last executing test programs:

3.920138227s ago: executing program 1 (id=6695):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x14, 0x4, 0x0, 0x0, 0x50, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x10, 0x0, 0x0, 0x9, [0x401, 0x5, 0xfffffff9]}, @timestamp_prespec={0x44, 0x24, 0xc0, 0x3, 0x1, [{@multicast1, 0x5}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x3a}, 0x658}, {@broadcast}]}, @noop, @noop, @rr={0x7, 0x3}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.868227168s ago: executing program 1 (id=6696):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
recvmmsg(r0, &(0x7f0000002540), 0x0, 0x3, 0x0)

3.809713567s ago: executing program 1 (id=6697):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000080)={[{@nolazytime}, {}]}, 0x6, 0x4eb, &(0x7f0000000a40)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000500000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
r5 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'veth1_virt_wifi\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000000100)={@remote, @private1, @ipv4={'\x00', '\xff\xff', @empty}, 0xd929, 0x40, 0xfffd, 0x100, 0x9, 0x40000000, r6})
r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000002c0), 0x4)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6c6, '\x00', r6, r7, 0x4, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
syz_clone(0x44480, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSCTTY(0xffffffffffffffff, 0x540e, 0x80000000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002580)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
io_setup(0x987, &(0x7f00000001c0)=<r10=>0x0)
io_submit(r10, 0x2, &(0x7f00000000c0)=[&(0x7f0000000200)={0x0, 0x0, 0x4, 0x0, 0x0, r9, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2333, r8, 0x0, 0x0, 0x0, 0x0, 0x6}])
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x0)

3.743099847s ago: executing program 1 (id=6699):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$tipc(0x1e, 0x2, 0x0)
r2 = syz_usb_connect$uac1(0x0, 0xad, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029b0003010000000904000000010100000a24010000000201"], 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r3, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x6001, 0x4, 0x3c8, 0x0, 0xe8, 0x1f8, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x2e0}}, {{@arp={@dev, @remote, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth1_vlan\x00', 'team_slave_0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@broadcast, @multicast2, @private}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE2={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)
syz_usb_control_io$uac1(r2, &(0x7f0000001100)={0x14, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0003040000000403", @ANYRES64=r1]}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000580)={@random="e90c610faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x1, 0x2, 0xc, 0x100, @void}}}}}}}, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000a40)=ANY=[@ANYBLOB="0180c2000002bbbbbbbbbbbb0800450000b00000000200119078000000000000000000000000009c907801000000040000009e188a80c32aa9b86ed6ce56992732d9f7fc6cda762c07530a038941764a92bb074336477e9205df5f47f7da965c25c746ba7f8ca07841d3da17308a6df3f54855ecedd6d8664fa125e3972a48e81039a562ff321beb3f036b9fd27aeff89c8e79a57a3873e0b4e6553e2c444cf02a016458a5f67aa497153eddc6a19a3f9661ac468177dc130be49bdd8eb502ad134e940d1344d52a200d131b42eafad86417531ccf849706bef5b28c5dd1dbada8d13f725cae818679d2e24e6e9f53d6ad906782e0871b1539254f717ca881b28db1a3003434ab7486d53aaeffb5c0302e2626997f24510fe999c578e45c7f98b054c790056d9fb789770b928b1ba12a81ce1ac9df8e6823eae47775d106e685d33b1438c9b3ccb77959afb1d55534a4ba4fc6efc2f892aba2c8d2f50347f78402ced303fcdb5087976c52a74af8f0c3cadc4a304ac8222d6ed3800fb8d003dfa23de12e1f71e8a22a044e04483621"], 0x0)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
syz_emit_ethernet(0x6a, &(0x7f00000000c0)={@broadcast, @link_local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x3, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x88a8, 0x0, 0x0, [0xff, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0xdd86}}}}}}, 0x0)
syz_usb_connect(0x3, 0x24, &(0x7f00000023c0)=ANY=[@ANYBLOB="12010102cc79d508f905024013a90102030109021200010000000009"], &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x4, &(0x7f0000000000)=@lang_id={0x4, 0x3, 0x1401}}, {0x0, 0x0}]})

3.493641986s ago: executing program 3 (id=6704):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0xffffffff, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000980)={'wg2\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180), 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

3.433574005s ago: executing program 3 (id=6707):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x8, &(0x7f0000000000)=[{0x6, 0x6, 0x7, 0x7}, {0xc8d, 0x2, 0x9, 0x80000000}, {0x3, 0x4, 0x7f, 0x40}, {0x6, 0xc, 0x0, 0x3}, {0x6, 0x85, 0x9d, 0x10000}, {0x1, 0xd8, 0xfc, 0x80000001}, {0x2, 0x7, 0x7, 0x9}, {0x4, 0x9, 0x1, 0xffff}]})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000009f910000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
timer_create(0x0, &(0x7f0000001a00)={0x0, 0x12}, &(0x7f0000000180))
timer_create(0x0, &(0x7f0000000000)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)

1.381940796s ago: executing program 2 (id=6734):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x4c}}, 0x0)

1.370104776s ago: executing program 2 (id=6736):
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x21408, 0x0, 0x1, 0x0, &(0x7f0000006380))
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000004240)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15)
fstat(r1, &(0x7f00000003c0))
r2 = dup(r1)
write$FUSE_INIT(r2, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c7766646e6f3d710e87e8081ef5fe276430c5996158f0ba8e128807e9331dbeb6a186176d093d15f4717fef4e899aae0035d2164cf5773ba68c04eb31ffb08c6dad82c10e5794b5feb6b502adbf1f4f50eb937e755d51d2a892b3c60b06798d172c7f890a8a341652348cd0837fe9c07fd5d6d0b1e147bd42f19e088af20bed6f40c489c983265d76443f9897b344cab3af6c69baec3e39dff5014e91d3fa754c562f860737ac12ae53017bfb61123afd9fc7ddb0abd3103df4bf6ea0746c857ff0428cabe028331b946e1889e3a92b7644b6bbda3883c3216599f1c1c4922b9c3ce227d712a2bb4632a57a5f5195e0c177ad40fe33d6", @ANYRESHEX=r2, @ANYBLOB=',k'])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000e000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000000ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r4}, 0x10)
recvmmsg(r2, &(0x7f00000005c0)=[{{&(0x7f00000004c0)=@alg, 0x80, &(0x7f0000000080)=[{&(0x7f0000000000)=""/44, 0x2c}], 0x1, &(0x7f0000000580)=""/27, 0x1b}, 0x7}], 0x1, 0x100, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x2, 0x8, 0xd0eb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
setxattr$incfs_size(&(0x7f0000004400)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0)

1.327207786s ago: executing program 2 (id=6740):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x2, 0x400000000000003, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7}, @sadb_sa={0x2, 0x1, 0x4d6, 0x2, 0x9, 0xbc, 0x4}]}, 0x30}}, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x4})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.070506165s ago: executing program 0 (id=6747):
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
close(0xffffffffffffffff)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(0xffffffffffffffff, &(0x7f000000a3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f00000002c0)={0x50, 0xffffffffffffffda, r1, {0x7, 0x1f, 0x8, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x16}}, 0x50)
umount2(&(0x7f0000000100)='./file0\x00', 0xa)

1.056974075s ago: executing program 4 (id=6749):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2ab, @void, @value}, 0x94)
lstat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
fdatasync(r1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r3}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

1.048116205s ago: executing program 0 (id=6750):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}, 0x73}], 0x1, 0x2, 0x0)
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000880}, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x100, 0x0, 0x0, 0x5]})
sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x4004841}, 0x4810)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

1.035635685s ago: executing program 4 (id=6751):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}, 0x73}], 0x1, 0x2, 0x0)
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000880}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x100, 0x0, 0x0, 0x5]})
sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="01002abd7000fddbdf250a00000008", @ANYRES16=r0, @ANYBLOB='\b\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4004841}, 0x4810)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

992.625204ms ago: executing program 0 (id=6752):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000000)=0x8000, 0x4)
recvmmsg(r0, &(0x7f00000079c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002940)=""/224, 0xe0}, 0x9}], 0x1, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x18)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

992.259595ms ago: executing program 4 (id=6753):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000080)={[{@nolazytime}, {}]}, 0x6, 0x4eb, &(0x7f0000000a40)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
lsetxattr$security_capability(&(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), &(0x7f00000006c0)=@v3={0x3000000, [{0x3, 0xfffffffe}, {0x9, 0x57}], 0xee00}, 0x18, 0x0)

975.213754ms ago: executing program 4 (id=6754):
r0 = creat(0x0, 0x0)
close(r0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000a3c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000002c0)={0x50, 0xffffffffffffffda, r2, {0x7, 0x1f, 0x8, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x16}}, 0x50)
umount2(&(0x7f0000000100)='./file0\x00', 0xa)

963.344694ms ago: executing program 4 (id=6755):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x401, 0x0)
ioctl$KVM_CAP_MAX_VCPU_ID(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000240)={0x80, 0x0, 0xff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001d40)={&(0x7f00000009c0)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
gettid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000080)='cpuset.sched_load_balance\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f00000000c0), 0x12)
dup(0xffffffffffffffff)

957.821684ms ago: executing program 0 (id=6756):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x2, 0x400000000000003, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x4})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

846.089133ms ago: executing program 1 (id=6757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/18], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001240)={{r0}, 0x0, &(0x7f0000001280)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r0, 0x0, &(0x7f0000000280)=""/99}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = signalfd4(r2, &(0x7f00000000c0)={[0xfffffffffffffd5a]}, 0x8, 0x800)
ioctl$F2FS_IOC_SEC_TRIM_FILE(r3, 0x4018f514, &(0x7f0000000180)={0x5, 0x7f, 0x2})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x7, 0x3, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
setitimer(0x1, &(0x7f0000000040)={{0x0, 0xea60}, {0x0, 0xea60}}, &(0x7f0000000080))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r4}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000340)={r4, &(0x7f0000000000)="d9a8", 0x0}, 0x20)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="020300031200000000000000000000000400090088000000e3d36433c4920893924540ac18fabaf0c70000000000000005000600000000000a0000000000000000000000000000000000000000000000000000000000000002000100000000000000020c0000000005000500000000000a"], 0x90}, 0x1, 0x7}, 0x0)

845.651834ms ago: executing program 1 (id=6758):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x28280000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8001, 0x0)
ioctl$BLKALIGNOFF(r3, 0x127a, &(0x7f0000000100))
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f00000000c0)=[{0x20, 0x0, 0x5, 0x36fd}, {0x6}]}, 0x10)
r4 = socket$inet(0x2, 0x3, 0x2)
recvmmsg(r4, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)

545.113063ms ago: executing program 0 (id=6759):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c00000010004b0400f4ed00000000007a000000", @ANYRES32=0x0], 0x4c}}, 0x0)

523.269812ms ago: executing program 0 (id=6760):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000080)='0', 0x1}], 0x1}, 0x4040001)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
recvmsg$unix(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000000c0)=""/109, 0x6d}], 0x1}, 0x0)

314.958601ms ago: executing program 3 (id=6761):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$snapshot(r0, &(0x7f0000000240)="f8c3b6dbeaa74477d59daaefadd8af38ca001f96b70513e58f2a6a23c3ad6d2f9966789e38dd4be8484f5644db0001309e8f95087000e322f5de7bfc211747bd9f659898453890cdcf6c072142213b6b25d619709e1769edf7e9b30ba7365230903fae3a4804d6", 0x67)

314.337751ms ago: executing program 2 (id=6762):
r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r0, &(0x7f0000002800)=[{&(0x7f0000002500)='\f7', 0x45}], 0x1)
write$cgroup_pid(r0, &(0x7f00000031c0), 0x12)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={0x1, 0x58, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0}}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=@newneigh={0x3c, 0x1c, 0x300, 0x70bd2b, 0x25dfdbfe, {0x1c, 0x0, 0x0, r1, 0x0, 0x19, 0x2}, [@NDA_PORT={0x6, 0x6, 0x4e23}, @NDA_NH_ID={0x8, 0xd, 0x3}, @NDA_PROTOCOL={0x5, 0xc, 0x1}, @NDA_IFINDEX={0x8, 0x8, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x14)

215.555681ms ago: executing program 3 (id=6763):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
close(r0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000a3c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000002c0)={0x50, 0xffffffffffffffda, r2, {0x7, 0x1f, 0x8, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x16}}, 0x50)
umount2(&(0x7f0000000100)='./file0\x00', 0xa)

145.505231ms ago: executing program 2 (id=6764):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}, 0x73}], 0x1, 0x2, 0x0)
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000880}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x100, 0x0, 0x0, 0x5]})
sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="01002abd7000fddbdf250a00000008", @ANYRES16=r0, @ANYBLOB='\b\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4004841}, 0x4810)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

94.51528ms ago: executing program 3 (id=6765):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000040)="2b1c52ac82e71ea05b0c5e43ede4", 0x0, 0xb20c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

60.19652ms ago: executing program 2 (id=6766):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000080)={[{@nolazytime}, {}]}, 0x6, 0x4eb, &(0x7f0000000a40)="$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")
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
lsetxattr$security_capability(&(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), &(0x7f00000006c0)=@v3={0x3000000, [{0x3, 0xfffffffe}, {0x9, 0x57}], 0xee00}, 0x18, 0x0)

57.819451ms ago: executing program 4 (id=6767):
r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r0, &(0x7f0000002800)=[{&(0x7f0000002500)='\f7', 0x45}], 0x1)
write$cgroup_pid(r0, &(0x7f00000031c0), 0x12)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={0x1, 0x58, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0}}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=@newneigh={0x3c, 0x1c, 0x300, 0x70bd2b, 0x25dfdbfe, {0x1c, 0x0, 0x0, r1, 0x0, 0x19, 0x2}, [@NDA_PORT={0x6, 0x6, 0x4e23}, @NDA_NH_ID={0x8, 0xd, 0x3}, @NDA_PROTOCOL={0x5, 0xc, 0x1}, @NDA_IFINDEX={0x8, 0x8, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x14)

0s ago: executing program 3 (id=6768):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
time(&(0x7f0000000080))
syz_socket_connect_nvme_tcp()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
time(0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0100000004000000e47f00000100000000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000018001811", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x2e, &(0x7f0000000040)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x1, 0x0, 0x0, @void}}}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f0000000340)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x79}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4dc, &(0x7f0000000d80)="$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")

kernel console output (not intermixed with test programs):

