last executing test programs:

1m53.851810116s ago: executing program 0 (id=94):
timer_create(0x4, &(0x7f0000001100)={0x0, 0x1e, 0x1, @thr={&(0x7f0000000000)="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", &(0x7f0000001000)="b2ab4928ea17c951f6c30f3478d1d424068adae5987bbe055181064ad7eaeb62945d840589d4f0d6647fa6fbfc743bb8b5b758d352222c615858294198df360cd1b3fbf448e14aa31a18a408d42d5e9078d6b0ae7df54190f97e3b98554e2dbfd39a61ba01c6415ca6f71fe2a5abda123b1f085c4b16fa5d69b2a5f885b3e07c41bc3b361a5a42e434a706b9a970c8c47778f9bac11ee45df7f6e9a7136238e31db69eddc1789f60f34091d18cd78bb59a208caced6d48b4148e6ce2b300d43892735fca62afb9fb35ce16"}}, &(0x7f0000001140)=<r0=>0x0)
clock_gettime(0x0, &(0x7f0000001180)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x0, &(0x7f00000011c0)={{0x77359400}, {r1, r2+60000000}}, &(0x7f0000001200))
r3 = socket$netlink(0x10, 0x3, 0x2)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000001280)={0x2, &(0x7f0000001240)=[{0x2, 0x7, 0x5, 0x2}, {0x1, 0x10, 0x4, 0xfffffffc}]})
pread64(r4, &(0x7f00000012c0)=""/44, 0x2c, 0xfffffffffffffff9)
r5 = syz_open_dev$sg(&(0x7f0000001300), 0x5, 0x602002)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000001540)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001500)={&(0x7f0000001380)={0x150, 0x1403, 0x1, 0x70bd25, 0x25dfdbff, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth0_to_hsr\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'vlan0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_hsr\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'syzkaller1\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth0_to_team\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth1_to_team\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'macvlan1\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bridge_slave_0\x00'}}]}, 0x150}, 0x1, 0x0, 0x0, 0x8090}, 0x41)
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000001580), 0x220440, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000015c0)={<r7=>0x0, @in6={{0xa, 0x4e21, 0x8997, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8}}, 0x6, 0x7, 0x6, 0x2, 0x88, 0x0, 0x2}, &(0x7f0000001680)=0x9c)
setsockopt$inet_sctp_SCTP_RTOINFO(r6, 0x84, 0x0, &(0x7f00000016c0)={r7, 0x5, 0x8, 0x8}, 0x10)
clock_settime(0x2, &(0x7f0000001700))
sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f0000001800)={&(0x7f0000001740)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000017c0)={&(0x7f0000001780)={0x34, 0x1, 0x4, 0x401, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x3}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0xfffffff3}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x3ff}, @NFULA_CFG_CMD={0x5, 0x1, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x220000c0)
setsockopt$packet_int(r6, 0x107, 0x12, &(0x7f0000001840)=0x365, 0x4)
sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000001940)={&(0x7f0000001880)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001900)={&(0x7f00000018c0)={0x34, 0x1, 0x4, 0x201, 0x0, 0x0, {0xc}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x6}, @NFULA_CFG_CMD={0x5, 0x1, 0x3}, @NFULA_CFG_QTHRESH={0x8, 0x5, 0x1, 0x0, 0x80}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
ioctl$SG_SET_RESERVED_SIZE(r6, 0x2275, &(0x7f0000001980)=0x1)
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000001a00)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000019c0)=0x3})
ioctl$SCSI_IOCTL_STOP_UNIT(r5, 0x6)
write$FUSE_INIT(r6, &(0x7f0000001a40)={0x50, 0xffffffffffffffda, 0x0, {0x7, 0x29, 0x1, 0x4000, 0x7, 0x1, 0xc, 0x3, 0x0, 0x0, 0x8, 0x2}}, 0x50)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000001ac0)=0x6, 0x4)
clock_gettime(0x0, &(0x7f0000001b00)={<r8=>0x0, <r9=>0x0})
timer_settime(r0, 0x0, &(0x7f0000001b40)={{r8, r9+60000000}, {0x0, 0x989680}}, &(0x7f0000001b80))
timer_gettime(r0, &(0x7f0000001bc0))
socket$igmp6(0xa, 0x3, 0x2)
mbind(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, &(0x7f0000001c00)=0x16e8, 0x5, 0x4f324858daa1a23e)
write$tcp_congestion(r6, &(0x7f0000001c40)='vegas\x00', 0x6)
syz_clone(0x8104000, &(0x7f0000001c80)="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", 0x1000, &(0x7f0000002c80), &(0x7f0000002cc0), &(0x7f0000002d00)="a23cd04fdfd1c91db2b7d6d05c0c2e64950bdf20aeb8b663afa268573e49eb970680d86a0eb7b752aa410f502bf4550d93")
timer_settime(r0, 0x0, &(0x7f0000002d40)={{0x0, 0x989680}, {0x0, 0x989680}}, &(0x7f0000002d80))
r10 = openat$incfs(r6, &(0x7f0000002dc0)='.pending_reads\x00', 0x248000, 0xb8)
sendmmsg$inet_sctp(r10, &(0x7f0000002fc0)=[{&(0x7f0000002e00)=@in6={0xa, 0x4e23, 0xf, @loopback, 0x6}, 0x1c, &(0x7f0000002ec0)=[{&(0x7f0000002e40)="1ff435b118b3c12a5a9cc7a2476a226eb9e69e74c55c43c6a0929b7ec9ea3f0386a2be5fd7b6a01795cf30c420221066e54557068a50b55524da9cb727a2c1b0b88f9664f277d9e3928aaa26b90efe059848a81993516d33f878c3c33f76aea1", 0x60}], 0x1, &(0x7f0000002f00)=[@dstaddrv6={0x20, 0x84, 0x8, @mcast2}, @authinfo={0x18, 0x84, 0x6, {0x6}}, @prinfo={0x18, 0x84, 0x5, {0x10, 0x3}}, @dstaddrv6={0x20, 0x84, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}}, @authinfo={0x18, 0x84, 0x6, {0x3ff}}], 0x88, 0x4008800}], 0x1, 0x0)

1m53.851310654s ago: executing program 0 (id=96):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
sendto$inet6(r3, &(0x7f0000000640)='\x00', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000600)='highspeed\x00', 0xa)
shutdown(r3, 0x1)
sendmsg$SOCK_DIAG_BY_FAMILY(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2800000014001901000000000000000228"], 0x28}}, 0x0)

1m53.792564184s ago: executing program 0 (id=98):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(cast6)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x61, 0x1, 0x20493859, 0x1, 0x9, [{0x0, 0x17}, {0x2, 0x5}, {0x51, 0x2}, {0x7, 0x7}, {0x7, 0x8001}, {0xea12}, {0x9, 0x4636}, {0xff, 0x2}], 0x6, 0x5, 0x6, 0x0, 0x7}})
r2 = accept4(r0, 0x0, 0x0, 0x80000)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'})

1m52.912501127s ago: executing program 0 (id=110):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
recvfrom$llc(r0, 0x0, 0x0, 0x22, 0x0, 0x0)
readv(r0, &(0x7f0000000480)=[{&(0x7f0000000000)=""/2, 0x2}, {&(0x7f0000000040)=""/160, 0xa0}, {&(0x7f0000000100)=""/54, 0x36}, {&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000000500)=""/123, 0x7b}, {&(0x7f0000000240)=""/214, 0xd6}, {&(0x7f0000000340)=""/33, 0x21}, {&(0x7f0000000580)=""/220, 0xdc}], 0x8)

1m52.908670644s ago: executing program 0 (id=112):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000c30e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

1m52.842795936s ago: executing program 0 (id=113):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x1, 0x2}, 0x6) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
openat$cdrom(0xffffffffffffff9c, 0x0, 0x101180, 0x0) (async, rerun: 32)
syz_init_net_socket$rose(0xb, 0x5, 0x0) (rerun: 32)
r3 = socket$can_j1939(0x1d, 0x2, 0x7) (async, rerun: 32)
r4 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 32)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r5=>0x0})
bind$can_j1939(r3, &(0x7f0000000100)={0x1d, r5, 0x1, {}, 0xff}, 0x18)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000011c0)={'vxcan1\x00', <r9=>0x0})
bind$can_j1939(r8, &(0x7f0000001200)={0x1d, r9}, 0x18) (async, rerun: 32)
connect$can_j1939(r8, &(0x7f0000000080)={0x1d, r9}, 0x18) (async, rerun: 32)
sendmsg$NFC_CMD_DISABLE_SE(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0xc000}, 0xc, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c0000008e0db8561f82f9a1f06af4199b7aacd740779338a0162827da71f17f140455e93dad39197c9bb2636078bb9dfcedb5b0fa7b2c437935ac8d4cca59b183db09d4aaa472c3f825deaa31935fae878acafab1d430f3c6e7466e4a31fce2b38a452307e65027e6d6eed2400dae41b66c9564a9755ca806057efeeb2571cbf215bf639dd9e50a6b6ec7d6ec467ba0ceac5ff9cadadd5a66266dd2d981", @ANYRES16=r2, @ANYBLOB="000229bd7000ffdbdf25120000000800150002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
writev(r8, &(0x7f00000002c0)=[{&(0x7f0000000240)="ea0aeaf3b63501e82ba711a9bf6a966cee75244b958e0bcdd75de21027198ce273e547f8108265dab30b6706e736a838924bebddce57f4f2ed5b7f0d0bd3d496aa16dacfbc6503d9a0f67c3800fe66fba0453072b3fc1da0afd199e92924e2453068447d8dbebe24cfbabfb6338d4a", 0x6f}], 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0xffffffff, 0x0, {0x0, 0x0, 0x0, r10}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98) (async)
unshare(0x4000400) (async, rerun: 32)
r11 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000016000000080000007f00000000000000", @ANYRES32, @ANYBLOB="00000100"/20, @ANYRES32=0x0, @ANYRES32, @ANYRESDEC=r8], 0x48) (rerun: 32)
socket$unix(0x1, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x3, &(0x7f0000000580)=@raw=[@map_val={0x18, 0x0, 0x2, 0x0, r11}, @exit], &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
sendmsg$NFC_CMD_START_POLL(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000680)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002301000034220000060000000800010051fab81db98685a5cbc317c42583cd9a3ed2b9228f56d7ab85b73fe7f83ca294799e6e4e014efec2799bfb2563c73a55a09a88e977b8779dbffa56fffdc5a7836f822494d6f5cdb3242d2f32daa482642fedc104c48795124e59d9944a02249a953dcf33dba268d9d3412cc42c103dd71de7309d74", @ANYRES32=0x0, @ANYBLOB='\b\x00\r\x00p\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r12 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_LIST_RULES(r12, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x3f5, 0x4, 0x70bd2d, 0x25dfdbfd, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x200040c4}, 0x8081) (async)
ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f00000004c0)) (async)
syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)

1m37.786459262s ago: executing program 32 (id=113):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x1, 0x2}, 0x6) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
openat$cdrom(0xffffffffffffff9c, 0x0, 0x101180, 0x0) (async, rerun: 32)
syz_init_net_socket$rose(0xb, 0x5, 0x0) (rerun: 32)
r3 = socket$can_j1939(0x1d, 0x2, 0x7) (async, rerun: 32)
r4 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 32)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r5=>0x0})
bind$can_j1939(r3, &(0x7f0000000100)={0x1d, r5, 0x1, {}, 0xff}, 0x18)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000011c0)={'vxcan1\x00', <r9=>0x0})
bind$can_j1939(r8, &(0x7f0000001200)={0x1d, r9}, 0x18) (async, rerun: 32)
connect$can_j1939(r8, &(0x7f0000000080)={0x1d, r9}, 0x18) (async, rerun: 32)
sendmsg$NFC_CMD_DISABLE_SE(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0xc000}, 0xc, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c0000008e0db8561f82f9a1f06af4199b7aacd740779338a0162827da71f17f140455e93dad39197c9bb2636078bb9dfcedb5b0fa7b2c437935ac8d4cca59b183db09d4aaa472c3f825deaa31935fae878acafab1d430f3c6e7466e4a31fce2b38a452307e65027e6d6eed2400dae41b66c9564a9755ca806057efeeb2571cbf215bf639dd9e50a6b6ec7d6ec467ba0ceac5ff9cadadd5a66266dd2d981", @ANYRES16=r2, @ANYBLOB="000229bd7000ffdbdf25120000000800150002000000"], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
writev(r8, &(0x7f00000002c0)=[{&(0x7f0000000240)="ea0aeaf3b63501e82ba711a9bf6a966cee75244b958e0bcdd75de21027198ce273e547f8108265dab30b6706e736a838924bebddce57f4f2ed5b7f0d0bd3d496aa16dacfbc6503d9a0f67c3800fe66fba0453072b3fc1da0afd199e92924e2453068447d8dbebe24cfbabfb6338d4a", 0x6f}], 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0xffffffff, 0x0, {0x0, 0x0, 0x0, r10}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98) (async)
unshare(0x4000400) (async, rerun: 32)
r11 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000016000000080000007f00000000000000", @ANYRES32, @ANYBLOB="00000100"/20, @ANYRES32=0x0, @ANYRES32, @ANYRESDEC=r8], 0x48) (rerun: 32)
socket$unix(0x1, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x3, &(0x7f0000000580)=@raw=[@map_val={0x18, 0x0, 0x2, 0x0, r11}, @exit], &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
sendmsg$NFC_CMD_START_POLL(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000680)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002301000034220000060000000800010051fab81db98685a5cbc317c42583cd9a3ed2b9228f56d7ab85b73fe7f83ca294799e6e4e014efec2799bfb2563c73a55a09a88e977b8779dbffa56fffdc5a7836f822494d6f5cdb3242d2f32daa482642fedc104c48795124e59d9944a02249a953dcf33dba268d9d3412cc42c103dd71de7309d74", @ANYRES32=0x0, @ANYBLOB='\b\x00\r\x00p\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r12 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_LIST_RULES(r12, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x3f5, 0x4, 0x70bd2d, 0x25dfdbfd, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x200040c4}, 0x8081) (async)
ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f00000004c0)) (async)
syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)

5.017550949s ago: executing program 4 (id=1639):
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="6400000002060103000000000000000000000000050001000700000016000300686173683a6e65742c706f72742c6e65740000000900020073797a30000000000500040000000000050005000a000000140007800800124000000000050015"], 0x64}}, 0x0)
syz_emit_ethernet(0x72, &(0x7f0000000040)=ANY=[], 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[], 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="6400000002060103000000000000000000000000050001000700000016000300686173683a6e65742c706f72742c6e65740000000900020073797a30000000000500040000000000050005000a000000140007800800124000000000050015"], 0x64}}, 0x0) (async)
syz_emit_ethernet(0x72, &(0x7f0000000040)=ANY=[], 0x0) (async)

