+0xcd/0x4c0
[  206.433332][T14218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.433343][T14218] RIP: 0033:0x7f4767b8ebe9
[  206.433351][T14218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.433362][T14218] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  206.433372][T14218] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  206.433379][T14218] RDX: 000000002000d8d0 RSI: 0000200000006040 RDI: 0000000000000004
[  206.433386][T14218] RBP: 00007f4768946090 R08: 0000000000000000 R09: 0000000000000000
[  206.433392][T14218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.433398][T14218] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  206.433411][T14218]  </TASK>
[  206.496336][T14220] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2974'.
[  206.838446][   T40] audit: type=1326 audit(206.751:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14223 comm="syz.2.2975" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f74c638ebe9 code=0x0
[  206.895193][   T40] audit: type=1400 audit(206.811:606): avc:  denied  { setopt } for  pid=14229 comm="syz.3.2978" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  206.905189][   T61] usbhid 9-1:0.0: can't add hid device: -71
[  206.907019][   T61] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  206.910642][   T61] usb 9-1: USB disconnect, device number 5
[  206.939886][   T40] audit: type=1400 audit(206.851:607): avc:  denied  { getopt } for  pid=14232 comm="syz.3.2979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  206.948242][T14235] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  206.950935][T14235] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  206.956566][T14235] vhci_hcd vhci_hcd.0: Device attached
[  206.961694][T14237] vhci_hcd: cannot find a urb of seqnum 4294967226 max seqnum 0
[  206.966570][  T166] vhci_hcd: stop threads
[  206.967865][  T166] vhci_hcd: release socket
[  206.969211][  T166] vhci_hcd: disconnect device
[  207.010143][T14245] openvswitch: netlink: IPv4 frag type 255 is out of range max 2
[  207.068521][T14251] loop6: detected capacity change from 0 to 7
[  207.071418][    C3] blk_print_req_error: 40 callbacks suppressed
[  207.071429][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.076184][    C3] buffer_io_error: 40 callbacks suppressed
[  207.076193][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.080775][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.083886][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.086441][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.089635][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.092285][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.095387][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.098383][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.101395][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.104389][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.107597][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.110210][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.113902][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.117055][T14251] ldm_validate_partition_table(): Disk read failed.
[  207.119579][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.122532][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.125571][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.128557][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.131401][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  207.134606][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  207.137511][T14251] Dev loop6: unable to read RDB block 0
[  207.139555][T14251]  loop6: unable to read partition table
[  207.141538][T14251] loop6: partition table beyond EOD, truncated
[  207.143997][T14251] loop_reread_partitions: partition scan of loop6 (úùƒå¡™‰ü�¾CêjÌ–ã¢P=ý?ã}X‹ºÐ	œëÜ%õ«`ÉæÖ€ù…ˆ{í©Ö�˜Èµ4FLQkÝŠ) failed (rc=-5)
[  207.150750][T14253] ldm_validate_partition_table(): Disk read failed.
[  207.155241][T14253] Dev loop6: unable to read RDB block 0
[  207.157490][T14253]  loop6: unable to read partition table
[  207.159396][T14253] loop6: partition table beyond EOD, truncated
[  207.370273][   T40] audit: type=1400 audit(207.281:608): avc:  denied  { bind } for  pid=14265 comm="syz.5.2990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  207.402188][T14268] __nla_validate_parse: 2 callbacks suppressed
[  207.402199][T14268] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2991'.
[  207.702841][   T61] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  207.862686][   T61] usb 10-1: Using ep0 maxpacket: 8
[  207.866344][   T61] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  207.868807][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  207.872484][   T61] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  207.876303][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  207.879811][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  207.884864][   T61] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  207.887355][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  207.890922][   T61] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  207.894693][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  207.898105][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  207.903082][   T61] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[  207.905750][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  207.909270][   T61] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  207.913102][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  207.916424][   T61] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  207.922302][   T61] usb 10-1: string descriptor 0 read error: -22
[  207.924996][   T61] usb 10-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  207.927787][   T61] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.935847][   T61] adutux 10-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  208.250706][T14288] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3000'.
[  208.446134][T14296] validate_nla: 6 callbacks suppressed
[  208.446145][T14296] netlink: 'syz.4.3002': attribute type 10 has an invalid length.
[  210.232717][T14270] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  210.232765][ T5975] Bluetooth: hci3: command 0x0c1a tx timeout
[  210.439755][T14270] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  210.442537][T14270] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  210.444733][T14270] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  210.448066][T14270] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  210.480016][T14299] FAULT_INJECTION: forcing a failure.
[  210.480016][T14299] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  210.484444][T14299] CPU: 2 UID: 0 PID: 14299 Comm: syz.2.3004 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  210.484459][T14299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.484466][T14299] Call Trace:
[  210.484470][T14299]  <TASK>
[  210.484474][T14299]  dump_stack_lvl+0x16c/0x1f0
[  210.484489][T14299]  should_fail_ex+0x512/0x640
[  210.484503][T14299]  _copy_to_user+0x32/0xd0
[  210.484518][T14299]  simple_read_from_buffer+0xcb/0x170
[  210.484531][T14299]  proc_fail_nth_read+0x197/0x240
[  210.484544][T14299]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  210.484557][T14299]  ? rw_verify_area+0xcf/0x6c0
[  210.484573][T14299]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  210.484585][T14299]  vfs_read+0x1e1/0xcf0
[  210.484597][T14299]  ? __pfx___mutex_lock+0x10/0x10
[  210.484609][T14299]  ? __pfx_vfs_read+0x10/0x10
[  210.484623][T14299]  ? __fget_files+0x20e/0x3c0
[  210.484638][T14299]  ksys_read+0x12a/0x250
[  210.484648][T14299]  ? __pfx_ksys_read+0x10/0x10
[  210.484663][T14299]  do_syscall_64+0xcd/0x4c0
[  210.484675][T14299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.484686][T14299] RIP: 0033:0x7f74c638d5fc
[  210.484695][T14299] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  210.484706][T14299] RSP: 002b:00007f74c71cf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  210.484716][T14299] RAX: ffffffffffffffda RBX: 00007f74c65b5fa0 RCX: 00007f74c638d5fc
[  210.484723][T14299] RDX: 000000000000000f RSI: 00007f74c71cf0a0 RDI: 0000000000000004
[  210.484729][T14299] RBP: 00007f74c71cf090 R08: 0000000000000000 R09: 0000000000000000
[  210.484735][T14299] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001
[  210.484741][T14299] R13: 00007f74c65b6038 R14: 00007f74c65b5fa0 R15: 00007fff349f1ca8
[  210.484754][T14299]  </TASK>
[  210.550032][    C2] vkms_vblank_simulate: vblank timer overrun
[  210.573413][T14302] netlink: 'syz.4.3003': attribute type 39 has an invalid length.
[  210.645343][T14311] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3007'.
[  210.669284][   T40] audit: type=1326 audit(210.581:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14316 comm="syz.4.3009" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f17b3b8ebe9 code=0x0
[  210.676049][T14319] FAULT_INJECTION: forcing a failure.
[  210.676049][T14319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  210.682339][T14319] CPU: 1 UID: 0 PID: 14319 Comm: syz.3.3010 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  210.682354][T14319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.682361][T14319] Call Trace:
[  210.682365][T14319]  <TASK>
[  210.682370][T14319]  dump_stack_lvl+0x16c/0x1f0
[  210.682384][T14319]  should_fail_ex+0x512/0x640
[  210.682399][T14319]  _copy_to_user+0x32/0xd0
[  210.682413][T14319]  simple_read_from_buffer+0xcb/0x170
[  210.682426][T14319]  proc_fail_nth_read+0x197/0x240
[  210.682440][T14319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  210.682453][T14319]  ? rw_verify_area+0xcf/0x6c0
[  210.682469][T14319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  210.682481][T14319]  vfs_read+0x1e1/0xcf0
[  210.682493][T14319]  ? __pfx___mutex_lock+0x10/0x10
[  210.682505][T14319]  ? __pfx_vfs_read+0x10/0x10
[  210.682518][T14319]  ? __fget_files+0x20e/0x3c0
[  210.682534][T14319]  ksys_read+0x12a/0x250
[  210.682544][T14319]  ? __pfx_ksys_read+0x10/0x10
[  210.682558][T14319]  do_syscall_64+0xcd/0x4c0
[  210.682570][T14319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.682582][T14319] RIP: 0033:0x7f4767b8d5fc
[  210.682602][T14319] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  210.682614][T14319] RSP: 002b:00007f4768946030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  210.682625][T14319] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8d5fc
[  210.682632][T14319] RDX: 000000000000000f RSI: 00007f47689460a0 RDI: 0000000000000004
[  210.682638][T14319] RBP: 00007f4768946090 R08: 0000000000000000 R09: 0000000000000000
[  210.682644][T14319] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000001
[  210.682650][T14319] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  210.682664][T14319]  </TASK>
[  210.791747][T14326] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  210.794566][T14326] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  210.802113][T14326] vhci_hcd vhci_hcd.0: Device attached
[  210.808571][T14327] vhci_hcd: cannot find a urb of seqnum 4294967226 max seqnum 0
[  210.816374][ T1210] vhci_hcd: stop threads
[  210.818325][ T1210] vhci_hcd: release socket
[  210.820327][ T1210] vhci_hcd: disconnect device
[  211.043028][   T61] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  211.202706][   T61] usb 8-1: Using ep0 maxpacket: 32
[  211.206621][   T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  211.210249][   T61] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  211.213800][   T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  211.217318][   T61] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  211.220618][   T61] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  211.224688][   T61] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  211.225496][T14347] netlink: 'syz.2.3018': attribute type 39 has an invalid length.
[  211.227552][   T61] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.234888][   T61] usb 8-1: config 0 descriptor??
[  211.441430][   T61] usblp 8-1:0.0: usblp1: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  211.796660][T14349] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  211.802312][T14349] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  211.813441][   T61] usb 8-1: USB disconnect, device number 9
[  211.819373][   T61] usblp1: removed
[  211.917780][T14358] FAULT_INJECTION: forcing a failure.
[  211.917780][T14358] name failslab, interval 1, probability 0, space 0, times 0
[  211.923327][T14358] CPU: 1 UID: 0 PID: 14358 Comm: syz.3.3022 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  211.923345][T14358] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  211.923354][T14358] Call Trace:
[  211.923359][T14358]  <TASK>
[  211.923364][T14358]  dump_stack_lvl+0x16c/0x1f0
[  211.923382][T14358]  should_fail_ex+0x512/0x640
[  211.923399][T14358]  should_failslab+0xc2/0x120
[  211.923414][T14358]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  211.923431][T14358]  ? skb_clone+0x190/0x3f0
[  211.923446][T14358]  skb_clone+0x190/0x3f0
[  211.923459][T14358]  netlink_deliver_tap+0xabd/0xd30
[  211.923477][T14358]  netlink_unicast+0x64c/0x870
[  211.923493][T14358]  ? __pfx_netlink_unicast+0x10/0x10
[  211.923507][T14358]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  211.923526][T14358]  netlink_sendmsg+0x8d1/0xdd0
[  211.923542][T14358]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.923562][T14358]  ____sys_sendmsg+0xa98/0xc70
[  211.923580][T14358]  ? copy_msghdr_from_user+0x10a/0x160
[  211.923592][T14358]  ? __pfx_____sys_sendmsg+0x10/0x10
[  211.923616][T14358]  ___sys_sendmsg+0x134/0x1d0
[  211.923630][T14358]  ? __pfx____sys_sendmsg+0x10/0x10
[  211.923656][T14358]  ? __mutex_unlock_slowpath+0x100/0x800
[  211.923675][T14358]  __sys_sendmsg+0x16d/0x220
[  211.923688][T14358]  ? __pfx___sys_sendmsg+0x10/0x10
[  211.923711][T14358]  do_syscall_64+0xcd/0x4c0
[  211.923726][T14358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.923739][T14358] RIP: 0033:0x7f4767b8ebe9
[  211.923751][T14358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.923763][T14358] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  211.923776][T14358] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  211.923784][T14358] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  211.923792][T14358] RBP: 00007f4768946090 R08: 0000000000000000 R09: 0000000000000000
[  211.923799][T14358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  211.923807][T14358] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  211.923823][T14358]  </TASK>
[  212.218983][T14365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3025'.
[  212.312877][ T5975] Bluetooth: hci1: command 0x0c1a tx timeout
[  212.398911][T14375] random: crng reseeded on system resumption
[  212.473417][ T5975] Bluetooth: hci4: command 0x0c1a tx timeout
[  212.473467][   T61] usb 10-1: USB disconnect, device number 6
[  212.661994][T14392] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3034'.
[  212.786089][T14394] netlink: 'syz.4.3033': attribute type 39 has an invalid length.
[  213.090321][T14411] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3041'.
[  213.168877][T14419] FAULT_INJECTION: forcing a failure.
[  213.168877][T14419] name failslab, interval 1, probability 0, space 0, times 0
[  213.177283][T14419] CPU: 2 UID: 0 PID: 14419 Comm: syz.2.3047 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  213.177309][T14419] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.177320][T14419] Call Trace:
[  213.177328][T14419]  <TASK>
[  213.177337][T14419]  dump_stack_lvl+0x16c/0x1f0
[  213.177359][T14419]  should_fail_ex+0x512/0x640
[  213.177377][T14419]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  213.177398][T14419]  should_failslab+0xc2/0x120
[  213.177418][T14419]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  213.177435][T14419]  ? __mutex_trylock_common+0xe9/0x250
[  213.177462][T14419]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  213.177493][T14419]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  213.177523][T14419]  idr_get_free+0x528/0xa30
[  213.177560][T14419]  idr_alloc_u32+0x190/0x2f0
[  213.177590][T14419]  ? __pfx_idr_alloc_u32+0x10/0x10
[  213.177627][T14419]  tcf_idr_check_alloc+0x136/0x770
[  213.177652][T14419]  ? __pfx_tcf_idr_check_alloc+0x10/0x10
[  213.177683][T14419]  tcf_ife_init+0x569/0x14e0
[  213.177708][T14419]  ? __pfx_tcf_ife_init+0x10/0x10
[  213.177739][T14419]  ? tcf_action_init_1+0x2d2/0x6c0
[  213.177762][T14419]  ? __asan_memcpy+0x3c/0x60
[  213.177791][T14419]  tcf_action_init_1+0x45d/0x6c0
[  213.177818][T14419]  ? __pfx_tcf_action_init_1+0x10/0x10
[  213.177856][T14419]  ? __nla_parse+0x40/0x60
[  213.177881][T14419]  tcf_action_init+0x432/0xa50
[  213.177914][T14419]  ? __pfx_tcf_action_init+0x10/0x10
[  213.177958][T14419]  ? arch_stack_walk+0xa6/0x100
[  213.178003][T14419]  ? __kasan_slab_free+0x60/0x70
[  213.178030][T14419]  ? __lock_acquire+0x62e/0x1ce0
[  213.178060][T14419]  tcf_action_add+0xee/0x5c0
[  213.178088][T14419]  ? __pfx_tcf_action_add+0x10/0x10
[  213.178152][T14419]  ? __nla_parse+0x40/0x60
[  213.178178][T14419]  tc_ctl_action+0x35b/0x470
[  213.178203][T14419]  ? __pfx_tc_ctl_action+0x10/0x10
[  213.178236][T14419]  ? __pfx_tc_ctl_action+0x10/0x10
[  213.178277][T14419]  rtnetlink_rcv_msg+0x3c6/0xe90
[  213.178300][T14419]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  213.178327][T14419]  ? ref_tracker_free+0x37c/0x830
[  213.178350][T14419]  netlink_rcv_skb+0x158/0x420
[  213.178382][T14419]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  213.178405][T14419]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  213.178433][T14419]  ? netlink_deliver_tap+0x1ae/0xd30
[  213.178456][T14419]  netlink_unicast+0x5a7/0x870
[  213.178478][T14419]  ? __pfx_netlink_unicast+0x10/0x10
[  213.178497][T14419]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  213.178523][T14419]  netlink_sendmsg+0x8d1/0xdd0
[  213.178547][T14419]  ? __pfx_netlink_sendmsg+0x10/0x10
[  213.178576][T14419]  ____sys_sendmsg+0xa98/0xc70
[  213.178599][T14419]  ? copy_msghdr_from_user+0x10a/0x160
[  213.178617][T14419]  ? __pfx_____sys_sendmsg+0x10/0x10
[  213.178652][T14419]  ___sys_sendmsg+0x134/0x1d0
[  213.178671][T14419]  ? __pfx____sys_sendmsg+0x10/0x10
[  213.178712][T14419]  ? __mutex_unlock_slowpath+0x100/0x800
[  213.178739][T14419]  __sys_sendmsg+0x16d/0x220
[  213.178757][T14419]  ? __pfx___sys_sendmsg+0x10/0x10
[  213.178815][T14419]  do_syscall_64+0xcd/0x4c0
[  213.178836][T14419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.178854][T14419] RIP: 0033:0x7f74c638ebe9
[  213.178869][T14419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.178886][T14419] RSP: 002b:00007f74c71cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  213.178904][T14419] RAX: ffffffffffffffda RBX: 00007f74c65b5fa0 RCX: 00007f74c638ebe9
[  213.178915][T14419] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  213.178925][T14419] RBP: 00007f74c71cf090 R08: 0000000000000000 R09: 0000000000000000
[  213.178935][T14419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.178945][T14419] R13: 00007f74c65b6038 R14: 00007f74c65b5fa0 R15: 00007fff349f1ca8
[  213.178970][T14419]  </TASK>
[  213.349986][T14425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3050'.