f0 RSI: 0000000000000000 RDI: 00007fb932540409
[ 1144.233772][T21160] RBP: 0000000020000640 R08: 00007fb930b34bb7 R09: 00007fb930b34e40
[ 1144.241585][T21160] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200005c0
[ 1144.249396][T21160] R13: 00007fb930b34ef0 R14: 00007fb930b34eb0 R15: 0000000020000600
[ 1144.257215][T21160]  </TASK>
[ 1144.317556][   T30] audit: type=1400 audit(1734766884.079:1102): avc:  denied  { create } for  pid=21156 comm="syz.3.6194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1144.364199][   T30] audit: type=1400 audit(1734766884.118:1103): avc:  denied  { setopt } for  pid=21156 comm="syz.3.6194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1144.387490][T21170] FAULT_INJECTION: forcing a failure.
[ 1144.387490][T21170] name failslab, interval 1, probability 0, space 0, times 0
[ 1144.402023][T21170] CPU: 0 PID: 21170 Comm: syz.0.6199 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1144.411927][T21170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1144.421820][T21170] Call Trace:
[ 1144.424944][T21170]  <TASK>
[ 1144.427717][T21170]  dump_stack_lvl+0x151/0x1c0
[ 1144.432231][T21170]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1144.437723][T21170]  dump_stack+0x15/0x20
[ 1144.441706][T21170]  should_fail+0x3c6/0x510
[ 1144.445945][T21170]  __should_failslab+0xa4/0xe0
[ 1144.450546][T21170]  ? shmem_alloc_inode+0x1a/0x30
[ 1144.455330][T21170]  should_failslab+0x9/0x20
[ 1144.459667][T21170]  slab_pre_alloc_hook+0x37/0xd0
[ 1144.464431][T21170]  ? shmem_alloc_inode+0x1a/0x30
[ 1144.469205][T21170]  kmem_cache_alloc+0x44/0x250
[ 1144.473806][T21170]  ? shmem_match+0x180/0x180
[ 1144.478232][T21170]  shmem_alloc_inode+0x1a/0x30
[ 1144.482839][T21170]  new_inode_pseudo+0x64/0x220
[ 1144.487434][T21170]  new_inode+0x28/0x1c0
[ 1144.491425][T21170]  shmem_get_inode+0x328/0x9e0
[ 1144.496024][T21170]  ? _raw_spin_unlock+0x4d/0x70
[ 1144.500712][T21170]  __shmem_file_setup+0x111/0x2a0
[ 1144.505570][T21170]  shmem_file_setup+0x2f/0x40
[ 1144.510085][T21170]  __se_sys_memfd_create+0x1e1/0x3e0
[ 1144.515205][T21170]  __x64_sys_memfd_create+0x5b/0x70
[ 1144.520239][T21170]  x64_sys_call+0x871/0x9a0
[ 1144.524577][T21170]  do_syscall_64+0x3b/0xb0
[ 1144.528829][T21170]  ? clear_bhb_loop+0x35/0x90
[ 1144.533345][T21170]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1144.539075][T21170] RIP: 0033:0x7f9fe1cb3d29
[ 1144.543331][T21170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1144.562768][T21170] RSP: 002b:00007f9fe0324e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1144.571011][T21170] RAX: ffffffffffffffda RBX: 00000000000003da RCX: 00007f9fe1cb3d29
[ 1144.578823][T21170] RDX: 00007f9fe0324ef0 RSI: 0000000000000000 RDI: 00007f9fe1d30409
[ 1144.586634][T21170] RBP: 00000000200004c0 R08: 00007f9fe0324bb7 R09: 00007f9fe0324e40
[ 1144.594446][T21170] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000440
[ 1144.602257][T21170] R13: 00007f9fe0324ef0 R14: 00007f9fe0324eb0 R15: 0000000020000480
[ 1144.610081][T21170]  </TASK>
[ 1144.638544][T21181] FAULT_INJECTION: forcing a failure.
[ 1144.638544][T21181] name failslab, interval 1, probability 0, space 0, times 0
[ 1144.651380][T21181] CPU: 0 PID: 21181 Comm: syz.1.6203 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1144.661176][T21181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1144.671074][T21181] Call Trace:
[ 1144.674192][T21181]  <TASK>
[ 1144.676971][T21181]  dump_stack_lvl+0x151/0x1c0
[ 1144.681485][T21181]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1144.686953][T21181]  dump_stack+0x15/0x20
[ 1144.690943][T21181]  should_fail+0x3c6/0x510
[ 1144.695197][T21181]  __should_failslab+0xa4/0xe0
[ 1144.699797][T21181]  should_failslab+0x9/0x20
[ 1144.704137][T21181]  slab_pre_alloc_hook+0x37/0xd0
[ 1144.708910][T21181]  kmem_cache_alloc_trace+0x48/0x270
[ 1144.714030][T21181]  ? __get_vm_area_node+0x117/0x360
[ 1144.719064][T21181]  ? __kasan_slab_free+0x11/0x20
[ 1144.723839][T21181]  __get_vm_area_node+0x117/0x360
[ 1144.728699][T21181]  __vmalloc_node_range+0xe2/0x8d0
[ 1144.733740][T21181]  ? bpf_prog_alloc_no_stats+0x3b/0x2f0
[ 1144.739115][T21181]  ? selinux_capset+0xf0/0xf0
[ 1144.743626][T21181]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1144.748837][T21181]  ? kstrtol_from_user+0x310/0x310
[ 1144.753782][T21181]  ? bpf_prog_alloc_no_stats+0x3b/0x2f0
[ 1144.759165][T21181]  __vmalloc+0x7a/0x90
[ 1144.763070][T21181]  ? bpf_prog_alloc_no_stats+0x3b/0x2f0
[ 1144.768451][T21181]  bpf_prog_alloc_no_stats+0x3b/0x2f0
[ 1144.773661][T21181]  ? bpf_prog_alloc+0x15/0x1e0
[ 1144.778259][T21181]  bpf_prog_alloc+0x1f/0x1e0
[ 1144.782685][T21181]  bpf_prog_load+0x800/0x1b50
[ 1144.787202][T21181]  ? map_freeze+0x370/0x370
[ 1144.791542][T21181]  ? selinux_bpf+0xcb/0x100
[ 1144.795877][T21181]  ? security_bpf+0x82/0xb0
[ 1144.800221][T21181]  __sys_bpf+0x4bc/0x760
[ 1144.804298][T21181]  ? fput_many+0x160/0x1b0
[ 1144.808549][T21181]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[ 1144.813759][T21181]  ? debug_smp_processor_id+0x17/0x20
[ 1144.818964][T21181]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1144.824866][T21181]  __x64_sys_bpf+0x7c/0x90
[ 1144.829120][T21181]  x64_sys_call+0x87f/0x9a0
[ 1144.833458][T21181]  do_syscall_64+0x3b/0xb0
[ 1144.837711][T21181]  ? clear_bhb_loop+0x35/0x90
[ 1144.842225][T21181]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1144.847952][T21181] RIP: 0033:0x7fb511567d29
[ 1144.852207][T21181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1144.871648][T21181] RSP: 002b:00007fb50fbd9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1144.879894][T21181] RAX: ffffffffffffffda RBX: 00007fb511757fa0 RCX: 00007fb511567d29
[ 1144.887704][T21181] RDX: 0000000000000094 RSI: 0000000020000340 RDI: 0000000000000005
[ 1144.895516][T21181] RBP: 00007fb50fbd9090 R08: 0000000000000000 R09: 0000000000000000
[ 1144.903327][T21181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1144.911141][T21181] R13: 0000000000000000 R14: 00007fb511757fa0 R15: 00007fffaacc8908
[ 1144.918956][T21181]  </TASK>
[ 1144.928211][T21181] syz.1.6203: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz1,mems_allowed=0
[ 1144.950006][T21181] CPU: 0 PID: 21181 Comm: syz.1.6203 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1144.959813][T21181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1144.969708][T21181] Call Trace:
[ 1144.972833][T21181]  <TASK>
[ 1144.975608][T21181]  dump_stack_lvl+0x151/0x1c0
[ 1144.980127][T21181]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1144.985590][T21181]  ? pr_cont_kernfs_name+0xf0/0x100
[ 1144.990624][T21181]  dump_stack+0x15/0x20
[ 1144.994617][T21181]  warn_alloc+0x21a/0x390
[ 1144.998783][T21181]  ? zone_watermark_ok_safe+0x270/0x270
[ 1145.004165][T21181]  ? kmem_cache_alloc_trace+0x11a/0x270
[ 1145.009541][T21181]  ? __get_vm_area_node+0x117/0x360
[ 1145.014579][T21181]  ? __get_vm_area_node+0x347/0x360
[ 1145.019615][T21181]  __vmalloc_node_range+0x2c1/0x8d0
[ 1145.024646][T21181]  ? selinux_capset+0xf0/0xf0
[ 1145.029158][T21181]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1145.034367][T21181]  ? kstrtol_from_user+0x310/0x310
[ 1145.039313][T21181]  ? bpf_prog_alloc_no_stats+0x3b/0x2f0
[ 1145.044781][T21181]  __vmalloc+0x7a/0x90
[ 1145.048695][T21181]  ? bpf_prog_alloc_no_stats+0x3b/0x2f0
[ 1145.054066][T21181]  bpf_prog_alloc_no_stats+0x3b/0x2f0
[ 1145.059271][T21181]  ? bpf_prog_alloc+0x15/0x1e0
[ 1145.063874][T21181]  bpf_prog_alloc+0x1f/0x1e0
[ 1145.068303][T21181]  bpf_prog_load+0x800/0x1b50
[ 1145.072814][T21181]  ? map_freeze+0x370/0x370
[ 1145.077243][T21181]  ? selinux_bpf+0xcb/0x100
[ 1145.081577][T21181]  ? security_bpf+0x82/0xb0
[ 1145.085919][T21181]  __sys_bpf+0x4bc/0x760
[ 1145.090000][T21181]  ? fput_many+0x160/0x1b0
[ 1145.094252][T21181]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[ 1145.099460][T21181]  ? debug_smp_processor_id+0x17/0x20
[ 1145.104664][T21181]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1145.110568][T21181]  __x64_sys_bpf+0x7c/0x90
[ 1145.114819][T21181]  x64_sys_call+0x87f/0x9a0
[ 1145.119160][T21181]  do_syscall_64+0x3b/0xb0
[ 1145.123415][T21181]  ? clear_bhb_loop+0x35/0x90
[ 1145.127926][T21181]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1145.133658][T21181] RIP: 0033:0x7fb511567d29
[ 1145.137910][T21181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1145.157349][T21181] RSP: 002b:00007fb50fbd9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1145.165594][T21181] RAX: ffffffffffffffda RBX: 00007fb511757fa0 RCX: 00007fb511567d29
[ 1145.173405][T21181] RDX: 0000000000000094 RSI: 0000000020000340 RDI: 0000000000000005
[ 1145.181236][T21181] RBP: 00007fb50fbd9090 R08: 0000000000000000 R09: 0000000000000000
[ 1145.189034][T21181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1145.196840][T21181] R13: 0000000000000000 R14: 00007fb511757fa0 R15: 00007fffaacc8908
[ 1145.204662][T21181]  </TASK>
[ 1145.208517][T21181] Mem-Info:
[ 1145.211654][T21181] active_anon:123 inactive_anon:6546 isolated_anon:0
[ 1145.211654][T21181]  active_file:22495 inactive_file:5177 isolated_file:0
[ 1145.211654][T21181]  unevictable:0 dirty:576 writeback:0
[ 1145.211654][T21181]  slab_reclaimable:10255 slab_unreclaimable:70858
[ 1145.211654][T21181]  mapped:29322 shmem:215 pagetables:595 bounce:0
[ 1145.211654][T21181]  kernel_misc_reclaimable:0
[ 1145.211654][T21181]  free:1532719 free_pcp:21012 free_cma:0
[ 1145.254403][T21181] Node 0 active_anon:492kB inactive_anon:22184kB active_file:89980kB inactive_file:20708kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:117288kB dirty:2304kB writeback:0kB shmem:860kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:4800kB pagetables:2380kB all_unreclaimable? no
[ 1145.284968][T21181] DMA32 free:2974676kB min:62568kB low:78208kB high:93848kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2978960kB mlocked:0kB bounce:0kB free_pcp:4284kB local_pcp:0kB free_cma:0kB
[ 1145.315485][T21181] lowmem_reserve[]: 0 3941 3941
[ 1145.320267][T21181] Normal free:3156200kB min:84884kB low:106104kB high:127324kB reserved_highatomic:0KB active_anon:492kB inactive_anon:22084kB active_file:89980kB inactive_file:20708kB unevictable:0kB writepending:2304kB present:5242880kB managed:4035584kB mlocked:0kB bounce:0kB free_pcp:83560kB local_pcp:36116kB free_cma:0kB
[ 1145.349338][T21181] lowmem_reserve[]: 0 0 0
[ 1145.353592][T21181] DMA32: 3*4kB (M) 1*8kB (M) 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (UM) 3*2048kB (UM) 723*4096kB (M) = 2974676kB
[ 1145.369811][T21181] Normal: 294*4kB (UE) 922*8kB (UME) 766*16kB (UME) 245*32kB (UME) 288*64kB (UME) 228*128kB (UME) 83*256kB (UM) 42*512kB (UME) 12*1024kB (UME) 5*2048kB (UME) 736*4096kB (UM) = 3156200kB
[ 1145.388222][T20044] usb 5-1: new high-speed USB device number 72 using dummy_hcd
[ 1145.399838][T21181] 28387 total pagecache pages
[ 1145.406121][T21181] 500 pages in swap cache
[ 1145.410328][T21181] Swap cache stats: add 79933, delete 79420, find 47/47
[ 1145.421768][T21181] Free swap  = 122612kB
[ 1145.425876][T21181] Total swap = 124996kB
[ 1145.431283][T21181] 2097051 pages RAM
[ 1145.435420][T21181] 0 pages HighMem/MovableOnly
[ 1145.447010][T21181] 343415 pages reserved
[ 1145.453303][T21181] 0 pages cma reserved
[ 1145.465290][T21204] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ümý¼§6°'ßtÿT	ð#>÷‰r¹[›5´
[ 1147.085796][   T30] audit: type=1400 audit(1734766886.003:1104): avc:  denied  { map } for  pid=21210 comm="syz.3.6215" path="/dev/tty27" dev="devtmpfs" ino=45 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[ 1147.125760][T21219] FAULT_INJECTION: forcing a failure.
[ 1147.125760][T21219] name failslab, interval 1, probability 0, space 0, times 0
[ 1147.138321][T21219] CPU: 0 PID: 21219 Comm: syz.3.6218 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1147.138462][T20044] usb 5-1: device descriptor read/64, error -71
[ 1147.148073][T21219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1147.148088][T21219] Call Trace:
[ 1147.148094][T21219]  <TASK>
[ 1147.148104][T21219]  dump_stack_lvl+0x151/0x1c0
[ 1147.174467][T21219]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1147.179930][T21219]  ? stack_trace_save+0x113/0x1c0
[ 1147.184788][T21219]  dump_stack+0x15/0x20
[ 1147.188783][T21219]  should_fail+0x3c6/0x510
[ 1147.193038][T21219]  __should_failslab+0xa4/0xe0
[ 1147.197633][T21219]  ? dst_alloc+0x164/0x1e0
[ 1147.201888][T21219]  should_failslab+0x9/0x20
[ 1147.206224][T21219]  slab_pre_alloc_hook+0x37/0xd0
[ 1147.211088][T21219]  ? dst_alloc+0x164/0x1e0
[ 1147.215338][T21219]  kmem_cache_alloc+0x44/0x250
[ 1147.219942][T21219]  dst_alloc+0x164/0x1e0
[ 1147.224020][T21219]  ip_route_input_rcu+0x1aed/0x29b0
[ 1147.229057][T21219]  ? ip_route_input_noref+0x110/0x110
[ 1147.234267][T21219]  ? ipt_do_table+0x14df/0x17e0
[ 1147.238955][T21219]  ip_route_input_noref+0xba/0x110
[ 1147.243895][T21219]  ? ip_route_use_hint+0x550/0x550
[ 1147.248849][T21219]  ip_rcv_finish_core+0x4c8/0x1490
[ 1147.253789][T21219]  ip_rcv+0xef/0x310
[ 1147.257518][T21219]  ? bpf_flow_dissect+0x3f0/0x3f0
[ 1147.262378][T21219]  ? ip_local_deliver_finish+0x240/0x240
[ 1147.267845][T21219]  ? ip_rcv_core+0xb50/0xb50
[ 1147.272275][T21219]  ? ip_local_deliver_finish+0x240/0x240
[ 1147.277740][T21219]  __netif_receive_skb+0x1c6/0x530
[ 1147.282687][T21219]  ? tun_chr_write_iter+0x1e1/0x2e0
[ 1147.287721][T21219]  ? vfs_write+0xd5d/0x1110
[ 1147.292062][T21219]  ? ksys_write+0x199/0x2c0
[ 1147.296576][T21219]  ? x64_sys_call+0x2f/0x9a0
[ 1147.300999][T21219]  ? do_syscall_64+0x3b/0xb0
[ 1147.305423][T21219]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1147.311328][T21219]  ? deliver_ptype_list_skb+0x3b0/0x3b0
[ 1147.316708][T21219]  netif_receive_skb+0xb0/0x480
[ 1147.321398][T21219]  ? netif_receive_skb_core+0x210/0x210
[ 1147.326776][T21219]  tun_rx_batched+0x6d9/0x870
[ 1147.331287][T21219]  ? eth_type_trans+0x2e4/0x620
[ 1147.335973][T21219]  ? local_bh_enable+0x30/0x30
[ 1147.340575][T21219]  tun_get_user+0x2cb7/0x3aa0
[ 1147.345087][T21219]  ? __x64_sys_openat+0x180/0x290
[ 1147.349948][T21219]  ? tun_do_read+0x2010/0x2010
[ 1147.354546][T21219]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1147.359755][T21219]  ? kstrtol_from_user+0x310/0x310
[ 1147.364701][T21219]  ? 0xffffffff81000000
[ 1147.368694][T21219]  ? avc_policy_seqno+0x1b/0x70
[ 1147.373380][T21219]  ? selinux_file_permission+0x2c4/0x570
[ 1147.378849][T21219]  tun_chr_write_iter+0x1e1/0x2e0
[ 1147.383710][T21219]  vfs_write+0xd5d/0x1110
[ 1147.387876][T21219]  ? file_end_write+0x1c0/0x1c0
[ 1147.392567][T21219]  ? __fdget_pos+0x209/0x3a0
[ 1147.396991][T21219]  ? ksys_write+0x77/0x2c0
[ 1147.401241][T21219]  ksys_write+0x199/0x2c0
[ 1147.405409][T21219]  ? __ia32_sys_read+0x90/0x90
[ 1147.410007][T21219]  ? debug_smp_processor_id+0x17/0x20
[ 1147.415212][T21219]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1147.421117][T21219]  __x64_sys_write+0x7b/0x90
[ 1147.425542][T21219]  x64_sys_call+0x2f/0x9a0
[ 1147.429793][T21219]  do_syscall_64+0x3b/0xb0
[ 1147.434048][T21219]  ? clear_bhb_loop+0x35/0x90
[ 1147.438561][T21219]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1147.444289][T21219] RIP: 0033:0x7f1c6304f7df
[ 1147.448545][T21219] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1147.467989][T21219] RSP: 002b:00007f1c616c2000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1147.476229][T21219] RAX: ffffffffffffffda RBX: 00007f1c63240fa0 RCX: 00007f1c6304f7df
[ 1147.484040][T21219] RDX: 00000000000000be RSI: 00000000200001c0 RDI: 00000000000000c8
[ 1147.491868][T21219] RBP: 00007f1c616c2090 R08: 0000000000000000 R09: 0000000000000000
[ 1147.499662][T21219] R10: 00000000000000be R11: 0000000000000293 R12: 0000000000000001
[ 1147.507476][T21219] R13: 0000000000000000 R14: 00007f1c63240fa0 R15: 00007ffdeba41f58
[ 1147.515293][T21219]  </TASK>
[ 1147.605491][T21226] FAULT_INJECTION: forcing a failure.
[ 1147.605491][T21226] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 1147.625428][T21232] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6222'.
[ 1147.626096][T21226] CPU: 1 PID: 21226 Comm: syz.3.6219 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1147.634337][   T30] audit: type=1400 audit(1734766887.299:1105): avc:  denied  { nlmsg_read } for  pid=21229 comm="syz.4.6221" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1147.643987][T21226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1147.643998][T21226] Call Trace:
[ 1147.644003][T21226]  <TASK>
[ 1147.644010][T21226]  dump_stack_lvl+0x151/0x1c0
[ 1147.644031][T21226]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1147.644047][T21226]  ? down_read_trylock+0x3d6/0x7d0
[ 1147.644066][T21226]  dump_stack+0x15/0x20
[ 1147.699114][T21226]  should_fail+0x3c6/0x510
[ 1147.703361][T21226]  should_fail_alloc_page+0x5a/0x80
[ 1147.708392][T21226]  prepare_alloc_pages+0x15c/0x700
[ 1147.713338][T21226]  ? exc_page_fault+0x47a/0x7f0
[ 1147.718029][T21226]  ? __alloc_pages_bulk+0xe40/0xe40
[ 1147.723060][T21226]  ? down_read_killable+0x1035/0x1b10
[ 1147.728268][T21226]  __alloc_pages+0x18c/0x8f0
[ 1147.732695][T21226]  ? prep_new_page+0x110/0x110
[ 1147.737297][T21226]  ? __kasan_check_write+0x14/0x20
[ 1147.742242][T21226]  ? _raw_spin_lock+0xa4/0x1b0
[ 1147.746842][T21226]  ? _raw_spin_trylock_bh+0x190/0x190
[ 1147.752049][T21226]  ? __kasan_check_read+0x11/0x20
[ 1147.756909][T21226]  __get_free_pages+0x10/0x30
[ 1147.761426][T21226]  __genradix_ptr_alloc+0xd4/0x3a0
[ 1147.766370][T21226]  proc_map_files_readdir+0x528/0x980
[ 1147.771581][T21226]  ? map_files_d_revalidate+0x720/0x720
[ 1147.776967][T21226]  ? avc_policy_seqno+0x1b/0x70
[ 1147.781646][T21226]  ? __kasan_check_read+0x11/0x20
[ 1147.786509][T21226]  ? security_file_permission+0x86/0xb0
[ 1147.791887][T21226]  iterate_dir+0x265/0x600