4.956614719s ago: executing program 4 (id=1640):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000801}, 0x40800)
openat$dir(0xffffffffffffff9c, &(0x7f0000002a00)='./file0\x00', 0x40, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-avx2\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$rds(r4, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)=""/27, 0x1b}, {&(0x7f00000000c0)=""/30, 0x1e}], 0x2, 0x0, 0x0, 0x20040045}, 0x40)
sendmsg$NFT_MSG_GETSETELEM(r4, &(0x7f00000002c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x2c, 0xd, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x2}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x40)
read$FUSE(r2, &(0x7f0000006380)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000100)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x80d804, 0x0, 0x0, 0x4}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000041c0)="412e450a2a7b9586d1e6e9de257afc4fd60c8de430c0d6348b2cf1db8d070a539de9c1e91a178f9240dbcfe303566018f6c20c55d643a2ed46aaacf49ca491ee2f06184bdb548778a2c56e56f6b40b994419428bbbb9dfa5f9593511ca8ae1c088fb0ee5da72f505000000000000002c04754204f194ae6ceff4570d44496eeffe619998eafc7167d22e1c6aa73e89ad19224e35130a37cf68d5c41ccafe59b4b753a26e06c4306d31d78de6cede97c06e3ca2cc4af66b7548268efa91621ffca2655d2c8f1a9bb019b88fa729cb3d32f72c098c44898d42c42f39feb4faead93980726c236129acdf31c01f1cabb5ca3ec4e45eb5e6e59912792b4976e3f2b560c861d49b539d8e1870040a8cf190a8a767ec067a8048aac53336b44669d3d425843ae80681a7c02a5d5a3d90f355fd4a6ac277e75230d558f0df20cb323cc65e9b5a258cdd669c8a9534e4aff09a8fe89b124748c9e756c28789c2152a5142bc0bb205e339d43bb980b3f04a3c1a424a2a093966b20600a5410e0528fb35937c998eea19f01eaf2f39e16d85563a6737ddab3213ca1832f0afdf891e34a582f6a4ac81fda70ebc3fedac2fb3a492fdb40b91021e5d371d990064cd1f7c2c1a6472dec7505f9a4940057a3e57fd53aa3cd2eb914e073a19b6e925f8553e6875c093c7d19de25861fd9640f0eca4cda0467f12126daa2e0c6df7d4e4babe5a6e59e8391be7700790315b6b8a8aa74cd6d3f054aceaeda79430676b67fe25c9029e0894b413377fc4d8300d9f9338fadd07e4c80cac08113df8971a868458c47c06fff0c1c4bfd48ea583e9e76ef103d42c233b6de10b30612cdbeb6b60a6a4dbbe2da63cc2dd4fb93cac65af3c1279274f4af0e2c5b96e6068aa5b41f7548fb72b0c142351f64446db7425115b89132b5589ee642ebbde655adb2d7d1117456a6e4f2886879b42baf85e05d53e2aceea9c3830673bdc4d081675fe76b994651af9c3f16b7513834fce4654f84558a8308fa677d05bffcc893d9813bf87c5ec520cd66ad58dc06f0c47d253cd36dfec82980fc8dbdcd4b1c037c2b30bef455984f3e8ed19d69e185fe4fbdda2c2517ec9abfbb4841252e650b6bf56fdeca9a4ee3c311de3c6859ec14cc00e95323c57c02fa894d83ea17944f3112fc19a7e11335d7951ec6dd5b4f06fb9b637313a230341ea5da6a7a959e707d0cd5fca60a6649c8df8d6c17e9a49d230e5775df14e4b43aa3420bd0b8814ec7360ab1910e69fab8932f7646d7998bdc2e8ec354c52da21ed83fb7582cb9d37bb95f144974f72c7b0ae7b42945768fa8ec0dd6daba72d05809670506ef1054282201b00906c8af64e3e13a10f180688c96549b2d3d6b04403fd571e7b132891dd4b7cf37aec25ca1e9190c17aaefbc31e059915c12c232fb7097e9fa6f35fbb265c7102db62e2264590c583ea90f1aee3f166af81430d9084eb0c760ebbb16049c9fd1fee6ce33c8ac205e3ac9c275531feadfa4054e0c027c26beb009f54aa72b864d39bb11753f77931bb960276db33021c65671e57b3708bbf979be222e8439d71f58ca87cec7a054517af398a42735b580717377a54f139e2c46813cbb03d98e49c26f4ed54d75e48573cd06145f913f4e313eeee837496dfff75aa722fd8486c45f9c959da12ae48ba4a10712120a203e2476c7b96031d8f8773f68344e6fa21831287655aabbd594e9f272eb1a7315d2d79b8bcd5e63004cd106f80b1e40a5d9e428a01bc58264f4d63c2ee9db6efa70607a642aeb883bf4b9fe009d7f09c16b05a2c9b73573e9019e161ebbdc1fc9b9cd0c5fe1b57adcba2d0f3a767ad59aafa159b3dd181f0601ff95e8af8b5410e56c81ffb8ab35b1e04af35dabf69f08572e69260b72bfd502c5a0de627fd3fee44bf1d4a261bd356056c5739398e3ff161beec1240a089625daffbc61dc5e660c274565477a0ff1797fefff04a98704802ab0674ab72d400686229608cbfd2ca20f4e62495e8b09de9d180c47375bbad72f4474b67d56104b4b466192be60f7aa668fd0a4338b856f114311842ee806d6488ab09098ed9de0e21bcc8b42a5d5713d15eca108fcc7a65d6b414a112524a6e1418644508dd957147a92d4399d13faaf01cacef40549cd11900f9aa32a8333f55796ef25d33c554a308da9797cd0ac25888311b0ac88eff0be7a36ddedcfc2b095abb4d5a6a4edbbad67b70cdf60c7ed0c5e040ced90edb3322ef684332358942ede9191b431c99b3abf8f9c50206479f0ac118c0a99df61fb9c90d846f41caa6a2448fb7e15640965e051c2af4ee72a5cc7c962bacff7019615c10e6c3054e2e5792df3aa6e2c33425552148466a88568cc79b6edebf0107b7d3d24423a665d20c3a1c0f1a6b34eb475bf875912115914cfabcf394f8a096d64e5dc95705074fe5e985497dcf052b9f748b9d4688859c0200fa43719e4722ed6c064c0efa7e07beb2a26fd724b63537fa0eb506365d5c029cd8dce7dd0a1cb9d9058c061739734af6be9e880fe7e28a211a4c368a7babd1107110ecbb384b274cc092b9511c4abde2ddd863162e2739984a9f3c0a76e3c530a27d5e385f4a3b87607b2a944e09d28239661d27719e22c0a657ea383c30859ca29cdb8fbc79bc83e995dcb361743a7e195650c37e570b768a0a1f0b118fa5be9b3c838326343ec5b376d5ee040ee29dfd868cccf9cfa4591151f519cd6e2ae1453a58aa92f90ee5be11ceb8511ab743f399be0a190eeddfd112336866831c3255ef6520d88b2581ea3767f3df01a38d9b4656f2a89c5df41443291a795da45c8a846015cd041bea0dfbe648348b10ae73ce43d9017182792cd9172eee642c549a530cc1f537f9aa70ca63792ba4a86a713ae09b917136e5bf1506ad7f367d8d2f77f47a2318facd109bba9b1327b5db9e4aeffbdcf414db761eeacc227a15cd72aa52c8ede33bdbab9de9aa1e8f470a388013d07f08777e2131bbd4856ab5c1c38d03ef407197ccf24e8b2a8db69e78f9d6623033c453541bb79f9e0be9a55588e2e54fce65fb785467064a146c4bf218068b5e3efdafaf93a98253becaef226cd79468ff1bbe0c9d43877f5cbb5844fd8957f15d3ef208aac11816585cdccf039c36b429d3d7fb634054fd0f09c8abea3746a6b7379142abde26d998ac7e39b94746c60c09f86ddbd7497849d1ef839730672449f35a3c3253666e9fc053ac1c518e44e0b84555be507f7c00fa9e4864b4bf40ac3d93f12001eb780a779e655d0633803268c094ae161a0efd652003d6ac47f9a6c28d866b56233f371627b01e0fe9361dca611a28841968d4e12cb73d49ce08fe25de4a90b2d34607202b20e71f5e1eed38e17d0a2748f548cf61735f4c9cead1cb93b11929d906d65fc60f88e6919b7b5a1014e6d408bce9c8cc832eecf9147708fe451891717d2ed99dee70773feaa97985102abd3dd05c904c28898afe060621db6564887bc4afe158fbe1d819136a1ac1dc9d8674798a93daf5255460b50c34496205834c668db4c764e76ebb6cdaf5fc44b881cc2ae87b4a7cc045143f96b1620abfd0f116e673b335beefdafa1e58d9194e010cb78956044646da5ba853ce981667f2b8e5001c2df437c9d597ccd2be7d2887f5cb7aad0539abb3f9db1c8f5cd4d7d831946ba1c1aa8737c114fec1ac9a82519f57cb48c49b7f62e9eaa89f448df33fb307cd0036c70b490ac340f7d04e14f32bfeebb08a9d5bc7bbef8f231ea09311d4c82cc55c90eb53c6c003cc98a34dd3c4ec2d8b3a655a78e16e908f368733d0a02b36fe963e2d80b5e6f7b2e3aae3013c900c76e4d56e8348bef221f8a642e692c23b12520fb68c793e789eeeceb4efb2097a4d5952d144094cd7be6edc933d257f6230e962d70ba42e1b07ad9eca0ccd60d3d9a6e06b73ccf96a8aa490ed3bd58bf4d79db65355ae145b54be004e464f4dd23fb8b1bf15e13838116083da67186513652608e37c8f847b2bcafb57bcefc7efc8c8182c7d708cce5d14695b4e618e77f8e7be81f27a05e415fd37ac21507a665b2558daee5c0b0859fedfede8c03f181ef5e0ec0da6caa3edf402dd73bcb4026c489a7cca8ab700d3e9f050006c36768a16e8a48e48ed5750b8cdb7ad1fd12d4cc8333d324d6c83905303fa7013fc02553b587544affe38f1a95e0c4c39740d63b6d387fc89b30bd5fd745cb64844b13897ccf5cca135f7d39e03ce8adcda919d86b25b52764b0a0c4f07f88df68868415de13863df84a7e8d355b09cf90e482eb4174fd01f1b371a4dc52f3c89fc3a70c71657aa5d7573ef9acf4d2b0b321c41ff2640515bb43637ba2288ca0bff2e2a3a998ad8294c52f9edfe0a4ee0a3f8ed5b4b5c43319bb9c58dd07ea3237d7bb62cb086e7ea4a81cba2cdeb28794a09c275a704963110b64720bd089e3737ee1a91e348b5e97b63e1724de1fa9f49961d653bbb47b6fa993b035cf59659bcd0306180645162568abf51127845cbe6e37cc3c19b9d69657db4258fa5e8428a73eff6506bff474c2e302ad5559ac8de44c6f0baba5e2e579e7d7f9d9ebf540674432ac11d92bfc9abdc24126888b533f43bd6f293b0bc315915743114a35308a0ee2e710522137918a2b09ddbbc7a2313a2a6b85a1ad26f14dd70072651c8300ddf6de29704b716ce1bc431c66ccc96731f46359a9f6850976c96dcb5e0ee47446f50b6b3ba90d45224066e123ad3854d877c0cdd9325000ac0d6813c30cd43d3e150335601724ca3666458dc4c04f6562296982353e155d5255c9008c0b46d21a678c8fcb3aa8d6574476e0458eb0a76a6cb50f929ed218cc4654cb4f95fb3afbc2548b74acc312563375a19e55d488599488dfed4dd31b39f29ad61dad343dfca3b45b316a34e7a7bebd2b0f562a9e69848d13fc80a4fa52d0f17bd15d9e1fd39a7dcc86128d14493805d105a745673bddea68ca74ac09d95cc7412d5be2cbd0a247a81dc9e148111e22cdf3375805469226ca3538f960a6ba6aa0eeeb87c784ffb1bfc09180a61be3c7c535fc6d593c3b3f4de21b8c3eccc9021e80fb07dce0aeb3b023bd55f24356f646791ba80e5ca21ac092a069ae0a22cfefc08c23cc7aa69b570bd17cce9de15871d363f167288f99f04761caa67f12c949466493f661d39ee4280c955446ff5a9bb14f2d1ae21cdb91a5868e0c52097cf380f571935b140562922763f1b79c3709b949c57a00b08828ce9e685f6b234b5fe3c62d9feb249ce75e81f5efd556c14d5da24dc0554723fdbe52659969a39f470e82c50c4777c908628436e31177af1125d5f70ff627462247e5bc20c47ef75f369174586d43d42f7eefdd47fefa745badebca2a881ccc018ea411cc8a7a0881422bee8704bb98e6bea9fbec63441fb45d7ccfd436909b57a2b60b788e15bda3ca7663b19bd84d0879deb639f10def9a99d42a4b9a4fd7fecbf6d2e7598678307ba9a5b6f143c27cf1ca41e3c904007bb762cd5df6e63c4cf422c2ba959e53bd8e5664cf5df6a91a4bc8cebc52b22f30060fcbc5ead53d38eabd160c1da4cab8aa95c3640ffd78074aa2cbb05cb8ea90a0c95a4a1b2be1ee94f238000f1faffa069d87039f13f5f84ff368aec5a0b10020232b9fc954a6c22573ef48459e574d48a4845837e1d6ef386738ccedd093d4d5bf3a3f790c875ba7449d03397642feb71100f2c25ab2cadf0b0802544a2095a51b19cdece623b17d420b173a99c081f8e229b6de3c680d6bb39bb98b479517d77cca581b81cf856753a44ebd64cff111fb8ca37ea45d217a3fca44a083e6c35b0fed9f8f7631178d15e88f86c85f1ce68c900afdd1f7e5b8bd4ef3f58c447b77d3befc49180df7a5eb2ae8ae33b4ef573f3a425da8a60cde84d8eeae6d6399b9fbbfa0fa8d448b25c7f79b7554d0b02b0decbc74ae8560f630af596313fb33d442a410061ace0aa7a440d5e31ca8bb2cc495c4f0b672edb011b0c5f16781836df7f4af8329143d5a1a99d7b18ef9f774c4199d635848cedebac82637a03a189c65bf667503737c75b6639ac65ad424ca475285437e6f19830b36549f607ffc387c8b11a34a838159376a6335afaa045bd2bb04e279dd72436331d07dfbd72e2436b27f0df23a266fd15cf56d1a9e93aaac8901cfe49a3219ae36c5c65c75e5c708fb82cac4d6a50726509ec3a7d32d54cf584ae353a5bff75a6de77a0b240cf8a0a72817c9d37699ca89c96e0e0d96a7665ac3a7d1febca1a1d79e2cbde8025c271360e2f90048b2d9fd56f45c013e001dad4b7785be69dc01f8a954ef7a84455986fc5c9d5167d91808efdb4476ed79f99563d887cfd4e99809d9e388501dea228cbb3cf3770082dc566455251fd9c2c742963c33500618c6ec99e0bef007408a0462a081237be4c6e5db0258d4be5fc9cf63fd1ace1f4166c053b0fb84fe24917da1255cf40bbb1b45644f6a7699cf802a35a932c374b1d62013e6afca3787627469994c02f622ab877ed5491fc2a89eea60e4e1628da89e3ad600ff6442e4ebf20e47304176b6a1703c094b3cf6d7fbbddd8d8fa5a00f28b4d8f43d88487e9d4531071512f2027198714a8d1cef126775547fc74f2a35840510f325e50361be76557767560055e084f2ecaefa0dd8ca8215301a7a887d2eaddaeb1f5c3dfdbd2cc1ba5f02d4426b98c0f861c5f724405758f442560ea6cd1d953456cc4aac6642ad61c03dbaffc2364d8ec2ef9f483c70355139d1fbd9617ab3c7eedf0b8963c1cfdab769180db43c416a90d9fdf3fd0eb2f81187642b4e2a09d6462d27527fdfda31f7b262501749dcfc6c184983f9923424131d05cc811cacf5c2c87e8e6f135349e68cde0e8997bf1dde248e5124d5dca2681abdbe58d327a8edd585821f03fdd4515728f1336495ba25c9bba56a3f706d60c35cbd0b40d0ac0583a981f9af08510ed8ed0a726e5472f8995af3837fbf1e89587633d2ef944868a153919165778e963710872af12faf96c0919c638e5affa97104471ba6e178d27602f96b9546ebe52190d91be245be08742b96389080676a566d3229e593e4f56a76ae4c58113c6adc1088703b1b92dafe32a5600e14ac1e71df829dfef425911f16a2b91f693599ecabf93065c6c4f5fefca8d4ed095599113529f65d9120d5252f577af95b404979508c343df54e4d239720e7d3a861f1dcabfa69e12d655c8a026c10a4df279b139fd222e561d205ac9b45c1054f8699eca594fb23886e0de565186597766dd5e40f74a423d5708dac254f4172f1089270988fb18715813f13ee4d131b64dd517c7e77f27f804b229f5339ac2f483b14739ac33a9645044d3010bd77ed18fb117f7b11bb51c4ed683b59e28bf25a58f123dfbeb1f0f21f03d9b57d8e61d59b311037a5b757b03ca5c95e0eb73922c6918530c99de4d6733640f2b8d13bebce31d4f5e27aab201101e48cde23a0d7e87b9511949d812e3187ee5ff11bc5858c022ed7b00790eba32f9ef7e134ce5f73a01269ca971b40e62133eca9d596a768686d6390b2c74602f6dc597faec3ed9d9658102d99c9624c1a97d00d63853578afaccc7e30a77fe054ebc23eec45f608f996fd015cd6bd50a111360f0790eff6ffb1ea59d13c8e29480bd96217188f97e53a1f5d9eae0a2badb4fea52f2bb4f8cb04d0afd99e7371a978a7d7ef473f77ea6738ff84af655313a12db24cff692ec7e282245ae9a42338db814593448f7115df3dc3f4e2faa2c2fdbd68f679d6aba01a15031347bb17d8bf8f1fad0ecf365e9dcd32e69803c5c05f4b47adbf8a21af7e9fb327f267df1c914486389a9820edf0a03bde6ef388c255761e439b2f7e1f9c1c3c95bd30c502197ab37f76b52f0d0675f366e919be19329853767bba34a540fb75bcdcc9596a4cda254a660e11bed5af9d8646ac4b7d6d7aa5d7c0005879b6d08058a56c3d3a4d3d401b883153fa7f2f6a6d34dd010f6b9e7b4e457b9ff5a5802d7723abb35f9dca0afc10f6791824dbe0a7725d534e7753445b7268d90145b6438b93fc475f44d5d678d79da6c5770f3a9106f3cffbabe4b88cbe7eda9b8a495be4f6717b0fbee6fec78c86031b6d878d47e357b2089de3e6dd19a265552553d1f7da53884ef84d0eebe782791c48a9c68a28d8ea3bb70c922b01dc20b2cd05cfb276e326651398f766f5faaea54a41da597cf6b50f3d5ebc634185b99069126b8d935c6bc42c47f2109de42091ef4ade3d87cc44aeb78709255501e64f34ac2d4b2725cf7777315f8ca9424bc9d61a896a93500faa6cf5a5aee1fb888e17b47a38a667be2ffa3bae46afa88bfd8b5b6e1186d6e41b9a4e490591043372c23f36fb48d80caff74cc349adc92bb25f701738c809ccf74c47afa193795ee67bc58ea7fd85542fa7e70218490fff212163401cfde016df2f42496bae403d5391e53fe200f758bbcdead0fe72c77861889b9632a257229c35bdfe8fa78375b4f5c768b9c60cafbde1f00aff6ca1879f6472f28001f5f13d4d9d6c3a90e04d8df09873550daa8262d39efbe96a79c697fbcc9a7f27c9f6d782d5d5f6d024b291376e9cc40d902f809072e1f0f2c2ab88ce3d074e88461f5971853e7be749943ab6e25e25e8afa5042dd73407f49b50841c7782c54eece62ec2beef1f16caf1ca5989427bd2726ca0fee33e303702e9892e4382e92c3f3a03a6188f39762db81819c7e12b424be8fd964dcdbfbac00139e8c5a6200506f13f484ac34ef3d26e7cadd53cf402117419c1618205bfa5382486094bd55448f2b1aa4dbec2289189b601b1bbf5792b2a641c6f5dd19cf24abc72fc5264cf11f6b44a4929267a02cd1de1b602b9de65a6c06640aa0f76109baa90d66eeb17295b1711365b7d6835a2dd55b7fe868c59453613240643c847a5b48d27897a58dda63e579c1bba58350550e147b190f0a2c9a5ce719d627ce3302028b4b6801bbfa8cd74874ffba35817c0eca034d19210950796807125fe6065dcd47d7c870ed2db5c00cff235e4154e2d89ec2a09a87551f9b7ca25d519b5603c0c33d2cf72878199ffab567fc5e093529b89d1163587f3564ba8291d2d96cf9762e7f568e786ea90849f6312c1a10f45d61600cd45c48e6870a7d76c913f9c4497374fc04401cbd11f7710740148234fe8f041f24d0278fcfd48846e6aa49f05016fc332dc5d46b4a26574fed5c0751cebb9f7ab4cdbc1ee011d82d6ef95c52c9df8eedac3ab5cf30805f23d88d4f707601f8e6c606b58f2fe234e948d6756d430a5c4ec76a33874886c8fb484059b47a9bd198a61a1896419288a9e81d0969dec778a53e8233f0f63bd0134e5f29825e7817e7c8ccb7d9acd8f86ac9d3af78c43df3036d7934dd294f2bb12063bee52c547d27a218145befb0ca96cbfaabd39fa245b51c39f4cd4cf8db105f9dc46a7aaa8f7d06fa208120ce1ac49326179618fa2c8596c44e174eb7a141056b1d17689c10dee089c8b0867b8a757ae12251bbd68db5fba2be341275fb6ee379309f5cde9b31242b0b2bac44da74776fac141936bd96e3177161f057c820a8c22cca8cce29b158eb55aed0260253fbee70a6dd281d9fca23e0b0a38d46c76a95e1262f1cafcf0fc37b52e649a1ba1e2c0f97d10bbf4d2b5632cf340bce56736071d5885ec9b4e17910744d3e63e2ca6deb21e43fc21e89c6865d3ad424ef4a14efe8843ff3168c99ee395400dcc8755719d290c567c95a5e7d28ec1190ceee240084d444265cc801cd960f69b368359bbf06b8a4ec23b47c7bf9d4b16c701a1c4fb9e81abb55bf49d450b566ce03de939fc6f5c51291380086f8c995cdd4fa15a325601c4846a69f15c77f55c900270bc9ea5f406480cb0e3e89bc869fe8b7cec4fbef7e76283d50c25ab1b4d34d093a7df062990a925a9c44aa2661abd7d381a4d6cdb64821ef624dd51b72e99af914bca2f80c25b82ac6945df7c7582e6d0ce2cd073e35f1fc120a68ba210410db64592a9aa319b30f2b818c495750e1cea0610e27d52be31e52e501a3bd51b501bc51c2ec8592f679b6e55b9aa58d513fd2bebadc83ba76eb45e5676f130193e9a666b8c8132c9f5141681fbab324b555c5c890d488ac2dd00feead0a20fbd8a46391438e3193edc6fb89161cd864fca98f4f39a2893c933dcd13bc8c5d5a548d24862e8161c0fad7f33aca8c86791d620815fe3f0daddb5defd933d0c10097a7a98e67625420b6c0db7c3e17ab07ea64e6f0f53fdc670799e06a2e3a871d6be363a2639e35339361311e0f528cc433eacea4f79bf217108c7b1d657840253ffdea18bdd1f93cdee63e7a9b8dbcb4ee06162b253e09ea0641f2771bd9823dd210905e9ea495f43194bb471cdeb690e8890b03b50835d53dde1b572dd123ccc8507bb57a45e46c0efb8fb3d5596bddf9782d86dd911636eae2cf64b5829cf8893faf789be3fa22859accf688f5b5da6c29cacc96d477e23b63cc934f685b6e42e1655c9a9b94d6d78402de22b8d9776e3915391aa258e57467d770d65480ba2f6a94b0337965a8c659c42b4e90b14da4697d0c0a6d74774c94c52d8ecb694eee747bdaa6c3a6d60739db18c6446090eebba72e62ab88b0e8b88e728ba8cb133d8524eda89a2bff1c8414da3edfa6f83788331c8a7e5a8af2dd3682d4752190a3c689949abdad8350111373e7fb46151f54a10f79d91940e37efb05f9f157bddcfacf018b65a38ab614807c34a2786af4a1d48c4d1c1abd31815715f9d1b103992207fc664f12c82fd923c57d8e7cfb9f4af55182318d055c704865cf484206d60e34cf7fe9b6ce60b1772c5c7cdacb6695227d80da18ec1f98a434b1aaf9c6b6d082f5663aed2bf267e559dca6b93d3ce34273846fc677f529690482df0a8f782b8ad7269f344f5f2b4d320a7ce2d2fa02284f8db634dc930c3e2b9a629245364acf35d41e9a14c88efde4e742ef1ea4b43d0caf2e70d4a617278823e6403934524debbd933e7676e441a48f630dc8bcccd55d9032d6bf3dea97d1669c39fb865b0e619eeb3f5461e517000f5aee3ef2abdb87d3a76b88e140eb4644a9fbddbdc9e20972cdfacf00bffa3a1ca5f84122c2ebc54067cdaa23967eaeb7bbbfe44e5843382b834fae1f62a066688595e4ee67c7ff9858672355abf7893ebeb4bcf88a62b2237c6e6cec9aebe3f28bfc310ced3a590e88d4bd0f53289206deb9addbf6f3c02115ce4980dadfc112683ae250c2d438fd9c0f2a090dbf122a0072828db798bdb868dcd47384dd3f5eeebc0307a5b268683cd51f312e8f02b5a7746b11a97ac43287d9b9765f03c720503cfe6e0117660a4c00d67895224c4d42b032000a10d7a743054758a8f54941fd5eaf72498b678d1579b3de4e5518f90f1e3d32517d09d7f5da9d180215e66218e9dd64036819cf12638ce82712a6cc79a9ddb36e86814b797d72c2bc58b18ba439e99965f745b4fb7de2878e3186e3e7b835c746b0935f6c67e92e3770bd8d5eb4f66d8175ceb7850e418c55e574db891639aa77fc62bc45dcb734681ede8484d4d4109a9adb8c3d00", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
open_by_handle_at(r6, &(0x7f0000000380)=@fuse_with_parent={0x18, 0x82, {{0x4, 0x80000001, 0xec}, {0x5, 0x8, 0x1000}}}, 0x280040)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700)

1.87182571s ago: executing program 4 (id=1667):
io_submit(0x0, 0x1, &(0x7f0000000dc0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0, 0x1}])
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000160a030200000000000000000200fffb0900020073797a30000000000900010073797a300000000040000380080001400000000008000240004000002c0003801400010074756e6c30000000000000000000000014000100"], 0x94}, 0x1, 0x0, 0x0, 0x200000d0}, 0x0)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$CDROMVOLCTRL(r1, 0x2201, &(0x7f00000001c0)={0xa3, 0x16, 0x42, 0xff})
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_TABLE(r2, 0x0, 0xd1, &(0x7f0000000000)=0xfd, 0x4)
mount$binderfs(0x0, &(0x7f0000000400)='./binderfs\x00', &(0x7f0000000440), 0x0, &(0x7f0000000480)={[{@max={'max', 0x3d, 0x2}}, {@stats}]})

1.821871771s ago: executing program 4 (id=1669):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000014f000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0x14, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x6000)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0x80}, "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", "cfb220c7d481332f3f1f8079dfe27e23185fd67a407358db7892789f96b7fa9b14daa48617a10d8a91b820ecbaa470ec0bb1f3cbce7f70ec70b19a4cad082229c2788f8611d7dc306d9a45761a97828c36ed87ebde5d4a3e1609c1422a8ae2f7cca428ebdb0dd38b90b9598a353b18a600bf35a369e6e3e5abb0a1c5c0c0e48e014e7ef1b7d768b3c5657f1adfbb7ff2985082b16c99eb83ec3660990dcf1106efa6b7f8a4798fec811c2c85faec0235c83b7093b3d02367421abc40a554e0b0d7fc1bcaece4222c594f8d20e368fe625ca433c75486fe5c94103cd17291349ee12b877602936688666f82ecd8f4f83d50bb1650e08b96cd25ad147c4c956c98649806a3736d072c8d97c6e3a46a7c18535df8d828b86662400d8e9cc861fa1dd5dc193892d3168396c499e07b279fb76c7e289f2fd955691363bc1de74536dc571817615c88b0d594a136966c129e424ccb7ef1c7c7461eac7ca5f03d72ea4c9c3d1156ee4cb1bb70e097357588b5c49f6716bbae1bd118104b42786f09a3b9f7cb80f383cadfd0c462096ff2bb637b7cf79764b6a4b7ffc5d87c1f063fb48e7f08ad5af534c70079f12f28e8921abbd4280801cdf6101ea494768b1274afd0eea5939843d56022a83590920fe446d52dfe699c33977d5592dbf7e0e236b8175d7faae06e0c50f7402174023ce4b996564e945c416fa823f2f9c3213ac50b20bd1fd55bb8d9fe70ee31ea2f404ae0fcbf857bebcc9196c8c622059fea2e248e4058905b69fb98be312d3193ea1d8ff653173e8c2371371b77a5bea45b3cd6fba19b6336f94ec04c8f86d24e9ca959874577d7ca0baf3c4ff30b554bc3ccc06df46d925373fbf7863e2cf684d3bc9603ab72b851ca4728294de87f2dec6f23ca9e43ed2e5cbba662d13137fc1ce0f6ae6aeb974f72f4b750825fafb67715e425f40c7da83b92d4249a0a4e96b789cceb7b07f38cb83f72dd093a345ab3cb8ae760fc14e40ea182a0d7fe1facc62a1ab0902349fd7e27bb0cd349fb5053f4734823abf020739b4b43bb11f5d69b61295068df31177959903c2ea1bb82d24eeaa93d0d4738d5d15b2a401e7ebe0d3cfbd45b2db2882cdb41408aaa718f8320fbb7f9da4f68d0eebeef175442e807e9908132731fe5e268582dcf6dffa4251ebb7121db8e412089fa9d8af9919799547a26b6b8eb44c28f1ce5f9a3021fe30841be204c1b4b3813dccae6baeef9b53fe413cbec46bb0cd95d3793cdc9bfe6cdd96ce0c4aa4a25e1cbbeeee6c9fa558b279048c7e31d07b125bac68d4e1f4253bd4dc7824cf3d722c94cf2b8f61bc8155731f072fd447082b181a13ffb8c08a1d568298c5de2d969fae2bea070a9e2688f294e76b8c200dfb993ec19778eb56ae3127c1116ccc85ef8806fdcb9ee0cb66ff03fbb0fa6c52b9b101b3830fc1650efa859163a264b4059092e5dc9a415ec09bfd1460f142fe5ef00beb6aa9032bd0de97aefc6f65e8cfeea761b3d8174caf528b6627682ff4d4450cb0f34251fc000ed01dd538ef13260984f44703b89dfb511bfb538d0b1c8aded964e1bcc5ca57437468b14a31ec0000a17e4d24369c40500449c37e7dccedba3eceb59d827dace246b5c48afb6a5988e64c560b3dc76c32d831f51cdbc5cfc4364ac8b25372b87c92bacfedc6bc8feb44098dbebc89cda03c59e4c58a31372bd574704b9e788834b9f83c6703f6709efad97c4ce499ea580dae1de282a019247cb3dce5c1906322e6d3ca5157ea6428bc42416936fac194efe136089c07faf7adf1e923003f1dc63fcbc634b389a4f351a6acee785e23c6bb04ca2f265be1e634362b87c6f9fd369bbe62a1db6b286c7ffde6370bb4d6e9e27c3ec451e1a99d134726c9075e71319d3a683e91e4b900061c0e6d086481069cd32f4cde7816f8e3a0ac6428a7488f31f06ee0da10df3ed0c150d29085879d064f914407f60018bb588735663647bfeda930407d69abef3f72fd461c2b85b00988b412a180fd267fc646a86d297e7e40912607157b6fa873df6442579b1523d8117f0c06c87adf75843b8bff30a5bfb4fe1e9846b7fdd58774641baf9cc9c4e38e53ed24a9d9e9dbc7657aa9b220a8545852b0409f5c0812e953823e841967bf55059acc7a4600818134359e72cfae0d04a0738ac8acca133d6395a455b22cdd6f901d4cdea1cf17415f7d7895a4b65f80d2f7c5c60a0dc04b40c9ae5ffc922e074a82afd704673e1766d19db9f60eab0238fb4a3169a08aded607847e5d752d4e24c4914b95bac3892bcfc2076f16a7f07583f0d418b9dec03afdb2e93335a392e1b1ef2910eb2a4b6a63fe61641f3c02bef73cd7e4a77a6f30ae821598c3160511603541bea89022b54f321c2a55cdeeb19335d78a821ab6ca0f36588a9a79a41e2123905a491d658c2a1caeee998c995bb0f816c92c5dc2b862183f80b9f9786c9c5524723c944d11f6894c7f008ab8194f577e22c03631d2a33205f508ea49653e7600639242dbaba704f700ac227f32dc575c559a0a1f4fe0cf6c22fbf7e1ca2ab4b1e4724e8379021e3c9a7c1509c6a413bd7d9c98938e440762eda2546d636597defa86c1ad31126a1182d365f858927d140fb0a97f80adcc5f4ed5efe11ac503453917a263f1d64692348d30f382e85e464ef7616067a42df5de1a1b622fabefe2ca4ceffa4801f7a02fdef40644cd1d079590d900727628d54b44db7ac700d8d664f7eea12837fcf347360d8e43a354fe51b4c49e8fcda3c322b738ed2b800b5cc06e22c72af2a67ee7bc8ae894e841f2cf2b0a7e381caf944bf4e91ded63b6f82f7474e4f81e986fff7e5339b8e9f60103a1af81833e120f0c88893ecabac044a4a2867cda4fdcb084459a00507aa9e5a8e761a72df3322a1ae8cd918b4994c23bdb1e459b4f21651bd7fa067a00e2a2877bf6b29f289ed8018e0a78f6fb4ded9749640e0e37f6381b320ab72da404f3d70d60152f6fa6738932387b83250cb3148141edb52f109bfd4bda8054959db01f4c550609a63c08cf01ecd110cfc6f0055638c0dde039d2ac2daafe59e561f9f08a8830c3f661e4325de63e98f4a4216ec3b83fd200201ed3f647147611424286ffc6c4a8aca64a6874743242d4feeaa9153de06e51c512d9cab7ae712c6424069f3e5db4ddebe9b48b5f6caa741162edf97674d2368e03a387f798151a4b9b9fa9e3a5838a343133158364a9fe3bb4b9a3c464c0c54a4c64ca774ad200925ac6bf59508c10a8574afde9b821741af43ec64cedc13aa220b39772195283506dfe899dd6a7b37eb21f154056a2df3564ef2bb918a928651de88c3613b84e7960bddd7b46b1304deb30f57b6fe5a3b4788629e91bcc2456a72fabb16b47da71624d2e9081de748b3387f52da4bb094782326dcfde0827e2d674e41bb375247d749cade9c704e5431785009b0e53f1b45c70b237c9432e07e4c7a8464ed11608a3d2184338dd9e6f6ef4b3d751e979667b6a3953c89aff4eead7a978071a912b3de21a85a5849c57933cf53cd74a610f3e60f699766fbc7e0bb8a891a429c77bb6f3b6f9f8eb0b1bd9588ef2ce98fdf0a0838e4b0bed807d8b673093c717feec8d697e32542274887d039db7a2daed5d52c8e9767443229f8003c5d67e907376ea2f393484fa70deee159cb56f8d097b8fe2736e95f540137e20725f0940a8d049068ead4c46bb3771a671bb00de88931e03445a55868de0c220db05cbda9f996d5fe7c1070efe5e718fed4d4cb4ecacad3d6b643bc0ffe9a71b720ba7b5adbbdefe29106ef6a6ffe4547f5d02bec312147df0abe80efb2d5e598fc7c8b268e58b59e0d75728e9a18126f013c963ddc92d251405f857fe3a5cbacf443be7772975b7bf4f6d7ed6f80dfcc47a88c6d19120942adb5385be6ef3c0d7e396bcac5affc8f9276d6cd1a0b069aed72a98cde8ea7aabe6cc091b19efcfaf9368dfeb3087a05a42e3b893dae5ffeb72e6ac06e995a2a75ea0b5f7876247bb4c38cf3f0153f1f7473b522f1c440b632270e2b1d654d3a5ae16cb788482760d34ca79c8951b29c628e21029715683a3e6f8f77c5d89ecdae37e0190f79c4c1dbc9d0160e359cd6c94d6662ed53bb01a83374ff593c823acc59241b11f020902069fc0054a9b26cb320bef4fb1f8cc5bd8ae76eb029afab731b9876bc4e8708a8315512823cff1f9375d284ce66e53d4efad6c76d17bb532fc938b8f80c13ce86b5ba3e540164bc5a5d47cd321c241d8740f453ef95bd3878d578561ad6ce20877ffbd44062dce8df1d048d8d5e4045be647886108cbb1f0b26a8b74b66858afedb830a161bb02bde4c46a688a0ea3a7018ce24666aab0f422ede2f78ea29f77e28d87c744cba0285ce33d0d9ac45774829699de6d725a9b6db6e7d03ad4ec9d075c386e68ca0bcd9e9911d741ed0168cbddb87a7918a964d206629da4e887277b0ef7d3f9c7082f3f15f29a0dfb39f3b0877a5ec3ac4343e0d808f5aee8f1869923aab6dfc3016821c013109f34aece6183994b853d0e9561375c02cdd26b1b55194757341929a8038864cedd6b5a3b8b51ade44637044c4ebddb190f173969a0ca4cf5d42153763a0b91da0110ae7a25204850927d81b00176d4568a3d444d8029bd010df784e3f673fe855601ec4f1b26b2df58841e6a65f0db66373f63cc14a8b07dfc52ac9957eb542d05ed687c79519609de96df18b63cb294b534ddf7d2e8f41bcc1e5a006191c4db057b6709f0a96f18e7e8f67b8be2a19c015b9c4b0b3f42e4de366b71f8da8888809473c3c7a02a1158e375f29997a43bc7118ca4d1abb8f8f21972fc589aaa3d73a4d40a1e1705e169ac6e56cff50d89fc45b6863c8fc67bb2b5939a7f33072539ba4c24077be5711ba368bf7efd4897931531d388eb5c2e56bef337777150dd59518652145c9594e110e41d2615196c6b197916c88cc2814e13a3a922b4ecb044bf31cc90e0bfe0ce07de29188bbcb0ec1a12b509f52582fbb948c3cbe0c6964f46991cec0704bfac08aec6ad8ddfc36dc68c7f547c5ee6af4a8d55c79e3dc1c49b045379811f81e9a185a92cd37ae4ee32c5d3c82d36d6202a6c84fd231fe467071d42072827fd77afa5d757e6f37247f783ef09bdfd7536b666e84bc4bb878005b7829293a04ba090272dec844f4ef0e934617c08518bdc6b915ac6f3f03e4a6ab88e21c3f21f93b31d95ea3b9228e0031cb69795de5abd19c4cb4a0cf2984e53ca391cc66e33ee0d510151670331fa264753704fea5e4b1760f74890c49a74a47e0da13155c5470013d53dea0f05b5e088f1511c209f5be940232318af2757951d399e32eb862d915784713baa8ba93645caf04ba78fa3cf600ff92b9c5be58ad87438a340bac00a5ea9fb17e39478ba61fe36335e48d8c5a0b25f024cbd2ec7f217d0f260951da396dc13a2a74cd90df4b52db686e3b34d27cfa4cebd7bf59cbcfaf4007dc943a1da6e0bd1799a21ab449d7bb42935e50c839c5b567c59742436af15bc8d46095520dcd9273ae2b6f3c1cc2b4311ac9e5d297f0940b1552c5955adb302022022bb7457978998b56328629b7725dfbe3dedb37f37af0697a4471d1d6ff6bec633a38540adeba903f3eaaec5785fbb3c6a598f49dbd9ff93c67dea1ef39a614331b119fa8efccc8bac01595fb95a2a57eec9fc6c6fe82782aa89ea971866fd9a3bca4010182092ab6d1e2b49b964be9e3bb13bd6b77850e435f55bdd46e5bcb3330c7edefd31c33f61275e516"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000140)="65660fc736b9230200000f320fc5b0040000000f0f10970fe8fa640f01cfc4e21d4501c744240000000000c74424021c320000c744240600000000c4e17de69222ad2eec0fc76e04b8200fae82ef66bafc0c66b8004066ef66b8296c", 0x5c}], 0x1, 0x0, 0x0, 0x0)
r3 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r3, &(0x7f0000000140)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x12) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32)
sendmsg$nl_route(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@getneigh={0x14, 0x1e, 0x8, 0x70bd26, 0x25dfdbff, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x0) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000000000005000000050000000040000000a0000000000000e04000000010000001000000000000011040000000a000000000000000000001104000000100000000000001103000000ffffffff000000000100000d000000000c0000000100000000305f00"], &(0x7f0000000240)=""/1, 0x6c, 0x1, 0x1, 0x4, 0x0, @void, @value}, 0x28)