[  213.473599][   T40] audit: type=1400 audit(213.391:610): avc:  denied  { getopt } for  pid=14437 comm="syz.5.3055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  213.476223][T14441] FAULT_INJECTION: forcing a failure.
[  213.476223][T14441] name failslab, interval 1, probability 0, space 0, times 0
[  213.485099][T14441] CPU: 1 UID: 0 PID: 14441 Comm: syz.2.3056 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  213.485124][T14441] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.485134][T14441] Call Trace:
[  213.485138][T14441]  <TASK>
[  213.485143][T14441]  dump_stack_lvl+0x16c/0x1f0
[  213.485159][T14441]  should_fail_ex+0x512/0x640
[  213.485171][T14441]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  213.485184][T14441]  should_failslab+0xc2/0x120
[  213.485196][T14441]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  213.485208][T14441]  ? __alloc_skb+0x2b2/0x380
[  213.485227][T14441]  __alloc_skb+0x2b2/0x380
[  213.485243][T14441]  ? __pfx___alloc_skb+0x10/0x10
[  213.485259][T14441]  ? __pfx___mutex_trylock_common+0x10/0x10
[  213.485279][T14441]  ? __pfx___might_resched+0x10/0x10
[  213.485296][T14441]  netlink_dump+0x19b/0xd30
[  213.485337][T14441]  ? __pfx_netlink_dump+0x10/0x10
[  213.485377][T14441]  __netlink_dump_start+0x6d6/0x990
[  213.485391][T14441]  ? __pfx_rtm_dump_nexthop_bucket+0x10/0x10
[  213.485404][T14441]  rtnetlink_rcv_msg+0xb3e/0xe90
[  213.485415][T14441]  ? __pfx_rtm_dump_nexthop_bucket+0x10/0x10
[  213.485428][T14441]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  213.485439][T14441]  ? __pfx_rtnl_dumpit+0x10/0x10
[  213.485453][T14441]  ? __pfx_rtm_dump_nexthop_bucket+0x10/0x10
[  213.485467][T14441]  ? ref_tracker_free+0x37c/0x830
[  213.485481][T14441]  netlink_rcv_skb+0x158/0x420
[  213.485492][T14441]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  213.485504][T14441]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  213.485520][T14441]  ? netlink_deliver_tap+0x1ae/0xd30
[  213.485533][T14441]  netlink_unicast+0x5a7/0x870
[  213.485546][T14441]  ? __pfx_netlink_unicast+0x10/0x10
[  213.485557][T14441]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  213.485573][T14441]  netlink_sendmsg+0x8d1/0xdd0
[  213.485589][T14441]  ? __pfx_netlink_sendmsg+0x10/0x10
[  213.485622][T14441]  ____sys_sendmsg+0xa98/0xc70
[  213.485637][T14441]  ? copy_msghdr_from_user+0x10a/0x160
[  213.485647][T14441]  ? __pfx_____sys_sendmsg+0x10/0x10
[  213.485667][T14441]  ___sys_sendmsg+0x134/0x1d0
[  213.485678][T14441]  ? __pfx____sys_sendmsg+0x10/0x10
[  213.485717][T14441]  ? __mutex_unlock_slowpath+0x100/0x800
[  213.485752][T14441]  __sys_sendmsg+0x16d/0x220
[  213.485765][T14441]  ? __pfx___sys_sendmsg+0x10/0x10
[  213.485784][T14441]  do_syscall_64+0xcd/0x4c0
[  213.485797][T14441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.485807][T14441] RIP: 0033:0x7f74c638ebe9
[  213.485817][T14441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.485827][T14441] RSP: 002b:00007f74c71cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  213.485838][T14441] RAX: ffffffffffffffda RBX: 00007f74c65b5fa0 RCX: 00007f74c638ebe9
[  213.485845][T14441] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[  213.485851][T14441] RBP: 00007f74c71cf090 R08: 0000000000000000 R09: 0000000000000000
[  213.485857][T14441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.485863][T14441] R13: 00007f74c65b6038 R14: 00007f74c65b5fa0 R15: 00007fff349f1ca8
[  213.485876][T14441]  </TASK>
[  213.597433][T14444] futex_wake_op: syz.5.3057 tries to shift op by 32; fix this program
[  213.640819][T14450] FAULT_INJECTION: forcing a failure.
[  213.640819][T14450] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.646222][T14450] CPU: 0 UID: 0 PID: 14450 Comm: syz.5.3059 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  213.646238][T14450] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.646244][T14450] Call Trace:
[  213.646248][T14450]  <TASK>
[  213.646257][T14450]  dump_stack_lvl+0x16c/0x1f0
[  213.646271][T14450]  should_fail_ex+0x512/0x640
[  213.646286][T14450]  _copy_from_user+0x2e/0xd0
[  213.646300][T14450]  kvm_arch_vcpu_ioctl+0xee9/0x52d0
[  213.646313][T14450]  ? kvm_arch_vcpu_ioctl+0xebd/0x52d0
[  213.646327][T14450]  ? stack_trace_save+0x8e/0xc0
[  213.646343][T14450]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  213.646355][T14450]  ? __lock_acquire+0xb97/0x1ce0
[  213.646371][T14450]  ? f2fs_flush_nat_entries+0x2225/0x27b0
[  213.646388][T14450]  ? kasan_save_stack+0x42/0x60
[  213.646398][T14450]  ? kasan_save_stack+0x33/0x60
[  213.646407][T14450]  ? kasan_save_track+0x14/0x30
[  213.646416][T14450]  ? kasan_save_free_info+0x3b/0x60
[  213.646430][T14450]  ? __kasan_slab_free+0x60/0x70
[  213.646441][T14450]  ? kfree+0x2b4/0x4d0
[  213.646455][T14450]  ? tomoyo_path_number_perm+0x470/0x580
[  213.646471][T14450]  ? __lock_acquire+0xb97/0x1ce0
[  213.646491][T14450]  ? __mutex_trylock_common+0xe9/0x250
[  213.646509][T14450]  ? __pfx___mutex_trylock_common+0x10/0x10
[  213.646526][T14450]  ? __pfx___might_resched+0x10/0x10
[  213.646540][T14450]  ? rcu_is_watching+0x12/0xc0
[  213.646554][T14450]  ? trace_contention_end+0xdd/0x130
[  213.646571][T14450]  ? __mutex_lock+0x1c4/0x10b0
[  213.646584][T14450]  ? kasan_quarantine_put+0x10a/0x240
[  213.646597][T14450]  ? __pfx___mutex_lock+0x10/0x10
[  213.646613][T14450]  ? tomoyo_path_number_perm+0x18d/0x580
[  213.646628][T14450]  ? kvm_vcpu_ioctl+0x1236/0x1690
[  213.646642][T14450]  kvm_vcpu_ioctl+0x1236/0x1690
[  213.646661][T14450]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  213.646680][T14450]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  213.646701][T14450]  ? do_vfs_ioctl+0x128/0x14f0
[  213.646726][T14450]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  213.646752][T14450]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  213.646809][T14450]  ? hook_file_ioctl_common+0x145/0x410
[  213.646828][T14450]  ? selinux_file_ioctl+0x180/0x270
[  213.646842][T14450]  ? selinux_file_ioctl+0xb4/0x270
[  213.646858][T14450]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  213.646872][T14450]  __x64_sys_ioctl+0x18b/0x210
[  213.646889][T14450]  do_syscall_64+0xcd/0x4c0
[  213.646901][T14450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.646912][T14450] RIP: 0033:0x7f9460f8ebe9
[  213.646922][T14450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.646932][T14450] RSP: 002b:00007f9461d73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  213.646943][T14450] RAX: ffffffffffffffda RBX: 00007f94611b5fa0 RCX: 00007f9460f8ebe9
[  213.646950][T14450] RDX: 0000200000000040 RSI: 000000004008ae89 RDI: 0000000000000005
[  213.646956][T14450] RBP: 00007f9461d73090 R08: 0000000000000000 R09: 0000000000000000
[  213.646962][T14450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.646968][T14450] R13: 00007f94611b6038 R14: 00007f94611b5fa0 R15: 00007ffcae797df8
[  213.646982][T14450]  </TASK>
[  213.772402][T14456] FAULT_INJECTION: forcing a failure.
[  213.772402][T14456] name failslab, interval 1, probability 0, space 0, times 0
[  213.776675][T14456] CPU: 2 UID: 0 PID: 14456 Comm: syz.4.3060 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  213.776690][T14456] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.776697][T14456] Call Trace:
[  213.776701][T14456]  <TASK>
[  213.776705][T14456]  dump_stack_lvl+0x16c/0x1f0
[  213.776720][T14456]  should_fail_ex+0x512/0x640
[  213.776732][T14456]  ? fs_reclaim_acquire+0xae/0x150
[  213.776748][T14456]  should_failslab+0xc2/0x120
[  213.776761][T14456]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  213.776774][T14456]  ? security_context_to_sid_core+0x732/0x860
[  213.776791][T14456]  kstrdup+0x53/0x100
[  213.776803][T14456]  security_context_to_sid_core+0x732/0x860
[  213.776820][T14456]  ? __pfx_security_context_to_sid_core+0x10/0x10
[  213.776844][T14456]  inode_doinit_use_xattr+0x101/0x410
[  213.776859][T14456]  inode_doinit_with_dentry+0x51e/0x12e0
[  213.776877][T14456]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[  213.776896][T14456]  selinux_d_instantiate+0x26/0x30
[  213.776910][T14456]  security_d_instantiate+0x142/0x1a0
[  213.776927][T14456]  d_splice_alias_ops+0x92/0x840
[  213.776946][T14456]  ovl_lookup+0xeee/0x21a0
[  213.776964][T14456]  ? __pfx_ovl_lookup+0x10/0x10
[  213.776983][T14456]  ? do_raw_spin_lock+0x12c/0x2b0
[  213.776999][T14456]  ? do_raw_spin_unlock+0x172/0x230
[  213.777010][T14456]  ? _raw_spin_unlock+0x28/0x50
[  213.777028][T14456]  lookup_one_qstr_excl+0x1ce/0x250
[  213.777048][T14456]  ? mnt_want_write+0x161/0x450
[  213.777059][T14456]  do_rmdir+0x245/0x3c0
[  213.777072][T14456]  ? __pfx_do_rmdir+0x10/0x10
[  213.777088][T14456]  ? getname_flags.part.0+0x1c5/0x550
[  213.777105][T14456]  __x64_sys_rmdir+0xc5/0x110
[  213.777117][T14456]  do_syscall_64+0xcd/0x4c0
[  213.777130][T14456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.777140][T14456] RIP: 0033:0x7f17b3b8ebe9
[  213.777150][T14456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.777160][T14456] RSP: 002b:00007f17b492c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  213.777170][T14456] RAX: ffffffffffffffda RBX: 00007f17b3db5fa0 RCX: 00007f17b3b8ebe9
[  213.777177][T14456] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000440
[  213.777183][T14456] RBP: 00007f17b492c090 R08: 0000000000000000 R09: 0000000000000000
[  213.777189][T14456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  213.777195][T14456] R13: 00007f17b3db6038 R14: 00007f17b3db5fa0 R15: 00007fff515158a8
[  213.777209][T14456]  </TASK>
[  213.777219][T14456] SELinux: inode_doinit_use_xattr:  context_to_sid(root:object_r:user_tmpfs_t) returned 12 for dev=overlay ino=828
[  213.862678][   T40] audit: type=1400 audit(213.771:611): avc:  denied  { rmdir } for  pid=14455 comm="syz.4.3060" name="file0" dev="overlay" ino=828 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  213.917506][T14463] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3064'.
[  213.920294][T14463] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3064'.
[  213.927728][ T1148] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  213.930789][ T1148] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  213.934267][  T166] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  213.937154][  T166] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  214.111472][T14485] netlink: 'syz.4.3069': attribute type 39 has an invalid length.
[  214.186183][T14488] geneve2: entered promiscuous mode
[  214.188451][T14488] geneve2: entered allmulticast mode
[  214.191100][ T1210] netdevsim netdevsim5 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  214.195860][ T1210] netdevsim netdevsim5 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  214.198718][ T1210] netdevsim netdevsim5 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  214.201991][ T1210] netdevsim netdevsim5 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  214.253542][T14493] FAULT_INJECTION: forcing a failure.