[ 1147.796144][T21226]  ? map_files_d_revalidate+0x720/0x720
[ 1147.801521][T21226]  __se_sys_getdents64+0x1c1/0x460
[ 1147.806468][T21226]  ? fput_many+0x160/0x1b0
[ 1147.810721][T21226]  ? __x64_sys_getdents64+0x90/0x90
[ 1147.815756][T21226]  ? filldir+0x680/0x680
[ 1147.819835][T21226]  ? __ia32_sys_read+0x90/0x90
[ 1147.824435][T21226]  ? debug_smp_processor_id+0x17/0x20
[ 1147.829641][T21226]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1147.835550][T21226]  __x64_sys_getdents64+0x7b/0x90
[ 1147.840405][T21226]  x64_sys_call+0x5ae/0x9a0
[ 1147.844745][T21226]  do_syscall_64+0x3b/0xb0
[ 1147.849009][T21226]  ? clear_bhb_loop+0x35/0x90
[ 1147.853512][T21226]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1147.859239][T21226] RIP: 0033:0x7f1c63050d29
[ 1147.863492][T21226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1147.882934][T21226] RSP: 002b:00007f1c616c2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 1147.891177][T21226] RAX: ffffffffffffffda RBX: 00007f1c63240fa0 RCX: 00007f1c63050d29
[ 1147.898991][T21226] RDX: 0000000000000ffc RSI: 0000000020002f40 RDI: 0000000000000003
[ 1147.906801][T21226] RBP: 00007f1c616c2090 R08: 0000000000000000 R09: 0000000000000000
[ 1147.914622][T21226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1147.922424][T21226] R13: 0000000000000000 R14: 00007f1c63240fa0 R15: 00007ffdeba41f58
[ 1147.930241][T21226]  </TASK>
[ 1147.957004][T21235] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21235 comm=syz.3.6223
[ 1147.975873][T21232] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=21232 comm=syz.0.6222
[ 1147.987666][T21236] FAULT_INJECTION: forcing a failure.
[ 1147.987666][T21236] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1148.001588][T21236] CPU: 1 PID: 21236 Comm: syz.1.6217 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1148.011384][T21236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1148.021277][T21236] Call Trace:
[ 1148.024398][T21236]  <TASK>
[ 1148.027177][T21236]  dump_stack_lvl+0x151/0x1c0
[ 1148.031690][T21236]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1148.037160][T21236]  dump_stack+0x15/0x20
[ 1148.041150][T21236]  should_fail+0x3c6/0x510
[ 1148.045407][T21236]  should_fail_usercopy+0x1a/0x20
[ 1148.050263][T21236]  _copy_from_user+0x20/0xd0
[ 1148.054690][T21236]  sock_setsockopt+0x2d9/0x2eb0
[ 1148.059379][T21236]  ? __sock_set_mark+0x160/0x160
[ 1148.064155][T21236]  ? selinux_socket_setsockopt+0x260/0x360
[ 1148.069805][T21236]  ? selinux_socket_getsockopt+0x340/0x340
[ 1148.075440][T21236]  ? security_socket_setsockopt+0x82/0xb0
[ 1148.080993][T21236]  __sys_setsockopt+0x423/0x840
[ 1148.085677][T21236]  ? __ia32_sys_recv+0xb0/0xb0
[ 1148.090277][T21236]  ? debug_smp_processor_id+0x17/0x20
[ 1148.095482][T21236]  __x64_sys_setsockopt+0xbf/0xd0
[ 1148.100345][T21236]  x64_sys_call+0x1a2/0x9a0
[ 1148.104683][T21236]  do_syscall_64+0x3b/0xb0
[ 1148.108935][T21236]  ? clear_bhb_loop+0x35/0x90
[ 1148.113447][T21236]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1148.119178][T21236] RIP: 0033:0x7fb511567d29
[ 1148.123431][T21236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1148.142872][T21236] RSP: 002b:00007fb50fb97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1148.151118][T21236] RAX: ffffffffffffffda RBX: 00007fb511758160 RCX: 00007fb511567d29
[ 1148.158928][T21236] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000008
[ 1148.166738][T21236] RBP: 00007fb50fb97090 R08: 0000000000000010 R09: 0000000000000000
[ 1148.174549][T21236] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[ 1148.182361][T21236] R13: 0000000000000000 R14: 00007fb511758160 R15: 00007fffaacc8908
[ 1148.190180][T21236]  </TASK>
[ 1148.350299][   T30] audit: type=1400 audit(1734766887.982:1106): avc:  denied  { write } for  pid=21241 comm="syz.3.6225" name="binder1" dev="binder" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1148.401721][   T30] audit: type=1400 audit(1734766887.982:1107): avc:  denied  { ioctl } for  pid=21241 comm="syz.3.6225" path="/dev/binderfs/binder1" dev="binder" ino=14 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1148.756154][   T30] audit: type=1326 audit(1734766888.392:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21263 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb511567d29 code=0x7ffc0000
[ 1148.779781][   T30] audit: type=1326 audit(1734766888.392:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21263 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fb511567d29 code=0x7ffc0000
[ 1148.828909][   T30] audit: type=1326 audit(1734766888.392:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21263 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb511567d29 code=0x7ffc0000
[ 1148.981542][   T30] audit: type=1326 audit(1734766888.392:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21263 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fb511567d29 code=0x7ffc0000
[ 1149.545507][   T30] audit: type=1326 audit(1734766888.392:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21263 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb511567d29 code=0x7ffc0000
[ 1149.578913][   T30] audit: type=1326 audit(1734766888.392:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21263 comm="syz.1.6230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb511567d29 code=0x7ffc0000
[ 1149.661408][T21285] tap0: tun_chr_ioctl cmd 1074025681
[ 1149.868750][T21299] tipc: Failed to remove unknown binding: 66,1,1/0:3666449304/3666449306
[ 1149.877209][T21299] tipc: Failed to remove unknown binding: 66,1,1/0:3666449304/3666449306
[ 1149.974361][T21303] 9pnet: Insufficient options for proto=fd
[ 1150.877688][T21325] tap0: tun_chr_ioctl cmd 1074025681
[ 1150.955671][T21327] 9pnet: Could not find request transport: fdrfdno-0x0000000000000003
[ 1150.985127][T21329] FAULT_INJECTION: forcing a failure.
[ 1150.985127][T21329] name failslab, interval 1, probability 0, space 0, times 0
[ 1150.998002][T21329] CPU: 1 PID: 21329 Comm: syz.0.6252 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1150.999992][T21333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6254'.
[ 1151.007795][T21329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1151.007809][T21329] Call Trace:
[ 1151.007815][T21329]  <TASK>
[ 1151.007822][T21329]  dump_stack_lvl+0x151/0x1c0
[ 1151.007854][T21329]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1151.007874][T21329]  dump_stack+0x15/0x20
[ 1151.007887][T21329]  should_fail+0x3c6/0x510
[ 1151.007903][T21329]  __should_failslab+0xa4/0xe0
[ 1151.007920][T21329]  should_failslab+0x9/0x20
[ 1151.007937][T21329]  slab_pre_alloc_hook+0x37/0xd0
[ 1151.007954][T21329]  ? alloc_skb_with_frags+0xa6/0x680
[ 1151.069462][T21329]  __kmalloc_track_caller+0x6c/0x2c0
[ 1151.074585][T21329]  ? alloc_skb_with_frags+0xa6/0x680
[ 1151.079697][T21329]  ? alloc_skb_with_frags+0xa6/0x680
[ 1151.084817][T21329]  __alloc_skb+0x10c/0x550
[ 1151.089071][T21329]  alloc_skb_with_frags+0xa6/0x680
[ 1151.094017][T21329]  sock_alloc_send_pskb+0x915/0xa50
[ 1151.099052][T21329]  ? sock_kzfree_s+0x60/0x60
[ 1151.103480][T21329]  sock_alloc_send_skb+0x32/0x40
[ 1151.108250][T21329]  __ip_append_data+0x2390/0x3730
[ 1151.113121][T21329]  ? stack_trace_save+0x1c0/0x1c0
[ 1151.117977][T21329]  ? ip_skb_dst_mtu+0x630/0x630
[ 1151.122660][T21329]  ? ip_setup_cork+0x8d0/0x8d0
[ 1151.127258][T21329]  ? ip_setup_cork+0x567/0x8d0
[ 1151.131868][T21329]  ip_make_skb+0x1a2/0x420
[ 1151.136113][T21329]  ? ip_skb_dst_mtu+0x630/0x630
[ 1151.140804][T21329]  ? ip_flush_pending_frames+0x250/0x250
[ 1151.146266][T21329]  ? __kasan_check_read+0x11/0x20
[ 1151.151127][T21329]  ? ipv4_dst_check+0xe3/0x150
[ 1151.155746][T21329]  udp_sendmsg+0x1ccb/0x2aa0
[ 1151.160171][T21329]  ? ip_skb_dst_mtu+0x630/0x630
[ 1151.164842][T21329]  ? udp_cmsg_send+0x3a0/0x3a0
[ 1151.169447][T21329]  ? __kernel_text_address+0x9b/0x110
[ 1151.174648][T21329]  ? inet_send_prepare+0x5e/0x4a0
[ 1151.179506][T21329]  inet_sendmsg+0xa1/0xc0
[ 1151.183673][T21329]  ? inet_send_prepare+0x4a0/0x4a0
[ 1151.188619][T21329]  ____sys_sendmsg+0x59e/0x8f0
[ 1151.193223][T21329]  ? __sys_sendmsg_sock+0x40/0x40
[ 1151.198080][T21329]  ? import_iovec+0xe5/0x120
[ 1151.202507][T21329]  ___sys_sendmsg+0x252/0x2e0
[ 1151.207023][T21329]  ? __sys_sendmsg+0x260/0x260
[ 1151.211625][T21329]  ? __kasan_check_write+0x14/0x20
[ 1151.216565][T21329]  ? proc_fail_nth_write+0x20b/0x290
[ 1151.221695][T21329]  ? __fdget+0x1bc/0x240
[ 1151.225767][T21329]  __sys_sendmmsg+0x2bf/0x530
[ 1151.230280][T21329]  ? __ia32_sys_sendmsg+0x90/0x90
[ 1151.235140][T21329]  ? mutex_unlock+0xb2/0x260
[ 1151.239570][T21329]  ? __kasan_check_write+0x14/0x20
[ 1151.244516][T21329]  ? __ia32_sys_read+0x90/0x90
[ 1151.249202][T21329]  ? debug_smp_processor_id+0x17/0x20
[ 1151.254407][T21329]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1151.260310][T21329]  __x64_sys_sendmmsg+0xa0/0xb0
[ 1151.265110][T21329]  x64_sys_call+0x81d/0x9a0
[ 1151.269441][T21329]  do_syscall_64+0x3b/0xb0
[ 1151.273704][T21329]  ? clear_bhb_loop+0x35/0x90
[ 1151.278207][T21329]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1151.283935][T21329] RIP: 0033:0x7f9fe1cb3d29
[ 1151.288187][T21329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1151.307627][T21329] RSP: 002b:00007f9fe0325038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1151.315871][T21329] RAX: ffffffffffffffda RBX: 00007f9fe1ea3fa0 RCX: 00007f9fe1cb3d29
[ 1151.323682][T21329] RDX: 0000000000000002 RSI: 0000000020004d00 RDI: 0000000000000003
[ 1151.331495][T21329] RBP: 00007f9fe0325090 R08: 0000000000000000 R09: 0000000000000000
[ 1151.339305][T21329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1151.347117][T21329] R13: 0000000000000000 R14: 00007f9fe1ea3fa0 R15: 00007ffd348c3a38
[ 1151.354936][T21329]  </TASK>
[ 1151.524399][T21339] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6256'.
[ 1151.545946][T21342] IPv6: syztnl0: Disabled Multicast RS
[ 1151.803357][T21369] binder: BINDER_SET_CONTEXT_MGR already set
[ 1151.809338][T21369] binder: 21368:21369 ioctl 4018620d 20000040 returned -16
[ 1151.993454][T21382] IPv6: syztnl0: Disabled Multicast RS
[ 1152.157080][ T3835] usb 2-1: new high-speed USB device number 65 using dummy_hcd
[ 1152.279250][T20044] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1152.432148][ T3835] usb 2-1: Using ep0 maxpacket: 16
[ 1152.523721][T20044] usb 3-1: Using ep0 maxpacket: 16
[ 1152.564423][ T3835] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1152.576604][ T3835] usb 2-1: config 0 has no interfaces?
[ 1152.582089][ T3835] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1152.591162][ T3835] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1152.610393][ T3835] usb 2-1: config 0 descriptor??
[ 1152.645935][T20044] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1152.663266][T20044] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1152.691418][T21397] FAULT_INJECTION: forcing a failure.
[ 1152.691418][T21397] name failslab, interval 1, probability 0, space 0, times 0
[ 1152.704018][T21397] CPU: 1 PID: 21397 Comm: syz.0.6279 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1152.713818][T21397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1152.723705][T21397] Call Trace:
[ 1152.726827][T21397]  <TASK>
[ 1152.729606][T21397]  dump_stack_lvl+0x151/0x1c0
[ 1152.734129][T21397]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1152.739594][T21397]  ? 0xffffffffa0018000
[ 1152.743580][T21397]  ? is_bpf_text_address+0x172/0x190
[ 1152.748700][T21397]  ? stack_trace_save+0x1c0/0x1c0
[ 1152.753564][T21397]  dump_stack+0x15/0x20
[ 1152.757550][T21397]  should_fail+0x3c6/0x510
[ 1152.761803][T21397]  __should_failslab+0xa4/0xe0
[ 1152.766404][T21397]  ? kvm_mmu_topup_memory_cache+0xe5/0x2a0
[ 1152.772045][T21397]  should_failslab+0x9/0x20
[ 1152.776384][T21397]  slab_pre_alloc_hook+0x37/0xd0
[ 1152.781158][T21397]  ? kvm_mmu_topup_memory_cache+0xe5/0x2a0
[ 1152.786799][T21397]  kmem_cache_alloc+0x44/0x250
[ 1152.791400][T21397]  kvm_mmu_topup_memory_cache+0xe5/0x2a0
[ 1152.796871][T21397]  kvm_mmu_load+0xdf/0x2120
[ 1152.801210][T21397]  ? memset+0x35/0x40
[ 1152.805024][T21397]  ? vmx_flush_tlb_all+0xc2/0x380
[ 1152.809886][T21397]  ? kvm_apic_accept_events+0x5cd/0x5e0
[ 1152.815268][T21397]  ? __kasan_check_write+0x14/0x20
[ 1152.820213][T21397]  ? kvm_mmu_unload+0xe0/0xe0
[ 1152.824727][T21397]  ? kvm_apic_has_interrupt+0x9d0/0xa70
[ 1152.830110][T21397]  ? kvm_lapic_enable_pv_eoi+0x150/0x150
[ 1152.835580][T21397]  vcpu_enter_guest+0x832b/0x8ed0
[ 1152.840439][T21397]  ? avc_has_perm+0x16f/0x260
[ 1152.844951][T21397]  ? local_bh_enable+0x30/0x30
[ 1152.849553][T21397]  ? 0xffffffffa0018000
[ 1152.853542][T21397]  ? is_bpf_text_address+0x172/0x190
[ 1152.858667][T21397]  ? stack_trace_save+0x1c0/0x1c0
[ 1152.863526][T21397]  ? __kernel_text_address+0x9b/0x110
[ 1152.868733][T21397]  ? unwind_get_return_address+0x4d/0x90
[ 1152.874199][T21397]  ? arch_stack_walk+0xf3/0x140
[ 1152.878889][T21397]  ? stack_trace_save+0x113/0x1c0
[ 1152.883748][T21397]  ? stack_trace_snprint+0xf0/0xf0
[ 1152.888695][T21397]  ? __stack_depot_save+0x34/0x470
[ 1152.893642][T21397]  ? kmem_cache_free+0x115/0x330
[ 1152.898414][T21397]  ? vmx_vcpu_load_vmcs+0x4ad/0x7a0
[ 1152.903451][T21397]  ? ____kasan_slab_free+0x126/0x160
[ 1152.908568][T21397]  ? kmem_cache_free+0x115/0x330
[ 1152.913346][T21397]  ? __kasan_check_read+0x11/0x20
[ 1152.918205][T21397]  ? vmx_vcpu_pi_load+0xa5/0x360
[ 1152.922978][T21397]  ? __kasan_check_write+0x14/0x20
[ 1152.927925][T21397]  ? kvm_arch_vcpu_load+0x577/0x760
[ 1152.932959][T21397]  ? local_bh_enable+0x1f/0x30
[ 1152.937560][T21397]  ? kvm_load_guest_fpu+0x13d/0x280
[ 1152.942594][T21397]  kvm_arch_vcpu_ioctl_run+0xc4d/0x2270
[ 1152.947975][T21397]  ? selinux_file_permission+0x2c4/0x570
[ 1152.953444][T21397]  ? ioctl_has_perm+0x1f8/0x560
[ 1152.958131][T21397]  ? __kvm_request_immediate_exit+0x70/0x70
[ 1152.963859][T21397]  kvm_vcpu_ioctl+0x7eb/0xcf0
[ 1152.968371][T21397]  ? kvm_clear_stat_per_vcpu+0x1e0/0x1e0
[ 1152.973837][T21397]  ? selinux_file_ioctl+0x3cc/0x540
[ 1152.978871][T21397]  ? __mutex_lock_slowpath+0x10/0x10
[ 1152.983993][T21397]  ? selinux_file_alloc_security+0x120/0x120
[ 1152.989810][T21397]  ? __fget_files+0x31e/0x380
[ 1152.994324][T21397]  ? security_file_ioctl+0x84/0xb0
[ 1152.999268][T21397]  ? kvm_clear_stat_per_vcpu+0x1e0/0x1e0
[ 1153.004737][T21397]  __se_sys_ioctl+0x114/0x190
[ 1153.009251][T21397]  __x64_sys_ioctl+0x7b/0x90
[ 1153.013676][T21397]  x64_sys_call+0x98/0x9a0
[ 1153.017928][T21397]  do_syscall_64+0x3b/0xb0
[ 1153.022181][T21397]  ? clear_bhb_loop+0x35/0x90
[ 1153.026700][T21397]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1153.032427][T21397] RIP: 0033:0x7f9fe1cb3d29
[ 1153.036681][T21397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1153.056120][T21397] RSP: 002b:00007f9fe0325038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1153.064365][T21397] RAX: ffffffffffffffda RBX: 00007f9fe1ea3fa0 RCX: 00007f9fe1cb3d29
[ 1153.072175][T21397] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[ 1153.079991][T21397] RBP: 00007f9fe0325090 R08: 0000000000000000 R09: 0000000000000000
[ 1153.087800][T21397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1153.095611][T21397] R13: 0000000000000000 R14: 00007f9fe1ea3fa0 R15: 00007ffd348c3a38
[ 1153.103430][T21397]  </TASK>
[ 1153.111771][  T347] usb 2-1: USB disconnect, device number 65
[ 1153.160899][T21400] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1153.167915][T21400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1153.175343][T21400] device bridge_slave_0 entered promiscuous mode
[ 1153.182528][T21400] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1153.189523][T21400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1153.196774][T21400] device bridge_slave_1 entered promiscuous mode
[ 1153.226026][T20044] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1153.235002][T20044] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1153.242862][T20044] usb 3-1: Product: syz
[ 1153.246909][T20044] usb 3-1: Manufacturer: syz
[ 1153.251316][T20044] usb 3-1: SerialNumber: syz
[ 1153.271119][T21400] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1153.277997][T21400] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1153.285049][T21400] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1153.291871][T21400] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1153.319595][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1153.326922][  T320] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1153.334311][  T320] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1153.345080][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1153.353255][  T320] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1153.360119][  T320] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1153.368983][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1153.376932][  T320] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1153.383772][  T320] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1153.397670][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1153.406788][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1153.420562][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1153.433672][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1153.441612][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1153.448966][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1153.457535][T21400] device veth0_vlan entered promiscuous mode
[ 1153.469556][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1153.478720][T21400] device veth1_macvtap entered promiscuous mode
[ 1153.488743][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1153.498750][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1153.592289][T20044] usb 3-1: 0:2 : does not exist