1.101508436s ago: executing program 2 (id=1681):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000140), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x100, 0x2, 0x2})
ioctl$vim2m_VIDIOC_EXPBUF(r1, 0xc0405668, &(0x7f0000000100)={0x0, 0x1, 0x2})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x7e)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x2000)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r4, 0x3ba0, &(0x7f00000003c0)={0x48, 0xc, 0x0, 0x0, 0x0, 0xfffffffffffffe01})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r3, 0xc00864bf, &(0x7f00000000c0)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(r3, 0xc02064cc, &(0x7f00000001c0)={r5, r5, 0x1, 0xfffffffffffffffd, 0x2})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r3, 0xc01864cd, &(0x7f0000000200)={&(0x7f0000000140)=[r5], &(0x7f0000000180)=[0x9], 0x1})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000540)=0x9)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x5)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x2)

972.032621ms ago: executing program 2 (id=1685):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000050000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372000000001400010076657468315f766c616e"], 0xfc}}, 0x0)

971.186455ms ago: executing program 2 (id=1687):
mkdir(&(0x7f0000000140)='./file0\x00', 0x100)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400), 0x12)
r2 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_type(r2, 0x0, 0x2, 0x0)
mount$9p_virtio(&(0x7f00000001c0), 0x0, &(0x7f00000004c0), 0x1000000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])

902.162184ms ago: executing program 2 (id=1688):
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vxcan1\x00', <r1=>0x0})
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1a00000009000000050000000200000000180400", @ANYRES32=0x1, @ANYBLOB="09000000000000000000000000000000000000008ca5d2672c5f75e2c59d59f4b985d239ee2d1c512760cdeb5d3df7610bd206969446fb048f699940c20b0900000091f78a4add876569f77471f70a80c6", @ANYRES32=r1, @ANYRES32, @ANYBLOB="03000000050000000300"/28], 0x50)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x1c0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="4800000014000002fdfffffffedbdf2586c794a81da0a56f9837ded83dcf66086a747577b29b60cf6e86babde03130c831a7e1ae3e9dedc4d53bbf0f4698af31bc11c537b245b05d4bcd1e5644ff2f839d2272aef857a939fce381e737a1bd75ff6f99988125597f2f0627fbc0348f66af55dabc5eb9d8aa4e9d9e792995b2dc91e9e1", @ANYRES32=r4, @ANYBLOB="65000a0004000000000006000300000002000000010000000100000008000900b5fdffff00000a000300000008000900020000000800090007010000"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x4008891)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0)
r5 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r5, 0x1, &(0x7f0000000200)={0x100, r6}, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000400))
openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)={0x200, 0x0, 0xc}, 0x18)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r7, 0x0, 0x20, &(0x7f0000000000), 0x4)
r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file0\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r5, 0x1, &(0x7f0000000280)={0x100, r8}, 0x0)
close(r8)
close(r6)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000000c0)={0x80, 0x15, 0x302, 0x0, 0x0, 0x4, 0x0})
syz_80211_inject_frame(&(0x7f0000000000)=@broadcast, &(0x7f0000000040)=@mgmt_frame=@action_no_ack={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {0x5}, @broadcast, @device_a, @random="af82b412efde", {0x0, 0x7}, @value=@ver_80211n={0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}}, @ntf_ch_w={0x7, 0x0, 0x1}}, 0x1f)
mount$binderfs(0x0, &(0x7f0000000400)='./binderfs\x00', &(0x7f0000000440), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="6d61783d3030083e3030322c7374ae19f9ba2b5c8d5963dd61f400"/42])

901.975939ms ago: executing program 4 (id=1689):
socket$nl_route(0x10, 0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000d40)="0349ee47070c03607b5bae292ac8b762044157dd1ea30758ca9a7bfbd23efe5ba3cf173f0478438cbae7a57fe81ae074996dfd64d0c8db1c53c331a33a95a0d2cb94d0cd09f710c11df6be5cc730821bae016a0ea4073e7e4bd62cc1aff09c799d1ebe2a8388a02e50dd19c4b7b1e91a0a1d8904b32b45710d16dc796b719e7adabac89602c834ff01f6b5839643d5a2d8edb9d77af834a7fb82c2fdbdedbab80f961971ed25e2cee13220d342969544a6ce40ead993604e38deb309b330177ed7d23f919596f483ece2d540a95568272a0e879281d83615f589c89e1a7b0cea2a2fac406dbe67256f354a79cb99de0f7e1f4aa617405f284bca8cea6048f1155a89e98746e6912a7509caca768fd2b1ae942cce6a29d848f660b18ca860f9e5f9d95562c4a19fdd9b59932a453a934f0b98fa91129d29dfa2f8f21424c590ed8fe31a79ba09ef72c497ddd5ce7826e096e30746772e34cfc47e9eb5b56187132d87702b56e40d6751a58f9e6aa732d610f7aa631759a3afa266f730a0ee4a8d93555ba710d1bfb9ea4d633faee1529b8565af53eb34cfaca3e31dda587c2be2df3fe5a5a0e2a500eb8cc40db50854a60b005fca2900148eb7a83c9189cedd69b7eb874f92f00f7635510d2dc062cfcfd8c9a473ac15c7ffbcc56399f6150750d7090917358870f16f684528a9d69bac3046256ad4e101073115712a89b0dd76fe5e8648696ce8dfe82b3220807dd7a446cd158fdf9426b7ddab84eefb4152d25757e2642b77a21b364327ea38e911f60e6e6718730942c1db47cf80f16aac0950a5c2d412c620b526dca7f601a25b0089f69652889f0ac0667980d074e48dd8d20096097b772317cb8ba11531bd353d584f278e5b2565456f4997f73541add2e336a9beba29baeea7df3bbc5ad5f00c7c6f3c1ba93fbc1dba159497752eefa611d14f26b7c9a07aacda2e9b7572ea3fa66f67c04ee30f0e8f94038c01de81689c12fc44c71ed2b93b31ddc0d9acf62e6e9d71699d0d987ae87c529fcd79ab48433a43ed86d09095bf8d9798f80bbdd36d4ddeb90e752ac9e96079cfa4595daaed34df23e3771b791f3a54f86be3fe4a41f41c8d0f3a28cac2bf926eb95c8badf9fd2d0eb767664872417a08dade17937cadc00a8e3afe349d0e7a3cdfc1b1af108a7a5142a2b5832e99aff5ef27b525d4ea83d1523210c6cc673bcf42cc2e4561d2e8abad128992074d0aaa467eae584f62d347b70fa4f282f463ea0c916ec2e5b8490c87347bc70a11e9748a844d45cc744847e89acbb2e0bc03014c4865d426f52a460b1c0354fb90e4b882e23b674606737e5b878d1f18628f8f2389a071b0d2c64bcdb634b59e2effaabed7ee7812002956e776c039b16bd1cb0b663f4c8a16ad422856f7e6de282b33f268ff11f7972678bd337373b399e514c4dbebfcb812edc05f0e60b68df71682244b458009b85ee038722fc4b6b0c322d6d59ae9d290870d9c86707ad7f080f53d883454526ca942d6b6232cac0b378f0f2bb5209d93e2487a80a9677ac6b850d88cf1f8d47a5f5b534ad4cbf459235fd3662513ac1c53f0ba321b3cf9ede7b9a7e712fc5bf0b17cd164ef34178b3b06ec995106af31c7ffbe5a2bda35a9df9cd31d877d304dd1bd16caf5560ed991dadf378d9deb8f495b0d084ff28f87b305a3a849efcabd48b3e515dc6acd7b61589c10bb0e68dc10eef57e9e59aaba78c04c59c6f8c1d86022711d0b0cc4e9cef4816caad1afbbbfe47fa2646819ec282ca1fb73bcbbc7315782e5e51385b7248f4f9af010a3df664e481d392eac08eab4386bf229203ab14c60754e16d87d1dfc5d6c692e0925d491261a5c7197fc257c572079049159ebee616f2b40e904521d0ae7c54694d89ecc794917d26a4996bdc2af", 0x54e}], 0x1}}], 0x1, 0x8090)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000340)={0x1, 0x4, 0x0, 0x2000, &(0x7f00007b1000/0x2000)=nil})
epoll_create1(0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r3, 0x5457, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0xc8b0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0xfa)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f00000006c0)={0x0, 0x0, 0x2c, 0x0, 0x104, 0x2})
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{}, &(0x7f0000000300), &(0x7f0000000380)='%pI4   \x00'}, 0x20)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r5, 0x89f1, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_cmd={0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffff7fc, 0x0, 0x0, 0x0, 0x47, [0xfffffffc, 0x80]}})
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x3)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r6, 0x10f, 0x80, &(0x7f0000000400)=0x38, 0x4)
ioctl$EVIOCGPROP(r7, 0x40047438, &(0x7f0000000180)=""/246)
writev(r7, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
pipe2(&(0x7f0000000000)={<r9=>0xffffffffffffffff}, 0x0)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x0)
tee(r9, r10, 0xfffffffffffffc01, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'geneve0\x00'})

731.528664ms ago: executing program 1 (id=1692):
r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="0c37f8246f3e4c0f268894edcd5b1a9964c8dae6b413288a16aa77bca416bb6c2ed80e4c948037035c05a3f6d188b7f720f619c3aed8885056565487fbfcf347f9759031056a5c6f6510bba78a970af194a3bfff9ee162bfd08f9d87b199bad71d4b704bbe05f9458f7edb6ea6df3da93d4439b26d0a2fd23b7969b4ccf926f6c02246b837960e2e6ffd0b", 0x8b}, {&(0x7f0000000440)='0', 0x1}], 0x2) (fail_nth: 12)

609.85534ms ago: executing program 3 (id=1693):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000440)=ANY=[@ANYBLOB='D\x00', @ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x201, 0xa, 0x2})
ioctl$VIDIOC_REQBUFS(r0, 0xc0585609, &(0x7f0000000400)={0x0, 0xa})
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000062010c000000190095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000600)='./file0\x00', 0xe8)
chdir(&(0x7f0000000080)='./file0\x00')
mount(&(0x7f0000000000)=@sr0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000040)='qnx6\x00', 0x11, 0x0)
r2 = memfd_secret(0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r3, r2, 0x2e, 0x4608, @void}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r4=>r1, {0x100, 0xfffffffe}}, './file0\x00'})
unlink(&(0x7f0000000200)='./file0\x00')
ioctl$VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000240)={0x57a, 0x8, 0x3, 0x0, 0x9})

609.717048ms ago: executing program 3 (id=1694):
mount$binderfs(0x0, &(0x7f0000000400)='./binderfs\x00', &(0x7f0000000440), 0x0, &(0x7f0000000480)={[{@max={'max', 0x3d, 0x2}}, {@stats}]}) (fail_nth: 18)

609.600921ms ago: executing program 3 (id=1695):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x3, 0x8, @loopback, 0xfffffffe}, 0x1c)
pipe(&(0x7f0000000040))
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000000)=@gcm_256={{0x303}, "41328ac34a4ad2ba", "e8582491a0c4050000000000f6542a9b6800000000000000003967d2daa45b4e", "61241765", "89b06aff130000fd"}, 0x38)
sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@ip_tos_int={{0x14, 0x11a, 0x1, 0x2}}, @ip_retopts={{0x10}}], 0x28}, 0x4000)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = socket$kcm(0x21, 0x2, 0x2)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280))
r3 = openat$pmem0(0xffffff9c, &(0x7f0000000000), 0x20140, 0x0)
ioctl$IOC_PR_REGISTER(r3, 0x401870c8, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000020000103000000000000000002140080000000001c800000080001000a010161"], 0x24}, 0x1, 0x0, 0x0, 0x4000804}, 0x4008850)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
sendmsg$kcm(r2, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e22, @empty}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0xfffffe5e}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0x8000)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x8925, 0x20001116)

541.79352ms ago: executing program 3 (id=1696):
mkdir(&(0x7f0000000140)='./file0\x00', 0x100)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400), 0x12)
r2 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_type(r2, 0x0, 0x2, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, 0x1000000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])

541.30625ms ago: executing program 3 (id=1697):
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
recvmsg$can_bcm(r0, &(0x7f00000012c0)={&(0x7f0000000040)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/47, 0x2f}, {&(0x7f0000000100)=""/20, 0x14}, {&(0x7f0000000140)=""/113, 0x71}, {&(0x7f00000001c0)=""/55, 0x37}, {&(0x7f0000000200)=""/4096, 0x1000}], 0x5, &(0x7f0000001280)=""/43, 0x2b}, 0x2020) (async)
close_range(0xffffffffffffffff, r0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001300)={<r1=>0xffffffffffffffff})
r2 = accept(r1, &(0x7f0000001340)=@tipc, &(0x7f00000013c0)=0x80)
ioctl$sock_TIOCINQ(r2, 0x541b, &(0x7f0000001400)) (async)
ioctl$TIOCL_GETKMSGREDIRECT(r0, 0x541c, &(0x7f0000001440)) (async)
r3 = signalfd4(r0, &(0x7f0000001480)={[0x3]}, 0x8, 0x800)
ioctl$KDGETMODE(r3, 0x4b3b, &(0x7f00000014c0)) (async)
r4 = socket$igmp(0x2, 0x3, 0x2)
ioctl$SIOCGETVIFCNT(r4, 0x89e0, &(0x7f0000001500))
ioctl$VIDIOC_SUBDEV_S_EDID(r3, 0xc0285629, &(0x7f0000001580)={0x0, 0x5, 0x401, '\x00', &(0x7f0000001540)=0x2})
ioctl$DRM_IOCTL_AGP_UNBIND(r3, 0x40106437, &(0x7f00000015c0)={0x0, 0xffffffff}) (async)
ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000001600)=0x8) (async)
close_range(r1, r0, 0x0) (async)
socket$packet(0x11, 0x2, 0x300) (async)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000001640)=<r5=>0x0) (async)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000001680)={0x0, 0x0, <r6=>0x0}, &(0x7f00000016c0)=0xc)
fchown(r0, r5, r6) (async)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000001780)=@mangle={'mangle\x00', 0x1f, 0x6, 0x828, 0x0, 0x478, 0x478, 0x548, 0x228, 0x758, 0x758, 0x758, 0x758, 0x758, 0x6, &(0x7f0000001700), {[{{@uncond, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138}, {0x3, [0xae, 0x9], 0x6, 0x34, 0x3, [@remote, @dev={0xfe, 0x80, '\x00', 0x3f}, @remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, @ipv4={'\x00', '\xff\xff', @empty}, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @loopback}, @loopback, @empty, @empty, @mcast1, @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xd}}], 0xa}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@private0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x34, 0x11, 0x8000}}}, {{@uncond, 0x0, 0x208, 0x250, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1}}, @common=@rt={{0x138}, {0xfffffe00, [0xd, 0x101], 0x3fd, 0x30, 0x5, [@private1={0xfc, 0x1, '\x00', 0x1}, @mcast2, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, @remote, @remote, @dev={0xfe, 0x80, '\x00', 0xa}, @private0, @loopback, @loopback, @local, @remote, @local, @mcast1, @loopback, @ipv4={'\x00', '\xff\xff', @multicast1}, @remote], 0xf}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @ipv4=@remote, 0x5, 0x2e, 0x8}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@mh={{0x28}, {"5ffd", 0x1}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@local, @ipv6=@mcast1, 0x19, 0x6, 0x2438}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @local}, @dev={0xfe, 0x80, '\x00', 0x32}, [0xffffffff, 0xffffffff, 0xff], [0xffffff00, 0xff000000, 0xffffff00, 0xffffff00], 'bridge0\x00', 'veth0_to_hsr\x00', {0xff}, {0xff}, 0x89, 0x7, 0x1, 0x1}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x5}}]}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x888) (async)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002080), r2) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000020c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r3, &(0x7f0000002180)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000002140)={&(0x7f0000002100)={0x1c, r7, 0x200, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000004)
setregid(r6, r6) (async)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000021c0)=[@in={0x2, 0x4e21, @multicast1}, @in6={0xa, 0x4e22, 0x5910, @loopback, 0x1}, @in6={0xa, 0x4e21, 0x9, @private2, 0x1}, @in={0x2, 0x0, @rand_addr=0x64010102}, @in={0x2, 0x4e24, @remote}, @in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x88) (async)
fcntl$getown(r0, 0x9) (async)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_DEP_LINK_DOWN(r9, &(0x7f00000023c0)={&(0x7f0000002280)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002380)={&(0x7f0000002340)={0x1c, 0x0, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008004}, 0x4000010)

489.447959ms ago: executing program 3 (id=1698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0xa7c, r0}, 0x38)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00'})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000140), 0x4)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000c045}, 0x187abb1aa0479c89)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = accept(r3, 0x0, 0x0)
sendmsg$AUDIT_USER_AVC(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)=ANY=[], 0x454}}, 0x0)
shutdown(r6, 0x1)

422.240521ms ago: executing program 4 (id=1699):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000004000000060000000405000000000000", @ANYRES32, @ANYBLOB="00000b00000000000000210000000012fdff0000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x9, r0}, 0x38)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00'})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = accept(r2, 0x0, 0x0)
sendmsg$AUDIT_USER_AVC(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)=ANY=[], 0x454}}, 0x0)

340.506021ms ago: executing program 2 (id=1700):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e22, @empty=0x300}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0xfffffe5e}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0x8000)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x8925, 0x20001116)

251.910202ms ago: executing program 1 (id=1701):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmmsg$inet(r0, &(0x7f0000000d40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002f00)=[{0x0}, {0x0}, {0x0}], 0x3}}], 0x2, 0xf000000)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000d80)=ANY=[@ANYBLOB="240000002c00010000000000000000000400008010000c"], 0x24}], 0x1, 0x0, 0x0, 0xc090}, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
listen(r0, 0x6)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r2, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x400}}, 0x24)
sendmmsg(r2, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}, {{0x0, 0x3d, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0x500}}], 0x2, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
clock_settime(0x0, &(0x7f0000009ac0))
sendmsg$RDMA_NLDEV_CMD_SET(r3, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000801}, 0x40800)
sendmsg$inet(r1, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r1, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700)

162.388091ms ago: executing program 1 (id=1702):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x15)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x0, 0x3})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000140)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000540)=0x9)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000300))
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x7e)

162.136156ms ago: executing program 2 (id=1703):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000440)={0x6, "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"})
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$PTRACE_SETSIGMASK(0x420b, r2, 0x8, &(0x7f0000000240)={[0x8]}) (async)
socketpair$unix(0x1, 0x4, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
dup3(r0, r3, 0x0) (async, rerun: 64)
getsockopt$sock_buf(r3, 0x1, 0x3b, 0x0, &(0x7f0000000200)) (rerun: 64)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x3, 0x0, @remote}, 0x1c)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0xe0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async, rerun: 64)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000180)={'rose0\x00', &(0x7f0000000100)=@ethtool_coalesce={0xe, 0xffff09fe, 0x7f, 0x4848e049, 0x7fff, 0x8, 0x1, 0x9, 0x81, 0x9, 0x964, 0x6, 0x3, 0x5, 0x5, 0x9, 0x3, 0x4, 0x2, 0x4, 0x7fff, 0x0, 0x6}}) (async, rerun: 64)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f0000000080)=0xffffdcf7, 0x4)

103.103239ms ago: executing program 33 (id=1703):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000440)={0x6, "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"})
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$PTRACE_SETSIGMASK(0x420b, r2, 0x8, &(0x7f0000000240)={[0x8]}) (async)
socketpair$unix(0x1, 0x4, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
dup3(r0, r3, 0x0) (async, rerun: 64)
getsockopt$sock_buf(r3, 0x1, 0x3b, 0x0, &(0x7f0000000200)) (rerun: 64)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x3, 0x0, @remote}, 0x1c)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0xe0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async, rerun: 64)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000180)={'rose0\x00', &(0x7f0000000100)=@ethtool_coalesce={0xe, 0xffff09fe, 0x7f, 0x4848e049, 0x7fff, 0x8, 0x1, 0x9, 0x81, 0x9, 0x964, 0x6, 0x3, 0x5, 0x5, 0x9, 0x3, 0x4, 0x2, 0x4, 0x7fff, 0x0, 0x6}}) (async, rerun: 64)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f0000000080)=0xffffdcf7, 0x4)

62.107597ms ago: executing program 1 (id=1705):
mkdir(&(0x7f0000000140)='./file0\x00', 0x100)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400), 0x12)
r2 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_type(r2, 0x0, 0x2, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, 0x1000000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])

2.007229ms ago: executing program 1 (id=1706):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f0000000000)=0x10001, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call={0x85, 0x0, 0x0, 0x7e}, @exit], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x5)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000000000000000170000000c0006"], 0x20}, 0x1, 0x0, 0x0, 0x408c4}, 0x4000004)
getdents64(r2, &(0x7f00000000c0)=""/154, 0x9a)
lseek(r2, 0x10000000008, 0x1)
getdents64(r2, 0x0, 0x0)
r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
writev(r5, &(0x7f0000000040)=[{&(0x7f0000000100)="0c37f8246f3e4c13288a16aa77bca416bb6c2ed80e4c948037035c05a3f6d188b7f720f619c3aed8885056565487fbfcf347f9759031056a5c6f6510bba78a970af194a3bfff9ee162bfd08f9d87b199bad71d4b704bbe05f9458f7edb6ea6df3da93d4439b26d0a2fd23b7969b4ccf926f6c02246b837960e2e6ffd0b", 0x7d}, {&(0x7f0000000440)}], 0x2)

1.673462ms ago: executing program 1 (id=1707):
r0 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'nicvf0\x00'}) (async)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f00000000c0))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x410042, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
ioctl$SIOCSIFHWADDR(r3, 0x8924, &(0x7f0000000180)={'wlan0\x00', @broadcast})
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2001, 0x0)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240), r3)
sendmsg$IPVS_CMD_SET_CONFIG(r3, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x9c, r4, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x100}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x3a}]}, @IPVS_CMD_ATTR_DAEMON={0x60, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vlan0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}]}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) (async)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000003c0)='freezer.parent_freezing\x00', 0x0, 0x0)
r6 = pidfd_getfd(r5, r1, 0x0)
write$tcp_mem(r6, &(0x7f0000000400)={0xb38, 0x20, 0x8001, 0x20, 0x7}, 0x48) (async)
ioctl$DRM_IOCTL_RES_CTX(r6, 0xc0106426, &(0x7f00000004c0)={0x6, &(0x7f0000000480)=[{}, {}, {}, {}, {<r7=>0x0}, {}]})
ioctl$DRM_IOCTL_SET_SAREA_CTX(r5, 0x4010641c, &(0x7f0000000580)={r7, &(0x7f0000000500)=""/83}) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_CONFIG(r8, &(0x7f0000000680)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x24, r4, 0x1, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x80000000}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffff7}]}, 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x4)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000700), r8)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r6, &(0x7f0000000840)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x20162000}, 0xc, &(0x7f0000000800)={&(0x7f0000000740)={0xa0, r9, 0x2, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x1}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}]}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x8}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x6}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x7}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x28}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x401}]}, 0xa0}, 0x1, 0x0, 0x0, 0x84}, 0x4044) (async)
sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x28, 0x0, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x48001)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000980)={{0x1, 0x1, 0x18, <r10=>r6}, './file0/file0\x00'})
ioctl$UFFDIO_API(r10, 0xc018aa3f, &(0x7f00000009c0)={0xaa, 0x406}) (async)
close(r10) (async)
bind$inet(r3, &(0x7f0000000a00)={0x2, 0x4e23, @empty}, 0x10)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f0000000a40)=0x4300, 0x4) (async)
setsockopt$XDP_UMEM_FILL_RING(r10, 0x11b, 0x5, &(0x7f0000000a80)=0xc000, 0x4)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LIST_PHY(r11, &(0x7f0000000bc0)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x8e0fe25b347efe7a}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x14, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004041}, 0x0)