[  214.253542][T14493] name failslab, interval 1, probability 0, space 0, times 0
[  214.257637][T14493] CPU: 2 UID: 0 PID: 14493 Comm: syz.5.3075 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  214.257652][T14493] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.257659][T14493] Call Trace:
[  214.257663][T14493]  <TASK>
[  214.257667][T14493]  dump_stack_lvl+0x16c/0x1f0
[  214.257682][T14493]  should_fail_ex+0x512/0x640
[  214.257696][T14493]  should_failslab+0xc2/0x120
[  214.257709][T14493]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  214.257721][T14493]  ? skb_clone+0x190/0x3f0
[  214.257734][T14493]  skb_clone+0x190/0x3f0
[  214.257745][T14493]  netlink_deliver_tap+0xabd/0xd30
[  214.257759][T14493]  netlink_unicast+0x64c/0x870
[  214.257773][T14493]  ? __pfx_netlink_unicast+0x10/0x10
[  214.257784][T14493]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  214.257800][T14493]  netlink_sendmsg+0x8d1/0xdd0
[  214.257813][T14493]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.257829][T14493]  ____sys_sendmsg+0xa98/0xc70
[  214.257843][T14493]  ? copy_msghdr_from_user+0x10a/0x160
[  214.257854][T14493]  ? __pfx_____sys_sendmsg+0x10/0x10
[  214.257874][T14493]  ___sys_sendmsg+0x134/0x1d0
[  214.257885][T14493]  ? __pfx____sys_sendmsg+0x10/0x10
[  214.257906][T14493]  ? __mutex_unlock_slowpath+0x100/0x800
[  214.257922][T14493]  __sys_sendmsg+0x16d/0x220
[  214.257932][T14493]  ? __pfx___sys_sendmsg+0x10/0x10
[  214.257951][T14493]  do_syscall_64+0xcd/0x4c0
[  214.257964][T14493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.257975][T14493] RIP: 0033:0x7f9460f8ebe9
[  214.257984][T14493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.257995][T14493] RSP: 002b:00007f9461d73038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.258006][T14493] RAX: ffffffffffffffda RBX: 00007f94611b5fa0 RCX: 00007f9460f8ebe9
[  214.258013][T14493] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  214.258019][T14493] RBP: 00007f9461d73090 R08: 0000000000000000 R09: 0000000000000000
[  214.258026][T14493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.258032][T14493] R13: 00007f94611b6038 R14: 00007f94611b5fa0 R15: 00007ffcae797df8
[  214.258045][T14493]  </TASK>
[  214.261704][T14494] geneve2: entered promiscuous mode
[  214.332449][T14494] geneve2: entered allmulticast mode
[  214.334705][ T1210] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  214.338512][ T1210] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  214.342015][ T1210] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  214.345465][ T1210] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  214.358202][T14497] FAULT_INJECTION: forcing a failure.
[  214.358202][T14497] name failslab, interval 1, probability 0, space 0, times 0
[  214.362122][T14497] CPU: 2 UID: 0 PID: 14497 Comm: syz.3.3078 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  214.362137][T14497] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.362144][T14497] Call Trace:
[  214.362149][T14497]  <TASK>
[  214.362154][T14497]  dump_stack_lvl+0x16c/0x1f0
[  214.362168][T14497]  should_fail_ex+0x512/0x640
[  214.362181][T14497]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  214.362199][T14497]  should_failslab+0xc2/0x120
[  214.362216][T14497]  __kmalloc_cache_noprof+0x6a/0x3e0
[  214.362233][T14497]  ? rtnl_newlink+0x11b/0x2000
[  214.362246][T14497]  ? __pfx_rtnl_newlink+0x10/0x10
[  214.362256][T14497]  rtnl_newlink+0x11b/0x2000
[  214.362271][T14497]  ? __pfx_rtnl_newlink+0x10/0x10
[  214.362281][T14497]  ? find_held_lock+0x2b/0x80
[  214.362295][T14497]  ? avc_has_perm_noaudit+0x117/0x3b0
[  214.362309][T14497]  ? avc_has_perm_noaudit+0x149/0x3b0
[  214.362322][T14497]  ? __lock_acquire+0x62e/0x1ce0
[  214.362346][T14497]  ? find_held_lock+0x2b/0x80
[  214.362357][T14497]  ? __pfx_rtnl_newlink+0x10/0x10
[  214.362368][T14497]  ? __pfx_rtnl_newlink+0x10/0x10
[  214.362378][T14497]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  214.362389][T14497]  ? __pfx_rtnl_newlink+0x10/0x10
[  214.362401][T14497]  rtnetlink_rcv_msg+0x95b/0xe90
[  214.362413][T14497]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  214.362428][T14497]  ? ref_tracker_free+0x37c/0x830
[  214.362442][T14497]  netlink_rcv_skb+0x158/0x420
[  214.362454][T14497]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  214.362466][T14497]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  214.362482][T14497]  ? netlink_deliver_tap+0x1ae/0xd30
[  214.362495][T14497]  netlink_unicast+0x5a7/0x870
[  214.362508][T14497]  ? __pfx_netlink_unicast+0x10/0x10
[  214.362520][T14497]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  214.362535][T14497]  netlink_sendmsg+0x8d1/0xdd0
[  214.362550][T14497]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.362567][T14497]  ____sys_sendmsg+0xa98/0xc70
[  214.362581][T14497]  ? copy_msghdr_from_user+0x10a/0x160
[  214.362591][T14497]  ? __pfx_____sys_sendmsg+0x10/0x10
[  214.362625][T14497]  ___sys_sendmsg+0x134/0x1d0
[  214.362636][T14497]  ? __pfx____sys_sendmsg+0x10/0x10
[  214.362659][T14497]  ? __mutex_unlock_slowpath+0x100/0x800
[  214.362674][T14497]  __sys_sendmsg+0x16d/0x220
[  214.362685][T14497]  ? __pfx___sys_sendmsg+0x10/0x10
[  214.362704][T14497]  do_syscall_64+0xcd/0x4c0
[  214.362717][T14497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.362728][T14497] RIP: 0033:0x7f4767b8ebe9
[  214.362738][T14497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.362749][T14497] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.362777][T14497] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  214.362784][T14497] RDX: 0000000000040800 RSI: 00002000000002c0 RDI: 0000000000000003
[  214.362791][T14497] RBP: 00007f4768946090 R08: 0000000000000000 R09: 0000000000000000
[  214.362797][T14497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.362803][T14497] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  214.362817][T14497]  </TASK>
[  214.489331][T14508] FAULT_INJECTION: forcing a failure.
[  214.489331][T14508] name failslab, interval 1, probability 0, space 0, times 0
[  214.494120][T14508] CPU: 2 UID: 0 PID: 14508 Comm: syz.3.3081 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  214.494137][T14508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.494156][T14508] Call Trace:
[  214.494161][T14508]  <TASK>
[  214.494166][T14508]  dump_stack_lvl+0x16c/0x1f0
[  214.494181][T14508]  should_fail_ex+0x512/0x640
[  214.494193][T14508]  ? fs_reclaim_acquire+0xae/0x150
[  214.494209][T14508]  ? p9_fcall_init+0x97/0x260
[  214.494219][T14508]  should_failslab+0xc2/0x120
[  214.494231][T14508]  __kmalloc_noprof+0xd2/0x510
[  214.494242][T14508]  ? rcu_is_watching+0x12/0xc0
[  214.494258][T14508]  p9_fcall_init+0x97/0x260
[  214.494269][T14508]  p9_tag_alloc+0x202/0x640
[  214.494280][T14508]  ? __pfx_p9_tag_alloc+0x10/0x10
[  214.494294][T14508]  ? __lock_acquire+0x62e/0x1ce0
[  214.494313][T14508]  p9_client_prepare_req+0x19b/0x4d0
[  214.494325][T14508]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  214.494335][T14508]  ? filename_lookup+0x224/0x5f0
[  214.494348][T14508]  ? __lock_acquire+0xb97/0x1ce0
[  214.494366][T14508]  p9_client_rpc+0x1c4/0xc50
[  214.494379][T14508]  ? __pfx_p9_client_rpc+0x10/0x10
[  214.494391][T14508]  ? idr_alloc_u32+0x20f/0x2f0
[  214.494408][T14508]  ? find_held_lock+0x2b/0x80
[  214.494422][T14508]  ? idr_preload_end+0xc2/0x230
[  214.494436][T14508]  p9_client_attach+0x156/0x2b0
[  214.494450][T14508]  ? __pfx_p9_client_attach+0x10/0x10
[  214.494462][T14508]  ? v9fs_fid_lookup+0x4bd/0xeb0
[  214.494482][T14508]  v9fs_fid_lookup+0x97a/0xeb0
[  214.494500][T14508]  v9fs_vfs_lookup+0x1a1/0x5b0
[  214.494512][T14508]  ? __pfx_v9fs_vfs_lookup+0x10/0x10
[  214.494524][T14508]  ? lockdep_init_map_type+0x5c/0x280
[  214.494542][T14508]  ? lockdep_init_map_type+0x5c/0x280
[  214.494561][T14508]  __lookup_slow+0x251/0x460
[  214.494577][T14508]  ? __pfx___lookup_slow+0x10/0x10
[  214.494602][T14508]  ? lookup_fast+0x156/0x610
[  214.494614][T14508]  walk_component+0x353/0x5b0
[  214.494625][T14508]  path_lookupat+0x142/0x6d0
[  214.494638][T14508]  filename_lookup+0x224/0x5f0
[  214.494650][T14508]  ? __pfx_filename_lookup+0x10/0x10
[  214.494674][T14508]  ? getname_flags.part.0+0x1c5/0x550
[  214.494692][T14508]  user_path_at+0x3a/0x60
[  214.494704][T14508]  __x64_sys_mount+0x1fc/0x310
[  214.494718][T14508]  ? __pfx___x64_sys_mount+0x10/0x10
[  214.494736][T14508]  do_syscall_64+0xcd/0x4c0
[  214.494748][T14508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.494834][T14508] RIP: 0033:0x7f4767b8ebe9
[  214.494845][T14508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.494856][T14508] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  214.494867][T14508] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  214.494874][T14508] RDX: 0000000000000000 RSI: 00002000000020c0 RDI: 0000000000000000
[  214.494881][T14508] RBP: 00007f4768946090 R08: 0000000000000000 R09: 0000000000000000
[  214.494888][T14508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.494894][T14508] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  214.494909][T14508]  </TASK>
[  214.603124][ T5975] Bluetooth: hci4: command 0x0c1a tx timeout
[  214.809594][T14521] FAULT_INJECTION: forcing a failure.
[  214.809594][T14521] name failslab, interval 1, probability 0, space 0, times 0
[  214.814556][T14521] CPU: 3 UID: 0 PID: 14521 Comm: syz.5.3087 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  214.814571][T14521] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.814578][T14521] Call Trace:
[  214.814582][T14521]  <TASK>
[  214.814587][T14521]  dump_stack_lvl+0x16c/0x1f0
[  214.814603][T14521]  should_fail_ex+0x512/0x640
[  214.814615][T14521]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  214.814628][T14521]  should_failslab+0xc2/0x120
[  214.814641][T14521]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  214.814652][T14521]  ? __alloc_skb+0x2b2/0x380
[  214.814672][T14521]  __alloc_skb+0x2b2/0x380
[  214.814688][T14521]  ? __pfx___alloc_skb+0x10/0x10
[  214.814706][T14521]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  214.814720][T14521]  netlink_alloc_large_skb+0x69/0x130
[  214.814733][T14521]  netlink_sendmsg+0x6a1/0xdd0
[  214.814746][T14521]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.814790][T14521]  ____sys_sendmsg+0xa98/0xc70
[  214.814805][T14521]  ? copy_msghdr_from_user+0x10a/0x160
[  214.814815][T14521]  ? __pfx_____sys_sendmsg+0x10/0x10
[  214.814835][T14521]  ___sys_sendmsg+0x134/0x1d0
[  214.814846][T14521]  ? __pfx____sys_sendmsg+0x10/0x10
[  214.814867][T14521]  ? __mutex_unlock_slowpath+0x100/0x800
[  214.814882][T14521]  __sys_sendmsg+0x16d/0x220
[  214.814892][T14521]  ? __pfx___sys_sendmsg+0x10/0x10
[  214.814911][T14521]  do_syscall_64+0xcd/0x4c0
[  214.814923][T14521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.814934][T14521] RIP: 0033:0x7f9460f8ebe9
[  214.814944][T14521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.814954][T14521] RSP: 002b:00007f9461d73038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.814965][T14521] RAX: ffffffffffffffda RBX: 00007f94611b5fa0 RCX: 00007f9460f8ebe9
[  214.814972][T14521] RDX: 0000000000004000 RSI: 000020000000c2c0 RDI: 0000000000000005
[  214.814979][T14521] RBP: 00007f9461d73090 R08: 0000000000000000 R09: 0000000000000000
[  214.814985][T14521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.814995][T14521] R13: 00007f94611b6038 R14: 00007f94611b5fa0 R15: 00007ffcae797df8
[  214.815008][T14521]  </TASK>
[  214.822422][T14523] FAULT_INJECTION: forcing a failure.
[  214.822422][T14523] name failslab, interval 1, probability 0, space 0, times 0
[  214.898222][T14523] CPU: 2 UID: 0 PID: 14523 Comm: syz.3.3088 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  214.898244][T14523] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.898253][T14523] Call Trace:
[  214.898259][T14523]  <TASK>
[  214.898265][T14523]  dump_stack_lvl+0x16c/0x1f0
[  214.898286][T14523]  should_fail_ex+0x512/0x640
[  214.898304][T14523]  ? __kvmalloc_node_noprof+0x124/0x620
[  214.898332][T14523]  should_failslab+0xc2/0x120
[  214.898352][T14523]  __kvmalloc_node_noprof+0x137/0x620
[  214.898379][T14523]  ? hash_mac_create+0x447/0x1000
[  214.898411][T14523]  ? hash_mac_create+0x447/0x1000
[  214.898435][T14523]  hash_mac_create+0x447/0x1000
[  214.898463][T14523]  ? __pfx_hash_mac_create+0x10/0x10
[  214.898490][T14523]  ip_set_create+0x7e1/0x14d0
[  214.898519][T14523]  ? __pfx_ip_set_create+0x10/0x10
[  214.898561][T14523]  ? find_held_lock+0x2b/0x80
[  214.898588][T14523]  nfnetlink_rcv_msg+0x9f9/0x1200
[  214.898619][T14523]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  214.898644][T14523]  ? __lock_acquire+0x62e/0x1ce0
[  214.898713][T14523]  ? avc_has_perm_noaudit+0x149/0x3b0
[  214.898738][T14523]  netlink_rcv_skb+0x158/0x420
[  214.898776][T14523]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  214.898801][T14523]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  214.898830][T14523]  ? ns_capable+0xd7/0x110
[  214.898852][T14523]  nfnetlink_rcv+0x1b3/0x430
[  214.898874][T14523]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  214.898896][T14523]  ? netlink_deliver_tap+0x1ae/0xd30
[  214.898915][T14523]  netlink_unicast+0x5a7/0x870
[  214.898934][T14523]  ? __pfx_netlink_unicast+0x10/0x10
[  214.898952][T14523]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  214.898983][T14523]  netlink_sendmsg+0x8d1/0xdd0
[  214.899005][T14523]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.899034][T14523]  ____sys_sendmsg+0xa98/0xc70
[  214.899056][T14523]  ? copy_msghdr_from_user+0x10a/0x160
[  214.899073][T14523]  ? __pfx_____sys_sendmsg+0x10/0x10
[  214.899107][T14523]  ___sys_sendmsg+0x134/0x1d0
[  214.899125][T14523]  ? __pfx____sys_sendmsg+0x10/0x10
[  214.899166][T14523]  ? __mutex_unlock_slowpath+0x100/0x800
[  214.899192][T14523]  __sys_sendmsg+0x16d/0x220
[  214.899210][T14523]  ? __pfx___sys_sendmsg+0x10/0x10
[  214.899242][T14523]  do_syscall_64+0xcd/0x4c0
[  214.899260][T14523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.899277][T14523] RIP: 0033:0x7f4767b8ebe9
[  214.899291][T14523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.899307][T14523] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.899323][T14523] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  214.899334][T14523] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  214.899344][T14523] RBP: 00007f4768946090 R08: 0000000000000000 R09: 0000000000000000
[  214.899354][T14523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.899363][T14523] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  214.899387][T14523]  </TASK>
[  215.022158][T14538] bridge1: the hash_elasticity option has been deprecated and is always 16
[  215.066347][T14540] FAULT_INJECTION: forcing a failure.