[ 1153.613756][T18946] device bridge_slave_1 left promiscuous mode
[ 1153.619771][T18946] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1153.627308][T18946] device bridge_slave_0 left promiscuous mode
[ 1153.633303][   T30] kauditd_printk_skb: 111 callbacks suppressed
[ 1153.633316][   T30] audit: type=1400 audit(1734766893.177:1225): avc:  denied  { connect } for  pid=21415 comm="syz.1.6285" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1153.640840][T20044] usb 3-1: USB disconnect, device number 56
[ 1153.662102][T21417] syz.4.6284[21417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1153.668477][T21417] syz.4.6284[21417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1153.675353][T18946] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1153.699016][T18946] device veth0_vlan left promiscuous mode
[ 1153.888865][T19363] udevd[19363]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1153.948062][T21154] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[ 1153.976111][T21441] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=21441 comm=syz.3.6295
[ 1154.003351][T21445] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6297'.
[ 1154.191991][T21154] usb 2-1: Using ep0 maxpacket: 8
[ 1154.260073][   T30] audit: type=1404 audit(1734766893.796:1226): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[ 1154.286150][   T30] audit: type=1404 audit(1734766893.816:1227): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[ 1154.306251][   T30] audit: type=1400 audit(1734766893.836:1228): avc:  denied  { ioctl } for  pid=21415 comm="syz.1.6285" path="/dev/raw-gadget" dev="devtmpfs" ino=250 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1154.314093][T21154] usb 2-1: config 11 has an invalid interface number: 95 but max is 0
[ 1154.353819][   T30] audit: type=1400 audit(1734766893.895:1229): avc:  denied  { execmem } for  pid=21475 comm="syz.2.6310" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 1154.434952][T21154] usb 2-1: config 11 has no interface number 0
[ 1154.441211][T21154] usb 2-1: config 11 interface 95 has no altsetting 0
[ 1154.468623][   T30] audit: type=1400 audit(1734766894.013:1230): avc:  denied  { map_create } for  pid=21478 comm="syz.4.6311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1154.619057][T21154] usb 2-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=dc.4d
[ 1154.694712][T19363] udevd[19363]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[ 1154.711521][T21154] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1154.740065][T21154] usb 2-1: Product: syz
[ 1154.748450][   T30] audit: type=1400 audit(1734766894.062:1231): avc:  denied  { prog_load } for  pid=21478 comm="syz.4.6311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1154.758637][T21154] usb 2-1: Manufacturer: syz
[ 1154.782029][   T30] audit: type=1400 audit(1734766894.072:1232): avc:  denied  { bpf } for  pid=21478 comm="syz.4.6311" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1154.793607][T21154] usb 2-1: SerialNumber: syz
[ 1154.837483][   T30] audit: type=1400 audit(1734766894.072:1233): avc:  denied  { perfmon } for  pid=21478 comm="syz.4.6311" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1154.871802][   T30] audit: type=1400 audit(1734766894.082:1234): avc:  denied  { mounton } for  pid=21475 comm="syz.2.6310" path="/81/file0" dev="tmpfs" ino=438 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 1154.925899][T21499] process 'syz.4.6318' launched './file0' with NULL argv: empty string added
[ 1155.210029][T21515] 9pnet: Insufficient options for proto=fd
[ 1155.817158][T21546] FAULT_INJECTION: forcing a failure.
[ 1155.817158][T21546] name failslab, interval 1, probability 0, space 0, times 0
[ 1155.845797][T21546] CPU: 1 PID: 21546 Comm: syz.4.6335 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1155.855625][T21546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1155.865530][T21546] Call Trace:
[ 1155.868642][T21546]  <TASK>
[ 1155.871425][T21546]  dump_stack_lvl+0x151/0x1c0
[ 1155.875934][T21546]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1155.881404][T21546]  dump_stack+0x15/0x20
[ 1155.885390][T21546]  should_fail+0x3c6/0x510
[ 1155.889648][T21546]  __should_failslab+0xa4/0xe0
[ 1155.894246][T21546]  ? __d_alloc+0x2d/0x6c0
[ 1155.898415][T21546]  should_failslab+0x9/0x20
[ 1155.902750][T21546]  slab_pre_alloc_hook+0x37/0xd0
[ 1155.907528][T21546]  ? __d_alloc+0x2d/0x6c0
[ 1155.911691][T21546]  kmem_cache_alloc+0x44/0x250
[ 1155.916291][T21546]  __d_alloc+0x2d/0x6c0
[ 1155.920283][T21546]  ? memcpy+0x56/0x70
[ 1155.924103][T21546]  d_alloc_parallel+0xe6/0x12e0
[ 1155.928795][T21546]  ? down_read+0xd50/0x1900
[ 1155.933131][T21546]  ? d_hash_and_lookup+0x1e0/0x1e0
[ 1155.938076][T21546]  ? __down_common+0x550/0x550
[ 1155.942678][T21546]  ? __kasan_check_write+0x14/0x20
[ 1155.947621][T21546]  ? lockref_get_not_dead+0xc3/0x180
[ 1155.952745][T21546]  __lookup_slow+0x154/0x400
[ 1155.957171][T21546]  ? lookup_one_len+0x2c0/0x2c0
[ 1155.961943][T21546]  ? lookup_fast+0x306/0x7b0
[ 1155.966378][T21546]  ? handle_dots+0x1030/0x1030
[ 1155.970970][T21546]  lookup_slow+0x5a/0x80
[ 1155.975051][T21546]  walk_component+0x48c/0x610
[ 1155.979565][T21546]  ? nd_alloc_stack+0xf0/0xf0
[ 1155.984075][T21546]  ? handle_lookup_down+0x130/0x130
[ 1155.989112][T21546]  path_lookupat+0x16d/0x450
[ 1155.993539][T21546]  filename_lookup+0x230/0x5c0
[ 1155.998141][T21546]  ? hashlen_string+0x120/0x120
[ 1156.002833][T21546]  ? getname_flags+0x1fd/0x520
[ 1156.007425][T21546]  user_path_at_empty+0x43/0x1a0
[ 1156.012200][T21546]  __se_sys_mount+0x285/0x3b0
[ 1156.016713][T21546]  ? __x64_sys_mount+0xd0/0xd0
[ 1156.021313][T21546]  ? debug_smp_processor_id+0x17/0x20
[ 1156.026525][T21546]  __x64_sys_mount+0xbf/0xd0
[ 1156.030947][T21546]  x64_sys_call+0x49d/0x9a0
[ 1156.035285][T21546]  do_syscall_64+0x3b/0xb0
[ 1156.039540][T21546]  ? clear_bhb_loop+0x35/0x90
[ 1156.044054][T21546]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1156.049779][T21546] RIP: 0033:0x7f3b89255d29
[ 1156.054034][T21546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1156.073479][T21546] RSP: 002b:00007f3b878c7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1156.081725][T21546] RAX: ffffffffffffffda RBX: 00007f3b89445fa0 RCX: 00007f3b89255d29
[ 1156.089533][T21546] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000000
[ 1156.097342][T21546] RBP: 00007f3b878c7090 R08: 0000000000000000 R09: 0000000000000000
[ 1156.105153][T21546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1156.112963][T21546] R13: 0000000000000000 R14: 00007f3b89445fa0 R15: 00007ffef8867da8
[ 1156.120783][T21546]  </TASK>
[ 1157.367197][T21598] syz.2.6353[21598] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1157.367273][T21598] syz.2.6353[21598] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1157.455252][T21601] 9pnet: Insufficient options for proto=fd
[ 1157.480590][T21154] usb 2-1: USB disconnect, device number 66
[ 1157.885936][T21626] 9pnet: Insufficient options for proto=fd
[ 1158.730407][   T30] kauditd_printk_skb: 179 callbacks suppressed
[ 1158.730423][   T30] audit: type=1400 audit(1734766898.214:1414): avc:  denied  { read } for  pid=21643 comm="syz.3.6367" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1158.770216][T21646] FAULT_INJECTION: forcing a failure.
[ 1158.770216][T21646] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1158.797601][   T30] audit: type=1400 audit(1734766898.214:1415): avc:  denied  { open } for  pid=21643 comm="syz.3.6367" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1158.798135][T21646] CPU: 1 PID: 21646 Comm: syz.3.6368 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1158.830668][T21646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1158.840563][T21646] Call Trace:
[ 1158.843688][T21646]  <TASK>
[ 1158.846465][T21646]  dump_stack_lvl+0x151/0x1c0
[ 1158.850977][T21646]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1158.856447][T21646]  ? _raw_spin_lock+0x1b0/0x1b0
[ 1158.856566][   T30] audit: type=1400 audit(1734766898.253:1416): avc:  denied  { read } for  pid=21645 comm="syz.3.6368" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1158.861130][T21646]  dump_stack+0x15/0x20
[ 1158.861145][T21646]  should_fail+0x3c6/0x510
[ 1158.891949][T21646]  should_fail_usercopy+0x1a/0x20
[ 1158.896804][T21646]  _copy_from_user+0x20/0xd0
[ 1158.901233][T21646]  binder_ioctl_write_read+0x121/0x7300
[ 1158.901596][   T30] audit: type=1400 audit(1734766898.253:1417): avc:  denied  { open } for  pid=21645 comm="syz.3.6368" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1158.906614][T21646]  ? 0xffffffffa0018000
[ 1158.906631][T21646]  ? stack_trace_save+0x1c0/0x1c0
[ 1158.930903][   T30] audit: type=1400 audit(1734766898.253:1418): avc:  denied  { ioctl } for  pid=21645 comm="syz.3.6368" path="/dev/binderfs/binder0" dev="binder" ino=13 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1158.934383][T21646]  ? __kernel_text_address+0x9b/0x110
[ 1158.934405][T21646]  ? unwind_get_return_address+0x4d/0x90
[ 1158.939488][   T30] audit: type=1400 audit(1734766898.253:1419): avc:  denied  { set_context_mgr } for  pid=21645 comm="syz.3.6368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1158.964502][T21646]  ? arch_stack_walk+0xf3/0x140
[ 1158.964529][T21646]  ? stack_trace_save+0x113/0x1c0
[ 1158.964546][T21646]  ? avc_has_extended_perms+0x90b/0x10f0
[ 1158.964563][T21646]  ? binder_has_work_ilocked+0x4f0/0x4f0
[ 1158.964577][T21646]  ? memcpy+0x56/0x70
[ 1158.964592][T21646]  ? avc_has_extended_perms+0xad7/0x10f0
[ 1158.964608][T21646]  ? kasan_set_free_info+0x23/0x40
[ 1158.964622][T21646]  ? _raw_spin_lock+0x1b0/0x1b0
[ 1158.964635][T21646]  ? do_sys_openat2+0x1fc/0x820
[ 1158.964647][T21646]  ? avc_flush+0x290/0x290
[ 1158.964661][T21646]  ? _kstrtoull+0x3a0/0x4a0
[ 1158.964678][T21646]  ? __kasan_check_write+0x14/0x20
[ 1158.964693][T21646]  ? _raw_spin_lock+0xa4/0x1b0
[ 1158.964707][T21646]  ? _raw_spin_trylock_bh+0x190/0x190
[ 1158.964720][T21646]  ? kstrtol_from_user+0x310/0x310
[ 1158.964736][T21646]  ? _raw_spin_unlock+0x4d/0x70
[ 1158.964751][T21646]  binder_ioctl+0x371/0x2640
[ 1158.964768][T21646]  ? proc_fail_nth_write+0x20b/0x290
[ 1158.964783][T21646]  ? selinux_file_permission+0x2c4/0x570
[ 1158.964801][T21646]  ? ioctl_has_perm+0x3f5/0x560
[ 1158.964815][T21646]  ? binder_poll+0x2e0/0x2e0
[ 1158.964830][T21646]  ? has_cap_mac_admin+0x3c0/0x3c0
[ 1158.994923][   T30] audit: type=1400 audit(1734766898.253:1420): avc:  denied  { map } for  pid=21645 comm="syz.3.6368" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1158.995173][T21646]  ? putname+0xfa/0x150
[ 1159.129009][T21646]  ? file_end_write+0x1c0/0x1c0
[ 1159.133701][T21646]  ? selinux_file_ioctl+0x3cc/0x540
[ 1159.138734][T21646]  ? __mutex_lock_slowpath+0x10/0x10
[ 1159.143846][T21646]  ? selinux_file_alloc_security+0x120/0x120
[ 1159.149664][T21646]  ? __fget_files+0x31e/0x380
[ 1159.154178][T21646]  ? security_file_ioctl+0x84/0xb0
[ 1159.159128][T21646]  ? binder_poll+0x2e0/0x2e0
[ 1159.163556][T21646]  __se_sys_ioctl+0x114/0x190
[ 1159.168064][T21646]  __x64_sys_ioctl+0x7b/0x90
[ 1159.172489][T21646]  x64_sys_call+0x98/0x9a0
[ 1159.176739][T21646]  do_syscall_64+0x3b/0xb0
[ 1159.180992][T21646]  ? clear_bhb_loop+0x35/0x90
[ 1159.185507][T21646]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1159.191233][T21646] RIP: 0033:0x7f1c63050d29
[ 1159.195487][T21646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1159.214927][T21646] RSP: 002b:00007f1c616c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1159.223173][T21646] RAX: ffffffffffffffda RBX: 00007f1c63240fa0 RCX: 00007f1c63050d29
[ 1159.230982][T21646] RDX: 0000000020000380 RSI: 00000000c0306201 RDI: 0000000000000005
[ 1159.238795][T21646] RBP: 00007f1c616c2090 R08: 0000000000000000 R09: 0000000000000000
[ 1159.246606][T21646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1159.254418][T21646] R13: 0000000000000000 R14: 00007f1c63240fa0 R15: 00007ffdeba41f58
[ 1159.262244][T21646]  </TASK>
[ 1159.284107][T21646] binder: 21645:21646 ioctl c0306201 20000380 returned -14
[ 1159.291483][   T30] audit: type=1400 audit(1734766898.757:1421): avc:  denied  { call } for  pid=21645 comm="syz.3.6368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1159.386864][   T30] audit: type=1400 audit(1734766898.806:1422): avc:  denied  { bind } for  pid=21653 comm="syz.2.6370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1159.440688][T21668] FAULT_INJECTION: forcing a failure.
[ 1159.440688][T21668] name failslab, interval 1, probability 0, space 0, times 0
[ 1159.459593][   T30] audit: type=1400 audit(1734766898.816:1423): avc:  denied  { listen } for  pid=21653 comm="syz.2.6370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1159.487182][T21668] CPU: 1 PID: 21668 Comm: syz.4.6377 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1159.497005][T21668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1159.506898][T21668] Call Trace:
[ 1159.510026][T21668]  <TASK>
[ 1159.512802][T21668]  dump_stack_lvl+0x151/0x1c0
[ 1159.517314][T21668]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1159.522784][T21668]  ? __kasan_check_write+0x14/0x20
[ 1159.527730][T21668]  ? proc_fail_nth_write+0x20b/0x290
[ 1159.532849][T21668]  dump_stack+0x15/0x20
[ 1159.536842][T21668]  should_fail+0x3c6/0x510
[ 1159.541096][T21668]  __should_failslab+0xa4/0xe0
[ 1159.545694][T21668]  ? sock_alloc_inode+0x1b/0xb0
[ 1159.550380][T21668]  should_failslab+0x9/0x20
[ 1159.554720][T21668]  slab_pre_alloc_hook+0x37/0xd0
[ 1159.559495][T21668]  ? sock_alloc_inode+0x1b/0xb0
[ 1159.564196][T21668]  kmem_cache_alloc+0x44/0x250
[ 1159.568788][T21668]  ? sockfs_init_fs_context+0xb0/0xb0
[ 1159.573989][T21668]  sock_alloc_inode+0x1b/0xb0
[ 1159.578501][T21668]  ? sockfs_init_fs_context+0xb0/0xb0
[ 1159.583714][T21668]  new_inode_pseudo+0x64/0x220
[ 1159.588313][T21668]  do_accept+0x162/0x6f0
[ 1159.592388][T21668]  ? __kasan_check_write+0x14/0x20
[ 1159.597347][T21668]  ? _raw_spin_trylock_bh+0x190/0x190
[ 1159.602544][T21668]  ? __ia32_sys_listen+0x70/0x70
[ 1159.607329][T21668]  __sys_accept4+0x108/0x180
[ 1159.611745][T21668]  __x64_sys_accept4+0x9a/0xb0
[ 1159.616344][T21668]  x64_sys_call+0x798/0x9a0
[ 1159.620686][T21668]  do_syscall_64+0x3b/0xb0
[ 1159.624939][T21668]  ? clear_bhb_loop+0x35/0x90
[ 1159.629453][T21668]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1159.635186][T21668] RIP: 0033:0x7f3b89255d29
[ 1159.639440][T21668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1159.658878][T21668] RSP: 002b:00007f3b878c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[ 1159.667120][T21668] RAX: ffffffffffffffda RBX: 00007f3b89445fa0 RCX: 00007f3b89255d29
[ 1159.674929][T21668] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1159.682741][T21668] RBP: 00007f3b878c7090 R08: 0000000000000000 R09: 0000000000000000
[ 1159.690554][T21668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1159.698364][T21668] R13: 0000000000000000 R14: 00007f3b89445fa0 R15: 00007ffef8867da8
[ 1159.706191][T21668]  </TASK>
[ 1159.711700][T21678] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6380'.
[ 1160.336147][T21709] FAULT_INJECTION: forcing a failure.
[ 1160.336147][T21709] name failslab, interval 1, probability 0, space 0, times 0
[ 1160.348817][T21709] CPU: 0 PID: 21709 Comm: syz.4.6391 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1160.358617][T21709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1160.368510][T21709] Call Trace:
[ 1160.371634][T21709]  <TASK>
[ 1160.374414][T21709]  dump_stack_lvl+0x151/0x1c0
[ 1160.378925][T21709]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1160.384393][T21709]  ? _raw_spin_lock+0x1b0/0x1b0
[ 1160.389082][T21709]  dump_stack+0x15/0x20
[ 1160.393073][T21709]  should_fail+0x3c6/0x510
[ 1160.397325][T21709]  __should_failslab+0xa4/0xe0
[ 1160.401925][T21709]  ? avc_alloc_node+0x8f/0x500
[ 1160.406523][T21709]  should_failslab+0x9/0x20
[ 1160.410864][T21709]  slab_pre_alloc_hook+0x37/0xd0
[ 1160.415639][T21709]  ? avc_alloc_node+0x8f/0x500
[ 1160.420239][T21709]  kmem_cache_alloc+0x44/0x250
[ 1160.424839][T21709]  avc_alloc_node+0x8f/0x500
[ 1160.429266][T21709]  ? is_bpf_text_address+0x172/0x190
[ 1160.434384][T21709]  ? avc_xperms_free+0x280/0x280
[ 1160.439161][T21709]  ? __kernel_text_address+0x9b/0x110
[ 1160.444368][T21709]  ? unwind_get_return_address+0x4d/0x90
[ 1160.449836][T21709]  avc_update_node+0x31/0xd00
[ 1160.454349][T21709]  avc_denied+0x13f/0x1b0
[ 1160.458516][T21709]  avc_has_perm_noaudit+0x387/0x430
[ 1160.463549][T21709]  ? avc_denied+0x1b0/0x1b0
[ 1160.467893][T21709]  avc_has_perm+0xd2/0x260
[ 1160.472146][T21709]  ? avc_has_perm_noaudit+0x430/0x430
[ 1160.477351][T21709]  sel_write_load+0x1fb/0x5a0
[ 1160.481862][T21709]  ? avc_policy_seqno+0x1b/0x70
[ 1160.486548][T21709]  ? sel_make_dir+0x270/0x270
[ 1160.491063][T21709]  ? fsnotify_perm+0x6a/0x5b0
[ 1160.495576][T21709]  ? security_file_permission+0x86/0xb0
[ 1160.500954][T21709]  ? sel_make_dir+0x270/0x270
[ 1160.505470][T21709]  vfs_write+0x406/0x1110
[ 1160.509635][T21709]  ? putname+0xfa/0x150
[ 1160.513630][T21709]  ? file_end_write+0x1c0/0x1c0
[ 1160.518320][T21709]  ? __kasan_check_write+0x14/0x20
[ 1160.523263][T21709]  ? mutex_lock+0xb6/0x1e0
[ 1160.527514][T21709]  ? wait_for_completion_killable_timeout+0x10/0x10
[ 1160.533941][T21709]  ? __fdget_pos+0x2e7/0x3a0
[ 1160.538363][T21709]  ? ksys_write+0x77/0x2c0
[ 1160.542635][T21709]  ksys_write+0x199/0x2c0
[ 1160.546785][T21709]  ? __ia32_sys_read+0x90/0x90
[ 1160.551385][T21709]  ? debug_smp_processor_id+0x17/0x20
[ 1160.556591][T21709]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1160.562494][T21709]  __x64_sys_write+0x7b/0x90
[ 1160.566919][T21709]  x64_sys_call+0x2f/0x9a0
[ 1160.571172][T21709]  do_syscall_64+0x3b/0xb0