0s ago: executing program 5 (id=1704):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000801}, 0x40800)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x240)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700)

kernel console output (not intermixed with test programs):

 maxpacket: 32
[  117.416274][ T5981] usb 8-1: new low-speed USB device number 8 using dummy_hcd
[  117.566267][ T5981] usb 8-1: Invalid ep0 maxpacket: 32
[  117.567967][ T5981] usb usb8-port1: attempt power cycle
[  117.690522][ T8917] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  117.705115][ T8917] syzkaller0: entered promiscuous mode
[  117.706692][ T8917] syzkaller0: entered allmulticast mode
[  117.708896][ T8917] tipc: Resetting bearer <eth:syzkaller0>
[  117.713388][ T8916] tipc: Resetting bearer <eth:syzkaller0>
[  117.843260][ T8923] binder: 8921:8923 ioctl c00c620f 400000000000 returned -22
[  117.916578][ T5981] usb 8-1: new low-speed USB device number 9 using dummy_hcd
[  117.942904][ T5981] usb 8-1: Invalid ep0 maxpacket: 32
[  118.096290][ T5981] usb 8-1: new low-speed USB device number 10 using dummy_hcd
[  118.117655][ T5981] usb 8-1: Invalid ep0 maxpacket: 32
[  118.119962][ T5981] usb usb8-port1: unable to enumerate USB device
[  118.513058][ T8927] binder: Unknown parameter 'mask'
[  118.761150][ T8916] tipc: Disabling bearer <eth:syzkaller0>
[  118.796851][ T8931] netlink: 20 bytes leftover after parsing attributes in process `syz.1.969'.
[  118.850337][ T8933] netlink: 'syz.2.970': attribute type 10 has an invalid length.
[  118.853701][ T8933] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  118.919371][ T8939] netlink: 8 bytes leftover after parsing attributes in process `syz.2.972'.
[  118.921568][ T8939] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  118.943594][ T8937] netlink: 'syz.1.973': attribute type 4 has an invalid length.
[  118.992725][ T8948] binder: Unknown parameter 'mask'
[  119.080669][ T8961] netlink: 20 bytes leftover after parsing attributes in process `syz.1.983'.
[  119.105048][ T8962] netlink: 36 bytes leftover after parsing attributes in process `syz.2.979'.
[  119.108155][ T8962] netlink: 16 bytes leftover after parsing attributes in process `syz.2.979'.
[  119.110532][ T8962] netlink: 36 bytes leftover after parsing attributes in process `syz.2.979'.
[  119.113011][ T8962] netlink: 36 bytes leftover after parsing attributes in process `syz.2.979'.
[  119.399734][ T8979] binder: Unknown parameter 'mask'
[  119.430802][ T8981] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  119.445821][ T8981] syzkaller0: entered promiscuous mode
[  119.447365][ T8981] syzkaller0: entered allmulticast mode
[  119.449263][ T8981] tipc: Resetting bearer <eth:syzkaller0>
[  119.454138][ T8980] tipc: Resetting bearer <eth:syzkaller0>
[  119.477919][ T8985] netlink: 'syz.1.992': attribute type 10 has an invalid length.
[  119.857174][ T8987] netlink: 20 bytes leftover after parsing attributes in process `syz.3.993'.
[  120.173038][ T8997] netlink: 'syz.2.997': attribute type 4 has an invalid length.
[  120.209317][   T10] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  120.360227][   T10] usb 8-1: config 171 has an invalid interface number: 109 but max is 0
[  120.362504][   T10] usb 8-1: config 171 has an invalid descriptor of length 0, skipping remainder of the config
[  120.365467][   T10] usb 8-1: config 171 has no interface number 0
[  120.367333][   T10] usb 8-1: config 171 interface 109 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1023
[  120.369981][   T10] usb 8-1: config 171 interface 109 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 239
[  120.372675][   T10] usb 8-1: config 171 interface 109 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 12
[  120.377857][   T10] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=fd.2e
[  120.380329][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.382530][   T10] usb 8-1: Product: syz
[  120.383678][   T10] usb 8-1: Manufacturer: syz
[  120.385108][   T10] usb 8-1: SerialNumber: syz
[  120.389706][ T8989] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  120.392544][ T8989] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  120.436209][ T5981] tipc: Node number set to 172497357
[  120.518024][ T8980] tipc: Disabling bearer <eth:syzkaller0>
[  120.522811][ T8985] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  120.578122][ T9003] netlink: 'syz.1.1000': attribute type 39 has an invalid length.
[  120.583290][ T9007] binder: Unknown parameter 'mask'
[  120.601190][   T10] ath6kl: Failed to submit usb control message: -71
[  120.603062][   T10] ath6kl: unable to send the bmi data to the device: -71
[  120.605096][   T10] ath6kl: Unable to send get target info: -71
[  120.611356][   T10] ath6kl: Failed to init ath6kl core: -71
[  120.617386][   T10] ath6kl_usb 8-1:171.109: probe with driver ath6kl_usb failed with error -71
[  120.625477][   T10] usb 8-1: USB disconnect, device number 11
[  120.630367][ T9011] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1002'.
[  120.803498][ T9019] binder: 9018:9019 ioctl c00c620f 400000000000 returned -22
[  120.822979][   T40] kauditd_printk_skb: 33 callbacks suppressed
[  120.822991][   T40] audit: type=1404 audit(1741813320.672:1008): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  120.830057][   T40] audit: type=1400 audit(1741813320.692:1009): avc:  denied  { create } for  pid=9022 comm="syz.2.1007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=0
[  120.835721][   T40] audit: type=1404 audit(1741813320.692:1010): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  120.846254][   T40] audit: type=1400 audit(1741813320.692:1011): avc:  denied  { module_request } for  pid=9022 comm="syz.2.1007" kmod="fs-efivarfs" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  120.856911][   T40] audit: type=1400 audit(1741813320.702:1012): avc:  denied  { read write } for  pid=8044 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  120.863301][   T40] audit: type=1400 audit(1741813320.702:1013): avc:  denied  { open } for  pid=8044 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  120.872093][   T40] audit: type=1400 audit(1741813320.702:1014): avc:  denied  { ioctl } for  pid=8044 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  120.878948][   T40] audit: type=1400 audit(1741813320.722:1015): avc:  denied  { name_bind } for  pid=9025 comm="syz.1.1008" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  120.884540][   T40] audit: type=1400 audit(1741813320.722:1016): avc:  denied  { node_bind } for  pid=9025 comm="syz.1.1008" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  120.890125][   T40] audit: type=1400 audit(1741813320.722:1017): avc:  denied  { create } for  pid=9022 comm="syz.2.1007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  120.952180][ T9031] binder: Unknown parameter 'mask'
[  120.979716][ T9034] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1011'.
[  121.169125][ T9045] netlink: 'syz.3.1015': attribute type 10 has an invalid length.
[  121.170573][ T9042] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1013'.
[  121.174510][ T9042] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1013'.
[  121.309932][ T9051] netlink: 'syz.3.1018': attribute type 4 has an invalid length.
[  121.448495][ T9058] binder: Unknown parameter 'mask'
[  121.504800][ T9064] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  121.535536][ T9064] syzkaller0: entered promiscuous mode
[  121.537704][ T9064] syzkaller0: entered allmulticast mode
[  121.540450][ T9064] tipc: Resetting bearer <eth:syzkaller0>
[  121.545300][ T9062] tipc: Resetting bearer <eth:syzkaller0>
[  122.016271][ T9075] binder: 9073:9075 ioctl c00c620f 400000000000 returned -22
[  122.680671][ T9062] tipc: Disabling bearer <eth:syzkaller0>
[  122.684692][ T9079] wg1: entered promiscuous mode
[  122.725135][ T9086] binder: Unknown parameter 'mask'
[  122.803229][ T9095] netlink: 'syz.1.1036': attribute type 10 has an invalid length.
[  122.869958][ T9099] netlink: 'syz.3.1037': attribute type 4 has an invalid length.
[  123.156257][ T1455] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[  123.217839][ T9109] binder: Unknown parameter 'mask'
[  123.308348][ T1455] usb 8-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid maxpacket 1023, setting to 64
[  123.311483][ T1455] usb 8-1: config 1 interface 0 has no altsetting 0
[  123.316391][ T1455] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  123.318848][ T1455] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.321059][ T1455] usb 8-1: Product: syz
[  123.322444][ T1455] usb 8-1: Manufacturer: syz
[  123.323981][ T1455] usb 8-1: SerialNumber: syz
[  123.328108][ T9102] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  123.541624][ T9102] deleting an unspecified loop device is not supported.
[  123.551601][ T1455] usb 8-1: USB disconnect, device number 12
[  123.632922][ T9130] MTD: Attempt to mount non-MTD device "/dev/nbd2"
[  123.635371][ T9130] cramfs: wrong magic
[  123.639102][ T9130] binder: 9129:9130 ioctl c00c620f 400000000000 returned -22
[  123.758214][ T9138] binder: Unknown parameter 'mask'
[  124.082885][ T9148] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  124.100208][ T9148] syzkaller0: entered promiscuous mode
[  124.101699][ T9148] syzkaller0: entered allmulticast mode
[  124.103549][ T9148] tipc: Resetting bearer <eth:syzkaller0>
[  124.111059][ T9147] tipc: Resetting bearer <eth:syzkaller0>
[  124.363133][ T9150] netlink: 'syz.4.1057': attribute type 10 has an invalid length.
[  124.785468][ T9165] netlink: 'syz.1.1060': attribute type 4 has an invalid length.
[  125.220367][ T9147] tipc: Disabling bearer <eth:syzkaller0>
[  125.224382][ T9150] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  125.327121][ T9189] program syz.2.1067 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  125.333991][ T9189] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  125.490641][ T9203] __nla_validate_parse: 11 callbacks suppressed
[  125.490652][ T9203] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1074'.
[  125.494990][ T9203] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1074'.
[  125.499898][ T9203] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1074'.
[  125.502389][ T9203] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1074'.
[  125.823165][ T9227] netlink: 'syz.2.1086': attribute type 10 has an invalid length.
[  125.851171][   T40] kauditd_printk_skb: 323 callbacks suppressed
[  125.851181][   T40] audit: type=1400 audit(1741813325.702:1341): avc:  denied  { create } for  pid=9228 comm="syz.2.1087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  125.858428][   T40] audit: type=1400 audit(1741813325.712:1342): avc:  denied  { ioctl } for  pid=9228 comm="syz.2.1087" path="socket:[26176]" dev="sockfs" ino=26176 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  125.871590][   T40] audit: type=1400 audit(1741813325.732:1343): avc:  denied  { map_create } for  pid=9228 comm="syz.2.1087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  125.876955][   T40] audit: type=1400 audit(1741813325.732:1344): avc:  denied  { bpf } for  pid=9228 comm="syz.2.1087" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  125.882616][   T40] audit: type=1400 audit(1741813325.732:1345): avc:  denied  { map_read map_write } for  pid=9228 comm="syz.2.1087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  125.888316][   T40] audit: type=1400 audit(1741813325.732:1346): avc:  denied  { prog_load } for  pid=9228 comm="syz.2.1087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  125.893624][   T40] audit: type=1400 audit(1741813325.732:1347): avc:  denied  { read write } for  pid=9228 comm="syz.2.1087" name="video3" dev="devtmpfs" ino=959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  125.900269][   T40] audit: type=1400 audit(1741813325.732:1348): avc:  denied  { open } for  pid=9228 comm="syz.2.1087" path="/dev/video3" dev="devtmpfs" ino=959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  125.906876][   T40] audit: type=1400 audit(1741813325.732:1349): avc:  denied  { ioctl } for  pid=9228 comm="syz.2.1087" path="/dev/video3" dev="devtmpfs" ino=959 ioctlcmd=0x5605 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  125.913453][   T40] audit: type=1400 audit(1741813325.732:1350): avc:  denied  { perfmon } for  pid=9228 comm="syz.2.1087" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  125.927123][ T9231] netlink: 'syz.2.1088': attribute type 4 has an invalid length.
[  126.104984][ T9240] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1092'.
[  126.140812][ T9248] binder: 9247:9248 ioctl c00c620f 400000000000 returned -22
[  126.141492][ T9246] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  126.159991][ T9246] syzkaller0: entered promiscuous mode
[  126.161631][ T9246] syzkaller0: entered allmulticast mode
[  126.164006][ T9246] tipc: Resetting bearer <eth:syzkaller0>
[  126.177848][ T9245] tipc: Resetting bearer <eth:syzkaller0>
[  126.664989][ T9268] FAULT_INJECTION: forcing a failure.
[  126.664989][ T9268] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.669164][ T9268] CPU: 0 UID: 0 PID: 9268 Comm: syz.1.1104 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  126.669177][ T9268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.669184][ T9268] Call Trace:
[  126.669187][ T9268]  <TASK>
[  126.669191][ T9268]  dump_stack_lvl+0x16c/0x1f0
[  126.669220][ T9268]  should_fail_ex+0x50a/0x650
[  126.669241][ T9268]  _copy_from_user+0x2e/0xd0
[  126.669252][ T9268]  memdup_user+0x71/0xd0
[  126.669267][ T9268]  strndup_user+0x78/0xe0
[  126.669281][ T9268]  __x64_sys_mount+0x138/0x310
[  126.669293][ T9268]  ? __pfx___x64_sys_mount+0x10/0x10
[  126.669307][ T9268]  do_syscall_64+0xcd/0x250
[  126.669323][ T9268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.669337][ T9268] RIP: 0033:0x7f77c918d169
[  126.669345][ T9268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.669355][ T9268] RSP: 002b:00007f77c9fdf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  126.669365][ T9268] RAX: ffffffffffffffda RBX: 00007f77c93a5fa0 RCX: 00007f77c918d169
[  126.669371][ T9268] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  126.669377][ T9268] RBP: 00007f77c9fdf090 R08: 0000400000000480 R09: 0000000000000000
[  126.669383][ T9268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.669388][ T9268] R13: 0000000000000001 R14: 00007f77c93a5fa0 R15: 00007ffc3cfc8408
[  126.669399][ T9268]  </TASK>
[  127.165273][ T9280] binder: Bad value for 'max'
[  127.205970][ T9282] netlink: 'syz.3.1108': attribute type 10 has an invalid length.
[  127.305798][ T9245] tipc: Disabling bearer <eth:syzkaller0>
[  127.309797][ T9273] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1106'.
[  127.409619][ T9287] netlink: 'syz.4.1110': attribute type 4 has an invalid length.
[  127.450573][ T9297] Bluetooth: MGMT ver 1.23
[  127.596061][ T9308] tmpfs: Bad value for 'mpol'
[  127.645864][ T9310] netfs: Couldn't get user pages (rc=-14)
[  127.874445][ T9313] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1119'.
[  127.877133][ T9313] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1119'.
[  127.879447][ T9313] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1119'.
[  127.881811][ T9313] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1119'.
[  128.292688][ T9323] FAULT_INJECTION: forcing a failure.
[  128.292688][ T9323] name failslab, interval 1, probability 0, space 0, times 0
[  128.296333][ T9323] CPU: 2 UID: 0 PID: 9323 Comm: syz.2.1124 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  128.296346][ T9323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.296363][ T9323] Call Trace:
[  128.296386][ T9323]  <TASK>
[  128.296390][ T9323]  dump_stack_lvl+0x16c/0x1f0
[  128.296430][ T9323]  should_fail_ex+0x50a/0x650
[  128.296452][ T9323]  ? fs_reclaim_acquire+0xae/0x150
[  128.296468][ T9323]  ? copy_mount_options+0x55/0x190
[  128.296481][ T9323]  should_failslab+0xc2/0x120
[  128.296492][ T9323]  __kmalloc_cache_noprof+0x68/0x410
[  128.296509][ T9323]  ? _copy_from_user+0x59/0xd0
[  128.296520][ T9323]  copy_mount_options+0x55/0x190
[  128.296533][ T9323]  __x64_sys_mount+0x1ad/0x310
[  128.296545][ T9323]  ? __pfx___x64_sys_mount+0x10/0x10
[  128.296559][ T9323]  do_syscall_64+0xcd/0x250
[  128.296575][ T9323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.296589][ T9323] RIP: 0033:0x7f4c71d8d169
[  128.296596][ T9323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.296606][ T9323] RSP: 002b:00007f4c72c62038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  128.296616][ T9323] RAX: ffffffffffffffda RBX: 00007f4c71fa5fa0 RCX: 00007f4c71d8d169
[  128.296622][ T9323] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  128.296628][ T9323] RBP: 00007f4c72c62090 R08: 0000400000000480 R09: 0000000000000000
[  128.296633][ T9323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.296639][ T9323] R13: 0000000000000001 R14: 00007f4c71fa5fa0 R15: 00007fff5636d3d8
[  128.296650][ T9323]  </TASK>
[  128.353078][ T9326] Malformed UNC in devname
[  128.353078][ T9326] 
[  128.355584][ T9326] CIFS: VFS: Malformed UNC in devname
[  128.380758][ T9333] syzkaller1: entered promiscuous mode
[  128.382343][ T9333] syzkaller1: entered allmulticast mode
[  129.222166][ T9345] netlink: 'syz.2.1131': attribute type 10 has an invalid length.
[  129.259727][ T9347] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  129.274282][ T9347] syzkaller0: entered promiscuous mode
[  129.275876][ T9347] syzkaller0: entered allmulticast mode
[  129.278021][ T9347] tipc: Resetting bearer <eth:syzkaller0>
[  129.282038][ T9346] tipc: Resetting bearer <eth:syzkaller0>
[  130.242099][ T9346] tipc: Disabling bearer <eth:syzkaller0>
[  130.276002][ T9360] netlink: 'syz.4.1136': attribute type 4 has an invalid length.
[  130.355594][ T9370] binder: 9369:9370 ioctl c00c620f 400000000000 returned -22
[  130.394632][ T9370] kvm: pic: non byte write
[  130.398331][ T9370] kvm: pic: single mode not supported
[  130.494580][ T9373] binder: 9369:9373 ioctl 81009431 400000000100 returned -22
[  131.187736][   T40] kauditd_printk_skb: 227 callbacks suppressed
[  131.187747][   T40] audit: type=1404 audit(1741813331.032:1578): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
Mar 12 21:02:11 syzkaller kern.warn kernel: [  131.187736][   T40] kauditd_printk_skb: 227 callbacks suppressed
[  131.201360][   T40] audit: type=1400 audit(1741813331.052:1579): avc:  denied  { read } for  pid=5336 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[  131.212709][   T40] audit: type=1404 audit(1741813331.052:1580): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  131.218439][   T40] audit: type=1400 audit(1741813331.052:1581): avc:  denied  { read } for  pid=5336 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  131.226079][   T40] audit: type=1400 audit(1741813331.052:1582): avc:  denied  { search } for  pid=5336 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  131.234274][   T40] audit: type=1400 audit(1741813331.052:1583): avc:  denied  { append } for  pid=5336 comm="syslogd" name="messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  131.242119][   T40] audit: type=1400 audit(1741813331.052:1584): avc:  denied  { open } for  pid=5336 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  131.250441][   T40] audit: type=1400 audit(1741813331.052:1585): avc:  denied  { getattr } for  pid=5336 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  131.257872][   T40] audit: type=1400 audit(1741813331.062:1586): avc:  denied  { read write } for  pid=6836 comm="syz-executor" name="loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  131.264415][   T40] audit: type=1400 audit(1741813331.062:1587): avc:  denied  { open } for  pid=6836 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  131.382002][ T9395] FAULT_INJECTION: forcing a failure.
[  131.382002][ T9395] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.386965][ T9395] CPU: 0 UID: 0 PID: 9395 Comm: syz.3.1147 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  131.386980][ T9395] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.386987][ T9395] Call Trace:
[  131.386990][ T9395]  <TASK>
[  131.386994][ T9395]  dump_stack_lvl+0x16c/0x1f0
[  131.387024][ T9395]  should_fail_ex+0x50a/0x650
[  131.387045][ T9395]  _copy_from_user+0x2e/0xd0
[  131.387056][ T9395]  copy_mount_options+0x76/0x190
[  131.387070][ T9395]  __x64_sys_mount+0x1ad/0x310
[  131.387082][ T9395]  ? __pfx___x64_sys_mount+0x10/0x10
[  131.387096][ T9395]  do_syscall_64+0xcd/0x250
[  131.387112][ T9395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.387126][ T9395] RIP: 0033:0x7faeabb8d169
[  131.387134][ T9395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.387144][ T9395] RSP: 002b:00007faeacaba038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  131.387153][ T9395] RAX: ffffffffffffffda RBX: 00007faeabda5fa0 RCX: 00007faeabb8d169
[  131.387159][ T9395] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  131.387165][ T9395] RBP: 00007faeacaba090 R08: 0000400000000480 R09: 0000000000000000
[  131.387170][ T9395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.387176][ T9395] R13: 0000000000000001 R14: 00007faeabda5fa0 R15: 00007ffc2b662a18
[  131.387187][ T9395]  </TASK>
[  131.570029][ T9404] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1152'.
[  131.572663][ T9404] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1152'.
[  131.575146][ T9404] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1152'.
[  131.578014][ T9404] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1152'.
[  131.600453][ T9409] devtmpfs: Unknown parameter 'max'
[  131.625407][ T9411] netlink: 'syz.2.1156': attribute type 10 has an invalid length.
[  131.653608][ T9413] [U] VÔ3¸ÂFÙ¾"WÇÁ/ÉÊ4:ÃXTZ“W¡T‘’LWµ«=
[  131.740307][ T9417] netlink: 'syz.2.1159': attribute type 4 has an invalid length.
[  132.023281][ T9428] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  132.044330][ T9428] syzkaller0: entered promiscuous mode
[  132.046097][ T9428] syzkaller0: entered allmulticast mode
[  132.049382][ T9428] tipc: Resetting bearer <eth:syzkaller0>
[  132.052459][ T9432] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1166'.
[  132.055719][ T9427] tipc: Resetting bearer <eth:syzkaller0>
[  132.193774][ T9440] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  132.217927][ T9440] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9440 comm=syz.1.1168
[  132.242387][ T9440] binder: 9434:9440 ioctl c00c620f 400000000000 returned -22
[  132.528730][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  132.530589][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  133.110909][ T9427] tipc: Disabling bearer <eth:syzkaller0>
[  133.235015][ T9461] FAULT_INJECTION: forcing a failure.
[  133.235015][ T9461] name failslab, interval 1, probability 0, space 0, times 0
[  133.239334][ T9461] CPU: 0 UID: 0 PID: 9461 Comm: syz.3.1176 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  133.239348][ T9461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.239354][ T9461] Call Trace:
[  133.239357][ T9461]  <TASK>
[  133.239361][ T9461]  dump_stack_lvl+0x16c/0x1f0
[  133.239380][ T9461]  should_fail_ex+0x50a/0x650
[  133.239396][ T9461]  ? fs_reclaim_acquire+0xae/0x150
[  133.239412][ T9461]  should_failslab+0xc2/0x120
[  133.239424][ T9461]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  133.239435][ T9461]  ? getname_flags.part.0+0x4c/0x550
[  133.239450][ T9461]  getname_flags.part.0+0x4c/0x550
[  133.239465][ T9461]  getname_flags+0x93/0xf0
[  133.239480][ T9461]  user_path_at+0x24/0x60
[  133.239490][ T9461]  __x64_sys_mount+0x1fd/0x310
[  133.239501][ T9461]  ? __pfx___x64_sys_mount+0x10/0x10
[  133.239516][ T9461]  do_syscall_64+0xcd/0x250
[  133.239531][ T9461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.239546][ T9461] RIP: 0033:0x7faeabb8d169
[  133.239554][ T9461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.239564][ T9461] RSP: 002b:00007faeacaba038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  133.239573][ T9461] RAX: ffffffffffffffda RBX: 00007faeabda5fa0 RCX: 00007faeabb8d169
[  133.239579][ T9461] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  133.239585][ T9461] RBP: 00007faeacaba090 R08: 0000400000000480 R09: 0000000000000000
[  133.239590][ T9461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.239596][ T9461] R13: 0000000000000001 R14: 00007faeabda5fa0 R15: 00007ffc2b662a18
[  133.239614][ T9461]  </TASK>
[  133.298128][    C0] vkms_vblank_simulate: vblank timer overrun
[  133.326002][ T9467] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  133.328578][ T9467] overlayfs: missing 'lowerdir'
[  133.404378][ T9475] batadv_slave_1: entered promiscuous mode
[  133.410234][ T9474] batadv_slave_1: left promiscuous mode
[  133.617431][ T9492] netlink: 'syz.3.1191': attribute type 10 has an invalid length.
[  133.644321][ T9496] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  133.647146][ T9496] overlayfs: missing 'lowerdir'
[  133.839574][ T9507] overlayfs: failed to resolve './file2': -2
[  133.866817][ T9515] input: syz0 as /devices/virtual/input/input9
[  133.868781][ T9515] input: failed to attach handler leds to device input9, error: -6
[  134.027015][ T9519] netlink: 'syz.3.1202': attribute type 4 has an invalid length.
[  134.061453][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  134.080609][ T9526] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  134.098009][ T9526] overlayfs: missing 'lowerdir'
[  134.484997][ T9546] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  134.487560][ T9546] overlayfs: missing 'lowerdir'
[  134.543497][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  134.636352][ T9558] FAULT_INJECTION: forcing a failure.
[  134.636352][ T9558] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.640607][ T9560] netlink: 'syz.2.1220': attribute type 10 has an invalid length.
[  134.642684][ T9558] CPU: 1 UID: 0 PID: 9558 Comm: syz.4.1219 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  134.642704][ T9558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.642713][ T9558] Call Trace:
[  134.642718][ T9558]  <TASK>
[  134.642724][ T9558]  dump_stack_lvl+0x16c/0x1f0
[  134.642749][ T9558]  should_fail_ex+0x50a/0x650
[  134.642774][ T9558]  _copy_from_user+0x2e/0xd0
[  134.642791][ T9558]  copy_msghdr_from_user+0x99/0x160
[  134.642815][ T9558]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  134.642847][ T9558]  ___sys_sendmsg+0xff/0x1e0
[  134.642871][ T9558]  ? __pfx____sys_sendmsg+0x10/0x10
[  134.642901][ T9558]  ? __pfx_lock_release+0x10/0x10
[  134.642922][ T9558]  ? trace_lock_acquire+0x14e/0x1f0
[  134.642946][ T9558]  ? __fget_files+0x206/0x3a0
[  134.642965][ T9558]  __sys_sendmsg+0x16e/0x220
[  134.642988][ T9558]  ? __pfx___sys_sendmsg+0x10/0x10
[  134.643024][ T9558]  do_syscall_64+0xcd/0x250
[  134.643047][ T9558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.643067][ T9558] RIP: 0033:0x7efeb458d169
[  134.643078][ T9558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.643093][ T9558] RSP: 002b:00007efeb5483038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.643106][ T9558] RAX: ffffffffffffffda RBX: 00007efeb47a6080 RCX: 00007efeb458d169
[  134.643116][ T9558] RDX: 0000000000000000 RSI: 00004000000015c0 RDI: 0000000000000003
[  134.643125][ T9558] RBP: 00007efeb5483090 R08: 0000000000000000 R09: 0000000000000000
[  134.643134][ T9558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.643142][ T9558] R13: 0000000000000000 R14: 00007efeb47a6080 R15: 00007fff5228cf98
[  134.643162][ T9558]  </TASK>
[  134.697396][ T9560] batman_adv: batadv0: Adding interface: team0
[  134.699065][ T9560] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.705710][ T9560] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  134.780213][ T9563] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1221'.
[  134.948394][ T9572] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  134.950884][ T9572] overlayfs: missing 'lowerdir'
[  135.166213][ T9580] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1228'.
[  135.168604][ T9580] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1228'.
[  135.172328][ T9580] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1228'.
[  135.174999][ T9580] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1228'.
[  135.467301][ T5948] Bluetooth: hci4: SCO packet for unknown connection handle 201
[  135.646300][ T5948] Bluetooth: hci1: command tx timeout
[  135.701881][ T9592] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  135.704267][ T9592] overlayfs: missing 'lowerdir'
[  136.110804][ T9615] bridge1: entered promiscuous mode
[  136.114479][ T9615] binder: 9612:9615 ioctl c00c620f 400000000000 returned -22
[  136.126973][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout
[  136.578215][ T5948] Bluetooth: hci4: SCO packet for unknown connection handle 201
[  136.760994][ T9619] __nla_validate_parse: 1 callbacks suppressed
[  136.761010][ T9619] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1243'.
[  136.801916][ T9624] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  136.804548][ T9624] overlayfs: missing 'lowerdir'
[  136.807682][ T9626] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  136.809925][   T40] kauditd_printk_skb: 275 callbacks suppressed
[  136.809934][   T40] audit: type=1400 audit(1741813336.662:1863): avc:  denied  { ioctl } for  pid=9625 comm="syz.2.1246" path="socket:[30026]" dev="sockfs" ino=30026 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  136.822208][ T9626] syzkaller0: entered promiscuous mode
[  136.823900][ T9626] syzkaller0: entered allmulticast mode
[  136.825796][ T9626] tipc: Resetting bearer <eth:syzkaller0>
[  136.830132][ T9625] tipc: Resetting bearer <eth:syzkaller0>
[  136.913608][   T40] audit: type=1400 audit(1741813336.762:1864): avc:  denied  { create } for  pid=9627 comm="syz.4.1247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  136.923369][   T40] audit: type=1400 audit(1741813336.762:1865): avc:  denied  { remount } for  pid=9628 comm="syz.3.1248" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  136.931099][   T40] audit: type=1400 audit(1741813336.782:1866): avc:  denied  { create } for  pid=9631 comm="syz.1.1249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  136.938035][   T40] audit: type=1400 audit(1741813336.782:1867): avc:  denied  { bind } for  pid=9631 comm="syz.1.1249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  136.943075][   T40] audit: type=1400 audit(1741813336.782:1868): avc:  denied  { accept } for  pid=9631 comm="syz.1.1249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  136.948929][   T40] audit: type=1400 audit(1741813336.782:1869): avc:  denied  { write } for  pid=9631 comm="syz.1.1249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  136.954068][   T40] audit: type=1400 audit(1741813336.782:1870): avc:  denied  { mounton } for  pid=9631 comm="syz.1.1249" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  136.960437][   T40] audit: type=1400 audit(1741813336.792:1871): avc:  denied  { mount } for  pid=9631 comm="syz.1.1249" name="/" dev="autofs" ino=29572 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  136.966590][   T40] audit: type=1400 audit(1741813336.792:1872): avc:  denied  { getopt } for  pid=9631 comm="syz.1.1249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  136.978722][ T9637] netlink: 260 bytes leftover after parsing attributes in process `syz.4.1247'.
[  137.065508][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  137.566227][ T5948] Bluetooth: hci4: command 0x0419 tx timeout
[  137.905949][ T9625] tipc: Disabling bearer <eth:syzkaller0>
[  137.911209][ T9649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1255'.
[  137.938557][ T9652] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  137.941275][ T9652] overlayfs: missing 'lowerdir'
[  138.019853][ T9656] FAULT_INJECTION: forcing a failure.
[  138.019853][ T9656] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.023679][ T9656] CPU: 2 UID: 0 PID: 9656 Comm: syz.2.1259 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  138.023691][ T9656] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.023698][ T9656] Call Trace:
[  138.023702][ T9656]  <TASK>
[  138.023706][ T9656]  dump_stack_lvl+0x16c/0x1f0
[  138.023749][ T9656]  should_fail_ex+0x50a/0x650
[  138.023775][ T9656]  strncpy_from_user+0x3b/0x2d0
[  138.023797][ T9656]  getname_flags.part.0+0x8f/0x550
[  138.023812][ T9656]  getname_flags+0x93/0xf0
[  138.023828][ T9656]  user_path_at+0x24/0x60
[  138.023840][ T9656]  __x64_sys_mount+0x1fd/0x310
[  138.023857][ T9656]  ? __pfx___x64_sys_mount+0x10/0x10
[  138.023880][ T9656]  do_syscall_64+0xcd/0x250
[  138.023903][ T9656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.023923][ T9656] RIP: 0033:0x7f4c71d8d169
[  138.023934][ T9656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.023944][ T9656] RSP: 002b:00007f4c72c62038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  138.023953][ T9656] RAX: ffffffffffffffda RBX: 00007f4c71fa5fa0 RCX: 00007f4c71d8d169
[  138.023959][ T9656] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  138.023965][ T9656] RBP: 00007f4c72c62090 R08: 0000400000000480 R09: 0000000000000000
[  138.023971][ T9656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.023976][ T9656] R13: 0000000000000001 R14: 00007f4c71fa5fa0 R15: 00007fff5636d3d8
[  138.023988][ T9656]  </TASK>
[  138.201223][ T9678] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1266'.
[  138.207782][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout
[  138.238747][ T9680] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  138.241636][ T9680] overlayfs: missing 'lowerdir'
[  138.262629][ T9682] netlink: 'syz.1.1268': attribute type 10 has an invalid length.
[  138.495423][ T9689] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1271'.
[  138.574294][ T9693] netlink: 'syz.1.1273': attribute type 4 has an invalid length.
[  138.737937][ T9701] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1276'.
[  138.820913][ T5948] Bluetooth: hci4: SCO packet for unknown connection handle 201
[  138.827755][ T9709] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  138.833737][ T9709] overlayfs: missing 'lowerdir'
[  139.037637][ T9722] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1286'.
[  139.065821][ T9726] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1288'.
[  139.105283][ T9729] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  139.108008][ T9729] overlayfs: missing 'lowerdir'
[  139.194044][ T9737] netlink: 'syz.1.1291': attribute type 1 has an invalid length.
[  139.198234][ T9737] ax25_connect(): syz.1.1291 uses autobind, please contact jreuter@yaina.de
[  139.201550][ T9737] netlink: 'syz.1.1291': attribute type 1 has an invalid length.
[  139.203844][ T9737] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1291'.
[  139.337168][ T9746] netlink: 'syz.2.1295': attribute type 1 has an invalid length.
[  139.351242][ T9746] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  139.355970][  T105] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  139.356869][ T9746] 8021q: adding VLAN 0 to HW filter on device bond1
[  139.396723][ T5948] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  139.477205][   T71] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  139.596855][ T9751] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1297'.
[  139.646365][ T5948] Bluetooth: hci4: command 0x0419 tx timeout
[  139.735796][ T9757] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  139.738984][ T9757] overlayfs: missing 'lowerdir'
[  139.849556][ T9761] FAULT_INJECTION: forcing a failure.
[  139.849556][ T9761] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  139.853303][ T9761] CPU: 2 UID: 0 PID: 9761 Comm: syz.2.1302 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  139.853315][ T9761] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.853321][ T9761] Call Trace:
[  139.853325][ T9761]  <TASK>
[  139.853329][ T9761]  dump_stack_lvl+0x16c/0x1f0
[  139.853347][ T9761]  should_fail_ex+0x50a/0x650
[  139.853366][ T9761]  _copy_to_user+0x32/0xd0
[  139.853377][ T9761]  simple_read_from_buffer+0xd0/0x160
[  139.853394][ T9761]  proc_fail_nth_read+0x198/0x270
[  139.853409][ T9761]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  139.853424][ T9761]  ? rw_verify_area+0xcf/0x680
[  139.853438][ T9761]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  139.853451][ T9761]  vfs_read+0x1df/0xbf0
[  139.853467][ T9761]  ? __fget_files+0x1fc/0x3a0
[  139.853477][ T9761]  ? __pfx___mutex_lock+0x10/0x10
[  139.853491][ T9761]  ? __pfx_vfs_read+0x10/0x10
[  139.853511][ T9761]  ? __fget_files+0x206/0x3a0
[  139.853524][ T9761]  ksys_read+0x12b/0x250
[  139.853537][ T9761]  ? __pfx_ksys_read+0x10/0x10
[  139.853549][ T9761]  do_syscall_64+0xcd/0x250
[  139.853565][ T9761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.853579][ T9761] RIP: 0033:0x7f4c71d8bb7c
[  139.853587][ T9761] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  139.853596][ T9761] RSP: 002b:00007f4c72c62030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  139.853606][ T9761] RAX: ffffffffffffffda RBX: 00007f4c71fa5fa0 RCX: 00007f4c71d8bb7c
[  139.853612][ T9761] RDX: 000000000000000f RSI: 00007f4c72c620a0 RDI: 0000000000000005
[  139.853617][ T9761] RBP: 00007f4c72c62090 R08: 0000000000000000 R09: 0000000000000000
[  139.853623][ T9761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.853628][ T9761] R13: 0000000000000000 R14: 00007f4c71fa5fa0 R15: 00007fff5636d3d8
[  139.853640][ T9761]  </TASK>
[  139.984480][ T5948] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  140.055395][ T9778] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  140.060559][ T9778] overlayfs: missing 'lowerdir'
[  140.287090][ T9797] binder: 9796:9797 ioctl c00c620f 400000000000 returned -22
[  140.296227][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout
[  140.366214][ T5948] Bluetooth: hci1: command tx timeout
[  140.967093][ T9810] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  140.969614][ T9810] overlayfs: missing 'lowerdir'
[  141.045121][ T9812] syzkaller0: entered promiscuous mode
[  141.046766][ T9812] syzkaller0: entered allmulticast mode
[  141.095295][ T5948] Bluetooth: hci4: SCO packet for unknown connection handle 201
[  141.414267][ T9826] FAULT_INJECTION: forcing a failure.
[  141.414267][ T9826] name failslab, interval 1, probability 0, space 0, times 0
[  141.419745][ T9826] CPU: 2 UID: 0 PID: 9826 Comm: syz.2.1327 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  141.419760][ T9826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.419766][ T9826] Call Trace:
[  141.419770][ T9826]  <TASK>
[  141.419773][ T9826]  dump_stack_lvl+0x16c/0x1f0
[  141.419792][ T9826]  should_fail_ex+0x50a/0x650
[  141.419807][ T9826]  ? fs_reclaim_acquire+0xae/0x150
[  141.419824][ T9826]  ? tomoyo_encode2+0x100/0x3e0
[  141.419838][ T9826]  should_failslab+0xc2/0x120
[  141.419850][ T9826]  __kmalloc_noprof+0xcb/0x510
[  141.419860][ T9826]  ? __pfx_lock_release+0x10/0x10
[  141.419874][ T9826]  ? trace_lock_acquire+0x14e/0x1f0
[  141.419888][ T9826]  tomoyo_encode2+0x100/0x3e0
[  141.419903][ T9826]  tomoyo_encode+0x29/0x50
[  141.419917][ T9826]  tomoyo_mount_acl+0x145/0x880
[  141.419930][ T9826]  ? hlock_class+0x4e/0x130
[  141.419940][ T9826]  ? __lock_acquire+0x15a9/0x3c40
[  141.419956][ T9826]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  141.419972][ T9826]  ? __pfx___lock_acquire+0x10/0x10
[  141.419985][ T9826]  ? stack_trace_save+0x95/0xd0
[  141.419997][ T9826]  ? __pfx_lock_release+0x10/0x10
[  141.420017][ T9826]  ? trace_lock_acquire+0x14e/0x1f0
[  141.420028][ T9826]  ? tomoyo_mount_permission+0x149/0x420
[  141.420042][ T9826]  ? lock_acquire+0x2f/0xb0
[  141.420055][ T9826]  ? tomoyo_mount_permission+0x149/0x420
[  141.420070][ T9826]  tomoyo_mount_permission+0x16e/0x420
[  141.420083][ T9826]  ? tomoyo_mount_permission+0x149/0x420
[  141.420098][ T9826]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  141.420117][ T9826]  ? get_current_fs_domain+0x184/0x1f0
[  141.420129][ T9826]  security_sb_mount+0x9b/0x260
[  141.420143][ T9826]  path_mount+0x129/0x1f10
[  141.420156][ T9826]  ? kmem_cache_free+0x2e2/0x4d0
[  141.420165][ T9826]  ? __pfx_path_mount+0x10/0x10
[  141.420177][ T9826]  ? putname+0x13c/0x180
[  141.420191][ T9826]  __x64_sys_mount+0x28f/0x310
[  141.420202][ T9826]  ? __pfx___x64_sys_mount+0x10/0x10
[  141.420217][ T9826]  do_syscall_64+0xcd/0x250
[  141.420233][ T9826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.420247][ T9826] RIP: 0033:0x7f4c71d8d169
[  141.420255][ T9826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.420264][ T9826] RSP: 002b:00007f4c72c62038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  141.420274][ T9826] RAX: ffffffffffffffda RBX: 00007f4c71fa5fa0 RCX: 00007f4c71d8d169
[  141.420280][ T9826] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  141.420286][ T9826] RBP: 00007f4c72c62090 R08: 0000400000000480 R09: 0000000000000000
[  141.420291][ T9826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.420297][ T9826] R13: 0000000000000001 R14: 00007f4c71fa5fa0 R15: 00007fff5636d3d8
[  141.420308][ T9826]  </TASK>
[  141.486275][ T5948] Bluetooth: hci2: command 0x0c1a tx timeout
[  141.652085][ T9833] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  141.655415][ T9833] overlayfs: missing 'lowerdir'
[  141.726274][ T5948] Bluetooth: hci4: command 0x0419 tx timeout
[  142.321017][   T40] kauditd_printk_skb: 134 callbacks suppressed
[  142.321028][   T40] audit: type=1400 audit(1741813342.172:2007): avc:  denied  { create } for  pid=9840 comm="syz.4.1334" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  142.329009][   T40] audit: type=1400 audit(1741813342.172:2008): avc:  denied  { map } for  pid=9840 comm="syz.4.1334" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=31919 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  142.335572][   T40] audit: type=1400 audit(1741813342.172:2009): avc:  denied  { read write } for  pid=9840 comm="syz.4.1334" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=31919 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  142.342649][   T40] audit: type=1400 audit(1741813342.182:2010): avc:  denied  { write } for  pid=9840 comm="syz.4.1334" name="001" dev="devtmpfs" ino=767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  142.368848][ T9848] netlink: 'syz.2.1336': attribute type 10 has an invalid length.
[  142.395853][   T40] audit: type=1400 audit(1741813342.242:2011): avc:  denied  { create } for  pid=9851 comm="syz.2.1338" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  142.412655][ T9850] netlink: 'syz.4.1337': attribute type 4 has an invalid length.
[  142.431951][ T9856] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  142.434407][ T9856] overlayfs: missing 'lowerdir'
[  142.467341][ T9864] FAULT_INJECTION: forcing a failure.
[  142.467341][ T9864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.471343][ T9864] CPU: 3 UID: 0 PID: 9864 Comm: syz.4.1343 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  142.471356][ T9864] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.471363][ T9864] Call Trace:
[  142.471366][ T9864]  <TASK>
[  142.471370][ T9864]  dump_stack_lvl+0x16c/0x1f0
[  142.471389][ T9864]  should_fail_ex+0x50a/0x650
[  142.471408][ T9864]  _copy_from_user+0x2e/0xd0
[  142.471419][ T9864]  memdup_user_nul+0x72/0x110
[  142.471435][ T9864]  sel_write_enforce+0xce/0x510
[  142.471446][ T9864]  ? rcu_is_watching+0x12/0xc0
[  142.471458][ T9864]  ? __pfx_sel_write_enforce+0x10/0x10
[  142.471472][ T9864]  ? __pfx_sel_write_enforce+0x10/0x10
[  142.471484][ T9864]  vfs_writev+0x6da/0xdd0
[  142.471499][ T9864]  ? fdget_pos+0x267/0x390
[  142.471517][ T9864]  ? __pfx_vfs_writev+0x10/0x10
[  142.471531][ T9864]  ? __mutex_lock+0x1cc/0xb10
[  142.471544][ T9864]  ? find_held_lock+0x2d/0x110
[  142.471558][ T9864]  ? __pfx___mutex_lock+0x10/0x10
[  142.471572][ T9864]  ? trace_lock_acquire+0x14e/0x1f0
[  142.471587][ T9864]  ? __fget_files+0x206/0x3a0
[  142.471600][ T9864]  ? do_writev+0x133/0x340
[  142.471614][ T9864]  do_writev+0x133/0x340
[  142.471628][ T9864]  ? __pfx_do_writev+0x10/0x10
[  142.471646][ T9864]  do_syscall_64+0xcd/0x250
[  142.471661][ T9864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.471696][ T9864] RIP: 0033:0x7efeb458d169
[  142.471707][ T9864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.471716][ T9864] RSP: 002b:00007efeb54a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  142.471726][ T9864] RAX: ffffffffffffffda RBX: 00007efeb47a5fa0 RCX: 00007efeb458d169
[  142.471732][ T9864] RDX: 0000000000000002 RSI: 0000400000000040 RDI: 0000000000000003
[  142.471738][ T9864] RBP: 00007efeb54a4090 R08: 0000000000000000 R09: 0000000000000000
[  142.471743][ T9864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.471749][ T9864] R13: 0000000000000000 R14: 00007efeb47a5fa0 R15: 00007fff5228cf98
[  142.471763][ T9864]  </TASK>
[  142.563413][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  142.571342][   T40] audit: type=1400 audit(1741813342.422:2012): avc:  denied  { create } for  pid=9869 comm="syz.4.1346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  142.590393][ T9870] can: request_module (can-proto-0) failed.
[  142.621275][   T40] audit: type=1404 audit(1741813342.472:2013): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  142.631147][   T40] audit: type=1404 audit(1741813342.482:2014): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  142.640635][   T40] audit: type=1400 audit(1741813342.502:2015): avc:  denied  { create } for  pid=9879 comm="syz.4.1348" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  142.644528][ T9880] __nla_validate_parse: 8 callbacks suppressed
[  142.644537][ T9880] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1348'.
[  142.668660][   T40] audit: type=1400 audit(1741813342.522:2016): avc:  denied  { read write } for  pid=9879 comm="syz.4.1348" name="radio7" dev="devtmpfs" ino=1020 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  142.750838][ T9893] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  142.753487][ T9893] overlayfs: missing 'lowerdir'
[  142.876941][  T105] nci: nci_extract_activation_params_nfc_dep: unsupported activation_rf_tech_and_mode 0x1
[  143.093849][ T9919] FAULT_INJECTION: forcing a failure.
[  143.093849][ T9919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.097573][ T9919] CPU: 3 UID: 0 PID: 9919 Comm: syz.2.1360 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  143.097586][ T9919] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.097593][ T9919] Call Trace:
[  143.097596][ T9919]  <TASK>
[  143.097600][ T9919]  dump_stack_lvl+0x16c/0x1f0
[  143.097619][ T9919]  should_fail_ex+0x50a/0x650
[  143.097637][ T9919]  _copy_to_user+0x32/0xd0
[  143.097648][ T9919]  simple_read_from_buffer+0xd0/0x160
[  143.097665][ T9919]  proc_fail_nth_read+0x198/0x270
[  143.097680][ T9919]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.097695][ T9919]  ? rw_verify_area+0xcf/0x680
[  143.097708][ T9919]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.097723][ T9919]  vfs_read+0x1df/0xbf0
[  143.097738][ T9919]  ? __fget_files+0x1fc/0x3a0
[  143.097748][ T9919]  ? __pfx___mutex_lock+0x10/0x10
[  143.097762][ T9919]  ? __pfx_vfs_read+0x10/0x10
[  143.097781][ T9919]  ? __fget_files+0x206/0x3a0
[  143.097794][ T9919]  ksys_read+0x12b/0x250
[  143.097802][ T9919]  ? __pfx_ksys_read+0x10/0x10
[  143.097814][ T9919]  do_syscall_64+0xcd/0x250
[  143.097830][ T9919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.097844][ T9919] RIP: 0033:0x7f4c71d8bb7c
[  143.097852][ T9919] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  143.097862][ T9919] RSP: 002b:00007f4c72c41030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  143.097871][ T9919] RAX: ffffffffffffffda RBX: 00007f4c71fa6080 RCX: 00007f4c71d8bb7c
[  143.097877][ T9919] RDX: 000000000000000f RSI: 00007f4c72c410a0 RDI: 0000000000000009
[  143.097883][ T9919] RBP: 00007f4c72c41090 R08: 0000000000000000 R09: 0000000000000000
[  143.097888][ T9919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.097894][ T9919] R13: 0000000000000001 R14: 00007f4c71fa6080 R15: 00007fff5636d3d8
[  143.097905][ T9919]  </TASK>
[  143.228257][ T5948] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  143.505061][ T9936] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  143.510475][ T9936] overlayfs: missing 'lowerdir'
[  143.576595][ T5948] Bluetooth: hci2: command 0x0c1a tx timeout
[  143.641194][ T5948] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  143.660032][ T9949] binder: 9948:9949 ioctl c00c620f 400000000000 returned -22
[  143.724245][ T9960] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  143.727014][ T9960] overlayfs: missing 'lowerdir'
[  143.817386][ T5948] Bluetooth: hci4: command 0x0419 tx timeout
[  143.852784][ T9968] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1381'.
[  143.855238][ T9968] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1381'.
[  144.415611][ T9981] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1385'.
[  144.418206][ T9981] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1385'.
[  144.420585][ T9981] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1385'.
[  144.422963][ T9981] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1385'.
[  144.577167][ T9984] FAULT_INJECTION: forcing a failure.
[  144.577167][ T9984] name failslab, interval 1, probability 0, space 0, times 0
[  144.580868][ T9984] CPU: 3 UID: 0 PID: 9984 Comm: syz.4.1386 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  144.580881][ T9984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.580888][ T9984] Call Trace:
[  144.580891][ T9984]  <TASK>
[  144.580895][ T9984]  dump_stack_lvl+0x16c/0x1f0
[  144.580914][ T9984]  should_fail_ex+0x50a/0x650
[  144.580930][ T9984]  ? fs_reclaim_acquire+0xae/0x150
[  144.580946][ T9984]  ? tomoyo_realpath_from_path+0xb9/0x720
[  144.580962][ T9984]  should_failslab+0xc2/0x120
[  144.580975][ T9984]  __kmalloc_noprof+0xcb/0x510
[  144.580985][ T9984]  ? trace_kmalloc+0x2d/0xd0
[  144.580998][ T9984]  ? __kmalloc_noprof+0x23b/0x510
[  144.581009][ T9984]  tomoyo_realpath_from_path+0xb9/0x720
[  144.581025][ T9984]  ? tomoyo_fill_path_info+0x233/0x420
[  144.581038][ T9984]  tomoyo_mount_acl+0x1af/0x880
[  144.581052][ T9984]  ? hlock_class+0x4e/0x130
[  144.581063][ T9984]  ? __lock_acquire+0x15a9/0x3c40
[  144.581079][ T9984]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  144.581094][ T9984]  ? __pfx___lock_acquire+0x10/0x10
[  144.581108][ T9984]  ? stack_trace_save+0x95/0xd0
[  144.581127][ T9984]  ? trace_lock_acquire+0x14e/0x1f0
[  144.581139][ T9984]  ? tomoyo_mount_permission+0x149/0x420
[  144.581153][ T9984]  ? lock_acquire+0x2f/0xb0
[  144.581166][ T9984]  ? tomoyo_mount_permission+0x149/0x420
[  144.581181][ T9984]  tomoyo_mount_permission+0x16e/0x420
[  144.581194][ T9984]  ? tomoyo_mount_permission+0x149/0x420
[  144.581208][ T9984]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  144.581227][ T9984]  ? get_current_fs_domain+0x184/0x1f0
[  144.581240][ T9984]  security_sb_mount+0x9b/0x260
[  144.581253][ T9984]  path_mount+0x129/0x1f10
[  144.581265][ T9984]  ? kmem_cache_free+0x2e2/0x4d0
[  144.581275][ T9984]  ? __pfx_path_mount+0x10/0x10
[  144.581287][ T9984]  ? putname+0x13c/0x180
[  144.581301][ T9984]  __x64_sys_mount+0x28f/0x310
[  144.581312][ T9984]  ? __pfx___x64_sys_mount+0x10/0x10
[  144.581327][ T9984]  do_syscall_64+0xcd/0x250
[  144.581343][ T9984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.581357][ T9984] RIP: 0033:0x7efeb458d169
[  144.581365][ T9984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.581375][ T9984] RSP: 002b:00007efeb54a4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  144.581384][ T9984] RAX: ffffffffffffffda RBX: 00007efeb47a5fa0 RCX: 00007efeb458d169
[  144.581390][ T9984] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  144.581396][ T9984] RBP: 00007efeb54a4090 R08: 0000400000000480 R09: 0000000000000000
[  144.581401][ T9984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.581407][ T9984] R13: 0000000000000001 R14: 00007efeb47a5fa0 R15: 00007fff5228cf98
[  144.581419][ T9984]  </TASK>
[  144.581423][ T9984] ERROR: Out of memory at tomoyo_realpath_from_path.
[  144.686261][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout
[  144.711153][ T9989] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  144.713604][ T9989] overlayfs: missing 'lowerdir'
[  144.818972][ T5948] Bluetooth: hci4: SCO packet for unknown connection handle 201
[  144.850052][T10003] syzkaller0: entered promiscuous mode
[  144.853710][T10003] syzkaller0: entered allmulticast mode
[  145.276598][T10012] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  145.279194][T10012] overlayfs: missing 'lowerdir'
[  145.374847][T10014] netlink: 'syz.1.1399': attribute type 10 has an invalid length.
[  145.646291][ T5948] Bluetooth: hci2: command 0x0c1a tx timeout
[  145.754216][T10005] Falling back ldisc for ttyprintk.
[  145.895474][T10018] netlink: 'syz.3.1400': attribute type 4 has an invalid length.
[  146.097603][ T5948] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  146.311028][T10041] FAULT_INJECTION: forcing a failure.
[  146.311028][T10041] name failslab, interval 1, probability 0, space 0, times 0
[  146.316601][T10041] CPU: 0 UID: 0 PID: 10041 Comm: syz.1.1409 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  146.316621][T10041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.316630][T10041] Call Trace:
[  146.316635][T10041]  <TASK>
[  146.316641][T10041]  dump_stack_lvl+0x16c/0x1f0
[  146.316666][T10041]  should_fail_ex+0x50a/0x650
[  146.316686][T10041]  ? fs_reclaim_acquire+0xae/0x150
[  146.316703][T10041]  should_failslab+0xc2/0x120
[  146.316716][T10041]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  146.316727][T10041]  ? audit_log_start+0x2bc/0x7e0
[  146.316743][T10041]  audit_log_start+0x2bc/0x7e0
[  146.316762][T10041]  ? __pfx_audit_log_start+0x10/0x10
[  146.316779][T10041]  ? trace_lock_acquire+0x14e/0x1f0
[  146.316794][T10041]  ? __pfx_vsscanf+0x10/0x10
[  146.316814][T10041]  ? lock_acquire+0x2f/0xb0
[  146.316835][T10041]  ? avc_has_perm_noaudit+0x61/0x3a0
[  146.316858][T10041]  audit_log+0xb4/0x150
[  146.316879][T10041]  ? __pfx_audit_log+0x10/0x10
[  146.316905][T10041]  ? from_kuid+0x89/0xd0
[  146.316918][T10041]  ? __pfx_from_kuid+0x10/0x10
[  146.316938][T10041]  sel_write_enforce+0x3a4/0x510
[  146.316959][T10041]  ? __pfx_sel_write_enforce+0x10/0x10
[  146.316983][T10041]  ? __pfx_sel_write_enforce+0x10/0x10
[  146.317002][T10041]  vfs_writev+0x6da/0xdd0
[  146.317026][T10041]  ? fdget_pos+0x267/0x390
[  146.317050][T10041]  ? __pfx_vfs_writev+0x10/0x10
[  146.317072][T10041]  ? __mutex_lock+0x1cc/0xb10
[  146.317094][T10041]  ? find_held_lock+0x2d/0x110
[  146.317117][T10041]  ? __pfx___mutex_lock+0x10/0x10
[  146.317139][T10041]  ? trace_lock_acquire+0x14e/0x1f0
[  146.317167][T10041]  ? __fget_files+0x206/0x3a0
[  146.317190][T10041]  ? do_writev+0x133/0x340
[  146.317211][T10041]  do_writev+0x133/0x340
[  146.317234][T10041]  ? __pfx_do_writev+0x10/0x10
[  146.317279][T10041]  do_syscall_64+0xcd/0x250
[  146.317305][T10041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.317328][T10041] RIP: 0033:0x7f77c918d169
[  146.317342][T10041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.317357][T10041] RSP: 002b:00007f77c9fdf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  146.317374][T10041] RAX: ffffffffffffffda RBX: 00007f77c93a5fa0 RCX: 00007f77c918d169
[  146.317386][T10041] RDX: 0000000000000002 RSI: 0000400000000040 RDI: 0000000000000003
[  146.317395][T10041] RBP: 00007f77c9fdf090 R08: 0000000000000000 R09: 0000000000000000
[  146.317405][T10041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.317414][T10041] R13: 0000000000000000 R14: 00007f77c93a5fa0 R15: 00007ffc3cfc8408
[  146.317450][T10041]  </TASK>
[  146.647699][ T5948] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  146.863692][T10071] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1422'.
[  146.986528][T10075] kvm: pic: non byte write
[  147.068465][T10090] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1429'.
[  147.071857][T10090] binder: 10089:10090 ioctl c00c620f 400000000000 returned -22
[  147.714507][   T40] kauditd_printk_skb: 155 callbacks suppressed
[  147.714518][   T40] audit: type=1400 audit(1741813347.562:2170): avc:  denied  { remount } for  pid=10102 comm="syz.4.1433" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  147.721590][   T40] audit: type=1400 audit(1741813347.572:2171): avc:  denied  { read } for  pid=5336 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  147.727690][   T40] audit: type=1400 audit(1741813347.572:2172): avc:  denied  { search } for  pid=5336 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  147.733429][   T40] audit: type=1400 audit(1741813347.572:2173): avc:  denied  { append } for  pid=5336 comm="syslogd" name="messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  147.736268][ T5948] Bluetooth: hci2: command 0x0c1a tx timeout
[  147.739665][   T40] audit: type=1400 audit(1741813347.572:2174): avc:  denied  { open } for  pid=5336 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  147.747386][   T40] audit: type=1400 audit(1741813347.572:2175): avc:  denied  { getattr } for  pid=5336 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  147.753329][   T40] audit: type=1400 audit(1741813347.592:2176): avc:  denied  { read } for  pid=10104 comm="syz.4.1434" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  147.759210][   T40] audit: type=1400 audit(1741813347.592:2177): avc:  denied  { open } for  pid=10104 comm="syz.4.1434" path="/dev/dri/card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  147.766080][   T40] audit: type=1400 audit(1741813347.592:2178): avc:  denied  { ioctl } for  pid=10104 comm="syz.4.1434" path="/dev/dri/card1" dev="devtmpfs" ino=636 ioctlcmd=0x640d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  147.776755][   T40] audit: type=1400 audit(1741813347.632:2179): avc:  denied  { create } for  pid=10106 comm="syz.4.1435" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  148.014449][T10119] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1441'.
[  148.063472][T10121] FAULT_INJECTION: forcing a failure.
[  148.063472][T10121] name failslab, interval 1, probability 0, space 0, times 0
[  148.067355][T10121] CPU: 2 UID: 0 PID: 10121 Comm: syz.1.1440 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  148.067368][T10121] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.067375][T10121] Call Trace:
[  148.067378][T10121]  <TASK>
[  148.067382][T10121]  dump_stack_lvl+0x16c/0x1f0
[  148.067400][T10121]  should_fail_ex+0x50a/0x650
[  148.067416][T10121]  ? fs_reclaim_acquire+0xae/0x150
[  148.067432][T10121]  ? tomoyo_encode2+0x100/0x3e0
[  148.067446][T10121]  should_failslab+0xc2/0x120
[  148.067473][T10121]  __kmalloc_noprof+0xcb/0x510
[  148.067484][T10121]  ? d_absolute_path+0x137/0x1b0
[  148.067498][T10121]  tomoyo_encode2+0x100/0x3e0
[  148.067514][T10121]  tomoyo_encode+0x29/0x50
[  148.067528][T10121]  tomoyo_realpath_from_path+0x19d/0x720
[  148.067546][T10121]  tomoyo_mount_acl+0x1af/0x880
[  148.067560][T10121]  ? hlock_class+0x4e/0x130
[  148.067570][T10121]  ? __lock_acquire+0x15a9/0x3c40
[  148.067587][T10121]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  148.067603][T10121]  ? __pfx___lock_acquire+0x10/0x10
[  148.067617][T10121]  ? stack_trace_save+0x95/0xd0
[  148.067654][T10121]  ? __pfx_lock_release+0x10/0x10
[  148.067679][T10121]  ? trace_lock_acquire+0x14e/0x1f0
[  148.067691][T10121]  ? tomoyo_mount_permission+0x149/0x420
[  148.067705][T10121]  ? lock_acquire+0x2f/0xb0
[  148.067718][T10121]  ? tomoyo_mount_permission+0x149/0x420
[  148.067733][T10121]  tomoyo_mount_permission+0x16e/0x420
[  148.067746][T10121]  ? tomoyo_mount_permission+0x149/0x420
[  148.067761][T10121]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  148.067780][T10121]  ? get_current_fs_domain+0x184/0x1f0
[  148.067792][T10121]  security_sb_mount+0x9b/0x260
[  148.067806][T10121]  path_mount+0x129/0x1f10
[  148.067818][T10121]  ? kmem_cache_free+0x2e2/0x4d0
[  148.067827][T10121]  ? __pfx_path_mount+0x10/0x10
[  148.067840][T10121]  ? putname+0x13c/0x180
[  148.067854][T10121]  __x64_sys_mount+0x28f/0x310
[  148.067865][T10121]  ? __pfx___x64_sys_mount+0x10/0x10
[  148.067880][T10121]  do_syscall_64+0xcd/0x250
[  148.067896][T10121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.067910][T10121] RIP: 0033:0x7f77c918d169
[  148.067918][T10121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.067927][T10121] RSP: 002b:00007f77c9fdf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  148.067937][T10121] RAX: ffffffffffffffda RBX: 00007f77c93a5fa0 RCX: 00007f77c918d169
[  148.067943][T10121] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  148.067948][T10121] RBP: 00007f77c9fdf090 R08: 0000400000000480 R09: 0000000000000000
[  148.067954][T10121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.067959][T10121] R13: 0000000000000001 R14: 00007f77c93a5fa0 R15: 00007ffc3cfc8408
[  148.067972][T10121]  </TASK>
[  148.068006][T10121] ERROR: Out of memory at tomoyo_realpath_from_path.
[  148.248696][T10129] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1443'.
[  148.251128][T10129] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1443'.
[  148.253671][T10129] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1443'.
[  148.255953][T10129] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1443'.
[  148.689625][T10140] netlink: 'syz.4.1447': attribute type 10 has an invalid length.
[  148.742338][T10142] netlink: 'syz.4.1448': attribute type 4 has an invalid length.
[  148.872090][T10147] TCP: tcp_parse_options: Illegal window scaling value 128 > 14 received
[  148.957677][T10151] syzkaller0: entered promiscuous mode
[  148.959313][T10151] syzkaller0: entered allmulticast mode
[  149.781054][T10166] FAULT_INJECTION: forcing a failure.
[  149.781054][T10166] name failslab, interval 1, probability 0, space 0, times 0
[  149.784652][T10166] CPU: 1 UID: 0 PID: 10166 Comm: syz.4.1457 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  149.784666][T10166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.784672][T10166] Call Trace:
[  149.784676][T10166]  <TASK>
[  149.784680][T10166]  dump_stack_lvl+0x16c/0x1f0
[  149.784708][T10166]  should_fail_ex+0x50a/0x650
[  149.784728][T10166]  ? fs_reclaim_acquire+0xae/0x150
[  149.784744][T10166]  should_failslab+0xc2/0x120
[  149.784756][T10166]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  149.784768][T10166]  ? __alloc_skb+0x2b1/0x380
[  149.784785][T10166]  __alloc_skb+0x2b1/0x380
[  149.784800][T10166]  ? __pfx___alloc_skb+0x10/0x10
[  149.784813][T10166]  ? rcu_is_watching+0x12/0xc0
[  149.784826][T10166]  ? __kmalloc_large_node_noprof+0x50/0x70
[  149.784843][T10166]  ? audit_log_start+0x2bc/0x7e0
[  149.784858][T10166]  audit_log_start+0x2e1/0x7e0
[  149.784873][T10166]  ? __pfx_audit_log_start+0x10/0x10
[  149.784898][T10166]  ? trace_lock_acquire+0x14e/0x1f0
[  149.784910][T10166]  ? __pfx_vsscanf+0x10/0x10
[  149.784922][T10166]  ? lock_acquire+0x2f/0xb0
[  149.784935][T10166]  ? avc_has_perm_noaudit+0x61/0x3a0
[  149.784949][T10166]  audit_log+0xb4/0x150
[  149.784961][T10166]  ? __pfx_audit_log+0x10/0x10
[  149.784976][T10166]  ? from_kuid+0x89/0xd0
[  149.784985][T10166]  ? __pfx_from_kuid+0x10/0x10
[  149.784995][T10166]  sel_write_enforce+0x3a4/0x510
[  149.785008][T10166]  ? __pfx_sel_write_enforce+0x10/0x10
[  149.785022][T10166]  ? __pfx_sel_write_enforce+0x10/0x10
[  149.785033][T10166]  vfs_writev+0x6da/0xdd0
[  149.785048][T10166]  ? fdget_pos+0x267/0x390
[  149.785062][T10166]  ? __pfx_vfs_writev+0x10/0x10
[  149.785075][T10166]  ? __mutex_lock+0x1cc/0xb10
[  149.785089][T10166]  ? find_held_lock+0x2d/0x110
[  149.785102][T10166]  ? __pfx___mutex_lock+0x10/0x10
[  149.785115][T10166]  ? trace_lock_acquire+0x14e/0x1f0
[  149.785131][T10166]  ? __fget_files+0x206/0x3a0
[  149.785144][T10166]  ? do_writev+0x133/0x340
[  149.785157][T10166]  do_writev+0x133/0x340
[  149.785172][T10166]  ? __pfx_do_writev+0x10/0x10
[  149.785190][T10166]  do_syscall_64+0xcd/0x250
[  149.785205][T10166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.785220][T10166] RIP: 0033:0x7efeb458d169
[  149.785228][T10166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.785237][T10166] RSP: 002b:00007efeb54a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  149.785246][T10166] RAX: ffffffffffffffda RBX: 00007efeb47a5fa0 RCX: 00007efeb458d169
[  149.785252][T10166] RDX: 0000000000000002 RSI: 0000400000000040 RDI: 0000000000000003
[  149.785258][T10166] RBP: 00007efeb54a4090 R08: 0000000000000000 R09: 0000000000000000
[  149.785264][T10166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.785269][T10166] R13: 0000000000000000 R14: 00007efeb47a5fa0 R15: 00007fff5228cf98
[  149.785281][T10166]  </TASK>
[  149.862219][    C1] vkms_vblank_simulate: vblank timer overrun
[  150.184081][T10181] FAULT_INJECTION: forcing a failure.
[  150.184081][T10181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.187556][T10181] CPU: 3 UID: 0 PID: 10181 Comm: syz.1.1462 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  150.187570][T10181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.187577][T10181] Call Trace:
[  150.187580][T10181]  <TASK>
[  150.187584][T10181]  dump_stack_lvl+0x16c/0x1f0
[  150.187626][T10181]  should_fail_ex+0x50a/0x650
[  150.187646][T10181]  _copy_from_user+0x2e/0xd0
[  150.187657][T10181]  copy_msghdr_from_user+0x99/0x160
[  150.187673][T10181]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  150.187688][T10181]  ? __lock_acquire+0xcc5/0x3c40
[  150.187708][T10181]  ___sys_sendmsg+0xff/0x1e0
[  150.187723][T10181]  ? __pfx____sys_sendmsg+0x10/0x10
[  150.187744][T10181]  ? trace_lock_acquire+0x14e/0x1f0
[  150.187763][T10181]  __sys_sendmmsg+0x201/0x420
[  150.187774][T10181]  ? __pfx___sys_sendmmsg+0x10/0x10
[  150.187793][T10181]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  150.187813][T10181]  ? fput+0x67/0x440
[  150.187826][T10181]  ? ksys_write+0x1ba/0x250
[  150.187834][T10181]  ? __pfx_ksys_write+0x10/0x10
[  150.187845][T10181]  __x64_sys_sendmmsg+0x9c/0x100
[  150.187854][T10181]  ? lockdep_hardirqs_on+0x7c/0x110
[  150.187867][T10181]  do_syscall_64+0xcd/0x250
[  150.187882][T10181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.187896][T10181] RIP: 0033:0x7f77c918d169
[  150.187904][T10181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.187914][T10181] RSP: 002b:00007f77c9fdf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  150.187923][T10181] RAX: ffffffffffffffda RBX: 00007f77c93a5fa0 RCX: 00007f77c918d169
[  150.187929][T10181] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000003
[  150.187935][T10181] RBP: 00007f77c9fdf090 R08: 0000000000000000 R09: 0000000000000000
[  150.187941][T10181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.187946][T10181] R13: 0000000000000000 R14: 00007f77c93a5fa0 R15: 00007ffc3cfc8408
[  150.187957][T10181]  </TASK>
[  150.370887][T10198] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1470'.