[  215.066347][T14540] name failslab, interval 1, probability 0, space 0, times 0
[  215.072239][T14540] CPU: 2 UID: 0 PID: 14540 Comm: syz.4.3094 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  215.072255][T14540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  215.072262][T14540] Call Trace:
[  215.072266][T14540]  <TASK>
[  215.072271][T14540]  dump_stack_lvl+0x16c/0x1f0
[  215.072286][T14540]  should_fail_ex+0x512/0x640
[  215.072300][T14540]  should_failslab+0xc2/0x120
[  215.072314][T14540]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  215.072325][T14540]  ? trace_kmem_cache_alloc+0x28/0xc0
[  215.072338][T14540]  ? kmem_cache_alloc_node_noprof+0x225/0x3b0
[  215.072349][T14540]  ? __alloc_skb+0x2b2/0x380
[  215.072368][T14540]  __alloc_skb+0x2b2/0x380
[  215.072384][T14540]  ? __pfx___alloc_skb+0x10/0x10
[  215.072401][T14540]  ? __alloc_skb+0x200/0x380
[  215.072416][T14540]  ? __pfx___alloc_skb+0x10/0x10
[  215.072432][T14540]  ? __lock_acquire+0xb97/0x1ce0
[  215.072450][T14540]  create_monitor_ctrl_event+0x3b/0x450
[  215.072469][T14540]  mgmt_cmd_complete+0x2de/0x550
[  215.072486][T14540]  set_connectable+0x478/0x820
[  215.072499][T14540]  ? __pfx_set_connectable+0x10/0x10
[  215.072511][T14540]  ? do_raw_read_unlock+0x44/0xe0
[  215.072522][T14540]  ? _raw_read_unlock+0x28/0x50
[  215.072539][T14540]  ? __pfx_mgmt_init_hdev+0x10/0x10
[  215.072557][T14540]  hci_sock_sendmsg+0x1522/0x25f0
[  215.072576][T14540]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  215.072608][T14540]  sock_write_iter+0x4fc/0x5b0
[  215.072625][T14540]  ? __pfx_sock_write_iter+0x10/0x10
[  215.072644][T14540]  ? bpf_lsm_file_permission+0x9/0x10
[  215.072657][T14540]  ? security_file_permission+0x71/0x210
[  215.072674][T14540]  ? rw_verify_area+0xcf/0x6c0
[  215.072692][T14540]  vfs_write+0x7d3/0x11d0
[  215.072703][T14540]  ? __pfx_sock_write_iter+0x10/0x10
[  215.072718][T14540]  ? __pfx_vfs_write+0x10/0x10
[  215.072727][T14540]  ? find_held_lock+0x2b/0x80
[  215.072750][T14540]  ksys_write+0x1f8/0x250
[  215.072760][T14540]  ? __pfx_ksys_write+0x10/0x10
[  215.072775][T14540]  do_syscall_64+0xcd/0x4c0
[  215.072787][T14540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.072798][T14540] RIP: 0033:0x7f17b3b8ebe9
[  215.072808][T14540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.072818][T14540] RSP: 002b:00007f17b492c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  215.072829][T14540] RAX: ffffffffffffffda RBX: 00007f17b3db5fa0 RCX: 00007f17b3b8ebe9
[  215.072836][T14540] RDX: 0000000000000007 RSI: 0000200000000340 RDI: 0000000000000004
[  215.072842][T14540] RBP: 00007f17b492c090 R08: 0000000000000000 R09: 0000000000000000
[  215.072848][T14540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.072854][T14540] R13: 00007f17b3db6038 R14: 00007f17b3db5fa0 R15: 00007fff515158a8
[  215.072868][T14540]  </TASK>
[  215.166358][T14547] fuse: Bad value for 'fd'
[  215.168536][T14547] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3096'.
[  215.186998][T14547] bond1: entered promiscuous mode
[  215.190005][T14547] 8021q: adding VLAN 0 to HW filter on device bond1
[  215.216977][T14547] 8021q: adding VLAN 0 to HW filter on device bond1
[  215.220277][T14547] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[  215.230594][T14547] bond1: (slave wireguard0): Error -95 calling set_mac_address
[  215.251914][   T40] audit: type=1400 audit(215.161:612): avc:  denied  { lock } for  pid=14546 comm="syz.3.3096" path="socket:[89116]" dev="sockfs" ino=89116 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  215.315117][T14555] program syz.4.3098 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  215.355407][T14565] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3100'.
[  215.449864][T14565] team0 (unregistering): Failed to send port change of device team_slave_0 via netlink (err -105)
[  215.454128][T14565] team0 (unregistering): Port device team_slave_0 removed
[  215.462916][T14565] team0 (unregistering): Failed to send options change via netlink (err -105)
[  215.466132][T14565] team0 (unregistering): Failed to send port change of device team_slave_1 via netlink (err -105)
[  215.469717][T14565] team0 (unregistering): Port device team_slave_1 removed
[  215.482254][T14575] netlink: 'syz.3.3104': attribute type 10 has an invalid length.
[  215.609107][T14583] FAULT_INJECTION: forcing a failure.
[  215.609107][T14583] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.614391][T14583] CPU: 2 UID: 0 PID: 14583 Comm: syz.3.3107 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  215.614406][T14583] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  215.614413][T14583] Call Trace:
[  215.614417][T14583]  <TASK>
[  215.614421][T14583]  dump_stack_lvl+0x16c/0x1f0
[  215.614436][T14583]  should_fail_ex+0x512/0x640
[  215.614451][T14583]  _copy_from_user+0x2e/0xd0
[  215.614465][T14583]  ____sys_sendmsg+0x607/0xc70
[  215.614481][T14583]  ? __pfx_____sys_sendmsg+0x10/0x10
[  215.614500][T14583]  ___sys_sendmsg+0x134/0x1d0
[  215.614512][T14583]  ? __pfx____sys_sendmsg+0x10/0x10
[  215.614533][T14583]  ? __mutex_unlock_slowpath+0x100/0x800
[  215.614549][T14583]  __sys_sendmsg+0x16d/0x220
[  215.614559][T14583]  ? __pfx___sys_sendmsg+0x10/0x10
[  215.614578][T14583]  do_syscall_64+0xcd/0x4c0
[  215.614590][T14583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.614601][T14583] RIP: 0033:0x7f4767b8ebe9
[  215.614610][T14583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.614620][T14583] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.614631][T14583] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  215.614638][T14583] RDX: 000000000004c051 RSI: 00002000000047c0 RDI: 0000000000000003
[  215.614645][T14583] RBP: 00007f4768946090 R08: 0000000000000000 R09: 0000000000000000
[  215.614651][T14583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.614657][T14583] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  215.614670][T14583]  </TASK>
[  215.767459][T14591] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3110'.
[  215.935859][T14600] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3113'.
[  216.272730][T10525] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  216.423802][T10525] usb 8-1: Using ep0 maxpacket: 16
[  216.426768][T10525] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  216.430127][T10525] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  216.433434][T10525] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  216.437474][T10525] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  216.440297][T10525] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.444357][T10525] usb 8-1: config 0 descriptor??
[  216.579323][T14607] vlan0: entered promiscuous mode
[  216.588248][T14607] team0: Port device vlan0 added
[  216.629550][T14614] syz.4.3119: attempt to access beyond end of device
[  216.629550][T14614] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  216.635318][T14614] (syz.4.3119,14614,1):ocfs2_get_sector:1714 ERROR: status = -5
[  216.637731][T14614] (syz.4.3119,14614,1):ocfs2_sb_probe:753 ERROR: status = -5
[  216.640072][T14614] (syz.4.3119,14614,1):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  216.643126][T14614] (syz.4.3119,14614,1):ocfs2_fill_super:1177 ERROR: status = -5
[  216.643828][ T5975] Bluetooth: hci4: command 0x0c1a tx timeout
[  216.653501][T14612] FAULT_INJECTION: forcing a failure.
[  216.653501][T14612] name failslab, interval 1, probability 0, space 0, times 0
[  216.654663][T14614] syz.4.3119: attempt to access beyond end of device
[  216.654663][T14614] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  216.657706][T14612] CPU: 3 UID: 0 PID: 14612 Comm: syz.5.3118 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  216.657721][T14612] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  216.657728][T14612] Call Trace:
[  216.657733][T14612]  <TASK>
[  216.657737][T14612]  dump_stack_lvl+0x16c/0x1f0
[  216.657753][T14612]  should_fail_ex+0x512/0x640
[  216.657765][T14612]  ? fs_reclaim_acquire+0xae/0x150
[  216.657780][T14612]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  216.657797][T14612]  should_failslab+0xc2/0x120
[  216.657809][T14612]  __kmalloc_noprof+0xd2/0x510
[  216.657824][T14612]  tomoyo_realpath_from_path+0xc2/0x6e0
[  216.657840][T14612]  ? tomoyo_profile+0x47/0x60
[  216.657852][T14612]  tomoyo_path_number_perm+0x245/0x580
[  216.657864][T14612]  ? tomoyo_path_number_perm+0x237/0x580
[  216.657879][T14612]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  216.657905][T14612]  ? d_alloc_parallel+0xae4/0x1480
[  216.657924][T14612]  ? current_check_access_path+0x33c/0x460
[  216.657938][T14612]  ? __pfx_current_check_access_path+0x10/0x10
[  216.657954][T14612]  tomoyo_path_mknod+0x10c/0x190
[  216.657965][T14612]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  216.657976][T14612]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  216.657991][T14612]  security_path_mknod+0x161/0x310
[  216.658008][T14612]  lookup_open.isra.0+0xc17/0x1580
[  216.658028][T14612]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  216.658053][T14612]  ? __pfx_down_write+0x10/0x10
[  216.658064][T14612]  ? mnt_get_write_access+0x20c/0x300
[  216.658082][T14612]  path_openat+0x893/0x2cb0
[  216.658099][T14612]  ? __pfx_path_openat+0x10/0x10
[  216.658114][T14612]  do_filp_open+0x20b/0x470
[  216.658126][T14612]  ? __pfx_do_filp_open+0x10/0x10
[  216.658154][T14612]  ? alloc_fd+0x471/0x7d0
[  216.658182][T14612]  do_sys_openat2+0x11b/0x1d0
[  216.658200][T14612]  ? __pfx_do_sys_openat2+0x10/0x10
[  216.658216][T14612]  ? __fget_files+0x20e/0x3c0
[  216.658231][T14612]  __x64_sys_openat+0x174/0x210
[  216.658245][T14612]  ? __pfx___x64_sys_openat+0x10/0x10
[  216.658260][T14612]  ? ksys_write+0x1ac/0x250
[  216.658275][T14612]  do_syscall_64+0xcd/0x4c0
[  216.658288][T14612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.658299][T14612] RIP: 0033:0x7f9460f8ebe9
[  216.658309][T14612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.658319][T14612] RSP: 002b:00007f9461d73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  216.658330][T14612] RAX: ffffffffffffffda RBX: 00007f94611b5fa0 RCX: 00007f9460f8ebe9
[  216.658337][T14612] RDX: 000000000000275a RSI: 0000200000000240 RDI: ffffffffffffff9c
[  216.658344][T14612] RBP: 00007f9461d73090 R08: 0000000000000000 R09: 0000000000000000
[  216.658350][T14612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.658357][T14612] R13: 00007f94611b6038 R14: 00007f94611b5fa0 R15: 00007ffcae797df8
[  216.658370][T14612]  </TASK>
[  216.658375][T14612] ERROR: Out of memory at tomoyo_realpath_from_path.
[  216.663609][T14614] (syz.4.3119,14614,2):ocfs2_get_sector:1714 ERROR: status = -5
[  216.703323][T14621] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3121'.
[  216.704874][T14614] (syz.4.3119,14614,2):ocfs2_sb_probe:753 ERROR: status = -5
[  216.791220][T14614] (syz.4.3119,14614,2):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  216.795437][T14614] (syz.4.3119,14614,2):ocfs2_fill_super:1177 ERROR: status = -5
[  216.851896][T10525] HID 045e:07da: Invalid code 65791 type 1
[  216.869059][T10525] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:045E:07DA.000D/input/input20
[  216.883920][T10525] microsoft 0003:045E:07DA.000D: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  216.901464][ T5975] Bluetooth: hci3: unexpected event for opcode 0x0809
[  216.979028][T14648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14648 comm=syz.4.3133
[  216.992200][   T40] audit: type=1400 audit(216.901:613): avc:  denied  { listen } for  pid=14647 comm="syz.4.3133" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  216.999752][   T40] audit: type=1400 audit(216.911:614): avc:  denied  { accept } for  pid=14647 comm="syz.4.3133" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  217.136515][   T61] usb 8-1: USB disconnect, device number 10
[  217.314340][T14657] netlink: 'syz.2.3135': attribute type 12 has an invalid length.
[  217.317305][T14657] netlink: 'syz.2.3135': attribute type 12 has an invalid length.
[  217.466549][T14671] FAULT_INJECTION: forcing a failure.
[  217.466549][T14671] name failslab, interval 1, probability 0, space 0, times 0
[  217.470625][T14671] CPU: 2 UID: 0 PID: 14671 Comm: syz.2.3138 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  217.470642][T14671] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  217.470649][T14671] Call Trace:
[  217.470654][T14671]  <TASK>
[  217.470659][T14671]  dump_stack_lvl+0x16c/0x1f0
[  217.470675][T14671]  should_fail_ex+0x512/0x640
[  217.470687][T14671]  ? __kmalloc_noprof+0xbf/0x510
[  217.470698][T14671]  ? lsm_blob_alloc+0x68/0x90
[  217.470709][T14671]  should_failslab+0xc2/0x120
[  217.470722][T14671]  __kmalloc_noprof+0xd2/0x510
[  217.470753][T14671]  lsm_blob_alloc+0x68/0x90
[  217.470764][T14671]  security_sk_alloc+0x30/0x270
[  217.470778][T14671]  sk_prot_alloc+0x1c7/0x2a0
[  217.470793][T14671]  sk_alloc+0x36/0xc20
[  217.470810][T14671]  pppoe_create+0x32/0x310
[  217.470827][T14671]  pppox_create+0x15c/0x2c0
[  217.470843][T14671]  __sock_create+0x335/0x8d0
[  217.470860][T14671]  __sys_socketpair+0x1d8/0x5a0
[  217.470875][T14671]  ? __pfx___sys_socketpair+0x10/0x10
[  217.470889][T14671]  ? fput+0x9b/0xd0
[  217.470904][T14671]  ? __pfx_ksys_write+0x10/0x10
[  217.470917][T14671]  __x64_sys_socketpair+0x96/0x100
[  217.470932][T14671]  ? lockdep_hardirqs_on+0x7c/0x110
[  217.470942][T14671]  do_syscall_64+0xcd/0x4c0
[  217.470959][T14671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.470970][T14671] RIP: 0033:0x7f74c638ebe9
[  217.470980][T14671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.470991][T14671] RSP: 002b:00007f74c71cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  217.471001][T14671] RAX: ffffffffffffffda RBX: 00007f74c65b5fa0 RCX: 00007f74c638ebe9
[  217.471008][T14671] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000018
[  217.471015][T14671] RBP: 00007f74c71cf090 R08: 0000000000000000 R09: 0000000000000000
[  217.471021][T14671] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000002
[  217.471027][T14671] R13: 00007f74c65b6038 R14: 00007f74c65b5fa0 R15: 00007fff349f1ca8
[  217.471040][T14671]  </TASK>
[  217.565471][   T40] audit: type=1400 audit(217.481:615): avc:  denied  { setopt } for  pid=14672 comm="syz.2.3139" laddr=::ffff:172.20.20.10 lport=41110 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  217.681709][T14681] mkiss: ax0: crc mode is auto.