[ 1160.575424][T21709]  ? clear_bhb_loop+0x35/0x90
[ 1160.579939][T21709]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1160.585667][T21709] RIP: 0033:0x7f3b89255d29
[ 1160.589921][T21709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1160.609455][T21709] RSP: 002b:00007f3b878c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1160.617704][T21709] RAX: ffffffffffffffda RBX: 00007f3b89445fa0 RCX: 00007f3b89255d29
[ 1160.625504][T21709] RDX: 0000000000002000 RSI: 0000000020000140 RDI: 0000000000000003
[ 1160.633316][T21709] RBP: 00007f3b878c7090 R08: 0000000000000000 R09: 0000000000000000
[ 1160.641135][T21709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1160.648942][T21709] R13: 0000000000000000 R14: 00007f3b89445fa0 R15: 00007ffef8867da8
[ 1160.656759][T21709]  </TASK>
[ 1160.678140][T21709] SELinux:  policydb string  does not match my string SE Linux
[ 1160.690474][T21709] SELinux: failed to load policy
[ 1160.715673][T21713] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6393'.
[ 1161.293920][T21755] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6408'.
[ 1161.352368][T21764] FAULT_INJECTION: forcing a failure.
[ 1161.352368][T21764] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1161.365475][T21764] CPU: 1 PID: 21764 Comm: syz.0.6410 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1161.375269][T21764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1161.385166][T21764] Call Trace:
[ 1161.388289][T21764]  <TASK>
[ 1161.391065][T21764]  dump_stack_lvl+0x151/0x1c0
[ 1161.395578][T21764]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1161.401046][T21764]  dump_stack+0x15/0x20
[ 1161.405037][T21764]  should_fail+0x3c6/0x510
[ 1161.409293][T21764]  should_fail_usercopy+0x1a/0x20
[ 1161.414150][T21764]  _copy_from_user+0x20/0xd0
[ 1161.418577][T21764]  __sys_bpf+0x1e9/0x760
[ 1161.422660][T21764]  ? fput_many+0x160/0x1b0
[ 1161.426910][T21764]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[ 1161.432124][T21764]  ? debug_smp_processor_id+0x17/0x20
[ 1161.437410][T21764]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1161.443315][T21764]  __x64_sys_bpf+0x7c/0x90
[ 1161.447569][T21764]  x64_sys_call+0x87f/0x9a0
[ 1161.451904][T21764]  do_syscall_64+0x3b/0xb0
[ 1161.456158][T21764]  ? clear_bhb_loop+0x35/0x90
[ 1161.460760][T21764]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1161.466490][T21764] RIP: 0033:0x7f9fe1cb3d29
[ 1161.470742][T21764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1161.490182][T21764] RSP: 002b:00007f9fe0325038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1161.498426][T21764] RAX: ffffffffffffffda RBX: 00007f9fe1ea3fa0 RCX: 00007f9fe1cb3d29
[ 1161.506241][T21764] RDX: 0000000000000018 RSI: 00000000200006c0 RDI: 0000000000000007
[ 1161.514050][T21764] RBP: 00007f9fe0325090 R08: 0000000000000000 R09: 0000000000000000
[ 1161.521861][T21764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1161.529682][T21764] R13: 0000000000000001 R14: 00007f9fe1ea3fa0 R15: 00007ffd348c3a38
[ 1161.537489][T21764]  </TASK>
[ 1161.703755][T21781] FAULT_INJECTION: forcing a failure.
[ 1161.703755][T21781] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1161.749804][T21783] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6418'.
[ 1161.760345][T21781] CPU: 0 PID: 21781 Comm: syz.1.6416 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1161.763001][T21785] cgroup: Unknown subsys name 'fd'
[ 1161.770144][T21781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1161.770158][T21781] Call Trace:
[ 1161.770164][T21781]  <TASK>
[ 1161.770172][T21781]  dump_stack_lvl+0x151/0x1c0
[ 1161.770193][T21781]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1161.770210][T21781]  dump_stack+0x15/0x20
[ 1161.770223][T21781]  should_fail+0x3c6/0x510
[ 1161.770242][T21781]  should_fail_usercopy+0x1a/0x20
[ 1161.770258][T21781]  _copy_from_user+0x20/0xd0
[ 1161.770274][T21781]  usbdev_ioctl+0x1e19/0x5e20
[ 1161.777516][T21783] netlink: 43 bytes leftover after parsing attributes in process `syz.4.6418'.
[ 1161.784996][T21781]  ? usbdev_poll+0x200/0x200
[ 1161.785022][T21781]  ? 0xffffffffa0018000
[ 1161.785033][T21781]  ? stack_trace_save+0x1c0/0x1c0
[ 1161.785051][T21781]  ? __kernel_text_address+0x9b/0x110
[ 1161.785066][T21781]  ? unwind_get_return_address+0x4d/0x90
[ 1161.785084][T21781]  ? arch_stack_walk+0xf3/0x140
[ 1161.785106][T21781]  ? stack_trace_save+0x113/0x1c0
[ 1161.785120][T21781]  ? avc_has_extended_perms+0x90b/0x10f0
[ 1161.785136][T21781]  ? memcpy+0x56/0x70
[ 1161.785152][T21781]  ? avc_has_extended_perms+0xad7/0x10f0
[ 1161.785168][T21781]  ? kasan_set_free_info+0x23/0x40
[ 1161.785182][T21781]  ? __kasan_slab_free+0x11/0x20
[ 1161.785196][T21781]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 1161.785211][T21781]  ? avc_flush+0x290/0x290
[ 1161.793986][T21783] netlink: 'syz.4.6418': attribute type 6 has an invalid length.
[ 1161.795580][T21781]  ? _kstrtoull+0x3a0/0x4a0
[ 1161.801462][T21783] netlink: 'syz.4.6418': attribute type 5 has an invalid length.
[ 1161.805043][T21781]  ? do_vfs_ioctl+0xbc1/0x2a80
[ 1161.805066][T21781]  ? kstrtol_from_user+0x310/0x310
[ 1161.809333][T21783] netlink: 43 bytes leftover after parsing attributes in process `syz.4.6418'.
[ 1161.814155][T21781]  ? __x64_compat_sys_ioctl+0x90/0x90
[ 1161.814179][T21781]  ? __kasan_check_write+0x14/0x20
[ 1161.814196][T21781]  ? proc_fail_nth_write+0x20b/0x290
[ 1161.814209][T21781]  ? selinux_file_permission+0x2c4/0x570
[ 1161.814226][T21781]  ? ioctl_has_perm+0x1f8/0x560
[ 1161.814241][T21781]  ? ioctl_has_perm+0x3f5/0x560
[ 1161.814257][T21781]  ? has_cap_mac_admin+0x3c0/0x3c0
[ 1161.972569][T21781]  ? putname+0xfa/0x150
[ 1161.976541][T21781]  ? file_end_write+0x1c0/0x1c0
[ 1161.981229][T21781]  ? selinux_file_ioctl+0x3cc/0x540
[ 1161.986263][T21781]  ? __mutex_lock_slowpath+0x10/0x10
[ 1161.991383][T21781]  ? selinux_file_alloc_security+0x120/0x120
[ 1161.997202][T21781]  ? __fget_files+0x31e/0x380
[ 1162.001714][T21781]  ? security_file_ioctl+0x84/0xb0
[ 1162.006658][T21781]  ? usbdev_poll+0x200/0x200
[ 1162.011087][T21781]  __se_sys_ioctl+0x114/0x190
[ 1162.015601][T21781]  __x64_sys_ioctl+0x7b/0x90
[ 1162.020026][T21781]  x64_sys_call+0x98/0x9a0
[ 1162.024279][T21781]  do_syscall_64+0x3b/0xb0
[ 1162.028549][T21781]  ? clear_bhb_loop+0x35/0x90
[ 1162.033044][T21781]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1162.038772][T21781] RIP: 0033:0x7fb511567d29
[ 1162.043027][T21781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1162.062467][T21781] RSP: 002b:00007fb50fbd9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1162.070713][T21781] RAX: ffffffffffffffda RBX: 00007fb511757fa0 RCX: 00007fb511567d29
[ 1162.078526][T21781] RDX: 00000000200001c0 RSI: 00000000c0185500 RDI: 0000000000000003
[ 1162.086335][T21781] RBP: 00007fb50fbd9090 R08: 0000000000000000 R09: 0000000000000000
[ 1162.094147][T21781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1162.101960][T21781] R13: 0000000000000000 R14: 00007fb511757fa0 R15: 00007fffaacc8908
[ 1162.109777][T21781]  </TASK>
[ 1162.119752][T21785] usb usb1: usbfs: process 21785 (syz.0.6419) did not claim interface 0 before use
[ 1162.253267][T21814] FAULT_INJECTION: forcing a failure.
[ 1162.253267][T21814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1162.288734][T21814] CPU: 1 PID: 21814 Comm: syz.2.6429 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1162.298552][T21814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1162.308444][T21814] Call Trace:
[ 1162.311573][T21814]  <TASK>
[ 1162.314347][T21814]  dump_stack_lvl+0x151/0x1c0
[ 1162.318861][T21814]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1162.324324][T21814]  ? __kasan_slab_free+0x11/0x20
[ 1162.329101][T21814]  ? do_sys_openat2+0x1fc/0x820
[ 1162.333787][T21814]  ? x64_sys_call+0x6bf/0x9a0
[ 1162.338311][T21814]  dump_stack+0x15/0x20
[ 1162.342296][T21814]  should_fail+0x3c6/0x510
[ 1162.346552][T21814]  should_fail_usercopy+0x1a/0x20
[ 1162.351408][T21814]  _copy_from_user+0x20/0xd0
[ 1162.355833][T21814]  iovec_from_user+0xc7/0x330
[ 1162.360349][T21814]  __import_iovec+0x6d/0x420
[ 1162.364775][T21814]  ? proc_fail_nth_write+0x20b/0x290
[ 1162.369895][T21814]  import_iovec+0xe5/0x120
[ 1162.374149][T21814]  vfs_writev+0x114/0x560
[ 1162.378312][T21814]  ? do_writev+0x340/0x340
[ 1162.382593][T21814]  ? wait_for_completion_killable_timeout+0x10/0x10
[ 1162.388991][T21814]  ? __fdget_pos+0x2e7/0x3a0
[ 1162.393414][T21814]  ? do_writev+0x7b/0x340
[ 1162.397578][T21814]  do_writev+0x1aa/0x340
[ 1162.401660][T21814]  ? do_readv+0x460/0x460
[ 1162.405824][T21814]  ? debug_smp_processor_id+0x17/0x20
[ 1162.411036][T21814]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1162.416933][T21814]  __x64_sys_writev+0x7d/0x90
[ 1162.421447][T21814]  x64_sys_call+0xb4/0x9a0
[ 1162.425699][T21814]  do_syscall_64+0x3b/0xb0
[ 1162.429951][T21814]  ? clear_bhb_loop+0x35/0x90
[ 1162.434465][T21814]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1162.440193][T21814] RIP: 0033:0x7fc96dbe7d29
[ 1162.444447][T21814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1162.463888][T21814] RSP: 002b:00007fc96c259038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1162.472144][T21814] RAX: ffffffffffffffda RBX: 00007fc96ddd7fa0 RCX: 00007fc96dbe7d29
[ 1162.479945][T21814] RDX: 0000000000000001 RSI: 0000000020002800 RDI: 0000000000000003
[ 1162.487756][T21814] RBP: 00007fc96c259090 R08: 0000000000000000 R09: 0000000000000000
[ 1162.495568][T21814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1162.503379][T21814] R13: 0000000000000000 R14: 00007fc96ddd7fa0 R15: 00007fff58c9e4e8
[ 1162.511196][T21814]  </TASK>
[ 1162.652380][T21827] FAULT_INJECTION: forcing a failure.
[ 1162.652380][T21827] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1162.656750][T21829] x_tables: duplicate underflow at hook 1
[ 1162.720917][T21827] CPU: 0 PID: 21827 Comm: syz.3.6433 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1162.730729][T21827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1162.740622][T21827] Call Trace:
[ 1162.743743][T21827]  <TASK>
[ 1162.746521][T21827]  dump_stack_lvl+0x151/0x1c0
[ 1162.751038][T21827]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1162.756502][T21827]  ? do_vfs_ioctl+0x1927/0x2a80
[ 1162.761185][T21827]  ? do_vfs_ioctl+0x1a90/0x2a80
[ 1162.765873][T21827]  dump_stack+0x15/0x20
[ 1162.769868][T21827]  should_fail+0x3c6/0x510
[ 1162.774127][T21827]  should_fail_usercopy+0x1a/0x20
[ 1162.778978][T21827]  _copy_to_user+0x20/0x90
[ 1162.783232][T21827]  simple_read_from_buffer+0xc7/0x150
[ 1162.788436][T21827]  proc_fail_nth_read+0x1a3/0x210
[ 1162.793299][T21827]  ? proc_fault_inject_write+0x390/0x390
[ 1162.798766][T21827]  ? fsnotify_perm+0x269/0x5b0
[ 1162.803366][T21827]  ? security_file_permission+0x86/0xb0
[ 1162.808749][T21827]  ? proc_fault_inject_write+0x390/0x390
[ 1162.814223][T21827]  vfs_read+0x27d/0xd40
[ 1162.818209][T21827]  ? kernel_read+0x1f0/0x1f0
[ 1162.822636][T21827]  ? __kasan_check_write+0x14/0x20
[ 1162.827583][T21827]  ? mutex_lock+0xb6/0x1e0
[ 1162.831833][T21827]  ? wait_for_completion_killable_timeout+0x10/0x10
[ 1162.838258][T21827]  ? __fdget_pos+0x2e7/0x3a0
[ 1162.842687][T21827]  ? ksys_read+0x77/0x2c0
[ 1162.846850][T21827]  ksys_read+0x199/0x2c0
[ 1162.850931][T21827]  ? vfs_write+0x1110/0x1110
[ 1162.855355][T21827]  ? debug_smp_processor_id+0x17/0x20
[ 1162.860561][T21827]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1162.866467][T21827]  __x64_sys_read+0x7b/0x90
[ 1162.870805][T21827]  x64_sys_call+0x28/0x9a0
[ 1162.875060][T21827]  do_syscall_64+0x3b/0xb0
[ 1162.879309][T21827]  ? clear_bhb_loop+0x35/0x90
[ 1162.883824][T21827]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1162.889552][T21827] RIP: 0033:0x7f1c6304f73c
[ 1162.893806][T21827] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1162.913246][T21827] RSP: 002b:00007f1c616c2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1162.921492][T21827] RAX: ffffffffffffffda RBX: 00007f1c63240fa0 RCX: 00007f1c6304f73c
[ 1162.929302][T21827] RDX: 000000000000000f RSI: 00007f1c616c20a0 RDI: 0000000000000004
[ 1162.937113][T21827] RBP: 00007f1c616c2090 R08: 0000000000000000 R09: 0000000000000000
[ 1162.944927][T21827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1162.952738][T21827] R13: 0000000000000000 R14: 00007f1c63240fa0 R15: 00007ffdeba41f58
[ 1162.960558][T21827]  </TASK>
[ 1163.286878][T21873] FAULT_INJECTION: forcing a failure.
[ 1163.286878][T21873] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1163.311027][T21873] CPU: 1 PID: 21873 Comm: syz.1.6453 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1163.320836][T21873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1163.330728][T21873] Call Trace:
[ 1163.333939][T21873]  <TASK>
[ 1163.336716][T21873]  dump_stack_lvl+0x151/0x1c0
[ 1163.341228][T21873]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1163.346700][T21873]  ? next_uptodate_page+0xb68/0xb90
[ 1163.351729][T21873]  ? xas_find+0x6ef/0x820
[ 1163.355990][T21873]  dump_stack+0x15/0x20
[ 1163.359973][T21873]  should_fail+0x3c6/0x510
[ 1163.364228][T21873]  should_fail_alloc_page+0x5a/0x80
[ 1163.369263][T21873]  prepare_alloc_pages+0x15c/0x700
[ 1163.374212][T21873]  ? __alloc_pages_bulk+0xe40/0xe40
[ 1163.379243][T21873]  __alloc_pages+0x18c/0x8f0
[ 1163.383669][T21873]  ? prep_new_page+0x110/0x110
[ 1163.388269][T21873]  ? __kasan_check_write+0x14/0x20
[ 1163.393218][T21873]  ? mutex_lock+0xb6/0x1e0
[ 1163.397475][T21873]  ? kasan_save_stack+0x4b/0x60
[ 1163.402155][T21873]  ? kasan_save_stack+0x3b/0x60
[ 1163.406843][T21873]  pipe_write+0x551/0x1930
[ 1163.411096][T21873]  ? do_handle_mm_fault+0x1807/0x2400
[ 1163.416305][T21873]  ? pipe_read+0x1040/0x1040
[ 1163.420731][T21873]  ? selinux_file_permission+0x450/0x570
[ 1163.426197][T21873]  ? fsnotify_perm+0x6a/0x5b0
[ 1163.430711][T21873]  ? iov_iter_init+0x53/0x190
[ 1163.435232][T21873]  vfs_write+0xd5d/0x1110
[ 1163.439390][T21873]  ? file_end_write+0x1c0/0x1c0
[ 1163.444079][T21873]  ? __fdget_pos+0x209/0x3a0
[ 1163.448502][T21873]  ? ksys_write+0x77/0x2c0
[ 1163.452758][T21873]  ksys_write+0x199/0x2c0
[ 1163.456922][T21873]  ? exc_page_fault+0x47a/0x7f0
[ 1163.461610][T21873]  ? __ia32_sys_read+0x90/0x90
[ 1163.466214][T21873]  __x64_sys_write+0x7b/0x90
[ 1163.470636][T21873]  x64_sys_call+0x2f/0x9a0
[ 1163.474890][T21873]  do_syscall_64+0x3b/0xb0
[ 1163.479140][T21873]  ? clear_bhb_loop+0x35/0x90
[ 1163.483657][T21873]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1163.489384][T21873] RIP: 0033:0x7fb5115667df
[ 1163.493638][T21873] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1163.513078][T21873] RSP: 002b:00007fb50fbd6d30 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1163.521322][T21873] RAX: ffffffffffffffda RBX: 0000000000000029 RCX: 00007fb5115667df
[ 1163.529134][T21873] RDX: 0000000000000029 RSI: 00007fb50fbd6f30 RDI: 0000000000000002
[ 1163.536947][T21873] RBP: 00007fb50fbd6f30 R08: 0000000000000000 R09: 0000000000000000
[ 1163.544756][T21873] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000029
[ 1163.552581][T21873] R13: 00007fb51172d620 R14: 0000000000000029 R15: 00007fb51172ec80
[ 1163.560387][T21873]  </TASK>
[ 1163.812638][   T30] kauditd_printk_skb: 490 callbacks suppressed
[ 1163.812663][   T30] audit: type=1326 audit(1734766903.241:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21902 comm="syz.4.6465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f3b89255d29 code=0x7ffc0000
[ 1163.875972][   T30] audit: type=1326 audit(1734766903.241:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21896 comm="syz.4.6465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b89255d29 code=0x7ffc0000
[ 1163.919141][   T30] audit: type=1326 audit(1734766903.241:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21896 comm="syz.4.6465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b89255d29 code=0x7ffc0000
[ 1163.957816][T21914] FAULT_INJECTION: forcing a failure.
[ 1163.957816][T21914] name failslab, interval 1, probability 0, space 0, times 0
[ 1163.959345][   T30] audit: type=1400 audit(1734766903.251:1917): avc:  denied  { read } for  pid=83 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1163.989666][T21914] CPU: 0 PID: 21914 Comm: syz.4.6470 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1163.998841][   T30] audit: type=1400 audit(1734766903.271:1918): avc:  denied  { read } for  pid=83 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1164.001645][T21914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1164.001656][T21914] Call Trace:
[ 1164.001661][T21914]  <TASK>
[ 1164.001667][T21914]  dump_stack_lvl+0x151/0x1c0
[ 1164.001688][T21914]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1164.040274][   T30] audit: type=1400 audit(1734766903.291:1919): avc:  denied  { prog_load } for  pid=21909 comm="syz.4.6468" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1164.043567][T21914]  ? fsnotify_perm+0x6a/0x5b0
[ 1164.060361][   T30] audit: type=1400 audit(1734766903.291:1920): avc:  denied  { write } for  pid=21909 comm="syz.4.6468" name="vsock" dev="devtmpfs" ino=264 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=0
[ 1164.067967][T21914]  dump_stack+0x15/0x20
[ 1164.067996][T21914]  should_fail+0x3c6/0x510
[ 1164.068014][T21914]  __should_failslab+0xa4/0xe0
[ 1164.085402][   T30] audit: type=1400 audit(1734766903.291:1921): avc:  denied  { read } for  pid=21909 comm="syz.4.6468" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[ 1164.094954][T21914]  ? getname_flags+0xba/0x520
[ 1164.094980][T21914]  should_failslab+0x9/0x20
[ 1164.094996][T21914]  slab_pre_alloc_hook+0x37/0xd0
[ 1164.095013][T21914]  ? getname_flags+0xba/0x520
[ 1164.095025][T21914]  kmem_cache_alloc+0x44/0x250