[  150.373680][T10198] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1470'.
[  150.378905][T10198] i2c i2c-1: Invalid block write size 34
[  150.547180][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  150.550268][T10211] FAULT_INJECTION: forcing a failure.
[  150.550268][T10211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.555810][T10211] CPU: 2 UID: 0 PID: 10211 Comm: syz.3.1474 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  150.555828][T10211] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.555837][T10211] Call Trace:
[  150.555841][T10211]  <TASK>
[  150.555847][T10211]  dump_stack_lvl+0x16c/0x1f0
[  150.555874][T10211]  should_fail_ex+0x50a/0x650
[  150.555900][T10211]  _copy_to_user+0x32/0xd0
[  150.555918][T10211]  simple_read_from_buffer+0xd0/0x160
[  150.555941][T10211]  proc_fail_nth_read+0x198/0x270
[  150.555961][T10211]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  150.555986][T10211]  ? rw_verify_area+0xcf/0x680
[  150.556008][T10211]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  150.556030][T10211]  vfs_read+0x1df/0xbf0
[  150.556055][T10211]  ? __fget_files+0x1fc/0x3a0
[  150.556071][T10211]  ? __pfx___mutex_lock+0x10/0x10
[  150.556094][T10211]  ? __pfx_vfs_read+0x10/0x10
[  150.556141][T10211]  ? __fget_files+0x206/0x3a0
[  150.556164][T10211]  ksys_read+0x12b/0x250
[  150.556178][T10211]  ? __pfx_ksys_read+0x10/0x10
[  150.556199][T10211]  do_syscall_64+0xcd/0x250
[  150.556236][T10211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.556258][T10211] RIP: 0033:0x7faeabb8bb7c
[  150.556271][T10211] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  150.556286][T10211] RSP: 002b:00007faeacaba030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  150.556302][T10211] RAX: ffffffffffffffda RBX: 00007faeabda5fa0 RCX: 00007faeabb8bb7c
[  150.556312][T10211] RDX: 000000000000000f RSI: 00007faeacaba0a0 RDI: 000000000000000d
[  150.556322][T10211] RBP: 00007faeacaba090 R08: 0000000000000000 R09: 0000000000000000
[  150.556331][T10211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.556345][T10211] R13: 0000000000000000 R14: 00007faeabda5fa0 R15: 00007ffc2b662a18
[  150.556367][T10211]  </TASK>
[  150.888697][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  151.091463][T10236] fuse: Unknown parameter '|>Éÿ�3‹t„'
[  151.258481][T10245] syz.2.1485: attempt to access beyond end of device
[  151.258481][T10245] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  151.262866][T10245] FAT-fs (nbd2): unable to read boot sector
[  151.486823][T10261] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1493'.
[  151.541760][T10262] binder: Unknown parameter 'm800ü¢Ã’200et0�00002(sl'
[  152.028333][T10272] FAULT_INJECTION: forcing a failure.
[  152.028333][T10272] name failslab, interval 1, probability 0, space 0, times 0
[  152.032083][T10272] CPU: 2 UID: 0 PID: 10272 Comm: syz.3.1496 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  152.032097][T10272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.032103][T10272] Call Trace:
[  152.032106][T10272]  <TASK>
[  152.032110][T10272]  dump_stack_lvl+0x16c/0x1f0
[  152.032129][T10272]  should_fail_ex+0x50a/0x650
[  152.032145][T10272]  ? fs_reclaim_acquire+0xae/0x150
[  152.032161][T10272]  ? tomoyo_encode2+0x100/0x3e0
[  152.032175][T10272]  should_failslab+0xc2/0x120
[  152.032187][T10272]  __kmalloc_noprof+0xcb/0x510
[  152.032196][T10272]  ? __get_fs_type+0x21/0x170
[  152.032211][T10272]  tomoyo_encode2+0x100/0x3e0
[  152.032227][T10272]  tomoyo_encode+0x29/0x50
[  152.032240][T10272]  tomoyo_mount_acl+0x314/0x880
[  152.032253][T10272]  ? hlock_class+0x4e/0x130
[  152.032264][T10272]  ? __lock_acquire+0x15a9/0x3c40
[  152.032281][T10272]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  152.032297][T10272]  ? __pfx___lock_acquire+0x10/0x10
[  152.032310][T10272]  ? stack_trace_save+0x95/0xd0
[  152.032322][T10272]  ? __pfx_lock_release+0x10/0x10
[  152.032341][T10272]  ? trace_lock_acquire+0x14e/0x1f0
[  152.032353][T10272]  ? tomoyo_mount_permission+0x149/0x420
[  152.032367][T10272]  ? lock_acquire+0x2f/0xb0
[  152.032380][T10272]  ? tomoyo_mount_permission+0x149/0x420
[  152.032395][T10272]  tomoyo_mount_permission+0x16e/0x420
[  152.032408][T10272]  ? tomoyo_mount_permission+0x149/0x420
[  152.032424][T10272]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  152.032443][T10272]  ? get_current_fs_domain+0x184/0x1f0
[  152.032455][T10272]  security_sb_mount+0x9b/0x260
[  152.032469][T10272]  path_mount+0x129/0x1f10
[  152.032481][T10272]  ? kmem_cache_free+0x2e2/0x4d0
[  152.032491][T10272]  ? __pfx_path_mount+0x10/0x10
[  152.032503][T10272]  ? putname+0x13c/0x180
[  152.032516][T10272]  __x64_sys_mount+0x28f/0x310
[  152.032527][T10272]  ? __pfx___x64_sys_mount+0x10/0x10
[  152.032542][T10272]  do_syscall_64+0xcd/0x250
[  152.032558][T10272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.032572][T10272] RIP: 0033:0x7faeabb8d169
[  152.032583][T10272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.032592][T10272] RSP: 002b:00007faeacaba038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  152.032602][T10272] RAX: ffffffffffffffda RBX: 00007faeabda5fa0 RCX: 00007faeabb8d169
[  152.032608][T10272] RDX: 0000400000000440 RSI: 0000400000000400 RDI: 0000000000000000
[  152.032613][T10272] RBP: 00007faeacaba090 R08: 0000400000000480 R09: 0000000000000000
[  152.032619][T10272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  152.032624][T10272] R13: 0000000000000001 R14: 00007faeabda5fa0 R15: 00007ffc2b662a18
[  152.032636][T10272]  </TASK>
[  152.162398][T10283] netlink: 'syz.3.1500': attribute type 10 has an invalid length.
[  152.212134][T10287] netlink: 'syz.3.1502': attribute type 4 has an invalid length.
[  152.237684][T10291] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.1503'.
[  152.338142][T10295] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1504'.
[  152.618200][T10303] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  152.643183][T10303] overlayfs: failed to resolve './file0': -2
[  152.776285][ T5948] Bluetooth: hci1: command tx timeout
[  152.874511][T10308] audit_log_lost: 165 callbacks suppressed
[  152.874526][T10308] audit: audit_lost=3 audit_rate_limit=0 audit_backlog_limit=64
[  152.879634][T10308] audit: out of memory in audit_log_start
[  152.888936][   T40] audit: type=1404 audit(1741813352.742:2343): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  152.911172][   T40] audit: type=1400 audit(1741813352.762:2344): avc:  denied  { read write } for  pid=8044 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  152.917733][   T40] audit: type=1400 audit(1741813352.762:2345): avc:  denied  { open } for  pid=8044 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  152.924158][   T40] audit: type=1400 audit(1741813352.762:2346): avc:  denied  { ioctl } for  pid=8044 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  152.931908][   T40] audit: type=1400 audit(1741813352.782:2347): avc:  denied  { create } for  pid=10309 comm="syz.1.1509" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  152.937271][   T40] audit: type=1400 audit(1741813352.782:2348): avc:  denied  { write } for  pid=10309 comm="syz.1.1509" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  153.024035][   T40] audit: type=1400 audit(1741813352.872:2349): avc:  denied  { create } for  pid=10313 comm="syz.4.1511" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  153.029701][   T40] audit: type=1400 audit(1741813352.872:2350): avc:  denied  { mounton } for  pid=10313 comm="syz.4.1511" path="/234/file0" dev="tmpfs" ino=1244 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  153.047855][T10318] FAULT_INJECTION: forcing a failure.
[  153.047855][T10318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.051416][T10318] CPU: 3 UID: 0 PID: 10318 Comm: syz.4.1512 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  153.051428][T10318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.051435][T10318] Call Trace:
[  153.051438][T10318]  <TASK>
[  153.051442][T10318]  dump_stack_lvl+0x16c/0x1f0
[  153.051469][T10318]  should_fail_ex+0x50a/0x650
[  153.051490][T10318]  _copy_from_user+0x2e/0xd0
[  153.051501][T10318]  copy_msghdr_from_user+0x99/0x160
[  153.051517][T10318]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  153.051538][T10318]  ___sys_sendmsg+0xff/0x1e0
[  153.051554][T10318]  ? __pfx____sys_sendmsg+0x10/0x10
[  153.051587][T10318]  ? __pfx_lock_release+0x10/0x10
[  153.051608][T10318]  ? trace_lock_acquire+0x14e/0x1f0
[  153.051623][T10318]  ? __fget_files+0x206/0x3a0
[  153.051636][T10318]  __sys_sendmsg+0x16e/0x220
[  153.051652][T10318]  ? __pfx___sys_sendmsg+0x10/0x10
[  153.051676][T10318]  do_syscall_64+0xcd/0x250
[  153.051691][T10318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.051706][T10318] RIP: 0033:0x7efeb458d169
[  153.051714][T10318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.051724][T10318] RSP: 002b:00007efeb54a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.051733][T10318] RAX: ffffffffffffffda RBX: 00007efeb47a5fa0 RCX: 00007efeb458d169
[  153.051739][T10318] RDX: 0000000000008000 RSI: 0000400000000000 RDI: 0000000000000003
[  153.051745][T10318] RBP: 00007efeb54a4090 R08: 0000000000000000 R09: 0000000000000000
[  153.051751][T10318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.051756][T10318] R13: 0000000000000000 R14: 00007efeb47a5fa0 R15: 00007fff5228cf98
[  153.051768][T10318]  </TASK>
[  153.219536][T10335] FAULT_INJECTION: forcing a failure.
[  153.219536][T10335] name failslab, interval 1, probability 0, space 0, times 0
[  153.223424][T10335] CPU: 0 UID: 0 PID: 10335 Comm: syz.3.1518 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  153.223437][T10335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.223444][T10335] Call Trace:
[  153.223447][T10335]  <TASK>
[  153.223451][T10335]  dump_stack_lvl+0x16c/0x1f0
[  153.223481][T10335]  should_fail_ex+0x50a/0x650
[  153.223497][T10335]  ? fs_reclaim_acquire+0xae/0x150
[  153.223514][T10335]  should_failslab+0xc2/0x120
[  153.223526][T10335]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  153.223537][T10335]  ? __alloc_skb+0x2b1/0x380
[  153.223554][T10335]  __alloc_skb+0x2b1/0x380
[  153.223568][T10335]  ? __pfx___alloc_skb+0x10/0x10
[  153.223606][T10335]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  153.223624][T10335]  netlink_alloc_large_skb+0x69/0x130
[  153.223640][T10335]  netlink_sendmsg+0x689/0xd70
[  153.223656][T10335]  ? __pfx_netlink_sendmsg+0x10/0x10
[  153.223675][T10335]  ____sys_sendmsg+0xaaf/0xc90
[  153.223688][T10335]  ? copy_msghdr_from_user+0x10b/0x160
[  153.223703][T10335]  ? __pfx_____sys_sendmsg+0x10/0x10
[  153.223714][T10335]  ? __lock_acquire+0xcc5/0x3c40
[  153.223734][T10335]  ___sys_sendmsg+0x135/0x1e0
[  153.223750][T10335]  ? __pfx____sys_sendmsg+0x10/0x10
[  153.223771][T10335]  ? trace_lock_acquire+0x14e/0x1f0
[  153.223791][T10335]  __sys_sendmmsg+0x201/0x420
[  153.223801][T10335]  ? __pfx___sys_sendmmsg+0x10/0x10
[  153.223821][T10335]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  153.223840][T10335]  ? fput+0x67/0x440
[  153.223852][T10335]  ? ksys_write+0x1ba/0x250
[  153.223860][T10335]  ? __pfx_ksys_write+0x10/0x10
[  153.223871][T10335]  __x64_sys_sendmmsg+0x9c/0x100
[  153.223880][T10335]  ? lockdep_hardirqs_on+0x7c/0x110
[  153.223893][T10335]  do_syscall_64+0xcd/0x250
[  153.223909][T10335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.223923][T10335] RIP: 0033:0x7faeabb8d169
[  153.223932][T10335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.223942][T10335] RSP: 002b:00007faeacaba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  153.223952][T10335] RAX: ffffffffffffffda RBX: 00007faeabda5fa0 RCX: 00007faeabb8d169
[  153.223958][T10335] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000003
[  153.223964][T10335] RBP: 00007faeacaba090 R08: 0000000000000000 R09: 0000000000000000
[  153.223969][T10335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.223975][T10335] R13: 0000000000000000 R14: 00007faeabda5fa0 R15: 00007ffc2b662a18
[  153.223987][T10335]  </TASK>
[  153.266938][T10337] syzkaller0: entered promiscuous mode
[  153.299679][T10337] syzkaller0: entered allmulticast mode
[  153.488809][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  154.538352][T10377] FAULT_INJECTION: forcing a failure.
[  154.538352][T10377] name failslab, interval 1, probability 0, space 0, times 0
[  154.544021][T10377] CPU: 0 UID: 0 PID: 10377 Comm: syz.4.1538 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  154.544034][T10377] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.544041][T10377] Call Trace:
[  154.544044][T10377]  <TASK>
[  154.544048][T10377]  dump_stack_lvl+0x16c/0x1f0
[  154.544066][T10377]  should_fail_ex+0x50a/0x650
[  154.544082][T10377]  ? fs_reclaim_acquire+0xae/0x150
[  154.544098][T10377]  ? tomoyo_realpath_from_path+0xb9/0x720
[  154.544113][T10377]  should_failslab+0xc2/0x120
[  154.544125][T10377]  __kmalloc_noprof+0xcb/0x510
[  154.544136][T10377]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  154.544153][T10377]  tomoyo_realpath_from_path+0xb9/0x720
[  154.544168][T10377]  ? tomoyo_path_number_perm+0x235/0x590
[  154.544181][T10377]  ? tomoyo_path_number_perm+0x235/0x590
[  154.544195][T10377]  tomoyo_path_number_perm+0x248/0x590
[  154.544207][T10377]  ? tomoyo_path_number_perm+0x235/0x590
[  154.544221][T10377]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  154.544245][T10377]  ? __pfx_lock_release+0x10/0x10
[  154.544258][T10377]  ? trace_lock_acquire+0x14e/0x1f0
[  154.544271][T10377]  ? lock_acquire+0x2f/0xb0
[  154.544284][T10377]  ? __fget_files+0x40/0x3a0
[  154.544296][T10377]  ? __fget_files+0x206/0x3a0
[  154.544307][T10377]  security_file_ioctl+0x9b/0x240
[  154.544322][T10377]  __x64_sys_ioctl+0xb7/0x200
[  154.544338][T10377]  do_syscall_64+0xcd/0x250
[  154.544353][T10377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.544368][T10377] RIP: 0033:0x7efeb458d169
[  154.544376][T10377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.544385][T10377] RSP: 002b:00007efeb54a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  154.544395][T10377] RAX: ffffffffffffffda RBX: 00007efeb47a5fa0 RCX: 00007efeb458d169
[  154.544401][T10377] RDX: 0000400000000000 RSI: 0000000000005412 RDI: 0000000000000003
[  154.544406][T10377] RBP: 00007efeb54a4090 R08: 0000000000000000 R09: 0000000000000000
[  154.544412][T10377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.544417][T10377] R13: 0000000000000000 R14: 00007efeb47a5fa0 R15: 00007fff5228cf98
[  154.544429][T10377]  </TASK>
[  154.544433][T10377] ERROR: Out of memory at tomoyo_realpath_from_path.
[  154.652892][T10381] block nbd3: not configured, cannot reconfigure
[  154.752653][ T5948] Bluetooth: hci4: SCO packet for unknown connection handle 201
[  154.813957][T10401] loop9: detected capacity change from 0 to 1
[  154.822453][T10403] overlay: Bad value for 'verity'
[  154.822470][T10401]  loop9: [POWERTEC] p1 p2 p3 p4 p5 p6 p7 p8 p9 p10 p11
[  154.828395][T10401] loop9: p1 start 2048 is beyond EOD, truncated
[  154.830853][T10401] loop9: p2 start 5 is beyond EOD, truncated
[  154.833105][T10401] loop9: p3 start 4294967292 is beyond EOD, truncated
[  154.835796][T10401] loop9: p4 start 1610612737 is beyond EOD, truncated
[  154.838490][T10401] loop9: p5 start 4 is beyond EOD, truncated
[  154.840713][T10401] loop9: p6 start 3 is beyond EOD, truncated
[  154.842990][T10401] loop9: p7 start 2523264691 is beyond EOD, truncated
[  154.845458][T10401] loop9: p8 start 1926141035 is beyond EOD, truncated
[  154.849146][T10401] loop9: p9 start 781472669 is beyond EOD, truncated
[  154.851605][T10401] loop9: p10 start 1756420662 is beyond EOD, truncated
[  154.854134][T10401] loop9: p11 start 1633641840 is beyond EOD, truncated
[  154.869957][T10405] binder: 10404:10405 ioctl c00c620f 400000000000 returned -22
[  155.028913][T10417] netlink: 'syz.3.1552': attribute type 10 has an invalid length.
[  155.647013][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout
[  155.710690][T10424] netlink: 'syz.2.1554': attribute type 4 has an invalid length.
[  155.822005][T10443] FAULT_INJECTION: forcing a failure.
[  155.822005][T10443] name failslab, interval 1, probability 0, space 0, times 0
[  155.825398][T10443] CPU: 3 UID: 0 PID: 10443 Comm: syz.1.1561 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  155.825412][T10443] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.825419][T10443] Call Trace:
[  155.825422][T10443]  <TASK>
[  155.825427][T10443]  dump_stack_lvl+0x16c/0x1f0
[  155.825446][T10443]  should_fail_ex+0x50a/0x650
[  155.825462][T10443]  ? fs_reclaim_acquire+0xae/0x150
[  155.825478][T10443]  should_failslab+0xc2/0x120
[  155.825490][T10443]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  155.825501][T10443]  ? __alloc_skb+0x2b1/0x380
[  155.825517][T10443]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  155.825532][T10443]  __alloc_skb+0x2b1/0x380
[  155.825546][T10443]  ? __pfx___alloc_skb+0x10/0x10
[  155.825562][T10443]  ? avc_ss_reset+0x264/0x3e0
[  155.825572][T10443]  ? __pfx_lock_release+0x10/0x10
[  155.825593][T10443]  selnl_notify+0x2f/0x390
[  155.825607][T10443]  selnl_notify_setenforce+0x6c/0xa0
[  155.825619][T10443]  ? __pfx_selnl_notify_setenforce+0x10/0x10
[  155.825632][T10443]  ? avc_ss_reset+0x264/0x3e0
[  155.825643][T10443]  sel_write_enforce+0x455/0x510
[  155.825655][T10443]  ? __pfx_sel_write_enforce+0x10/0x10
[  155.825668][T10443]  ? __pfx_sel_write_enforce+0x10/0x10
[  155.825680][T10443]  vfs_writev+0x6da/0xdd0
[  155.825694][T10443]  ? fdget_pos+0x267/0x390
[  155.825708][T10443]  ? __pfx_vfs_writev+0x10/0x10
[  155.825722][T10443]  ? __mutex_lock+0x1cc/0xb10
[  155.825735][T10443]  ? find_held_lock+0x2d/0x110
[  155.825748][T10443]  ? __pfx___mutex_lock+0x10/0x10
[  155.825761][T10443]  ? trace_lock_acquire+0x14e/0x1f0
[  155.825777][T10443]  ? __fget_files+0x206/0x3a0
[  155.825789][T10443]  ? do_writev+0x133/0x340
[  155.825803][T10443]  do_writev+0x133/0x340
[  155.825817][T10443]  ? __pfx_do_writev+0x10/0x10
[  155.825835][T10443]  do_syscall_64+0xcd/0x250
[  155.825850][T10443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.825864][T10443] RIP: 0033:0x7f77c918d169
[  155.825873][T10443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.825882][T10443] RSP: 002b:00007f77c9fdf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  155.825891][T10443] RAX: ffffffffffffffda RBX: 00007f77c93a5fa0 RCX: 00007f77c918d169
[  155.825897][T10443] RDX: 0000000000000002 RSI: 0000400000000040 RDI: 0000000000000003
[  155.825902][T10443] RBP: 00007f77c9fdf090 R08: 0000000000000000 R09: 0000000000000000
[  155.825908][T10443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.825913][T10443] R13: 0000000000000000 R14: 00007f77c93a5fa0 R15: 00007ffc3cfc8408
[  155.825925][T10443]  </TASK>
[  155.825929][T10443] SELinux:  OOM in selnl_notify
[  155.998396][T10455] __nla_validate_parse: 54 callbacks suppressed
[  155.998411][T10455] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1564'.
[  156.004092][T10455] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1564'.
[  156.008004][T10455] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1564'.
[  156.011361][T10455] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1564'.
[  156.854236][T10482] overlay: Unknown parameter 'euid>00000000000000000000'
[  156.980392][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  157.015702][T10492] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1581'.
[  157.460532][T10502] syzkaller0: entered promiscuous mode
[  157.462179][T10502] syzkaller0: entered allmulticast mode
[  157.920538][   T40] kauditd_printk_skb: 264 callbacks suppressed
[  157.920549][   T40] audit: type=1400 audit(1741815917.781:2615): avc:  denied  { mounton } for  pid=10503 comm="syz.2.1585" path="/449/file0" dev="tmpfs" ino=2375 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  157.928917][   T40] audit: type=1400 audit(1741815917.781:2616): avc:  denied  { mount } for  pid=10503 comm="syz.2.1585" name="/" dev="9p" ino=36831309 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  157.939197][   T40] audit: type=1400 audit(1741815917.801:2617): avc:  denied  { unmount } for  pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  158.006211][   T40] audit: type=1400 audit(1741815917.861:2618): avc:  denied  { create } for  pid=10505 comm="syz.2.1586" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  158.058980][   T40] audit: type=1400 audit(1741815917.921:2619): avc:  denied  { ioctl } for  pid=10505 comm="syz.2.1586" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=38071 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  158.067061][T10509] FAULT_INJECTION: forcing a failure.
[  158.067061][T10509] name failslab, interval 1, probability 0, space 0, times 0
[  158.067596][   T40] audit: type=1400 audit(1741815917.931:2620): avc:  denied  { map } for  pid=10505 comm="syz.2.1586" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=38075 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  158.071251][T10509] CPU: 3 UID: 0 PID: 10509 Comm: syz.3.1587 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  158.071265][T10509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.071271][T10509] Call Trace:
[  158.071274][T10509]  <TASK>
[  158.071279][T10509]  dump_stack_lvl+0x16c/0x1f0
[  158.071297][T10509]  should_fail_ex+0x50a/0x650
[  158.071313][T10509]  ? fs_reclaim_acquire+0xae/0x150
[  158.071334][T10509]  ? tomoyo_encode2+0x100/0x3e0
[  158.071351][T10509]  should_failslab+0xc2/0x120
[  158.071368][T10509]  __kmalloc_noprof+0xcb/0x510
[  158.071382][T10509]  ? d_absolute_path+0x137/0x1b0
[  158.071402][T10509]  ? rcu_is_watching+0x12/0xc0
[  158.071421][T10509]  tomoyo_encode2+0x100/0x3e0
[  158.071438][T10509]  tomoyo_encode+0x29/0x50
[  158.071452][T10509]  tomoyo_realpath_from_path+0x19d/0x720
[  158.071471][T10509]  tomoyo_path_number_perm+0x248/0x590
[  158.071483][T10509]  ? tomoyo_path_number_perm+0x235/0x590
[  158.071497][T10509]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  158.071522][T10509]  ? __pfx_lock_release+0x10/0x10
[  158.071559][T10509]  ? trace_lock_acquire+0x14e/0x1f0
[  158.071575][T10509]  ? lock_acquire+0x2f/0xb0
[  158.071588][T10509]  ? __fget_files+0x40/0x3a0
[  158.071603][T10509]  ? __fget_files+0x206/0x3a0
[  158.071621][T10509]  security_file_ioctl+0x9b/0x240
[  158.071643][T10509]  __x64_sys_ioctl+0xb7/0x200
[  158.071665][T10509]  do_syscall_64+0xcd/0x250
[  158.071687][T10509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.071707][T10509] RIP: 0033:0x7faeabb8d169
[  158.071720][T10509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.071732][T10509] RSP: 002b:00007faeacaba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  158.071747][T10509] RAX: ffffffffffffffda RBX: 00007faeabda5fa0 RCX: 00007faeabb8d169
[  158.071757][T10509] RDX: 0000400000000000 RSI: 0000000000005412 RDI: 0000000000000003
[  158.071766][T10509] RBP: 00007faeacaba090 R08: 0000000000000000 R09: 0000000000000000
[  158.071774][T10509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.071782][T10509] R13: 0000000000000000 R14: 00007faeabda5fa0 R15: 00007ffc2b662a18
[  158.071803][T10509]  </TASK>
[  158.071828][T10509] ERROR: Out of memory at tomoyo_realpath_from_path.
[  158.078541][   T40] audit: type=1400 audit(1741815917.931:2621): avc:  denied  { read write } for  pid=10505 comm="syz.2.1586" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=38075 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  158.802133][   T40] audit: type=1400 audit(1741815918.661:2622): avc:  denied  { map_read map_write } for  pid=10523 comm="syz.4.1592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  158.818958][   T40] audit: type=1400 audit(1741815918.681:2623): avc:  denied  { mounton } for  pid=10525 comm="syz.3.1593" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  158.844447][   T40] audit: type=1400 audit(1741815918.701:2624): avc:  denied  { create } for  pid=10527 comm="syz.3.1594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  159.028285][T10537] program syz.3.1597 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  159.031054][T10537] ata1.00: invalid command format 0
[  159.086224][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout
[  159.183927][T10541] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1598'.
[  159.186506][T10541] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1598'.
[  159.188850][T10541] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1598'.
[  159.191206][T10541] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1598'.
[  159.321554][T10551] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.1602'.
[  159.659168][T10578] netlink: 'syz.1.1612': attribute type 4 has an invalid length.
[  159.770777][T10588] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  159.883870][T10594] syzkaller0: entered promiscuous mode
[  159.885840][T10594] syzkaller0: entered allmulticast mode
[  160.578219][T10609] FAULT_INJECTION: forcing a failure.
[  160.578219][T10609] name failslab, interval 1, probability 0, space 0, times 0
[  160.581941][T10609] CPU: 2 UID: 0 PID: 10609 Comm: syz.3.1625 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  160.581954][T10609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.581961][T10609] Call Trace:
[  160.581965][T10609]  <TASK>
[  160.581969][T10609]  dump_stack_lvl+0x16c/0x1f0
[  160.581999][T10609]  should_fail_ex+0x50a/0x650
[  160.582018][T10609]  ? fs_reclaim_acquire+0xae/0x150
[  160.582035][T10609]  ? selinux_ima_measure_state_locked+0x154/0xf70
[  160.582050][T10609]  should_failslab+0xc2/0x120
[  160.582064][T10609]  __kmalloc_noprof+0xcb/0x510
[  160.582086][T10609]  selinux_ima_measure_state_locked+0x154/0xf70
[  160.582111][T10609]  ? __pfx_selinux_ima_measure_state_locked+0x10/0x10
[  160.582142][T10609]  selinux_ima_measure_state+0x5f/0xb0
[  160.582157][T10609]  sel_write_enforce+0x40a/0x510
[  160.582169][T10609]  ? __pfx_sel_write_enforce+0x10/0x10
[  160.582183][T10609]  ? __pfx_sel_write_enforce+0x10/0x10
[  160.582195][T10609]  vfs_writev+0x6da/0xdd0
[  160.582209][T10609]  ? fdget_pos+0x267/0x390
[  160.582223][T10609]  ? __pfx_vfs_writev+0x10/0x10
[  160.582237][T10609]  ? __mutex_lock+0x1cc/0xb10
[  160.582250][T10609]  ? find_held_lock+0x2d/0x110
[  160.582264][T10609]  ? __pfx___mutex_lock+0x10/0x10
[  160.582277][T10609]  ? trace_lock_acquire+0x14e/0x1f0
[  160.582293][T10609]  ? __fget_files+0x206/0x3a0
[  160.582306][T10609]  ? do_writev+0x133/0x340
[  160.582320][T10609]  do_writev+0x133/0x340
[  160.582335][T10609]  ? __pfx_do_writev+0x10/0x10
[  160.582354][T10609]  do_syscall_64+0xcd/0x250
[  160.582369][T10609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.582384][T10609] RIP: 0033:0x7faeabb8d169
[  160.582392][T10609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.582401][T10609] RSP: 002b:00007faeacaba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  160.582411][T10609] RAX: ffffffffffffffda RBX: 00007faeabda5fa0 RCX: 00007faeabb8d169
[  160.582417][T10609] RDX: 0000000000000002 RSI: 0000400000000040 RDI: 0000000000000003
[  160.582423][T10609] RBP: 00007faeacaba090 R08: 0000000000000000 R09: 0000000000000000
[  160.582428][T10609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.582434][T10609] R13: 0000000000000000 R14: 00007faeabda5fa0 R15: 00007ffc2b662a18
[  160.582447][T10609]  </TASK>
[  160.582451][T10609] SELinux: selinux_ima_measure_state_locked: failed to read state.
Mar 12 21:45:20 syzkaller kern.notice kernel: [  160.578219][T10609] FAULT_INJECTION: forcing a failure.
[  160.730850][ T5948] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  161.022455][T10622] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=10622 comm=syz.1.1629
[  161.174469][T10626] __nla_validate_parse: 2 callbacks suppressed
[  161.174479][T10626] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1630'.
[  161.179909][T10626] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1630'.
[  161.185971][T10626] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.189307][T10626] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.227254][T10628] netlink: 'syz.1.1632': attribute type 4 has an invalid length.
[  161.244269][T10636] FAULT_INJECTION: forcing a failure.
[  161.244269][T10636] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.248063][T10636] CPU: 3 UID: 0 PID: 10636 Comm: syz.4.1634 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  161.248081][T10636] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.248090][T10636] Call Trace:
[  161.248094][T10636]  <TASK>
[  161.248100][T10636]  dump_stack_lvl+0x16c/0x1f0
[  161.248126][T10636]  should_fail_ex+0x50a/0x650
[  161.248152][T10636]  _copy_from_user+0x2e/0xd0
[  161.248168][T10636]  ____sys_sendmsg+0x8d2/0xc90
[  161.248190][T10636]  ? __pfx_____sys_sendmsg+0x10/0x10
[  161.248220][T10636]  ___sys_sendmsg+0x135/0x1e0
[  161.248244][T10636]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.248276][T10636]  ? __pfx_lock_release+0x10/0x10
[  161.248303][T10636]  ? trace_lock_acquire+0x14e/0x1f0
[  161.248320][T10636]  ? __fget_files+0x206/0x3a0
[  161.248334][T10636]  __sys_sendmsg+0x16e/0x220
[  161.248350][T10636]  ? __pfx___sys_sendmsg+0x10/0x10
[  161.248373][T10636]  do_syscall_64+0xcd/0x250
[  161.248389][T10636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.248403][T10636] RIP: 0033:0x7efeb458d169
[  161.248411][T10636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.248421][T10636] RSP: 002b:00007efeb54a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.248430][T10636] RAX: ffffffffffffffda RBX: 00007efeb47a5fa0 RCX: 00007efeb458d169
[  161.248436][T10636] RDX: 0000000000008000 RSI: 0000400000000000 RDI: 0000000000000003
[  161.248442][T10636] RBP: 00007efeb54a4090 R08: 0000000000000000 R09: 0000000000000000
[  161.248448][T10636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.248453][T10636] R13: 0000000000000000 R14: 00007efeb47a5fa0 R15: 00007fff5228cf98
[  161.248465][T10636]  </TASK>
[  161.310412][    C3] vkms_vblank_simulate: vblank timer overrun
[  161.357721][T10644] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1636'.
[  161.360200][T10644] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1636'.
[  161.362593][T10644] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1636'.
[  161.364926][T10644] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1636'.
[  161.407524][T10653] batadv_slave_1: entered promiscuous mode
[  162.005266][T10624] batadv_slave_1: left promiscuous mode
[  162.176479][ T5948] Bluetooth: hci0: Unknown advertising packet type: 0x20
[  162.176500][ T5948] Bluetooth: hci0: Unknown advertising packet type: 0x32
[  162.178494][ T5948] Bluetooth: hci0: Unknown advertising packet type: 0x38
[  162.180436][ T5948] Bluetooth: hci0: Malformed LE Event: 0x0d
[  162.195744][T10685] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1646'.
[  162.200347][T10685] vti1: entered allmulticast mode
[  162.212404][T10687] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1650'.
[  162.215071][T10687] netlink: 'syz.1.1650': attribute type 19 has an invalid length.
[  162.217386][T10687] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1650'.
[  162.249560][T10689] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1651'.
[  162.293559][T10694] syzkaller0: entered promiscuous mode
[  162.295146][T10694] syzkaller0: entered allmulticast mode
[  163.003208][T10698] netlink: 'syz.2.1653': attribute type 4 has an invalid length.
[  163.400827][   T40] kauditd_printk_skb: 162 callbacks suppressed
[  163.400837][   T40] audit: type=1404 audit(1741815923.261:2785): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
Mar 12 21:45:23 syzkaller kern.warn kernel: [  1[  163.409988][   T40] audit: type=1400 audit(1741815923.271:2786): avc:  denied  { read } for  pid=5336 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
63.400827][   T40] kauditd_print[  163.416766][   T40] audit: type=1400 audit(1741815923.271:2787): avc:  denied  { read } for  pid=5336 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
k_skb: 162 callb[  163.423118][   T40] audit: type=1404 audit(1741815923.271:2788): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
acks suppressed
Mar 12 21:45:23 syzkaller kern.[  163.428344][   T40] audit: type=1400 audit(1741815923.291:2789): avc:  denied  { read } for  pid=5336 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
notice kernel: [[  163.434720][   T40] audit: type=1400 audit(1741815923.291:2790): avc:  denied  { search } for  pid=5336 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
  163.400837][  [  163.441103][   T40] audit: type=1400 audit(1741815923.291:2791): avc:  denied  { append } for  pid=5336 comm="syslogd" name="messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
 T40] audit: typ[  163.447426][   T40] audit: type=1400 audit(1741815923.291:2792): avc:  denied  { open } for  pid=5336 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
e=1404 audit(174[  163.453789][   T40] audit: type=1400 audit(1741815923.291:2793): avc:  denied  { getattr } for  pid=5336 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
1815923.261:2785[  163.460571][   T40] audit: type=1400 audit(1741815923.291:2794): avc:  denied  { read write } for  pid=5940 comm="syz-executor" name="loop2" dev="devtmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  163.557506][T10713] netlink: 'syz.1.1658': attribute type 10 has an invalid length.
[  163.638026][T10719] xt_TPROXY: Can be used only with -p tcp or -p udp
[  164.332914][T10724] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[  164.334620][T10724] [U] J"—e:ÀÆ"