[  217.981630][T14699] __nla_validate_parse: 5 callbacks suppressed
[  217.981641][T14699] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3152'.
[  217.987645][T14699] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3152'.
[  217.992270][T14699] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3152'.
[  217.995239][T14699] batman_adv: batadv0: Removing interface: batadv_slave_0
[  217.998785][T14699] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  218.001327][T14699] batman_adv: batadv0: Removing interface: batadv_slave_1
[  218.219159][T14712] netlink: 'syz.3.3157': attribute type 10 has an invalid length.
[  218.225158][T14711] Bluetooth: MGMT ver 1.23
[  218.285482][   T40] audit: type=1400 audit(218.201:616): avc:  denied  { node_bind } for  pid=14718 comm="syz.4.3160" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  218.442489][ T1210] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  218.447664][ T1210] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.528590][ T1210] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  218.531925][ T1210] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.544221][T14734] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  218.546367][T14734] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  218.549021][T14734] vhci_hcd vhci_hcd.0: Device attached
[  218.555849][T14734] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(8)
[  218.557899][T14734] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  218.560319][T14734] vhci_hcd vhci_hcd.0: Device attached
[  218.564111][T14734] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(10)
[  218.566201][T14734] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  218.568622][T14734] vhci_hcd vhci_hcd.0: Device attached
[  218.570922][T14737] vhci_hcd: connection closed
[  218.571116][T14735] vhci_hcd: connection closed
[  218.571394][T14739] vhci_hcd: connection closed
[  218.576006][  T166] vhci_hcd: stop threads
[  218.580039][  T166] vhci_hcd: release socket
[  218.582380][  T166] vhci_hcd: disconnect device
[  218.585103][  T166] vhci_hcd: stop threads
[  218.586963][  T166] vhci_hcd: release socket
[  218.588877][  T166] vhci_hcd: disconnect device
[  218.591137][  T166] vhci_hcd: stop threads
[  218.592792][  T166] vhci_hcd: release socket
[  218.594340][  T166] vhci_hcd: disconnect device
[  218.606365][ T1210] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  218.609612][ T1210] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.619855][ T5985] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  218.624535][ T5985] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  218.628309][ T5985] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  218.636082][ T5985] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  218.639682][ T5985] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  218.691857][ T1210] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  218.696403][ T1210] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.779260][T14747] netlink: 'syz.5.3169': attribute type 10 has an invalid length.
[  218.783212][T14741] chnl_net:caif_netlink_parms(): no params data found
[  218.871816][T14741] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.874366][T14741] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.876965][T14741] bridge_slave_0: entered allmulticast mode
[  218.879581][T14741] bridge_slave_0: entered promiscuous mode
[  218.896111][T14741] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.898476][T14741] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.900774][T14741] bridge_slave_1: entered allmulticast mode
[  218.904169][T14741] bridge_slave_1: entered promiscuous mode
[  218.967364][T14741] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  218.978536][T14741] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  219.010533][   T40] audit: type=1400 audit(218.921:617): avc:  denied  { getopt } for  pid=14755 comm="syz.5.3171" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  219.048713][T14741] team0: Port device team_slave_0 added
[  219.054854][T14741] team0: Port device team_slave_1 added
[  219.085871][T14768] FAULT_INJECTION: forcing a failure.
[  219.085871][T14768] name failslab, interval 1, probability 0, space 0, times 0
[  219.089784][T14768] CPU: 3 UID: 0 PID: 14768 Comm: syz.5.3176 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  219.089800][T14768] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  219.089807][T14768] Call Trace:
[  219.089811][T14768]  <TASK>
[  219.089816][T14768]  dump_stack_lvl+0x16c/0x1f0
[  219.089833][T14768]  should_fail_ex+0x512/0x640
[  219.089845][T14768]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  219.089863][T14768]  should_failslab+0xc2/0x120
[  219.089875][T14768]  __kmalloc_cache_noprof+0x6a/0x3e0
[  219.089896][T14768]  ? rtnl_newlink+0x11b/0x2000
[  219.089910][T14768]  ? __pfx_rtnl_newlink+0x10/0x10
[  219.089920][T14768]  rtnl_newlink+0x11b/0x2000
[  219.089935][T14768]  ? __pfx_rtnl_newlink+0x10/0x10
[  219.089945][T14768]  ? find_held_lock+0x2b/0x80
[  219.089959][T14768]  ? avc_has_perm_noaudit+0x117/0x3b0
[  219.089973][T14768]  ? avc_has_perm_noaudit+0x149/0x3b0
[  219.089986][T14768]  ? __lock_acquire+0x62e/0x1ce0
[  219.090009][T14768]  ? find_held_lock+0x2b/0x80
[  219.090021][T14768]  ? __pfx_rtnl_newlink+0x10/0x10
[  219.090032][T14768]  ? __pfx_rtnl_newlink+0x10/0x10
[  219.090042][T14768]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  219.090053][T14768]  ? __pfx_rtnl_newlink+0x10/0x10
[  219.090065][T14768]  rtnetlink_rcv_msg+0x95b/0xe90
[  219.090077][T14768]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  219.090092][T14768]  ? ref_tracker_free+0x37c/0x830
[  219.090106][T14768]  netlink_rcv_skb+0x158/0x420
[  219.090118][T14768]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  219.090131][T14768]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  219.090147][T14768]  ? netlink_deliver_tap+0x1ae/0xd30
[  219.090160][T14768]  netlink_unicast+0x5a7/0x870
[  219.090172][T14768]  ? __pfx_netlink_unicast+0x10/0x10
[  219.090184][T14768]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  219.090199][T14768]  netlink_sendmsg+0x8d1/0xdd0
[  219.090212][T14768]  ? __pfx_netlink_sendmsg+0x10/0x10
[  219.090228][T14768]  ____sys_sendmsg+0xa98/0xc70
[  219.090242][T14768]  ? copy_msghdr_from_user+0x10a/0x160
[  219.090253][T14768]  ? __pfx_____sys_sendmsg+0x10/0x10
[  219.090272][T14768]  ___sys_sendmsg+0x134/0x1d0
[  219.090283][T14768]  ? __pfx____sys_sendmsg+0x10/0x10
[  219.090304][T14768]  ? __mutex_unlock_slowpath+0x100/0x800
[  219.090320][T14768]  __sys_sendmsg+0x16d/0x220
[  219.090330][T14768]  ? __pfx___sys_sendmsg+0x10/0x10
[  219.090349][T14768]  do_syscall_64+0xcd/0x4c0
[  219.090361][T14768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.090372][T14768] RIP: 0033:0x7f9460f8ebe9
[  219.090381][T14768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.090391][T14768] RSP: 002b:00007f9461d73038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  219.090402][T14768] RAX: ffffffffffffffda RBX: 00007f94611b5fa0 RCX: 00007f9460f8ebe9
[  219.090408][T14768] RDX: 0000000000040800 RSI: 00002000000002c0 RDI: 0000000000000003
[  219.090415][T14768] RBP: 00007f9461d73090 R08: 0000000000000000 R09: 0000000000000000
[  219.090421][T14768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.090427][T14768] R13: 00007f94611b6038 R14: 00007f94611b5fa0 R15: 00007ffcae797df8
[  219.090440][T14768]  </TASK>
[  219.099753][   T40] audit: type=1400 audit(219.001:618): avc:  denied  { accept } for  pid=14765 comm="syz.3.3175" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  219.132721][T14772] Device name not specified.
[  219.132721][T14772] 
[  219.200139][T14781] netlink: 'syz.3.3179': attribute type 10 has an invalid length.
[  219.207242][ T1210] bridge_slave_1: left allmulticast mode
[  219.209567][ T1210] bridge_slave_1: left promiscuous mode
[  219.211440][ T1210] bridge0: port 2(bridge_slave_1) entered disabled state
[  219.215784][ T1210] bridge_slave_0: left allmulticast mode
[  219.217564][ T1210] bridge_slave_0: left promiscuous mode
[  219.219399][ T1210] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.466153][ T1210] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  219.470686][ T1210] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  219.476666][ T1210] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  219.479632][ T1210] bond0 (unregistering): Released all slaves
[  219.487091][ T1210] bond1 (unregistering): Released all slaves
[  219.493390][ T1210] bond2 (unregistering): Released all slaves
[  219.513357][T14741] batman_adv: batadv0: Adding interface: batadv_slave_0
[  219.515671][T14741] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  219.523574][T14741] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  219.592753][T14741] batman_adv: batadv0: Adding interface: batadv_slave_1
[  219.595828][T14741] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  219.607140][T14741] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  219.624414][ T1210] tipc: Disabling bearer <udp:syz2>
[  219.626702][ T1210] tipc: Disabling bearer <udp:s>
[  219.628793][ T1210] tipc: Disabling bearer <eth:syzkaller0>
[  219.634269][ T1210] tipc: Left network mode
[  219.658448][T14792] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  219.747041][T14741] hsr_slave_0: entered promiscuous mode
[  219.749492][T14741] hsr_slave_1: entered promiscuous mode
[  219.751560][T14741] debugfs: 'hsr0' already exists in 'hsr'
[  219.753817][T14741] Cannot create hsr debugfs directory
[  219.788370][T14803] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  219.795857][T14803] FAULT_INJECTION: forcing a failure.
[  219.795857][T14803] name failslab, interval 1, probability 0, space 0, times 0
[  219.801772][T14803] CPU: 2 UID: 0 PID: 14803 Comm: syz.5.3185 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  219.801798][T14803] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  219.801809][T14803] Call Trace:
[  219.801815][T14803]  <TASK>
[  219.801822][T14803]  dump_stack_lvl+0x16c/0x1f0
[  219.801842][T14803]  should_fail_ex+0x512/0x640
[  219.801860][T14803]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  219.801896][T14803]  should_failslab+0xc2/0x120
[  219.801917][T14803]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  219.801933][T14803]  ? copy_process+0x4b6/0x7690
[  219.801955][T14803]  ? _raw_spin_unlock_irq+0x23/0x50
[  219.801980][T14803]  copy_process+0x4b6/0x7690
[  219.802011][T14803]  ? __pfx_copy_process+0x10/0x10
[  219.802035][T14803]  ? lockdep_init_map_type+0x5c/0x280
[  219.802059][T14803]  ? lockdep_init_map_type+0x5c/0x280
[  219.802082][T14803]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  219.802103][T14803]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  219.802124][T14803]  vhost_task_create+0x1d2/0x2e0
[  219.802139][T14803]  ? __pfx_vhost_task_create+0x10/0x10
[  219.802161][T14803]  ? __pfx_vhost_task_fn+0x10/0x10
[  219.802196][T14803]  kvm_mmu_post_init_vm+0x1b7/0x380
[  219.802215][T14803]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  219.802236][T14803]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  219.802261][T14803]  kvm_vcpu_ioctl+0x5eb/0x1690
[  219.802284][T14803]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  219.802305][T14803]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  219.802324][T14803]  ? do_vfs_ioctl+0x128/0x14f0
[  219.802346][T14803]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  219.802369][T14803]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  219.802425][T14803]  ? hook_file_ioctl_common+0x145/0x410
[  219.802449][T14803]  ? selinux_file_ioctl+0x180/0x270
[  219.802471][T14803]  ? selinux_file_ioctl+0xb4/0x270
[  219.802496][T14803]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  219.802521][T14803]  __x64_sys_ioctl+0x18b/0x210
[  219.802549][T14803]  do_syscall_64+0xcd/0x4c0
[  219.802570][T14803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.802588][T14803] RIP: 0033:0x7f9460f8ebe9
[  219.802621][T14803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.802637][T14803] RSP: 002b:00007f9461d73038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  219.802654][T14803] RAX: ffffffffffffffda RBX: 00007f94611b5fa0 RCX: 00007f9460f8ebe9
[  219.802665][T14803] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  219.802677][T14803] RBP: 00007f9461d73090 R08: 0000000000000000 R09: 0000000000000000
[  219.802686][T14803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.802696][T14803] R13: 00007f94611b6038 R14: 00007f94611b5fa0 R15: 00007ffcae797df8
[  219.802744][T14803]  </TASK>
[  219.804744][T14794] cdrom: dropping to single frame dma
[  219.851176][T14801] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3182'.
[  220.048087][T14741] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  220.053651][T14741] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  220.064870][T14741] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  220.074751][T14741] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  220.094622][ T1210] hsr_slave_0: left promiscuous mode
[  220.102246][ T1210] hsr_slave_1: left promiscuous mode
[  220.119471][ T1210] veth1_macvtap: left promiscuous mode
[  220.121276][ T1210] veth0_macvtap: left promiscuous mode
[  220.124617][ T1210] veth1_vlan: left promiscuous mode
[  220.126348][ T1210] veth0_vlan: left promiscuous mode
[  220.158625][T14833] netlink: 'syz.5.3191': attribute type 10 has an invalid length.
[  220.713175][ T5975] Bluetooth: hci3: command tx timeout
[  221.333790][T14741] 8021q: adding VLAN 0 to HW filter on device bond0
[  221.345016][T14741] 8021q: adding VLAN 0 to HW filter on device team0
[  221.349939][  T166] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.352175][  T166] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.360419][  T166] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.362831][  T166] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.488847][T14886] netlink: 'syz.5.3203': attribute type 10 has an invalid length.
[  221.499169][T14741] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.663817][T14741] veth0_vlan: entered promiscuous mode
[  221.668939][T14741] veth1_vlan: entered promiscuous mode
[  221.686416][T14741] veth0_macvtap: entered promiscuous mode
[  221.691517][T14741] veth1_macvtap: entered promiscuous mode
[  221.707262][T14741] batman_adv: batadv0: Interface activated: batadv_slave_0
[  221.715480][T14741] batman_adv: batadv0: Interface activated: batadv_slave_1
[  221.724109][  T166] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.724141][  T166] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.724163][  T166] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.724223][  T166] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.769521][  T166] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  221.772324][  T166] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  221.785768][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  221.788249][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  221.849110][T14925] netlink: 'syz.5.3211': attribute type 10 has an invalid length.
[  221.918796][T14937] tmpfs: Too few inodes for current use
[  221.956433][T14950] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3220'.
[  221.959861][T14951] binder: 14949:14951 ioctl c0306201 0 returned -14
[  221.971088][T14950] binder: 14949:14950 ioctl 4018620d 0 returned -22
[  221.981170][T14955] FAULT_INJECTION: forcing a failure.