[ 1164.109225][   T30] audit: type=1400 audit(1734766903.330:1922): avc:  denied  { read } for  pid=83 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1164.130288][T21914]  getname_flags+0xba/0x520
[ 1164.130320][T21914]  user_path_at_empty+0x2d/0x1a0
[ 1164.130336][T21914]  path_setxattr+0xae/0x2a0
[ 1164.130352][T21914]  ? simple_xattr_list_add+0x120/0x120
[ 1164.130367][T21914]  ? debug_smp_processor_id+0x17/0x20
[ 1164.130383][T21914]  __x64_sys_setxattr+0xc5/0xe0
[ 1164.130399][T21914]  x64_sys_call+0x4ff/0x9a0
[ 1164.130414][T21914]  do_syscall_64+0x3b/0xb0
[ 1164.130427][T21914]  ? clear_bhb_loop+0x35/0x90
[ 1164.130442][T21914]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1164.130456][T21914] RIP: 0033:0x7f3b89255d29
[ 1164.169406][   T30] audit: type=1400 audit(1734766903.340:1923): avc:  denied  { prog_load } for  pid=21911 comm="syz.4.6469" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1164.174763][T21914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1164.174780][T21914] RSP: 002b:00007f3b878c7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[ 1164.174798][T21914] RAX: ffffffffffffffda RBX: 00007f3b89445fa0 RCX: 00007f3b89255d29
[ 1164.174809][T21914] RDX: 0000000020000380 RSI: 0000000020000240 RDI: 0000000020000180
[ 1164.174819][T21914] RBP: 00007f3b878c7090 R08: 0000000000000003 R09: 0000000000000000
[ 1164.174829][T21914] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1164.174838][T21914] R13: 0000000000000000 R14: 00007f3b89445fa0 R15: 00007ffef8867da8
[ 1164.174855][T21914]  </TASK>
[ 1164.261195][T21941] FAULT_INJECTION: forcing a failure.
[ 1164.261195][T21941] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1164.332938][T21941] CPU: 0 PID: 21941 Comm: syz.4.6482 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1164.332960][T21941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1164.332969][T21941] Call Trace:
[ 1164.332974][T21941]  <TASK>
[ 1164.332981][T21941]  dump_stack_lvl+0x151/0x1c0
[ 1164.333001][T21941]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1164.333026][T21941]  ? arch_stack_walk+0xf3/0x140
[ 1164.333048][T21941]  dump_stack+0x15/0x20
[ 1164.333062][T21941]  should_fail+0x3c6/0x510
[ 1164.333082][T21941]  should_fail_usercopy+0x1a/0x20
[ 1164.333098][T21941]  _copy_from_user+0x20/0xd0
[ 1164.333115][T21941]  __copy_msghdr_from_user+0xaf/0x7c0
[ 1164.333135][T21941]  ? __stack_depot_save+0x34/0x470
[ 1164.333152][T21941]  ? __ia32_sys_shutdown+0x70/0x70
[ 1164.333167][T21941]  ? kmem_cache_free+0x115/0x330
[ 1164.333187][T21941]  ? __kasan_slab_free+0x11/0x20
[ 1164.333201][T21941]  ? slab_free_freelist_hook+0xbd/0x190
[ 1164.333213][T21941]  ? kmem_cache_free+0x115/0x330
[ 1164.333226][T21941]  ? putname+0xfa/0x150
[ 1164.333238][T21941]  ? do_sys_openat2+0x1fc/0x820
[ 1164.333253][T21941]  ___sys_sendmsg+0x166/0x2e0
[ 1164.333270][T21941]  ? __sys_sendmsg+0x260/0x260
[ 1164.333288][T21941]  ? __kasan_check_write+0x14/0x20
[ 1164.333302][T21941]  ? proc_fail_nth_write+0x20b/0x290
[ 1164.333320][T21941]  ? __fdget+0x1bc/0x240
[ 1164.333334][T21941]  __sys_sendmmsg+0x2bf/0x530
[ 1164.333351][T21941]  ? __ia32_sys_sendmsg+0x90/0x90
[ 1164.333364][T21941]  ? mutex_unlock+0xb2/0x260
[ 1164.333383][T21941]  ? __kasan_check_write+0x14/0x20
[ 1164.333401][T21941]  ? __ia32_sys_read+0x90/0x90
[ 1164.333417][T21941]  ? debug_smp_processor_id+0x17/0x20
[ 1164.333432][T21941]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1164.333447][T21941]  __x64_sys_sendmmsg+0xa0/0xb0
[ 1164.333463][T21941]  x64_sys_call+0x81d/0x9a0
[ 1164.333477][T21941]  do_syscall_64+0x3b/0xb0
[ 1164.333489][T21941]  ? clear_bhb_loop+0x35/0x90
[ 1164.333504][T21941]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1164.333519][T21941] RIP: 0033:0x7f3b89255d29
[ 1164.333533][T21941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1164.333544][T21941] RSP: 002b:00007f3b878c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1164.333561][T21941] RAX: ffffffffffffffda RBX: 00007f3b89445fa0 RCX: 00007f3b89255d29
[ 1164.333573][T21941] RDX: 0000000000000651 RSI: 0000000020000000 RDI: 0000000000000004
[ 1164.333590][T21941] RBP: 00007f3b878c7090 R08: 0000000000000000 R09: 0000000000000000
[ 1164.333599][T21941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1164.333607][T21941] R13: 0000000000000000 R14: 00007f3b89445fa0 R15: 00007ffef8867da8
[ 1164.333623][T21941]  </TASK>
[ 1164.765726][T21961] FAULT_INJECTION: forcing a failure.
[ 1164.765726][T21961] name failslab, interval 1, probability 0, space 0, times 0
[ 1164.778360][T21961] CPU: 0 PID: 21961 Comm: syz.1.6489 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1164.788153][T21961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1164.798047][T21961] Call Trace:
[ 1164.801169][T21961]  <TASK>
[ 1164.803952][T21961]  dump_stack_lvl+0x151/0x1c0
[ 1164.808465][T21961]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1164.813935][T21961]  ? vfs_write+0x94d/0x1110
[ 1164.818271][T21961]  dump_stack+0x15/0x20
[ 1164.822262][T21961]  should_fail+0x3c6/0x510
[ 1164.826516][T21961]  __should_failslab+0xa4/0xe0
[ 1164.831121][T21961]  should_failslab+0x9/0x20
[ 1164.835460][T21961]  slab_pre_alloc_hook+0x37/0xd0
[ 1164.840232][T21961]  ? __se_sys_mount+0x9b/0x3b0
[ 1164.844831][T21961]  __kmalloc_track_caller+0x6c/0x2c0
[ 1164.849951][T21961]  ? __se_sys_mount+0x9b/0x3b0
[ 1164.854559][T21961]  strndup_user+0x76/0x150
[ 1164.858806][T21961]  __se_sys_mount+0x9b/0x3b0
[ 1164.863230][T21961]  ? __x64_sys_mount+0xd0/0xd0
[ 1164.867834][T21961]  ? debug_smp_processor_id+0x17/0x20
[ 1164.873052][T21961]  __x64_sys_mount+0xbf/0xd0
[ 1164.877466][T21961]  x64_sys_call+0x49d/0x9a0
[ 1164.881802][T21961]  do_syscall_64+0x3b/0xb0
[ 1164.886057][T21961]  ? clear_bhb_loop+0x35/0x90
[ 1164.890588][T21961]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1164.896298][T21961] RIP: 0033:0x7fb511567d29
[ 1164.900557][T21961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1164.919995][T21961] RSP: 002b:00007fb50fbd9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1164.928238][T21961] RAX: ffffffffffffffda RBX: 00007fb511757fa0 RCX: 00007fb511567d29
[ 1164.936059][T21961] RDX: 0000000020000280 RSI: 00000000200002c0 RDI: 0000000000000000
[ 1164.943861][T21961] RBP: 00007fb50fbd9090 R08: 0000000020000540 R09: 0000000000000000
[ 1164.951673][T21961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1164.959482][T21961] R13: 0000000000000000 R14: 00007fb511757fa0 R15: 00007fffaacc8908
[ 1164.967303][T21961]  </TASK>
[ 1165.349923][T22017] FAULT_INJECTION: forcing a failure.
[ 1165.349923][T22017] name failslab, interval 1, probability 0, space 0, times 0
[ 1165.371351][T22017] CPU: 1 PID: 22017 Comm: syz.1.6511 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1165.381163][T22017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1165.391060][T22017] Call Trace:
[ 1165.394181][T22017]  <TASK>
[ 1165.396959][T22017]  dump_stack_lvl+0x151/0x1c0
[ 1165.401471][T22017]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1165.406940][T22017]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1165.412152][T22017]  dump_stack+0x15/0x20
[ 1165.416140][T22017]  should_fail+0x3c6/0x510
[ 1165.420395][T22017]  __should_failslab+0xa4/0xe0
[ 1165.424992][T22017]  should_failslab+0x9/0x20
[ 1165.429332][T22017]  slab_pre_alloc_hook+0x37/0xd0
[ 1165.434107][T22017]  __kmalloc+0x6d/0x2c0
[ 1165.438095][T22017]  ? kernfs_fop_write_iter+0x151/0x410
[ 1165.443392][T22017]  kernfs_fop_write_iter+0x151/0x410
[ 1165.448515][T22017]  vfs_write+0xd5d/0x1110
[ 1165.452685][T22017]  ? file_end_write+0x1c0/0x1c0
[ 1165.457372][T22017]  ? __kasan_check_read+0x11/0x20
[ 1165.462224][T22017]  ? __fdget_pos+0x2ee/0x3a0
[ 1165.466659][T22017]  ksys_write+0x199/0x2c0
[ 1165.470832][T22017]  ? __ia32_sys_read+0x90/0x90
[ 1165.475422][T22017]  ? debug_smp_processor_id+0x17/0x20
[ 1165.480628][T22017]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1165.486529][T22017]  __x64_sys_write+0x7b/0x90
[ 1165.490964][T22017]  x64_sys_call+0x2f/0x9a0
[ 1165.495206][T22017]  do_syscall_64+0x3b/0xb0
[ 1165.499459][T22017]  ? clear_bhb_loop+0x35/0x90
[ 1165.503974][T22017]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1165.509706][T22017] RIP: 0033:0x7fb511567d29
[ 1165.513954][T22017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1165.533400][T22017] RSP: 002b:00007fb50fbd9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1165.541646][T22017] RAX: ffffffffffffffda RBX: 00007fb511757fa0 RCX: 00007fb511567d29
[ 1165.549454][T22017] RDX: 0000000000000012 RSI: 0000000020000000 RDI: 0000000000000006
[ 1165.557273][T22017] RBP: 00007fb50fbd9090 R08: 0000000000000000 R09: 0000000000000000
[ 1165.565081][T22017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1165.572890][T22017] R13: 0000000000000000 R14: 00007fb511757fa0 R15: 00007fffaacc8908
[ 1165.580708][T22017]  </TASK>
[ 1165.729577][T22051] FAULT_INJECTION: forcing a failure.
[ 1165.729577][T22051] name failslab, interval 1, probability 0, space 0, times 0
[ 1165.758132][T22051] CPU: 1 PID: 22051 Comm: syz.3.6523 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1165.767943][T22051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1165.777926][T22051] Call Trace:
[ 1165.781046][T22051]  <TASK>
[ 1165.783837][T22051]  dump_stack_lvl+0x151/0x1c0
[ 1165.788339][T22051]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1165.793807][T22051]  ? vfs_write+0x94d/0x1110
[ 1165.798146][T22051]  dump_stack+0x15/0x20
[ 1165.802138][T22051]  should_fail+0x3c6/0x510
[ 1165.806393][T22051]  __should_failslab+0xa4/0xe0
[ 1165.810992][T22051]  should_failslab+0x9/0x20
[ 1165.815342][T22051]  slab_pre_alloc_hook+0x37/0xd0
[ 1165.820105][T22051]  ? __se_sys_mount+0x9b/0x3b0
[ 1165.824707][T22051]  __kmalloc_track_caller+0x6c/0x2c0
[ 1165.829827][T22051]  ? __se_sys_mount+0x9b/0x3b0
[ 1165.834428][T22051]  strndup_user+0x76/0x150
[ 1165.838680][T22051]  __se_sys_mount+0x9b/0x3b0
[ 1165.843109][T22051]  ? __x64_sys_mount+0xd0/0xd0
[ 1165.847711][T22051]  ? debug_smp_processor_id+0x17/0x20
[ 1165.852916][T22051]  __x64_sys_mount+0xbf/0xd0
[ 1165.857342][T22051]  x64_sys_call+0x49d/0x9a0
[ 1165.861678][T22051]  do_syscall_64+0x3b/0xb0
[ 1165.865932][T22051]  ? clear_bhb_loop+0x35/0x90
[ 1165.870444][T22051]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1165.876175][T22051] RIP: 0033:0x7f1c63050d29
[ 1165.880426][T22051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1165.899869][T22051] RSP: 002b:00007f1c616c2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1165.908112][T22051] RAX: ffffffffffffffda RBX: 00007f1c63240fa0 RCX: 00007f1c63050d29
[ 1165.915926][T22051] RDX: 0000000020000280 RSI: 00000000200002c0 RDI: 0000000000000000
[ 1165.923735][T22051] RBP: 00007f1c616c2090 R08: 0000000020000540 R09: 0000000000000000
[ 1165.931546][T22051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1165.939361][T22051] R13: 0000000000000000 R14: 00007f1c63240fa0 R15: 00007ffdeba41f58
[ 1165.947178][T22051]  </TASK>
[ 1166.045000][T22062] FAULT_INJECTION: forcing a failure.
[ 1166.045000][T22062] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1166.075719][T22062] CPU: 0 PID: 22062 Comm: syz.4.6528 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1166.085528][T22062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1166.095425][T22062] Call Trace:
[ 1166.098546][T22062]  <TASK>
[ 1166.101325][T22062]  dump_stack_lvl+0x151/0x1c0
[ 1166.105843][T22062]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1166.111306][T22062]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1166.116514][T22062]  dump_stack+0x15/0x20
[ 1166.120508][T22062]  should_fail+0x3c6/0x510
[ 1166.124759][T22062]  should_fail_usercopy+0x1a/0x20
[ 1166.129624][T22062]  _copy_to_user+0x20/0x90
[ 1166.133876][T22062]  simple_read_from_buffer+0xc7/0x150
[ 1166.139089][T22062]  proc_fail_nth_read+0x1a3/0x210
[ 1166.143942][T22062]  ? proc_fault_inject_write+0x390/0x390
[ 1166.149419][T22062]  ? fsnotify_perm+0x269/0x5b0
[ 1166.154011][T22062]  ? security_file_permission+0x86/0xb0
[ 1166.159389][T22062]  ? proc_fault_inject_write+0x390/0x390
[ 1166.164858][T22062]  vfs_read+0x27d/0xd40
[ 1166.168853][T22062]  ? kernel_read+0x1f0/0x1f0
[ 1166.173278][T22062]  ? __kasan_check_write+0x14/0x20
[ 1166.178222][T22062]  ? mutex_lock+0xb6/0x1e0
[ 1166.182475][T22062]  ? wait_for_completion_killable_timeout+0x10/0x10
[ 1166.188904][T22062]  ? __fdget_pos+0x2e7/0x3a0
[ 1166.193326][T22062]  ? ksys_read+0x77/0x2c0
[ 1166.197491][T22062]  ksys_read+0x199/0x2c0
[ 1166.201576][T22062]  ? vfs_write+0x1110/0x1110
[ 1166.206003][T22062]  ? debug_smp_processor_id+0x17/0x20
[ 1166.211205][T22062]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1166.217107][T22062]  __x64_sys_read+0x7b/0x90
[ 1166.221449][T22062]  x64_sys_call+0x28/0x9a0
[ 1166.225698][T22062]  do_syscall_64+0x3b/0xb0
[ 1166.229950][T22062]  ? clear_bhb_loop+0x35/0x90
[ 1166.234466][T22062]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1166.240199][T22062] RIP: 0033:0x7f3b8925473c
[ 1166.244449][T22062] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1166.263886][T22062] RSP: 002b:00007f3b878c7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1166.272131][T22062] RAX: ffffffffffffffda RBX: 00007f3b89445fa0 RCX: 00007f3b8925473c
[ 1166.279940][T22062] RDX: 000000000000000f RSI: 00007f3b878c70a0 RDI: 0000000000000003
[ 1166.287751][T22062] RBP: 00007f3b878c7090 R08: 0000000000000000 R09: 0000000000000014
[ 1166.295562][T22062] R10: 0000000028000000 R11: 0000000000000246 R12: 0000000000000001
[ 1166.303379][T22062] R13: 0000000000000000 R14: 00007f3b89445fa0 R15: 00007ffef8867da8
[ 1166.311196][T22062]  </TASK>
[ 1166.587318][T22100] FAULT_INJECTION: forcing a failure.
[ 1166.587318][T22100] name failslab, interval 1, probability 0, space 0, times 0
[ 1166.600096][T22100] CPU: 0 PID: 22100 Comm: syz.2.6542 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1166.609979][T22100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1166.619876][T22100] Call Trace:
[ 1166.622997][T22100]  <TASK>
[ 1166.625777][T22100]  dump_stack_lvl+0x151/0x1c0
[ 1166.630287][T22100]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1166.635757][T22100]  ? vfs_write+0x94d/0x1110
[ 1166.640095][T22100]  dump_stack+0x15/0x20
[ 1166.644088][T22100]  should_fail+0x3c6/0x510
[ 1166.648345][T22100]  __should_failslab+0xa4/0xe0
[ 1166.652940][T22100]  ? getname_flags+0xba/0x520
[ 1166.657455][T22100]  should_failslab+0x9/0x20
[ 1166.661793][T22100]  slab_pre_alloc_hook+0x37/0xd0
[ 1166.666573][T22100]  ? getname_flags+0xba/0x520
[ 1166.671079][T22100]  kmem_cache_alloc+0x44/0x250
[ 1166.675682][T22100]  getname_flags+0xba/0x520
[ 1166.680021][T22100]  user_path_at_empty+0x2d/0x1a0
[ 1166.684796][T22100]  __se_sys_chdir+0xbb/0x220
[ 1166.689224][T22100]  ? __x64_sys_chdir+0x40/0x40
[ 1166.693821][T22100]  ? debug_smp_processor_id+0x17/0x20
[ 1166.699027][T22100]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1166.704934][T22100]  __x64_sys_chdir+0x38/0x40
[ 1166.709359][T22100]  x64_sys_call+0x258/0x9a0
[ 1166.713696][T22100]  do_syscall_64+0x3b/0xb0
[ 1166.717948][T22100]  ? clear_bhb_loop+0x35/0x90
[ 1166.722481][T22100]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1166.722509][T22100] RIP: 0033:0x7fc96dbe7d29
[ 1166.722526][T22100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1166.722540][T22100] RSP: 002b:00007fc96c259038 EFLAGS: 00000246 ORIG_RAX: 0000000000000050
[ 1166.722559][T22100] RAX: ffffffffffffffda RBX: 00007fc96ddd7fa0 RCX: 00007fc96dbe7d29
[ 1166.722571][T22100] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000380
[ 1166.722583][T22100] RBP: 00007fc96c259090 R08: 0000000000000000 R09: 0000000000000000
[ 1166.722594][T22100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1166.722604][T22100] R13: 0000000000000000 R14: 00007fc96ddd7fa0 R15: 00007fff58c9e4e8
[ 1166.722622][T22100]  </TASK>
[ 1167.301339][T22137] device pim6reg1 entered promiscuous mode
[ 1167.366723][T22151] FAULT_INJECTION: forcing a failure.
[ 1167.366723][T22151] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1167.389633][T22151] CPU: 1 PID: 22151 Comm: syz.2.6566 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1167.399441][T22151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1167.409342][T22151] Call Trace:
[ 1167.412464][T22151]  <TASK>
[ 1167.415246][T22151]  dump_stack_lvl+0x151/0x1c0
[ 1167.419755][T22151]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1167.425220][T22151]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1167.430432][T22151]  dump_stack+0x15/0x20
[ 1167.434423][T22151]  should_fail+0x3c6/0x510
[ 1167.438680][T22151]  should_fail_usercopy+0x1a/0x20
[ 1167.443538][T22151]  _copy_to_user+0x20/0x90
[ 1167.447790][T22151]  simple_read_from_buffer+0xc7/0x150
[ 1167.452997][T22151]  proc_fail_nth_read+0x1a3/0x210
[ 1167.457860][T22151]  ? proc_fault_inject_write+0x390/0x390
[ 1167.463323][T22151]  ? fsnotify_perm+0x269/0x5b0
[ 1167.467927][T22151]  ? security_file_permission+0x86/0xb0
[ 1167.473304][T22151]  ? proc_fault_inject_write+0x390/0x390
[ 1167.478774][T22151]  vfs_read+0x27d/0xd40
[ 1167.482766][T22151]  ? kernel_read+0x1f0/0x1f0
[ 1167.487191][T22151]  ? __kasan_check_write+0x14/0x20
[ 1167.492141][T22151]  ? mutex_lock+0xb6/0x1e0
[ 1167.496393][T22151]  ? wait_for_completion_killable_timeout+0x10/0x10
[ 1167.502817][T22151]  ? __fdget_pos+0x2e7/0x3a0
[ 1167.507241][T22151]  ? ksys_read+0x77/0x2c0
[ 1167.511406][T22151]  ksys_read+0x199/0x2c0
[ 1167.515484][T22151]  ? vfs_write+0x1110/0x1110
[ 1167.519910][T22151]  ? debug_smp_processor_id+0x17/0x20
[ 1167.525116][T22151]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1167.531018][T22151]  __x64_sys_read+0x7b/0x90
[ 1167.535362][T22151]  x64_sys_call+0x28/0x9a0
[ 1167.539611][T22151]  do_syscall_64+0x3b/0xb0
[ 1167.543865][T22151]  ? clear_bhb_loop+0x35/0x90