[  164.777100][T10749] binder: 10748:10749 ioctl c00c620f 400000000000 returned -22
[  165.235255][T10764] netlink: 'syz.2.1677': attribute type 12 has an invalid length.
[  165.239848][T10764] netlink: 'syz.2.1677': attribute type 29 has an invalid length.
[  165.275820][T10769] netlink: 'syz.3.1679': attribute type 11 has an invalid length.
[  165.412521][T10781] netlink: 'syz.3.1684': attribute type 4 has an invalid length.
[  165.488037][T10788] kvm: pic: non byte write
[  165.506587][T10791] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  165.510198][T10791] binder: Bad value for 'max'
[  165.526996][ T5948] Bluetooth: hci4: SCO packet for unknown connection handle 201
[  165.703325][T10802] FAULT_INJECTION: forcing a failure.
[  165.703325][T10802] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  165.714383][T10802] CPU: 0 UID: 0 PID: 10802 Comm: syz.1.1692 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  165.714399][T10802] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.714405][T10802] Call Trace:
[  165.714409][T10802]  <TASK>
[  165.714412][T10802]  dump_stack_lvl+0x16c/0x1f0
[  165.714441][T10802]  should_fail_ex+0x50a/0x650
[  165.714460][T10802]  ? __pfx___might_resched+0x10/0x10
[  165.714478][T10802]  should_fail_alloc_page+0xe7/0x130
[  165.714491][T10802]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  165.714510][T10802]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  165.714523][T10802]  ? hlock_class+0x4e/0x130
[  165.714539][T10802]  ? hlock_class+0x4e/0x130
[  165.714549][T10802]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  165.714565][T10802]  ? is_bpf_text_address+0x30/0x1a0
[  165.714581][T10802]  ? __pfx___lock_acquire+0x10/0x10
[  165.714595][T10802]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  165.714608][T10802]  ? is_bpf_text_address+0x94/0x1a0
[  165.714623][T10802]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  165.714640][T10802]  ? policy_nodemask+0xea/0x4e0
[  165.714653][T10802]  alloc_pages_mpol+0x1fc/0x540
[  165.714664][T10802]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  165.714675][T10802]  ? __page_table_check_ptes_set+0x16b/0x3e0
[  165.714686][T10802]  ? do_raw_spin_lock+0x12d/0x2c0
[  165.714696][T10802]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  165.714707][T10802]  alloc_pages_noprof+0x131/0x390
[  165.714718][T10802]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  165.714735][T10802]  get_free_pages_noprof+0xc/0x40
[  165.714747][T10802]  kasan_populate_vmalloc_pte+0x2d/0x160
[  165.714763][T10802]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  165.714779][T10802]  __apply_to_page_range+0x5fd/0xd30
[  165.714796][T10802]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  165.714814][T10802]  ? __pfx___apply_to_page_range+0x10/0x10
[  165.714831][T10802]  ? insert_vmap_area+0x2ef/0x4d0
[  165.714846][T10802]  alloc_vmap_area+0x93e/0x2a60
[  165.714865][T10802]  ? __pfx_alloc_vmap_area+0x10/0x10
[  165.714882][T10802]  __get_vm_area_node+0x19e/0x2f0
[  165.714898][T10802]  ? kfree+0x2c4/0x4d0
[  165.714913][T10802]  __vmalloc_node_range_noprof+0x26a/0x1530
[  165.714929][T10802]  ? security_read_state_kernel+0x106/0x380
[  165.714941][T10802]  ? mark_lock+0xb5/0xc60
[  165.714956][T10802]  ? __pfx_mark_lock+0x10/0x10
[  165.714970][T10802]  ? security_read_state_kernel+0x106/0x380
[  165.714983][T10802]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  165.715003][T10802]  ? security_read_state_kernel+0x106/0x380
[  165.715014][T10802]  vmalloc_noprof+0x6b/0x90
[  165.715030][T10802]  ? security_read_state_kernel+0x106/0x380
[  165.715040][T10802]  security_read_state_kernel+0x106/0x380
[  165.715051][T10802]  ? __pfx_security_read_state_kernel+0x10/0x10
[  165.715061][T10802]  ? kfree+0x2c4/0x4d0
[  165.715074][T10802]  ? ima_measure_critical_data+0x82/0xb0
[  165.715089][T10802]  ? selinux_ima_measure_state_locked+0xb3c/0xf70
[  165.715106][T10802]  selinux_ima_measure_state_locked+0xb9b/0xf70
[  165.715124][T10802]  ? __pfx_selinux_ima_measure_state_locked+0x10/0x10
[  165.715144][T10802]  selinux_ima_measure_state+0x5f/0xb0
[  165.715158][T10802]  sel_write_enforce+0x40a/0x510
[  165.715170][T10802]  ? __pfx_sel_write_enforce+0x10/0x10
[  165.715184][T10802]  ? __pfx_sel_write_enforce+0x10/0x10
[  165.715195][T10802]  vfs_writev+0x6da/0xdd0
[  165.715210][T10802]  ? fdget_pos+0x267/0x390
[  165.715223][T10802]  ? __pfx_vfs_writev+0x10/0x10
[  165.715237][T10802]  ? __mutex_lock+0x1cc/0xb10
[  165.715250][T10802]  ? find_held_lock+0x2d/0x110
[  165.715263][T10802]  ? __pfx___mutex_lock+0x10/0x10
[  165.715277][T10802]  ? trace_lock_acquire+0x14e/0x1f0
[  165.715296][T10802]  ? __fget_files+0x206/0x3a0
[  165.715309][T10802]  ? do_writev+0x133/0x340
[  165.715322][T10802]  do_writev+0x133/0x340
[  165.715337][T10802]  ? __pfx_do_writev+0x10/0x10
[  165.715355][T10802]  do_syscall_64+0xcd/0x250
[  165.715370][T10802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.715385][T10802] RIP: 0033:0x7f77c918d169
[  165.715393][T10802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.715402][T10802] RSP: 002b:00007f77c9fdf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  165.715412][T10802] RAX: ffffffffffffffda RBX: 00007f77c93a5fa0 RCX: 00007f77c918d169
[  165.715418][T10802] RDX: 0000000000000002 RSI: 0000400000000040 RDI: 0000000000000003
[  165.715424][T10802] RBP: 00007f77c9fdf090 R08: 0000000000000000 R09: 0000000000000000
[  165.715429][T10802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.715435][T10802] R13: 0000000000000000 R14: 00007f77c93a5fa0 R15: 00007ffc3cfc8408
[  165.715447][T10802]  </TASK>
[  165.715617][T10802] syz.1.1692: vmalloc error: size 267726, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[  165.788514][T10807] FAULT_INJECTION: forcing a failure.
[  165.788514][T10807] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.789747][T10802] ,cpuset=
[  165.793093][T10807] CPU: 2 UID: 0 PID: 10807 Comm: syz.3.1694 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  165.793108][T10807] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.793115][T10807] Call Trace:
[  165.793118][T10807]  <TASK>
[  165.793122][T10807]  dump_stack_lvl+0x16c/0x1f0
[  165.793141][T10807]  should_fail_ex+0x50a/0x650
[  165.793159][T10807]  _copy_to_user+0x32/0xd0
[  165.793170][T10807]  simple_read_from_buffer+0xd0/0x160
[  165.793187][T10807]  proc_fail_nth_read+0x198/0x270
[  165.793201][T10807]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  165.793216][T10807]  ? rw_verify_area+0xcf/0x680
[  165.793230][T10807]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  165.793244][T10807]  vfs_read+0x1df/0xbf0
[  165.793260][T10807]  ? __fget_files+0x1fc/0x3a0
[  165.793270][T10807]  ? __pfx___mutex_lock+0x10/0x10
[  165.793285][T10807]  ? __pfx_vfs_read+0x10/0x10
[  165.793303][T10807]  ? __fget_files+0x206/0x3a0
[  165.793316][T10807]  ksys_read+0x12b/0x250
[  165.793325][T10807]  ? __pfx_ksys_read+0x10/0x10
[  165.793337][T10807]  do_syscall_64+0xcd/0x250
[  165.793352][T10807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.793367][T10807] RIP: 0033:0x7faeabb8bb7c
[  165.793375][T10807] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  165.793384][T10807] RSP: 002b:00007faeacaba030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  165.793394][T10807] RAX: ffffffffffffffda RBX: 00007faeabda5fa0 RCX: 00007faeabb8bb7c
[  165.793400][T10807] RDX: 000000000000000f RSI: 00007faeacaba0a0 RDI: 0000000000000003
[  165.793406][T10807] RBP: 00007faeacaba090 R08: 0000000000000000 R09: 0000000000000000
[  165.793412][T10807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.793417][T10807] R13: 0000000000000001 R14: 00007faeabda5fa0 R15: 00007ffc2b662a18
[  165.793429][T10807]  </TASK>
[  165.904178][T10802] /,mems_allowed=0-1
[  165.907006][T10802] CPU: 1 UID: 0 PID: 10802 Comm: syz.1.1692 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  165.907019][T10802] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.907025][T10802] Call Trace:
[  165.907028][T10802]  <TASK>
[  165.907032][T10802]  dump_stack_lvl+0x16c/0x1f0
[  165.907051][T10802]  warn_alloc+0x24d/0x3a0
[  165.907063][T10802]  ? __pfx_warn_alloc+0x10/0x10
[  165.907075][T10802]  ? kfree+0x2c4/0x4d0
[  165.907093][T10802]  ? __get_vm_area_node+0x1dc/0x2f0
[  165.907111][T10802]  __vmalloc_node_range_noprof+0xd24/0x1530
[  165.907126][T10802]  ? mark_lock+0xb5/0xc60
[  165.907142][T10802]  ? __pfx_mark_lock+0x10/0x10
[  165.907156][T10802]  ? security_read_state_kernel+0x106/0x380
[  165.907170][T10802]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  165.907190][T10802]  ? security_read_state_kernel+0x106/0x380
[  165.907201][T10802]  vmalloc_noprof+0x6b/0x90
[  165.907216][T10802]  ? security_read_state_kernel+0x106/0x380
[  165.907227][T10802]  security_read_state_kernel+0x106/0x380
[  165.907237][T10802]  ? __pfx_security_read_state_kernel+0x10/0x10
[  165.907248][T10802]  ? kfree+0x2c4/0x4d0
[  165.907261][T10802]  ? ima_measure_critical_data+0x82/0xb0
[  165.907276][T10802]  ? selinux_ima_measure_state_locked+0xb3c/0xf70
[  165.907294][T10802]  selinux_ima_measure_state_locked+0xb9b/0xf70
[  165.907316][T10802]  ? __pfx_selinux_ima_measure_state_locked+0x10/0x10
[  165.907337][T10802]  selinux_ima_measure_state+0x5f/0xb0
[  165.907351][T10802]  sel_write_enforce+0x40a/0x510
[  165.907363][T10802]  ? __pfx_sel_write_enforce+0x10/0x10
[  165.907377][T10802]  ? __pfx_sel_write_enforce+0x10/0x10
[  165.907388][T10802]  vfs_writev+0x6da/0xdd0
[  165.907403][T10802]  ? fdget_pos+0x267/0x390
[  165.907417][T10802]  ? __pfx_vfs_writev+0x10/0x10
[  165.907430][T10802]  ? __mutex_lock+0x1cc/0xb10
[  165.907443][T10802]  ? find_held_lock+0x2d/0x110
[  165.907481][T10802]  ? __pfx___mutex_lock+0x10/0x10
[  165.907501][T10802]  ? trace_lock_acquire+0x14e/0x1f0
[  165.907517][T10802]  ? __fget_files+0x206/0x3a0
[  165.907530][T10802]  ? do_writev+0x133/0x340
[  165.907543][T10802]  do_writev+0x133/0x340
[  165.907558][T10802]  ? __pfx_do_writev+0x10/0x10
[  165.907576][T10802]  do_syscall_64+0xcd/0x250
[  165.907591][T10802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.907606][T10802] RIP: 0033:0x7f77c918d169
[  165.907615][T10802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.907625][T10802] RSP: 002b:00007f77c9fdf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  165.907634][T10802] RAX: ffffffffffffffda RBX: 00007f77c93a5fa0 RCX: 00007f77c918d169
[  165.907640][T10802] RDX: 0000000000000002 RSI: 0000400000000040 RDI: 0000000000000003
[  165.907645][T10802] RBP: 00007f77c9fdf090 R08: 0000000000000000 R09: 0000000000000000
[  165.907651][T10802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.907656][T10802] R13: 0000000000000000 R14: 00007f77c93a5fa0 R15: 00007ffc3cfc8408
[  165.907668][T10802]  </TASK>
[  165.907672][T10802] Mem-Info:
[  165.996561][T10802] active_anon:6881 inactive_anon:0 isolated_anon:0
[  165.996561][T10802]  active_file:4366 inactive_file:50806 isolated_file:0
[  165.996561][T10802]  unevictable:1768 dirty:148 writeback:0
[  165.996561][T10802]  slab_reclaimable:12033 slab_unreclaimable:77215
[  165.996561][T10802]  mapped:30093 shmem:2470 pagetables:1065
[  165.996561][T10802]  sec_pagetables:311 bounce:0
[  165.996561][T10802]  kernel_misc_reclaimable:0
[  165.996561][T10802]  free:439557 free_pcp:2924 free_cma:0
[  166.009269][T10802] Node 0 active_anon:27524kB inactive_anon:0kB active_file:17464kB inactive_file:203152kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:120372kB dirty:592kB writeback:0kB shmem:6344kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12272kB pagetables:4260kB sec_pagetables:1244kB all_unreclaimable? no
[  166.019295][T10802] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  166.027626][T10802] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  166.036054][T10802] lowmem_reserve[]: 0 1240 1240 1240 1240
[  166.037676][T10802] Node 0 DMA32 free:159904kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:27400kB inactive_anon:0kB active_file:17464kB inactive_file:203152kB unevictable:3536kB writepending:592kB present:2080628kB managed:1270112kB mlocked:0kB bounce:0kB free_pcp:3996kB local_pcp:1156kB free_cma:0kB
[  166.045723][T10802] lowmem_reserve[]: 0 0 0 0 0
[  166.047391][T10802] Node 1 Normal free:1582964kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:8044kB local_pcp:0kB free_cma:0kB
[  166.056164][T10802] lowmem_reserve[]: 0 0 0 0 0
[  166.057607][T10802] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  166.065164][T10802] Node 0 DMA32: 47*4kB (UM) 69*8kB (UME) 335*16kB (UME) 549*32kB (UME) 423*64kB (UME) 47*128kB (UME) 23*256kB (UME) 12*512kB (UM) 11*1024kB (UM) 11*2048kB (UME) 14*4096kB (UM) = 159924kB
[  166.070636][T10802] Node 1 Normal: 26*4kB (UME) 24*8kB (UME) 31*16kB (UME) 137*32kB (UME) 67*64kB (UME) 25*128kB (UME) 10*256kB (UME) 4*512kB (UM) 1*1024kB (U) 4*2048kB (UME) 380*4096kB (M) = 1582968kB
[  166.078682][T10802] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  166.081493][T10802] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  166.084159][T10802] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  166.086868][T10802] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  166.089478][T10802] 57642 total pagecache pages
[  166.090808][T10802] 0 pages in swap cache
[  166.092055][T10802] Free swap  = 124660kB
[  166.093469][T10802] Total swap = 124996kB
[  166.094630][T10802] 1048443 pages RAM
[  166.095712][T10802] 0 pages HighMem/MovableOnly
[  166.097095][T10802] 281594 pages reserved
[  166.098259][T10802] 0 pages cma reserved
[  166.099565][T10802] SELinux: selinux_ima_measure_state_locked: failed to read policy -12.
[  166.131966][T10825] netlink: 'syz.1.1701': attribute type 12 has an invalid length.
[  166.688564][ T1181] ==================================================================
[  166.690815][ T1181] BUG: KASAN: global-out-of-bounds in fib6_ifdown+0x7f5/0x8f0
[  166.692874][ T1181] Read of size 8 at addr ffffffff9ac27510 by task kworker/u32:9/1181
[  166.695852][ T1181] 
[  166.697013][ T1181] CPU: 2 UID: 0 PID: 1181 Comm: kworker/u32:9 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  166.697026][ T1181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.697033][ T1181] Workqueue: netns cleanup_net
[  166.697047][ T1181] Call Trace:
[  166.697050][ T1181]  <TASK>
[  166.697054][ T1181]  dump_stack_lvl+0x116/0x1f0
[  166.697070][ T1181]  print_report+0xc3/0x670
[  166.697082][ T1181]  ? __virt_addr_valid+0x5e/0x590
[  166.697092][ T1181]  ? __phys_addr+0xc6/0x150
[  166.697101][ T1181]  kasan_report+0xd9/0x110
[  166.697112][ T1181]  ? fib6_ifdown+0x7f5/0x8f0
[  166.697124][ T1181]  ? fib6_ifdown+0x7f5/0x8f0
[  166.697137][ T1181]  fib6_ifdown+0x7f5/0x8f0
[  166.697149][ T1181]  ? __pfx_fib6_ifdown+0x10/0x10
[  166.697161][ T1181]  fib6_clean_node+0x2a5/0x5b0
[  166.697173][ T1181]  ? __pfx_fib6_clean_node+0x10/0x10
[  166.697186][ T1181]  ? fib6_walk+0x17a/0x370
[  166.697195][ T1181]  ? __pfx_lock_release+0x10/0x10
[  166.697211][ T1181]  fib6_walk_continue+0x44f/0x8d0
[  166.697222][ T1181]  fib6_walk+0x182/0x370
[  166.697232][ T1181]  ? __pfx_fib6_ifdown+0x10/0x10
[  166.697243][ T1181]  fib6_clean_tree+0xd7/0x120
[  166.697254][ T1181]  ? __pfx_fib6_clean_tree+0x10/0x10
[  166.697265][ T1181]  ? __pfx_fib6_clean_node+0x10/0x10
[  166.697277][ T1181]  ? __pfx_fib6_ifdown+0x10/0x10
[  166.697289][ T1181]  ? lock_acquire+0x2f/0xb0
[  166.697302][ T1181]  ? __fib6_clean_all+0xe5/0x2d0
[  166.697313][ T1181]  ? __pfx_fib6_ifdown+0x10/0x10
[  166.697325][ T1181]  __fib6_clean_all+0x100/0x2d0
[  166.697336][ T1181]  rt6_disable_ip+0x2ef/0x940
[  166.697346][ T1181]  ? find_held_lock+0x2d/0x110
[  166.697357][ T1181]  ? __pfx_rt6_disable_ip+0x10/0x10
[  166.697366][ T1181]  ? __pfx_lock_release+0x10/0x10
[  166.697379][ T1181]  ? rcu_is_watching+0x12/0xc0
[  166.697390][ T1181]  addrconf_ifdown.isra.0+0x126/0x1af0
[  166.697403][ T1181]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  166.697419][ T1181]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  166.697431][ T1181]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  166.697445][ T1181]  ? tls_dev_event+0xfe/0x1100
[  166.697462][ T1181]  addrconf_notify+0x220/0x19c0
[  166.697477][ T1181]  ? ip6mr_device_event+0x1bc/0x230
[  166.697493][ T1181]  notifier_call_chain+0xb7/0x410
[  166.697505][ T1181]  ? __pfx_addrconf_notify+0x10/0x10
[  166.697519][ T1181]  call_netdevice_notifiers_info+0xbe/0x140
[  166.697531][ T1181]  dev_close_many+0x333/0x6a0
[  166.697543][ T1181]  ? __pfx_dev_close_many+0x10/0x10
[  166.697555][ T1181]  unregister_netdevice_many_notify+0x48a/0x1f30
[  166.697567][ T1181]  ? __pfx___mutex_trylock_common+0x10/0x10
[  166.697582][ T1181]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  166.697593][ T1181]  ? rcu_is_watching+0x12/0xc0
[  166.697603][ T1181]  ? __mutex_lock+0x1cc/0xb10
[  166.697617][ T1181]  ? nsim_destroy+0x9d/0x710
[  166.697628][ T1181]  ? __pfx___mutex_lock+0x10/0x10
[  166.697641][ T1181]  ? __pfx_lock_release+0x10/0x10
[  166.697655][ T1181]  unregister_netdevice_queue+0x307/0x3f0
[  166.697666][ T1181]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  166.697677][ T1181]  nsim_destroy+0x135/0x710
[  166.697688][ T1181]  __nsim_dev_port_del+0x189/0x240
[  166.697700][ T1181]  nsim_dev_reload_destroy+0x108/0x4d0
[  166.697713][ T1181]  nsim_dev_reload_down+0x6e/0xd0
[  166.697725][ T1181]  devlink_reload+0x19a/0x7c0
[  166.697736][ T1181]  ? __pfx_devlink_reload+0x10/0x10
[  166.697745][ T1181]  ? devlinks_xa_find_get+0x39/0x260
[  166.697761][ T1181]  devlink_pernet_pre_exit+0x1a1/0x2b0
[  166.697775][ T1181]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[  166.697790][ T1181]  ? up_write+0x1b2/0x520
[  166.697804][ T1181]  ? kobject_put+0xab/0x5a0
[  166.697819][ T1181]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[  166.697834][ T1181]  cleanup_net+0x497/0xb30
[  166.697844][ T1181]  ? __pfx_cleanup_net+0x10/0x10
[  166.697855][ T1181]  ? lock_acquire+0x2f/0xb0
[  166.697868][ T1181]  ? process_one_work+0x921/0x1ba0
[  166.697881][ T1181]  process_one_work+0x9c5/0x1ba0
[  166.697896][ T1181]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  166.697910][ T1181]  ? __pfx_process_one_work+0x10/0x10
[  166.697924][ T1181]  ? assign_work+0x1a0/0x250
[  166.697936][ T1181]  worker_thread+0x6c8/0xf00
[  166.697951][ T1181]  ? __kthread_parkme+0x148/0x220
[  166.697960][ T1181]  ? __pfx_worker_thread+0x10/0x10
[  166.697973][ T1181]  kthread+0x3af/0x750
[  166.697985][ T1181]  ? __pfx_kthread+0x10/0x10
[  166.697996][ T1181]  ? lock_acquire+0x2f/0xb0
[  166.698010][ T1181]  ? __pfx_kthread+0x10/0x10
[  166.698021][ T1181]  ret_from_fork+0x45/0x80
[  166.698034][ T1181]  ? __pfx_kthread+0x10/0x10
[  166.698046][ T1181]  ret_from_fork_asm+0x1a/0x30
[  166.698059][ T1181]  </TASK>
[  166.698063][ T1181] 
[  166.824686][ T1181] The buggy address belongs to the variable:
[  166.826329][ T1181]  __key.0+0x30/0x40
[  166.827430][ T1181] 
[  166.828131][ T1181] The buggy address belongs to the physical page:
[  166.829857][ T1181] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1ac27
[  166.832294][ T1181] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  166.834477][ T1181] raw: 00fff00000002000 ffffea00006b09c8 ffffea00006b09c8 0000000000000000
[  166.836827][ T1181] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  166.839152][ T1181] page dumped because: kasan: bad access detected
[  166.840909][ T1181] page_owner info is not present (never set?)
[  166.842603][ T1181] 
[  166.843278][ T1181] Memory state around the buggy address:
[  166.844834][ T1181]  ffffffff9ac27400: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 f9 f9 f9
[  166.847028][ T1181]  ffffffff9ac27480: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 00 f9 f9
[  166.849223][ T1181] >ffffffff9ac27500: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 00 00 00
[  166.851403][ T1181]                          ^
[  166.852693][ T1181]  ffffffff9ac27580: 00 00 00 00 00 00 00 00 00 00 00 f9 f9 f9 f9 f9
[  166.854873][ T1181]  ffffffff9ac27600: 00 00 f9 f9 f9 f9 f9 f9 00 00 f9 f9 f9 f9 f9 f9
[  166.857062][ T1181] ==================================================================
[  166.859297][ T1181] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  166.861327][ T1181] CPU: 2 UID: 0 PID: 1181 Comm: kworker/u32:9 Not tainted 6.14.0-rc6-syzkaller-00016-g0fed89a961ea #0
[  166.864266][ T1181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.867182][ T1181] Workqueue: netns cleanup_net
[  166.868525][ T1181] Call Trace:
[  166.869462][ T1181]  <TASK>
[  166.870284][ T1181]  dump_stack_lvl+0x3d/0x1f0
[  166.871582][ T1181]  panic+0x71d/0x800
[  166.872677][ T1181]  ? mark_held_locks+0x9f/0xe0
[  166.874004][ T1181]  ? __pfx_panic+0x10/0x10
[  166.875240][ T1181]  ? irqentry_exit+0x3b/0x90
[  166.876545][ T1181]  ? lockdep_hardirqs_on+0x7c/0x110
[  166.877982][ T1181]  ? check_panic_on_warn+0x1f/0xb0
[  166.879391][ T1181]  check_panic_on_warn+0xab/0xb0
[  166.880786][ T1181]  end_report+0x117/0x180
[  166.881994][ T1181]  kasan_report+0xe9/0x110
[  166.883240][ T1181]  ? fib6_ifdown+0x7f5/0x8f0
[  166.884556][ T1181]  ? fib6_ifdown+0x7f5/0x8f0
[  166.885855][ T1181]  fib6_ifdown+0x7f5/0x8f0
[  166.887097][ T1181]  ? __pfx_fib6_ifdown+0x10/0x10
[  166.888500][ T1181]  fib6_clean_node+0x2a5/0x5b0
[  166.889840][ T1181]  ? __pfx_fib6_clean_node+0x10/0x10
[  166.891320][ T1181]  ? fib6_walk+0x17a/0x370
[  166.892606][ T1181]  ? __pfx_lock_release+0x10/0x10
[  166.893998][ T1181]  fib6_walk_continue+0x44f/0x8d0
[  166.895379][ T1181]  fib6_walk+0x182/0x370
[  166.896583][ T1181]  ? __pfx_fib6_ifdown+0x10/0x10
[  166.897948][ T1181]  fib6_clean_tree+0xd7/0x120
[  166.899253][ T1181]  ? __pfx_fib6_clean_tree+0x10/0x10
[  166.900722][ T1181]  ? __pfx_fib6_clean_node+0x10/0x10
[  166.902177][ T1181]  ? __pfx_fib6_ifdown+0x10/0x10
[  166.903570][ T1181]  ? lock_acquire+0x2f/0xb0
[  166.904832][ T1181]  ? __fib6_clean_all+0xe5/0x2d0
[  166.906200][ T1181]  ? __pfx_fib6_ifdown+0x10/0x10
[  166.907573][ T1181]  __fib6_clean_all+0x100/0x2d0
[  166.908917][ T1181]  rt6_disable_ip+0x2ef/0x940
[  166.910217][ T1181]  ? find_held_lock+0x2d/0x110
[  166.911556][ T1181]  ? __pfx_rt6_disable_ip+0x10/0x10
[  166.913001][ T1181]  ? __pfx_lock_release+0x10/0x10
[  166.914387][ T1181]  ? rcu_is_watching+0x12/0xc0
[  166.915722][ T1181]  addrconf_ifdown.isra.0+0x126/0x1af0
[  166.917225][ T1181]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  166.918768][ T1181]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  166.920399][ T1181]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  166.922058][ T1181]  ? tls_dev_event+0xfe/0x1100
[  166.923386][ T1181]  addrconf_notify+0x220/0x19c0
[  166.924740][ T1181]  ? ip6mr_device_event+0x1bc/0x230
[  166.926177][ T1181]  notifier_call_chain+0xb7/0x410
[  166.927572][ T1181]  ? __pfx_addrconf_notify+0x10/0x10
[  166.929030][ T1181]  call_netdevice_notifiers_info+0xbe/0x140
[  166.930664][ T1181]  dev_close_many+0x333/0x6a0
[  166.932036][ T1181]  ? __pfx_dev_close_many+0x10/0x10
[  166.933540][ T1181]  unregister_netdevice_many_notify+0x48a/0x1f30
[  166.935280][ T1181]  ? __pfx___mutex_trylock_common+0x10/0x10
[  166.936921][ T1181]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  166.938773][ T1181]  ? rcu_is_watching+0x12/0xc0
[  166.940104][ T1181]  ? __mutex_lock+0x1cc/0xb10
[  166.941450][ T1181]  ? nsim_destroy+0x9d/0x710
[  166.942843][ T1181]  ? __pfx___mutex_lock+0x10/0x10
[  166.944246][ T1181]  ? __pfx_lock_release+0x10/0x10
[  166.945656][ T1181]  unregister_netdevice_queue+0x307/0x3f0
[  166.947226][ T1181]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  166.948951][ T1181]  nsim_destroy+0x135/0x710
[  166.950199][ T1181]  __nsim_dev_port_del+0x189/0x240
[  166.951652][ T1181]  nsim_dev_reload_destroy+0x108/0x4d0
[  166.953172][ T1181]  nsim_dev_reload_down+0x6e/0xd0
[  166.954570][ T1181]  devlink_reload+0x19a/0x7c0
[  166.955881][ T1181]  ? __pfx_devlink_reload+0x10/0x10
[  166.957367][ T1181]  ? devlinks_xa_find_get+0x39/0x260
[  166.958827][ T1181]  devlink_pernet_pre_exit+0x1a1/0x2b0
[  166.960351][ T1181]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[  166.962006][ T1181]  ? up_write+0x1b2/0x520
[  166.963236][ T1181]  ? kobject_put+0xab/0x5a0
[  166.964515][ T1181]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[  166.966163][ T1181]  cleanup_net+0x497/0xb30
[  166.967435][ T1181]  ? __pfx_cleanup_net+0x10/0x10
[  166.968834][ T1181]  ? lock_acquire+0x2f/0xb0
[  166.970111][ T1181]  ? process_one_work+0x921/0x1ba0
[  166.971561][ T1181]  process_one_work+0x9c5/0x1ba0
[  166.972950][ T1181]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  166.974501][ T1181]  ? __pfx_process_one_work+0x10/0x10
[  166.975982][ T1181]  ? assign_work+0x1a0/0x250
[  166.977293][ T1181]  worker_thread+0x6c8/0xf00
[  166.978578][ T1181]  ? __kthread_parkme+0x148/0x220
[  166.979983][ T1181]  ? __pfx_worker_thread+0x10/0x10
[  166.981396][ T1181]  kthread+0x3af/0x750
[  166.982538][ T1181]  ? __pfx_kthread+0x10/0x10
[  166.983826][ T1181]  ? lock_acquire+0x2f/0xb0
[  166.985116][ T1181]  ? __pfx_kthread+0x10/0x10
[  166.986411][ T1181]  ret_from_fork+0x45/0x80
[  166.987661][ T1181]  ? __pfx_kthread+0x10/0x10
[  166.988945][ T1181]  ret_from_fork_asm+0x1a/0x30
[  166.990268][ T1181]  </TASK>
[  166.991765][ T1181] Kernel Offset: disabled
[  166.993090][ T1181] Rebooting in 86400 seconds..