[  221.981170][T14955] name failslab, interval 1, probability 0, space 0, times 0
[  221.987717][T14955] CPU: 1 UID: 0 PID: 14955 Comm: syz.6.3221 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  221.987732][T14955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.987738][T14955] Call Trace:
[  221.987742][T14955]  <TASK>
[  221.987746][T14955]  dump_stack_lvl+0x16c/0x1f0
[  221.987761][T14955]  should_fail_ex+0x512/0x640
[  221.987776][T14955]  should_failslab+0xc2/0x120
[  221.987788][T14955]  __kmalloc_cache_noprof+0x6a/0x3e0
[  221.987805][T14955]  ? __sctp_v6_cmp_addr+0x206/0x530
[  221.987815][T14955]  ? sctp_add_bind_addr+0xae/0x3f0
[  221.987832][T14955]  sctp_add_bind_addr+0xae/0x3f0
[  221.987848][T14955]  sctp_copy_local_addr_list+0x349/0x550
[  221.987867][T14955]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  221.987892][T14955]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  221.987910][T14955]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  221.987924][T14955]  sctp_bind_addr_copy+0xe0/0x530
[  221.987942][T14955]  sctp_connect_new_asoc+0x1c9/0x770
[  221.987955][T14955]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  221.987973][T14955]  sctp_sendmsg+0x1560/0x1e10
[  221.987989][T14955]  ? __pfx_sctp_sendmsg+0x10/0x10
[  221.988004][T14955]  ? __pfx_sock_has_perm+0x10/0x10
[  221.988024][T14955]  ? __pfx_sctp_sendmsg+0x10/0x10
[  221.988036][T14955]  inet_sendmsg+0x11c/0x140
[  221.988052][T14955]  __sys_sendto+0x43c/0x520
[  221.988069][T14955]  ? __pfx___sys_sendto+0x10/0x10
[  221.988096][T14955]  ? ksys_write+0x1ac/0x250
[  221.988107][T14955]  ? __pfx_ksys_write+0x10/0x10
[  221.988119][T14955]  __x64_sys_sendto+0xe0/0x1c0
[  221.988134][T14955]  ? do_syscall_64+0x91/0x4c0
[  221.988145][T14955]  ? lockdep_hardirqs_on+0x7c/0x110
[  221.988155][T14955]  do_syscall_64+0xcd/0x4c0
[  221.988167][T14955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.988178][T14955] RIP: 0033:0x7f043ed8ebe9
[  221.988187][T14955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.988199][T14955] RSP: 002b:00007f043fca1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  221.988223][T14955] RAX: ffffffffffffffda RBX: 00007f043efb5fa0 RCX: 00007f043ed8ebe9
[  221.988230][T14955] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003
[  221.988236][T14955] RBP: 00007f043fca1090 R08: 0000200000000080 R09: 000000000000001c
[  221.988243][T14955] R10: 0000000004048040 R11: 0000000000000246 R12: 0000000000000002
[  221.988249][T14955] R13: 00007f043efb6038 R14: 00007f043efb5fa0 R15: 00007fffda194e58
[  221.988263][T14955]  </TASK>
[  222.069759][    C1] vkms_vblank_simulate: vblank timer overrun
[  222.190927][T14979] netlink: 'syz.6.3228': attribute type 10 has an invalid length.
[  222.207125][T14979] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  222.351045][T14992] netlink: set zone limit has 4 unknown bytes
[  222.470808][T14999] netlink: '+}[@': attribute type 8 has an invalid length.
[  222.578010][T15009] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3237'.
[  222.597355][T15011] program syz.6.3239 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  222.607766][T15014] netlink: 'syz.5.3240': attribute type 10 has an invalid length.
[  222.697999][T15017] netlink: 'syz.6.3241': attribute type 10 has an invalid length.
[  222.701522][T15017] FAULT_INJECTION: forcing a failure.
[  222.701522][T15017] name failslab, interval 1, probability 0, space 0, times 0
[  222.706316][T15017] CPU: 3 UID: 0 PID: 15017 Comm: syz.6.3241 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  222.706331][T15017] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  222.706338][T15017] Call Trace:
[  222.706343][T15017]  <TASK>
[  222.706348][T15017]  dump_stack_lvl+0x16c/0x1f0
[  222.706371][T15017]  should_fail_ex+0x512/0x640
[  222.706383][T15017]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  222.706402][T15017]  should_failslab+0xc2/0x120
[  222.706414][T15017]  __kmalloc_cache_noprof+0x6a/0x3e0
[  222.706430][T15017]  ? nf_nat_masq_schedule.part.0+0x285/0x5f0
[  222.706454][T15017]  nf_nat_masq_schedule.part.0+0x285/0x5f0
[  222.706471][T15017]  ? __pfx_device_cmp+0x10/0x10
[  222.706487][T15017]  ? __pfx_nf_nat_masq_schedule.part.0+0x10/0x10
[  222.706504][T15017]  ? nfqnl_rcv_dev_event+0x35/0x5e0
[  222.706520][T15017]  ? __pfx_failover_event+0x10/0x10
[  222.706535][T15017]  ? __pfx_virt_wifi_event+0x10/0x10
[  222.706555][T15017]  masq_device_event+0xf7/0x120
[  222.706571][T15017]  notifier_call_chain+0xbc/0x410
[  222.706588][T15017]  ? __pfx_masq_device_event+0x10/0x10
[  222.706609][T15017]  call_netdevice_notifiers_info+0xbe/0x140
[  222.706624][T15017]  __dev_notify_flags+0x1f7/0x2e0
[  222.706642][T15017]  ? __pfx___dev_notify_flags+0x10/0x10
[  222.706661][T15017]  ? __pfx___dev_change_flags+0x10/0x10
[  222.706676][T15017]  netif_change_flags+0x108/0x160
[  222.706707][T15017]  do_setlink.constprop.0+0xb53/0x4380
[  222.706721][T15017]  ? __pfx_console_unlock+0x10/0x10
[  222.706736][T15017]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  222.706751][T15017]  ? __lock_acquire+0xb97/0x1ce0
[  222.706772][T15017]  ? __mutex_trylock_common+0xe9/0x250
[  222.706790][T15017]  ? __pfx___mutex_trylock_common+0x10/0x10
[  222.706808][T15017]  ? __pfx___might_resched+0x10/0x10
[  222.706822][T15017]  ? rcu_is_watching+0x12/0xc0
[  222.706835][T15017]  ? trace_contention_end+0xdd/0x130
[  222.706856][T15017]  ? __mutex_lock+0x1c4/0x10b0
[  222.706871][T15017]  ? __pfx___mutex_lock+0x10/0x10
[  222.706882][T15017]  ? cap_capable+0xb3/0x250
[  222.706902][T15017]  rtnl_newlink+0x1446/0x2000
[  222.706917][T15017]  ? __pfx_rtnl_newlink+0x10/0x10
[  222.706928][T15017]  ? find_held_lock+0x2b/0x80
[  222.706941][T15017]  ? avc_has_perm_noaudit+0x117/0x3b0
[  222.706953][T15017]  ? avc_has_perm_noaudit+0x149/0x3b0
[  222.706967][T15017]  ? __lock_acquire+0x62e/0x1ce0
[  222.706990][T15017]  ? find_held_lock+0x2b/0x80
[  222.707002][T15017]  ? __pfx_rtnl_newlink+0x10/0x10
[  222.707012][T15017]  ? __pfx_rtnl_newlink+0x10/0x10
[  222.707022][T15017]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  222.707033][T15017]  ? __pfx_rtnl_newlink+0x10/0x10
[  222.707044][T15017]  rtnetlink_rcv_msg+0x95b/0xe90
[  222.707057][T15017]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  222.707071][T15017]  ? ref_tracker_free+0x37c/0x830
[  222.707085][T15017]  netlink_rcv_skb+0x158/0x420
[  222.707097][T15017]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  222.707109][T15017]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  222.707125][T15017]  ? netlink_deliver_tap+0x1ae/0xd30
[  222.707138][T15017]  netlink_unicast+0x5a7/0x870
[  222.707151][T15017]  ? __pfx_netlink_unicast+0x10/0x10
[  222.707162][T15017]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  222.707178][T15017]  netlink_sendmsg+0x8d1/0xdd0
[  222.707191][T15017]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.707208][T15017]  ____sys_sendmsg+0xa98/0xc70
[  222.707222][T15017]  ? copy_msghdr_from_user+0x10a/0x160
[  222.707233][T15017]  ? __pfx_____sys_sendmsg+0x10/0x10
[  222.707252][T15017]  ___sys_sendmsg+0x134/0x1d0
[  222.707263][T15017]  ? __pfx____sys_sendmsg+0x10/0x10
[  222.707285][T15017]  ? __mutex_unlock_slowpath+0x100/0x800
[  222.707300][T15017]  __sys_sendmsg+0x16d/0x220
[  222.707311][T15017]  ? __pfx___sys_sendmsg+0x10/0x10
[  222.707341][T15017]  do_syscall_64+0xcd/0x4c0
[  222.707356][T15017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.707367][T15017] RIP: 0033:0x7f043ed8ebe9
[  222.707376][T15017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.707387][T15017] RSP: 002b:00007f043fca1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  222.707398][T15017] RAX: ffffffffffffffda RBX: 00007f043efb5fa0 RCX: 00007f043ed8ebe9
[  222.707404][T15017] RDX: 0000000020040040 RSI: 0000200000000600 RDI: 0000000000000003
[  222.707411][T15017] RBP: 00007f043fca1090 R08: 0000000000000000 R09: 0000000000000000
[  222.707417][T15017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  222.707423][T15017] R13: 00007f043efb6038 R14: 00007f043efb5fa0 R15: 00007fffda194e58
[  222.707437][T15017]  </TASK>
[  222.708628][T15017] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  222.803351][ T5975] Bluetooth: hci3: command tx timeout
[  222.877871][T15017] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  222.885074][T15017] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  222.945015][T15033] netlink: 'syz.2.3249': attribute type 10 has an invalid length.
[  222.952194][T15033] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  222.956244][T15033] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  222.959986][T15033] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  223.100716][T15049] netlink: 'syz.2.3256': attribute type 10 has an invalid length.
[  223.232687][T15062] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  223.236717][T15062] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  223.241432][T15062] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  223.355079][T15066] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3262'.
[  223.452709][T15080] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3266'.
[  223.467325][T15080] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3266'.
[  223.581181][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  223.705031][T15107] FAULT_INJECTION: forcing a failure.
[  223.705031][T15107] name failslab, interval 1, probability 0, space 0, times 0
[  223.708950][T15107] CPU: 0 UID: 0 PID: 15107 Comm: syz.3.3275 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  223.708965][T15107] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.708972][T15107] Call Trace:
[  223.708976][T15107]  <TASK>
[  223.708980][T15107]  dump_stack_lvl+0x16c/0x1f0
[  223.708995][T15107]  should_fail_ex+0x512/0x640
[  223.709007][T15107]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  223.709020][T15107]  should_failslab+0xc2/0x120
[  223.709033][T15107]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  223.709044][T15107]  ? __alloc_skb+0x2b2/0x380
[  223.709063][T15107]  __alloc_skb+0x2b2/0x380
[  223.709079][T15107]  ? __pfx___alloc_skb+0x10/0x10
[  223.709094][T15107]  ? find_held_lock+0x2b/0x80
[  223.709110][T15107]  ? __lock_acquire+0x62e/0x1ce0
[  223.709127][T15107]  sctp_packet_transmit+0x1ca/0x3040
[  223.709147][T15107]  ? find_held_lock+0x2b/0x80
[  223.709160][T15107]  ? sctp_outq_flush+0xb4e/0x3350
[  223.709174][T15107]  sctp_outq_flush+0xb68/0x3350
[  223.709188][T15107]  ? __pfx_sctp_make_heartbeat+0x10/0x10
[  223.709207][T15107]  ? is_bpf_text_address+0x94/0x1a0
[  223.709220][T15107]  ? __pfx_sctp_outq_flush+0x10/0x10
[  223.709234][T15107]  ? __pfx_sctp_sm_lookup_event+0x10/0x10
[  223.709250][T15107]  ? sctp_outq_tail+0x671/0xa30
[  223.709262][T15107]  ? sctp_do_8_2_transport_strike.constprop.0+0x267/0xb60
[  223.709279][T15107]  sctp_do_sm+0x1792/0x5c80
[  223.709296][T15107]  ? __pfx_sctp_do_sm+0x10/0x10
[  223.709309][T15107]  ? kasan_save_stack+0x33/0x60
[  223.709320][T15107]  ? __kmalloc_node_track_caller_noprof+0x221/0x510
[  223.709331][T15107]  ? sctp_setsockopt+0x4ce/0xb870
[  223.709361][T15107]  sctp_primitive_REQUESTHEARTBEAT+0x9f/0xd0
[  223.709377][T15107]  sctp_apply_peer_addr_params+0x113/0x3400
[  223.709396][T15107]  ? sctp_id2assoc+0x1b8/0x250
[  223.709407][T15107]  sctp_setsockopt+0x143b/0xb870
[  223.709420][T15107]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  223.709438][T15107]  ? __pfx_sctp_setsockopt+0x10/0x10
[  223.709450][T15107]  ? find_held_lock+0x2b/0x80
[  223.709465][T15107]  ? selinux_socket_setsockopt+0x6a/0x80
[  223.709478][T15107]  ? sock_common_setsockopt+0x2e/0xf0
[  223.709490][T15107]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  223.709504][T15107]  do_sock_setsockopt+0xf3/0x1d0
[  223.709519][T15107]  __sys_setsockopt+0x1a0/0x230
[  223.709538][T15107]  __x64_sys_setsockopt+0xbd/0x160
[  223.709554][T15107]  ? do_syscall_64+0x91/0x4c0
[  223.709565][T15107]  ? lockdep_hardirqs_on+0x7c/0x110
[  223.709574][T15107]  do_syscall_64+0xcd/0x4c0
[  223.709586][T15107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.709597][T15107] RIP: 0033:0x7f4767b8ebe9
[  223.709606][T15107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.709617][T15107] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  223.709627][T15107] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  223.709634][T15107] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[  223.709640][T15107] RBP: 00007f4768946090 R08: 000000000000009c R09: 0000000000000000
[  223.709647][T15107] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000002
[  223.709653][T15107] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  223.709666][T15107]  </TASK>
[  223.847555][T15112] netlink: 14 bytes leftover after parsing attributes in process `syz.6.3277'.
[  223.852059][T15112] macvlan0: entered promiscuous mode
[  223.855100][T15115] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3278'.
[  223.858999][T15112] macvlan0: entered allmulticast mode
[  223.958548][T15128] Dead loop on virtual device ip6_vti0, fix it urgently!
[  224.020365][   T40] audit: type=1804 audit(223.931:619): pid=15133 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.6.3285" name="/newroot/25/file0" dev="tmpfs" ino=146 res=1 errno=0
[  224.027122][   T40] audit: type=1800 audit(223.931:620): pid=15133 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.6.3285" name="file0" dev="tmpfs" ino=146 res=0 errno=0
[  224.050002][T15137] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3286'.
[  224.124901][T15137] team0 (unregistering): Port device team_slave_0 removed
[  224.129165][T15137] team0 (unregistering): Port device team_slave_1 removed
[  224.248314][   T40] audit: type=1400 audit(224.161:621): avc:  denied  { create } for  pid=15149 comm="syz.2.3290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  224.249104][   T40] audit: type=1400 audit(224.161:622): avc:  denied  { setopt } for  pid=15149 comm="syz.2.3290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  224.422731][T15166] validate_nla: 3 callbacks suppressed
[  224.422742][T15166] netlink: 'syz.3.3295': attribute type 10 has an invalid length.
[  224.873321][ T5975] Bluetooth: hci3: command tx timeout
[  224.944736][ T5975] Bluetooth: hci4: unexpected event for opcode 0x0419
[  224.945723][T15179] SELinux:  Context Ü is not valid (left unmapped).
[  225.083165][   T40] audit: type=1400 audit(225.001:623): avc:  denied  { read } for  pid=15185 comm="syz.3.3303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  225.108751][T15192] netlink: 'syz.2.3304': attribute type 10 has an invalid length.
[  225.178390][T15202] netlink: 277 bytes leftover after parsing attributes in process `syz.3.3308'.