[ 1167.548379][T22151]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1167.554106][T22151] RIP: 0033:0x7fc96dbe673c
[ 1167.558368][T22151] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1167.577799][T22151] RSP: 002b:00007fc96c259030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1167.586051][T22151] RAX: ffffffffffffffda RBX: 00007fc96ddd7fa0 RCX: 00007fc96dbe673c
[ 1167.593858][T22151] RDX: 000000000000000f RSI: 00007fc96c2590a0 RDI: 0000000000000003
[ 1167.601676][T22151] RBP: 00007fc96c259090 R08: 0000000000000000 R09: 0000000000000000
[ 1167.609481][T22151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1167.617289][T22151] R13: 0000000000000000 R14: 00007fc96ddd7fa0 R15: 00007fff58c9e4e8
[ 1167.625111][T22151]  </TASK>
[ 1167.634348][T22174] FAULT_INJECTION: forcing a failure.
[ 1167.634348][T22174] name failslab, interval 1, probability 0, space 0, times 0
[ 1167.649956][T22174] CPU: 0 PID: 22174 Comm: syz.1.6577 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1167.659763][T22174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1167.669660][T22174] Call Trace:
[ 1167.672781][T22174]  <TASK>
[ 1167.675563][T22174]  dump_stack_lvl+0x151/0x1c0
[ 1167.680077][T22174]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1167.685533][T22174]  ? vfs_write+0x94d/0x1110
[ 1167.685562][T22174]  dump_stack+0x15/0x20
[ 1167.693860][T22174]  should_fail+0x3c6/0x510
[ 1167.698115][T22174]  __should_failslab+0xa4/0xe0
[ 1167.702715][T22174]  should_failslab+0x9/0x20
[ 1167.707140][T22174]  slab_pre_alloc_hook+0x37/0xd0
[ 1167.711920][T22174]  ? __se_sys_mount+0x9b/0x3b0
[ 1167.716512][T22174]  __kmalloc_track_caller+0x6c/0x2c0
[ 1167.721639][T22174]  ? __se_sys_mount+0x9b/0x3b0
[ 1167.726236][T22174]  strndup_user+0x76/0x150
[ 1167.730491][T22174]  __se_sys_mount+0x9b/0x3b0
[ 1167.734922][T22174]  ? __x64_sys_mount+0xd0/0xd0
[ 1167.739513][T22174]  ? debug_smp_processor_id+0x17/0x20
[ 1167.744723][T22174]  __x64_sys_mount+0xbf/0xd0
[ 1167.749150][T22174]  x64_sys_call+0x49d/0x9a0
[ 1167.753494][T22174]  do_syscall_64+0x3b/0xb0
[ 1167.753512][T22174]  ? clear_bhb_loop+0x35/0x90
[ 1167.753530][T22174]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1167.767981][T22174] RIP: 0033:0x7fb511567d29
[ 1167.772244][T22174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1167.791680][T22174] RSP: 002b:00007fb50fbd9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1167.799923][T22174] RAX: ffffffffffffffda RBX: 00007fb511757fa0 RCX: 00007fb511567d29
[ 1167.807732][T22174] RDX: 0000000020000280 RSI: 00000000200002c0 RDI: 0000000000000000
[ 1167.807749][T22174] RBP: 00007fb50fbd9090 R08: 0000000020000540 R09: 0000000000000000
[ 1167.807760][T22174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1167.831170][T22174] R13: 0000000000000000 R14: 00007fb511757fa0 R15: 00007fffaacc8908
[ 1167.831195][T22174]  </TASK>
[ 1168.042743][T22241] FAULT_INJECTION: forcing a failure.
[ 1168.042743][T22241] name failslab, interval 1, probability 0, space 0, times 0
[ 1168.055533][T22241] CPU: 0 PID: 22241 Comm: syz.2.6608 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1168.065322][T22241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1168.075217][T22241] Call Trace:
[ 1168.078341][T22241]  <TASK>
[ 1168.081118][T22241]  dump_stack_lvl+0x151/0x1c0
[ 1168.085632][T22241]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1168.091102][T22241]  dump_stack+0x15/0x20
[ 1168.095092][T22241]  should_fail+0x3c6/0x510
[ 1168.099347][T22241]  __should_failslab+0xa4/0xe0
[ 1168.103944][T22241]  ? audit_log_start+0x42f/0xa80
[ 1168.108717][T22241]  should_failslab+0x9/0x20
[ 1168.113060][T22241]  slab_pre_alloc_hook+0x37/0xd0
[ 1168.117835][T22241]  ? audit_log_start+0x42f/0xa80
[ 1168.122606][T22241]  kmem_cache_alloc+0x44/0x250
[ 1168.127209][T22241]  audit_log_start+0x42f/0xa80
[ 1168.131807][T22241]  ? audit_serial+0x30/0x30
[ 1168.136151][T22241]  ? 0xffffffffa0018000
[ 1168.140138][T22241]  ? slow_avc_audit+0x3c0/0x3c0
[ 1168.144824][T22241]  common_lsm_audit+0xd8/0x18b0
[ 1168.149515][T22241]  ? __kernel_text_address+0x9b/0x110
[ 1168.154715][T22241]  ? avc_audit_pre_callback+0x2b0/0x2b0
[ 1168.160095][T22241]  ? unwind_get_return_address+0x4d/0x90
[ 1168.165650][T22241]  ? ipv6_skb_to_auditdata+0xd90/0xd90
[ 1168.170944][T22241]  ? arch_stack_walk+0xf3/0x140
[ 1168.175633][T22241]  ? stack_trace_save+0x113/0x1c0
[ 1168.180492][T22241]  slow_avc_audit+0x26c/0x3c0
[ 1168.185005][T22241]  ? avc_get_hash_stats+0x180/0x180
[ 1168.190036][T22241]  ? avc_has_perm_noaudit+0x2dd/0x430
[ 1168.195249][T22241]  avc_has_perm+0x1f5/0x260
[ 1168.199588][T22241]  ? avc_has_perm_noaudit+0x430/0x430
[ 1168.204799][T22241]  sel_write_load+0x1fb/0x5a0
[ 1168.209306][T22241]  ? avc_policy_seqno+0x1b/0x70
[ 1168.214175][T22241]  ? sel_make_dir+0x270/0x270
[ 1168.218688][T22241]  ? fsnotify_perm+0x6a/0x5b0
[ 1168.223215][T22241]  ? security_file_permission+0x86/0xb0
[ 1168.228582][T22241]  ? sel_make_dir+0x270/0x270
[ 1168.233097][T22241]  vfs_write+0x406/0x1110
[ 1168.237269][T22241]  ? putname+0xfa/0x150
[ 1168.241260][T22241]  ? file_end_write+0x1c0/0x1c0
[ 1168.245943][T22241]  ? __kasan_check_write+0x14/0x20
[ 1168.250887][T22241]  ? mutex_lock+0xb6/0x1e0
[ 1168.255142][T22241]  ? wait_for_completion_killable_timeout+0x10/0x10
[ 1168.261566][T22241]  ? __fdget_pos+0x2e7/0x3a0
[ 1168.265989][T22241]  ? ksys_write+0x77/0x2c0
[ 1168.270241][T22241]  ksys_write+0x199/0x2c0
[ 1168.274412][T22241]  ? __ia32_sys_read+0x90/0x90
[ 1168.279008][T22241]  ? debug_smp_processor_id+0x17/0x20
[ 1168.284223][T22241]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1168.290123][T22241]  __x64_sys_write+0x7b/0x90
[ 1168.294550][T22241]  x64_sys_call+0x2f/0x9a0
[ 1168.298798][T22241]  do_syscall_64+0x3b/0xb0
[ 1168.303051][T22241]  ? clear_bhb_loop+0x35/0x90
[ 1168.307566][T22241]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1168.313291][T22241] RIP: 0033:0x7fc96dbe7d29
[ 1168.317546][T22241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1168.336988][T22241] RSP: 002b:00007fc96c259038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1168.345231][T22241] RAX: ffffffffffffffda RBX: 00007fc96ddd7fa0 RCX: 00007fc96dbe7d29
[ 1168.353044][T22241] RDX: 0000000000002000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1168.360853][T22241] RBP: 00007fc96c259090 R08: 0000000000000000 R09: 0000000000000000
[ 1168.368669][T22241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1168.376477][T22241] R13: 0000000000000000 R14: 00007fc96ddd7fa0 R15: 00007fff58c9e4e8
[ 1168.384294][T22241]  </TASK>
[ 1168.574363][T22292] FAULT_INJECTION: forcing a failure.
[ 1168.574363][T22292] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1168.599171][T22292] CPU: 0 PID: 22292 Comm: syz.3.6623 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1168.608977][T22292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1168.618871][T22292] Call Trace:
[ 1168.621992][T22292]  <TASK>
[ 1168.624774][T22292]  dump_stack_lvl+0x151/0x1c0
[ 1168.629298][T22292]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1168.634755][T22292]  ? do_vfs_ioctl+0xbc1/0x2a80
[ 1168.639356][T22292]  dump_stack+0x15/0x20
[ 1168.643344][T22292]  should_fail+0x3c6/0x510
[ 1168.647599][T22292]  should_fail_usercopy+0x1a/0x20
[ 1168.652459][T22292]  _copy_to_user+0x20/0x90
[ 1168.656712][T22292]  simple_read_from_buffer+0xc7/0x150
[ 1168.661919][T22292]  proc_fail_nth_read+0x1a3/0x210
[ 1168.666780][T22292]  ? proc_fault_inject_write+0x390/0x390
[ 1168.672247][T22292]  ? fsnotify_perm+0x269/0x5b0
[ 1168.676847][T22292]  ? security_file_permission+0x86/0xb0
[ 1168.682241][T22292]  ? proc_fault_inject_write+0x390/0x390
[ 1168.687700][T22292]  vfs_read+0x27d/0xd40
[ 1168.691778][T22292]  ? kernel_read+0x1f0/0x1f0
[ 1168.696201][T22292]  ? __kasan_check_write+0x14/0x20
[ 1168.701150][T22292]  ? mutex_lock+0xb6/0x1e0
[ 1168.705405][T22292]  ? wait_for_completion_killable_timeout+0x10/0x10
[ 1168.711828][T22292]  ? __fdget_pos+0x2e7/0x3a0
[ 1168.716252][T22292]  ? ksys_read+0x77/0x2c0
[ 1168.720428][T22292]  ksys_read+0x199/0x2c0
[ 1168.724501][T22292]  ? vfs_write+0x1110/0x1110
[ 1168.728923][T22292]  ? debug_smp_processor_id+0x17/0x20
[ 1168.734130][T22292]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1168.740045][T22292]  __x64_sys_read+0x7b/0x90
[ 1168.744372][T22292]  x64_sys_call+0x28/0x9a0
[ 1168.748626][T22292]  do_syscall_64+0x3b/0xb0
[ 1168.752877][T22292]  ? clear_bhb_loop+0x35/0x90
[ 1168.757392][T22292]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1168.763121][T22292] RIP: 0033:0x7f1c6304f73c
[ 1168.767377][T22292] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1168.786817][T22292] RSP: 002b:00007f1c61680030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1168.795059][T22292] RAX: ffffffffffffffda RBX: 00007f1c63241160 RCX: 00007f1c6304f73c
[ 1168.802871][T22292] RDX: 000000000000000f RSI: 00007f1c616800a0 RDI: 0000000000000007
[ 1168.810685][T22292] RBP: 00007f1c61680090 R08: 0000000000000000 R09: 0000000000000000
[ 1168.818493][T22292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1168.826304][T22292] R13: 0000000000000000 R14: 00007f1c63241160 R15: 00007ffdeba41f58
[ 1168.834125][T22292]  </TASK>
[ 1168.966657][   T30] kauditd_printk_skb: 1585 callbacks suppressed
[ 1168.966706][   T30] audit: type=1400 audit(1734766908.273:3507): avc:  denied  { read } for  pid=83 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 1169.055493][   T30] audit: type=1400 audit(1734766908.273:3508): avc:  denied  { search } for  pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1169.087319][   T30] audit: type=1400 audit(1734766908.273:3509): avc:  denied  { append } for  pid=83 comm="syslogd" name="messages" dev="tmpfs" ino=11 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1169.124721][   T30] audit: type=1400 audit(1734766908.283:3510): avc:  denied  { open } for  pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=11 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1169.147544][   T30] audit: type=1400 audit(1734766908.293:3511): avc:  denied  { getattr } for  pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=11 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1169.312524][   T30] audit: type=1400 audit(1734766908.701:3512): avc:  denied  { read } for  pid=22309 comm="syz.1.6635" name="raw-gadget" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1169.674050][   T30] audit: type=1400 audit(1734766908.701:3513): avc:  denied  { ioctl } for  pid=22309 comm="syz.1.6635" path="/dev/raw-gadget" dev="devtmpfs" ino=250 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1169.699383][   T30] audit: type=1400 audit(1734766909.048:3514): avc:  denied  { create } for  pid=22307 comm="syz.4.6634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1169.727004][   T30] audit: type=1400 audit(1734766909.048:3515): avc:  denied  { write } for  pid=22307 comm="syz.4.6634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1169.747421][   T30] audit: type=1400 audit(1734766909.048:3516): avc:  denied  { read } for  pid=22307 comm="syz.4.6634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1169.872068][ T3835] usb 2-1: new full-speed USB device number 67 using dummy_hcd
[ 1170.147181][  T347] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1170.157113][T22337] FAULT_INJECTION: forcing a failure.
[ 1170.157113][T22337] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1170.170507][T22337] CPU: 1 PID: 22337 Comm: syz.4.6643 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1170.180296][T22337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1170.190212][T22337] Call Trace:
[ 1170.193316][T22337]  <TASK>
[ 1170.196094][T22337]  dump_stack_lvl+0x151/0x1c0
[ 1170.200605][T22337]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1170.206078][T22337]  ? avc_has_perm+0x16f/0x260
[ 1170.210589][T22337]  dump_stack+0x15/0x20
[ 1170.214579][T22337]  should_fail+0x3c6/0x510
[ 1170.218834][T22337]  should_fail_alloc_page+0x5a/0x80
[ 1170.223866][T22337]  prepare_alloc_pages+0x15c/0x700
[ 1170.228812][T22337]  ? __alloc_pages_bulk+0xe40/0xe40
[ 1170.233848][T22337]  ? stack_trace_save+0x1c0/0x1c0
[ 1170.238709][T22337]  __alloc_pages+0x18c/0x8f0
[ 1170.243142][T22337]  ? prep_new_page+0x110/0x110
[ 1170.247736][T22337]  ? __kasan_check_write+0x14/0x20
[ 1170.252686][T22337]  ? _raw_spin_lock_irqsave+0xf9/0x210
[ 1170.257974][T22337]  skb_page_frag_refill+0x209/0x3b0
[ 1170.263014][T22337]  tun_get_user+0x6f0/0x3aa0
[ 1170.267441][T22337]  ? __x64_sys_openat+0x180/0x290
[ 1170.272302][T22337]  ? x64_sys_call+0x6bf/0x9a0
[ 1170.276821][T22337]  ? tun_do_read+0x2010/0x2010
[ 1170.281411][T22337]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1170.286618][T22337]  ? kstrtol_from_user+0x310/0x310
[ 1170.291565][T22337]  ? 0xffffffff81000000
[ 1170.295558][T22337]  ? avc_policy_seqno+0x1b/0x70
[ 1170.300244][T22337]  ? selinux_file_permission+0x2c4/0x570
[ 1170.305714][T22337]  tun_chr_write_iter+0x1e1/0x2e0
[ 1170.310575][T22337]  vfs_write+0xd5d/0x1110
[ 1170.314744][T22337]  ? file_end_write+0x1c0/0x1c0
[ 1170.319429][T22337]  ? __fdget_pos+0x209/0x3a0
[ 1170.323850][T22337]  ? ksys_write+0x77/0x2c0
[ 1170.328109][T22337]  ksys_write+0x199/0x2c0
[ 1170.332274][T22337]  ? __ia32_sys_read+0x90/0x90
[ 1170.336871][T22337]  ? debug_smp_processor_id+0x17/0x20
[ 1170.342077][T22337]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1170.347980][T22337]  __x64_sys_write+0x7b/0x90
[ 1170.352406][T22337]  x64_sys_call+0x2f/0x9a0
[ 1170.356658][T22337]  do_syscall_64+0x3b/0xb0
[ 1170.360910][T22337]  ? clear_bhb_loop+0x35/0x90
[ 1170.365426][T22337]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1170.371153][T22337] RIP: 0033:0x7f3b892547df
[ 1170.375409][T22337] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1170.394851][T22337] RSP: 002b:00007f3b878c7000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1170.403094][T22337] RAX: ffffffffffffffda RBX: 00007f3b89445fa0 RCX: 00007f3b892547df
[ 1170.410904][T22337] RDX: 000000000000003e RSI: 0000000020000500 RDI: 00000000000000c8
[ 1170.418720][T22337] RBP: 00007f3b878c7090 R08: 0000000000000000 R09: 0000000000000000
[ 1170.426527][T22337] R10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001
[ 1170.434341][T22337] R13: 0000000000000000 R14: 00007f3b89445fa0 R15: 00007ffef8867da8
[ 1170.442160][T22337]  </TASK>
[ 1170.505906][T22346] xt_hashlimit: size too large, truncated to 1048576
[ 1170.536070][ T3835] usb 2-1: config 1 interface 0 altsetting 127 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1170.549516][ T3835] usb 2-1: config 1 interface 0 has no altsetting 0
[ 1170.557540][T22347] FAULT_INJECTION: forcing a failure.
[ 1170.557540][T22347] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1170.570755][T22347] CPU: 0 PID: 22347 Comm: syz.4.6647 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1170.580542][T22347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1170.590433][T22347] Call Trace:
[ 1170.593558][T22347]  <TASK>
[ 1170.596335][T22347]  dump_stack_lvl+0x151/0x1c0
[ 1170.600851][T22347]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1170.606325][T22347]  ? fsnotify_perm+0x6a/0x5b0
[ 1170.610836][T22347]  dump_stack+0x15/0x20
[ 1170.614824][T22347]  should_fail+0x3c6/0x510
[ 1170.619077][T22347]  should_fail_usercopy+0x1a/0x20
[ 1170.623943][T22347]  _copy_from_user+0x20/0xd0
[ 1170.628366][T22347]  __sys_sendto+0x33a/0x720
[ 1170.632701][T22347]  ? __ia32_sys_getpeername+0x90/0x90
[ 1170.637916][T22347]  ? __ia32_sys_read+0x90/0x90
[ 1170.642513][T22347]  ? debug_smp_processor_id+0x17/0x20
[ 1170.647714][T22347]  __x64_sys_sendto+0xe5/0x100
[ 1170.652315][T22347]  x64_sys_call+0x15c/0x9a0
[ 1170.656673][  T347] usb 3-1: Using ep0 maxpacket: 8
[ 1170.656740][T22347]  do_syscall_64+0x3b/0xb0
[ 1170.665856][T22347]  ? clear_bhb_loop+0x35/0x90
[ 1170.670369][T22347]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1170.676095][T22347] RIP: 0033:0x7f3b89255d29
[ 1170.680351][T22347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1170.699791][T22347] RSP: 002b:00007f3b878a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1170.708034][T22347] RAX: ffffffffffffffda RBX: 00007f3b89446080 RCX: 00007f3b89255d29
[ 1170.715844][T22347] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[ 1170.723658][T22347] RBP: 00007f3b878a6090 R08: 0000000020b63fe4 R09: 000000000000001c
[ 1170.731469][T22347] R10: 0000000020000845 R11: 0000000000000246 R12: 0000000000000001
[ 1170.739281][T22347] R13: 0000000000000000 R14: 00007f3b89446080 R15: 00007ffef8867da8
[ 1170.747107][T22347]  </TASK>
[ 1172.406302][  T347] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1173.300518][ T3835] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1173.311169][ T3835] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1173.319550][ T3835] usb 2-1: Product: syz
[ 1173.328806][T22369] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1173.357032][  T347] usb 3-1: unable to read config index 0 descriptor/all
[ 1173.363968][  T347] usb 3-1: can't read configurations, error -71
[ 1173.371917][ T3835] usb 2-1: can't set config #1, error -71
[ 1173.391970][ T3835] usb 2-1: USB disconnect, device number 67
[ 1173.400337][T22378] syz.4.6658[22378] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1173.400415][T22378] syz.4.6658[22378] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1173.981008][T22416] 9pnet: Insufficient options for proto=fd
[ 1174.004590][   T30] kauditd_printk_skb: 146 callbacks suppressed
[ 1174.004605][   T30] audit: type=1400 audit(1734766913.366:3663): avc:  denied  { read } for  pid=83 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 1174.047012][T22418] 9pnet: Insufficient options for proto=fd