VM DIAGNOSIS:
21:02:46  Registers:
info registers vcpu 0

CPU#0
RAX=00000000001c8da9 RBX=0000000000000000 RCX=ffffffff8b57d469 RDX=0000000000000000
RSI=ffffffff8b6cfc80 RDI=ffffffff8bd36a20 RBP=fffffbfff1bd2ee8 RSP=ffffffff8de07e20
R8 =0000000000000001 R9 =ffffed100d4c6f85 R10=ffff88806a637c2b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8de97740 R14=ffffffff90626f10 R15=0000000000000000
RIP=ffffffff8b57e84f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055a50d635680 CR3=000000000df80000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000400001 Opmask01=0000000012000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe0d2fe260 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382020000a42000a 204238363430322a 3120292028202820 343230312a312029
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffffc90003587070 RCX=0000000000000000 RDX=0000000000000001
RSI=ffffc90003587bb8 RDI=0000000000000001 RBP=ffffc90003587100 RSP=ffffc90003587070
R8 =ffffc900035870a4 R9 =ffffffff90f777ec R10=ffffc90003587070 R11=000000000000844e
R12=ffffffff81a5abb0 R13=ffffc90003587130 R14=0000000000000000 R15=ffff888029f64880
RIP=ffffffff81606bcf RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffcf43b0fe4 CR3=00000000306b2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000feffffd0 Opmask01=0000000000000003 Opmask02=000000000000ffdf Opmask03=0000000000000000
Opmask04=00000000ffffffdf Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000a60ce07b 00000000cec3662e
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0ef92bacac517af0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5c431d1c1a141601 5c43000611171d5c
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 000056447acb2200 44455a494c414954 494e495f43455355
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4c9c4dd35fa3895a 000056411e8d0fe6 00000000000000b1 0000302d00316963
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001e1 0000000000000030 2d78742f73657565 75712f326e616c77
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000351 0000000000007974 00736576616c7300 306d656d702f6b63
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382433273f397b27 697a787c69303b7e 69305f474f5b647c 6930382433273f39
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8540aff0 RDI=ffffffff9ab867c0 RBP=ffffffff9ab86780 RSP=ffffc9000622e998
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000038313154
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff3570d4a R15=dffffc0000000000
RIP=ffffffff8540b017 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055f25ecfc068 CR3=000000002a6ec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb460f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb460f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb460f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb460f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb460f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb460f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb477c488 00007efeb477c480 00007efeb477c478 00007efeb477c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb52dd100 00007efeb477c440 00007efeb4770004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007efeb477c498 00007efeb477c490 00007efeb477c488 00007efeb477c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000178af5 RBX=0000000000000003 RCX=ffffffff8b57d469 RDX=0000000000000000
RSI=ffffffff8b6cfc80 RDI=ffffffff8bd36a20 RBP=ffffed1003b52910 RSP=ffffc900001b7e08
R8 =0000000000000001 R9 =ffffed100d526f85 R10=ffff88806a937c2b R11=0000000000000000
R12=0000000000000003 R13=ffff88801da94880 R14=ffffffff90626f10 R15=0000000000000000
RIP=ffffffff8b57e84f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ff5be78fff8 CR3=00000000306b2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fec1ffd0 Opmask01=0000000000000003 Opmask02=000000000000ffdf Opmask03=0000000000000000
Opmask04=00000000ffffffdf Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056447acad9d0 000056447ac98b80
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5c431d1c1a141601 5c43000611171d5c
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000031 0000000000000000 44455a494c414954 494e495f43455355
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000009bb1 0000000000346963 682f68746f6f7465 756c622f6c617574
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001e1 0000000000000030 2d78742f73657565 75712f326e616c77
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000351 0000000000007974 00736576616c7300 306d656d702f6b63
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382433273f397b27 697a787c69303b7e 69305f474f5b647c 6930382433273f39
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020