[  225.180153][T15204] FAULT_INJECTION: forcing a failure.
[  225.180153][T15204] name failslab, interval 1, probability 0, space 0, times 0
[  225.183175][T15202] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3308'.
[  225.191791][T15204] CPU: 0 UID: 0 PID: 15204 Comm: syz.5.3309 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  225.191806][T15204] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.191813][T15204] Call Trace:
[  225.191818][T15204]  <TASK>
[  225.191822][T15204]  dump_stack_lvl+0x16c/0x1f0
[  225.191839][T15204]  should_fail_ex+0x512/0x640
[  225.191851][T15204]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  225.191876][T15204]  should_failslab+0xc2/0x120
[  225.191889][T15204]  __kmalloc_cache_noprof+0x6a/0x3e0
[  225.191905][T15204]  ? netdevice_event+0x365/0x9d0
[  225.191919][T15204]  netdevice_event+0x365/0x9d0
[  225.191931][T15204]  ? __pfx_netdevice_event+0x10/0x10
[  225.191941][T15204]  ? __pfx_del_netdev_ips+0x10/0x10
[  225.191951][T15204]  ? __pfx_is_eth_port_of_netdev_filter+0x10/0x10
[  225.191963][T15204]  ? __pfx_add_default_gids+0x10/0x10
[  225.191973][T15204]  ? __pfx_is_ndev_for_default_gid_filter+0x10/0x10
[  225.191986][T15204]  ? __pfx_add_netdev_ips+0x10/0x10
[  225.191997][T15204]  ? __pfx_is_eth_port_of_netdev_filter+0x10/0x10
[  225.192010][T15204]  ? wext_netdev_notifier_call+0xe/0x20
[  225.192026][T15204]  ? cfg802154_netdev_notifier_call+0x391/0xa00
[  225.192038][T15204]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  225.192052][T15204]  notifier_call_chain+0xbc/0x410
[  225.192068][T15204]  ? __pfx_netdevice_event+0x10/0x10
[  225.192082][T15204]  call_netdevice_notifiers_info+0xbe/0x140
[  225.192098][T15204]  netif_set_mac_address+0x36f/0x4a0
[  225.192112][T15204]  ? __pfx_netif_set_mac_address+0x10/0x10
[  225.192129][T15204]  ? __pfx_down_write+0x10/0x10
[  225.192141][T15204]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  225.192159][T15204]  do_setlink.constprop.0+0x75f/0x4380
[  225.192176][T15204]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  225.192190][T15204]  ? __lock_acquire+0xb97/0x1ce0
[  225.192212][T15204]  ? __mutex_trylock_common+0xe9/0x250
[  225.192229][T15204]  ? __pfx___mutex_trylock_common+0x10/0x10
[  225.192247][T15204]  ? __pfx___might_resched+0x10/0x10
[  225.192261][T15204]  ? rcu_is_watching+0x12/0xc0
[  225.192275][T15204]  ? trace_contention_end+0xdd/0x130
[  225.192292][T15204]  ? __mutex_lock+0x1c4/0x10b0
[  225.192316][T15204]  rtnl_newlink+0x1446/0x2000
[  225.192332][T15204]  ? __pfx_rtnl_newlink+0x10/0x10
[  225.192342][T15204]  ? find_held_lock+0x2b/0x80
[  225.192355][T15204]  ? avc_has_perm_noaudit+0x117/0x3b0
[  225.192368][T15204]  ? avc_has_perm_noaudit+0x149/0x3b0
[  225.192382][T15204]  ? __lock_acquire+0x62e/0x1ce0
[  225.192405][T15204]  ? find_held_lock+0x2b/0x80
[  225.192417][T15204]  ? __pfx_rtnl_newlink+0x10/0x10
[  225.192427][T15204]  ? __pfx_rtnl_newlink+0x10/0x10
[  225.192437][T15204]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  225.192449][T15204]  ? __pfx_rtnl_newlink+0x10/0x10
[  225.192460][T15204]  rtnetlink_rcv_msg+0x95b/0xe90
[  225.192473][T15204]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  225.192488][T15204]  ? ref_tracker_free+0x37c/0x830
[  225.192502][T15204]  netlink_rcv_skb+0x158/0x420
[  225.192514][T15204]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  225.192526][T15204]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  225.192543][T15204]  ? netlink_deliver_tap+0x1ae/0xd30
[  225.192556][T15204]  netlink_unicast+0x5a7/0x870
[  225.192569][T15204]  ? __pfx_netlink_unicast+0x10/0x10
[  225.192580][T15204]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  225.192607][T15204]  netlink_sendmsg+0x8d1/0xdd0
[  225.192623][T15204]  ? __pfx_netlink_sendmsg+0x10/0x10
[  225.192640][T15204]  ____sys_sendmsg+0xa98/0xc70
[  225.192654][T15204]  ? copy_msghdr_from_user+0x10a/0x160
[  225.192664][T15204]  ? __pfx_____sys_sendmsg+0x10/0x10
[  225.192684][T15204]  ___sys_sendmsg+0x134/0x1d0
[  225.192695][T15204]  ? __pfx____sys_sendmsg+0x10/0x10
[  225.192717][T15204]  ? __mutex_unlock_slowpath+0x100/0x800
[  225.192733][T15204]  __sys_sendmsg+0x16d/0x220
[  225.192743][T15204]  ? __pfx___sys_sendmsg+0x10/0x10
[  225.192759][T15204]  ? fput+0x9b/0xd0
[  225.192775][T15204]  do_syscall_64+0xcd/0x4c0
[  225.192788][T15204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.192799][T15204] RIP: 0033:0x7f9460f8ebe9
[  225.192809][T15204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.192820][T15204] RSP: 002b:00007f9461d73038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  225.192830][T15204] RAX: ffffffffffffffda RBX: 00007f94611b5fa0 RCX: 00007f9460f8ebe9
[  225.192837][T15204] RDX: 0000000004000000 RSI: 0000200000000040 RDI: 0000000000000006
[  225.192844][T15204] RBP: 00007f9461d73090 R08: 0000000000000000 R09: 0000000000000000
[  225.192850][T15204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  225.192860][T15204] R13: 00007f94611b6038 R14: 00007f94611b5fa0 R15: 00007ffcae797df8
[  225.192874][T15204]  </TASK>
[  225.361361][T15208] FAULT_INJECTION: forcing a failure.
[  225.361361][T15208] name failslab, interval 1, probability 0, space 0, times 0
[  225.365791][T15208] CPU: 2 UID: 0 PID: 15208 Comm: syz.3.3311 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  225.365807][T15208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.365813][T15208] Call Trace:
[  225.365817][T15208]  <TASK>
[  225.365822][T15208]  dump_stack_lvl+0x16c/0x1f0
[  225.365837][T15208]  should_fail_ex+0x512/0x640
[  225.365850][T15208]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  225.365864][T15208]  should_failslab+0xc2/0x120
[  225.365877][T15208]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  225.365894][T15208]  ? kstrdup_const+0x63/0x80
[  225.365907][T15208]  kstrdup+0x53/0x100
[  225.365919][T15208]  kstrdup_const+0x63/0x80
[  225.365930][T15208]  kvasprintf_const+0x10f/0x1a0
[  225.365946][T15208]  kobject_set_name_vargs+0x5a/0x140
[  225.365959][T15208]  dev_set_name+0xc7/0x100
[  225.365974][T15208]  ? __pfx_dev_set_name+0x10/0x10
[  225.365995][T15208]  tty_register_device_attr+0x300/0x7c0
[  225.366014][T15208]  ? __pfx_tty_register_device_attr+0x10/0x10
[  225.366038][T15208]  rfcomm_dev_ioctl+0x16a0/0x1c90
[  225.366053][T15208]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  225.366067][T15208]  ? tomoyo_path_number_perm+0x18d/0x580
[  225.366084][T15208]  rfcomm_sock_ioctl+0xaa/0xd0
[  225.366101][T15208]  sock_do_ioctl+0x118/0x280
[  225.366115][T15208]  ? __pfx_sock_do_ioctl+0x10/0x10
[  225.366131][T15208]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  225.366148][T15208]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  225.366167][T15208]  sock_ioctl+0x227/0x6b0
[  225.366181][T15208]  ? __pfx_sock_ioctl+0x10/0x10
[  225.366194][T15208]  ? hook_file_ioctl_common+0x145/0x410
[  225.366208][T15208]  ? selinux_file_ioctl+0x180/0x270
[  225.366222][T15208]  ? selinux_file_ioctl+0xb4/0x270
[  225.366237][T15208]  ? __pfx_sock_ioctl+0x10/0x10
[  225.366251][T15208]  __x64_sys_ioctl+0x18b/0x210
[  225.366268][T15208]  do_syscall_64+0xcd/0x4c0
[  225.366280][T15208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.366291][T15208] RIP: 0033:0x7f4767b8ebe9
[  225.366300][T15208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.366310][T15208] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  225.366321][T15208] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  225.366328][T15208] RDX: 0000200000000100 RSI: 00000000400452c8 RDI: 0000000000000004
[  225.366334][T15208] RBP: 00007f4768946090 R08: 0000000000000000 R09: 0000000000000000
[  225.366340][T15208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.366347][T15208] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  225.366360][T15208]  </TASK>
[  225.396922][T15216] FAULT_INJECTION: forcing a failure.
[  225.396922][T15216] name failslab, interval 1, probability 0, space 0, times 0
[  225.425234][T15220] futex_wake_op: syz.3.3316 tries to shift op by -1; fix this program
[  225.426815][T15216] CPU: 0 UID: 0 PID: 15216 Comm: syz.5.3315 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  225.426830][T15216] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.426837][T15216] Call Trace:
[  225.426841][T15216]  <TASK>
[  225.426846][T15216]  dump_stack_lvl+0x16c/0x1f0
[  225.426862][T15216]  should_fail_ex+0x512/0x640
[  225.426874][T15216]  ? __kmalloc_noprof+0xbf/0x510
[  225.426886][T15216]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  225.426901][T15216]  should_failslab+0xc2/0x120
[  225.426914][T15216]  __kmalloc_noprof+0xd2/0x510
[  225.426932][T15216]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  225.426949][T15216]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  225.426963][T15216]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  225.426981][T15216]  ? bpf_lsm_capable+0x9/0x10
[  225.426996][T15216]  ? security_capable+0x7e/0x260
[  225.427010][T15216]  ? ns_capable+0xd7/0x110
[  225.427024][T15216]  genl_rcv_msg+0x55c/0x800
[  225.427038][T15216]  ? __pfx_genl_rcv_msg+0x10/0x10
[  225.427051][T15216]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  225.427067][T15216]  ? __pfx_nl80211_new_key+0x10/0x10
[  225.427079][T15216]  ? __pfx_nl80211_post_doit+0x10/0x10
[  225.427096][T15216]  netlink_rcv_skb+0x158/0x420
[  225.427107][T15216]  ? __pfx_genl_rcv_msg+0x10/0x10
[  225.427121][T15216]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  225.427138][T15216]  ? netlink_deliver_tap+0x1ae/0xd30
[  225.427150][T15216]  genl_rcv+0x28/0x40
[  225.427161][T15216]  netlink_unicast+0x5a7/0x870
[  225.427177][T15216]  ? __pfx_netlink_unicast+0x10/0x10
[  225.427188][T15216]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  225.427203][T15216]  netlink_sendmsg+0x8d1/0xdd0
[  225.427216][T15216]  ? __pfx_netlink_sendmsg+0x10/0x10
[  225.427233][T15216]  ____sys_sendmsg+0xa98/0xc70
[  225.427247][T15216]  ? copy_msghdr_from_user+0x10a/0x160
[  225.427257][T15216]  ? __pfx_____sys_sendmsg+0x10/0x10
[  225.427277][T15216]  ___sys_sendmsg+0x134/0x1d0
[  225.427288][T15216]  ? __pfx____sys_sendmsg+0x10/0x10
[  225.427310][T15216]  ? __mutex_unlock_slowpath+0x100/0x800
[  225.427325][T15216]  __sys_sendmsg+0x16d/0x220
[  225.427336][T15216]  ? __pfx___sys_sendmsg+0x10/0x10
[  225.427355][T15216]  do_syscall_64+0xcd/0x4c0
[  225.427367][T15216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.427379][T15216] RIP: 0033:0x7f9460f8ebe9
[  225.427388][T15216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.427399][T15216] RSP: 002b:00007f9461d73038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  225.427409][T15216] RAX: ffffffffffffffda RBX: 00007f94611b5fa0 RCX: 00007f9460f8ebe9
[  225.427417][T15216] RDX: 0000000000000000 RSI: 00002000000006c0 RDI: 0000000000000003
[  225.427425][T15216] RBP: 00007f9461d73090 R08: 0000000000000000 R09: 0000000000000000
[  225.427431][T15216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.427439][T15216] R13: 00007f94611b6038 R14: 00007f94611b5fa0 R15: 00007ffcae797df8
[  225.427453][T15216]  </TASK>
[  225.453745][T15223] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3318'.
[  225.488863][T15225] netlink: 'syz.3.3319': attribute type 4 has an invalid length.
[  225.497187][   T40] audit: type=1400 audit(225.411:624): avc:  denied  { setcurrent } for  pid=15226 comm="syz.2.3320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  225.538758][T15229] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3321'.
[  225.540121][   T40] audit: type=1401 audit(225.411:625): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[  225.581485][T15232] netlink: 'syz.3.3322': attribute type 10 has an invalid length.
[  225.632913][T15238] overlayfs: conflicting lowerdir path
[  225.717797][T15246] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  225.720012][T15246] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  225.722555][T15248] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(7)
[  225.724870][T15248] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  225.728430][T15246] vhci_hcd vhci_hcd.0: Device attached
[  225.729108][T15248] vhci_hcd vhci_hcd.0: Device attached
[  225.742010][T15250] vhci_hcd: connection closed
[  225.742242][   T60] vhci_hcd: stop threads
[  225.742292][T15247] vhci_hcd: connection closed
[  225.744050][   T60] vhci_hcd: release socket
[  225.744069][   T60] vhci_hcd: disconnect device
[  225.751632][  T166] vhci_hcd: stop threads
[  225.753187][  T166] vhci_hcd: release socket
[  225.753478][T15256] FAULT_INJECTION: forcing a failure.