[ 1174.059618][   T30] audit: type=1400 audit(1734766913.366:3664): avc:  denied  { search } for  pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1174.101218][   T30] audit: type=1400 audit(1734766913.366:3665): avc:  denied  { append } for  pid=83 comm="syslogd" name="messages" dev="tmpfs" ino=11 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1174.133555][   T30] audit: type=1400 audit(1734766913.366:3666): avc:  denied  { open } for  pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=11 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1174.179531][   T30] audit: type=1400 audit(1734766913.366:3667): avc:  denied  { getattr } for  pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=11 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 1174.224320][   T30] audit: type=1404 audit(1734766913.445:3668): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[ 1174.265226][   T30] audit: type=1404 audit(1734766913.445:3669): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[ 1174.303168][   T30] audit: type=1400 audit(1734766913.455:3670): avc:  denied  { read } for  pid=22423 comm="syz.2.6674" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1174.306231][T22439] FAULT_INJECTION: forcing a failure.
[ 1174.306231][T22439] name failslab, interval 1, probability 0, space 0, times 0
[ 1174.352733][   T30] audit: type=1400 audit(1734766913.455:3671): avc:  denied  { open } for  pid=22423 comm="syz.2.6674" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1174.434265][   T30] audit: type=1400 audit(1734766913.455:3672): avc:  denied  { map_create } for  pid=22423 comm="syz.2.6674" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1174.453990][T22439] CPU: 1 PID: 22439 Comm: syz.0.6676 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1174.463784][T22439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1174.473681][T22439] Call Trace:
[ 1174.476806][T22439]  <TASK>
[ 1174.479580][T22439]  dump_stack_lvl+0x151/0x1c0
[ 1174.484094][T22439]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1174.489571][T22439]  ? stack_trace_save+0x113/0x1c0
[ 1174.494425][T22439]  dump_stack+0x15/0x20
[ 1174.498415][T22439]  should_fail+0x3c6/0x510
[ 1174.502668][T22439]  __should_failslab+0xa4/0xe0
[ 1174.507271][T22439]  should_failslab+0x9/0x20
[ 1174.511608][T22439]  slab_pre_alloc_hook+0x37/0xd0
[ 1174.516382][T22439]  kmem_cache_alloc_trace+0x48/0x270
[ 1174.521501][T22439]  ? alloc_pipe_info+0xe7/0x4b0
[ 1174.526189][T22439]  alloc_pipe_info+0xe7/0x4b0
[ 1174.530702][T22439]  splice_direct_to_actor+0xa15/0xbe0
[ 1174.535908][T22439]  ? kstrtol_from_user+0x310/0x310
[ 1174.540853][T22439]  ? avc_policy_seqno+0x1b/0x70
[ 1174.545539][T22439]  ? selinux_file_permission+0x2c4/0x570
[ 1174.551011][T22439]  ? do_splice_direct+0x3c0/0x3c0
[ 1174.555870][T22439]  ? fsnotify_perm+0x6a/0x5b0
[ 1174.560382][T22439]  ? pipe_to_sendpage+0x340/0x340
[ 1174.565242][T22439]  ? security_file_permission+0x86/0xb0
[ 1174.570625][T22439]  ? rw_verify_area+0xa7/0x1c0
[ 1174.575226][T22439]  do_splice_direct+0x27f/0x3c0
[ 1174.579912][T22439]  ? splice_direct_to_actor+0xbe0/0xbe0
[ 1174.585293][T22439]  ? fsnotify_perm+0x6a/0x5b0
[ 1174.589806][T22439]  ? security_file_permission+0x86/0xb0
[ 1174.595188][T22439]  do_sendfile+0x613/0xfe0
[ 1174.599440][T22439]  ? __kasan_check_write+0x14/0x20
[ 1174.604389][T22439]  ? do_preadv+0x350/0x350
[ 1174.608639][T22439]  ? ksys_write+0x260/0x2c0
[ 1174.612984][T22439]  __x64_sys_sendfile64+0x1ce/0x230
[ 1174.618017][T22439]  ? __ia32_sys_sendfile+0x240/0x240
[ 1174.623132][T22439]  ? debug_smp_processor_id+0x17/0x20
[ 1174.628339][T22439]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1174.634243][T22439]  ? exit_to_user_mode_prepare+0x39/0xa0
[ 1174.639711][T22439]  x64_sys_call+0x140/0x9a0
[ 1174.644141][T22439]  do_syscall_64+0x3b/0xb0
[ 1174.648390][T22439]  ? clear_bhb_loop+0x35/0x90
[ 1174.652903][T22439]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1174.658632][T22439] RIP: 0033:0x7f9fe1cb3d29
[ 1174.662888][T22439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1174.682325][T22439] RSP: 002b:00007f9fe0304038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1174.690571][T22439] RAX: ffffffffffffffda RBX: 00007f9fe1ea4080 RCX: 00007f9fe1cb3d29
[ 1174.698385][T22439] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 1174.706192][T22439] RBP: 00007f9fe0304090 R08: 0000000000000000 R09: 0000000000000000
[ 1174.714011][T22439] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[ 1174.721818][T22439] R13: 0000000000000001 R14: 00007f9fe1ea4080 R15: 00007ffd348c3a38
[ 1174.729636][T22439]  </TASK>
[ 1174.918060][T22450] FAULT_INJECTION: forcing a failure.
[ 1174.918060][T22450] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1174.931201][T22450] CPU: 1 PID: 22450 Comm: syz.3.6683 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1174.940899][T22450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1174.950791][T22450] Call Trace:
[ 1174.953914][T22450]  <TASK>
[ 1174.956693][T22450]  dump_stack_lvl+0x151/0x1c0
[ 1174.961204][T22450]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1174.966672][T22450]  ? _raw_spin_unlock+0x4d/0x70
[ 1174.971361][T22450]  dump_stack+0x15/0x20
[ 1174.975355][T22450]  should_fail+0x3c6/0x510
[ 1174.979605][T22450]  should_fail_alloc_page+0x5a/0x80
[ 1174.984637][T22450]  prepare_alloc_pages+0x15c/0x700
[ 1174.989589][T22450]  ? __alloc_pages_bulk+0xe40/0xe40
[ 1174.994620][T22450]  __alloc_pages+0x18c/0x8f0
[ 1174.999048][T22450]  ? prep_new_page+0x110/0x110
[ 1175.003652][T22450]  ? irqentry_exit_cond_resched+0x2a/0x30
[ 1175.009201][T22450]  ? irqentry_exit+0x30/0x40
[ 1175.013629][T22450]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 1175.019095][T22450]  skb_page_frag_refill+0x209/0x3b0
[ 1175.024132][T22450]  tun_get_user+0x6f0/0x3aa0
[ 1175.028560][T22450]  ? release_firmware_map_entry+0x190/0x190
[ 1175.034288][T22450]  ? tun_do_read+0x2010/0x2010
[ 1175.038887][T22450]  ? __kasan_check_read+0x11/0x20
[ 1175.043760][T22450]  ? preempt_schedule_irq+0xe7/0x140
[ 1175.048869][T22450]  ? __cond_resched+0x20/0x20
[ 1175.053377][T22450]  ? preempt_schedule_irq+0xe7/0x140
[ 1175.058499][T22450]  ? __cond_resched+0x20/0x20
[ 1175.063017][T22450]  ? trace_event_raw_event_swiotlb_bounced+0x340/0x480
[ 1175.069701][T22450]  ? irqentry_exit+0x30/0x40
[ 1175.074126][T22450]  ? sysvec_reschedule_ipi+0x8c/0x160
[ 1175.079330][T22450]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 1175.084803][T22450]  tun_chr_write_iter+0x1e1/0x2e0
[ 1175.089661][T22450]  vfs_write+0xd5d/0x1110
[ 1175.093831][T22450]  ? __kasan_check_read+0x11/0x20
[ 1175.098686][T22450]  ? file_end_write+0x1c0/0x1c0
[ 1175.103478][T22450]  ? __fdget_pos+0x209/0x3a0
[ 1175.107890][T22450]  ? ksys_write+0x77/0x2c0
[ 1175.112146][T22450]  ksys_write+0x199/0x2c0
[ 1175.116313][T22450]  ? __ia32_sys_read+0x90/0x90
[ 1175.120909][T22450]  ? __kasan_check_write+0x14/0x20
[ 1175.125857][T22450]  ? switch_fpu_return+0x15f/0x2e0
[ 1175.130820][T22450]  __x64_sys_write+0x7b/0x90
[ 1175.135237][T22450]  x64_sys_call+0x2f/0x9a0
[ 1175.139482][T22450]  do_syscall_64+0x3b/0xb0
[ 1175.143733][T22450]  ? clear_bhb_loop+0x35/0x90
[ 1175.148247][T22450]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1175.153978][T22450] RIP: 0033:0x7f1c6304f7df
[ 1175.158233][T22450] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1175.177672][T22450] RSP: 002b:00007f1c61680000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1175.185918][T22450] RAX: ffffffffffffffda RBX: 00007f1c63241160 RCX: 00007f1c6304f7df
[ 1175.193726][T22450] RDX: 000000000000002a RSI: 0000000020000500 RDI: 00000000000000c8
[ 1175.201539][T22450] RBP: 00007f1c61680090 R08: 0000000000000000 R09: 0000000000000000
[ 1175.209350][T22450] R10: 000000000000002a R11: 0000000000000293 R12: 0000000000000001
[ 1175.217166][T22450] R13: 0000000000000000 R14: 00007f1c63241160 R15: 00007ffdeba41f58
[ 1175.224979][T22450]  </TASK>
[ 1175.271368][T22459] 9pnet: Insufficient options for proto=fd
[ 1175.369281][T22478] syz.2.6694[22478] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1175.369359][T22478] syz.2.6694[22478] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1175.433925][T22484] syz.1.6697[22484] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1175.445861][T22484] syz.1.6697[22484] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1175.701759][T22523] 9pnet: Insufficient options for proto=fd
[ 1175.811767][T16792] usb 2-1: new high-speed USB device number 68 using dummy_hcd
[ 1176.172433][T22546] syz.2.6708[22546] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1176.172483][T22546] syz.2.6708[22546] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1176.263159][T16792] usb 2-1: Using ep0 maxpacket: 16
[ 1176.891763][T22561] 9pnet: Insufficient options for proto=fd
[ 1176.915796][T16792] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1176.926459][T16792] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1177.106495][T16792] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1177.118213][T22573] syz.0.6718[22573] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1177.118292][T22573] syz.0.6718[22573] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1177.121100][T16792] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1177.219213][T16792] usb 2-1: Product: syz
[ 1177.223582][T16792] usb 2-1: Manufacturer: syz
[ 1177.228949][T16792] usb 2-1: SerialNumber: syz
[ 1177.725143][T22592] 9pnet: Insufficient options for proto=fd
[ 1177.800619][T22492] UDC core: couldn't find an available UDC or it's busy: -16
[ 1177.809005][T22492] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1177.854111][T16792] usb 2-1: USB disconnect, device number 68
[ 1177.882158][T22612] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6733'.
[ 1177.913895][T22618] 9pnet: Insufficient options for proto=fd
[ 1178.188301][T22643] netlink: 40 bytes leftover after parsing attributes in process `syz.0.6745'.
[ 1178.740596][T22677] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6759'.
[ 1179.033760][   T30] kauditd_printk_skb: 412 callbacks suppressed
[ 1179.033784][   T30] audit: type=1404 audit(1734766918.376:4085): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[ 1179.073025][   T30] audit: type=1400 audit(1734766918.406:4086): avc:  denied  { read write } for  pid=22687 comm="syz.3.6763" name="fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=0
[ 1179.096702][   T30] audit: type=1404 audit(1734766918.436:4087): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[ 1179.097750][T22688] fuse: Bad value for 'fd'
[ 1179.111590][   T30] audit: type=1400 audit(1734766918.436:4088): avc:  denied  { mounton } for  pid=22687 comm="syz.3.6763" path="/179/file0" dev="tmpfs" ino=960 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1179.138419][   T30] audit: type=1400 audit(1734766918.466:4089): avc:  denied  { prog_load } for  pid=22689 comm="syz.2.6764" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1179.157984][   T30] audit: type=1400 audit(1734766918.466:4090): avc:  denied  { write } for  pid=22689 comm="syz.2.6764" name="vsock" dev="devtmpfs" ino=264 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1179.226576][T22696] bpf_get_probe_write_proto: 2 callbacks suppressed
[ 1179.226592][T22696] syz.2.6766[22696] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1179.233081][   T30] audit: type=1400 audit(1734766918.466:4091): avc:  denied  { open } for  pid=22689 comm="syz.2.6764" path="/dev/vsock" dev="devtmpfs" ino=264 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1179.238433][T22696] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[ 1179.244896][   T30] audit: type=1400 audit(1734766918.466:4092): avc:  denied  { read } for  pid=22689 comm="syz.2.6764" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1179.267029][T22696] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 1179.267050][T22696] CPU: 1 PID: 22696 Comm: syz.2.6766 Not tainted 5.15.173-syzkaller-00161-gb4bd207b0380 #0
[ 1179.267068][T22696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1179.267079][T22696] RIP: 0010:bpf_check+0x9530/0x12c60
[ 1179.267105][T22696] Code: 24 70 80 3c 08 00 74 08 4c 89 ef e8 ba ca 30 00 49 8b 75 00 89 df 41 ff d6 48 89 c3 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 48 89 df e8 92 ca 30 00 48 8b 1b 48 85 db 0f 84
[ 1179.267119][T22696] RSP: 0018:ffffc90000d974e0 EFLAGS: 00010246
[ 1179.267135][T22696] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[ 1179.267147][T22696] RDX: ffffc90002730000 RSI: 00000000000081a5 RDI: 00000000000081a6
[ 1179.267161][T22696] RBP: ffffc90000d97bb0 R08: ffffffff817c2ead R09: 0000000000000003
[ 1179.267175][T22696] R10: fffff520001b2d68 R11: dffffc0000000001 R12: 1ffff9200000c413
[ 1179.267188][T22696] R13: ffff888117838008 R14: ffffffff817be910 R15: ffffc9000006209c
[ 1179.280565][   T30] audit: type=1400 audit(1734766918.466:4093): avc:  denied  { open } for  pid=22689 comm="syz.2.6764" path="/dev/kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1179.301209][T22696] FS:  00007fc96c2596c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1179.301234][T22696] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1179.301246][T22696] CR2: 0000001b3251dff8 CR3: 000000011df4f000 CR4: 00000000003506a0
[ 1179.301261][T22696] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1179.301272][T22696] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1179.301283][T22696] Call Trace:
[ 1179.301289][T22696]  <TASK>
[ 1179.301299][T22696]  ? __die_body+0x62/0xb0
[ 1179.301321][T22696]  ? die_addr+0x9f/0xd0
[ 1179.301342][T22696]  ? exc_general_protection+0x311/0x4b0
[ 1179.301364][T22696]  ? asm_exc_general_protection+0x27/0x30
[ 1179.301381][T22696]  ? tracing_prog_func_proto+0x300/0x300
[ 1179.301402][T22696]  ? bpf_tracing_func_proto+0x15d/0x4a0
[ 1179.301422][T22696]  ? bpf_check+0x9530/0x12c60
[ 1179.301472][T22696]  ? bpf_get_btf_vmlinux+0x60/0x60
[ 1179.505747][T22696]  ? arch_stack_walk+0xf3/0x140
[ 1179.510435][T22696]  ? stack_trace_save+0x113/0x1c0
[ 1179.515293][T22696]  ? stack_trace_snprint+0xf0/0xf0
[ 1179.520241][T22696]  ? ____kasan_kmalloc+0xed/0x110
[ 1179.525096][T22696]  ? ____kasan_kmalloc+0xdb/0x110
[ 1179.529956][T22696]  ? __kasan_kmalloc+0x9/0x10
[ 1179.534469][T22696]  ? kmem_cache_alloc_trace+0x11a/0x270
[ 1179.539850][T22696]  ? selinux_bpf_prog_alloc+0x51/0x140
[ 1179.545147][T22696]  ? security_bpf_prog_alloc+0x62/0x90
[ 1179.550441][T22696]  ? bpf_prog_load+0x9ee/0x1b50
[ 1179.555129][T22696]  ? __sys_bpf+0x4bc/0x760
[ 1179.559384][T22696]  ? __x64_sys_bpf+0x7c/0x90
[ 1179.563806][T22696]  ? x64_sys_call+0x87f/0x9a0
[ 1179.568320][T22696]  ? do_syscall_64+0x3b/0xb0
[ 1179.572747][T22696]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1179.578665][T22696]  ? __kasan_kmalloc+0x9/0x10
[ 1179.583163][T22696]  ? memset+0x35/0x40
[ 1179.586987][T22696]  ? bpf_obj_name_cpy+0x196/0x1e0
[ 1179.592188][T22696]  bpf_prog_load+0x12ac/0x1b50
[ 1179.596790][T22696]  ? map_freeze+0x370/0x370
[ 1179.601132][T22696]  ? selinux_bpf+0xcb/0x100
[ 1179.605556][T22696]  ? security_bpf+0x82/0xb0
[ 1179.609897][T22696]  __sys_bpf+0x4bc/0x760
[ 1179.614071][T22696]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[ 1179.619271][T22696]  ? __secure_computing+0xf0/0x300
[ 1179.624305][T22696]  __x64_sys_bpf+0x7c/0x90
[ 1179.628564][T22696]  x64_sys_call+0x87f/0x9a0
[ 1179.632894][T22696]  do_syscall_64+0x3b/0xb0
[ 1179.637146][T22696]  ? clear_bhb_loop+0x35/0x90
[ 1179.641661][T22696]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1179.647391][T22696] RIP: 0033:0x7fc96dbe7d29
[ 1179.651646][T22696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1179.671092][T22696] RSP: 002b:00007fc96c259038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1179.679327][T22696] RAX: ffffffffffffffda RBX: 00007fc96ddd7fa0 RCX: 00007fc96dbe7d29
[ 1179.687138][T22696] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[ 1179.694960][T22696] RBP: 00007fc96dc63aa8 R08: 0000000000000000 R09: 0000000000000000
[ 1179.702763][T22696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1179.710575][T22696] R13: 0000000000000000 R14: 00007fc96ddd7fa0 R15: 00007fff58c9e4e8
[ 1179.718393][T22696]  </TASK>
[ 1179.721249][T22696] Modules linked in:
[ 1179.730841][T22696] ---[ end trace 6bfeb512b8f4bff5 ]---
[ 1179.736676][T22696] RIP: 0010:bpf_check+0x9530/0x12c60
[ 1179.741866][T22696] Code: 24 70 80 3c 08 00 74 08 4c 89 ef e8 ba ca 30 00 49 8b 75 00 89 df 41 ff d6 48 89 c3 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 48 89 df e8 92 ca 30 00 48 8b 1b 48 85 db 0f 84
[ 1179.765844][T22696] RSP: 0018:ffffc90000d974e0 EFLAGS: 00010246
[ 1179.772817][   T30] audit: type=1400 audit(1734766918.466:4094): avc:  denied  { ioctl } for  pid=22689 comm="syz.2.6764" path="/dev/kvm" dev="devtmpfs" ino=82 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1179.775830][T22696] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[ 1179.805024][T22696] RDX: ffffc90002730000 RSI: 00000000000081a5 RDI: 00000000000081a6
[ 1179.812982][T22696] RBP: ffffc90000d97bb0 R08: ffffffff817c2ead R09: 0000000000000003
[ 1179.820993][T22696] R10: fffff520001b2d68 R11: dffffc0000000001 R12: 1ffff9200000c413
[ 1179.828947][T22696] R13: ffff888117838008 R14: ffffffff817be910 R15: ffffc9000006209c
[ 1179.836838][T22696] FS:  00007fc96c2596c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1179.845533][T22696] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1179.852145][T22696] CR2: 00005555642714a8 CR3: 000000011df4f000 CR4: 00000000003506a0
[ 1179.860141][T22696] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1179.868104][T22696] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1179.875958][T22696] Kernel panic - not syncing: Fatal exception
[ 1179.882006][T22696] Kernel Offset: disabled
[ 1179.886137][T22696] Rebooting in 86400 seconds..