[  225.753478][T15256] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.754585][  T166] vhci_hcd: disconnect device
[  225.760250][T15256] CPU: 0 UID: 0 PID: 15256 Comm: syz.3.3328 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  225.760265][T15256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.760271][T15256] Call Trace:
[  225.760275][T15256]  <TASK>
[  225.760279][T15256]  dump_stack_lvl+0x16c/0x1f0
[  225.760294][T15256]  should_fail_ex+0x512/0x640
[  225.760309][T15256]  _copy_from_user+0x2e/0xd0
[  225.760323][T15256]  memdup_user+0x6b/0xe0
[  225.760335][T15256]  strndup_user+0x78/0xe0
[  225.760347][T15256]  __x64_sys_mount+0x137/0x310
[  225.760362][T15256]  ? __pfx___x64_sys_mount+0x10/0x10
[  225.760379][T15256]  do_syscall_64+0xcd/0x4c0
[  225.760391][T15256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.760403][T15256] RIP: 0033:0x7f4767b8ebe9
[  225.760412][T15256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.760423][T15256] RSP: 002b:00007f4768946038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  225.760433][T15256] RAX: ffffffffffffffda RBX: 00007f4767db5fa0 RCX: 00007f4767b8ebe9
[  225.760440][T15256] RDX: 0000200000000080 RSI: 00002000000000c0 RDI: 0000000000000000
[  225.760446][T15256] RBP: 00007f4768946090 R08: 0000200000000240 R09: 0000000000000000
[  225.760453][T15256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.760460][T15256] R13: 00007f4767db6038 R14: 00007f4767db5fa0 R15: 00007ffd04940cc8
[  225.760473][T15256]  </TASK>
[  225.825021][T15259] ==================================================================
[  225.825031][T15259] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0
[  225.825052][T15259] Write of size 8 at addr ffffc90005261000 by task syz.5.3329/15259
[  225.825062][T15259] 
[  225.825068][T15259] CPU: 1 UID: 0 PID: 15259 Comm: syz.5.3329 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  225.825082][T15259] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.825090][T15259] Call Trace:
[  225.825095][T15259]  <TASK>
[  225.825100][T15259]  dump_stack_lvl+0x116/0x1f0
[  225.825112][T15259]  print_report+0xcd/0x630
[  225.825126][T15259]  ? __virt_addr_valid+0x81/0x610
[  225.825142][T15259]  ? sys_fillrect+0x15d4/0x17b0
[  225.825168][T15259]  kasan_report+0xe0/0x110
[  225.825183][T15259]  ? sys_fillrect+0x15d4/0x17b0
[  225.825200][T15259]  sys_fillrect+0x15d4/0x17b0
[  225.825216][T15259]  ? __pfx_sys_fillrect+0x10/0x10
[  225.825234][T15259]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  225.825246][T15259]  ? fb_copy_cmap+0x2ad/0x360
[  225.825257][T15259]  bit_clear_margins+0x2f7/0x4c0
[  225.825268][T15259]  ? __pfx_bit_clear_margins+0x10/0x10
[  225.825280][T15259]  ? fb_get_color_depth+0x120/0x250
[  225.825291][T15259]  fbcon_clear_margins.constprop.0+0x1d4/0x290
[  225.825309][T15259]  fbcon_switch+0xa01/0x14c0
[  225.825320][T15259]  ? __pfx_fbcon_switch+0x10/0x10
[  225.825333][T15259]  ? __pfx_bit_cursor+0x10/0x10
[  225.825343][T15259]  ? fbcon_cursor+0x40c/0x5f0
[  225.825353][T15259]  csi_J+0x866/0xad0
[  225.825370][T15259]  do_con_write+0x41d7/0x8280
[  225.825382][T15259]  ? rcu_is_watching+0x12/0xc0
[  225.825395][T15259]  ? trace_contention_end+0xdd/0x130
[  225.825413][T15259]  ? n_tty_write+0x53e/0x11e0
[  225.825428][T15259]  ? __pfx___mutex_lock+0x10/0x10
[  225.825439][T15259]  ? __pfx_do_con_write+0x10/0x10
[  225.825450][T15259]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  225.825463][T15259]  ? con_write+0x93/0xb0
[  225.825474][T15259]  con_write+0x23/0xb0
[  225.825485][T15259]  n_tty_write+0x41f/0x11e0
[  225.825500][T15259]  ? __pfx_n_tty_write+0x10/0x10
[  225.825513][T15259]  ? rcu_is_watching+0x12/0xc0
[  225.825526][T15259]  ? __pfx_woken_wake_function+0x10/0x10
[  225.825539][T15259]  ? kfree+0x24f/0x4d0
[  225.825553][T15259]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  225.825565][T15259]  ? __pfx_n_tty_write+0x10/0x10
[  225.825578][T15259]  file_tty_write.constprop.0+0x501/0x9b0
[  225.825591][T15259]  vfs_write+0x7d3/0x11d0
[  225.825602][T15259]  ? __pfx_tty_write+0x10/0x10
[  225.825612][T15259]  ? __pfx_vfs_write+0x10/0x10
[  225.825622][T15259]  ? find_held_lock+0x2b/0x80
[  225.825638][T15259]  ksys_write+0x12a/0x250
[  225.825648][T15259]  ? __pfx_ksys_write+0x10/0x10
[  225.825660][T15259]  do_syscall_64+0xcd/0x4c0
[  225.825672][T15259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.825684][T15259] RIP: 0033:0x7f9460f8ebe9
[  225.825693][T15259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.825704][T15259] RSP: 002b:00007f9461d52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  225.825715][T15259] RAX: ffffffffffffffda RBX: 00007f94611b6090 RCX: 00007f9460f8ebe9
[  225.825722][T15259] RDX: 0000000000001006 RSI: 0000200000002080 RDI: 0000000000000007
[  225.825729][T15259] RBP: 00007f9461011e19 R08: 0000000000000000 R09: 0000000000000000
[  225.825735][T15259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  225.825741][T15259] R13: 00007f94611b6128 R14: 00007f94611b6090 R15: 00007ffcae797df8
[  225.825751][T15259]  </TASK>
[  225.825755][T15259] 
[  225.825758][T15259] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc90004f61000 allocated at drm_gem_shmem_vmap_locked+0x561/0x7e0
[  225.825784][T15259] Memory state around the buggy address:
[  225.825791][T15259]  ffffc90005260f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  225.825798][T15259]  ffffc90005260f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  225.825807][T15259] >ffffc90005261000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  225.825814][T15259]                    ^
[  225.825820][T15259]  ffffc90005261080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  225.825840][T15259]  ffffc90005261100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  225.825849][T15259] ==================================================================
[  225.826292][T15261] FAULT_INJECTION: forcing a failure.
[  225.826292][T15261] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.826308][T15261] CPU: 1 UID: 0 PID: 15261 Comm: syz.6.3330 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  225.826321][T15261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.826327][T15261] Call Trace:
[  225.826331][T15261]  <TASK>
[  225.826335][T15261]  dump_stack_lvl+0x16c/0x1f0
[  225.826347][T15261]  should_fail_ex+0x512/0x640
[  225.826360][T15261]  _copy_from_user+0x2e/0xd0
[  225.826374][T15261]  move_addr_to_kernel+0x65/0x170
[  225.826390][T15261]  __sys_connect+0xb1/0x160
[  225.826406][T15261]  ? __pfx___sys_connect+0x10/0x10
[  225.826426][T15261]  ? __pfx_ksys_write+0x10/0x10
[  225.826439][T15261]  __x64_sys_connect+0x72/0xb0
[  225.826454][T15261]  ? lockdep_hardirqs_on+0x7c/0x110
[  225.826464][T15261]  do_syscall_64+0xcd/0x4c0
[  225.826476][T15261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.826487][T15261] RIP: 0033:0x7f043ed8ebe9
[  225.826495][T15261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.826506][T15261] RSP: 002b:00007f043fca1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  225.826516][T15261] RAX: ffffffffffffffda RBX: 00007f043efb5fa0 RCX: 00007f043ed8ebe9
[  225.826522][T15261] RDX: 0000000000000014 RSI: 0000200000000240 RDI: 0000000000000004
[  225.826529][T15261] RBP: 00007f043fca1090 R08: 0000000000000000 R09: 0000000000000000
[  225.826537][T15261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.826543][T15261] R13: 00007f043efb6038 R14: 00007f043efb5fa0 R15: 00007fffda194e58
[  225.826556][T15261]  </TASK>
[  225.830147][T15259] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  225.830159][T15259] CPU: 0 UID: 0 PID: 15259 Comm: syz.5.3329 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(full) 
[  225.830174][T15259] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.830182][T15259] Call Trace:
[  225.830187][T15259]  <TASK>
[  225.830192][T15259]  dump_stack_lvl+0x3d/0x1f0
[  225.830206][T15259]  vpanic+0x6e8/0x7a0
[  225.830223][T15259]  ? __pfx_vpanic+0x10/0x10
[  225.830243][T15259]  ? sys_fillrect+0x15d4/0x17b0
[  225.830257][T15259]  panic+0xca/0xd0
[  225.830273][T15259]  ? __pfx_panic+0x10/0x10
[  225.830289][T15259]  ? sys_fillrect+0x15d4/0x17b0
[  225.830303][T15259]  ? preempt_schedule_common+0x44/0xc0
[  225.830321][T15259]  ? preempt_schedule_thunk+0x16/0x30
[  225.830337][T15259]  check_panic_on_warn+0xab/0xb0
[  225.830354][T15259]  end_report+0x107/0x170
[  225.830366][T15259]  kasan_report+0xee/0x110
[  225.830378][T15259]  ? sys_fillrect+0x15d4/0x17b0
[  225.830393][T15259]  sys_fillrect+0x15d4/0x17b0
[  225.830408][T15259]  ? __pfx_sys_fillrect+0x10/0x10
[  225.830425][T15259]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  225.830437][T15259]  ? fb_copy_cmap+0x2ad/0x360
[  225.830447][T15259]  bit_clear_margins+0x2f7/0x4c0
[  225.830459][T15259]  ? __pfx_bit_clear_margins+0x10/0x10
[  225.830471][T15259]  ? fb_get_color_depth+0x120/0x250
[  225.830482][T15259]  fbcon_clear_margins.constprop.0+0x1d4/0x290
[  225.830499][T15259]  fbcon_switch+0xa01/0x14c0
[  225.830510][T15259]  ? __pfx_fbcon_switch+0x10/0x10
[  225.830523][T15259]  ? __pfx_bit_cursor+0x10/0x10
[  225.830533][T15259]  ? fbcon_cursor+0x40c/0x5f0
[  225.830544][T15259]  csi_J+0x866/0xad0
[  225.830561][T15259]  do_con_write+0x41d7/0x8280
[  225.830573][T15259]  ? rcu_is_watching+0x12/0xc0
[  225.830586][T15259]  ? trace_contention_end+0xdd/0x130
[  225.830604][T15259]  ? n_tty_write+0x53e/0x11e0
[  225.830619][T15259]  ? __pfx___mutex_lock+0x10/0x10
[  225.830630][T15259]  ? __pfx_do_con_write+0x10/0x10
[  225.830641][T15259]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  225.830683][T15259]  ? con_write+0x93/0xb0
[  225.830701][T15259]  con_write+0x23/0xb0
[  225.830718][T15259]  n_tty_write+0x41f/0x11e0
[  225.830734][T15259]  ? __pfx_n_tty_write+0x10/0x10
[  225.830747][T15259]  ? rcu_is_watching+0x12/0xc0
[  225.830760][T15259]  ? __pfx_woken_wake_function+0x10/0x10
[  225.830773][T15259]  ? kfree+0x24f/0x4d0
[  225.830787][T15259]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  225.830799][T15259]  ? __pfx_n_tty_write+0x10/0x10
[  225.830813][T15259]  file_tty_write.constprop.0+0x501/0x9b0
[  225.830826][T15259]  vfs_write+0x7d3/0x11d0
[  225.830837][T15259]  ? __pfx_tty_write+0x10/0x10
[  225.830847][T15259]  ? __pfx_vfs_write+0x10/0x10
[  225.830857][T15259]  ? find_held_lock+0x2b/0x80
[  225.830873][T15259]  ksys_write+0x12a/0x250
[  225.830883][T15259]  ? __pfx_ksys_write+0x10/0x10
[  225.830898][T15259]  do_syscall_64+0xcd/0x4c0
[  225.830910][T15259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.830921][T15259] RIP: 0033:0x7f9460f8ebe9
[  225.830930][T15259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.830941][T15259] RSP: 002b:00007f9461d52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  225.830952][T15259] RAX: ffffffffffffffda RBX: 00007f94611b6090 RCX: 00007f9460f8ebe9
[  225.830960][T15259] RDX: 0000000000001006 RSI: 0000200000002080 RDI: 0000000000000007
[  225.830966][T15259] RBP: 00007f9461011e19 R08: 0000000000000000 R09: 0000000000000000
[  225.830973][T15259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  225.830979][T15259] R13: 00007f94611b6128 R14: 00007f94611b6090 R15: 00007ffcae797df8
[  225.830989][T15259]  </TASK>
[  225.831536][T15259] Kernel Offset: disabled

VM DIAGNOSIS:
05:31:15  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000079 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff856401d5 RDI=ffffffff9b10cfa0 RBP=ffffffff9b10cf60 RSP=ffffc9002205efe0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3030303963666657
R12=0000000000000000 R13=0000000000000079 R14=ffffffff9b10cf60 R15=ffffffff85640170
RIP=ffffffff856401ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f9461d526c0 ffffffff 00c00000
GS =0000 ffff8880d66bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055559115c808 CR3=0000000051eaa000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd04941050 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd049411d6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd049411d6 00007ffd049411dc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81608c60 RDX=ffff888025df4880
RSI=ffffffff81608ca8 RDI=ffffffff93db4fe0 RBP=0000000000000001 RSP=ffffc900006a0fd0
R8 =0000000000000001 R9 =fffffbfff27b69fc R10=ffffffff93db4fe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81608ca9 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f043fca0f98 CR3=0000000055c02000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=00000000000000ff Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffda195366
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffda195366 00007fffda19536c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043ee12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043ee12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043ee12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043ee12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043ee12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043ee12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043ef874a8 00007f043ef874a0 00007f043ef87498 00007f043ef87470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043faed100 00007f043ef87460 00007f043ef87478 0000000500060006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f043ef874b8 00007f043ef874b0 00007f043ef874a8 00007f043ef874a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81608c60 RDX=ffff888063b3c880
RSI=ffffffff81608ca8 RDI=ffffffff93db4fe0 RBP=0000000000000002 RSP=ffffc90000648fd0
R8 =0000000000000001 R9 =fffffbfff27b69fc R10=ffffffff93db4fe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81608ca9 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 000055559115c500 ffffffff 00c00000
GS =0000 ffff8880d68bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4767c4f523 CR3=000000002a485000 CR4=00350ef0
DR0=fffffffffffffff8 DR1=0000000000000006 DR2=0200000000000000 DR3=0000000000000005 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008200029 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd04941050 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd049411d6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd049411d6 00007ffd049411dc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4767c12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7720647a253d6461 6572007269646b6d 206f742064656c69 61660064252f2e00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5205415f00184144 405700574c414e48 054a51054140494c 44430041000a0b00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81608c60 RDX=ffff888031954880
RSI=ffffffff81608ca8 RDI=ffffffff93db4fe0 RBP=0000000000000003 RSP=ffffc900006f8fd0
R8 =0000000000000001 R9 =fffffbfff27b69fc R10=ffffffff93db4fe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81608ca9 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f662ce5e880 ffffffff 00c00000
GS =0000 ffff8880d69bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f043efb7dac CR3=000000003190d000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002000002 Opmask01=000000000000001f Opmask02=000000000100001f Opmask03=0000000001041000
Opmask04=00000000fffffbff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005638fe6d1a30
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005638fe667c30
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005638fe669580
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f662c7f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73001605121f0073 431e161e035c1810
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e69646165520073 25203a656c696620 7974706d6520676e 697070696b530065
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4245484d4952005f 090c164940454a0c 55585c41490c4b42 455c5c4547530049
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f30737562646e2f 30303a3231303049 5043412f30303a53 55425953584e4c2f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000711 0000000000007974 00736576616c7300 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7766736c2c346d2c 383261722c463831 2c4538312c443831 2c4338312c423831
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c4138312c393831 2c3838312c373831 2c3638312c353831 2c3438312c333831
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c3238312c313831 2c3038312c463731 2c4537312c443731 2c4337312c423731
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c4137312c393731 2c3837312c373731 2c3637312c353731 2c3437312c333731
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d2f626163006c65 636261243a652d61 32243a00276d002a 692720003a695d00
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000